Home | Devuan | Git | Forum | Packages | Popcon
Donate now!
Download

Devuan bug report logs - #661
dovecot fails to authenticate system users

Package: dovecot-core; Maintainer for dovecot-core is (unknown); Source for dovecot-core is src:dovecot.

Reported by: David Matthews <mail@dmatthews.org>

Date: Sun, 30 Jan 2022 13:52:02 UTC

Severity: normal

Done: Mark Hindley <mark@hindley.org.uk>

Full log

🔗 View this message in rfc822 format

MIME-Version: 1.0
X-Mailer: MIME-tools 5.509 (Entity 5.509)
X-Loop: owner@bugs.devuan.org
From: "Devuan bug Tracking System" <owner@bugs.devuan.org>
To: David Matthews <mail@dmatthews.org>
Subject: bug#661 closed by Mark Hindley <mark@hindley.org.uk> (Re:
 bug#661: dovecot fails to authenticate system users)
Message-ID: <handler.661.D661.16768144891567.notifdone@bugs.devuan.org>
References: <Y/Ioe4012g4Rz7RA@hindley.org.uk>
 <561297883.11.1643550620818@eurydice.default.davcmat.uk0.bigv.io>
X-Devuan-PR-Message: they-closed 661
X-Devuan-PR-Package: dovecot-core
Reply-To: 661@bugs.devuan.org
Date: Sun, 19 Feb 2023 13:50:06 +0000
Content-Type: multipart/mixed; boundary="----------=_1676814606-1578-1"

[Message part 1 (text/plain, inline)]
This is an automatic notification regarding your bug report
which was filed against the dovecot-core package:

#661: dovecot fails to authenticate system users

It has been closed by Mark Hindley <mark@hindley.org.uk>.

Their explanation is attached below along with your original report.
If this explanation is unsatisfactory and you have not received a
better one in a separate message then please contact Mark Hindley <mark@hindley.org.uk> by
replying to this email.


-- 
661: https://bugs.devuan.org/cgi/bugreport.cgi?bug=661
Devuan Bug Tracking System
Contact owner@bugs.devuan.org with problems

[Message part 2 (message/rfc822, inline)]
From: Mark Hindley <mark@hindley.org.uk>
To: 661-close@bugs.devuan.org
Cc: David Matthews <mail@dmatthews.org>
Subject: Re: bug#661: dovecot fails to authenticate system users
Date: Sun, 19 Feb 2023 13:47:39 +0000
Review of installed binaries revealed fscrypt which is implemented in golang and
hooks PAM authentication with libpam-fscrypt.

Closing.

Mark
[Message part 3 (message/rfc822, inline)]
From: David Matthews <mail@dmatthews.org>
To: submit@bugs.devuan.org
Subject: dovecot fails to authenticate system users
Date: Sun, 30 Jan 2022 13:50:20 +0000 (GMT)
Package: dovecot-imapd  1:2.3.13+dfsg1-2 

This *seems to be* a devuan problem on version 4 as there is no similar problem on debian 11 with identical config (see dovecot -n below). It commenced after a dist-upgrade from devuan 3 on *two* separate machines.

I've tried to get help with this on the dovecot list, but no one was able to find the problem; lack of devuan experience was sited. I also tried creating a new system user on the version 4 system, but the problem is the same. It appears that dovecot is unable to read /etc/shadow as it is possible to create virtual users as per
https://wiki.dovecot.org/HowTo/SimpleVirtualInstall

cat /etc/devuan_version
chimaera

telnet localhost 143
Trying 127.0.0.1...
Connected to bulawayo.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN] Dovecot (Debian) ready.
a login david xxxxxxxxx
a NO [UNAVAILABLE] Temporary authentication failure. [bulawayo:2022-01-29 21:46:29]

sudo dovecot -n
[sudo] password for david:
# 2.3.13 (89f716dc2): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.5.13 (cdd19fe3)
# OS: Linux 5.10.0-11-amd64 x86_64 Debian 11.1
# Hostname: bulawayo
auth_debug = yes
auth_verbose = yes
mail_location = mbox:~/mail:INBOX=/var/mail/%u
mail_privileged_group = mail
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Sent {
special_use = \Sent
}
mailbox "Sent Messages" {
special_use = \Sent
}
mailbox Trash {
special_use = \Trash
}
prefix =
}
passdb {
args = /etc/dovecot/passwd
driver = passwd-file
}
passdb {
driver = pam
}
protocols = " imap"
service imap-login {
inet_listener imap {
port = 143
}
inet_listener imaps {
port = 993
ssl = yes
}
}
ssl_cert = </etc/dovecot/private/dovecot.pem
ssl_client_ca_dir = /etc/ssl/certs
ssl_dh = # hidden, use -P to show it
ssl_key = # hidden, use -P to show it
userdb {
args = uid=vmail gid=vmail home=/home/vmail/%u
driver = static
}
userdb {
driver = passwd
}

nb the problem existed before the first userdb block was added for virtual users.

--
David Matthews
mail@dmatthews.org

Send a report that this bug log contains spam.

Devuan BTS -- Powered by Debian bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.

Devuan Bugs Owner <owner@bugs.devuan.org>.
Last modified: Sun Apr 28 21:03:39 2024;