[horde] Users

Administration > Horde > Authentication > $conf[auth][driver] option

Post by Jorge Hernandez
How do I configure Horde so it allows me to configure my users?
When I click on Administration->Users it says that my Authentication
backend does not allow it, but I don't know how to change the
authentication backend (specially when it comes to virtual domains)
==========================
Jorge Hernandez
CEO
FSB Computers
--
Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
Frequently Asked Questions: http://horde.org/faq/
To unsubscribe, mail: horde-unsubscribe at lists.horde.org

horde

2008-09-15 18:55:33 UTC

The problem I have is i know _where_ this option is, I just don't
know how to actually get it to DO anything.

I'm running CentOS 5.1 and the Horde webmail 3.0.1 on top of postfix
and dovecot.
Currently Authentication is set to
$conf[auth][driver] : Let Horde handle authentication
and
$conf[auth][params][app] : imp

This works to authenticate in webmail to the local
/etc/passwd /etc/shadow (default auth).

When I change
$conf[auth][driver] to Password file Authentication

authentication fails. tinkering with settings eventually leads me to
reverting it back to the defaults.

I've dug around / googled a fair amount for documentation on these
two parameters, and haven't really found anything (except other
people searching for the same thing) . Is there an actual
document/manual on these settings anywhere?

Authentication is key from a product security perspective. I've been
surprised I can't find a standard default document that explains the
authentication options and how to enable /configure them.

Rick

Post by Luis Felipe Marzagao/Andamentos
Administration > Horde > Authentication > $conf[auth][driver] option

Post by Jorge Hernandez
How do I configure Horde so it allows me to configure my users?
When I click on Administration->Users it says that my
Authentication backend does not allow it, but I don't know how to
change the authentication backend (specially when it comes to virtual domains)
==========================
Jorge Hernandez
CEO
FSB Computers
--
Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
Frequently Asked Questions: http://horde.org/faq/
To unsubscribe, mail: horde-unsubscribe at lists.horde.org

--
Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
Frequently Asked Questions: http://horde.org/faq/
To unsubscribe, mail: horde-unsubscribe at lists.horde.org

Eric Jon Rostetter

2008-09-15 20:36:05 UTC

Post by horde
I'm running CentOS 5.1 and the Horde webmail 3.0.1 on top of postfix
and dovecot.
Currently Authentication is set to
$conf[auth][driver] : Let Horde handle authentication
and
$conf[auth][params][app] : imp

You're using IMAP authentication.

Post by horde
This works to authenticate in webmail to the local /etc/passwd
/etc/shadow (default auth).

Actually, I'm betting it is IMAP authentication, that is, it authenticates
to dovecot via IMAP (and dovecot authenticates via passwd/shadow).

Post by horde
When I change
$conf[auth][driver] to Password file Authentication
authentication fails. tinkering with settings eventually leads me
to reverting it back to the defaults.

Probably best. Unless your Horde install is on your IMAP server, this
probably wouldn't work (as the passwd/shadow files on your Horde server
wouldn't be the same as those on your IMAP server, if they are different
machines).

Post by horde
I've dug around / googled a fair amount for documentation on these
two parameters, and haven't really found anything (except other
people searching for the same thing) . Is there an actual
document/manual on these settings anywhere?

Probably not anything detailed.

Post by horde
Authentication is key from a product security perspective. I've been
surprised I can't find a standard default document that explains the
authentication options and how to enable /configure them.

The problem seems to be you are using IMAP authentication. You can't
manage IMAP authentication via Horde (e.g., create/delete users, etc)
since IMAP doesn't support that. If you used a backend that supported
management (e.g., ldap, sql, etc) then you could (in most cases) do so
via Horde.

Post by horde
Rick

--
Eric Rostetter
The Department of Physics
The University of Texas at Austin

This message is provided "AS IS" without warranty of any kind,
either expressed or implied. Use this message at your own risk.

horde

2008-09-15 20:47:30 UTC

Post by Eric Jon Rostetter
You're using IMAP authentication.

yes, I know. $conf[auth][params][app] : imp being set to IMP is a
pretty big clue there that I caught.

Post by Eric Jon Rostetter
Probably best. Unless your Horde install is on your IMAP server, this
probably wouldn't work (as the passwd/shadow files on your Horde server
wouldn't be the same as those on your IMAP server, if they are different
machines).

horde is on my imap server. I understand that would be a problem
were that not the case.

Post by Eric Jon Rostetter
Probably not [instructions] anything detailed.

clearly.

Post by Eric Jon Rostetter
The problem seems to be you are using IMAP authentication. You can't
manage IMAP authentication via Horde (e.g., create/delete users, etc)
since IMAP doesn't support that. If you used a backend that supported
management (e.g., ldap, sql, etc) then you could (in most cases) do so
via Horde.

I know I'm using IMAP auth. And I know I can't manage imap auth via horde.

However, horde appears to have options to use the local auth
(/etc/passwd , /etc/shadow). I can't get them to work. I'd like
assistance in getting them to work, precisely so I can manage users via horde.

One reason is that the documentation for managing users via mySQL is
ALSO not very good/available. (a beginning to end instruction set).
Another reason is just that it seems like it should be simple to set
up this way.

Rick

Eric Jon Rostetter

2008-09-15 21:25:45 UTC

horde is on my imap server. I understand that would be a problem
were that not the case.

Assuming your system is using PAM, then set horde auth to use pam,
and set IMP to use hordeauth, and configure horde's pam auth, and
you should be back where you started, since pam auth doesn't
allow management (not even list).

Or configure horde to use password file auth, and IMP to use hordeauth,
and configure horde's password file auth properly, and it may not work
cause I'm not sure if horde's password routines support a separate shadow
file. But in any case, the password driver doesn't support managment
past listing the users, so you haven't gained much if anything, so why
do it?

Or, try using the login driver, which might be useful with shadow files,
but still doesn't support management, so there's no point...

Or switch to another IMAP server that supports management commands, and
configure IMP so it knows you support managment commands, and then use that.
But I wouldn't recommend that per se, since dovecot rocks....

Or, and this is the real point, if you must use IMAP authentication, and
want Horde to do management, migrate your users from passwd/shadow files
to something that actually supports management (e.g., sql, ldap, etc)
and configure Horde, IMP, and dovecot all to use that authentication
method. And voila, you're done. :)

Post by horde
I know I'm using IMAP auth. And I know I can't manage imap auth via horde.

Actually, if your IMAP server supports user management by IMAP commands,
than you can. But since you said you use dovecot, and I'm fairly sure
dovecot doesn't support this (surely not dovecot 0.99, almost surely
dovecot 1.0, not as sure about 1.1/1.2), then you can do it. Some IMAP
servers do support it however.

And if your IMAP server authenticates of sql or ldap or any managable
backend (which dovecot supports), then you can. But you need to tell
Horde to use the actual backend, not IMAP, in that case.

Post by horde
However, horde appears to have options to use the local auth
(/etc/passwd , /etc/shadow). I can't get them to work.

And why not? I've not seen a description of any problem, or a detailed
setup description, just a "doesn't work" summary. What doesn't work,
what errors do you get, how did you configure it, etc.

If by "not work" you mean "can't get management to work" then the
answer is simple: they don't support management.

If by "not work" you mean something else, then either be more specific
what you want to work and how you want it to work, or provide some idea
of what kind of error you are getting.

Post by horde
I'd like assistance in getting them to work, precisely so I can
manage users via horde.

You can't manage users with file based systems. So if you want to manage
them via Horde, you need to (i.e., must) migrate the users to another
backend.

Post by horde
One reason is that the documentation for managing users via mySQL is
ALSO not very good/available. (a beginning to end instruction set).

That is because there are hundreds of ways to do this. You should
first consult your IMAP server docs for what it supports, and follow
those instructions. Then configure Horde/IMP as needed based on the
IMAP configuration needed.

Post by horde
Another reason is just that it seems like it should be simple to set
up this way.

What way is that? Password files, yes. Shadow files, not too hard, but
more difficult. PAM, yes. Any of those with user management, no supported.
SQL, depends on your IMAP server... kerberos, depends on your IMAP server.
Ldap, depends on your IMAP server... Well, you should get the idea by now.

Post by horde
Rick

horde

2008-09-15 21:51:20 UTC

At 05:25 PM 9/15/2008, you wrote:
Or, and this is the real point, if you must use IMAP authentication, and

Post by Eric Jon Rostetter
want Horde to do management, migrate your users from passwd/shadow files
to something that actually supports management (e.g., sql, ldap, etc)
and configure Horde, IMP, and dovecot all to use that authentication
method. And voila, you're done. :)

I've never said I have to use IMAP auth, just that I know I currently
AM. I want to be able to manage users (add, remove, change passwd,
allow users to change passwd)

Post by Eric Jon Rostetter
And why not? I've not seen a description of any problem, or a detailed
setup description, just a "doesn't work" summary. What doesn't work,
what errors do you get, how did you configure it, etc.

My first post in this thread described what I had done (see Mon, 15
Sep 2008 14:55:33 -0400 ). My follow-on post described what I had
tried in response to another suggestion.

By not work, I mean at a baseline I can no longer log on via horde
(which I described previously as "authentication fails" - sorry if
that was unclear). As an extension, IF I try to manage users under
that circumstance, I get an error (see previous post).

Post by Eric Jon Rostetter
You can't manage users with file based systems. So if you want to manage
them via Horde, you need to (i.e., must) migrate the users to another
backend.

OK, the first useful thing I've learned. I can't? sure would be nice
if horde mentioned that somewhere.

Post by horde
One reason is that the documentation for managing users via mySQL is
ALSO not very good/available. (a beginning to end instruction set).

That is because there are hundreds of ways to do this.

Then it should be relatively simple to describe _a_ way. telling me
there are hundreds of ways without a pointer to even ONE way just
feels like I'm being mocked.

Post by Eric Jon Rostetter
You should
first consult your IMAP server docs for what it supports, and follow
those instructions. Then configure Horde/IMP as needed based on the
IMAP configuration needed.

You said earlier that IMAP with dovecot won't support managing users.
So that would also not be helpful. Can you point me to something
that will explain how to use horde to manage users?

Rick

Michael Rubinsky

2008-09-15 23:52:28 UTC

Post by Eric Jon Rostetter
Or, and this is the real point, if you must use IMAP authentication, and

I've never said I have to use IMAP auth, just that I know I
currently AM. I want to be able to manage users (add, remove, change
passwd, allow users to change passwd)

My first post in this thread described what I had done (see Mon, 15
Sep 2008 14:55:33 -0400 ). My follow-on post described what I had
tried in response to another suggestion.
By not work, I mean at a baseline I can no longer log on via horde
(which I described previously as "authentication fails" - sorry if
that was unclear). As an extension, IF I try to manage users under
that circumstance, I get an error (see previous post).

Post by Eric Jon Rostetter
You can't manage users with file based systems. So if you want to manage
them via Horde, you need to (i.e., must) migrate the users to another
backend.

OK, the first useful thing I've learned. I can't? sure would be nice
if horde mentioned that somewhere.

Do you mean besides giving you an error that it doesn't? Granted, it
would be nice to have a nice thick instruction manual describing
everything, in every detail that you would ever want to know about
Horde, but that is wishful thinking.

Being sarcastic to people in the community that are volunteering their
free time to help you is just flat out wrong. This is an open source
project and community that revolves around volunteers.

Perhaps if you feel so strongly about this documentation issue, you
would like to provide a patch to our documentation describing what
you've learned, or what you feel is missing...or if it's easier, you
could update one of the hundreds of documents on our wiki. That would
be more in the spirit of an open source project.

Yes, documentation is a weaker part of our project (and indeed a large
percentage of open source projects) mostly because the minimal free
time that the developers have is spent writing code, fixing bugs and
answering email like this.

Post by horde
One reason is that the documentation for managing users via mySQL is
ALSO not very good/available. (a beginning to end instruction set).

That is because there are hundreds of ways to do this.

Then it should be relatively simple to describe _a_ way. telling me
there are hundreds of ways without a pointer to even ONE way just
feels like I'm being mocked.

Well, not without knowing your exact setup, no, it wouldn't be
easy...and which _one_ way do you want us to describe that would match
your needs?

You said earlier that IMAP with dovecot won't support managing users.
So that would also not be helpful.

Well, Dovecot *can* use SQL authentication...

Can you point me to something

Post by Eric Jon Rostetter
that will explain how to use horde to manage users?

http://wiki.horde.org/FAQ/Admin/Config?referrer=FAQ%2FAdmin#

Thanks,
mike

--
The Horde Project (www.horde.org)
mrubinsk at horde.org

"Time just hates me. That's why it made me an adult." - Josh Joplin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: PGP Digital Signature
URL: <http://lists.horde.org/archives/horde/attachments/20080915/67b45659/attachment-0001.bin>

horde

2008-09-16 03:03:29 UTC

Post by Michael Rubinsky
Being sarcastic to people in the community that are volunteering their
free time to help you is just flat out wrong.

sorry if you read it that way - it wasn't sarcasm.

Post by Michael Rubinsky
Perhaps if you feel so strongly about this documentation issue, you
would like to provide a patch to our documentation describing what
you've learned, or what you feel is missing...or if it's easier, you
could update one of the hundreds of documents on our wiki. That would
be more in the spirit of an open source project.

And I typically do that, and have contributed to a number of open
source projects. But that involves me finally understanding it enough
to provide something useful, and well enough what I did that I can
actually explain it to someone else.

Post by Michael Rubinsky
Yes, documentation is a weaker part of our project (and indeed a large
percentage of open source projects) mostly because the minimal free
time that the developers have is spent writing code, fixing bugs and
answering email like this.

My experience has been that developers can save a lot of time that
they spend answering questions by taking the time to answer it once,
and then add their answer to the documentation, thus decreasing the
overall number of questions.YMMV.

Post by Michael Rubinsky
Well, not without knowing your exact setup, no, it wouldn't be
easy...and which _one_ way do you want us to describe that would match
your needs?

Examples, even if they don't meet my needs, gives me somewhere to
start. Few to no examples make it hard to bootstrap myself into place.

Post by Michael Rubinsky
Can you point me to something

Post by horde
that will explain how to use horde to manage users?

http://wiki.horde.org/FAQ/Admin/Config?referrer=FAQ%2FAdmin#

"It's so configurable we can't possibly give you an example" negates
a lot of the utility that the very flexibility provides - so many
choices with no way to get anything working.

I had read this document before I started asking questions. You
really could cut out a lot of questions by defining a few basic ways
to configure authentication. Heck, the authentication tab lists 5+
ways that aren't even mentioned there. An example for each would be
wildly useful. mySQL I suspect most so given the questions I've found
on line on the same topic.

I've added your basic instructions you added to the wiki listed above.

Mike, I appreciate the help, and I might have enough now to bootstrap
myself into usefulness, we'll see. thanks

Rick

Eric Jon Rostetter

2008-09-16 03:34:08 UTC

Post by horde
And I typically do that, and have contributed to a number of open
source projects. But that involves me finally understanding it
enough to provide something useful, and well enough what I did that
I can actually explain it to someone else.

I know nothing about it, but it didn't stop me from starting
http://wiki.horde.org/SQLAuthHowTo which is far from perfect, and may
not even work, but I'd bet together we could all get it working and
documented...

Disclaimer: I don't use MySQL (at all), and I don't do authentication
via SQL (at all), so the above wiki page is pure conjecture on my part.

Eric Jon Rostetter

2008-09-16 02:39:40 UTC

Post by horde
One reason is that the documentation for managing users via mySQL is
ALSO not very good/available. (a beginning to end instruction set).

That is because there are hundreds of ways to do this.

Then it should be relatively simple to describe _a_ way. telling me
there are hundreds of ways without a pointer to even ONE way just
feels like I'm being mocked.

Yes, but it wouldn't be useful in most cases, so why?

I'd encourage you instead to inquire of your IMAP software support
people how to set it up. And then simply configure Horde to match
(and IMP to use Horde authentication).

You said earlier that IMAP with dovecot won't support managing users.

Correct, but I also explained that if you setup dovecot to use SQL
(et al), then Horde can also use the same SQL to manage the users (without
going through dovecot to do it).

Post by horde
So that would also not be helpful.

Yes, it would.

Post by horde
Can you point me to something that will explain how to use horde to
manage users?

Not until you tell me what you want to do. Do you want to use SQL, or
LDAP, or something else? Do you want to stick with dovecot, or would
you prefer another imap server? Do you care if your users need to login
separately to Horde and IMP, rather than a single login? What management
facilities are needed? More questions that answers at this point.

If I can find the time, maybe I'll document some of this on the wiki.

Post by horde
Rick

Michael Rubinsky

2008-09-15 21:39:04 UTC

Post by Eric Jon Rostetter
You're using IMAP authentication.

yes, I know. $conf[auth][params][app] : imp being set to IMP is a
pretty big clue there that I caught.

horde is on my imap server. I understand that would be a problem
were that not the case.

Post by Eric Jon Rostetter
Probably not [instructions] anything detailed.

clearly.

Well, even if you get them to work, you won't be able to manage users
via horde. Those drivers don't support that. They are designed to
allow horde to (obviously) authenticate against an existing shadow
file - which is managed by the OS, not Horde, for obvious reasons.

Post by horde
One reason is that the documentation for managing users via mySQL is
ALSO not very good/available. (a beginning to end instruction set).
Another reason is just that it seems like it should be simple to set
up this way.

Not much to know about using the mySQL driver. Set the auth backend to
SQL, make sure the tables are present in the database, which they
should be, add some users....of course, your users will have to either
have the same login/pass as they do on the IMAP server or they will
have to login separately to IMP. The other option is to have your IMAP
server use SQL authentication, and use the SQL with custom queries
backend in horde to connect to the same database/tables as your IMAP
server.

Thanks,
mike

--
The Horde Project (www.horde.org)
mrubinsk at horde.org

"Time just hates me. That's why it made me an adult." - Josh Joplin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: PGP Digital Signature
URL: <http://lists.horde.org/archives/horde/attachments/20080915/79a076a8/attachment.bin>

horde

2008-09-15 22:10:35 UTC

At 05:39 PM 9/15/2008, Michael Rubinsky wrote:
Well, even if you get them to work, you won't be able to manage users

Post by Michael Rubinsky
via horde. Those drivers don't support that. They are designed to
allow horde to (obviously) authenticate against an existing shadow
file - which is managed by the OS, not Horde, for obvious reasons.

Thank you very helpful.

Post by Michael Rubinsky
Not much to know about using the mySQL driver. Set the auth backend to
SQL, make sure the tables are present in the database, which they
should be, add some users....of course, your users will have to either
have the same login/pass as they do on the IMAP server or they will
have to login separately to IMP. The other option is to have your IMAP
server use SQL authentication, and use the SQL with custom queries
backend in horde to connect to the same database/tables as your IMAP
server.

So does the default horde mysql database already have the tables in
it, or will I need to use a separate mySQL database? where would I
locate the required fields/tables required in the mySQL table?

Is there a quick summary somewhere of what steps need to be done to
get horde to auth via mySQL? (and thus permit me to manage users within horde)?

rick

Post by Michael Rubinsky
Thanks,
mike
--
The Horde Project (www.horde.org)
mrubinsk at horde.org
"Time just hates me. That's why it made me an adult." - Josh Joplin
--
Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
Frequently Asked Questions: http://horde.org/faq/
To unsubscribe, mail: horde-unsubscribe at lists.horde.org

horde

2008-09-15 22:41:50 UTC

So if:
I configure dovecot to auth against mysql
I configure horde to auth against mysql

Then should I be able to manage users within horde?

Rick

Post by Michael Rubinsky
Well, even if you get them to work, you won't be able to manage users

Thank you very helpful.

So does the default horde mysql database already have the tables in
it, or will I need to use a separate mySQL database? where would I
locate the required fields/tables required in the mySQL table?
Is there a quick summary somewhere of what steps need to be done to
get horde to auth via mySQL? (and thus permit me to manage users within horde)?
rick

--
Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
Frequently Asked Questions: http://horde.org/faq/
To unsubscribe, mail: horde-unsubscribe at lists.horde.org

Eric Jon Rostetter

2008-09-16 02:42:30 UTC

Post by horde
I configure dovecot to auth against mysql
I configure horde to auth against mysql
Then should I be able to manage users within horde?

Yes, and configure IMP to use horde authentication OR imap authentication,
both should work as both Horde and dovecot are using the same backend
mysql database...

Post by horde
Rick

horde

2008-09-15 20:48:14 UTC

Post by Luis Felipe Marzagao/Andamentos

OK, (running on a test machine - I'm not that crazy) in order to
narrow down the issue I have issued per yuor suggestion:
chmod 777 /etc/passwd
chmod 777 /etc/shadow
(yeah, terrible for production, I really do know).

and it still doesn't work.
I've set
$conf[auth][driver] to Password file Authentication
and
$conf[auth][params][filename] to /etc/shadow (and/or /etc/passwd)
and
$conf[auth][params][encryption] to crypt or crypt md5

and I can't log in. When in admin mode on a system already logged in,
if I select Administration > Users
I get
A fatal error has occurred
Couldn't open '/etc/passwd'. (or /etc/shadow)

[line 245 of /var/www/html/horde/admin/user.php]

It _should_ have permission to open those files (everyone really).

What am I missing?

Rick

You might be having permission problems.
Try allowing your HTTP user and/or your horde administrator to read
and write on /etc/passwd and /etc/shadow and try again.
==========================
Jorge Hernandez
CEO
FSB Computers

The problem I have is i know _where_ this option is, I just don't know
how to actually get it to DO anything.
I'm running CentOS 5.1 and the Horde webmail 3.0.1 on top of postfix
and dovecot.
Currently Authentication is set to
$conf[auth][driver] : Let Horde handle authentication
and
$conf[auth][params][app] : imp
This works to authenticate in webmail to the local /etc/passwd
/etc/shadow (default auth).
When I change
$conf[auth][driver] to Password file Authentication
authentication fails. tinkering with settings eventually leads me to
reverting it back to the defaults.
I've dug around / googled a fair amount for documentation on these two
parameters, and haven't really found anything (except other people
searching for the same thing) . Is there an actual document/manual on
these settings anywhere?
Authentication is key from a product security perspective. I've been
surprised I can't find a standard default document that explains the
authentication options and how to enable /configure them.
Rick

Post by Luis Felipe Marzagao/Andamentos
Administration > Horde > Authentication > $conf[auth][driver] option

<http://horde.org/bounties/#horde>http://horde.org/bounties/#horde

Post by Jorge Hernandez
Frequently Asked Questions: <http://horde.org/faq/>http://horde.org/faq/
To unsubscribe, mail: horde-unsubscribe at lists.horde.org

<http://horde.org/bounties/#horde>http://horde.org/bounties/#horde

Post by Luis Felipe Marzagao/Andamentos
Frequently Asked Questions: <http://horde.org/faq/>http://horde.org/faq/
To unsubscribe, mail: horde-unsubscribe at lists.horde.org

Eric Jon Rostetter

2008-09-15 21:28:58 UTC

Post by horde
OK, (running on a test machine - I'm not that crazy) in order to
chmod 777 /etc/passwd
chmod 777 /etc/shadow
(yeah, terrible for production, I really do know).

Yeah, kind of defeats the purpose of a shadow file :)

Post by horde
and it still doesn't work.
I've set
$conf[auth][driver] to Password file Authentication
and
$conf[auth][params][filename] to /etc/shadow (and/or /etc/passwd)
and
$conf[auth][params][encryption] to crypt or crypt md5

"password file" doesn't support shadow files, AFAIK. But PAM might
work for you in this case, and be easier to do and maintain.

Post by horde
and I can't log in. When in admin mode on a system already logged
in, if I select Administration > Users
I get
A fatal error has occurred
Couldn't open '/etc/passwd'. (or /etc/shadow)

Could be php in safe mode, or apache is chrooted, or mod_security is
running? Check your web server logs and system logs for errors, etc.

Post by horde
It _should_ have permission to open those files (everyone really).
What am I missing?

I'd start looking at the logs, as it could be many things (like the ideas
above for starters).

Post by horde
Rick

Michael Rubinsky

2008-09-15 21:32:25 UTC

Post by horde
OK, (running on a test machine - I'm not that crazy) in order to
chmod 777 /etc/passwd
chmod 777 /etc/shadow
(yeah, terrible for production, I really do know).
and it still doesn't work.
I've set
$conf[auth][driver] to Password file Authentication
and
$conf[auth][params][filename] to /etc/shadow (and/or /etc/passwd)
and
$conf[auth][params][encryption] to crypt or crypt md5
and I can't log in. When in admin mode on a system already logged
in, if I select Administration > Users
I get
A fatal error has occurred
Couldn't open '/etc/passwd'. (or /etc/shadow)
[line 245 of /var/www/html/horde/admin/user.php]
It _should_ have permission to open those files (everyone really).
What am I missing?

Do you maybe have safe mode enabled in PHP or maybe the open_basedir
directive set?

Thanks,
mike

--
The Horde Project (www.horde.org)
mrubinsk at horde.org

"Time just hates me. That's why it made me an adult." - Josh Joplin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: PGP Digital Signature
URL: <http://lists.horde.org/archives/horde/attachments/20080915/d76c14a8/attachment.bin>

Luis Felipe Marzagao/Andamentos

2008-09-15 21:49:19 UTC