From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Ofhhu-0008Ce-V2 for garchives@archives.gentoo.org; Sun, 01 Aug 2010 23:12:39 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 68228E09D2; Sun, 1 Aug 2010 23:11:31 +0000 (UTC) Received: from genesis.genestate.com (unknown [212.21.116.18]) by pigeon.gentoo.org (Postfix) with ESMTP id E3FD8E09D2 for ; Sun, 1 Aug 2010 23:11:30 +0000 (UTC) Received: from localhost (exodus.genestate.com [10.194.217.3]) by genesis.genestate.com (Postfix) with ESMTP id 0B4C261A46 for ; Mon, 2 Aug 2010 00:11:30 +0100 (BST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=genestate.com; h= content-transfer-encoding:content-type:content-type:in-reply-to :references:subject:subject:mime-version:user-agent:from:from :date:date:message-id:received:received; s=default; t= 1280704498; bh=iXdglyDDV2Jp+5e3h38PT7Nmm37esEUx0zTZ/hw26Ds=; b=G BUXEsKMgAg3aKFXSyYS9q8jEAkzOiMEvZLOm1wIxxxR3BXojfsEe85B2mNzxPojs tBKg9TD56YkvNcNzw+O9rwzts1ZNH+/HyAV8MI+JoYsocvDN0DJqgvwYNQemasrO WCfnbJmst2wzCaUKckIjvEovtJUoJFJttejJZ/1PiY= Received: from genesis.genestate.com ([10.194.217.1]) by localhost (exodus.genestate.com [10.194.217.3]) (amavisd-new, port 10025) with ESMTP id IhRK76dMj+eR for ; Mon, 2 Aug 2010 00:14:58 +0100 (BST) Received: from [10.194.217.10] (faust.genestate.com [10.194.217.10]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by genesis.genestate.com (Postfix) with ESMTPSA id B4A8861A1E for ; Mon, 2 Aug 2010 00:11:29 +0100 (BST) Message-ID: <4C55FF20.2030100@genestate.com> Date: Mon, 02 Aug 2010 00:11:28 +0100 From: Matt Harrison User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.9.2.7) Gecko/20100713 Lightning/1.0b2 Thunderbird/3.1.1 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] courier imap over nfs References: <20100801150648.GA27611@genestate.com> <4C55AC1D.8040104@badapple.net> In-Reply-To: <4C55AC1D.8040104@badapple.net> X-Enigmail-Version: 1.1.1 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: 11bcd913-8a9a-40b6-ba86-528935908918 X-Archives-Hash: 4aa700db890e802f13bc8c23de091445 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, thanks for the replies guys On 01/08/2010 18:17, kashani wrote: > On 8/1/2010 8:06 AM, Matt Harrison wrote: >> Just wondering if anyone has any experience with courier-imap >> serving mailboxes over >> NFS. From googling around it seems courier should support remote >> homedirs but I can't >> get it working. >> >> My user authenticates according to the logs, but the client reports >> invalid >> credentials. Remove the NFS home directory and it works again. >> >> Any help would be appreciated, otherwise I'm going to have to >> install courier-imap on >> solaris, and I really don't feel like that :P >> > > I'd suspect UID/GID mismatches somewhere. Make sure the machine > delivering the email, the home dirs, and the machine running > courier-imap all see .maildir as the same user account. You may want > to put Courier-imap into verbose or debug mode as well. > I'd also look at your NFS config to see if you're doing any > squashes into other UIDs. And just for the hell of it, never use > mbox over NFS. The locking will kill you on a busy system. > > kashani > Ok, the machine that is serving the home directories never gets accessed directly by the users, the UIDs/GIDs are set on creation at the client end. The users have no problems at all using the home directory via a shell on any client machine, so I believe permissions are ok. Also, I was a bit misleading when I spoke about mailboxes, we are using Maildir. I just said mailboxes as a term to encompass the mail folders serverd by imap for each account :) I've tried to put courier-imap into debug mode (level 1) and I get what appears to be a successful authentication from pam, but the mail clients still don't like it: authdaemond: received auth request, service=imap, authtype=login authdaemond: authpam: trying this module authdaemond: authpam: sysusername=matt, sysuserid=, sysgroupid=100, homedir=/home/matt, address=matt, fullname=, maildir=, quota=, options= genesis authdaemond: pam_service=imap, pam_username=matt genesis authdaemond: dopam successful genesis authdaemond: Authenticated: sysusername=matt, sysuserid=, sysgroupid=100, homedir=/home/matt address=matt, fullname=, maildir=, quota=, options= The only difference in the logs is that an NFS user ends with the above snippet, whereas a normal user goes on to log the imap connection: imapd-ssl: LOGIN, user=matt, ip=[xxx.xxx.xxx.xxx], port=[3276], protocol=IMAP On 01/08/2010 18:19, Stroller wrote: > Have you considered dovecot? > > Stroller. > I haven't, no. Not for any reason other than I hit upon courier first and I has always worked pretty well until now. Is there a large advantage to using dovecot for imap over nfs? Or were you implying that it would be easier to setup on solaris? On 01/08/2010 19:10, Alex Schuster wrote: > Are your users in more than 16 groups? NFS only manages up to 16, which > once gave me weird side effects. > > Wonko No we're not using that many groups, and just to be sure I created a test user in only one group and it still have me the problem :( Grateful for the input guys, and for any more light you can shed on this :) thanks Matt -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkxV/yAACgkQdG+qMRd5kKpSEACaAlXaCNCD8wizWJ2Nb0Rvtd+u NTgAoLHObEBfdk3Mbvt7EkXcAG4jSu8W =TeFA -----END PGP SIGNATURE-----