[LUGOS] courier-imap in branje Maildir
Matjaz Kljun
matjaz.kljun at pef.upr.si
Fri Sep 21 10:09:07 CEST 2007
Jernej Simončič wrote:
> On Thursday, September 20, 2007, 21:19:29, Matjaz Kljun wrote
>> Uporabnike imam v LDAP imeniku.
>> Authdaemon se uspešno avtenticira iz LDAP imenika, kar je razvidno iz logov.
>>
> Ali imaš nastavljen LDAP_GLOB_UID in LDAP_GLOB_GID v authldaprc?
>
Sedaj na vmail :). Očitno je bilo to (in še nekaj drugih reči).
Problem pa je sedaj drugačen. Vsi uporabniki vidijo pošto uporabnika mkljun?
Kako je to možno. Dva uporabnika sta se logirala in videla isti maildir.
V imapd-ssl imam nastavljeno naslednje:
MAILDIRPATH=/home/vmail/$USER/Maildir
In kljub temu da je logiran preko ldapa akramar bere pošto od uporabnika
mkljun
perun# ps axu | grep courier
Administrator 70458 0.0 0.1 3488 1604 p0 S 9:50AM 0:00.00
/usr/lib/courier-imap/libexec/authlib/authdaemond.ldap
Administrator 70461 0.0 0.0 1268 832 p0 S 9:50AM 0:00.01
[couriertcpd]
Administrator 70463 0.0 0.0 1204 680 p0 S 9:50AM 0:00.00
/usr/lib/courier-imap/sbin/courierlogger imapd-ssl
Administrator 70474 0.0 0.1 2712 1716 p0 S 9:51AM 0:00.02
/usr/lib/courier-imap/bin/couriertls -server -tcpd
/usr/lib/courier-imap/sbin/imapl
vmail 70476 0.0 0.1 2664 1948 p0 S 9:51AM 0:00.03
/usr/lib/courier-imap/bin/imapd /home/vmail/mkljun/Maildir
Ta zadnja vrstica me skrbi ...
Log mi javlja naslednje:
(famd in portmap sicer ne bi smela imeti s tem veze)
Sep 21 09:30:48 perun imapd-ssl: Check for proper operation and
configuration
Sep 21 09:30:48 perun imapd-ssl: of the File Access Monitor daemon (famd).
Sep 21 09:30:49 perun imapd-ssl: Failed to create cache file:
maildirwatch (mkljun)
Sep 21 09:30:49 perun imapd-ssl: Error: Input/output error
Sep 21 09:30:49 perun imapd-ssl: Check for proper operation and
configuration
Sep 21 09:30:49 perun imapd-ssl: of the File Access Monitor daemon (famd).
Medtem ko se ldap uspešno binda:
Sep 21 09:28:18 perun slapd[1028]: conn=5797832 fd=11 ACCEPT from
IP=127.0.0.1:63322 (IP=0.0.0.0:389)
Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=0 BIND dn="" method=128
Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=0 RESULT tag=97 err=0
text=
Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=1 SRCH
base="dc=upr,dc=si" scope=2 deref=0
filter="(&(objectClass=posixAccount)(uid=vmail))"
Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=1 SRCH attr=uid
userPassword uidNumber gidNumber cn homeDirectory loginShell gecos
description objectClass
Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=1 SEARCH RESULT
tag=101 err=0 nentries=1 text=
Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=2 SRCH
base="ou=Group,dc=upr,dc=si" scope=2 deref=0
filter="(&(objectClass=posixGroup)(cn=vmail))"
Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=2 SRCH attr=cn
userPassword memberUid uniqueMember gidNumber
Sep 21 09:28:18 perun slapd[1028]: <= bdb_equality_candidates: (cn)
index_param failed (18)
Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=2 SEARCH RESULT
tag=101 err=0 nentries=0 text=
Sep 21 09:28:18 perun slapd[1028]: conn=5797833 fd=14 ACCEPT from
IP=127.0.0.1:55221 (IP=0.0.0.0:389)
Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=0 BIND
dn="cn=Manager,dc=upr,dc=si" method=128
Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=0 BIND
dn="cn=Manager,dc=upr,dc=si" mech=SIMPLE ssf=0
Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=0 RESULT tag=97 err=0
text=
Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=1 SRCH
base="ou=People,dc=upr,dc=si" scope=2 deref=0 filter="(uid=mkljun)"
Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=1 SRCH attr=uid
./Maildir cn clearPassword userPassword uid
Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=1 SEARCH RESULT
tag=101 err=0 nentries=1 text=
authldaprc pa je tak:
LDAP_SERVER 127.0.0.1
LDAP_PORT 389
LDAP_PROTOCOL_VERSION 3
LDAP_BASEDN ou=People,dc=upr,dc=si
LDAP_BINDDN cn=skrbnik,dc=upr,dc=si
LDAP_BINDPW jatugregealo
LDAP_TIMEOUT 5
LDAP_MAIL uid
LDAP_GLOB_UID vmail
LDAP_GLOB_GID vmail
LDAP_HOMEDIR uid
LDAP_MAILROOT /home/vmail
LDAP_MAILDIR ./Maildir
LDAP_FULLNAME cn
LDAP_CLEARPW clearPassword
LDAP_CRYPTPW userPassword
LDAP_DEREF never
LDAP_TLS 0
More information about the lugos-list
mailing list