Bug#728339: plain/login authentication failure - no mechanism available
Christian Schwamborn
cs at mail.architektur.tu-darmstadt.de
Wed Oct 30 21:29:42 UTC 2013
Package: cyrus-sasl2
Version: 2.1.25.dfsg1-6+deb7u1
Severity: important
A quote from the upstream bugreport:
Formerly (as of 2.1.23) SASL library did not care if there was no
auxprop plugin set up/present, current (2.1.25) library _requires_ the
presence of properly comfigured and working auxprop plugin, making SASL
usesless as an auth provider in daily operations.
The following configuration works with cyrus-sasl 2.1.23 and fails
miserably with "no mechs available" with cyrus-sasl 2.1.25:
- run saslauthd with pam as an auth mechanism
- run postfix (or any other daemon) with pwcheck_method set to saslauthd
The root cause is the call to _sasl_auxprop_lookup_user_props that has
been added to _sasl_canon_user(_lookup) which causes authentication to
fail if no auxprop plugin in configured.
<end of quote>
This issue is known in the cyrus-sasl and ubuntu bugtracker aswell:
https://bugzilla.cyrusimap.org/show_bug.cgi?id=3590
https://bugs.launchpad.net/ubuntu/+source/cyrus-sasl2/+bug/875440
I attached the patch from revision d1b57852247641be30decc480b0719d322f0bc5c
I hope this can be applied to wheeze, since it really breaks an easy
mailserver setup.
Cheers,
Christian Schwamborn
-------------- next part --------------
A non-text attachment was scrubbed...
Name: cyrus-sasl-fixed-plain-login-authentication-failure.patch
Type: text/x-patch
Size: 4049 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-cyrus-sasl2-debian-devel/attachments/20131030/90edcd16/attachment.bin>
More information about the Pkg-cyrus-sasl2-debian-devel
mailing list