pam-mysql-general — A general list for PAM-MYSQL, subscribe if you want to ask anything :)

[Pam-mysql-general] FreeBSD compilation/installation compatibility question

[Pedro V. <pj...@me...>]

hi everyone!

i just want to compile and use pam-mysql with my freebsd 5.0. i cannot
compile it! it generates compilation errors starting with a "pam_misc.h not
found". i have the file in the system, i have the path included in the
makefile with a -I option but still i cannot compile it.

has anyone got this working under freebsd 5.0?

i would appreciate some help.

thanks for your time.

[]

[Pam-mysql-general] >>>15.4 MILLION EMAIL ADDRESSES...PLUS OVER $2,000 WORTH OF FREE EMAIL MARKETING SOFTWARE!

[Fred<Gen...@ya...>]

WOULD YOU LIKE TO HAVE YOUR MESSAGE SEEN BY 
OVER 15.4 MILLION OPT-IN, TARGETED PROSPECTS DAILY?

Below contains all the information you will ever need to market 
your product or service on the Internet.

If you have a product, service, or message that you would like to get 
out to Thousands, Hundreds of Thousands, or even Millions of people, 
you have several options. Traditional methods include print advertising,
direct mail, radio, and television advertising. They are all effective, but 
they all have two catches: They're EXPENSIVE and TIME 
CONSUMING. Not only that, you only get ONE SHOT at making 
your message heard by the right people. Also, Internet Search Engine 
Submissions, Classified Ads, Newsgroup Postings simply DO NOT 
WORK effectively.

Now this has all changed!

Thanks to the top programmers in the world and their NEW EMAIL
TECHNOLOGY, You can send millions of email messages daily for 
FREE...Without getting terminated from your current Internet connection!

It's very simple to do and you can be increasing your sales within minutes 
of installing this new extraordinary software!

Besides...It's the only real way to advertise on the Internet that works...Period!

>>>WE WILL SUPPLY YOU WITH OVER 15.4 MILLION OPT-IN EMAIL 
ADDRESSES TO GET YOU STARTED RIGHT AWAY!

>>>PLUS FREE EMAIL ADDRESS DOWNLOADS FOR LIFE!

>>>ALSO, YOU WILL RECEIVE $2,000 WORTH OF EMAIL 
MARKETING SOFTWARE FREE!

Including......

BROADCAST EMAIL SENDING SOFTWARE...(send millions of email 
advertisements daily with a few clicks of your mouse, without getting 
your ISP trerminated. We used the same software to send you this email)

EMAIL EXTRACTION SOFTWARE...(retrieve new targeted email 
addresses daily. Hundreds of thousands of them)

LIST MANAGEMENT SOFTWARE...(keep your lists clean, opt-in 
and manage all your remove requests, leads, sales etc...)
 
and much...much more!

Hurry...This extraordinary offer ends soon!

To find out more information, Do not respond by email. Instead, click 
on the link below or copy and paste the exact web site address below 
into your Internet browser. 

http://www.beenteresting.com/504305/addresses.htm



______________________________________________________
Want to be removed from our email list?
You were sent this email because you used our Opt-in service.
We hope you enjoy reading our messages. However, if you'd rather 
not receive future e-mails from us, Click on the link below
http://www.beenteresting.com/504305/remove.htm 
Thank you for your cooperation
_______________________________________________________

Re: [Pam-mysql-general] Greetings. Looking for help with MacOS X

[James O'K. <jo...@mi...>]

I was given the G3, but then promptly put it in the corner. :)
I tried compiling but ran into some errors related to precompiled headers 
that I didn't know how to deal with. Eventually I'll get back to this if 
no one else does.

-james


On Thu, 13 Feb 2003, Daniel E. White wrote:

> Anything ever happen with this ?
> 
> At 10:21 PM -0400 9/17/02, James O'Kane wrote:
> >That looks to be the correct man page. Someone is giving me a G3 with OS 
> >10.2 on it, but I don't think I'll get it until next week. If no one else 
> >comes up with a solution by then, I'll see what I can come up with.
> >
> >-james
> >
> 

Re: [Pam-mysql-general] reading the pam_mysql source...

[James O'K. <jo...@mi...>]

On Mon, 27 Jan 2003 ls...@kw... wrote:
> > As project for my "Bachelor of Science in Computer Science", I'm supposed=
> >  to develop an improved pam_mysql module.
> > (more functionalities like session, account mgmt, more cb fields, easy to=
> >  change users passwd,... in the db (ev. GUI), etc.)
> 
> Would be nice to see further development on this handy module.
> I'm sure the original author is happy about every sort of help.


I'm happy for help, because as some might have guessed, I don't have time 
to work on this except for every few months. :)

-james

Re: [Pam-mysql-general] Greetings. Looking for help with MacOS X

[Daniel E. W. <yg...@co...>]

Anything ever happen with this ?

At 10:21 PM -0400 9/17/02, James O'Kane wrote:
>That looks to be the correct man page. Someone is giving me a G3 with OS 
>10.2 on it, but I don't think I'll get it until next week. If no one else 
>comes up with a solution by then, I'll see what I can come up with.
>
>-james
>
-- 
------------------------------------------------------------------------
                                                               Dan White
------------------------------------------------------------------------
"Sometimes  I  think  the  surest  sign  that  intelligent  life exists
 elsewhere  in the universe is that none of it has tried to contact us."
                                                 Calvin (Bill Watterson)

[Pam-mysql-general] Re: reading the pam_mysql source...

[Florian V. <flo...@un...>]

Thanks Andr=E9 for your reply - I hope you don't mind if I put parts of i=
t on this list!
Danke auch dir, Andreas!

[see below...]
________________________________________
\|andre.correa@######### ha scrit als Mon, 27 Jan 2003 13:04:49 -0200:
 |
 |Hi Florian, I've read your post to PAM-MySQL list and would like to
 |share some comment. Many months ago I was using PAM-MySQL for a project
 |and contacted the "author" to know what was going on with this project.
 |The project was inactive for almost 2 years. He told me he is out of
 |time.=20
[...]
 |The MD5 features were put in the code as a contributor's feature and,
 |for  what I know, have never being revised. Maybe, not even tested.
 |

MD5 is surly a good idea.
It could not have been tested the way it is in the CVS.

 |If you need to make a project for your BS, why don't you start a new
 |PAM-MySQL project? Or you can, at least, try to contact the author for
 |contributing  or  leading  the  project.  I know there are many people
 |using or in need for a good and reliable PAM module . Many of then woul=
d
 |like to contribute and help mantaining it.
 |

:-)  Hence - Our Universitys Sun/Linux sysadmin would like such a handy m=
od.

As a new prj.:
Yes, that was also our (sysadmin&me) idea. (Of course it'd be a GPL prj.)
I'd copy most of the code of the existing pam_mysql - mainly to have a st=
arting point.
But I don't think to put it as a SF-prj from beginning...
Because I don't know if it's a good idea to make a BSc prj a publically d=
eveloped one, I'll wait until summer to transfer it to SF (or similar).

If there would be plenty of oposition from this list readers, I'll manage=
 another solution...

Temporarly, I named the new project "pam_mysqlim" (IMproved - like vim :-=
)> )
and it is accessible by cvs (file names not changed yet) on:
  :pserver:ano...@se...:
[hosted by Linuxbourg, LUG Fribourg & env., CH]
module: pam_mysqlim

 |
 |Please let me know your thoughts.

Didn't I ?


 |On 25/01/03, Florian Verdet wrote:
 |FV> reading the pam_mysql source code, I found following:
[...]
 |FV> As project for my "Bachelor of Science in Computer Science", I'm su=
pposed to develop an improved pam_mysql module.
 |FV> (more functionalities like session, account mgmt, more db fields, e=
asy to change users passwd,... in the db (ev. GUI), etc.)
 |


kind regards,
sal=FCds,
_________=20
Florian Verdet
GnuPG: fvg.zapto.org/informatica/gpg.php
=2E

Re: [Pam-mysql-general] reading the pam_mysql source...

[<ls...@kw...>]

Zitat von Florian Verdet <flo...@un...>:
> 
> Hi there,
> 
> 
> reading the pam_mysql source code, I found following:
> 
> ***
> The code for MD5-passwds is useless as it is in the current CVS version (=
> on 20030124).
> Because the databases passwd column is defined to be 16 chars long:
>   [line 64]	char dbpasswd[17];
> A MD5 passwd has 34 chars (12 salt + 22 cryptedpasswd) and therefor needs=
>  "char dbpasswd[35];".
> The fact of the too small / hard coded field sizes has allready been poin=
> ted out in BUG#[ 641632 ].
> 
> ***
>   [line  610]  /* Global PAM functions stolen from other modules */
>   [...]
>   [line 1226]  struct pam_module _pam_permit_modstruct =3D {
>   [line 1227]      "pam_permit",
> It's ok "stealing" as long it's GPL or similar, but...
> some checks/changements have to be done.
> According to
>   http://www.kernel.org/pub/linux/libs/pam/Linux-PAM-html/pam_modules-5.h=
> tml#ss5.4
>  "The Linux-PAM Module Writers' Guide",
> there has to be the modulename as it apears in the fs.
> Here, you've (I mean the programmer) left the code of the "pam_permit" mo=
> dule, from which - potentially - the code has been copied.
> Replace "permit" with "mysql" (twice) ;-)
> 
> 
> As project for my "Bachelor of Science in Computer Science", I'm supposed=
>  to develop an improved pam_mysql module.
> (more functionalities like session, account mgmt, more cb fields, easy to=
>  change users passwd,... in the db (ev. GUI), etc.)

Would be nice to see further development on this handy module.
I'm sure the original author is happy about every sort of help.

Regards

Andreas

Re: [Pam-mysql-general] reading the pam_mysql source...

[<ls...@kw...>]

Zitat von Florian Verdet <flo...@un...>:
> 
> Hi there,
> 
> 
> reading the pam_mysql source code, I found following:
> 
> ***
> The code for MD5-passwds is useless as it is in the current CVS version (=
> on 20030124).
> Because the databases passwd column is defined to be 16 chars long:
>   [line 64]	char dbpasswd[17];
> A MD5 passwd has 34 chars (12 salt + 22 cryptedpasswd) and therefor needs=
>  "char dbpasswd[35];".
> The fact of the too small / hard coded field sizes has allready been poin=
> ted out in BUG#[ 641632 ].
> 
> ***
>   [line  610]  /* Global PAM functions stolen from other modules */
>   [...]
>   [line 1226]  struct pam_module _pam_permit_modstruct =3D {
>   [line 1227]      "pam_permit",
> It's ok "stealing" as long it's GPL or similar, but...
> some checks/changements have to be done.
> According to
>   http://www.kernel.org/pub/linux/libs/pam/Linux-PAM-html/pam_modules-5.h=
> tml#ss5.4
>  "The Linux-PAM Module Writers' Guide",
> there has to be the modulename as it apears in the fs.
> Here, you've (I mean the programmer) left the code of the "pam_permit" mo=
> dule, from which - potentially - the code has been copied.
> Replace "permit" with "mysql" (twice) ;-)
> 
> 
> As project for my "Bachelor of Science in Computer Science", I'm supposed=
>  to develop an improved pam_mysql module.
> (more functionalities like session, account mgmt, more cb fields, easy to=
>  change users passwd,... in the db (ev. GUI), etc.)

Would be nice to see further development on this handy module.
I'm sure the original author is happy about every sort of help.

Regards

Andreas

[Pam-mysql-general] reading the pam_mysql source...

[Florian V. <flo...@un...>]

Hi there,


reading the pam_mysql source code, I found following:

***
The code for MD5-passwds is useless as it is in the current CVS version (=
on 20030124).
Because the databases passwd column is defined to be 16 chars long:
  [line 64]	char dbpasswd[17];
A MD5 passwd has 34 chars (12 salt + 22 cryptedpasswd) and therefor needs=
 "char dbpasswd[35];".
The fact of the too small / hard coded field sizes has allready been poin=
ted out in BUG#[ 641632 ].

***
  [line  610]  /* Global PAM functions stolen from other modules */
  [...]
  [line 1226]  struct pam_module _pam_permit_modstruct =3D {
  [line 1227]      "pam_permit",
It's ok "stealing" as long it's GPL or similar, but...
some checks/changements have to be done.
According to
  http://www.kernel.org/pub/linux/libs/pam/Linux-PAM-html/pam_modules-5.h=
tml#ss5.4
 "The Linux-PAM Module Writers' Guide",
there has to be the modulename as it apears in the fs.
Here, you've (I mean the programmer) left the code of the "pam_permit" mo=
dule, from which - potentially - the code has been copied.
Replace "permit" with "mysql" (twice) ;-)


As project for my "Bachelor of Science in Computer Science", I'm supposed=
 to develop an improved pam_mysql module.
(more functionalities like session, account mgmt, more cb fields, easy to=
 change users passwd,... in the db (ev. GUI), etc.)

blers sal=FCds,
_________=20
Florian Verdet
GnuPG: fvg.zapto.org/informatica/gpg.php
=2E

[Pam-mysql-general] not able to change password if not root

[<ls...@kw...>]

Hello

in line 1125 in pam-mysql (ver. 0.5) the following statement appears :

if (!db_checkpasswd(&auth_sql_server,user,oldpass))
   retval = PAM_SUCCESS;
else
   retval = PAM_AUTHTOK_ERR;

I guess this should be :

if (db_checkpasswd(&auth_sql_server,user,oldpass))
   retval = PAM_SUCCESS;
else
   retval = PAM_AUTHTOK_ERR;

because otherwise non root users are not able to change the password if they 
supply the correct password.

Any comments??

Regards

Andreas

[Pam-mysql-general] >>15.1 MILLION EMAIL ADDRESSES...PLUS $2,000 IN FREE EMAIL SOFTWARE!

[Scarlett Hook<cyb...@ya...>]

WOULD YOU LIKE TO HAVE YOUR MESSAGE SEEN BY OVER
15.1 MILLION TARGETED PROSPECTS DAILY?

Below contains all the information you will ever need to market your product or 
service on the Internet. 

If you have a product, service, or message that you would like to get out 
to Thousands, Hundreds of Thousands, or even Millions of people, you 
have several options. Traditional methods include print advertising, direct 
mail, radio, and television advertising. They are all effective, but they all 
have two catches: They're EXPENSIVE and TIME CONSUMING. Not 
only that, you only get ONE SHOT at making your message heard by 
the right people. Also, Internet Search Engine Submissions, Classified Ads, 
Newsgroup Postings simply DO NOT WORK effectively.

Now this has all changed!

Thanks to the top programmers in the world and their NEW EMAIL
TECHNOLOGY, You can send millions of email messages daily for 
FREE...Without getting terminated from your current Internet connection!

It's very simple to do and you can be increasing your sales within minutes 
of installing this new extraordinary software!

Besides...It's the only real way to advertise on the Internet that works...Period!

>>>WE WILL SUPPLY YOU WITH OVER 15.1 MILLION OPT-IN EMAIL 
ADDRESSES TO GET YOU STARTED RIGHT AWAY!

>>>PLUS FREE EMAIL ADDRESS DOWNLOADS FOR LIFE!

>>>ALSO, YOU WILL RECEIVE $2,000 WORTH OF EMAIL 
MARKETING SOFTWARE FREE!

Including......

BROADCAST EMAIL SENDING SOFTWARE...(send millions of email 
advertisements daily with a few clicks of your mouse, without getting your
ISP trerminated. We used the same software to send you this email)

EMAIL EXTRACTION SOFTWARE...(retrieve new targeted email addresses 
daily. Hundreds of thousands of them)

LIST MANAGEMENT SOFTWARE...(keep your lists clean, opt-in and 
manage all your remove requests, leads, sales etc...)
 
and much...much more!

Hurry...This extraordinary offer ends soon!

To find out more information, Do not respond by email. Instead, click 
on the link below or copy and paste the exact web site address below 
into your web browser.

http://www.smartofferz.com/504305/addresses.htm





______________________________________________________
Want to be removed from our email list?
You were sent this email because you used our Opt-in service.
We hope you enjoy reading our messages. However, if you'd rather 
not receive future e-mails from us, Go to
our remove page at http://www.smartofferz.com/504305/remove.htm
______________________________________________________

[Pam-mysql-general] change password error for non root process

[<and...@79...>]

Hello

i have tried to use pam-mysql with "poppassd" to change passwords for e-mail 
users located in a mysql database. For security reasons i don´t run "poppassd" 
as root and stumbled over line 1125 in pam-mysql (ver. 0.5) where the following 
statement appears :

if (!db_checkpasswd(&auth_sql_server,user,oldpass))
  retval = PAM_SUCCESS;
else
  retval = PAM_AUTHTOK_ERR;


With this i´m not able to change my password if "poppassd" isn´t "root".

If i change it to the inverse logik : 

if (db_checkpasswd(&auth_sql_server,user,oldpass))
  retval = PAM_SUCCESS;
else
  retval = PAM_AUTHTOK_ERR;

It works.

Any comments??

Regards

Andreas

Re: [Pam-mysql-general] Loglevel in pam_mysql

[James O'K. <jo...@mi...>]

This was an oversight on my part.
Change 
#define DEBUG
to
#undef DEBUG

-james


On Mon, 9 Dec 2002, lst_hoe wrote:

> Hello
> 
> anyone there??
> 
> With pam_mysql 0.5 i get a lot of log messages from all applications using
> it. After some digging around i believe that the loglevel inside the #ifdef
> DEBUG should be "LOG_DEBUG" instead of "LOG_ERR".
> 
> Any comments??
> 
> Have i missed something obvious??
> 
> Thanxs 
> 
> Andreas
> 
> 
> 
> 
> -------------------------------------------------------
> This sf.net email is sponsored by:ThinkGeek
> Welcome to geek heaven.
> http://thinkgeek.com/sf
> _______________________________________________
> Pam-mysql-general mailing list
> Pam...@li...
> https://lists.sourceforge.net/lists/listinfo/pam-mysql-general
> 

[Pam-mysql-general] Loglevel in pam_mysql

[lst_hoe <ls...@kw...>]

Hello

anyone there??

With pam_mysql 0.5 i get a lot of log messages from all applications using
it. After some digging around i believe that the loglevel inside the #ifdef
DEBUG should be "LOG_DEBUG" instead of "LOG_ERR".

Any comments??

Have i missed something obvious??

Thanxs 

Andreas

[Pam-mysql-general] Logging in pam_mysql 0.5

[lst_hoe <ls...@kw...>]

Hello

first of all nice to see this project is alive again (we plan to use it for
a Webmail-box with approx. 2000 user).

I have grabbed the new 0.5 to test and now wondering how to adjust the
logging. If i compile and install the module does a lot of logging.

Regards

Andreas

[Pam-mysql-general] >>14.9 MILLION EMAIL ADDRESSES...PLUS $2,000 WORTH OF FREE EMAIL MARKETING SOFTWARE!

[Nydendathil<Cyb...@ya...>]

WOULD YOU LIKE TO HAVE YOUR MESSAGE SEEN BY OVER
14.9 MILLION TARGETED PROSPECTS DAILY?

Below contains all the information you will ever need to market your product or 
service on the Internet.

If you have a product, service, or message that you would like to get out 
to Thousands, Hundreds of Thousands, or even Millions of people, you 
have several options. Traditional methods include print advertising, direct 
mail, radio, and television advertising. They are all effective, but they all 
have two catches: They're EXPENSIVE and TIME CONSUMING. Not 
only that, you only get ONE SHOT at making your message heard by 
the right people. Also, Internet Search Engine Submissions, Classified Ads, 
Newsgroup Postings simply DO NOT WORK effectively.

Now this has all changed!

Thanks to the top programmers in the world and their NEW EMAIL
TECHNOLOGY, You can send millions of email messages daily for 
FREE...Without getting terminated from your current Internet connection!

It's very simple to do and you can be increasing your sales within minutes 
of installing this new extraordinary software!

Besides...It's the only real way to advertise on the Internet that works...Period!

>>>WE WILL SUPPLY YOU WITH OVER 14.9 MILLION OPT-IN EMAIL 
ADDRESSES TO GET YOU STARTED RIGHT AWAY!

>>>PLUS FREE EMAIL ADDRESS DOWNLOADS FOR LIFE!

>>>ALSO, YOU WILL RECEIVE $2,000 WORTH OF EMAIL 
MARKETING SOFTWARE FREE!

Including......

BROADCAST EMAIL SENDING SOFTWARE...(send millions of email 
advertisements daily with a few clicks of your mouse, without getting your
ISP trerminated. We used the same software to send you this email)

EMAIL EXTRACTION SOFTWARE...(retrieve new targeted email addresses 
daily. Hundreds of thousands of them)

LIST MANAGEMENT SOFTWARE...(keep your lists clean, opt-in and 
manage all your remove requests, leads, sales etc...)
 
and much...much more!

Hurry...This extraordinary offer ends at midnight tonight!

To find out more information, Do not respond by email. Instead, Click 
on the link below or copy and paste the exact web site address below 
into your web browser.

http://www.redvvhiteblue.com/504305/addresses.htm

If you have any trouble logging into our web site or have any 
questions, please call us at (203) 467-5378



______________________________________________________
Want to be removed from our email list?
You were sent this email because you used our Opt-in service.
We hope you enjoy reading our messages. However, if you'd rather 
not receive future e-mails from us in the, Go to
our remove page at http://www.redvvhiteblue.com/504305/remove.htm
_____________________________________________________

[Pam-mysql-general] >>14.9 MILLION EMAIL ADDRESSES...PLUS $2,000 WORTH OF FREE EMAIL MARKETING SOFTWARE!

[Galasa<Cyb...@ya...>]

WOULD YOU LIKE TO HAVE YOUR MESSAGE SEEN BY OVER
14.9 MILLION TARGETED PROSPECTS DAILY?

Below contains all the information you will ever need to market your product or 
service on the Internet.

If you have a product, service, or message that you would like to get out 
to Thousands, Hundreds of Thousands, or even Millions of people, you 
have several options. Traditional methods include print advertising, direct 
mail, radio, and television advertising. They are all effective, but they all 
have two catches: They're EXPENSIVE and TIME CONSUMING. Not 
only that, you only get ONE SHOT at making your message heard by 
the right people. Also, Internet Search Engine Submissions, Classified Ads, 
Newsgroup Postings simply DO NOT WORK effectively.

Now this has all changed!

Thanks to the top programmers in the world and their NEW EMAIL
TECHNOLOGY, You can send millions of email messages daily for 
FREE...Without getting terminated from your current Internet connection!

It's very simple to do and you can be increasing your sales within minutes 
of installing this new extraordinary software!

Besides...It's the only real way to advertise on the Internet that works...Period!

>>>WE WILL SUPPLY YOU WITH OVER 14.9 MILLION OPT-IN EMAIL 
ADDRESSES TO GET YOU STARTED RIGHT AWAY!

>>>PLUS FREE EMAIL ADDRESS DOWNLOADS FOR LIFE!

>>>ALSO, YOU WILL RECEIVE $2,000 WORTH OF EMAIL 
MARKETING SOFTWARE FREE!

Including......

BROADCAST EMAIL SENDING SOFTWARE...(send millions of email 
advertisements daily with a few clicks of your mouse, without getting your
ISP trerminated. We used the same software to send you this email)

EMAIL EXTRACTION SOFTWARE...(retrieve new targeted email addresses 
daily. Hundreds of thousands of them)

LIST MANAGEMENT SOFTWARE...(keep your lists clean, opt-in and 
manage all your remove requests, leads, sales etc...)
 
and much...much more!

Hurry...This extraordinary offer ends at midnight tonight!

To find out more information, Do not respond by email. Instead, Click 
on the link below or copy and paste the exact web site address below 
into your web browser.

http://www.redvvhiteblue.com/504305/addresses.htm

If you have any trouble logging into our web site or have any 
questions, please call us at (203) 467-5378



______________________________________________________
Want to be removed from our email list?
You were sent this email because you used our Opt-in service.
We hope you enjoy reading our messages. However, if you'd rather 
not receive future e-mails from us in the, Go to
our remove page at http://www.redvvhiteblue.com/504305/remove.htm
_____________________________________________________

[Pam-mysql-general] patch: crypt MD5

[Rodolfo G. <ro...@eq...>]

Hi,

attached is a small patch against pam_mysql-0.4.7 which enables support
for passwords encrypted using the crypt(3) found in Linux, FreeBSD and
other (?) systems, that is the MD5 variant of crypt, which is recognized
by starting with the characters $1$ and then a 8 character string as the
seed. I hope this is useful for someone, and can be included in the main
tree, if the maintainers consider it good enough. As the pam_mysql code,
my code is under the LGPL, and comes with no warranties: use it at your
own risk.

Best regards,
Rodolfo.

[Pam-mysql-general] 0.5 release

[James O'K. <jo...@mi...>]

I promised to do this months ago after I added a bunch of patches. 
I do any recent testing other than what I did months ago. I decided a 
'brown paper bag' release is better than a 2 year old one. Is anyone a 
professional (or amateur) QA person, who could write some automated tests?

The next phase on the roadmap [1] I posted is refactoring this into more 
managable chunks. Looking at my schedule, I'm not sure if I'll have time 
over thanksgiving weekend or if it will have to wait until mid-december. 
If anyone can't wait until then, let me know and I'll let you know more 
specifically what I had in mind.


-james

PS. If you received two notices about a new file release, that was a 
mistake on my part. I hate the SF file release interface and I screw it up 
every time.


[1] 
http://sourceforge.net/mailarchive/forum.php?thread_id=1082316&forum_id=4670

[Pam-mysql-general] Pam module problem with cyrus-sasl2 + mysql (fwd)

[James O'K. <jo...@mi...>]

Could someone else look over this and reply to him? I'm a bit pressed for 
time.

-james


---------- Forwarded message ----------
Date: Thu, 24 Oct 2002 13:41:02 +0300
From: Alex Pita <ne...@so...>
To: jo...@us...
Subject: Pam module problem with cyrus-sasl2 + mysql

  Hello pam experts,

Just i received from cyrus-sasl mailing list your configuration about 
hot to setup postfix+mysql+cyrus-sasl smtp-auth using pam_mysql.so plugin.

Now i need a little help, because all seams to be ok, but pam-plugin is 
not working. Maybe you can trace more quicly then me where the problem is:
So i tryed to send an email from mi...@te... to al...@te... (all may 
users and domains are virtuals, no real shell accounts, controled by 
mysql-database)

[root@dinu root]# tail -f /var/log/messages
Oct 24 12:23:37 dinu saslauthd[3332]: START: saslauthd 2.1.9
Oct 24 12:23:37 dinu saslauthd[3343]: master PID is: 3343
Oct 24 12:23:37 dinu saslauthd[3343]: daemon started, listening on 
/var/state/saslauthd/mux
Oct 24 12:45:07 dinu postfix/smtpd[3586]: mysql plugin couldnt connect 
to any host
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^


[root@dinu root]# tail -f /var/log/maillog
Oct 24 12:45:07 dinu postfix/smtpd[3586]: connect from 
ns1.test.ro[192.168.0.2]
Oct 24 12:45:07 dinu postfix/smtpd[3586]: 3D5BE4BFF: 
client=ns1.test.ro[192.168.0.2], sasl_method=PLAIN, sasl_username=mimi.3323
Oct 24 12:45:07 dinu postfix/cleanup[3590]: 3D5BE4BFF: 
message-id=<200...@te...>
Oct 24 12:45:07 dinu postfix/smtpd[3586]: disconnect from 
ns1.test.ro[192.168.0.2]
Oct 24 12:45:07 dinu postfix/qmgr[3489]: 3D5BE4BFF: from=<mi...@te...> 
, size=465, nrcpt=1 (queue active)
Oct 24 12:45:07 dinu postfix/virtual[3596]: 3D5BE4BFF: to=<al...@te...> 
, relay=virtual, delay=0, status=sent (maildir)
Oct 24 12:45:18 dinu pop3d: Connection, ip=[::ffff:192.168.0.2]
Oct 24 12:45:19 dinu pop3d: LOGIN, user=alex, ip=[::ffff:192.168.0.2]
Oct 24 12:45:19 dinu pop3d: LOGOUT, user=alex, ip=[::ffff:192.168.0.2], 
top=0, retr=1007

So this email is delivered because is matching with my relay policy and 
not due to authentication with pam+mysql!!!!

here are my /etc/pam.d/smtp file
#%PAM-1.0
auth sufficient /lib/security/pam_mysql.so user=postfix passwd=postfix 
host=localhost db=maildb table=users usercolumn=id passwdcolumn=crypt 
crypt=1
account required /lib/security/pam_mysql.so user=postfix passwd=postfix 
host=localhost db=maildb table=users usercolumn=id passwdcolumn=crypt 
crypt=1

The settings for my database are correct, (tested with smtp, pop3 and 
imap connections).
Also , i want to mention that when i add one user to mysql database 
named maildb in table named users, i use:

INSERT INTO users (id, address, clear, name, uid, gid, maildir) VALUES 
('alex', ' al...@te... ', 'yyy', 'Alex Ionescu', 12345, 12345, 
'test.ro/alex/Maildir/');

and after that,
UPDATE users SET crypt=encrypt('yyy') WHERE id='alex';
In this case i think is correct to use in /etc/pam.d/smtp the crypt=1 
because the password is encrypted in mysql-database!

Also i want to metion that sasl2 is started with: saslauthd -a pam
In my opinion is somethig bad in pam plugin authentication (i suppose 
that can't connect to the localhost) !

Below is my /etc/postfix/main.cf

myhostname = ns1.test.ro
mydomain = test.ro
myorigin = $mydomain
mydestination = localhost.localdomain, localhost.$mydomain, $mydomain, 
$myhostname, $transport_maps
mynetworks = 192.168.0.0/24, 127.0.0.0/8

#Smtp-auth support using cyrus-sasl2
# Enable authentication on postfix smtp server #
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_recipient_restrictions = permit_sasl_authenticated,
permit_mynetworks,
check_relay_domains
broken_sasl_auth_clients = yes

transport_maps = mysql:/etc/postfix/transport.cf
virtual_mailbox_base = /home/mailusers
virtual_uid_maps = mysql:/etc/postfix/uids.cf
virtual_gid_maps = mysql:/etc/postfix/gids.cf
virtual_mailbox_maps = mysql:/etc/postfix/mysql_virt.cf
virtual_maps = mysql:/etc/postfix/virtual.cf

Any help will be appreciated.

Best regards,
Alex

Re: [Pam-mysql-general] Greetings. Looking for help with MacOS X

[James O'K. <jo...@mi...>]

That looks to be the correct man page. Someone is giving me a G3 with OS 
10.2 on it, but I don't think I'll get it until next week. If no one else 
comes up with a solution by then, I'll see what I can come up with.

-james

[Pam-mysql-general] Greetings. Looking for help with MacOS X

[Daniel E. W. <yg...@co...>]

I want to make a mail server, using Unix based utilities.

I want to use a MySQL database to authenticate the mail users so that they have no shell level login on the machine.

I want authenticated SMTP, and for that, given the rest of it, I am told I need pam-mysql.

I tried it and it gripes about not finding libraries for "-lcrypt"

Is this the Unix crypt function like in the section 3 man pages ?

------
CRYPT(3)                System Library Functions Manual               CRYPT(3)

NAME
     crypt, setkey, encrypt, des_setkey, des_cipher, - DES encryption

SYNOPSIS
     #include <unistd.h>

     char
     *crypt(const char *key, const char *setting);
-------


-- 
------------------------------------------------------------------------
                                                               Dan White
------------------------------------------------------------------------
"Sometimes  I  think  the  surest  sign  that  intelligent  life exists
 elsewhere  in the universe is that none of it has tried to contact us."
                                                 Calvin (Bill Watterson)

[Pam-mysql-general] Short-term Road Map

[James O'K. <jo...@mi...>]

This weekend I merged the differences I could see from the sql-logging 
branch into the main branch, and it currently has 'works for me' status. I 
currently don't have a production environment, so I can't test it under 
any kind of load or anything.

I've received email from several different people wanting to merge a few 
different projects including the postgresql pam module, the db-pam module 
that allows arbitrary queries, and possibly some of the nss-mysql code. 
Before I start piling code into this, I want to do some housekeeping and 
reorganization because pam_mysql.c is currently over 1200 lines and is 
getting a bit messy.

My rough todo list:
If no one complains about the HEAD branch of CVS, I'm going to make that 
0.5 and do a release.
Do a reorganization and possibly call that 0.6
Add in one of the suggested features above, probably nss-mysql since that 
will hit the most people. Call that 0.7
Add in the next feature, call that 0.8
lather, rinse, repeat.

I currently don't have a timebased deadlines, so things will happen when I 
have time. It's been over 2 years since the last release, what is an extra 
few months? :)

-james

[Pam-mysql-general] mailing lists vs. forums

[James O'K. <jo...@mi...>]

Does anyone have a strong preference?
I dislike the disjointness of the two mediums and would like to 
consolidate. If no one has a strong preference, I'm going to close the 
webpage forums in favor of the mailing list.
I can create more lists as need dictates.

-james

[Pam-mysql-general] New Management :)

[James O'K. <jo...@mi...>]

Hi,
	Hi, I'm James, you might remember me from such releases as version 
0.2. Steve and Kevin have moved on to other projects, and I'd rather not 
see this package die, so I'm going to put some time into maintaining it.
My biggest stumbling block is that I don't have a use for the module 
anymore, which is the reason I passed it on a few years ago.

Tonight I just checked in some code related to a buffer overflow problem 
that was reported to me. It currently 'works for me'. Could some other 
people give it a test?

I've closed all of the supporet requests that were over a year old and I 
looked at the open bugs. If you are having problems, it wouldn't hurt to 
submit them again on the sourceforge page. 
http://sourceforge.net/projects/pam-mysql/ Please don't email me directly 
as I'll probably lose it.

-james