[Dovecot] help with authentication - cpanel

allan hardy allan at hardy.com
Sat Jul 22 23:35:26 EEST 2006 

I am trying to install dovecot as a second pop3 service in my RH9 system.
It is a Cpanel based system using Courier for primary IP

By primary I mean all the other domains use courier on xxx.xxx.xxx.21 port
110

 

I have a domain with special pop3 needs that is dedicated to xxx.xxx.xxx.22
port 110

 

The two mail systems are installed, I can tell via telenet that dovecot is
listening and responding on the desired IP and port

 

Cpanel is the tool being used by all domains to create mail accounts and
hence setting the 'policy' for the mailboxes, userdb and passdb information.
I am trying to make dovecot use those files and can't get past
authentication.

What I guess I don't know is the encryption type being used by Cpanel

 

Any help appreciated.!!!!

 

 

What Cpanel appears to do for authentication is use a passwd and shadow file
for each domain, placed as follows:

 

/home/accountname/etc/domainname/passwd      holds the list of mail accounts
names

/home/accountname/etc/domain/shadow             holds the passwords

 

This is the message log from a telnet session on local machine:

 

dovecot: Jul 22 13:45:27 Info: auth(default): client in: AUTH   1
PLAIN   service=POP3    secured lip=xxx.xxx.179.22       rip=xxx.xxx.179.22
resp=AGFsbGFuAHRlc3Q=

dovecot: Jul 22 13:45:27 Info: auth(default): shadow(allan,xxx.xxx.179.22):
password mismatch

dovecot: Jul 22 13:45:29 Info: auth(default): client out: FAIL  1
user=allan

dovecot: Jul 22 13:45:36 Info: pop3-login: Aborted login: user=<allan>,
method=PLAIN, rip=xxx.xxx.179.22, lip=xxx.xxx.179.22, secured

~

 

This was in the shadow file:

---Shadow file entry

allan:$1$V0lG6T6P$eNQoX3J3N5RJNxT5yH8gz1:::::::

 

 

These are my relevant (At least I think they are relevant) dovecot.conf
settings:

 

disable_plaintext_auth = no

ssl_disable = yes

 

auth default {

  mechanisms = plain login anonymous

 

  passdb shadow { /home/xxxxxx/etc/xxxxx.com/shadow

  }

 

  userdb passwd-file {

    # Path for passwd-file

    args = /home/xxxxxxx/etc/xxxxx.com/passwd

  }

 

--PAM is commented out

 

 

As a side note, I tried to see if I could tell from the courier setup how it
was authenticating.  

 

The courier/etc/pop3d file was set  

POP3AUTH=""

And there was a note "To advertise the SASL capability, per RFC 2449,
uncomment the POP3AUTH variable"

So it this may indicate sasl is being used, what ever that means

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://dovecot.org/pipermail/dovecot/attachments/20060722/b7a1a4d1/attachment.htm

More information about the dovecot mailing list