> On 04/05/2021 12:40 Dan Egli <dan at newideatest.site> wrote: > > > On 5/4/2021 3:18 AM, Christian Kivalo wrote: > > > > > > On 2021-05-04 10:29, Dan Egli wrote: > >> For gentoo, there is only one package. And here's your output: > >> > >> # 2.3.13 (89f716dc2): /etc/dovecot/dovecot.conf > >> # Pigeonhole version 0.5.13 (cdd19fe3) > >> # OS: Linux 5.11.16-gentoo-x86_64 x86_64 Gentoo Base System release > >> 2.7 xfs > >> # Hostname: jupiter.newideatest.site > > > >> > >> > >> and yet if I do doveconf protocols: > >> # doveconf protocols > >> protocols = imap pop3 lmtp > > In dovecot.conf i have a line that enables the protocols. > > > > # Enable installed protocols > > !include_try /usr/share/dovecot/protocols.d/*.protocol > > > > This is on debian where every protocol is a separate package to install. > > This could also just be: > > protocols = imap lmtp pop3 > > > > Remove pop3 from there and you should be good. You can even have the > > config in place. > > > > The other option to disable the pop3 listeners is to set the port = 0 > > > > From 10-master.conf (when using split config files) > > service pop3-login { > > ?inet_listener pop3 { > > ?? port = 0 > > ?} > > ?inet_listener pop3s { > > ?? port = 0 > > ?? ssl = yes > > ?} > > } > > > > This disables pop3 listeners even when the pop3 protocol is enabled. > > > I would have thought that commenting them out would do that too. But I > can uncomment them and add a port = 0, see if that helps. > > > -- > Dan Egli > From my Test ServerHi! To correctly enable/disable protocols, ensure they are (not) listed on protocols. doveconf protocols tells you this. Usually on debian based systems the easiest way is to uninstall `dovecot-pop3d` package. Aki
Hi, I experienced the same issue in the past. For me it was a systemd issue. In systemd (</lib/systemd/system/dovecot.socket>) all ports were listed so that systemd listens on these. I solved it by placing the following content in </etc/systemd/system/dovecot.socket>: --- snip --- [Unit] Description=Dovecot IMAP/POP3 email server activation socket [Socket] #dovecot expects separate IPv4 and IPv6 sockets BindIPv6Only=ipv6-only ListenStream=0.0.0.0:993 ListenStream=[::]:993 KeepAlive=true [Install] WantedBy=sockets.target --- snip --- best, Sven Am 04.05.2021 um 12:14 schrieb Aki Tuomi:> >> On 04/05/2021 12:40 Dan Egli <dan at newideatest.site> wrote: >> >> >> On 5/4/2021 3:18 AM, Christian Kivalo wrote: >>> >>> >>> On 2021-05-04 10:29, Dan Egli wrote: >>>> For gentoo, there is only one package. And here's your output: >>>> >>>> # 2.3.13 (89f716dc2): /etc/dovecot/dovecot.conf >>>> # Pigeonhole version 0.5.13 (cdd19fe3) >>>> # OS: Linux 5.11.16-gentoo-x86_64 x86_64 Gentoo Base System release >>>> 2.7 xfs >>>> # Hostname: jupiter.newideatest.site >>> >>>> >>>> >>>> and yet if I do doveconf protocols: >>>> # doveconf protocols >>>> protocols = imap pop3 lmtp >>> In dovecot.conf i have a line that enables the protocols. >>> >>> # Enable installed protocols >>> !include_try /usr/share/dovecot/protocols.d/*.protocol >>> >>> This is on debian where every protocol is a separate package to install. >>> This could also just be: >>> protocols = imap lmtp pop3 >>> >>> Remove pop3 from there and you should be good. You can even have the >>> config in place. >>> >>> The other option to disable the pop3 listeners is to set the port = 0 >>> >>> From 10-master.conf (when using split config files) >>> service pop3-login { >>> ?inet_listener pop3 { >>> ?? port = 0 >>> ?} >>> ?inet_listener pop3s { >>> ?? port = 0 >>> ?? ssl = yes >>> ?} >>> } >>> >>> This disables pop3 listeners even when the pop3 protocol is enabled. >>> >> I would have thought that commenting them out would do that too. But I >> can uncomment them and add a port = 0, see if that helps. >> >> >> -- >> Dan Egli >> From my Test Server > > Hi! > > To correctly enable/disable protocols, ensure they are (not) listed on > protocols. > > doveconf protocols > > tells you this. > > Usually on debian based systems the easiest way is to uninstall `dovecot-pop3d` package. > > Aki >-- Best regards, Sven Strickroth PGP key id F5A9D4C4 @ any key-server
On 5/4/2021 4:14 AM, Aki Tuomi wrote:> Hi! > To correctly enable/disable protocols, ensure they are (not) listed on > protocols. > > doveconf protocols > > tells you this. > > Usually on debian based systems the easiest way is to uninstall `dovecot-pop3d` package. > > AkiAki, That's what I'm saying. The only place pop3 IS listed is in doveconf protocols. I'm going to try settiing the ports to 0 and see if that does the trick. And for those who keep mentioning the firewall, understand that I'm beyond security paranoid. Simply blocking at the firewall is not enough. I want to ensure that NO ONE is listening on that port, even if it's just localhost. -- Dan Egli From my Test Server -------------- next part -------------- A non-text attachment was scrubbed... Name: OpenPGP_0x11B7451DF2015959.asc Type: application/pgp-keys Size: 3792 bytes Desc: OpenPGP public key URL: <https://dovecot.org/pipermail/dovecot/attachments/20210504/ecba9630/attachment.bin> -------------- next part -------------- A non-text attachment was scrubbed... Name: OpenPGP_signature Type: application/pgp-signature Size: 665 bytes Desc: OpenPGP digital signature URL: <https://dovecot.org/pipermail/dovecot/attachments/20210504/ecba9630/attachment.sig>