Unable to change password without breaking login

classic Classic list List threaded Threaded
11 messages Options
Reply | Threaded
Open this post in threaded view
|

Unable to change password without breaking login

Mark
Hi all,
 
I'm having problems logging in to a fresh exim4u installation. If I leave the default siteadmin password as CHANGE then I can log in no problem but as soon as I change the password I cannot log in anymore. If I create a local domain and try log in as that administrator I can't log in either. On my latest attempt I used http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql so that crypt was set to varchar(255) and to make sure I didn't miss anything else.
 
Is there anything else I can look at? And, btw, I can't seem to find the siteadmin password in variables.php?

 

My environment is as follows:

Exim version 4.80

PHP 5.4.4-2

MySQL 5.5.24-4

Apache 2.2.16

 

Thanks

Mark


_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: Unable to change password without breaking login

gldickens3
Administrator
A good starting point would be to use mysql or phpmyadmin to verify the
database's variables after you change the siteadmin password or setup a
new local domain.   That is, verify with mysql or phpmyadmin that the
siteadmin password was changed appropriately and/or that the new account
credentials are correct.

The siteadmin password is not stored in variables.php.  There is an
erroneous reference to this in the INSTALL doc but that has been fixed
in the trunk.

Gordon



On 07/02/2012 03:35 PM, Mark Shearar wrote:

> Hi all,
>  
> I'm having problems logging in to a fresh exim4u installation.
> If I leave the default siteadmin password as CHANGE then I can
> log in no problem but as soon as I change the password I cannot
> log in anymore. If I create a local domain and try log in as that
> administrator I can't log in either. On my latest attempt I used
> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so
> that crypt was set to varchar(255) and to make sure I didn't miss
> anything else.
>  
> Is there anything else I can look at? And, btw, I can't seem to
> find the siteadmin password in variables.php?
>
> My environment is as follows:
>
> Exim version 4.80
>
> PHP 5.4.4-2
>
> MySQL 5.5.24-4
>
> Apache 2.2.16
>
> Thanks
>
> Mark
>
>
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users



_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: Unable to change password without breaking login

Mark
Hi Gordon,

When I look in the users table I can see the new user I created with the correct localpart, the correct username (email address) and the correct password in "clear". The crypt table contains 102 characters so I assume that's correct, the uid and gid are the same as my exim4u user and group.

I remember from the previous two installations that when I changed the siteadmin password the correct password would show in the clear table, just not sure if the "crypt" changed at all.

I'm not sure if this is relevant but looking in apache2/error.log I see the following:

PHP Notice:  Undefined index: realname in /var/www/exim4u/config/variables.php on line 106, referer: http://domain.tld/exim4u/index.php
PHP Notice:  Undefined index: realname in /var/www/exim4u/config/variables.php on line 106, referer: http://domain.tld/exim4u/index.php
PHP Notice:  Undefined index: localpart in /var/www/exim4u/config/variables.php on line 108, referer: http://domain.tld/exim4u/index.php
PHP Notice:  Undefined index: domain in /var/www/exim4u/config/variables.php on line 116, referer: http://domain.tld/exim4u/index.php
 
Mark

-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf Of [hidden email]
Sent: 02 July 2012 11:47 PM
To: Exim4U General Discussion
Subject: Re: [Exim4U] Unable to change password without breaking login

A good starting point would be to use mysql or phpmyadmin to verify the database's variables after you change the siteadmin password or setup a new local domain.   That is, verify with mysql or phpmyadmin that the siteadmin password was changed appropriately and/or that the new account credentials are correct.

The siteadmin password is not stored in variables.php.  There is an erroneous reference to this in the INSTALL doc but that has been fixed in the trunk.

Gordon



On 07/02/2012 03:35 PM, Mark Shearar wrote:

> Hi all,
>  
> I'm having problems logging in to a fresh exim4u installation.
> If I leave the default siteadmin password as CHANGE then I can log in
> no problem but as soon as I change the password I cannot log in
> anymore. If I create a local domain and try log in as that
> administrator I can't log in either. On my latest attempt I used
> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so that
> crypt was set to varchar(255) and to make sure I didn't miss anything
> else.
>  
> Is there anything else I can look at? And, btw, I can't seem to find
> the siteadmin password in variables.php?
>
> My environment is as follows:
>
> Exim version 4.80
>
> PHP 5.4.4-2
>
> MySQL 5.5.24-4
>
> Apache 2.2.16
>
> Thanks
>
> Mark
>
>
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users



_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users

_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: Unable to change password without breaking login

gldickens3
Administrator
The crypt field should be 256 characters in length since it is defined
as varchar(255) in the file that you referenced in your first email:

http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql

The crypt field use to be defined as varchar(48) and was changed to
varchar(255) because of problems discovered with the Debian
implementation of PHP 5.3 with a 48 character crypt field.

I would investigate why your crypt field is 102 characters in length
instead of 256.  Refer to:

http://users.exim4u.org/debian-ubuntu-php-5-3-crypt-problem-td3601265.html

where nightkid stated:

"A short dig into the code shows that crypt_password('any string') with
the default MD5 method returns a 200 symbol line instead of the old 48
symbols, probably due to the new MD5 code in PHP 5.3."

FYI,

Gordon



On 07/03/2012 06:52 AM, Mark Shearar wrote:

> Hi Gordon,
>
> When I look in the users table I can see the new user I created with the correct localpart, the correct username (email address) and the correct password in "clear". The crypt table contains 102 characters so I assume that's correct, the uid and gid are the same as my exim4u user and group.
>
> I remember from the previous two installations that when I changed the siteadmin password the correct password would show in the clear table, just not sure if the "crypt" changed at all.
>
> I'm not sure if this is relevant but looking in apache2/error.log I see the following:
>
> PHP Notice:  Undefined index: realname in /var/www/exim4u/config/variables.php on line 106, referer: http://domain.tld/exim4u/index.php
> PHP Notice:  Undefined index: realname in /var/www/exim4u/config/variables.php on line 106, referer: http://domain.tld/exim4u/index.php
> PHP Notice:  Undefined index: localpart in /var/www/exim4u/config/variables.php on line 108, referer: http://domain.tld/exim4u/index.php
> PHP Notice:  Undefined index: domain in /var/www/exim4u/config/variables.php on line 116, referer: http://domain.tld/exim4u/index.php
>  
> Mark
>
> -----Original Message-----
> From: [hidden email] [mailto:[hidden email]] On Behalf Of [hidden email]
> Sent: 02 July 2012 11:47 PM
> To: Exim4U General Discussion
> Subject: Re: [Exim4U] Unable to change password without breaking login
>
> A good starting point would be to use mysql or phpmyadmin to verify the database's variables after you change the siteadmin password or setup a new local domain.   That is, verify with mysql or phpmyadmin that the siteadmin password was changed appropriately and/or that the new account credentials are correct.
>
> The siteadmin password is not stored in variables.php.  There is an erroneous reference to this in the INSTALL doc but that has been fixed in the trunk.
>
> Gordon
>
>
>
> On 07/02/2012 03:35 PM, Mark Shearar wrote:
>> Hi all,
>>    
>> I'm having problems logging in to a fresh exim4u installation.
>> If I leave the default siteadmin password as CHANGE then I can log in
>> no problem but as soon as I change the password I cannot log in
>> anymore. If I create a local domain and try log in as that
>> administrator I can't log in either. On my latest attempt I used
>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so that
>> crypt was set to varchar(255) and to make sure I didn't miss anything
>> else.
>>    
>> Is there anything else I can look at? And, btw, I can't seem to find
>> the siteadmin password in variables.php?
>>
>> My environment is as follows:
>>
>> Exim version 4.80
>>
>> PHP 5.4.4-2
>>
>> MySQL 5.5.24-4
>>
>> Apache 2.2.16
>>
>> Thanks
>>
>> Mark
>>
>>
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users



_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: Unable to change password without breaking login

Mark
Thanks Gordon,

Crypt is definitely varchar(255) yet any new user I create definitely only has 102 characters in that field. I assume then that varchar(255) doesn't define the maximum number of characters allowed in a particular field but rather defines how many characters should always be in that field? Ie any value therein should always be 256 characters? To be honest, I've no idea where to go from here nor how to check why it's populating that field with only 102 characters.

Mark

-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf Of [hidden email]
Sent: 03 July 2012 08:30 PM
To: Exim4U General Discussion
Subject: Re: [Exim4U] Unable to change password without breaking login

The crypt field should be 256 characters in length since it is defined as varchar(255) in the file that you referenced in your first email:

http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql

The crypt field use to be defined as varchar(48) and was changed to
varchar(255) because of problems discovered with the Debian implementation of PHP 5.3 with a 48 character crypt field.

I would investigate why your crypt field is 102 characters in length instead of 256.  Refer to:

http://users.exim4u.org/debian-ubuntu-php-5-3-crypt-problem-td3601265.html

where nightkid stated:

"A short dig into the code shows that crypt_password('any string') with the default MD5 method returns a 200 symbol line instead of the old 48 symbols, probably due to the new MD5 code in PHP 5.3."

FYI,

Gordon



On 07/03/2012 06:52 AM, Mark Shearar wrote:
> Hi Gordon,
>
> When I look in the users table I can see the new user I created with
> the
 correct localpart, the correct username (email address) and the correct  password in "clear". The crypt table contains 102 characters so I assume  that's  correct, the uid and gid are the same as my exim4u user and group.
>
> I remember from the previous two installations that when I changed the
 siteadmin password the correct password would show in the clear table, just  not  sure if the "crypt" changed at all.
>
> I'm not sure if this is relevant but looking in apache2/error.log I
> see
 the following:
>
> PHP Notice:  Undefined index: realname in
 /var/www/exim4u/config/variables.php on line 106, referer:
 http://domain.tld/exim4u/index.php
> PHP Notice:  Undefined index: realname in
 /var/www/exim4u/config/variables.php on line 106, referer:
 http://domain.tld/exim4u/index.php
> PHP Notice:  Undefined index: localpart in
 /var/www/exim4u/config/variables.php on line 108, referer:
 http://domain.tld/exim4u/index.php
> PHP Notice:  Undefined index: domain in
 /var/www/exim4u/config/variables.php on line 116, referer:
 http://domain.tld/exim4u/index.php
>  
> Mark
>
> -----Original Message-----
> From: [hidden email] [mailto:[hidden email]] On
> Behalf
 Of [hidden email]
> Sent: 02 July 2012 11:47 PM
> To: Exim4U General Discussion
> Subject: Re: [Exim4U] Unable to change password without breaking login
>
> A good starting point would be to use mysql or phpmyadmin to verify
> the
 database's variables after you change the siteadmin password or setup a new
 local domain.   That is, verify with mysql or phpmyadmin that the siteadmin
 password was changed appropriately and/or that the new account credentials  are  correct.
>
> The siteadmin password is not stored in variables.php.  There is an
 erroneous reference to this in the INSTALL doc but that has been fixed in  the  trunk.

>
> Gordon
>
>
>
> On 07/02/2012 03:35 PM, Mark Shearar wrote:
>> Hi all,
>>    
>> I'm having problems logging in to a fresh exim4u installation.
>> If I leave the default siteadmin password as CHANGE then I can log in
>> no problem but as soon as I change the password I cannot log in
>> anymore. If I create a local domain and try log in as that
>> administrator I can't log in either. On my latest attempt I used
>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so that
>> crypt was set to varchar(255) and to make sure I didn't miss anything
>> else.
>>    
>> Is there anything else I can look at? And, btw, I can't seem to find
>> the siteadmin password in variables.php?
>>
>> My environment is as follows:
>>
>> Exim version 4.80
>>
>> PHP 5.4.4-2
>>
>> MySQL 5.5.24-4
>>
>> Apache 2.2.16
>>
>> Thanks
>>
>> Mark
>>
>>
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users



_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users

_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: Unable to change password without breaking login

Robert Garron
Gentlemen (and women):

I believe it is NOT an Exim issue but a database issue coupled with the
encryption algorithm used.  Likely the password encryption algorithm
produces the encrypted password given and it happens to be 102
characters in length to store it - thus MySql will take the resultant
data and truncate the unnecessary blank characters and store the
encrypted result in the variable array of 255 characters... Just my two
cents...

CHAR and VARCHAR, I believe are implemented the same way, meaning CHAR
is not static either -- VARCHAR means variable character and MySql goes
out of its way to minimize storing anything unnecessary -- like blank
characters -- so not reading the details of your issue I believe you
have 102 characters because it is necessary to store your password in
its encrypted state, the other characters that you think are missing I
believe are just thrown away by MySql in its storage.  You can have UP
TO 255 CHARacters with VARCHAR and if you use say CHAR(52) you would be
able to store UP TO 52 characters.

See:  http://dev.mysql.com/doc/refman/5.0/en/char.html

and on the left you can see the documentation for the nuances of your
particular MySql Version....

regards,
Robert


On 7/9/12 1:58 PM, Mark Shearar wrote:

> Thanks Gordon,
>
> Crypt is definitely varchar(255) yet any new user I create definitely only has 102 characters in that field. I assume then that varchar(255) doesn't define the maximum number of characters allowed in a particular field but rather defines how many characters should always be in that field? Ie any value therein should always be 256 characters? To be honest, I've no idea where to go from here nor how to check why it's populating that field with only 102 characters.
>
> Mark
>
> -----Original Message-----
> From: [hidden email] [mailto:[hidden email]] On Behalf Of [hidden email]
> Sent: 03 July 2012 08:30 PM
> To: Exim4U General Discussion
> Subject: Re: [Exim4U] Unable to change password without breaking login
>
> The crypt field should be 256 characters in length since it is defined as varchar(255) in the file that you referenced in your first email:
>
> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql
>
> The crypt field use to be defined as varchar(48) and was changed to
> varchar(255) because of problems discovered with the Debian implementation of PHP 5.3 with a 48 character crypt field.
>
> I would investigate why your crypt field is 102 characters in length instead of 256.  Refer to:
>
> http://users.exim4u.org/debian-ubuntu-php-5-3-crypt-problem-td3601265.html
>
> where nightkid stated:
>
> "A short dig into the code shows that crypt_password('any string') with the default MD5 method returns a 200 symbol line instead of the old 48 symbols, probably due to the new MD5 code in PHP 5.3."
>
> FYI,
>
> Gordon
>
>
>
> On 07/03/2012 06:52 AM, Mark Shearar wrote:
>> Hi Gordon,
>>
>> When I look in the users table I can see the new user I created with
>> the
>   correct localpart, the correct username (email address) and the correct  password in "clear". The crypt table contains 102 characters so I assume  that's  correct, the uid and gid are the same as my exim4u user and group.
>> I remember from the previous two installations that when I changed the
>   siteadmin password the correct password would show in the clear table, just  not  sure if the "crypt" changed at all.
>> I'm not sure if this is relevant but looking in apache2/error.log I
>> see
>   the following:
>> PHP Notice:  Undefined index: realname in
>   /var/www/exim4u/config/variables.php on line 106, referer:
>   http://domain.tld/exim4u/index.php
>> PHP Notice:  Undefined index: realname in
>   /var/www/exim4u/config/variables.php on line 106, referer:
>   http://domain.tld/exim4u/index.php
>> PHP Notice:  Undefined index: localpart in
>   /var/www/exim4u/config/variables.php on line 108, referer:
>   http://domain.tld/exim4u/index.php
>> PHP Notice:  Undefined index: domain in
>   /var/www/exim4u/config/variables.php on line 116, referer:
>   http://domain.tld/exim4u/index.php
>>    
>> Mark
>>
>> -----Original Message-----
>> From: [hidden email] [mailto:[hidden email]] On
>> Behalf
>   Of [hidden email]
>> Sent: 02 July 2012 11:47 PM
>> To: Exim4U General Discussion
>> Subject: Re: [Exim4U] Unable to change password without breaking login
>>
>> A good starting point would be to use mysql or phpmyadmin to verify
>> the
>   database's variables after you change the siteadmin password or setup a new
>   local domain.   That is, verify with mysql or phpmyadmin that the siteadmin
>   password was changed appropriately and/or that the new account credentials  are  correct.
>> The siteadmin password is not stored in variables.php.  There is an
>   erroneous reference to this in the INSTALL doc but that has been fixed in  the  trunk.
>> Gordon
>>
>>
>>
>> On 07/02/2012 03:35 PM, Mark Shearar wrote:
>>> Hi all,
>>>    
>>> I'm having problems logging in to a fresh exim4u installation.
>>> If I leave the default siteadmin password as CHANGE then I can log in
>>> no problem but as soon as I change the password I cannot log in
>>> anymore. If I create a local domain and try log in as that
>>> administrator I can't log in either. On my latest attempt I used
>>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so that
>>> crypt was set to varchar(255) and to make sure I didn't miss anything
>>> else.
>>>    
>>> Is there anything else I can look at? And, btw, I can't seem to find
>>> the siteadmin password in variables.php?
>>>
>>> My environment is as follows:
>>>
>>> Exim version 4.80
>>>
>>> PHP 5.4.4-2
>>>
>>> MySQL 5.5.24-4
>>>
>>> Apache 2.2.16
>>>
>>> Thanks
>>>
>>> Mark
>>>
>>>
>>>
>>> _______________________________________________
>>> users mailing list
>>> [hidden email]
>>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users
>



_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: Unable to change password without breaking login

gldickens3
Administrator
In reply to this post by Mark
Hi Mark,

Please reply to confirm what operating system that you are using. I
think that you are using Debian Squeeze but I am not sure. Please let me
know what OS and the version.  I want to try to duplicate your problem
with the exact same configuration.

Gordon



On 07/09/2012 01:58 PM, Mark Shearar wrote:

> Thanks Gordon,
>
> Crypt is definitely varchar(255) yet any new user I create definitely only has 102 characters in that field. I assume then that varchar(255) doesn't define the maximum number of characters allowed in a particular field but rather defines how many characters should always be in that field? Ie any value therein should always be 256 characters? To be honest, I've no idea where to go from here nor how to check why it's populating that field with only 102 characters.
>
> Mark
>
> -----Original Message-----
> From: [hidden email] [mailto:[hidden email]] On Behalf Of [hidden email]
> Sent: 03 July 2012 08:30 PM
> To: Exim4U General Discussion
> Subject: Re: [Exim4U] Unable to change password without breaking login
>
> The crypt field should be 256 characters in length since it is defined as varchar(255) in the file that you referenced in your first email:
>
> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql
>
> The crypt field use to be defined as varchar(48) and was changed to
> varchar(255) because of problems discovered with the Debian implementation of PHP 5.3 with a 48 character crypt field.
>
> I would investigate why your crypt field is 102 characters in length instead of 256.  Refer to:
>
> http://users.exim4u.org/debian-ubuntu-php-5-3-crypt-problem-td3601265.html
>
> where nightkid stated:
>
> "A short dig into the code shows that crypt_password('any string') with the default MD5 method returns a 200 symbol line instead of the old 48 symbols, probably due to the new MD5 code in PHP 5.3."
>
> FYI,
>
> Gordon
>
>
>
> On 07/03/2012 06:52 AM, Mark Shearar wrote:
>> Hi Gordon,
>>
>> When I look in the users table I can see the new user I created with
>> the
>   correct localpart, the correct username (email address) and the correct  password in "clear". The crypt table contains 102 characters so I assume  that's  correct, the uid and gid are the same as my exim4u user and group.
>> I remember from the previous two installations that when I changed the
>   siteadmin password the correct password would show in the clear table, just  not  sure if the "crypt" changed at all.
>> I'm not sure if this is relevant but looking in apache2/error.log I
>> see
>   the following:
>> PHP Notice:  Undefined index: realname in
>   /var/www/exim4u/config/variables.php on line 106, referer:
>   http://domain.tld/exim4u/index.php
>> PHP Notice:  Undefined index: realname in
>   /var/www/exim4u/config/variables.php on line 106, referer:
>   http://domain.tld/exim4u/index.php
>> PHP Notice:  Undefined index: localpart in
>   /var/www/exim4u/config/variables.php on line 108, referer:
>   http://domain.tld/exim4u/index.php
>> PHP Notice:  Undefined index: domain in
>   /var/www/exim4u/config/variables.php on line 116, referer:
>   http://domain.tld/exim4u/index.php
>>    
>> Mark
>>
>> -----Original Message-----
>> From: [hidden email] [mailto:[hidden email]] On
>> Behalf
>   Of [hidden email]
>> Sent: 02 July 2012 11:47 PM
>> To: Exim4U General Discussion
>> Subject: Re: [Exim4U] Unable to change password without breaking login
>>
>> A good starting point would be to use mysql or phpmyadmin to verify
>> the
>   database's variables after you change the siteadmin password or setup a new
>   local domain.   That is, verify with mysql or phpmyadmin that the siteadmin
>   password was changed appropriately and/or that the new account credentials  are  correct.
>> The siteadmin password is not stored in variables.php.  There is an
>   erroneous reference to this in the INSTALL doc but that has been fixed in  the  trunk.
>> Gordon
>>
>>
>>
>> On 07/02/2012 03:35 PM, Mark Shearar wrote:
>>> Hi all,
>>>    
>>> I'm having problems logging in to a fresh exim4u installation.
>>> If I leave the default siteadmin password as CHANGE then I can log in
>>> no problem but as soon as I change the password I cannot log in
>>> anymore. If I create a local domain and try log in as that
>>> administrator I can't log in either. On my latest attempt I used
>>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so that
>>> crypt was set to varchar(255) and to make sure I didn't miss anything
>>> else.
>>>    
>>> Is there anything else I can look at? And, btw, I can't seem to find
>>> the siteadmin password in variables.php?
>>>
>>> My environment is as follows:
>>>
>>> Exim version 4.80
>>>
>>> PHP 5.4.4-2
>>>
>>> MySQL 5.5.24-4
>>>
>>> Apache 2.2.16
>>>
>>> Thanks
>>>
>>> Mark
>>>
>>>
>>>
>>> _______________________________________________
>>> users mailing list
>>> [hidden email]
>>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users



_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: Unable to change password without breaking login

Mark
In reply to this post by Mark
Hi Gordon,

Debian squeeze is correct yes although I had to set wheezy in the sources in order to install Exim 4.80. To be honest I'm very new to Debian having used FreeBSD exclusively for the last 7 years and Gentoo before that.

Mark

-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf Of [hidden email]
Sent: 14 July 2012 01:11 AM
To: Exim4U General Discussion
Subject: Re: [Exim4U] Unable to change password without breaking login

Hi Mark,

Please reply to confirm what operating system that you are using. I think that you are using Debian Squeeze but I am not sure. Please let me know what OS and the version.  I want to try to duplicate your problem with the exact same configuration.

Gordon



On 07/09/2012 01:58 PM, Mark Shearar wrote:
> Thanks Gordon,
>
> Crypt is definitely varchar(255) yet any new user I create definitely
> only
 has 102 characters in that field. I assume then that varchar(255) doesn't  define the maximum number of characters allowed in a particular field but  rather defines how many characters should always be in that field? Ie any  value  therein should always be 256 characters? To be honest, I've no idea where  to go from here nor how to check why it's populating that field with only
 102
 characters.
>
> Mark
>
> -----Original Message-----
> From: [hidden email] [mailto:[hidden email]] On
> Behalf
 Of [hidden email]
> Sent: 03 July 2012 08:30 PM
> To: Exim4U General Discussion
> Subject: Re: [Exim4U] Unable to change password without breaking login
>
> The crypt field should be 256 characters in length since it is defined
> as
 varchar(255) in the file that you referenced in your first email:
>
> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql
>
> The crypt field use to be defined as varchar(48) and was changed to
> varchar(255) because of problems discovered with the Debian
> implementation
 of PHP 5.3 with a 48 character crypt field.
>
> I would investigate why your crypt field is 102 characters in length
 instead of 256.  Refer to:
>
> http://users.exim4u.org/debian-ubuntu-php-5-3-crypt-problem-td3601265.
> html
>
> where nightkid stated:
>
> "A short dig into the code shows that crypt_password('any string')
> with
 the default MD5 method returns a 200 symbol line instead of the old 48  symbols, probably due to the new MD5 code in PHP 5.3."

>
> FYI,
>
> Gordon
>
>
>
> On 07/03/2012 06:52 AM, Mark Shearar wrote:
>> Hi Gordon,
>>
>> When I look in the users table I can see the new user I created with
>> the
>   correct localpart, the correct username (email address) and the
> correct
 password in "clear". The crypt table contains 102 characters so I assume  that's  correct, the uid and gid are the same as my exim4u user and group.
>> I remember from the previous two installations that when I changed
>> the
>   siteadmin password the correct password would show in the clear
> table,
 just  not  sure if the "crypt" changed at all.

>> I'm not sure if this is relevant but looking in apache2/error.log I
>> see
>   the following:
>> PHP Notice:  Undefined index: realname in
>   /var/www/exim4u/config/variables.php on line 106, referer:
>   http://domain.tld/exim4u/index.php
>> PHP Notice:  Undefined index: realname in
>   /var/www/exim4u/config/variables.php on line 106, referer:
>   http://domain.tld/exim4u/index.php
>> PHP Notice:  Undefined index: localpart in
>   /var/www/exim4u/config/variables.php on line 108, referer:
>   http://domain.tld/exim4u/index.php
>> PHP Notice:  Undefined index: domain in
>   /var/www/exim4u/config/variables.php on line 116, referer:
>   http://domain.tld/exim4u/index.php
>>    
>> Mark
>>
>> -----Original Message-----
>> From: [hidden email] [mailto:[hidden email]] On
>> Behalf
>   Of [hidden email]
>> Sent: 02 July 2012 11:47 PM
>> To: Exim4U General Discussion
>> Subject: Re: [Exim4U] Unable to change password without breaking
>> login
>>
>> A good starting point would be to use mysql or phpmyadmin to verify
>> the
>   database's variables after you change the siteadmin password or
> setup a
 new
>   local domain.   That is, verify with mysql or phpmyadmin that the
 siteadmin
>   password was changed appropriately and/or that the new account
 credentials  are  correct.
>> The siteadmin password is not stored in variables.php.  There is an
>   erroneous reference to this in the INSTALL doc but that has been
> fixed
 in  the  trunk.

>> Gordon
>>
>>
>>
>> On 07/02/2012 03:35 PM, Mark Shearar wrote:
>>> Hi all,
>>>    
>>> I'm having problems logging in to a fresh exim4u installation.
>>> If I leave the default siteadmin password as CHANGE then I can log
>>> in no problem but as soon as I change the password I cannot log in
>>> anymore. If I create a local domain and try log in as that
>>> administrator I can't log in either. On my latest attempt I used
>>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so
>>> that crypt was set to varchar(255) and to make sure I didn't miss
>>> anything else.
>>>    
>>> Is there anything else I can look at? And, btw, I can't seem to find
>>> the siteadmin password in variables.php?
>>>
>>> My environment is as follows:
>>>
>>> Exim version 4.80
>>>
>>> PHP 5.4.4-2
>>>
>>> MySQL 5.5.24-4
>>>
>>> Apache 2.2.16
>>>
>>> Thanks
>>>
>>> Mark
>>>
>>>
>>>
>>> _______________________________________________
>>> users mailing list
>>> [hidden email]
>>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users



_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users

_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: Unable to change password without breaking login

gldickens3
Administrator
Hi Mark,

Sorry, but I cannot reproduce your problems. I suspect that there is
something peculiar about your installation that is causing your issues.  
Here is what I have done in an effort to reproduce the problems that you
reported:

- Installed a brand new fresh copy of Debian 6.0 "Squeeze" as a Xen VPS.
- Ran "apt-get update" and "apt-get upgrade" to bring all software to
current versions.
- Installed and configured apache2, php5, mysql-server, php-pear and the
db.php pear module.
- Installed Exim4U's mysql database tables from the trunk with the
varchar(255) crypt field from:
      http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql
- Installed Exim4U's php web interface.
- Configured exim4u/config/variables.php.

Then, I ran Exim4U's web interface.  I successfully changed the
siteadmin's password numerous times.  I was also able to add several
users and change their passwords multiple times. In all cases, I was
able to log back in each time with the new passwords and/or changed
passwords.   In short, everything worked properly.

So, its hard for me to say what is causing your problems.  I did not
install any Wheezy sources.  Wheezy currently is, after all, prerelease
software.  I don't see any problems with you running Exim 4.80 from
Wheezy, however, you need to confirm that Exim is the only package that
is being updated from the Wheezy repositories.  The Exim version which
comes with Squeeze is 4.72 which has all of the capabilities needed for
a robust Exim4U configuration.  I am currently running Exim version 4.77
on most of my installations right now but I also have one Debian 6.0
Squeeze installation running Exim 4.72 that I installed about 8 months
ago and that runs without any problems.

You may want to try a fresh OS install and not include any Wheezy
repos.  However, if you are sure that no other packages were updating
from the Wheezy repos besides Exim then that should not matter.

Please report back to this list whenever you determine what your
problems were cause by.  We need to know in case anybody else has a
similar problem in the future.

Good luck and let me know if you have any further questions.

Gordon



On 07/15/2012 08:14 AM, Mark Shearar wrote:

> Hi Gordon,
>
> Debian squeeze is correct yes although I had to set wheezy in the sources in order to install Exim 4.80. To be honest I'm very new to Debian having used FreeBSD exclusively for the last 7 years and Gentoo before that.
>
> Mark
>
> -----Original Message-----
> From: [hidden email] [mailto:[hidden email]] On Behalf Of [hidden email]
> Sent: 14 July 2012 01:11 AM
> To: Exim4U General Discussion
> Subject: Re: [Exim4U] Unable to change password without breaking login
>
> Hi Mark,
>
> Please reply to confirm what operating system that you are using. I think that you are using Debian Squeeze but I am not sure. Please let me know what OS and the version.  I want to try to duplicate your problem with the exact same configuration.
>
> Gordon
>
>
>
> On 07/09/2012 01:58 PM, Mark Shearar wrote:
>> Thanks Gordon,
>>
>> Crypt is definitely varchar(255) yet any new user I create definitely
>> only
>   has 102 characters in that field. I assume then that varchar(255) doesn't  define the maximum number of characters allowed in a particular field but  rather defines how many characters should always be in that field? Ie any  value  therein should always be 256 characters? To be honest, I've no idea where  to go from here nor how to check why it's populating that field with only
>   102
>   characters.
>> Mark
>>
>> -----Original Message-----
>> From: [hidden email] [mailto:[hidden email]] On
>> Behalf
>   Of [hidden email]
>> Sent: 03 July 2012 08:30 PM
>> To: Exim4U General Discussion
>> Subject: Re: [Exim4U] Unable to change password without breaking login
>>
>> The crypt field should be 256 characters in length since it is defined
>> as
>   varchar(255) in the file that you referenced in your first email:
>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql
>>
>> The crypt field use to be defined as varchar(48) and was changed to
>> varchar(255) because of problems discovered with the Debian
>> implementation
>   of PHP 5.3 with a 48 character crypt field.
>> I would investigate why your crypt field is 102 characters in length
>   instead of 256.  Refer to:
>> http://users.exim4u.org/debian-ubuntu-php-5-3-crypt-problem-td3601265.
>> html
>>
>> where nightkid stated:
>>
>> "A short dig into the code shows that crypt_password('any string')
>> with
>   the default MD5 method returns a 200 symbol line instead of the old 48  symbols, probably due to the new MD5 code in PHP 5.3."
>> FYI,
>>
>> Gordon
>>
>>
>>
>> On 07/03/2012 06:52 AM, Mark Shearar wrote:
>>> Hi Gordon,
>>>
>>> When I look in the users table I can see the new user I created with
>>> the
>>    correct localpart, the correct username (email address) and the
>> correct
>   password in "clear". The crypt table contains 102 characters so I assume  that's  correct, the uid and gid are the same as my exim4u user and group.
>>> I remember from the previous two installations that when I changed
>>> the
>>    siteadmin password the correct password would show in the clear
>> table,
>   just  not  sure if the "crypt" changed at all.
>>> I'm not sure if this is relevant but looking in apache2/error.log I
>>> see
>>    the following:
>>> PHP Notice:  Undefined index: realname in
>>    /var/www/exim4u/config/variables.php on line 106, referer:
>>    http://domain.tld/exim4u/index.php
>>> PHP Notice:  Undefined index: realname in
>>    /var/www/exim4u/config/variables.php on line 106, referer:
>>    http://domain.tld/exim4u/index.php
>>> PHP Notice:  Undefined index: localpart in
>>    /var/www/exim4u/config/variables.php on line 108, referer:
>>    http://domain.tld/exim4u/index.php
>>> PHP Notice:  Undefined index: domain in
>>    /var/www/exim4u/config/variables.php on line 116, referer:
>>    http://domain.tld/exim4u/index.php
>>>    
>>> Mark
>>>
>>> -----Original Message-----
>>> From: [hidden email] [mailto:[hidden email]] On
>>> Behalf
>>    Of [hidden email]
>>> Sent: 02 July 2012 11:47 PM
>>> To: Exim4U General Discussion
>>> Subject: Re: [Exim4U] Unable to change password without breaking
>>> login
>>>
>>> A good starting point would be to use mysql or phpmyadmin to verify
>>> the
>>    database's variables after you change the siteadmin password or
>> setup a
>   new
>>    local domain.   That is, verify with mysql or phpmyadmin that the
>   siteadmin
>>    password was changed appropriately and/or that the new account
>   credentials  are  correct.
>>> The siteadmin password is not stored in variables.php.  There is an
>>    erroneous reference to this in the INSTALL doc but that has been
>> fixed
>   in  the  trunk.
>>> Gordon
>>>
>>>
>>>
>>> On 07/02/2012 03:35 PM, Mark Shearar wrote:
>>>> Hi all,
>>>>      
>>>> I'm having problems logging in to a fresh exim4u installation.
>>>> If I leave the default siteadmin password as CHANGE then I can log
>>>> in no problem but as soon as I change the password I cannot log in
>>>> anymore. If I create a local domain and try log in as that
>>>> administrator I can't log in either. On my latest attempt I used
>>>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so
>>>> that crypt was set to varchar(255) and to make sure I didn't miss
>>>> anything else.
>>>>      
>>>> Is there anything else I can look at? And, btw, I can't seem to find
>>>> the siteadmin password in variables.php?
>>>>
>>>> My environment is as follows:
>>>>
>>>> Exim version 4.80
>>>>
>>>> PHP 5.4.4-2
>>>>
>>>> MySQL 5.5.24-4
>>>>
>>>> Apache 2.2.16
>>>>
>>>> Thanks
>>>>
>>>> Mark
>>>>
>>>>
>>>>
>>>> _______________________________________________
>>>> users mailing list
>>>> [hidden email]
>>>> https://exim4u.org/mailman/listinfo/users
>>> _______________________________________________
>>> users mailing list
>>> [hidden email]
>>> https://exim4u.org/mailman/listinfo/users
>>>
>>> _______________________________________________
>>> users mailing list
>>> [hidden email]
>>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users



_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: Unable to change password without breaking login

Mark
Thanks Gordon for looking into it for me.

I'm probably going to get another VPS anyway in order to load balance what I'm attempting to accomplish. I'll make sure to keep that one stable then at least I'll know whether it's an installation issue or an EBKAC error :)

Regards
Mark

-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf Of [hidden email]
Sent: 16 July 2012 08:55 PM
To: Exim4U General Discussion
Subject: Re: [Exim4U] Unable to change password without breaking login

Hi Mark,

Sorry, but I cannot reproduce your problems. I suspect that there is something peculiar about your installation that is causing your issues.  
Here is what I have done in an effort to reproduce the problems that you
reported:

- Installed a brand new fresh copy of Debian 6.0 "Squeeze" as a Xen VPS.
- Ran "apt-get update" and "apt-get upgrade" to bring all software to current versions.
- Installed and configured apache2, php5, mysql-server, php-pear and the db.php pear module.
- Installed Exim4U's mysql database tables from the trunk with the
varchar(255) crypt field from:
      http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql
- Installed Exim4U's php web interface.
- Configured exim4u/config/variables.php.

Then, I ran Exim4U's web interface.  I successfully changed the siteadmin's password numerous times.  I was also able to add several users and change their passwords multiple times. In all cases, I was able to log back in each time with the new passwords and/or changed
passwords.   In short, everything worked properly.

So, its hard for me to say what is causing your problems.  I did not install any Wheezy sources.  Wheezy currently is, after all, prerelease software.  I don't see any problems with you running Exim 4.80 from Wheezy, however, you need to confirm that Exim is the only package that is being updated from the Wheezy repositories.  The Exim version which comes with Squeeze is 4.72 which has all of the capabilities needed for a robust Exim4U configuration.  I am currently running Exim version 4.77 on most of my installations right now but I also have one Debian 6.0 Squeeze installation running Exim 4.72 that I installed about 8 months ago and that runs without any problems..

You may want to try a fresh OS install and not include any Wheezy repos.  However, if you are sure that no other packages were updating from the Wheezy repos besides Exim then that should not matter.

Please report back to this list whenever you determine what your problems were cause by.  We need to know in case anybody else has a similar problem in the future.

Good luck and let me know if you have any further questions.

Gordon



On 07/15/2012 08:14 AM, Mark Shearar wrote:
> Hi Gordon,
>
> Debian squeeze is correct yes although I had to set wheezy in the
> sources
 in order to install Exim 4.80. To be honest I'm very new to Debian having  used FreeBSD exclusively for the last 7 years and Gentoo before that.
>
> Mark
>
> -----Original Message-----
> From: [hidden email] [mailto:[hidden email]] On
> Behalf
 Of [hidden email]
> Sent: 14 July 2012 01:11 AM
> To: Exim4U General Discussion
> Subject: Re: [Exim4U] Unable to change password without breaking login
>
> Hi Mark,
>
> Please reply to confirm what operating system that you are using. I
> think
 that you are using Debian Squeeze but I am not sure. Please let me know  what  OS and the version.  I want to try to duplicate your problem with the exact  same configuration.

>
> Gordon
>
>
>
> On 07/09/2012 01:58 PM, Mark Shearar wrote:
>> Thanks Gordon,
>>
>> Crypt is definitely varchar(255) yet any new user I create definitely
>> only
>   has 102 characters in that field. I assume then that varchar(255)
 doesn't  define the maximum number of characters allowed in a particular  field but
  rather defines how many characters should always be in that field? Ie any  value  therein should always be 256 characters? To be honest, I've no idea  where  to go from here nor how to check why it's populating that field with  only

>   102
>   characters.
>> Mark
>>
>> -----Original Message-----
>> From: [hidden email] [mailto:[hidden email]] On
>> Behalf
>   Of [hidden email]
>> Sent: 03 July 2012 08:30 PM
>> To: Exim4U General Discussion
>> Subject: Re: [Exim4U] Unable to change password without breaking
>> login
>>
>> The crypt field should be 256 characters in length since it is
>> defined as
>   varchar(255) in the file that you referenced in your first email:
>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql
>>
>> The crypt field use to be defined as varchar(48) and was changed to
>> varchar(255) because of problems discovered with the Debian
>> implementation
>   of PHP 5.3 with a 48 character crypt field.
>> I would investigate why your crypt field is 102 characters in length
>   instead of 256.  Refer to:
>> http://users.exim4u.org/debian-ubuntu-php-5-3-crypt-problem-td3601265.
>> html
>>
>> where nightkid stated:
>>
>> "A short dig into the code shows that crypt_password('any string')
>> with
>   the default MD5 method returns a 200 symbol line instead of the old
> 48
 symbols, probably due to the new MD5 code in PHP 5.3."

>> FYI,
>>
>> Gordon
>>
>>
>>
>> On 07/03/2012 06:52 AM, Mark Shearar wrote:
>>> Hi Gordon,
>>>
>>> When I look in the users table I can see the new user I created with
>>> the
>>    correct localpart, the correct username (email address) and the
>> correct
>   password in "clear". The crypt table contains 102 characters so I
> assume
  that's  correct, the uid and gid are the same as my exim4u user and group..

>>> I remember from the previous two installations that when I changed
>>> the
>>    siteadmin password the correct password would show in the clear
>> table,
>   just  not  sure if the "crypt" changed at all.
>>> I'm not sure if this is relevant but looking in apache2/error.log I
>>> see
>>    the following:
>>> PHP Notice:  Undefined index: realname in
>>    /var/www/exim4u/config/variables.php on line 106, referer:
>>    http://domain.tld/exim4u/index.php
>>> PHP Notice:  Undefined index: realname in
>>    /var/www/exim4u/config/variables.php on line 106, referer:
>>    http://domain.tld/exim4u/index.php
>>> PHP Notice:  Undefined index: localpart in
>>    /var/www/exim4u/config/variables.php on line 108, referer:
>>    http://domain.tld/exim4u/index.php
>>> PHP Notice:  Undefined index: domain in
>>    /var/www/exim4u/config/variables.php on line 116, referer:
>>    http://domain.tld/exim4u/index.php
>>>    
>>> Mark
>>>
>>> -----Original Message-----
>>> From: [hidden email] [mailto:[hidden email]] On
>>> Behalf
>>    Of [hidden email]
>>> Sent: 02 July 2012 11:47 PM
>>> To: Exim4U General Discussion
>>> Subject: Re: [Exim4U] Unable to change password without breaking
>>> login
>>>
>>> A good starting point would be to use mysql or phpmyadmin to verify
>>> the
>>    database's variables after you change the siteadmin password or
>> setup a
>   new
>>    local domain.   That is, verify with mysql or phpmyadmin that the
>   siteadmin
>>    password was changed appropriately and/or that the new account
>   credentials  are  correct.
>>> The siteadmin password is not stored in variables.php.  There is an
>>    erroneous reference to this in the INSTALL doc but that has been
>> fixed
>   in  the  trunk.
>>> Gordon
>>>
>>>
>>>
>>> On 07/02/2012 03:35 PM, Mark Shearar wrote:
>>>> Hi all,
>>>>      
>>>> I'm having problems logging in to a fresh exim4u installation.
>>>> If I leave the default siteadmin password as CHANGE then I can log
>>>> in no problem but as soon as I change the password I cannot log in
>>>> anymore. If I create a local domain and try log in as that
>>>> administrator I can't log in either. On my latest attempt I used
>>>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so
>>>> that crypt was set to varchar(255) and to make sure I didn't miss
>>>> anything else.
>>>>      
>>>> Is there anything else I can look at? And, btw, I can't seem to
>>>> find the siteadmin password in variables.php?
>>>>
>>>> My environment is as follows:
>>>>
>>>> Exim version 4.80
>>>>
>>>> PHP 5.4.4-2
>>>>
>>>> MySQL 5.5.24-4
>>>>
>>>> Apache 2.2.16
>>>>
>>>> Thanks
>>>>
>>>> Mark
>>>>
>>>>
>>>>
>>>> _______________________________________________
>>>> users mailing list
>>>> [hidden email]
>>>> https://exim4u.org/mailman/listinfo/users
>>> _______________________________________________
>>> users mailing list
>>> [hidden email]
>>> https://exim4u.org/mailman/listinfo/users
>>>
>>> _______________________________________________
>>> users mailing list
>>> [hidden email]
>>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>>
>> _______________________________________________
>> users mailing list
>> [hidden email]
>> https://exim4u.org/mailman/listinfo/users
>
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users
>
> _______________________________________________
> users mailing list
> [hidden email]
> https://exim4u.org/mailman/listinfo/users



_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users

_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

FW: Unable to change password without breaking login

Mark
Well, I got another VPS running Debian Squeeze and the following:
Apache 2.2.16
MySQL 5.1.49
PHP 5.3.3

I left it as it came so that I knew that I couldn't have broken something this time around.
Did exactly what you did except this is not a Xen VPS and I didn't run apt-get upgrade.
Changed the siteadmin password after first login. Logged out and was able to relogin in. Checked the users table in the db and the clear field is showing the correct password. This time around crypt is only showing 34 chars.

Maybe the issue is to do with the PHP or MySQL versions as these are earlier versions than what I'm running on the other server?

Mark

-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf Of Mark Shearar
Sent: 19 July 2012 09:07 AM
To: Exim4U General Discussion
Subject: Re: [Exim4U] Unable to change password without breaking login

Thanks Gordon for looking into it for me.

I'm probably going to get another VPS anyway in order to load balance what  I'm attempting to accomplish. I'll make sure to keep that one stable then  at  least I'll know whether it's an installation issue or an EBKAC error :)

Regards
Mark

-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf  Of [hidden email]
Sent: 16 July 2012 08:55 PM
To: Exim4U General Discussion
Subject: Re: [Exim4U] Unable to change password without breaking login

Hi Mark,

Sorry, but I cannot reproduce your problems. I suspect that there is  something peculiar about your installation that is causing your issues.  
Here is what I have done in an effort to reproduce the problems that you
reported:

- Installed a brand new fresh copy of Debian 6.0 "Squeeze" as a Xen VPS.
- Ran "apt-get update" and "apt-get upgrade" to bring all software to  current versions.
- Installed and configured apache2, php5, mysql-server, php-pear and the  db.php pear module.
- Installed Exim4U's mysql database tables from the trunk with the
varchar(255) crypt field from:
      http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql
- Installed Exim4U's php web interface.
- Configured exim4u/config/variables.php.

Then, I ran Exim4U's web interface.  I successfully changed the siteadmin's  password numerous times.  I was also able to add several users and change  their passwords multiple times. In all cases, I was able to log back in  each  time with the new passwords and/or changed
passwords.   In short, everything worked properly.

So, its hard for me to say what is causing your problems.  I did not install  any Wheezy sources.  Wheezy currently is, after all, prerelease software.
 I don't see any problems with you running Exim 4.80 from Wheezy, however,  you need to confirm that Exim is the only package that is being updated  from  the Wheezy repositories.  The Exim version which comes with Squeeze is 4.72  which has all of the capabilities needed for a robust Exim4U configuration.
 
 I am currently running Exim version 4.77 on most of my installations right  now but I also have one Debian 6.0 Squeeze installation running Exim 4.72  that I installed about 8 months ago and that runs without any problems..

You may want to try a fresh OS install and not include any Wheezy repos.
 However, if you are sure that no other packages were updating from the  Wheezy  repos besides Exim then that should not matter.

Please report back to this list whenever you determine what your problems  were cause by.  We need to know in case anybody else has a similar problem  in  the future.

Good luck and let me know if you have any further questions.

Gordon



On 07/15/2012 08:14 AM, Mark Shearar wrote:
> Hi Gordon,
>
> Debian squeeze is correct yes although I had to set wheezy in the
> sources
 in order to install Exim 4.80. To be honest I'm very new to Debian having  used FreeBSD exclusively for the last 7 years and Gentoo before that.
>
> Mark
>
> -----Original Message-----
> From: [hidden email] [mailto:[hidden email]] On
> Behalf
 Of [hidden email]
> Sent: 14 July 2012 01:11 AM
> To: Exim4U General Discussion
> Subject: Re: [Exim4U] Unable to change password without breaking login
>
> Hi Mark,
>
> Please reply to confirm what operating system that you are using. I
> think
 that you are using Debian Squeeze but I am not sure. Please let me know  what  OS and the version.  I want to try to duplicate your problem with the  exact  same configuration.

>
> Gordon
>
>
>
> On 07/09/2012 01:58 PM, Mark Shearar wrote:
>> Thanks Gordon,
>>
>> Crypt is definitely varchar(255) yet any new user I create definitely
>> only
>   has 102 characters in that field. I assume then that varchar(255)
 doesn't  define the maximum number of characters allowed in a particular  field but
  rather defines how many characters should always be in that field? Ie any  value  therein should always be 256 characters? To be honest, I've no idea  where  to go from here nor how to check why it's populating that field with
  only

>   102
>   characters.
>> Mark
>>
>> -----Original Message-----
>> From: [hidden email] [mailto:[hidden email]] On
>> Behalf
>   Of [hidden email]
>> Sent: 03 July 2012 08:30 PM
>> To: Exim4U General Discussion
>> Subject: Re: [Exim4U] Unable to change password without breaking
>> login
>>
>> The crypt field should be 256 characters in length since it is
>> defined as
>   varchar(255) in the file that you referenced in your first email:
>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql
>>
>> The crypt field use to be defined as varchar(48) and was changed to
>> varchar(255) because of problems discovered with the Debian
>> implementation
>   of PHP 5.3 with a 48 character crypt field.
>> I would investigate why your crypt field is 102 characters in length
>   instead of 256.  Refer to:
>> http://users.exim4u.org/debian-ubuntu-php-5-3-crypt-problem-td3601265.
>> html
>>
>> where nightkid stated:
>>
>> "A short dig into the code shows that crypt_password('any string')
>> with
>   the default MD5 method returns a 200 symbol line instead of the old
> 48
 symbols, probably due to the new MD5 code in PHP 5.3."

>> FYI,
>>
>> Gordon
>>
>>
>>
>> On 07/03/2012 06:52 AM, Mark Shearar wrote:
>>> Hi Gordon,
>>>
>>> When I look in the users table I can see the new user I created with
>>> the
>>    correct localpart, the correct username (email address) and the
>> correct
>   password in "clear". The crypt table contains 102 characters so I
> assume
  that's  correct, the uid and gid are the same as my exim4u user and  group..

>>> I remember from the previous two installations that when I changed
>>> the
>>    siteadmin password the correct password would show in the clear
>> table,
>   just  not  sure if the "crypt" changed at all.
>>> I'm not sure if this is relevant but looking in apache2/error.log I
>>> see
>>    the following:
>>> PHP Notice:  Undefined index: realname in
>>    /var/www/exim4u/config/variables.php on line 106, referer:
>>    http://domain.tld/exim4u/index.php
>>> PHP Notice:  Undefined index: realname in
>>    /var/www/exim4u/config/variables.php on line 106, referer:
>>    http://domain.tld/exim4u/index.php
>>> PHP Notice:  Undefined index: localpart in
>>    /var/www/exim4u/config/variables.php on line 108, referer:
>>    http://domain.tld/exim4u/index.php
>>> PHP Notice:  Undefined index: domain in
>>    /var/www/exim4u/config/variables.php on line 116, referer:
>>    http://domain.tld/exim4u/index.php
>>>    
>>> Mark
>>>
>>> -----Original Message-----
>>> From: [hidden email] [mailto:[hidden email]] On
>>> Behalf
>>    Of [hidden email]
>>> Sent: 02 July 2012 11:47 PM
>>> To: Exim4U General Discussion
>>> Subject: Re: [Exim4U] Unable to change password without breaking
>>> login
>>>
>>> A good starting point would be to use mysql or phpmyadmin to verify
>>> the
>>    database's variables after you change the siteadmin password or
>> setup a
>   new
>>    local domain.   That is, verify with mysql or phpmyadmin that the
>   siteadmin
>>    password was changed appropriately and/or that the new account
>   credentials  are  correct.
>>> The siteadmin password is not stored in variables.php.  There is an
>>    erroneous reference to this in the INSTALL doc but that has been
>> fixed
>   in  the  trunk.
>>> Gordon
>>>
>>>
>>>
>>> On 07/02/2012 03:35 PM, Mark Shearar wrote:
>>>> Hi all,
>>>>      
>>>> I'm having problems logging in to a fresh exim4u installation.
>>>> If I leave the default siteadmin password as CHANGE then I can log
>>>> in no problem but as soon as I change the password I cannot log in
>>>> anymore. If I create a local domain and try log in as that
>>>> administrator I can't log in either. On my latest attempt I used
>>>> http://exim4u.org/svn/exim4u_src/trunk/mysql_setup/mysql.sql  so
>>>> that crypt was set to varchar(255) and to make sure I didn't miss
>>>> anything else.
>>>>      
>>>> Is there anything else I can look at? And, btw, I can't seem to
>>>> find the siteadmin password in variables.php?
>>>>
>>>> My environment is as follows:
>>>>
>>>> Exim version 4.80
>>>>
>>>> PHP 5.4.4-2
>>>>
>>>> MySQL 5.5.24-4
>>>>
>>>> Apache 2.2.16
>>>>
>>>> Thanks
>>>>
>>>> Mark

_______________________________________________
users mailing list
[hidden email]
https://exim4u.org/mailman/listinfo/users