Cyrus IMAP v2.3.3 and above have TLS support. You might have to add the "--tls" switch to make it work. For older versions see the patch on https://bugzilla.andrew.cmu.edu/show_bug.cgi?id=2036 > -----Original Message----- > From: info-cyrus-bounces@xxxxxxxxxxxxxxxxxxxx [mailto:info-cyrus- > bounces@xxxxxxxxxxxxxxxxxxxx] On Behalf Of Daniel Eckl > Sent: Wednesday, August 02, 2006 10:41 AM > To: Joe Harvell > Cc: info-cyrus@xxxxxxxxxxxxxxxxxxxx > Subject: Re: unable to login with cyradm > > Hi Joe! > > Cyradm (or only your cyradm? Dunno...) might not be SSL capable. > > So either use port 143 to connect or if you have to user IMAPS Port 993, > then you could establish an ssl tunnel with stunnel program. > > Best, > Daniel > > Joe Harvell schrieb: > > Could someone *please* take a look at this? > > > > Joe Harvell wrote: > >> I used cyradm a long time ago to set up two mailboxes, and now I need > to > >> use it again, but I can't login: > >> > >> I am running cyrus-imapd 2.2.12. I know that the latest 2.3 version > >> supports TLS with cyradm. But I am not ready to upgrade. I just want > >> to be able to run cyradm from the localhost. Here is what happens when > >> I enter the cyradm command: > >> > >> jharvell@dingo ~ $ cyradm --user cyrus --server localhost --port 993 > >> IMAP Password: > >> jharvell@dingo ~ $ > >> > >> > >> Here is my syslog: > >> > >> Jul 31 17:10:13 dingo master[18188]: about to exec /usr/lib/cyrus/imapd > >> Jul 31 17:10:13 dingo imaps[18188]: executed > >> Jul 31 17:10:13 dingo imaps[18188]: auxpropfunc error invalid parameter > >> supplied > >> Jul 31 17:10:13 dingo imaps[18188]: _sasl_plugin_load failed on > >> sasl_auxprop_plug_init for plugin: ldapdb > >> Jul 31 17:10:13 dingo imaps[18188]: sql_select option missing > >> Jul 31 17:10:13 dingo imaps[18188]: auxpropfunc error no mechanism > available > >> Jul 31 17:10:13 dingo imaps[18188]: _sasl_plugin_load failed on > >> sasl_auxprop_plug_init for plugin: sql > >> Jul 31 17:10:13 dingo imaps[18188]: accepted connection > >> Jul 31 17:10:13 dingo imaps[18188]: imaps TLS negotiation failed: > >> localhost [127.0.0.1] > >> Jul 31 17:10:13 dingo imaps[18188]: Fatal error: tls_start_servertls() > >> failed > >> Jul 31 17:10:13 dingo master[31124]: process 18188 exited, status 75 > >> Jul 31 17:10:13 dingo master[31124]: service imaps pid 18188 in BUSY > >> state: terminated abnormally > >> > >> And here is my imapd.conf: > >> > >> # $Header: > >> /var/cvsroot/gentoo-x86/net-mail/cyrus-imapd/files/imapd.conf,v 1.5 2 > >> 004/08/27 06:02:45 langthang Exp $ > >> > >> # Don't forget to use chattr +S (if you are using ext[23]) > >> # when you change these directories (read the docs). > >> configdirectory: /var/imap > >> partition-default: /var/spool/imap > >> sievedir: /var/imap/sieve > >> > >> tls_ca_path: /etc/ssl/certs > >> tls_cert_file: /etc/ssl/cyrus/dingo.x509.pem > >> tls_key_file: /etc/ssl/cyrus/dingo.rsakeys.pem > >> > >> # Don't use an everyday user as admin. > >> admins: cyrus > >> > >> hashimapspool: yes > >> allowanonymouslogin: no > >> allowplaintext: no > >> > >> # Allow renaming of top-level mailboxes. > >> #allowusermoves: yes > >> > >> # Use this if sieve-scripts could be in ~user/.sieve. > >> #sieveusehomedir: yes > >> > >> # Use saslauthd if you want to use pam for imap. > >> # But be warned: login with DIGEST-MD5 or CRAM-MD5 > >> # is not possible using pam. > >> sasl_pwcheck_method: saslauthd > >> > >> servername: dingo.dogpad.net. > >> > >> #################################################### > >> ## This is a recommended authentication method if you > >> ## emerge cyrus-sasl with 'postgres' or 'mysql' > >> ## To use with mysql database uncomment those lines below. > >> > >> #sasl_pwcheck_method: auxprop > >> #sasl_auxprop_plugin: sql > >> > >> ## possible values for sasl_auxprop_plugin 'mysql', 'pgsql', 'sqlite'. > >> #sasl_sql_engine: mysql > >> > >> ## all possible values. > >> #sasl_mech_list: LOGIN PLAIN CRAM-MD5 DIGEST-MD5 NTLM > >> ## or limit to CRAM-MD5 only > >> #sasl_mech_list: CRAM-MD5 > >> > >> ## change below to suit your setup. > >> #sasl_sql_user: mailsqluser > >> #sasl_sql_passwd: password > >> #sasl_sql_database: mailsqldb > >> #sasl_sql_hostnames: localhost > >> #sasl_sql_select: SELECT clear FROM users WHERE email = '%u@%r' > >> > >> ---- > >> Cyrus Home Page: http://asg.web.cmu.edu/cyrus > >> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > >> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > > > ---- > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > ---- > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html ---- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
