Re: [Exim] SMTP Auth against /etc/master.passwd on FreeBSD

Top Page
Delete this message
Reply to this message
Author: Jez Hancock
Date:  
To: Exim Users List
Subject: Re: [Exim] SMTP Auth against /etc/master.passwd on FreeBSD
On Tue, Apr 22, 2003 at 01:10:40PM +0100, Jez Hancock wrote:
> Thanks Alexander - to be honest I think I'll go with this option and build pwcheck alone from
> the cyrus-sasl suite and authenticate against it as you mention above. I did read about that
> option in the auth section of the 4.14 refdocs here:
>
> http://www.exim.org/exim-html-4.10/doc/html/spec_2.html#IX29

! I just realized you're responsible for providing support for pwcheck Alexander !

<quote=http://www.exim.org/exim-html-4.10/doc/html/spec_2.html#IX29>
    Support for calling the Cyrus pwcheck daemon is provided by
    code taken from the Cyrus-SASL library and adapted by Alexander S.
    Sabourenkov. The permission notice appears below, in accordance
    with the conditions expressed therein.
</quote>


Much obliged - exim + pwcheck is working wonderfully now after a fashion (had to
rm /var/pwcheck/pwcheck && chmod mailnull:mailnull /var/pwcheck
first (defaults to cyrus:cyrus ;/)).

Running pwcheck authentication for user "dummy"
pwcheck: success (NULL)
plain authenticator:
$1 =
$2 = dummy
$3 = dummy
expanded string: 1
SMTP>> 235 Authentication succeeded

235 Authentication succeeded

Joy. :)

By the way was there a typo in the LOGIN part you mentioned in your last mail:

> you are ready to go. Use
>
> server_condition = "${if pwcheck{$2:$3}{1}{0}}"
>
> for AUTH PLAIN and
>
> server_condition = "${if pwcheck{$2:$3}{1}{0}}"

                                   ^^^^^^^^^^^^
?
I've currently got my authenticators setup as:


------------------------------------------------------------------------------
begin authenticators

plain:
    driver = plaintext
    public_name = PLAIN
    server_condition = "${if pwcheck{$2:$3}{1}{0}}"


login:
    driver = plaintext
    public_name = LOGIN
    server_prompts = "Username:: : Password::"
    server_condition = "${if pwcheck{$1:$2}{1}{0}}"
------------------------------------------------------------------------------


The PLAIN method works at any rate, although I've yet to test the LOGIN method...


Much obliged anyway

Best regards,
Jez