[Dovecot] EXIM + Dovecot - Auth mechanism

Proskurin Kirill k.proskurin at fxclub.org
Thu Jul 3 13:12:06 EEST 2008


Hello all.

Sorry for a lot of question - im making a new mail system now.

Im wondering how to auth different MUA.
For example Thunderbird & The Bat 4.x - CRAM-MD5
MS Outlook 2007  - DIGEST-MD5

Im create a 3 users and store passwords in LDAP using MD5-CRYPT(1), 
CRYPT(2) and MD5(3) - for tests.

If im not use "secure connection" in thunderbird - im auth fine(plain 
text over SSL) but then im try to SMTP Auth by 1 and 2 user im got a error:

"Requested CRAM-MD5 scheme, but we have only CRYPT"

And after any auth in logs im have this:
dovecot: Jul 03 13:31:47 Error: auth(default): BUG: Authentication 
client gave a PID 70487 of existing connection

Then im try to auth by 3 user im got:
"Requested CRAM-MD5 scheme, but we have only PLAIN-MD5"

If thunderbird
Then im try to Auth in Outlook im got a error too:

auth(default): digest-md5(?,172.16.1.226): Invalid realm: domain.off


What should im do to auth successful in this scheme?

exim config:

begin authenticators

auth_plain:
driver = dovecot
public_name = PLAIN
server_socket = /var/run/dovecot/auth-client
server_set_id = $auth1

auth_login:
driver = dovecot
public_name = LOGIN
server_socket = /var/run/dovecot/auth-client
server_set_id = $auth1

auth_cram_md5:
driver = dovecot
public_name = CRAM-MD5
server_socket = /var/run/dovecot/auth-client
server_set_id = $auth1


%dovecot -n
# 1.1.1: /usr/local/etc/dovecot.conf
base_dir: /var/run/dovecot/
log_path: /var/log/dovecot/dovecot.log
info_log_path: /var/log/dovecot/dovecot.log
protocols: imap imaps pop3 pop3s
ssl_cert_file: /usr/local/etc/certs/cert.crt
ssl_key_file: /usr/local/etc/certs/cert.key
ssl_cipher_list: ALL:!LOW:!SSLv2
login_dir: /var/run/dovecot/login
login_executable(default): /usr/local/libexec/dovecot/imap-login
login_executable(imap): /usr/local/libexec/dovecot/imap-login
login_executable(pop3): /usr/local/libexec/dovecot/pop3-login
login_processes_count: 5
mail_max_userip_connections(default): 10
mail_max_userip_connections(imap): 10
mail_max_userip_connections(pop3): 3
verbose_proctitle: yes
first_valid_gid: 0
mail_privileged_group: mail
mail_uid: dmail
mail_gid: dmail
mail_location: maildir:/var/spool/dovecot/domains/%d/%n/
mail_debug: yes
mail_executable(default): /usr/local/libexec/dovecot/imap
mail_executable(imap): /usr/local/libexec/dovecot/imap
mail_executable(pop3): /usr/local/libexec/dovecot/pop3
mail_plugin_dir(default): /usr/local/lib/dovecot/imap
mail_plugin_dir(imap): /usr/local/lib/dovecot/imap
mail_plugin_dir(pop3): /usr/local/lib/dovecot/pop3
imap_client_workarounds(default): delay-newmail netscape-eoh 
tb-extra-mailbox-sep
imap_client_workarounds(imap): delay-newmail netscape-eoh 
tb-extra-mailbox-sep
imap_client_workarounds(pop3):
pop3_client_workarounds(default):
pop3_client_workarounds(imap):
pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh
auth default:
   mechanisms: plain login cram-md5 digest-md5
   user: dovecot-auth
   username_format: %Lu
   debug: yes
   passdb:
     driver: ldap
     args: /usr/local/etc/dovecot-ldap.conf
   userdb:
     driver: ldap
     args: /usr/local/etc/dovecot-ldap.conf
   socket:
     type: listen
     client:
       path: /var/run/dovecot/auth-client
       mode: 432
       user: exim
     master:
       path: /var/run/dovecot/auth-master
       mode: 384
       user: dovecot-auth

-- 
Best Regards,
Proskurin Kirill


More information about the dovecot mailing list