Re: [exim] auth fails, yet lookup succeeds

Kezdőlap
Üzenet törlése
Válasz az üzenetre
Szerző: Rob Lingelbach
Dátum:  
Címzett: exim-users
Tárgy: Re: [exim] auth fails, yet lookup succeeds
forgot to mention am using dovecot as IMAP server ... but haven't
thought the problem lies
with dovecot because the following authenticator works fine (whereas
the filelookup
authenticator as shown quoted below fails):

fixed_login:
     driver = plaintext
     public_name = LOGIN
     server_prompts = User Name : Password
     server_condition = \
       ${if and {{eq{$1}{rob}}{eq{$2}{password}}}{yes}{no}}
     server_set_id = $1




On Oct 10, 2006, at 5:49 , Rob Lingelbach wrote:

> I'm using exim 4.41 on Fedora. Trying to use plaintext
> authentication with IMAP, passwords stored in a file, running exim
> in debug mode
> when sending a message to a user who should be authenticated gives:
>
> 24848 search_open: lsearch "/etc/exim/auth"
> 24848 search_find: file="/etc/exim/auth"
> 24848 key="rob" partial=-1 affix=NULL starflags=0
> 24848 LRU list:
> 24848 :/etc/exim/auth
> 24848 End
> 24848 internal_search_find: file="/etc/exim/auth"
> 24848 type=lsearch key="rob"
> 24848 file lookup required for rob
> 24848 in /etc/exim/auth
> 24848 lookup yielded: $1$JP6E/woL
> $Nk8edI1IXRyp4Bt.ZI4yW0:13392:0:99999:7:::
> 24848 crypteq: using crypt()
> 24848 subject=$1$JP6E/woL$zpu//FDOm3pWUX4GtnxsL.
> 24848 crypted=$1$JP6E/woL$Nk8edI1IXRyp4Bt.ZI4yW0
> 24848 fixed_login authenticator:
> 24848 $1 = rob
> 24848 $2 = [password suppressed]
> 24848 expanded string: 0
> 24848 SMTP>> 535 Incorrect authentication data
> 24848 LOG: MAIN REJECT
>
> it all seems to work just fine above -- the file lookup, the
> decrypt, etc. until SMTP gives the 535 Incorrect error.
> Here is my exim4.conf entry for this authenticator:
>
> fixed_login:
>   driver = plaintext
>   public_name = LOGIN
>   server_prompts = Username:: : Password::
>   server_condition = "${if and {{!eq{$1}{}}{!eq{$2}{}} \
>     {crypteq{$2}{${extract{1}{:} \
>     {${lookup{$1}lsearch{/etc/exim/auth}{$value}{*:*}}}}}}}{1}{0}}"

>
> -----
> I think I'm doing something fundamentally erroneous :/ any help
> appreciated.
> incidentally an "in the clear" non-encrypted login using a server
> condition that
> gives the username and password in the clear does not fail and
> passes the mail.
>
> thanks
> Rob
> rob@???