[Dovecot] passdb checkpassword and lastauth

Max A sub at comtel-60.ru
Wed Oct 18 10:19:06 UTC 2006


Hi.

If  checkpassword interface is used for working with vpopmail, function
vpopmail "Record time and ip of last auth attempt"
(--enable-auth-logging option for configure) won't work - the file
"lastauth" is created in Maildir, but does not contain  ip-address. If I
had correctly understood, dovecot woldn't have set a enviroment variable
  TCPREMOTEIP for vchkpw.
If changes are made in auth/passdb-checkpassword.c (a patch in 
attachment), everything will work.
Probably, the patch is incorrect and does not solve all problems,
however the request is to pay attention to existence of the problem.
Also it is possible, that a similar problem exists with other variables
TCP UCSPI protocol  (http://cr.yp.to/proto/ucspi-tcp.txt).

P.S. If use the interface vpopmail instead of checkpassword, the file
"lastauth" will not be created at all, that is a little bit  inconvenient.


**********************************
System:
dovecot-1.0.rc10
vpopmail-5.4.17
ASP Linux Server II (RHEL3 clone)
kernel 2.4.21-47.EL.aspsmp
CPU architecture: x86 (IBM xSeries 336)
Filesystem: ext3


**********************************
dovecot configuration:

base_dir = /var/run/dovecot/
protocols = imap pop3
disable_plaintext_auth = no
ssl_disable = yes
login_greeting = Ready.
first_valid_uid = 89
last_valid_uid = 89
first_valid_gid = 89
last_valid_gid = 89
protocol imap {
   listen = 81.26.136.8:144
   mail_executable = /usr/local/libexec/dovecot/imap
   mail_plugins = quota imap_quota
   mail_plugin_dir = /usr/local/lib/dovecot/imap
   imap_client_workarounds = delay-newmail outlook-idle netscape-eoh
tb-extra-mailbox-sep
}

protocol pop3 {
   listen = 81.26.136.8:112
   login_executable = /usr/local/libexec/dovecot/pop3-login
   mail_executable = /usr/local/libexec/dovecot/pop3
   pop3_uidl_format =  %f
   mail_plugins = quota
   mail_plugin_dir = /usr/local/lib/dovecot/pop3
   pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
}
auth default {
   mechanisms = plain login
   passdb checkpassword {
     args = /var/qmail/vpopmail/bin/vchkpw
   }
   userdb prefetch {
   }
   user = root
}
dict {
}
plugin {
   quota = maildir
}

***************************************

dovecot configure options:
./configure \
         --disable-ipv6 \
         --prefix=/usr/local \
         --sysconfdir=/etc/dovecot \
         --without-passwd \
         --without-passwd-file \
         --without-shadow \
         --without-pam \
         --without-bsdauth \
         --with-checkpassword \
         --with-vpopmail \
         --without-static-userdb \
         --with-prefetch-userdb \
         --without-sql \
         --without-pgsql \
         --without-mysql \
         --without-sqlite \
         --with-ssl=openssl \
         --with-pop3d \
         --without-deliver \
         --with-storages=maildir \
         --with-docs

*****************************************
vpopmail configure options:

./configure \
     --enable-auth-module=cdb \
     --enable-logging=p \
     --enable-md5-passwords \
     --enable-make-seekable \
     --enable-file-sync \
     --enable-ip-alias-domains \
     --enable-clear-passwd \
     --disable-roaming-users \
     --disable-learn-passwords \
     --disable-passwd \
     --enable-auth-logging
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: patch.txt
Url: http://dovecot.org/pipermail/dovecot/attachments/20061018/ea1f0fb9/attachment.txt 


More information about the dovecot mailing list