| View previous topic :: View next topic |
| Author |
Message |
hanj
Veteran
Joined: 19 Aug 2003
Posts: 1500
|
 Posted: Tue Feb 28, 2006 5:44 am Post subject: cyrus-sasl question (migrating virt users) |
 |
|
Hello All
I'm faced with an interesting challenge. I'm currently helping a fellow system admin that is trying to move an existing qmail/qmailadmin/virtmail set up to postfix/virtmail. I'm wondering if anyone has done this before. The concern is moving users from the vpopmail:vpopmail table to the mailsql:users table, while maintaining the crypted passwords.
The qmail passwords are stored in this format:
| Code: | | $1$wjiBmSW2$PVJG6BIDJ1x0cHolcRycu1 |
And the postfix crypt is stored in this matter:
Does anyone have any advice on what needs to happen? Push the qmail passwords over to postfix, and configure it to use a different crypt method? Do I need to reset all qmail passwords? Convert the passwords somehow? Will cyrus-sasl be able to seamlessly recognize the passwords on the system?
I see in /etc/sasl2/smtpd.conf there is a crypt_trad option.. which might be the ticket, but not 100% sure.
| Code: | ## password_format: [plaintext|crypt|crypt_trad]
password_format: crypt
or
password_format: crypt_trad |
The postfix set up will be following the standard virtmail howto, but using the crypt field in the database. Here is virtmail packages with current USE flags
| Code: | mail-mta/postfix-2.2.5 -hardened -ipv6 -ldap -mailwrapper -mbox +mysql -nis +pam -postgres +sasl (-selinux) +ssl +vda
dev-libs/cyrus-sasl-2.1.20 [2.1.20-r2] -authdaemond +berkdb +gdbm -java -kerberos -ldap +mysql +pam -postgres +ssl -static
dev-db/mysql-4.1.14 +berkdb -big-tables -cluster -debug -doc -extraengine -geometry -minimal +perl +readline (-selinux) +ssl -static +tcpd -utf8
mail-filter/amavisd-new-2.3.3-r2 -ldap -milter +mysql -postgres
mail-filter/spamassassin-3.1.0 +berkdb -doc -minimal +mysql -qmail +ssl -tools
app-antivirus/clamav-0.88 +crypt -mailwrapper -milter (-selinux) |
This server will be a new server all together. The current admin is unhappy with qmail, and desires postfix, hence the move.
Any help is greatly appreciated.
Thanks in advance.
hanji
Last edited by hanj on Thu Mar 02, 2006 7:26 pm; edited 1 time in total |
|
| Back to top |
|
 |
hanj
Veteran
Joined: 19 Aug 2003
Posts: 1500
|
| Posted: Thu Mar 02, 2006 10:44 am Post subject: |
|
|
| bump |
|
| Back to top |
|
|
magic919
Advocate
Joined: 17 Jun 2005
Posts: 2182
Location: Berkshire, UK
|
| Posted: Thu Mar 02, 2006 6:33 pm Post subject: |
|
|
You might want to redefine the question a bit here (and subject).
Given that Postfix isn't interested in user (virtual of otherwise) passwords I'm assuming you want to implement SASL for SMTP-AUTH. As far as I know this is done using Cyrus-SASL which is separate to Postfix. I don't use SASL but a number if clued-up guys on here do. I think you'd want to ask whether Cyrus-SASL can support these crypt passwords or whether a script could convert them. Would be worth clarifying if they are in MySQL database as it might be relevant. |
|
| Back to top |
|
|
hanj
Veteran
Joined: 19 Aug 2003
Posts: 1500
|
| Posted: Thu Mar 02, 2006 7:26 pm Post subject: |
|
|
Thank you for your suggestion. I changed the subject and modified my original post.
Thanks!
hanji |
|
| Back to top |
|
|
|
Networking & Security
