Article delegate-en/3036 of [1-4225] on the server localhost:7119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]

Newsgroups: mail-lists.delegate-en
[DeleGate-En] PERMIT and AUTHORIZER don't work with mail protocols
20 Jul 2005 10:44:38 GMT =?windows-1251?Q?=D1=E5=F0=E3=E5=E9=20=D1=FB=F0=E5=F1=EA=E8=ED?= <p3yeqbdyi-mxhgu47hq73w.ml@delegate.org> 
Hello, Yutaka!

We have two bugs:
1. PERMIT doesn't work with mail protcolos;
2. AUTHORIZER=-pam doesn't work with mail protcolos.

Exactly the same PERMIT and AUTHORIZER do work for HTTP.
LOG_1 is for PERMIT=*:*:*,&,{!*,username}@*   AUTHORIZER=-pam/delegate
LOG_2 is for PERMIT=*   AUTHORIZER=-pam/delegate

------------ LOG_1 ------------
07/20 13:27:40.06 [9497] 0+0: --INITIALIZATION START: 9.0.3-pre32 on Linux/2.4.25-MCBC3.2.5--
07/20 13:27:40.06 [9497] 0+0: BINSHELL=/bin/sh
07/20 13:27:40.15 [9498] 0+0: -- Fork(daemon): 1 -> 9498
07/20 13:27:40.16 [9498] 0+0: server_open(delegate,192.168.2.250:8143,listen=20)
07/20 13:27:40.16 [9498] 0+0: server_open: 192.168.2.250:8143
07/20 13:27:40.16 [9498] 0+0: server_open(delegate,192.168.2.250:8143) BOUND
07/20 13:27:40.16 [9498] 0+0: DGROOT=/opt/delegate^M
07/20 13:27:40.16 [9498] 0+0: <DeleGate/9.0.3-pre32> [9498] -P192.168.2.250:8143 READY^M
07/20 13:27:40.20 [9498] 0+0: PORT= 192.168.2.250:8143/8 (0,192)
07/20 13:27:40.27 [9498] 0+0: OWNER=delegate/delegate => OWNER=delegate/delegate(delegate/delegate)
07/20 13:27:40.28 [9498] 0+0: REMITTABLE = imap,imaps
07/20 13:27:40.28 [9498] 0+0: --- [z] 8253C18 libz.so
07/20 13:27:40.28 [9498] 0+0: ---- [z] loaded 5 syms, unknown=0, already=0
07/20 13:27:40.28 [9498] 0+0: #### gzip/gunzip = dynamically linked
07/20 13:27:40.28 [9498] 0+0: ADMIN=root@localhost protocol=imap(specialist)
07/20 13:27:40.29 [9498] 0+0: WORKDIR=/opt/delegate/work/192.168.2.250:8143
07/20 13:27:40.29 [9498] 0+0: #### %S/%S >> %(0):143/%(1)@%(0) ####
07/20 13:27:40.29 [9498] 0+0: #### %(0)/%(1) << %S:143/%S@%S ####
07/20 13:27:40.29 [9498] 0+0: MOUNT[0]X[3] /-/builtin/icons/* = default
07/20 13:27:40.29 [9498] 0+0: MOUNT[1]X[4] /-/* = forbidden,from=!.RELIABLE,default
07/20 13:27:40.29 [9498] 0+0: MOUNT[2]X[0] /-* = default
07/20 13:27:40.29 [9498] 0+0: MOUNT[3]X[1] /=* = default
07/20 13:27:40.29 [9498] 0+0: MOUNT[4]X[2] //*%S/%S imap://imap.*%(0):143/%(1)@%(0) 
07/20 13:27:40.33 [9498] 0+0: env[7] LIBPATH=.;/;/opt/delegate/lib;/opt/delegate/bin;/opt/delegate/etc
07/20 13:27:40.33 [9498] 0+0: ext[0] SERVER=imap
07/20 13:27:40.33 [9498] 0+0: ext[1] MOUNT=//*%S/%S imap://imap.*%(0):143/%(1)@%(0)
07/20 13:27:40.33 [9498] 0+0: ext[2] PERMIT=*:*:*,&,{!*,username}@*
07/20 13:27:40.33 [9498] 0+0: ext[3] AUTHORIZER=-pam/delegate
07/20 13:27:40.33 [9498] 0+0: ext[4] PROTOLOG=192.168.2.250:8143.imap
07/20 13:27:40.33 [9498] 0+0: arg[1] DGROOT=/opt/delegate
07/20 13:27:40.33 [9498] 0+0: arg[2] TMPDIR=/opt/delegate/tmp
07/20 13:27:40.33 [9498] 0+0: arg[3] OWNER=delegate/delegate
07/20 13:27:40.33 [9498] 0+0: arg[4] ADMIN=root@localhost
07/20 13:27:40.33 [9498] 0+0: arg[5] RESOLV=cache,file,sys,dns
07/20 13:27:40.33 [9498] 0+0: arg[6] TIMEOUT=restart:3h
07/20 13:27:40.33 [9498] 0+0: arg[7] TIMEOUT=shutout:24h
07/20 13:27:40.33 [9498] 0+0: arg[8] TIMEOUT=dns:2
07/20 13:27:40.33 [9498] 0+0: arg[9] TIMEOUT=dnsinv:2
07/20 13:27:40.33 [9498] 0+0: arg[10] MAXIMA=delegated:64
07/20 13:27:40.33 [9498] 0+0: arg[11] CACHE=no
07/20 13:27:40.34 [9498] 0+0: DELEGATE_Modified[0]: 42d83a1a
07/20 13:27:40.34 [9498] 0+0: --INITIALIZATION DONE: 9.0.3-pre32 on Linux/2.4.25-MCBC3.2.5--
07/20 13:27:40.34 [9498] 0+0: RESTART at 20/Jul/2005:16:00:00 +0300
07/20 14:10:26.94 [10285] 1+0: -- Fork(OnetimeServer): 9498 -> 10285
07/20 14:10:26.96 [10285] 1+0: bind_insock(8,192.168.2.250,0) = 0, errno=0
07/20 14:10:26.96 [10285] 1+0: ## connect[8] TIMEOUT(1000)
07/20 14:10:26.96 [10285] 1+0: ### IDENT CONNECT(int.kin.org:113) TIMEOUT(1000ms) (110)
07/20 14:10:26.97 [10285] 1+0: (0) accepted [39] -@[192.168.2.2]int.kin.org:34614 (0.036s)(1)
07/20 14:10:26.97 [10285] 1+0: PATH: imap://-:143!kaa:8143!int.kin.org:34614!anonymous@int.kin.org;1121854226
07/20 14:10:27.00 [10285] 1+0: Free proxy -- imap://-/
07/20 14:10:27.00 [10285] 1+0: D: * OK 192.168.2.250 Proxy IMAP4 server DeleGate/9.0.3-pre32^M
07/20 14:10:27.00 [10285] 1+0: C: 0 CAPABILITY^M
07/20 14:10:27.00 [10285] 1+0: D: 0 OK CAPABILITY^M
07/20 14:10:27.01 [10285] 1+0: C: 1 LOGIN "username@mail..ru" ****
07/20 14:10:27.01 [10285] 1+0: *** //mail.ru/username => imap://imap.mail.ru:143/username@mail..ru ***
07/20 14:10:27.01 [10285] 1+0: IMAP LOGIN  "username@mail..ru" @ imap.mail.ru:143
07/20 14:10:27.01 [10285] 1+0: E-P: No permission: int.kin.org:34614 => imap://imap.mail.ru (unmatch PERMIT)
07/20 14:10:27.01 [10285] 1+0: ####LS cannot open /opt/delegate/act/delay/13/192.168.2.2:int.kin.org
07/20 14:10:27.02 [10285] 1+0: E-C: Can't connect: int.kin.org:34614 => imap://imap.mail.ru (?)
07/20 14:10:27.02 [10285] 1+0: willSTLS_SV: ServerFlags=10
07/20 14:10:27.02 [10285] 1+0: D: 1 BAD LOGIN user@host first.^M
07/20 14:10:27.02 [10285] 1+0: NO IMAP-LOGIN FROM -@kin..:34614 TO username@mail.ru@mail..ru
07/20 14:10:27.02 [10285] 1+0: C: EOF
07/20 14:10:27.03 [10285] 1+0: disconnected [39] -@[192.168.2.2]int.kin.org:34614 (0.090s)(0)
------------ LOG_1 ENDS ------------


------------ LOG_2 ------------
07/20 14:13:37.91 [10445] 0+0: --INITIALIZATION START: 9.0.3-pre32 on Linux/2.4.25-MCBC3.2.5--
07/20 14:13:37.91 [10445] 0+0: BINSHELL=/bin/sh
07/20 14:13:37.95 [10446] 0+0: -- Fork(daemon): 10445 -> 10446
07/20 14:13:37.96 [10446] 0+0: server_open(delegate,192.168.2.250:8143,listen=20)
07/20 14:13:37.96 [10446] 0+0: server_open: 192.168.2.250:8143
07/20 14:13:37.96 [10446] 0+0: server_open(delegate,192.168.2.250:8143) BOUND
07/20 14:13:37.96 [10446] 0+0: DGROOT=/opt/delegate^M
07/20 14:13:37.96 [10446] 0+0: <DeleGate/9.0.3-pre32> [10446] -P192.168.2.250:8143 READY^M
07/20 14:13:38.10 [10446] 0+0: PORT= 192.168.2.250:8143/8 (0,192)
07/20 14:13:38.21 [10446] 0+0: OWNER=delegate/delegate => OWNER=delegate/delegate(delegate/delegate)
07/20 14:13:38.21 [10446] 0+0: REMITTABLE = ftp-data,ftp,ftps,telnet,telnets,smtp,smtp-data,whois,domain,dns,gopher,finger,http,https,ssltunnel,pop,pop3s,imap,imaps,ident,nntp,nntps,news,nbt,prospero,archie,wais,tsp,ldap,ldaps,lpr,X,syslog,talk,socks,icap,cuseeme,icp,http-proxy,pam,httpam,dgauth,delegate,tcprelay,udprelay,udprelay1,teleport,coupler,vsap,sockmux,thruway
07/20 14:13:38.21 [10446] 0+0: --- [z] 8240348 libz.so
07/20 14:13:38.21 [10446] 0+0: ---- [z] loaded 5 syms, unknown=0, already=0
07/20 14:13:38.21 [10446] 0+0: #### gzip/gunzip = dynamically linked
07/20 14:13:38.21 [10446] 0+0: ADMIN=root@localhost protocol=imap(specialist)
07/20 14:13:38.21 [10446] 0+0: WORKDIR=/opt/delegate/work/192.168.2.250:8143
07/20 14:13:38.21 [10446] 0+0: #### %S/%S >> %(0):143/%(1)@%(0) ####
07/20 14:13:38.21 [10446] 0+0: #### %(0)/%(1) << %S:143/%S@%S ####
07/20 14:13:38.21 [10446] 0+0: MOUNT[0]X[3] /-/builtin/icons/* = default
07/20 14:13:38.21 [10446] 0+0: MOUNT[1]X[4] /-/* = forbidden,from=!.RELIABLE,default
07/20 14:13:38.21 [10446] 0+0: MOUNT[2]X[0] /-* = default
07/20 14:13:38.21 [10446] 0+0: MOUNT[3]X[1] /=* = default
07/20 14:13:38.22 [10446] 0+0: MOUNT[4]X[2] //*%S/%S imap://imap.*%(0):143/%(1)@%(0) 
07/20 14:13:38.22 [10446] 0+0: env[7] LIBPATH=.;/;/opt/delegate/lib;/opt/delegate/bin;/opt/delegate/etc
07/20 14:13:38.22 [10446] 0+0: ext[0] SERVER=imap
07/20 14:13:38.22 [10446] 0+0: ext[1] MOUNT=//*%S/%S imap://imap.*%(0):143/%(1)@%(0)
07/20 14:13:38.22 [10446] 0+0: ext[2] PERMIT=*
07/20 14:13:38.22 [10446] 0+0: ext[3] AUTHORIZER=-pam/delegate
07/20 14:13:38.22 [10446] 0+0: ext[4] PROTOLOG=192.168.2.250:8143.imap
07/20 14:13:38.22 [10446] 0+0: arg[1] DGROOT=/opt/delegate
07/20 14:13:38.22 [10446] 0+0: arg[2] TMPDIR=/opt/delegate/tmp
07/20 14:13:38.22 [10446] 0+0: arg[3] OWNER=delegate/delegate
07/20 14:13:38.22 [10446] 0+0: arg[4] ADMIN=root@localhost
07/20 14:13:38.22 [10446] 0+0: arg[5] RESOLV=cache,file,sys,dns
07/20 14:13:38.22 [10446] 0+0: arg[6] TIMEOUT=restart:3h
07/20 14:13:38.22 [10446] 0+0: arg[7] TIMEOUT=shutout:24h
07/20 14:13:38.22 [10446] 0+0: arg[8] TIMEOUT=dns:2
07/20 14:13:38.22 [10446] 0+0: arg[9] TIMEOUT=dnsinv:2
07/20 14:13:38.22 [10446] 0+0: arg[10] MAXIMA=delegated:64
07/20 14:13:38.22 [10446] 0+0: arg[11] CACHE=no
07/20 14:13:38.22 [10446] 0+0: DELEGATE_Modified[1]: 42de23d2
07/20 14:13:38.22 [10446] 0+0: --INITIALIZATION DONE: 9.0.3-pre32 on Linux/2.4.25-MCBC3.2.5--
07/20 14:13:38.22 [10446] 0+0: RESTART at 20/Jul/2005:16:00:00 +0300
07/20 14:13:56.23 [10466] 1+0: -- Fork(OnetimeServer): 10446 -> 10466
07/20 14:13:56.24 [10466] 1+0: (0) accepted [48] -@[192.168.2.2]int.kin.org:34616 (0.017s)(1)
07/20 14:13:56.24 [10466] 1+0: PATH: imap://-:143!kaa:8143!int.kin.org:34616!anonymous@int.kin.org;1121854436
07/20 14:13:56.26 [10466] 1+0: Free proxy -- imap://-/
07/20 14:13:56.26 [10466] 1+0: D: * OK 192.168.2.250 Proxy IMAP4 server DeleGate/9.0.3-pre32^M
07/20 14:13:56.26 [10466] 1+0: C: 0 CAPABILITY^M
07/20 14:13:56.26 [10466] 1+0: D: 0 OK CAPABILITY^M
07/20 14:13:56.27 [10466] 1+0: C: 1 LOGIN "username@mail..ru" ****
07/20 14:13:56.27 [10466] 1+0: *** //mail.ru/username => imap://imap.mail.ru:143/username@mail..ru ***
07/20 14:13:56.27 [10466] 1+0: IMAP LOGIN  "username@mail..ru" @ imap.mail.ru:143
07/20 14:13:57.39 [10466] 1+0: ConnectToServer connected [8] {194.67.23.220:143 <- 192.168.1.81:34238} [1.116s]
07/20 14:13:57.39 [10466] 1+0: willSTLS_SV: ServerFlags=10
07/20 14:13:58.05 [10466] 1+0: >>>> * OK Mail.Ru IMAP server ready.^M
07/20 14:13:58.05 [10466] 1+0: >>>> 1 LOGIN "username@mail..ru" ****
07/20 14:13:58.05 [10466] 1+0: willSTLS_SV: ServerFlags=10
07/20 14:13:58.05 [10466] 1+0: [0.00,-1][AUTH cache-NONE] /opt/delegate/adm/authorizer/delegate.-.pam/3b70142f345cb013ed8a74800135a553-cache
07/20 14:13:58.05 [10466] 1+0: ## dgpam = /opt/delegate/subin/dgpam
07/20 14:13:59.29 [10466] 1+0: ## dgpam -a delegate username@mail..ru = HTTP/1.0 401^M
07/20 14:13:59.29 [10466] 1+0: ## Auth/PAM = -1 <username@mail.ru:****@-delegate.-.pam>
07/20 14:13:59.29 [10466] 1+0: AUTHORIZER=-pam/delegate host=[-pam] user=[username@mail..ru] -> NO
07/20 14:13:59.29 [10466] 1+0: #### [username@mail..ru] LOGIN forbidden
07/20 14:13:59.30 [10466] 1+0: C: EOF
07/20 14:13:59.30 [10466] 1+0: disconnected [48] -@[192.168.2.2]int.kin.org:34616 (3.081s)(0)
------------ LOG_2 ENDS ------------


And as usual I have some questions: 
- why REMITTABLE is different in LOG_1 and LOG_2?
- swft doesn't build on my system (see my previous post); 
- what is swft for, I didn't find anything about it in the manual?

"Shockwave Flush" is spelled "Shockwave Flash" - fix the manual.

With best regards,
       Serge Sireskin
  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V