2.2-rc3 critique: FAILS '"' CONTAINING PASSWORDS!!!!

Gunnar Wrobel wrobel at pardus.de
Mon Jun 23 13:51:22 CEST 2008 

Hi Johannes,

Johannes Graumann <johannes_graumann at web.de> writes:

> Hi,
>
> 1) Completely fresh openpkg install/bootstrap
> 2) Create a new user
> 3) Try to use new user:
>         a) admin interface works
>         b) horde doesn't
>         c) kontact doesn't
> 4) Investigate:
>         a) manually bind to openldap:
>         root# /kolab/bin/ldapsearch -b dc=graumanage,dc=net -s base -D 'cn=Johannes             
>         Graumann,dc=graumanage,dc=net' -h 127.0.0.1 -x -w '<MYPASSWD>'
>
>         Output in the shell:
>          # extended LDIF
>         #
>         # LDAPv3
>         # base <dc=graumanage,dc=net> with scope baseObject
>         # filter: (objectclass=*)
>         # requesting: ALL
>         #
>         
>         # graumanage.net
>         dn: dc=graumanage,dc=net
>         dc: graumanage
>         objectClass: top
>         objectClass: domain
>         
>         # search result
>         search: 2
>         result: 0 Success
>         
>         # numResponses: 2
>         # numEntries: 1
>         b) equivalent output when observing slapd debugging (as advised here:   
>         http://wiki.kolab.org/index.php/Kolab2_Server_Troubleshooting_-_LDAP)
>         c) appropriate slapd debugging output when logging into admin interface
>         d) NO slapd output when attempting to use horde
>         e) only trace of horde login:
>                 tail /kolab/var/apache/log/horde/horde.log 
>                 Jun 18 22:14:05 HORDE [error] [horde] FAILED LOGIN for Johannes Graumann        
>                 [192.168.0.2] to Horde [pid 25084 on line 157 
>                 of "/kolab/var/kolab/www/horde/login.php"]
>         ==> this looked up somewhere that the email given was linked to my name, 
>                 but still fails ...
>         f) /kolab/bin/cyradm --user johannes.graumann at graumanage.net localhost
>                   Password ...
>                   IMAP password ... 
>         FAILS
> 5) Partial solution to cyrus based problems:
>         USE PASSWORD WITHOUT '"' and imap-based stuff just works!!!!?????
>         ==> cyradmin login works (also with explicitly escaped '"')
>         ==> much of kontact functionality therefore works
> 6) Remaining problems:
>         a) No horde login - pointers for better troubleshooting?
>         b) LDAP lookup from within kontact: still NO TLS or SSL
>         c) call up contact: still one stalling progress bar for an unidentifiable
>         connection to the server - what might this be?
>
> Comments? Joh

Thanks for the report. I added this as
https://www.intevation.de/roundup/kolab/issue2809.

I don't know why nobody had this issue before. I'm not certain it is
easy to solve but it should at least be possible to add a check in the
webadmin.

Cheers,

Gunnar

>
> _______________________________________________
> Kolab-users mailing list
> Kolab-users at kolab.org
> https://kolab.org/mailman/listinfo/kolab-users

-- 
______ http://kdab.com _______________ http://kolab-konsortium.com _

p at rdus Kolab work is funded in part by KDAB and the Kolab Konsortium

____ http://www.pardus.de _________________ http://gunnarwrobel.de _
E-mail : p at rdus.de                                 Dr. Gunnar Wrobel
Tel.   : +49 700 6245 0000                          Bundesstrasse 29
Fax    : +49 721 1513 52322                          D-20146 Hamburg
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   >> Mail at ease - Rent a kolab groupware server at p at rdus <<                 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

More information about the users mailing list