好吧,我被打败了,折腾两天了还没搞定。
环境说明一下.
1. iredmail 0.8.3 独立服务器, 基本上没有改动。
2. 另一个服务器vsftpd, 基于centos 6.3, ldapsearch 查询是可以查到ldap的用户。
3. 也在各个独立服务器部署了 svn 和 bugzilla , 使用iredmail 验证没有问题。
现在状况是 postmaster 可以登录,其他用户不能。
相关信息如下,如需要补充我再贴
[root@gwrdftp ~]# cat /etc/pam_ldap.conf | egrep -v '^#' | egrep -v ^$
base ou=Users,domainName=gwrd.net,o=domains,dc=gwrd,dc=net
binddn cn=vmail,dc=gwrd,dc=net
bindpw xxxx
scope one
pam_login_attribute sn
uri ldap://192.168.162.145/
ssl no
tls_cacertdir /etc/openldap/certs
pam_password crypt
[root@gwrdftp ~]# cat /etc/vsftpd/vsftpd.conf | egrep -v '^#' | egrep -v ^$
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
xferlog_file=/var/log/vsftpd.log
xferlog_std_format=NO
listen=YES
pam_service_name=vsftpd
userlist_enable=YES
tcp_wrappers=YES
guest_enable=YES
guest_username=ftp
log_ftp_protocol=YES
[root@gwrdftp ~]# cat /etc/pam.d/vsftpd | egrep -v '^#' | egrep -v ^$
auth sufficient pam_ldap.so
account sufficient pam_ldap.so
password sufficient pam_ldap.so
session optional pam_ldap.so
[root@gwrdftp log]# tailf vsftpd.log
Fri Mar 1 12:19:22 2013 [pid 2600] CONNECT: Client "192.168.18.12"
Fri Mar 1 12:19:22 2013 [pid 2600] FTP response: Client "192.168.18.12", "220 (vsFTPd 2.2.2)"
Fri Mar 1 12:19:22 2013 [pid 2600] FTP command: Client "192.168.18.12", "USER test"
Fri Mar 1 12:19:22 2013 [pid 2600] [test] FTP response: Client "192.168.18.12", "331 Please specify the password."
Fri Mar 1 12:19:22 2013 [pid 2600] [test] FTP command: Client "192.168.18.12", "PASS <password>"
Fri Mar 1 12:19:22 2013 [pid 2599] [test] FAIL LOGIN: Client "192.168.18.12"
Fri Mar 1 12:19:23 2013 [pid 2600] [test] FTP response: Client "192.168.18.12", "530 Login incorrect."
Fri Mar 1 12:21:01 2013 [pid 2657] CONNECT: Client "192.168.18.12"
Fri Mar 1 12:21:01 2013 [pid 2657] FTP response: Client "192.168.18.12", "220 (vsFTPd 2.2.2)"
Fri Mar 1 12:21:01 2013 [pid 2657] FTP command: Client "192.168.18.12", "USER postmaster"
Fri Mar 1 12:21:01 2013 [pid 2657] [postmaster] FTP response: Client "192.168.18.12", "331 Please specify the password."
Fri Mar 1 12:21:01 2013 [pid 2657] [postmaster] FTP command: Client "192.168.18.12", "PASS <password>"
Fri Mar 1 12:21:01 2013 [pid 2656] [postmaster] OK LOGIN: Client "192.168.18.12"
Fri Mar 1 12:21:01 2013 [pid 2664] [postmaster] FTP response: Client "192.168.18.12", "230 Login successful."
Fri Mar 1 12:21:01 2013 [pid 2664] [postmaster] FTP command: Client "192.168.18.12", "OPTS UTF8 ON"
Fri Mar 1 12:21:01 2013 [pid 2664] [postmaster] FTP response: Client "192.168.18.12", "200 Always in UTF8 mode."
Fri Mar 1 12:21:01 2013 [pid 2664] [postmaster] FTP command: Client "192.168.18.12", "PWD"
Fri Mar 1 12:21:01 2013 [pid 2664] [postmaster] FTP response: Client "192.168.18.12", "257 "/""
Fri Mar 1 12:21:04 2013 [pid 2666] CONNECT: Client "192.168.18.12"
Fri Mar 1 12:21:04 2013 [pid 2666] FTP response: Client "192.168.18.12", "220 (vsFTPd 2.2.2)"
Fri Mar 1 12:21:04 2013 [pid 2666] FTP command: Client "192.168.18.12", "USER test"
Fri Mar 1 12:21:04 2013 [pid 2666] [test] FTP response: Client "192.168.18.12", "331 Please specify the password."
Fri Mar 1 12:21:04 2013 [pid 2666] [test] FTP command: Client "192.168.18.12", "PASS <password>"
Fri Mar 1 12:21:04 2013 [pid 2665] [test] FAIL LOGIN: Client "192.168.18.12"
Fri Mar 1 12:21:05 2013 [pid 2666] [test] FTP response: Client "192.168.18.12", "530 Login incorrect."