Re: [Dovecot] New install authentication probs
Ola Daniel,
thanks for the idea, but actually within the config file the
settings are not within the auth default section, its just shown that
way from the output of dovecot -n
cheers Andy.
Quoting Daniel Gomes daniel.gomes@ist.utl.pt:
Hey Andy,
I might be way over my head here, but unlike you, in my setup I set
"auth_debug", "auth_verbose" and "auth_debug_password" to "yes"
outside the "auth default" section. Try that and see if you get the
verbose logging you're looking for!Cheers,
On 31-03-2010 19:46, Andy Smith wrote:
Hi Brad,
thanks for the reply, here is the output:
dovecot -n # 1.2.10: /usr/local/etc/dovecot.conf # OS: FreeBSD 6.1-RELEASE i386 nfs log_path: /tmp/dovecot.log protocols: imap ssl: no disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable: /usr/local/libexec/dovecot/imap-login verbose_proctitle: yes first_valid_uid: 1000 first_valid_gid: 1000 mail_privileged_group: mail mail_location: maildir:/var/spool/mail/%d/%u mail_debug: yes imap_client_workarounds: delay-newmail netscape-eoh tb-extra-mailbox-sep lda: sendmail_path: /usr/sbin/sendmail auth default: mechanisms: plain digest-md5 cram-md5 username_format: %Lu verbose: yes debug: yes debug_passwords: yes passdb: driver: sql args: /usr/local/etc/dovecot-sql.conf userdb: driver: passwd args: blocking=yes userdb: driver: sql args: /usr/local/etc/dovecot-sql.conf socket: type: listen client: path: /var/run/dovecot/auth-client mode: 432 master: path: /var/run/dovecot/auth-master mode: 384
-- Daniel Gomes, 55350
Update on this problem,
seems the only issue I had was that the telnet method of verifying
IMAP authentication that works on Courier just doesnt work with
Dovecot. I tried connected to Dovecot with an IMAP client (IMP
webmail) and I get a load of info logged about authenitaction. Duno
why I cant test via telnet but anyway, now I have fixed my config
probs and have a working Dovecot server,
thanks Andy.
On Thu, Apr 01, 2010 at 10:21:35AM +0100, Andy Smith wrote:
Update on this problem, seems the only issue I had was that the telnet method of verifying IMAP authentication that works on Courier just doesnt work with Dovecot.
What did you use? What did you see in response? Correct syntax is simply
a login username password
On Thu, Apr 01, 2010 at 06:50:28PM +0100, Brian Candler wrote:
On Thu, Apr 01, 2010 at 10:21:35AM +0100, Andy Smith wrote:
Update on this problem, seems the only issue I had was that the telnet method of verifying IMAP authentication that works on Courier just doesnt work with Dovecot.
What did you use? What did you see in response? Correct syntax is simply
a login username password
... although now I come to think of it, you may need to enable this in dovecot.conf first, since by default it won't allow a plaintext login over an unsecured channel.
Hi Brian,
yes sounds likely, I am attempting to authenticate using the text: LOGIN username password
and I always recieve the error:
LOGIN BAD Error in IMAP command received by server.
With zero logged to the debug log... With courier IMAP this works by
default, I guess by default it doesnt work with dovecot...
thanks Andy.
Brian Candler B.Candler@pobox.com escribió:
On Thu, Apr 01, 2010 at 06:50:28PM +0100, Brian Candler wrote:
On Thu, Apr 01, 2010 at 10:21:35AM +0100, Andy Smith wrote:
Update on this problem, seems the only issue I had was that the telnet method of verifying IMAP authentication that works on Courier just doesnt work with Dovecot.
What did you use? What did you see in response? Correct syntax is simply
a login username password
... although now I come to think of it, you may need to enable this in dovecot.conf first, since by default it won't allow a plaintext login over an unsecured channel.
On 04/01/2010 09:09 PM a.smith@ukgrid.net wrote:
Hi Brian,
yes sounds likely, I am attempting to authenticate using the text: LOGIN username password
and I always recieve the error:
LOGIN BAD Error in IMAP command received by server.
With zero logged to the debug log... With courier IMAP this works by
default, I guess by default it doesnt work with dovecot...
please stop top-posing.
The imap command you have used is syntactically wrong. Please have a look at RFC 3501, section 6.2.3 (LOGIN Command) http://tools.ietf.org/html/rfc3501#section-6.2.3
When courier supports violation of protocols/RFCs/STDs, please file a bug against courier.
Regards, Pascal
The trapper recommends today: c01dcafe.1009121@localdomain.org
On Thu, Apr 01, 2010 at 08:09:30PM +0100, a.smith@ukgrid.net wrote:
yes sounds likely, I am attempting to authenticate using the text: LOGIN username password
(with a tag in front of the command)
With zero logged to the debug log... With courier IMAP this works by default, I guess by default it doesnt work with dovecot...
If you want it, set this in dovecot.conf:
disable_plaintext_auth = no
Basically dovecot is taking the secure approach by default. If the client is connected without encryption, then they should not be sending a plaintext password, as it's easily sniffed. The above config removes this policy.
Or: try making an encrypted (imaps) connection, like this:
openssl s_client -connect 127.0.0.1:993
HTH,
Brian.
participants (4)
-
a.smith@ukgrid.net
-
Andy Smith
-
Brian Candler
-
Pascal Volk