pam-mysql-general — A general list for PAM-MYSQL, subscribe if you want to ask anything :)

[Pam-mysql-general] Repair your thing.

[Sales <sa...@av...>]

Be a supermacho!

Charge your prick for 110% and have a lifetime fiesta with Your chick

This is the one and only remedy which works flawlessly!

Ask me why? Just because it's the Original thing.

You can Order it here: http://avenuekayeventsplanning.com

P.S.: Guaranteed lightning speed worldwide delivery and prices from manufacturer

-- 

[Pam-mysql-general] Re-Charge your prick

[Sales <sa...@he...>]

Be a supermacho!

Charge your schlong for 110% and have a lifetime fiesta with Your girl!

This is the one and only remedy which works flawlessly.

Ask me why? Just because it's the Original thing

You can Order it here: http://hennaautoplexdda.com

P.S.: Guaranteed lightning speed worldwide delivery and prices from manufacturer!

-- 

[Pam-mysql-general] Hulk Hogan's New Interview

[News <ne...@re...>]

We are glad to inform you of a CANCER CURE invented 
by ANDOVER MEDICAL INC (ADOV), that will take 
the world by storm. This new medicine, is above all other 
and boosts a 80% success rate during clinical trials

Over the next few days you will hear about this in the PAPERS and on TV. 
So buy shares now, while price is low, before the news hits.

ANDOVER MEDICAL INC (ADOV)
$.45

-- 

[Pam-mysql-general] Can you imagine that you are healthy?

[Reva S. <jic...@do...>]

LegalRX drug store propose all drugs you feel necessity in in order to recover your health at low cost. 
We work across the planet with clients from America, Europe and Asia. 
At present time you don't have to search for drug shop at your region.
We certainly deliver medicines of the highest quality to all parts of the planet.
Visit our site & gain cures you instantly require straight to your dwelling. 
http://cowway.cn/ 

We're endorsed by VeriSign and VISA hence we ensure secure & reliable acquisition.

Re: [Pam-mysql-general] pam, pam_mysql or saslauthd->pam problem?

[Tautvydas G. <tau...@bs...>]

Good Morning Mr. Moriyoshi, List,

As Mr. Moriyoshi pointed me, I've started debugging. ltrace saslauthd 
gave me nothing.
I'm quite familiar with Slackware and GRsecurity and totally new with 
centos (I had to) and selinux. I remember, when installing centos, I've 
choosen to disable selinux. And I thought that selinux is disabled (and 
system-config-securitylevel-tui showed me, that SElinux is disabled). 
So, only when Mr. Moriyoshi told me to start looking with security 
related things (I was pretty sure, that permissions and owners was good) 
I've started to check things manually. That led me to selinux config. 
I've disabled it manually,  and NOW EVERYTHING IS WORKING.  It looks 
like, that selinux was blocking saslauthd (?) or pam. I don't know how. 
Cause IMAP and few other network daemons were able to work with outside 
servers/clients. I'm in a rush with that project, so now I don't have 
enough time to determine correct config for SElinux. But, I'm wondering, 
how Selinux was configured, because pamtester was able to connect. 
SElinux doesn't denied everything? Or maybe someone has SElinux for 
saslauthd :)?

After all, I am really happy that the problem was not related directly 
with pam_mysql.so.

Thanks for the help and for the great job.

With Best Regards,

Tautvydas


Moriyoshi Koizumi wrote:
> Hi Tautvydas,
>
> Tautvydas Griskevicius wrote:
>> Hello List,
>>
>> Mr. Moriyoshi redirected me here. Thanks for him. Like I wrote 
>> before, I have a problem. I'm trying to set up Cyrus IMAP server, 
>> which uses saslauthd as his password storage. saslauthd uses pam, and 
>> pam uses pam_mysql.so for imap. Everything is working fine, IF the 
>> MySQL database is locally deployed. I mean, if host directive is set 
>> to "localhost" in /etc/pam.d/imap. Authentication works with normal 
>> IMAP login, with /usr/sbin/testsaslauthd -u cyrus -p secret and with 
>> pamtester imap cyrus authenticate also. But if I change 
>> host=database.domain.tld or host=192.168.1.60 or even with 
>> host=127.0.0.1 authentication fails. With IMAP login and with 
>> testsaslauthd. BUT pamtester is working (logging in) fine. I'm able 
>> to use external database (on different server). So, the problem is 
>> somewhere between saslauthd and pam. But sadly, I'm not able to 
>> determine where. I don't know how pamtester works.
>>   
> I figured out the problem a bit more. It seems to be a contextual 
> problem; something like unix user / group stuff or  SELinux context is 
> involved.
>
> If my understanding is correct, the symptoms are as follows:
>
> 1. It works at least with the context on which you were manipulating 
> the testing tools.
> 2. Connection through unix domain sockets works for everything.
> 3. TCP connection didn't work for either except pamtester.
>
> Did you check out the syslog or the security log and see something in 
> it? If you cannot find anything suspicious, try strace and investigate 
> the raw system calls to look for what makes it going wrong.
>
> Moriyoshi
>
>> Like Mr. Moryuoshi recommended, I've checked all binaries with ldd. 
>> Everything looks fine.
>>
>> My /etc/pam.d/imap config is below.
>>
>> auth sufficient         pam_mysql.so user=mail passwd=secret \
>>                         host=localhost db=mail table=accountuser \
>>                         usercolumn=username passwdcolumn=password \
>>                         crypt=0 logtable=log logmsgcolumn=msg \
>>                         logusercolumn=user loghostcolumn=host \
>>                         logpidcolumn=pid logtimecolumn=time \
>>                         verbose=1 sqllog=true
>>
>> account required        pam_mysql.so user=mail passwd=secret \
>>                         host=localhost db=mail table=accountuser \
>>                         usercolumn=username passwdcolumn=password \
>>                         crypt=0 logtable=log logmsgcolumn=msg \
>>                         loguserclumn=user loghostcolumnt=host \
>>                         logpidcolumn=pid logtimecolumn=time \
>>                         verbose=1 sqllog=true
>>
>> I hope, someone will help me.
>>
>> With Best Regards,
>>
>> Tautvydas
>>
>> ------------------------------------------------------------------------- 
>>
>> This SF.net email is sponsored by: Splunk Inc.
>> Still grepping through log files to find problems?  Stop.
>> Now Search log events and configuration files using AJAX and a browser.
>> Download your FREE copy of Splunk now >>  http://get.splunk.com/
>> _______________________________________________
>> Pam-mysql-general mailing list
>> Pam...@li...
>> https://lists.sourceforge.net/lists/listinfo/pam-mysql-general
>>
>>   
>

Re: [Pam-mysql-general] pam, pam_mysql or saslauthd->pam problem?

[Moriyoshi K. <mor...@at...>]

Hi Tautvydas,

Tautvydas Griskevicius wrote:
> Hello List,
>
> Mr. Moriyoshi redirected me here. Thanks for him. Like I wrote before, I 
> have a problem. I'm trying to set up Cyrus IMAP server, which uses 
> saslauthd as his password storage. saslauthd uses pam, and pam uses 
> pam_mysql.so for imap. Everything is working fine, IF the MySQL database 
> is locally deployed. I mean, if host directive is set to "localhost" in 
> /etc/pam.d/imap. Authentication works with normal IMAP login, with 
> /usr/sbin/testsaslauthd -u cyrus -p secret and with pamtester imap cyrus 
> authenticate also. But if I change host=database.domain.tld or 
> host=192.168.1.60 or even with host=127.0.0.1 authentication fails. With 
> IMAP login and with testsaslauthd. BUT pamtester is working (logging in) 
> fine. I'm able to use external database (on different server). So, the 
> problem is somewhere between saslauthd and pam. But sadly, I'm not able 
> to determine where. I don't know how pamtester works.
>   
I figured out the problem a bit more. It seems to be a contextual 
problem; something like unix user / group stuff or  SELinux context is 
involved.

If my understanding is correct, the symptoms are as follows:

1. It works at least with the context on which you were manipulating the 
testing tools.
2. Connection through unix domain sockets works for everything.
3. TCP connection didn't work for either except pamtester.

Did you check out the syslog or the security log and see something in 
it? If you cannot find anything suspicious, try strace and investigate 
the raw system calls to look for what makes it going wrong.

Moriyoshi

> Like Mr. Moryuoshi recommended, I've checked all binaries with ldd. 
> Everything looks fine.
>
> My /etc/pam.d/imap config is below.
>
> auth sufficient         pam_mysql.so user=mail passwd=secret \
>                         host=localhost db=mail table=accountuser \
>                         usercolumn=username passwdcolumn=password \
>                         crypt=0 logtable=log logmsgcolumn=msg \
>                         logusercolumn=user loghostcolumn=host \
>                         logpidcolumn=pid logtimecolumn=time \
>                         verbose=1 sqllog=true
>
> account required        pam_mysql.so user=mail passwd=secret \
>                         host=localhost db=mail table=accountuser \
>                         usercolumn=username passwdcolumn=password \
>                         crypt=0 logtable=log logmsgcolumn=msg \
>                         loguserclumn=user loghostcolumnt=host \
>                         logpidcolumn=pid logtimecolumn=time \
>                         verbose=1 sqllog=true
>
> I hope, someone will help me.
>
> With Best Regards,
>
> Tautvydas
>
> -------------------------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc.
> Still grepping through log files to find problems?  Stop.
> Now Search log events and configuration files using AJAX and a browser.
> Download your FREE copy of Splunk now >>  http://get.splunk.com/
> _______________________________________________
> Pam-mysql-general mailing list
> Pam...@li...
> https://lists.sourceforge.net/lists/listinfo/pam-mysql-general
>
>   

[Pam-mysql-general] pam, pam_mysql or saslauthd->pam problem?

[Tautvydas G. <tau...@bs...>]

Hello List,

Mr. Moriyoshi redirected me here. Thanks for him. Like I wrote before, I 
have a problem. I'm trying to set up Cyrus IMAP server, which uses 
saslauthd as his password storage. saslauthd uses pam, and pam uses 
pam_mysql.so for imap. Everything is working fine, IF the MySQL database 
is locally deployed. I mean, if host directive is set to "localhost" in 
/etc/pam.d/imap. Authentication works with normal IMAP login, with 
/usr/sbin/testsaslauthd -u cyrus -p secret and with pamtester imap cyrus 
authenticate also. But if I change host=database.domain.tld or 
host=192.168.1.60 or even with host=127.0.0.1 authentication fails. With 
IMAP login and with testsaslauthd. BUT pamtester is working (logging in) 
fine. I'm able to use external database (on different server). So, the 
problem is somewhere between saslauthd and pam. But sadly, I'm not able 
to determine where. I don't know how pamtester works.

Like Mr. Moryuoshi recommended, I've checked all binaries with ldd. 
Everything looks fine.

My /etc/pam.d/imap config is below.

auth sufficient         pam_mysql.so user=mail passwd=secret \
                        host=localhost db=mail table=accountuser \
                        usercolumn=username passwdcolumn=password \
                        crypt=0 logtable=log logmsgcolumn=msg \
                        logusercolumn=user loghostcolumn=host \
                        logpidcolumn=pid logtimecolumn=time \
                        verbose=1 sqllog=true

account required        pam_mysql.so user=mail passwd=secret \
                        host=localhost db=mail table=accountuser \
                        usercolumn=username passwdcolumn=password \
                        crypt=0 logtable=log logmsgcolumn=msg \
                        loguserclumn=user loghostcolumnt=host \
                        logpidcolumn=pid logtimecolumn=time \
                        verbose=1 sqllog=true

I hope, someone will help me.

With Best Regards,

Tautvydas

[Pam-mysql-general] Become fit and happy again

[Vince H. <qac...@ca...>]

Take advantage of your opportunity! – Anatrim – The latest and most exciting product for corpulent people is now easily available – As told on Oprah

Can you hold in your memory all the cases when you said to yourself you would do anything for being delivered from this awful number of pounds? Luckily, now no big sacrifice is required. Thanks to Anatrim, the ground-breaking, you can get healthier mode of life and become really slimmer. Just look at what people write to us!
 
“I had always led an outstanding private life until last year my girl said to me I was fat and in want of keeping eye on my health. My life had abruptly changed after that, until I disclosed Anatrim ™ for me. After loosing more than 18 kg only thanx to Anatrim,  my private life’s come back, significantly better even than before. Great thanks for the awesome product and the great service. Proceed with your valuable work!”

 
Charley Mock, San Diego

 
"There’s nothing better than sliding into a bikini that I have not worn for a long period of time. Now I feel svelte, determined, and vigorous, thanks in great part to Anatrim! Thank you a lot!"

 
Victoria K., Las Vegas

Check out Anatrim, and  you shall join the worldwide community of thousands of pleased buyers who’re enjoying the revolutionary results of Anatrim here & now. Less gobbling mania, less kilogrames and more festivity in your life!

Click here to inspect outdone Anatrim deal we’re so proud to propose!!!
http://www.tribeyra.net/?jofcetukpenqt

Family doctor‘s advice

[Pam-mysql-g. <rol...@ho...>]

Perfect way to turn back time – boost up your virility to unprecedented level!
Generic quality, express delivery in discreet packaging – at lowest prices!
Hundreds of thousands of men already know about the high quality of these goods!
http://Denny.answermust.hk

[Pam-mysql-general] Teenager Park leads as storms halt U.S. Women's Open

[Sales <sa...@rv...>]

Are you sure that your girlfriend is satisfied 
with the size of your `little friend`

No?

So, hurry up then, and get our new super pill 
as quickly as possible at the reduced price, 
before she'll find another guy with a descent willy. 
You can order it on our website: http://www.rvsforcost.com/ 

-- 
nortstpstrpuqpqmqjpptppuprpjptqtprphnuqrqnpgpmpmuqpkqgulqmqupu

[Pam-mysql-general] Ex-'Grey's' star cites racism for firing

[Sales <sa...@ho...>]

We are delighted to offer you a great deal!

You have an extremely great chance to improve your sex life and make
yourself twice sexier, because only our clinically tested medicine
can guarantee that YOUR DICK will get TWICE as BIGGER as it used to
be IN only 6 MONHTS!

Check for details: http://www.hofackerandson.com/ 

And you'll get your money back, if you are not satisfied. 
No bullshit! 

-- 
lkhhihiomniqhthqhnilmliqinifipghfffthifnfrgkgigqjmgofsjhfifqgq

[Pam-mysql-general] ET's Daytime Emmy Dish

[Sales <sa...@st...>]

Got a little hitch in your sex life, 
we can put it in the helve easily! 

Our remedy will make you really indefatigable 
lover in a wink of an eye for cheap! 

But be quick, our offer gonna expire soon! 
For details check our official website: http://www.stelarwrite.com/ 

-- 
ukqhphpotnpqqtqqqnpltlpqpnpfppphqfqtoiqnqrpkpipqumpoqsuhqiqqpq

[Pam-mysql-general] Why not to make your think bigger?

[Sales <sa...@sk...>]

Have you ever had a dream of having sex with any girl you like?

We bet you have, and we are ready to bring your dream into life with
our uncompromising, brand new and revolutionary pills which will
strengthen your sex appeal making your dick REALLY BIG! 

Check for details our official website: http://www.skipbushnh.com/

-- 
lrhqisifmiihgoghgifujofhfifofsgqfqfmhrfgfmgrfjfhkrffghkqgnghfr

[Pam-mysql-general] escaping

[xyon <xy...@in...>]

While on the subject of escaping, I'm trying to pass some '%' vars to
pam_mysql similar to the below:

SELECT username FROM users WHERE description LIKE "%myuser%";, but
'myuser' is passed to the SQL statement as '%u'.

So the below doesn't work:
SELECT username FROM users WHERE description LIKE "%%u%";

I've tried a couple escape sequences, but am at a loss. Was still
experimenting when I saw your reply Moriyoshi, and figured I'd pop in a
message with this question just in case.

--=20
xyon <xy...@in...>

Re: [Pam-mysql-general] Disable escaping for passwdcolumn?

[Moriyoshi K. <mor...@at...>]

Till Wimmer wrote:
> Is there a way to disable escaping for passwdcolumn?

There's none for now. You can directly rewrite the SQL
queries in the source code though.

Custom query feature is planned to go in the next 0.7 release.

Regards,
Moriyoshi

[Pam-mysql-general] Disable escaping for passwdcolumn?

[Till W. <t.w...@su...>]

Hi everybody!

Is there a way to disable escaping for passwdcolumn?

Because my passwords are stored with ENCODE, the line in the pam config 
looks like this:

[...] table=secrets usercolumn=name passwdcolumn=DECODE(passwd,"decpwd") 
crypt=0

Since the last update of pam-mysql i get a syntax error because of the 
escaping:

pam_mysql - SELECT DECODE(passwd,\"dontlook\") FROM secrets WHERE name = 
'testuser'
pam_mysql - MySQL error(You have an error in your SQL syntax; check the ...


bg
Till

[Pam-mysql-general] You'll love the new, non-obese you

[Vonda S. <pow...@ci...>]

Anatrim =96 The up-to-the-moment and most fascinating flesh loss=20=
product is now easily available =96 As were told on Oprah.

Can you remember all the cases when you plead to yourself to do=20=
anything for being rescued from this quickly growing number of kilos?=20=
Fortunately, now no big price is to be paid. With Anatrim, the=20=
ground-breaking kilos-melting mixture, you can achieve healthier=20=
lifestyle and a really slender figure. Have a look at what our customers=20=
say!

"I hate to admit it but I was a junk food addict. 

I devoured all this trash 

and was unable to stop. 

This torment finished when I started taking Anatrim! 

God,

 my craving for food vanished, 

spirits increased and I became the happiest person on the planet 25=20=
pounds in 2.8 months. 

I can tell you now I=92m the happiest person!"
 

Linda F., Washington

 
"Since my early childhood I was a bulky boy. 

You can't fancy how I detested being mocked at school. 

I abhorred my stoutness and I abhorred myself. 

After trying many different remedies I heard about Anatrim. 

It literally took me out of this nightmare! Thanks and thanks to you,=20=
my friends."

 
Mike Brown, Chicago

 
"Know what? Anatrim kept my marriage intact! I got into the circle,=20=
depression =96 more eating =96 more depression. My wife was going to=20=
leave the overweight psycho I was turning in. 

My best friend pointed at your web site and I called for my pack of=20=
Anatrim at once. 

The result was splendid, my appetite came to acceptable level, I was in=20=
a good mood oftener, and, certainly, I became able to tighten my belt on=20=
some holes. And you see me, the bedroom became cool, too!"

 
Rikky

 There is a lot of thanks happy people leave after taking Anatrim. Why=20=
don't you join the thousands and thousands of slender men and women and=20=
try this natural appetite-abating energy boosting product now!

Do not decline your opportunity!

Re: [Pam-mysql-general] SELECT returned no result

[xyon <xy...@in...>]

On Sat, 2007-04-07 at 16:29 +0900, Moriyoshi Koizumi wrote:
> xyon wrote:
> > Figured I'd chime in and let everyone know of my progress.
> >=20
> > I used Moriyoshi's patch for custom queries in pam_mysql (linked below)=
.
> > Even though I still cannot match against the Scalix %u (username) value=
,
> > I can match on the %p (password) value, so things are at least moving i=
n
> > the proper direction.
>=20
> For the proper record, that's not mine. I'm just a project member who
> handled the patch entry.
>=20
> > I've tried everything with the "%u" value (TRIM, LOWER, etc), and yet i=
t
> > still refuses to match when coming from Scalix. So this problem all
> > along wasn't a pam_mysql thing, but a Scalix thing. Although this has
> > been a great learning experience for me, I apologize if I've caused any
> > undue frustration.
>=20
> No problem. Did you try strace and see anything suspicious among the
> calls? The query should've appeared as following:
>=20
> send(3, "<83>Apr  7 16:28:00 pamtester: pam_mysql - SELECT pwd FROM
> users WHERE scalix =3D \'Test User\'", 91, MSG_NOSIGNAL) =3D 91
> poll([{fd=3D4, events=3DPOLLIN|POLLPRI}], 1, 0) =3D 0
> write(4, "1\0\0\0\3SELECT pwd FROM users WHERE scalix =3D \'Test User\'",
> 53) =3D 53
> read(4,
> "\1\0\0\1\1*\0\0\2\3def\4test\5users\5users\3pwd\3pwd\f\10\0\377\0\0\0\37=
5\1\20\0\0\0\5\0\0\3\376\0\0\2\0\5\0\0\4\4test\5\0\0\5\376\0\0\2\0",
> 16384) =3D 78
>=20

strace with pamtester works great, nothing suspicious, authentication
works. It's just when Scalix is passing the params that things break,
and only with one of the params (the username, %u). The %u variable is
presented very oddly by Scalix (LastnameFirstnamehostnameFirstname
Lastname), so I have to do some fancy SQL to clean it up. When I copy
and paste the exact query that Scalix is using into a MySQL CLI, it
works just fine, so I'm just at a total loss at how Scalix is messing
this up.

Thanks again for all your help!


--=20
xyon

-------------------------------------------------------------------------
"They who can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety." --Benjamin Franklin
-------------------------------------------------------------------------

Re: [Pam-mysql-general] SELECT returned no result

[Moriyoshi K. <mor...@at...>]

xyon wrote:
> Figured I'd chime in and let everyone know of my progress.
> 
> I used Moriyoshi's patch for custom queries in pam_mysql (linked below).
> Even though I still cannot match against the Scalix %u (username) value,
> I can match on the %p (password) value, so things are at least moving in
> the proper direction.

For the proper record, that's not mine. I'm just a project member who
handled the patch entry.

> I've tried everything with the "%u" value (TRIM, LOWER, etc), and yet it
> still refuses to match when coming from Scalix. So this problem all
> along wasn't a pam_mysql thing, but a Scalix thing. Although this has
> been a great learning experience for me, I apologize if I've caused any
> undue frustration.

No problem. Did you try strace and see anything suspicious among the
calls? The query should've appeared as following:

send(3, "<83>Apr  7 16:28:00 pamtester: pam_mysql - SELECT pwd FROM
users WHERE scalix = \'Test User\'", 91, MSG_NOSIGNAL) = 91
poll([{fd=4, events=POLLIN|POLLPRI}], 1, 0) = 0
write(4, "1\0\0\0\3SELECT pwd FROM users WHERE scalix = \'Test User\'",
53) = 53
read(4,
"\1\0\0\1\1*\0\0\2\3def\4test\5users\5users\3pwd\3pwd\f\10\0\377\0\0\0\375\1\20\0\0\0\5\0\0\3\376\0\0\2\0\5\0\0\4\4test\5\0\0\5\376\0\0\2\0",
16384) = 78

-- 
Moriyoshi Koizumi <mor...@at...>

Re: [Pam-mysql-general] SELECT returned no result

[Moriyoshi K. <mor...@at...>]

Joey McCoy wrote:
> As I'm experimenting, I wonder if an entirely custom SQL statement would
> work. Is an entirely custom SQL statement possible with pam_mysql?

I got a bunch of such requests but I'm not perfectly sure if I should
really implement the stuff because it might also let users do the wrong
thing (SQL injection etc) quite easily. Any opinions?

Moriyoshi

-- 
Moriyoshi Koizumi <mor...@at...>

Re: [Pam-mysql-general] SELECT returned no result

[xyon <xy...@in...>]

Figured I'd chime in and let everyone know of my progress.

I used Moriyoshi's patch for custom queries in pam_mysql (linked below).
Even though I still cannot match against the Scalix %u (username) value,
I can match on the %p (password) value, so things are at least moving in
the proper direction.

I've tried everything with the "%u" value (TRIM, LOWER, etc), and yet it
still refuses to match when coming from Scalix. So this problem all
along wasn't a pam_mysql thing, but a Scalix thing. Although this has
been a great learning experience for me, I apologize if I've caused any
undue frustration.

Here is the patch in case anyone is interested. It works great!:

http://sourceforge.net/tracker/index.php?func=3Ddetail&aid=3D522843&group_i=
d=3D5741&atid=3D305741


Thank you to Gary and Moriyoshi for all your patience and help during
this process. You guys are great.

Have a wonderful weekend everyone!

On Fri, 2007-04-06 at 14:49 -0400, xyon wrote:
> On Sat, 2007-04-07 at 02:12 +0900, Moriyoshi Koizumi wrote:
> > Xyon,
> >=20
> > xyon wrote:
> > > Is pam_mysql very picky about config file syntax? Perhaps my syntax i=
s
> > > off by one character or something, although it would likely error out
> > > wouldn't it? Is "verbose=3D1" the most verbose I can get?
> >=20
> > If you doubt the pam_mysql's config file, then list all the settings in
> > pam_mysql lines of the PAM config file, which should accurately
> > configures pam_mysql.
> >=20
> > "verbose" is an on / off setting.
> >=20
> > > Perhaps an strace would provide some insight, but I'm not sure which
> > > process should be strace'd.
> >=20
> > strace (or ltrace) pam_mysql with pamtester. That's exactly what I was
> > doing.
> >=20
> > # ltrace pamtester <service_name> <user_name> authenticate
>=20
> Ah perfect. This is quite the handy tool, nicely done! There was an rpm
> repo that had it, relieving me of building my own rpm:
> http://ftp.belnet.be
>=20
> Perhaps I was wrong about cups. Some tweaking of the pam file rendered
> it working. Pamtester works like a champ, even with the scalix config
> file. This does in fact appear to be a Scalix problem, unfortunately.
>=20
> I don't know if it's including something extra in the query or what.
> There are people who have gotten it to work with kerberos via pam, so I
> don't see why it won't with pam_mysql.
>=20
>=20
> >=20
> -------------------------------------------------------------------------
> Take Surveys. Earn Cash. Influence the Future of IT
> Join SourceForge.net's Techsay panel and you'll get the chance to share y=
our
> opinions on IT & business topics through brief surveys-and earn cash
> http://www.techsay.com/default.php?page=3Djoin.php&p=3Dsourceforge&CID=3D=
DEVDEV
> _______________________________________________ Pam-mysql-general mailing=
 list Pam...@li... https://lists.sourceforge.net=
/lists/listinfo/pam-mysql-general
--=20
xyon

-------------------------------------------------------------------------
"They who can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety." --Benjamin Franklin
-------------------------------------------------------------------------

Re: [Pam-mysql-general] SELECT returned no result

[Joey M. <jo...@mc...>]

As I'm experimenting, I wonder if an entirely custom SQL statement would
work. Is an entirely custom SQL statement possible with pam_mysql?

Cheers,

On Fri, 2007-04-06 at 14:49 -0400, xyon wrote:
> On Sat, 2007-04-07 at 02:12 +0900, Moriyoshi Koizumi wrote:
> > Xyon,
> >=20
> > xyon wrote:
> > > Is pam_mysql very picky about config file syntax? Perhaps my syntax i=
s
> > > off by one character or something, although it would likely error out
> > > wouldn't it? Is "verbose=3D1" the most verbose I can get?
> >=20
> > If you doubt the pam_mysql's config file, then list all the settings in
> > pam_mysql lines of the PAM config file, which should accurately
> > configures pam_mysql.
> >=20
> > "verbose" is an on / off setting.
> >=20
> > > Perhaps an strace would provide some insight, but I'm not sure which
> > > process should be strace'd.
> >=20
> > strace (or ltrace) pam_mysql with pamtester. That's exactly what I was
> > doing.
> >=20
> > # ltrace pamtester <service_name> <user_name> authenticate
>=20
> Ah perfect. This is quite the handy tool, nicely done! There was an rpm
> repo that had it, relieving me of building my own rpm:
> http://ftp.belnet.be
>=20
> Perhaps I was wrong about cups. Some tweaking of the pam file rendered
> it working. Pamtester works like a champ, even with the scalix config
> file. This does in fact appear to be a Scalix problem, unfortunately.
>=20
> I don't know if it's including something extra in the query or what.
> There are people who have gotten it to work with kerberos via pam, so I
> don't see why it won't with pam_mysql.
>=20
>=20
> >=20
> -------------------------------------------------------------------------
> Take Surveys. Earn Cash. Influence the Future of IT
> Join SourceForge.net's Techsay panel and you'll get the chance to share y=
our
> opinions on IT & business topics through brief surveys-and earn cash
> http://www.techsay.com/default.php?page=3Djoin.php&p=3Dsourceforge&CID=3D=
DEVDEV
> _______________________________________________ Pam-mysql-general mailing=
 list Pam...@li... https://lists.sourceforge.net=
/lists/listinfo/pam-mysql-general
--=20
Joey McCoy <jo...@mc...>
Systems Administrator / I.T. Support
McGraw Software

Re: [Pam-mysql-general] SELECT returned no result

[xyon <xy...@in...>]

On Sat, 2007-04-07 at 02:12 +0900, Moriyoshi Koizumi wrote:
> Xyon,
>=20
> xyon wrote:
> > Is pam_mysql very picky about config file syntax? Perhaps my syntax is
> > off by one character or something, although it would likely error out
> > wouldn't it? Is "verbose=3D1" the most verbose I can get?
>=20
> If you doubt the pam_mysql's config file, then list all the settings in
> pam_mysql lines of the PAM config file, which should accurately
> configures pam_mysql.
>=20
> "verbose" is an on / off setting.
>=20
> > Perhaps an strace would provide some insight, but I'm not sure which
> > process should be strace'd.
>=20
> strace (or ltrace) pam_mysql with pamtester. That's exactly what I was
> doing.
>=20
> # ltrace pamtester <service_name> <user_name> authenticate

Ah perfect. This is quite the handy tool, nicely done! There was an rpm
repo that had it, relieving me of building my own rpm:
http://ftp.belnet.be

Perhaps I was wrong about cups. Some tweaking of the pam file rendered
it working. Pamtester works like a champ, even with the scalix config
file. This does in fact appear to be a Scalix problem, unfortunately.

I don't know if it's including something extra in the query or what.
There are people who have gotten it to work with kerberos via pam, so I
don't see why it won't with pam_mysql.


>=20
--=20
xyon

-------------------------------------------------------------------------
"They who can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety." --Benjamin Franklin
-------------------------------------------------------------------------

Re: [Pam-mysql-general] SELECT returned no result

[Moriyoshi K. <mor...@at...>]

Xyon,

xyon wrote:
> Is pam_mysql very picky about config file syntax? Perhaps my syntax is
> off by one character or something, although it would likely error out
> wouldn't it? Is "verbose=1" the most verbose I can get?

If you doubt the pam_mysql's config file, then list all the settings in
pam_mysql lines of the PAM config file, which should accurately
configures pam_mysql.

"verbose" is an on / off setting.

> Perhaps an strace would provide some insight, but I'm not sure which
> process should be strace'd.

strace (or ltrace) pam_mysql with pamtester. That's exactly what I was
doing.

# ltrace pamtester <service_name> <user_name> authenticate

-- 
Moriyoshi Koizumi <mor...@at...>

Re: [Pam-mysql-general] SELECT returned no result

[xyon <xy...@in...>]

Understood. Thank you so much for all your help. I will post back here
my findings.

On Wed, 2007-04-04 at 10:57 -0700, Gary W. Smith wrote:
> > Apr  4 13:51:23 scalix in.imap41d: pam_mysql - SELECT pwd FROM users
> > WHERE scalix =3D 'lastfirstscalixfirst last' AND (1=3D1) Apr  4 13:51:2=
3
> > scalix in.imap41d: pam_mysql - SELECT returned no result.
>=20
> This should indeed return something if the same thing is return a result
> directly with mysql.  This is beyond me.  At this point I would just see
> about email the author to see if he knows anything else that we may have
> missed.
>=20
> Gary
--=20
xyon

-------------------------------------------------------------------------
"They who can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety." --Benjamin Franklin
-------------------------------------------------------------------------