[LUGOS] courier-imap in branje Maildir
Matjaz Kljun
matjaz.kljun at pef.upr.si
Fri Sep 21 10:52:26 CEST 2007
Še nekaj sem ugotovil, če bo komu kaj bolj jasno. Očitno imam napako v
authldaprc in sicer pri naslednjih vrsticah:
LDAP_HOMEDIR uid
LDAP_MAILROOT /home/vmail
LDAP_MAILDIR ./Maildir
LDAP_FULLNAME cn
LDAP_CLEARPW clearPassword
LDAP_CRYPTPW userPassword
Maildiri niso spravljeni v domačih direktorijih uporabnikov. Zato sem po
navodilih v config fajlu nekako sklepal takole ga sestavit:
/home/vmail/uid/Maildir
Kjer je uid uporabniško ime uporabnika v LDAP imeniku. Lahko pa jaz
slabo razumem
dokumentacijo :(.
Ko se logirata uporabnika mkljun ali akramar mi LDAP log javi za oba
uporabnika
Sep 21 10:43:25 perun slapd[1028]: conn=5800416 op=1 SRCH
base="ou=People,dc=upr,dc=si" scope=2 deref=0 filter="(uid=andrej.kramar)"
Sep 21 10:43:25 perun slapd[1028]: conn=5800416 op=1 SRCH attr=uid
./Maildir cn clearPassword userPassword uid
Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=1 SRCH base="ou=People,dc=upr,dc=si" scope=2 deref=0 filter="(uid=mkljun)"
Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=1 SRCH attr=uid ./Maildir cn clearPassword userPassword uid
V obeh primerih se najprej avtenticira vmail in nato išče uporabnika in
njegove prilastke.
Zakaj oba uporabnika padeta v Maildir uporabnika mkljun??
lp mk
Matjaz Kljun wrote:
> Jernej Simončič wrote:
>
>> On Thursday, September 20, 2007, 21:19:29, Matjaz Kljun wrote
>>
>>> Uporabnike imam v LDAP imeniku.
>>> Authdaemon se uspešno avtenticira iz LDAP imenika, kar je razvidno iz logov.
>>>
>>>
>> Ali imaš nastavljen LDAP_GLOB_UID in LDAP_GLOB_GID v authldaprc?
>>
>>
>
> Sedaj na vmail :). Očitno je bilo to (in še nekaj drugih reči).
>
> Problem pa je sedaj drugačen. Vsi uporabniki vidijo pošto uporabnika mkljun?
> Kako je to možno. Dva uporabnika sta se logirala in videla isti maildir.
>
> V imapd-ssl imam nastavljeno naslednje:
> MAILDIRPATH=/home/vmail/$USER/Maildir
>
> In kljub temu da je logiran preko ldapa akramar bere pošto od uporabnika
> mkljun
> perun# ps axu | grep courier
> Administrator 70458 0.0 0.1 3488 1604 p0 S 9:50AM 0:00.00
> /usr/lib/courier-imap/libexec/authlib/authdaemond.ldap
> Administrator 70461 0.0 0.0 1268 832 p0 S 9:50AM 0:00.01
> [couriertcpd]
> Administrator 70463 0.0 0.0 1204 680 p0 S 9:50AM 0:00.00
> /usr/lib/courier-imap/sbin/courierlogger imapd-ssl
> Administrator 70474 0.0 0.1 2712 1716 p0 S 9:51AM 0:00.02
> /usr/lib/courier-imap/bin/couriertls -server -tcpd
> /usr/lib/courier-imap/sbin/imapl
> vmail 70476 0.0 0.1 2664 1948 p0 S 9:51AM 0:00.03
> /usr/lib/courier-imap/bin/imapd /home/vmail/mkljun/Maildir
>
> Ta zadnja vrstica me skrbi ...
>
> Log mi javlja naslednje:
> (famd in portmap sicer ne bi smela imeti s tem veze)
> Sep 21 09:30:48 perun imapd-ssl: Check for proper operation and
> configuration
> Sep 21 09:30:48 perun imapd-ssl: of the File Access Monitor daemon (famd).
> Sep 21 09:30:49 perun imapd-ssl: Failed to create cache file:
> maildirwatch (mkljun)
> Sep 21 09:30:49 perun imapd-ssl: Error: Input/output error
> Sep 21 09:30:49 perun imapd-ssl: Check for proper operation and
> configuration
> Sep 21 09:30:49 perun imapd-ssl: of the File Access Monitor daemon (famd).
>
> Medtem ko se ldap uspešno binda:
> Sep 21 09:28:18 perun slapd[1028]: conn=5797832 fd=11 ACCEPT from
> IP=127.0.0.1:63322 (IP=0.0.0.0:389)
> Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=0 BIND dn="" method=128
> Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=0 RESULT tag=97 err=0
> text=
> Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=1 SRCH
> base="dc=upr,dc=si" scope=2 deref=0
> filter="(&(objectClass=posixAccount)(uid=vmail))"
> Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=1 SRCH attr=uid
> userPassword uidNumber gidNumber cn homeDirectory loginShell gecos
> description objectClass
> Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=1 SEARCH RESULT
> tag=101 err=0 nentries=1 text=
> Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=2 SRCH
> base="ou=Group,dc=upr,dc=si" scope=2 deref=0
> filter="(&(objectClass=posixGroup)(cn=vmail))"
> Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=2 SRCH attr=cn
> userPassword memberUid uniqueMember gidNumber
> Sep 21 09:28:18 perun slapd[1028]: <= bdb_equality_candidates: (cn)
> index_param failed (18)
> Sep 21 09:28:18 perun slapd[1028]: conn=5797832 op=2 SEARCH RESULT
> tag=101 err=0 nentries=0 text=
> Sep 21 09:28:18 perun slapd[1028]: conn=5797833 fd=14 ACCEPT from
> IP=127.0.0.1:55221 (IP=0.0.0.0:389)
> Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=0 BIND
> dn="cn=Manager,dc=upr,dc=si" method=128
> Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=0 BIND
> dn="cn=Manager,dc=upr,dc=si" mech=SIMPLE ssf=0
> Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=0 RESULT tag=97 err=0
> text=
> Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=1 SRCH
> base="ou=People,dc=upr,dc=si" scope=2 deref=0 filter="(uid=mkljun)"
> Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=1 SRCH attr=uid
> ./Maildir cn clearPassword userPassword uid
> Sep 21 09:28:18 perun slapd[1028]: conn=5797833 op=1 SEARCH RESULT
> tag=101 err=0 nentries=1 text=
>
> authldaprc pa je tak:
> LDAP_SERVER 127.0.0.1
> LDAP_PORT 389
> LDAP_PROTOCOL_VERSION 3
> LDAP_BASEDN ou=People,dc=upr,dc=si
> LDAP_BINDDN cn=skrbnik,dc=upr,dc=si
> LDAP_BINDPW jatugregealo
> LDAP_TIMEOUT 5
> LDAP_MAIL uid
> LDAP_GLOB_UID vmail
> LDAP_GLOB_GID vmail
> LDAP_HOMEDIR uid
> LDAP_MAILROOT /home/vmail
> LDAP_MAILDIR ./Maildir
> LDAP_FULLNAME cn
> LDAP_CLEARPW clearPassword
> LDAP_CRYPTPW userPassword
> LDAP_DEREF never
> LDAP_TLS 0
>
> _______________________________________________
> lugos-list mailing list
> lugos-list na lugos.si
> http://liste2.lugos.si/cgi-bin/mailman/listinfo/lugos-list
>
More information about the lugos-list
mailing list