Kolab 3 murder issues
Fisher, Mike
Michael.Fisher at searshc.com
Tue Sep 22 14:02:48 CEST 2015
It's the mupdate that fails. If I disable it cyrus starts just fine.
Sep 22 08:01:25 kolabbe1 ctl_mboxlist[2412]: No worthy mechs found
Sep 22 08:01:25 kolabbe1 ctl_mboxlist[2412]: verify error:num=18:self signed certificate
Sep 22 08:01:25 kolabbe1 ctl_mboxlist[2412]: No worthy mechs found
Sep 22 08:01:25 kolabbe1 ctl_mboxlist[2412]: extra arguments recieved, aborting connection
Sep 22 08:01:25 kolabbe1 master[2409]: process type:START name:mupdatepush path:/usr/lib/cyrus-imapd/ctl_mboxlist age:0.000s pid:2412 exited, status 1
Sep 22 08:01:25 kolabbe1 master[2409]: can't run startup
Sep 22 08:01:25 kolabbe1 master[2409]: exiting
From: users-bounces at lists.kolab.org [mailto:users-bounces at lists.kolab.org] On Behalf Of Fisher, Mike
Sent: Tuesday, September 22, 2015 7:58 AM
To: Carlos R Laguna; users at lists.kolab.org
Subject: RE: Kolab 3 murder issues
Yes. both of those are set.
cat /etc/sasl2/smtpd.conf
pwcheck_method: auxprop
mech_list: plain login
saslauthd (pid 2307) is running...
From: users-bounces at lists.kolab.org [mailto:users-bounces at lists.kolab.org] On Behalf Of Carlos R Laguna
Sent: Monday, September 21, 2015 2:46 PM
To: users at lists.kolab.org
Subject: Re: Kolab 3 murder issues
El 17/09/15 a las 09:16, Fisher, Mike escribió:
When mupdate tries to run I get this:
Sep 17 08:56:12 kolabbe1 ctl_cyrusdb[2261]: recovering cyrus databases
Sep 17 08:56:12 kolabbe1 ctl_cyrusdb[2261]: done recovering cyrus databases
Sep 17 08:56:13 kolabbe1 ctl_mboxlist[2262]: No worthy mechs found
Sep 17 08:56:13 kolabbe1 ctl_mboxlist[2262]: verify error:num=18:self signed certificate
Sep 17 08:56:13 kolabbe1 ctl_mboxlist[2262]: No worthy mechs found
Sep 17 08:56:13 kolabbe1 ctl_mboxlist[2262]: extra arguments recieved, aborting connection
Sep 17 08:56:13 kolabbe1 master[2259]: process type:START name:mupdate path:/usr/lib/cyrus-imapd/ctl_mboxlist age:0.000s pid:2262 exited, status 1
Sep 17 08:56:13 kolabbe1 master[2259]: can't run startup
Sep 17 08:56:13 kolabbe1 master[2259]: exiting
But I can run mupdatetest as long as I specify:
mupdatetest -u cyrus -a cyrus -w xxxxxxx -m login -v kolabfe1
S: * AUTH "LOGIN" "DIGEST-MD5" "CRAM-MD5" "PLAIN"
S: * STARTTLS
S: * COMPRESS "DEFLATE"
S: * PARTIAL-UPDATE
S: * OK MUPDATE "kolabfe1.localhost.localdomain" "Cyrus Murder" "git2.5+0-Kolab-2.5-108.1.el6.kolab_3.4" "(master)"
C: A01 AUTHENTICATE "LOGIN"
S: VXNlcm5hbWU6
C: Y3lydXM=
S: UGFzc3dvcmQ6
C: MTIzNGFzZGY=
S: A01 OK "Authenticated"
Authenticated.
Security strength factor: 0
---------------------------------------saslauthd fail
mupdatetest -u cyrus -a cyrus -w xxxxxxx -m saslauthd -v kolabfe1
S: * AUTH "LOGIN" "DIGEST-MD5" "CRAM-MD5" "PLAIN"
S: * STARTTLS
S: * COMPRESS "DEFLATE"
S: * PARTIAL-UPDATE
S: * OK MUPDATE "kolabfe1.localhost.localdomain" "Cyrus Murder" "git2.5+0-Kolab-2.5-108.1.el6.kolab_3.4" "(master)"
Authentication failed. no mechanism available
Security strength factor: 0
cat /etc/sasl2/smtpd.conf
pwcheck_method: saslauthd
mech_list: plain login
root at kolabfe1 ~]# cat /etc/sasl2/smtpd.conf
pwcheck_method: saslauthd
mech_list: plain login
[root at kolabfe1 ~]# cat /etc/imapd.conf
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
admins: murder cyrus cyrus-admin
sievedir: /var/lib/imap/sieve
sendmail: /usr/sbin/sendmail
sasl_pwcheck_method: auxprop saslauthd
sasl_mech_list: PLAIN LOGIN CRAM-MD5 DIGEST-MD5
allowplaintext: 1
tls_server_cert: /etc/pki/cyrus-imapd/cyrus-imapd.pem
tls_server_key: /etc/pki/cyrus-imapd/cyrus-imapd.pem
# uncomment this if you're operating in a DSCP environment (RFC-4594)
# qosmarking: af13
auth_mech: pts
pts_module: ldap
ldap_servers: ldap://localhost:389
ldap_sasl: 0
ldap_base: dc=localhost,dc=localdomain
ldap_bind_dn: uid=kolab-service,ou=Special Users,dc=localhost,dc=localdomain
ldap_password: 1234asdf
ldap_filter: (|(&(|(uid=cyrus-admin)(uid=cyrus-murder))(uid=%U))(&(|(uid=%U)(mail=%U@%d)(mail=%U@%r))(objectclass=kolabinetorgperson)))
ldap_user_attribute: mail
ldap_group_base: dc=localhost,dc=localdomain
ldap_group_filter: (&(cn=%u)(objectclass=ldapsubentry)(objectclass=nsroledefinition))
ldap_group_scope: one
ldap_member_base: ou=People,dc=localhost,dc=localdomain
ldap_member_method: attribute
ldap_member_attribute: nsrole
ldap_restart: 1
ldap_timeout: 10
ldap_time_limit: 10
unixhierarchysep: 1
virtdomains: userid
annotation_definitions: /etc/imapd.annotations.conf
sieve_extensions: fileinto reject envelope body vacation imapflags notify include regex subaddress relational copy date index
allowallsubscribe: 0
allowusermoves: 1
altnamespace: 1
hashimapspool: 1
anysievefolder: 1
fulldirhash: 0
sieveusehomedir: 0
sieve_allowreferrals: 0
lmtp_downcase_rcpt: 1
lmtp_fuzzy_mailbox_match: 1
username_tolower: 1
deletedprefix: DELETED
delete_mode: delayed
expunge_mode: delayed
postuser: shared
mupdate_config: standard
mupdate_server: kolabfe1
mupdate_username: cyrus-admin
mupdate_password: xxxxx
mupdate_authname: cyrus-admin
proxyservers: cyrus-admin
proxy_password: xxxxxx
proxy_authname: cyrus-admin
defaultserver: kolabbe1
serverlist: kolabbe1
[root at kolabbe1 ~]# cat /etc/cyrus.conf
# standard standalone server implementation
START {
# do not delete this entry!
recover cmd="ctl_cyrusdb -r"
mupdate cmd="/usr/lib/cyrus-imapd/ctl_mboxlist -m"
# this is only necessary if using idled for IMAP IDLE
idled cmd="idled"
}
# UNIX sockets start with a slash and are put into /var/lib/imap/sockets
SERVICES {
# add or remove based on preferences
imap cmd="imapd" listen="imap" prefork=5
imaps cmd="imapd -s" listen="imaps" prefork=1
pop3 cmd="pop3d" listen="pop3" prefork=3
pop3s cmd="pop3d -s" listen="pop3s" prefork=1
sieve cmd="timsieved" listen="sieve" prefork=0
ptloader cmd="ptloader" listen="/var/lib/imap/ptclient/ptsock" prefork=0
# these are only necessary if receiving/exporting usenet via NNTP
#nntp cmd="nntpd" listen="nntp" prefork=3
#nntps cmd="nntpd -s" listen="nntps" prefork=1
# at least one LMTP is required for delivery
#lmtp cmd="lmtpd" listen="lmtp" prefork=0
lmtpunix cmd="lmtpd" listen="/var/lib/imap/socket/lmtp" prefork=1
# this is only necessary if using notifications
notify cmd="notifyd" listen="/var/lib/imap/socket/notify" proto="udp" prefork=1
}
EVENTS {
# this is required
checkpoint cmd="ctl_cyrusdb -c" period=30
# this is only necessary if using duplicate delivery suppression,
# Sieve or NNTP
duplicateprune cmd="cyr_expire -E 3" at=0400
# Expire data older then 69 days. Two full months of 31 days
# each includes two full backup cycles, plus 1 week margin
# because we run our full backups on the first sat/sun night
# of each month.
deleteprune cmd="cyr_expire -E 4 -D 69" at=0430
expungeprune cmd="cyr_expire -E 4 -X 69" at=0445
# this is only necessary if caching TLS sessions
tlsprune cmd="tls_prune" at=0400
# Create search indexes regularly
#squatter cmd="squatter -s -i" at=0530
}
Mike Fisher
_______________________________________________
users mailing list
users at lists.kolab.org<mailto:users at lists.kolab.org>
https://lists.kolab.org/mailman/listinfo/users
Hello,
Is the saslauthd service running?
Also make sure that saslauthd is set to sasldb. Regards
________________________________________________________________________ V Simposio Internacional de comunidad, entretenimiento y redes sociales, del 14 al 18 de marzo de 2016 en el Palacio de Convenciones de La Habana. http://www.informaticahabana.cu/es/eventos/show/100
This message, including any attachments, is the property of Sears Holdings Corporation and/or one of its subsidiaries. It is confidential and may contain proprietary or legally privileged information. If you are not the intended recipient, please delete it without reading the contents. Thank you.
This message, including any attachments, is the property of Sears Holdings Corporation and/or one of its subsidiaries. It is confidential and may contain proprietary or legally privileged information. If you are not the intended recipient, please delete it without reading the contents. Thank you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.kolab.org/pipermail/users/attachments/20150922/d49164ea/attachment-0001.html>
More information about the users
mailing list