Re: [Exim] smtp authentication

Top Page
Delete this message
Reply to this message
Author: Matt Bernstein
Date:  
To: Mitchell Smith
CC: exim-users
Subject: Re: [Exim] smtp authentication
At 10:07 +1000 Mitchell Smith wrote:

>I am trying to authenticate from the /etc/shadow file via PAM.

[snip]
>Here is the error I am getting in my exim logs when I try and authenticate.
>
>2002-07-22 16:56:51 Authentication failed for
>golax6-118.dialup.optusnet.com.au (titanium) [211.28.134.118]: 535 Incorrect
>authentication data
>
>This is what I have in my /etc/exim/exim.conf file
>
># SMTP Authentication
> plain:
> driver = plaintext
> public_name = PLAIN
> server_condition = "${if pam{$2:$3}{1}{0}}"
> server_set_id = $2


Two things:

1.    Try ${if pam{$2:${sg{$3}{:}{::}}}{1}{0}}


    (if this works we know you've got a ":" in your password ;)


>My /etc/pam.d/exim file is as follows.
>
># PAM configuration for exim
>auth     required       pam_unix_auth.so shadow
>account  required       pam_unix_acct.so


Ahh.. are you using shadow passwords, which Exim can't read as it's not
running as root?

Someone made a pam_exim module (google for it), which might help, or (if
you're feeling nice and insecure or just want to prove this is what bit
you) you could stick the exim (or mail or whatever Debian call it) user a
member of a group which can read /etc/shadow.

Any good?

Matt