HylaFAX The world's most advanced open source fax server

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

[hylafax-users] saslauthd & pam



i have setup saslauthd to use pam but i receive this error

tail -f /var/log/messages

Dec 15 11:34:28 linuxsles imap[3229]: accepted connection
Dec 15 11:34:43 linuxsles saslauthd[2622]: DEBUG: auth_pam: pam_authenticate failed: Permission denied
Dec 15 11:34:43 linuxsles saslauthd[2622]: do_auth         : auth failure: [user=prova] [service=imap] [realm=] [mech=pam] [reason=PAM auth error]
Dec 15 11:34:43 linuxsles imap[3229]: badlogin: [ 192.168.1.50] plaintext prova SASL(-13): authentication failure: checkpass failed
Dec 15 11:35:21 linuxsles PAM-devperm[3053]: opendir(/dev/snd/*): No such file or directory

i think that the problem is the "Permission Denied" but i don't understand where it not have the permissions


cat /etc/imapd.conf

configdirectory: /var/lib/imap
partition-default: /var/spool/imap
sievedir: /var/lib/sieve
admins: cyrus
allowanonymouslogin: no
autocreatequota: 0
reject8bit: no
quotawarn: 90
timeout: 30
poptimeout: 10
dracinterval: 0
drachost: localhost
sasl_pwcheck_method: saslauthd
lmtp_overquota_perm_failure: no
lmtp_downcase_rcpt: yes
unixhierarchysep: yes
allowplainwithouttls: yes
altnamespace: no
tls_cert_file: /etc/ssl/servercerts/servercert.pem
tls_key_file: /etc/ssl/servercerts/serverkey.pem
tls_ca_path: /etc/ssl/certs
#
# if you want TLS, you have to generate certificates and keys
#
#tls_cert_file: /usr/ssl/certs/cert.pem
#tls_key_file: /usr/ssl/certs/skey.pem
#tls_ca_file: /usr/ssl/CA/CAcert.pem
#tls_ca_path: /usr/ssl/CA


cat /etc/sysconfig/saslauthd
## Path:           System/Security/SASL
## Type:           list(getpwent,kerberos5,pam,rimap,shadow,ldap)
## Default:        pam
## ServiceRestart: saslauthd
#
# Authentication mechanism to use by saslauthd.
# See man 8 saslauthd for available mechanisms.
#
SASLAUTHD_AUTHMECH=pam
SASLAUTHD_OPTS=-V



cat /etc/pam.d/imap
#%PAM-1.0
#auth     include        common-auth
#account  include        common-account
#password include        common-password
#session  include        common-session

auth     sufficient      /lib/security/pam_winbind.so
account  sufficient      /lib/security/pam_winbind.so
password sufficient      /lib/security/pam_winbind.so
session  sufficient      /lib/security/pam_winbind.so



postconf -n
alias_maps = hash:/etc/aliases, ldap:/etc/postfix/ldapalias_maps_member.cf, ldap:/etc/postfix/ldapalias_maps.cf
biff = no
canonical_maps = hash:/etc/postfix/canonical
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter =
daemon_directory = /usr/lib/postfix
debug_peer_level = 2
defer_transports =
disable_dns_lookups = no
disable_mime_output_conversion = no
home_mailbox =
html_directory = /usr/share/doc/packages/postfix/html
inet_interfaces = all
inet_protocols = all
local_recipient_maps = $alias_maps, ldap:/etc/postfix/ldaplocal_recipient_maps.cf
mail_owner = postfix
mail_spool_directory =
mailbox_command =
mailbox_size_limit = 0
mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
masquerade_classes = envelope_sender, header_sender, header_recipient
masquerade_domains = ldap:/etc/postfix/ldapmasquerade_domains.cf
masquerade_exceptions = root
message_size_limit = 10240000
mydestination = $myhostname, localhost.$mydomain, $mydomain, ldap:/etc/postfix/ldapmydestination.cf
myhostname = linuxsles.prova.com
mynetworks = 127.0.0.0/8, 192.168.1.0/24, [fe80::]/64, [::1]/128
mynetworks_style = subnet
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/packages/postfix/README_FILES
relayhost =
relocated_maps = hash:/etc/postfix/relocated
sample_directory = /usr/share/doc/packages/postfix/samples
sender_canonical_maps = hash:/etc/postfix/sender_canonical
sendmail_path = /usr/sbin/sendmail
setgid_group = maildrop
smtp_enforce_tls = no
smtp_sasl_auth_enable = no
smtp_sasl_security_options = noanonymous
smtp_tls_enforce_peername = yes
smtp_tls_per_site = ldap:/etc/postfix/ldapsmtp_tls_per_site.cf
smtp_use_tls = yes
smtpd_banner = $myhostname ESMTP $mail_name
smtpd_client_restrictions = ldap:/etc/postfix/ldapaccess.cf
smtpd_helo_required = no
smtpd_helo_restrictions =
smtpd_recipient_restrictions = permit_auth_destination, permit_mynetworks, reject_unauth_destination, reject
smtpd_sasl_auth_enable = yes
smtpd_sender_restrictions = ldap:/etc/postfix/ldapaccess.cf
smtpd_tls_CApath = /etc/ssl/certs
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/ssl/servercerts/servercert.pem
smtpd_tls_key_file = /etc/ssl/servercerts/serverkey.pem
smtpd_use_tls = yes
strict_8bitmime = no
strict_rfc821_envelopes = no
transport_maps = ldap:/etc/postfix/ldaptransport_maps.cf
unknown_local_recipient_reject_code = 550
virtual_alias_domains = hash:/etc/postfix/virtual
virtual_alias_maps = ldap:/etc/postfix/ldapvirtual_alias_maps.cf, ldap:/etc/postfix/ldaplocal_recipient_maps.cf




Project hosted by iFAX Solutions