[Dovecot] A Couple Of Issues (APOP Causes Auth SIGSEGV, Umask Setting Ineffective)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Hi,
I'm very happy with Dovecot and wish the best for its continued development. It's a true testament to brilliant componentised design and Unix philosophy. Configuration made easy because of the way the file is parsed and a single point of startup make it ridiculously straightforward (and lovely) to administer. But of course, we all already know this ...
I'm sorry that I can't provide traces at the moment, I'm working from an optimised set of binaries. (-O3 -march=i586 -fomit-frame-pointer) GCC 3.4.4, Gentoo X86 2005.0, Linux 2.6.13, Glibc 2.6.5. Pegasus Mail 4.30B1 is the client on Win32. Dovecot is still Alpha2 (I will upgrade when Gentoo has updated their ebuild). Of course if you advise I'll look at rebuilding newer versions or patched versions with(out) debug symbols.
When I attempt APOP login of any variety on the POP3 server auth dies with signal 11. passwd-file is of course listed as a password database, alongside shadow. I get back "-ERR Internal authentication failure - please try again later." or something like this and all subsequent authentication in that session won't work (of course, auth is dead). The password entry is in /etc/dovecot.secrets (perms=0700,uid=0,gid=0) and looks like: username:{PLAIN}cleartextpassword
Umask setting gone strange. I set it, per example comment, to "7077" rather than default of 0077 (just to be precise...). When directories are subsequently created, user owning it doesn't even get read/write permissions (just x) and group gets rw but not x! It has not even to do with my system umask (022) set by login. I've set it to 0000 for now in dovecot (/etc/skel has .mail put in people's homedirs with 0700, so there's no worry, but of course I'd like to see that one fixed).
If you need more info please let me know. Hope this is enough.
Cheers, Sabahattin
If an email tells you to forward it to all your friends, please temporarily forget that I am your friend.
Sabahattin Gucukoglu Phone: +44 20 88008915 Mobile: +44 7986 053399 Email/MSN: mail@Sabahattin-Gucukoglu.com Skype: SabahattinGucukoglu (requires authorisation, add me to your list first) SpeakFreely: Chalcedony.Sabahattin-Gucukoglu.com (Please use CELP compression if your processor allows)
-----BEGIN PGP SIGNATURE----- Version: PGP 8.0 -- QDPGP 2.70
iQA/AwUBQzqINyNEOmEWtR2TEQLs1gCdGhobU2SQAuwA5fMIVFkEXG9dqfMAn3+7 9ebHqEFut7NapNhf7gERxhQ6 =b7zN -----END PGP SIGNATURE-----
On Wed, 2005-09-28 at 13:10 +0100, Sabahattin Gucukoglu wrote:
- When I attempt APOP login of any variety on the POP3 server auth dies with signal 11. passwd-file is of course listed as a password database, alongside shadow. I get back "-ERR Internal authentication failure - please try again later." or something like this and all subsequent authentication in that session won't work (of course, auth is dead). The password entry is in /etc/dovecot.secrets (perms=0700,uid=0,gid=0) and looks like: username:{PLAIN}cleartextpassword
Actually I have in my TODO that APOP is probably broken. So this confirms it, I should look into it. What very quick to install POP3 Linux clients support APOP?
- Umask setting gone strange. I set it, per example comment, to "7077" rather than default of 0077 (just to be precise...).
I think this is because 7077 is treated as decimal. Use 07077 so it gets back to octal.
Timo Sirainen wrote:
Actually I have in my TODO that APOP is probably broken. So this confirms it, I should look into it. What very quick to install POP3 Linux clients support APOP?
fetchmail -v pop.your.host --proto apop --user bla
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Hi Timo,
On 1 Oct 2005 at 14:02, Timo Sirainen tss@iki.fi spoke, thus:
On Wed, 2005-09-28 at 13:10 +0100, Sabahattin Gucukoglu wrote:
[...]
- Umask setting gone strange. I set it, per example comment, to "7077" rather than default of 0077 (just to be precise...).
I think this is because 7077 is treated as decimal. Use 07077 so it gets back to octal.
I'm afraid this hasn't worked. Newly created objects are now rwxrwx---.
Cheers, Sabahattin
If an email tells you to forward it to all your friends, please temporarily forget that I am your friend.
Sabahattin Gucukoglu Phone: +44 20 88008915 Mobile: +44 7986 053399 Email/MSN: mail@Sabahattin-Gucukoglu.com Skype: SabahattinGucukoglu (requires authorisation, add me to your list first) SpeakFreely: Chalcedony.Sabahattin-Gucukoglu.com (Please use CELP compression if your processor allows)
-----BEGIN PGP SIGNATURE----- Version: PGP 8.0 -- QDPGP 2.70
iQA/AwUBQ0LEZCNEOmEWtR2TEQLuBwCeP8JHqiWQfL7Y/t4vyrICY2KCW3gAnRi6 I6UKf2ReMVipr5KGUWzr6Iw/ =qr4A -----END PGP SIGNATURE-----
On Tue, 2005-10-04 at 19:05 +0100, Sabahattin Gucukoglu wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Hi Timo,
On 1 Oct 2005 at 14:02, Timo Sirainen tss@iki.fi spoke, thus:
On Wed, 2005-09-28 at 13:10 +0100, Sabahattin Gucukoglu wrote:
[...]
- Umask setting gone strange. I set it, per example comment, to "7077" rather than default of 0077 (just to be precise...).
I think this is because 7077 is treated as decimal. Use 07077 so it gets back to octal.
I'm afraid this hasn't worked. Newly created objects are now rwxrwx---.
What objects do you mean? I just tried with "umask = 07077" and all directories seem to be created correctly with only user=rwx permissions.
Also there isn't really much point in changing the default 0077 to 07077 since Dovecot never tries to set the first 3 bits anyway.
Your APOP problem is now fixed in CVS though. The problem was just that it didn't like the shadow passdb. I'll release alpha4 in a few days too.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Hi Timo,
On 16 Oct 2005 at 15:57, Timo Sirainen tss@iki.fi spoke, thus:
On Tue, 2005-10-04 at 19:05 +0100, Sabahattin Gucukoglu wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Hi Timo,
On 1 Oct 2005 at 14:02, Timo Sirainen tss@iki.fi spoke, thus:
On Wed, 2005-09-28 at 13:10 +0100, Sabahattin Gucukoglu wrote:
[...]
- Umask setting gone strange. I set it, per example comment, to "7077" rather than default of 0077 (just to be precise...).
I think this is because 7077 is treated as decimal. Use 07077 so it gets back to octal.
I'm afraid this hasn't worked. Newly created objects are now rwxrwx---.
What objects do you mean? I just tried with "umask = 07077" and all directories seem to be created correctly with only user=rwx permissions.
Hmm, quite right. I meant directories too. I think I also duplicated a new mail into the test folder at the time. I tried again, and now it works fine. I must have missed something last time.
Also there isn't really much point in changing the default 0077 to 07077 since Dovecot never tries to set the first 3 bits anyway.
Of course, but this is what happens when you let me near any alpha software. Actually, it's what happens when you let me near *any* software. I'll start by trying to make it not work anymore. ;-)
Your APOP problem is now fixed in CVS though. The problem was just that it didn't like the shadow passdb. I'll release alpha4 in a few days too.
Marvellous. Thanks! You have a fine server here.
Cheers, Sabahattin
If an email tells you to forward it to all your friends, please temporarily forget that I am your friend.
Sabahattin Gucukoglu Phone: +44 20 88008915 Mobile: +44 7986 053399 Email/MSN: mail@Sabahattin-Gucukoglu.com Skype: SabahattinGucukoglu (requires authorisation, add me to your list first) SpeakFreely: Chalcedony.Sabahattin-Gucukoglu.com (Please use CELP compression if your processor allows)
-----BEGIN PGP SIGNATURE----- Version: PGP 8.0 -- QDPGP 2.70
iQA/AwUBQ1KfJSNEOmEWtR2TEQLsoACgtWjIdK1aezUviyOXY8oVQQeetWMAoNy1 tVDz4hEQ0QyAVkqM2BypaVCz =UUlu -----END PGP SIGNATURE-----
participants (3)
-
Jakob Hirsch
-
Sabahattin Gucukoglu
-
Timo Sirainen