[Dovecot] Pam as ip/user based login filter - working.
Timo Sirainen
tss at iki.fi
Sun Jun 18 00:04:03 EEST 2006
On Thu, 2006-04-13 at 10:42 +0300, Sysadmin wrote:
> So I try'd to make this happend with dovecot, made a separate passwd file and
> configured dovecot to use it:
>
> dovecot: Apr 11 13:42:48 Info: auth(default): passwd-file
> /etc/dovecot.outusers: Read 2 users
>
> /etc/dovecot.outusers includes
>
> test1:{plain}test1:500:502::/home/test::mail=maildir:~/Maildir allow_nets=0.0.0.0
> test2:{plain}test2:501:502::/home/test2::mail=maildir:~/Maildir
> allow_nets=172.0.0.0/24 192.0.0.0/24
>
> Still connecting from 172.17.25.3 to both accounts worked well so seems the code
> doesn't work.
So, I tested this now myself and it does seem to work in my tests..
One problem that I had was that the allow_nets setting (or others)
weren't used at all if you also didn't have the same file set as "userdb
passwd-file". But looking at the data in the file it looks like you did
use it?
Also other problem that I see is that the networks should have been
separated with commas.
Anyway, I also now added to CVS that if auth_debug=yes it'll print some
debug messages when checking the networks.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: This is a digitally signed message part
Url : http://dovecot.org/pipermail/dovecot/attachments/20060618/15b8fea0/attachment.pgp
More information about the dovecot
mailing list