Home | Devuan | Git | Forum | Packages | Popcon
Donate now!
Download

Devuan bug report logs - #661
dovecot fails to authenticate system users

Package: dovecot-core; Maintainer for dovecot-core is (unknown); Source for dovecot-core is src:dovecot.

Reported by: David Matthews <mail@dmatthews.org>

Date: Sun, 30 Jan 2022 13:52:02 UTC

Severity: normal

Done: Mark Hindley <mark@hindley.org.uk>

Full log

🔗 View this message in rfc822 format

X-Loop: owner@bugs.devuan.org
Subject: bug#661: dovecot fails to authenticate system users
Reply-To: David Matthews <mail@dmatthews.org>, 661@bugs.devuan.org
Resent-From: David Matthews <mail@dmatthews.org>
Resent-To: devuan-bugs@lists.dyne.org
Resent-CC: devuan-dev@lists.dyne.org
X-Loop: owner@bugs.devuan.org
Resent-Date: Sun, 30 Jan 2022 13:52:02 +0000
Resent-Message-ID: <handler.661.B.164355067415972@bugs.devuan.org>
Resent-Sender: owner@bugs.devuan.org
X-Devuan-PR-Message: report 661
X-Devuan-PR-Package: dovecot-imapd  1:2.3.13+dfsg1-2
X-Devuan-PR-Keywords: 
Received: via spool by submit@bugs.devuan.org id=B.164355067415972
          (code B); Sun, 30 Jan 2022 13:52:02 +0000
Received: (at submit) by bugs.devuan.org; 30 Jan 2022 13:51:14 +0000
Delivered-To: devuanbugs@dyne.org
Received: from tupac3.dyne.org [195.169.149.119]
	by doc.devuan.org with IMAP (fetchmail-6.4.16)
	for <debbugs@localhost> (single-drop); Sun, 30 Jan 2022 13:51:14 +0000 (UTC)
Received: from eurydice.default.davcmat.uk0.bigv.io (dmatthews.org [213.138.100.30])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by mail.dyne.org (Postfix) with ESMTPS id 6B5C76613E4
	for <submit@bugs.devuan.org>; Sun, 30 Jan 2022 14:50:30 +0100 (CET)
Authentication-Results: mail.dyne.org;
	dkim=pass (1024-bit key; unprotected) header.d=dmatthews.org header.i=@dmatthews.org header.b="PCaNYTje";
	dkim-atps=neutral
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
	d=dmatthews.org; s=202002; h=Content-Transfer-Encoding:Content-Type:
	MIME-Version:Subject:In-Reply-To:Message-ID:To:Reply-To:From:Date:Sender:Cc:
	Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender:
	Resent-To:Resent-Cc:Resent-Message-ID:References:List-Id:List-Help:
	List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive;
	bh=/yuZDn4PBy9nVLNwNs1pY/BbnsVG9oi2h3azfTVAtU0=; b=PCaNYTje4i5GhBo3JwEOXmiemm
	UPzT8k+fVTE9IW/npCwWy60/jZnOaHfgGnPpnQGABaPWzP0O3DXPj+tbng7b289U4xgCoQW09Ezzz
	Rk+gQXNEoNEyNPaLjJUaNXpWiTEbEuepVE2Kn4vqs2gt8A3vjO/Zeyy17htcXOAiN6jw=;
Received: from localhost ([127.0.0.1] helo=eurydice.default.davcmat.uk0.bigv.io)
	by eurydice.default.davcmat.uk0.bigv.io with esmtp (Exim 4.94.2)
	(envelope-from <mail@dmatthews.org>)
	id 1nEAay-0000yg-Rg
	for submit@bugs.devuan.org; Sun, 30 Jan 2022 13:50:29 +0000
Date: Sun, 30 Jan 2022 13:50:20 +0000 (GMT)
From: David Matthews <mail@dmatthews.org>
To: submit@bugs.devuan.org
Message-ID: <561297883.11.1643550620818@eurydice.default.davcmat.uk0.bigv.io>
In-Reply-To: <handler.x.B.16435460755296.nonumnosub@bugs.devuan.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Spam-Status: No, score=-0.2 required=5.0 tests=DKIM_SIGNED,DKIM_VALID,
	DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_BLOCKED,SPF_PASS,
	URIBL_BLOCKED autolearn=disabled version=3.4.2
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on mail.dyne.org

Package: dovecot-imapd  1:2.3.13+dfsg1-2 

This *seems to be* a devuan problem on version 4 as there is no similar problem on debian 11 with identical config (see dovecot -n below). It commenced after a dist-upgrade from devuan 3 on *two* separate machines.

I've tried to get help with this on the dovecot list, but no one was able to find the problem; lack of devuan experience was sited. I also tried creating a new system user on the version 4 system, but the problem is the same. It appears that dovecot is unable to read /etc/shadow as it is possible to create virtual users as per
https://wiki.dovecot.org/HowTo/SimpleVirtualInstall

cat /etc/devuan_version
chimaera

telnet localhost 143
Trying 127.0.0.1...
Connected to bulawayo.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN] Dovecot (Debian) ready.
a login david xxxxxxxxx
a NO [UNAVAILABLE] Temporary authentication failure. [bulawayo:2022-01-29 21:46:29]

sudo dovecot -n
[sudo] password for david:
# 2.3.13 (89f716dc2): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.5.13 (cdd19fe3)
# OS: Linux 5.10.0-11-amd64 x86_64 Debian 11.1
# Hostname: bulawayo
auth_debug = yes
auth_verbose = yes
mail_location = mbox:~/mail:INBOX=/var/mail/%u
mail_privileged_group = mail
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Sent {
special_use = \Sent
}
mailbox "Sent Messages" {
special_use = \Sent
}
mailbox Trash {
special_use = \Trash
}
prefix =
}
passdb {
args = /etc/dovecot/passwd
driver = passwd-file
}
passdb {
driver = pam
}
protocols = " imap"
service imap-login {
inet_listener imap {
port = 143
}
inet_listener imaps {
port = 993
ssl = yes
}
}
ssl_cert = </etc/dovecot/private/dovecot.pem
ssl_client_ca_dir = /etc/ssl/certs
ssl_dh = # hidden, use -P to show it
ssl_key = # hidden, use -P to show it
userdb {
args = uid=vmail gid=vmail home=/home/vmail/%u
driver = static
}
userdb {
driver = passwd
}

nb the problem existed before the first userdb block was added for virtual users.

--
David Matthews
mail@dmatthews.org

Send a report that this bug log contains spam.

Devuan BTS -- Powered by Debian bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.

Devuan Bugs Owner <owner@bugs.devuan.org>.
Last modified: Sun Apr 28 21:07:16 2024;