Re: [exim] missing authentication

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Hill Ruyter
Datum:  
To: exim-users
Betreff: Re: [exim] missing authentication
Hi all

not sure if this helps but this is what I use on a passwd like file
it is identical to passwd just in a different place so that users do not
have system accounts

Kind regards
Hill


server_condition = "${if
crypteq{$3}{${extract{1}{:}{${lookup{$2}lsearch{/other/directory/etc/passwd}{$value}{*:*}}}}}{1}{0}}"




----- Original Message -----
From: "Richard.Hall" <Richard.Hall@???>
To: "Leonardo Boselli" <leo@???>
Cc: <exim-users@???>
Sent: Wednesday, December 06, 2006 10:58 PM
Subject: Re: [exim] missing authentication


> Leonardo,
>
> On Wed, 6 Dec 2006, Chris Lightfoot wrote:
>
>> On Wed, Dec 06, 2006 at 10:40:58PM +0100, Leonardo Boselli wrote:
>> > On Wed, 6 Dec 2006, Stanislaw Halik wrote:
>> > > On Wed, Dec 06, 2006, Leonardo Boselli wrote:
>> > > Looks like the exim process can't read passwd or passwords moved to
>> > > shadow. Try `exim -be with that lookup line.'
>> >
>> > /etc/passwd is root:root 644, no shadow.
>> >
>> > leo@dipolo:~$ /usr/sbin/exim4 -be
>> > > server_condition = "${if
>> > crypteq{$2}{${lookup{$1:2}lsearch{/etc/passwd}{$value}fail}}{yes}{no}}"
>> >
>> > return:
>> >
>> > Failed: "lookup" failed and "fail" requested
>> >
>> > even substituting $1 and $2 vith real user:password pair !!!
>>
>> if you run exim4 with -d, what strings does it show being
>> generated in the expansion of the condition?
>
> What he said.
>
> I've not been following this closely, so I may be missing the point, but
> four things occur to me:-
>
> 1) You have 'lookup{$1:2}' - should that be 'lookup{$1:$2}' ?
>
> 2) The search key will (unless I've misunderstood) have a colon in it; I
> can imagine that will cause problems. From section 9.3 of the spec: "In
> most lsearch files, keys are not required to contain colons or #
> characters, or white space. However, if you need this feature, it is
> available. If a key begins with a doublequote character, it is terminated
> only by a matching quote (or end of line), and ..." Off the top of my
> head, I'd guess you'd need to search just on $1, then use ${extract to get
> the p/w field. Definitely not tested!!
>
> 3) more recent versions of Exim use $auth1 etc instead of $1 etc (though I
> think the old form still works?)
>
> 4) you say it used to work - if so, none of the above can possibly be
> relevant!!
>
> HTHBIDI
>
> Richard
>
>
> --
> ## List details at http://www.exim.org/mailman/listinfo/exim-users
> ## Exim details at http://www.exim.org/
> ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
>