Hi
I've upgraded to 2.1.7 and finally decided to turn off imaps and pop3s
because these days everyone uses tls over 143 anyway. But it's on and
I can't figure out why.
I only have non-ssl versions specified:
protocols = imap pop3
I've stopped and started and the ports are still open and netstat says
dovecot is listening on them..
mail:~# netstat -tulnp | grep dove
tcp 0 0 0.0.0.0:993 0.0.0.0:*
LISTEN 29340/dovecot
tcp 0 0 0.0.0.0:995 0.0.0.0:*
LISTEN 29340/dovecot
tcp 0 0 0.0.0.0:110 0.0.0.0:*
LISTEN 29340/dovecot
tcp 0 0 0.0.0.0:143 0.0.0.0:*
LISTEN 29340/dovecot
tcp6 0 0 :::993 :::*
LISTEN 29340/dovecot
tcp6 0 0 :::995 :::*
LISTEN 29340/dovecot
tcp6 0 0 :::110 :::*
LISTEN 29340/dovecot
tcp6 0 0 :::143 :::*
LISTEN 29340/dovecot
Any ideas?
Thanks.
Simon
Here's my doveconf - n
# 2.1.7: /etc/dovecot/dovecot.conf
# OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.0 ext3
auth_mechanisms = plain login
auth_verbose = yes
disable_plaintext_auth = no
first_valid_uid = 109
last_valid_uid = 109
log_timestamp = "%Y-%m-%d %H:%M:%S "
login_log_format_elements = user=<%u> method=%m rip=%r %c
mail_location = maildir:/var/spool/mail/virtual/%d/%n
mail_privileged_group = mailsystem
maildir_very_dirty_syncs = yes
passdb {
args = /etc/dovecot/dovecot-sql.conf
driver = sql
}
plugin {
quota = maildir
}
protocols = imap pop3
service auth {
unix_listener /var/spool/postfix/private/auth {
group = mailsystem
mode = 0660
user = postfix
}
unix_listener auth-master {
group = mailsystem
mode = 0660
user = mailsystem
}
user = mailsystem
}
ssl_ca = </etc/ssl/keys/ca.crt
ssl_cert = </etc/ssl/keys/mail.net.crt
ssl_key = </etc/ssl/private/mail.net.key
userdb {
driver = prefetch
}
userdb {
args = uid=109 gid=113 home=/var/spool/mail/virtual/%d/%n allow_all_users=yes
driver = static
}
protocol imap {
imap_client_workarounds = delay-newmail
mail_max_userip_connections = 20
mail_plugins = quota imap_quota
}
protocol pop3 {
mail_plugins = quota
pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
pop3_save_uidl = yes
pop3_uidl_format = %v.%u
}
protocol lda {
deliver_log_format = msgid=%m: %f: %$
info_log_path log_path mail_plugins = quota
postmaster_address = postmaster at example.net
}
Hi Simon,
Try to add this configuration.
The "Port = 0" will disable the listener.
Greats,
Sascha Kuehndel
service imap-login {
inet_listener imap {
#port = 143
}
inet_listener imaps {
port = 0
#ssl = yes
}
}
service pop3-login {
inet_listener pop3 {
#port = 110
}
inet_listener pop3s {
port = 0
#ssl = yes
}
}
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 230 bytes
Desc: This is a digitally signed message part.
URL:
<http://dovecot.org/pipermail/dovecot/attachments/20130613/31c23b44/attachment.bin>
At 4PM +0200 on 13/06/13 you (Simon B) wrote:> > I've upgraded to 2.1.7 and finally decided to turn off imaps and pop3s > because these days everyone uses tls over 143 anyway. But it's on and > I can't figure out why. > > I only have non-ssl versions specified: > protocols = imap pop3Dovecot listens on imaps/pop3s by default, so you need to disable them explicitly like this: service imap-login { inet_listener imap { # defaults } inet_listener imaps { # disable the imaps service port = 0 } } and the equivalent for pop3-login. Ben