[imp] CRAM-MD5 problem with Horde2/IMP3 and PHP4.1.1 ..

Marc G. Fournier scrappy@hub.org
Thu, 14 Feb 2002 00:32:06 -0400 (AST)


Okay, played around a bit more here, and it is *not* a CRAM-MD5 issue from
what I can tell ... I just went into ext/imap/php_imap.c and removed the
md5 auth line in there, so that md5 isn't an option, and the
authentication *still* fails on first login:


=====================
Warning: Login failed: authentication failure (errflg=1) in Unknown on line 0

Warning: Login failed: authentication failure (errflg=1) in Unknown on line 0

Warning: Login failed: authentication failure (errflg=1) in Unknown on line 0

Warning: Too many login failures (errflg=2) in Unknown on line 0
======================

According to the backend, all works well and the connection is then drop'd:

Feb 14 00:30:37 earth imapd[83193]: accepted connection
Feb 14 00:30:37 earth imapd[83193]: login: earth.hub.org[64.49.215.11] scrappy plaintext
Feb 14 00:30:39 earth imapd[83193]: accepted connection
Feb 14 00:30:53 earth master[92880]: process 82463 exited, status 0



On Wed, 13 Feb 2002, Marc G. Fournier wrote:

>
> I just went through the archives at Google, and, for the life of me, am
> still seriously confused here ... you suggest downgrading c-client, but,
> for my every-day email, I use Pine, which also uses c-client, and I've
> never had a problem with this ... and until upgrading to IMP3, we never
> had a problem with this either ...
>
> i've found one post on Google:
>
> http://groups.google.com/groups?q=cram-md5+group:mailing.www.horde-imp+group:mailing.www.horde-imp&hl=en&selm=9uho59%241utq%241%40FreeBSD.csie.NCTU.edu.tw&rnum=8
>
> That seems to suggest that eliminating CRAM-MD5 support is "a good thing"
> since it fixes the problem, but at the expensive of reduced security for
> everything else ...
>
> From what I can tell: Pine+c-client 2001a works fine ... PHP4.1.1+c-client
> is broken ... is there a way of disabling CRAM-MD5 support in PHP4 without
> screwing around with my security for other mail clients?
>
> On Thu, 7 Feb 2002, Jan Schneider wrote:
>
> > Zitat von "Marc G. Fournier" <scrappy@hub.org>:
> >
> > >
> > > Morning all ...
> > >
> > > 	I'm runing Cyrus-IMAPd 2.0.16, Cyrus-SASL 1.5.24 and DB3.2.9 on
> > > several servers, with Horde2/IMP3 installed as a front end ... if I
> > > close
> > > my web browser down and restart it, then try to login, *every time* it
> > > will give me:
> > >
> > > Feb  7 16:23:41 earth imapd[49380]: login: earth[64.49.215.11] cyrus
> > > CRAM-MD5 User logged in
> > > Feb  7 16:23:41 earth imapd[49380]: badlogin: earth[64.49.215.11]
> > > CRAM-MD5 authentication failure [incorrect digest response]
> > > Feb  7 16:23:47 earth last message repeated 2 times
> > >
> > > 	Without closing the browser, if I try to login a second time, I
> > > then get:
> > >
> > > Feb  7 16:26:40 earth imapd[50691]: login: earth[64.49.215.11] cyrus
> > > CRAM-MD5 User logged in
> > >
> > > 	And I'm in no problem ...
> > >
> > > 	If I login with pine, it goes straight through, no errors ...
> > >
> > > 	Doesn't appear to make a difference as to which browser is used,
> > > that first login attempt will give me a 'User logged in', with a
> > > subsequent 'badlogin:' error and kick me back out again ...
> > >
> > > 	Can anyone provide any insight or thoughts as to what it is that
> > > I'm not seeing?  That I might have setup wrong?  My PHP config is
> > > viewable
> > > at: http://www.hub.org/phpinfo.php, and I am running iwth cclient-2001a
> > > compiled in ...
> >
> > Both imap-2001a and CRAM-MD5 authentication on Cyrus have some issues that
> > were already discussed on the list. Check the archives for details.
> > As a start I'd try to downgrade the c-client.
> >
> > Jan.
> >
> > --
> > http://www.horde.org - The Horde Project
> > http://www.ammma.de - discover your knowledge
> > http://www.tip4all.de - Deine private Tippgemeinschaft
> >
> > --
> > IMP mailing list: http://horde.org/imp/
> > Archive: http://marc.theaimsgroup.com/?l=imp&r=1&w=2
> > Frequently Asked Questions: http://horde.org/faq/
> > To unsubscribe, mail: imp-unsubscribe@lists.horde.org
> >
> >
>
>
> --
> IMP mailing list: http://horde.org/imp/
> Archive: http://marc.theaimsgroup.com/?l=imp&r=1&w=2
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: imp-unsubscribe@lists.horde.org
>
>