I'm trying, and currently failing, to get pam authentication working on Exim 3.36 compiled on RedHat 8.0. The client machine is a Mac running Apple Mail, but that does not seem to be the problem because (a) if I replace the pam authentication with simply string comparison against fixed strings it works fine and (b) it is perfectly happy to talk to another server I know that runs Exim with pam authentication on Solaris. The pam configuration file for Exim is identical to the one that is set up for imapd, which works just fine. It's a standard "stacked" configuration and /etc/pam.d/exim reads:
#%PAM-1.0 auth required /lib/security/pam_stack.so service=system-auth account required /lib/security/pam_stack.so service=system-auth
The Exim configuration for plaintext authentication (only used over TLS) reads:
plain: driver = plaintext public_name = PLAIN server_condition = "${if pam{$2:$3}{1}{0}}" server_set_id = $2
When I log in using either the correct or an incorrect password the Exim mainlog shows:
2003-03-27 18:56:37 Authentication failed for <client host> (<server name>) [<IP address>]: 535 Incorrect authentication data
In the /var/log/messages I find:
Mar 27 18:56:34 <host> exim(pam_unix)[23864]: authentication failure; logname= uid=8 euid=8 tty= ruser= rhost= user=nicko
I'm running on RedHat 8.0, so pam_unix should be using unix_chkpwd and the fact that the mail server is UID=8 should not matter.
So, does anyone out there have any ideas as to why this is not working, or has anyone else seen this same problem?
Thanks in advance,
Nicko
_______________________________________________ Pam-list@xxxxxxxxxx https://listman.redhat.com/mailman/listinfo/pam-list