Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: exim: dev

[Bug 598] New: dovecot authenticator incorrect protocol handling

  

 
exim dev RSS feed   Index | Next | Previous | View Threaded


w at wrzask

Sep 11, 2007, 3:35 AM

Post #1 of 3 (1206 views)
Permalink
[Bug 598] New: dovecot authenticator incorrect protocol handling
------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=598
Summary: dovecot authenticator incorrect protocol handling
Product: Exim
Version: 4.67
Platform: All
OS/Version: All
Status: NEW
Severity: bug
Priority: medium
Component: SMTP Authentication
AssignedTo: ph10 [at] hermes
ReportedBy: w [at] wrzask
CC: exim-dev [at] exim


The dovecot authenticator doesn't make much effort to handle the auth protocol
correctly. The protocol itself is described here:

http://wiki.dovecot.org/Authentication_Protocol

The exim dovecot auth fails to work when there are additional fields specified
by the authentication configuration (as in case of LDAP or SQL dovecot setup),
as it assumes a fixed-length array of arguments for the "OK" or "FAIL"
authentication server responses. I have written a patch which fixes the problem
and handles the protocol correctly.


--
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

--
## List details at http://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##


johannes at sipsolutions

Apr 13, 2009, 3:17 AM

Post #2 of 3 (884 views)
Permalink
Re: [Bug 598] New: dovecot authenticator incorrect protocol handling [In reply to]
Jan,

> The dovecot authenticator doesn't make much effort to handle the auth protocol
> correctly. The protocol itself is described here:
>
> http://wiki.dovecot.org/Authentication_Protocol
>
> The exim dovecot auth fails to work when there are additional fields specified
> by the authentication configuration (as in case of LDAP or SQL dovecot setup),
> as it assumes a fixed-length array of arguments for the "OK" or "FAIL"
> authentication server responses. I have written a patch which fixes the problem
> and handles the protocol correctly.

Does your patch also address the problem where, when a user enters a
password wrong once, subsequent attempts in the same smtp/auth
connection fail with:

dovecot_plain authenticator failed for ...: 535 Incorrect authentication data (set_id=...)

and dovecot reports:

dovecot: auth(default): BUG: Authentication client gave a PID 1301 of existing connection

johannes
Attachments: signature.asc (0.82 KB)


w at wrzask

Apr 13, 2009, 3:38 AM

Post #3 of 3 (888 views)
Permalink
Re: [Bug 598] New: dovecot authenticator incorrect protocol handling [In reply to]
2009/4/13 Johannes Berg <johannes [at] sipsolutions>:
> Does your patch also address the problem where, when a user enters a
> password wrong once, subsequent attempts in the same smtp/auth
> connection fail with:
>
> dovecot_plain authenticator failed for ...: 535 Incorrect authentication data (set_id=...)
>
> and dovecot reports:
>
> dovecot: auth(default): BUG: Authentication client gave a PID 1301 of existing connection

Not sure. It's been a while since I last touched that stuff (has been
working in production fine since then).

--
Jan Srzednicki :: http://wrzask.pl/
"Remember, remember, the fifth of November"

--
## List details at http://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##

exim dev RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.