[Dovecot] digest-md5 problem

Nigel Kukard nkukard at lbsd.net
Sun Feb 15 14:55:19 EET 2009


Info:
v1.1.11
OS = Linux 32bit, custom build
CPU Arch = i686
Filesystem = NFSv4


Problem:
Digest-md5 not working. Tested plain, login and cram-md5 with pop3, imap
and smtp/sasl fine.

Using digest-md5 doesn't authenticate with the below error....
***
Feb 15 12:46:45 s03-400-134 dovecot: auth(default): client in:
AUTH^I1^IDIGEST-MD5^Iservice=pop3^Ilip=10.0.2.134^Irip=10.0.2.1^Ilport=110^Irport=41579^Iresp=<hidden>
Feb 15 12:46:45 s03-400-134 dovecot: auth(default): client out:
CONT^I1^IcmVhbG09IiIsbm9uY2U9IktvMkFoK0lyeVhHRWtmY1k5TjM1TXc9PSIscW9wPSJhdXRoIixjaGFyc2V0PSJ1dGYtOCIsYWxnb3JpdGhtPSJtZDUtc2VzcyI=
Feb 15 12:46:45 s03-400-134 dovecot: auth(default): client in: CONT<hidden>
Feb 15 12:46:47 s03-400-134 dovecot: auth(default): client out: FAIL^I1
Feb 15 12:46:47 s03-400-134 dovecot: pop3-login: Disconnected (auth
failed, 1 attempts): method=DIGEST-MD5, rip=10.0.2.1, lip=10.0.2.134
***

The decoded reply is ...
authzid="USERNAME_HERE",charset=utf-8,cnonce="32d669a1334164b3362bff5f809acf12",digest-uri="pop/SERVER_URL_HERE",nc=00000001,nonce="rDWjRuMzuvbr5TLsinsE0A==",qop=auth,realm="",response=5c7c2ff3284f350fc62c5a2a80d2be64,username="USERNAME_HERE"


On the same database cyrus imap & sasl is working 100%.

All passwords are in plaintext format.

Maybe I"m doing something wrong?


Below my dovecot config...

# 1.1.11: /etc/dovecot/dovecot.conf
# OS: Linux 2.6.27.10 i686 none
protocols: imap imaps pop3 pop3s
listen: 10.0.2.134
shutdown_clients: no
login_dir: /var/run/dovecot/login
login_executable(default): /usr/libexec/dovecot/imap-login
login_executable(imap): /usr/libexec/dovecot/imap-login
login_executable(pop3): /usr/libexec/dovecot/pop3-login
login_greeting: s03-400-134 Secure server ready.
max_mail_processes: 100
verbose_proctitle: yes
first_valid_uid: 1000
first_valid_gid: 1000
mail_location: maildir:/var/vmail/%h
mail_debug: yes
mmap_disable: yes
mail_nfs_storage: yes
mail_nfs_index: yes
mail_executable(default): /usr/libexec/dovecot/imap
mail_executable(imap): /usr/libexec/dovecot/imap
mail_executable(pop3): /usr/libexec/dovecot/pop3
mail_plugins(default): quota imap_quota trash
mail_plugins(imap): quota imap_quota trash
mail_plugins(pop3):
mail_plugin_dir(default): /usr/lib/dovecot/imap
mail_plugin_dir(imap): /usr/lib/dovecot/imap
mail_plugin_dir(pop3): /usr/lib/dovecot/pop3
imap_client_workarounds(default): delay-newmail outlook-idle netscape-eoh
imap_client_workarounds(imap): delay-newmail outlook-idle netscape-eoh
imap_client_workarounds(pop3):
pop3_enable_last(default): no
pop3_enable_last(imap): no
pop3_enable_last(pop3): yes
pop3_lock_session(default): no
pop3_lock_session(imap): no
pop3_lock_session(pop3): yes
pop3_client_workarounds(default):
pop3_client_workarounds(imap):
pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh
namespace:
  type: private
  separator: .
  prefix: INBOX.
  inbox: yes
  list: yes
  subscriptions: yes
auth default:
  mechanisms: digest-md5 cram-md5 login plain
  cache_size: 256
  user: nobody
  master_user_separator: *
  verbose: yes
  debug: yes
  passdb:
    driver: sql
    args: /etc/dovecot/sql.conf
  userdb:
    driver: sql
    args: /etc/dovecot/sql.conf
  socket:
    type: listen
    client:
      path: /var/spool/postfix/private/auth
      mode: 432
      user: dovecot
      group: mail
    master:
      path: /var/run/dovecot/auth-master
      mode: 432
      user: dovecot
      group: vmail
plugin:
  quota: maildir
  trash: /etc/dovecot/trash.conf




More information about the dovecot mailing list