Re: sasl EXTERNAL authentication by ssl certificate

To: mutt-users@xxxxxxxx
Subject: Re: sasl EXTERNAL authentication by ssl certificate
From: Uriel Avalos <amscopub-blender@xxxxxxxxx>
Date: Sat, 6 Dec 2008 22:47:15 -0500
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Received:X-YMail-OSG:X-Yahoo-Newman-Property:Date:From:To:Subject:Message-ID:Mail-Followup-To:References:MIME-Version:Content-Type:Content-Disposition:In-Reply-To:User-Agent; b=Nyk4baYQso//CQaiJgBGBP/7g4C5tPcd4kuXAXXMw/TABkrGIvtLmMF12D7iFSHjfWpVhEkW+BV8hhpfb3wKKMxWlwsC0yz5igagQOHrP/D+or6yjLoa+Jt5KZkYZ59QdPyofRIWsBgKGN13J+PbzAqJgZpgOQGUB2zWghLFjaI= ;
In-reply-to: <20081206071605.GA19579@xxxxxxxxx>
List-post: <mailto:mutt-users@mutt.org>
List-unsubscribe: send mail to majordomo@mutt.org, body only "unsubscribe mutt-users"
Mail-followup-to: Uriel Avalos <amscopub-blender@xxxxxxxxx>, mutt-users@xxxxxxxx
References: <20081206071605.GA19579@xxxxxxxxx>
Sender: owner-mutt-users@xxxxxxxx
User-agent: Mutt/1.5.18 (2008-05-17)

Shouldn't you use "imaps://" instead of "imap://"?

On Sat, Dec 06, 2008 at 01:16:06PM +0600, mitrohin a.s. wrote:
> ehlo.
> 
> mutt unable to authenticate in cyrus-imapd by ssl certificate with
> error - "No authenticators available".
> 
> Configuration files:
> 
> # imapd.conf
> sasl_mech_list: external plain login
> 
> # .muttrc
> set ssl_starttls=yes
> set ssl_client_cert="~/.ssl/swp.pem"
> set folder="imap://mail.domain.tld/"
> set spoolfile="+INBOX"
> mailboxes "!"
> account-hook . 'unset imap_user; unset imap_pass; unset tunnel'
> account-hook imap://mail.domain.tld/ 'set imap_authenticators=EXTERNAL'
> #account-hook imap://mail.domain.tld/ 'set imap_user=swp; set 
> imap_pass=XXXXXXXX; set imap_authenticators=LOGIN'
> 
> # cyrus-imapd log messages
> Dec  6 11:52:09 bspu imap[9873]: received client certificate
> Dec  6 11:52:09 bspu imap[9873]: 
> subject=/C=RU/ST=Altai/L=Barnaul/O=BSPU/OU=people/CN=swp/emailAddress=swp@xxxxxxxxx
> Dec  6 11:52:09 bspu imap[9873]: starttls: TLSv1 with cipher AES256-SHA 
> (256/256 bits new) authenticated as swp
> 
> # mutt -v
> Mutt 1.5.18 (2008-05-17)
> Copyright (C) 1996-2008 Michael R. Elkins and others.
> Mutt comes with ABSOLUTELY NO WARRANTY; for details type `mutt -vv'.
> Mutt is free software, and you are welcome to redistribute it
> under certain conditions; type `mutt -vv' for details.
> 
> System: FreeBSD 7.1-PRERELEASE (i386)
> ncurses: ncurses 5.6.20080503 (compiled with 5.6)
> libiconv: 1.11
> Compile options:
> -DOMAIN
> -DEBUG
> -HOMESPOOL  +USE_SETGID  +USE_DOTLOCK  +DL_STANDALONE  
> -USE_FCNTL  +USE_FLOCK   
> +USE_POP  +USE_NNTP  +USE_IMAP  -USE_SMTP  +USE_GSS  +USE_SSL_OPENSSL  
> -USE_SSL_GNUTLS  +USE_SASL  +HAVE_GETADDRINFO  
> +HAVE_REGCOMP  -USE_GNU_REGEX  +COMPRESSED  
> +HAVE_COLOR  +HAVE_START_COLOR  +HAVE_TYPEAHEAD  +HAVE_BKGDSET  
> +HAVE_CURS_SET  +HAVE_META  +HAVE_RESIZETERM  
> +CRYPT_BACKEND_CLASSIC_PGP  +CRYPT_BACKEND_CLASSIC_SMIME  
> -CRYPT_BACKEND_GPGME  
> -EXACT_ADDRESS  -SUN_ATTACHMENT  
> -ENABLE_NLS  -LOCALES_HACK  +HAVE_WC_FUNCS  +HAVE_LANGINFO_CODESET  
> +HAVE_LANGINFO_YESEXPR  
> +HAVE_ICONV  -ICONV_NONTRANS  -HAVE_LIBIDN  +HAVE_GETSID  -USE_HCACHE  
> -ISPELL
> SENDMAIL="/usr/sbin/sendmail"
> MAILPATH="/var/mail"
> PKGDATADIR="/usr/local/share/mutt"
> SYSCONFDIR="/usr/local/etc"
> EXECSHELL="/bin/sh"
> -MIXMASTER
> To contact the developers, please mail to <mutt-dev@xxxxxxxx>.
> To report a bug, please visit http://bugs.mutt.org/.
> 
> vvv.quote
> patch-1.5.0.ats.date_conditional.1
> dgc.deepif.1
> vvv.initials
> vvv.nntp
> patch-1.5.4.cd.ifdef.1
> rr.compressed
> 
> /swp

References:
- sasl EXTERNAL authentication by ssl certificate
  - From: mitrohin a.s.

Prev by Date: Re: 1.5.18 (from HEAD) and threading
Next by Date: can sign from PGP menu but not from S/MIME menu
Previous by thread: sasl EXTERNAL authentication by ssl certificate
Next by thread: Re: sasl EXTERNAL authentication by ssl certificate
Index(es):
- Date
- Thread