[Web-cyradm] http://xerxes.qwik.net/

John Thomas gmane-2006-04-16 at jt-socal.com
Mon Jul 23 17:19:58 CEST 2007 

> An example of a FQUN (fully qualified user name) = user at domain.com  We 
> implemented FQUN in such a way that user1 at domain1.com is unique and separate 
> from user1 at domain2.com.
> 
> The mail client uses the FQUN together with a password to check mail.
> 
> In addition, our system uses the FQUN and password as a check before 
> allowing SMTP connections.

It is my understanding the Web-Cyradm has this too, but maybe I do not 
understand it.  I must admit, I have tried to set up support for FQUN on 
a new system and have yet to be able to get it to work, but it is 
probably due to my lack of knowledge of saslauthd.

Here is a copy of the message to the list on 8/12/06 regarding FQUN in 
Web-Cyradm

> Hi list,
> 
> I've added experimental support to svn version of web-cyradm. My test
> configuration was:
> cyrus-imapd-2.2.12
> cyrus-sasl-2.1.21
> postfix-2.2.5
> 
> I've changed cyrus admin name in DB from name to name at realm:
> UPDATE accountuser SET username='cyrus at mail.dom.prv' WHERE username='cyrus'
> 
> ######## imapd.conf:
> admins: cyrus
> virtdomains: yes
> unixhierarchysep: yes
> 
> sasl_pwcheck_method: auxprop
> sasl_mech_list: plain login cram-md5 digest-md5
> sasl_auxprop_plugin: sql
> sasl_sql_engine: mysql
> sasl_sql_user: mail
> sasl_sql_passwd: secret
> sasl_sql_hostnames: localhost
> sasl_sql_database: mail
> sasl_sql_statement: select password from accountuser where username =
> '%u@%r' and imap = 1
> 
> servername: mail.dom.prv
> hostname: mail.dom.prv
> 
> ######## smtpd.conf
> pwcheck_method: auxprop
> mech_list: plain login cram-md5 digest-md5
> auxprop_plugin: sql
> sql_engine: mysql
> sql_user: mail
> sql_passwd: secret
> sql_database: mail
> sql_statement: select password from accountuser where username = '%u@%r'
> and smtpauth = 1
> 
> ######## main.conf
> myhostname = mail.dom.prv
> mydomain = dom.prv
> mydestination = mysql:/etc/mail/mysql-mydestination.cf
> mailbox_transport = cyrus
> fallback_transport = cyrus
> virtual_maps = mysql:/etc/mail/mysql-virtual.cf
> 
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_security_options = noanonymous
> smtpd_sasl_local_domain =
> broken_sasl_auth_clients = yes
> 
> smtpd_sender_login_maps = mysql:/etc/mail/mysql-owner.cf
> 
> smtpd_recipient_restrictions =
>         reject_sender_login_mismatch,
>         permit_sasl_authenticated,
>         reject_unauth_destination,
>         permit
> 
> ######## master.conf
> cyrus     unix  -       n       n       -       -       pipe
>   user=cyrus argv=/usr/lib/cyrus/deliver -e -r ${sender} -m ${extension}
> ${recipient}
> 
> ######## mysql-* in attachment
> 
> 
> Any comments very welcome  ;-) 
> 
> Best regards,
> Lukasz






-- 
Sincerely,
John Thomas

More information about the Web-cyradm mailing list