Displaying 20 results from an estimated 21 matches for "leolistas".
2017 Jun 12
1
Log authentication attempts
I need to save that to database because I have more then one mail server
and them must share each other failed login attempts information.
I'll try check how Dovecot Authentication Policy works.
--JAcek
2017-06-12 16:50 GMT+02:00 Leonardo Rodrigues <leolistas at solutti.com.br>:
> Em 12/06/17 09:39, j.emerlik escreveu:
>
>> Failed login attempts information may be useful in the
>> fight with bruteforce attacks.
>>
>>
> fail2ban is your friend, it can analyze the logs, no need for saving
> that on database.
>...
2017 Jun 12
4
Log authentication attempts
We alse have same problem, now we are running Dovecot 2.2.30.2 and also use
Dovecot SASL for SMTP authentication (postfix 2.11).
We need to save all failed login attempts to database as source IP address,
username and date and time but post-login script can do this but only after
successful login. Failed login attempts information may be useful in the
fight with bruteforce attacks.
It's
2014 Jun 25
3
question on lmtp logged message
Hi,
I have dovecot running for IMAP4/POP3 and also local delivery
through LMTP. It's working just fine, absolutely no problem on that,
setup is fine.
Anyway, sometimes LMTP seems to not be able to deliver some
messages and keep them on postfixqueue. And on the next or third try,
the message gets delivered successfully. The logged message, however, is
not helping me identify
2015 Mar 19
0
check if anvil is working
Hi,
Is there any way of making sure the anvil service, used to penalty
login fails, is working ? I dont see anything on the logs regarding it
neither have it configured. It's not on my configuration files, but it
can be seen on a 'dovecot -a' dump. Should it be logging something ?
Should i have enabled it somehow ?
Thanks for the answers.
[root at correio log]# dovecot
2017 Jun 12
0
Log authentication attempts
Em 12/06/17 09:39, j.emerlik escreveu:
> Failed login attempts information may be useful in the
> fight with bruteforce attacks.
>
fail2ban is your friend, it can analyze the logs, no need for
saving that on database.
--
Atenciosamente / Sincerily,
Leonardo Rodrigues
Solutti Tecnologia
http://www.solutti.com.br
Minha armadilha de SPAM, N?O mandem email
gertrudes at
2019 Feb 12
0
Using SHA256/512 for SQL based password
??? Here i have SSHA256 working with:
default_pass_scheme = PLAIN
??? and my database scheme just received the hashed password prefixed
by the SSHA indicator, just like:
mysql> select * from emails where endereco = 'solutti at XXXXXXXXX'\G
*************************** 1. row ***************************
????????????? endereco: solutti at XXXXXXXXXXXXXX
????????????? password:
2020 Jul 21
0
ports with different crypto settings
??? Hello Everyone,
??? Is it possible, with latest dovecot, to have different crypto
settings on different pop/imap ports? Basically i'm looking to have one
port with TLSv1 enabled, which will be exposed to internal networks
only, and other ports with TLSv1.2+ only, which will be exposed to the
external networks.
??? The internal one will likely be running on a different port and
2009 Sep 22
1
compressed IMAP traffic
Simply (and maybe stupid) question ......
is there anything that can be easily used to automatically compress
IMAP traffic between client and server ? I was thinking if the SSL/TLS
code enables some kind of compression as well.
the idea is to reduce IMAP traffic between server and clients and
not using VPN-like solutions, the idea is just some IMAP4 standard
client (compatible with
2010 Feb 16
2
configuring overquota message
From dovecot 1.2.10 sources i have:
src/plugins/quota/quota.c
#define DEFAULT_QUOTA_EXCEEDED_MSG \
"Quota exceeded (mailbox for user is full)"
struct quota_settings *quota_settings_init(void)
{
[ .... ]
quota_set->quota_exceeded_msg = getenv("QUOTA_EXCEEDED_MESSAGE");
if (quota_set->quota_exceeded_msg == NULL)
2011 Dec 13
1
dovecot penalties and anvil
Hi,
I'm strugling to find some documentation on dovecot's anvil service
and/or its penalties (that can be checked with doveadm penalty) ... but
i'm not finding anything on that.
is there any documentation on anvil/penalties that i should check
other than a few messages on the mailing list archive ?
thanks !
--
Atenciosamente / Sincerily,
Leonardo Rodrigues
2013 Aug 26
1
SMTP Proxy
Hi,
I have found a message on this mailing list dated August/2012 in
which is said that dovecot could not (at least at that time) do SMTP
Authentication using Proxy Features.
http://www.dovecot.org/list/dovecot/2012-August/067998.html
is this still true, given i'm using latest stable dovecot, v2.2.5 ?
extra informations ... smtp authentication is done by postfix using:
2010 Oct 03
1
question on quota configuration on 2.0.5
Hi,
On dovecot 1.2 i had the following configuration on my
dovecot-sql.conf file:
password_query = select endereco as user, password, '/var/spool/mail/%u'
as userdb_home, 'maildir:/var/spool/mail/%u' as userdb_mail, 8 as
userdb_uid, 12 as userdb_gid, concat('*:storage=', quota) as
userdb_quota_rule, 'Trash:storage=100M' as userdb_quota_rule2 from
emails
2010 Jul 14
1
help on migrating some old Maildirs
Hi,
i need to restore some old mail backups from a system i wasnt the
admin. Emails are on Maildir, which i'm using on the actual server, so
should be no big deal. I'm just thinking of copying files from the
folders i need, from the old backup, to the specific dirs on the actual
system.
buuuut, watching the backup, i noticed that LOTS of files on the
Maildirs do not have
2009 Sep 18
1
simple feature request: IMAP logged out message
i'd like to make a simple feature request on dovecot ....
i'm using v1.2.4 (latest one) and IMAP logout message, by default is:
Sep 18 14:26:27 correio dovecot: IMAP(user at domain.com): Disconnected:
Logged out bytes=384/932222
the message can be a little customized with:
# IMAP logout format string:
# %i - total number of bytes read from client
# %o - total number of
2013 Aug 14
0
weird situation with pop3/imap proxy and postfix authentication
Hello dovecot mailing list,
I have a server running postfix and dovecot. I havea configuration
on dovecot that allows me to provide imap4/pop3 messages for local
hosted users as well as for proxied users on other servers.
Basically, i have a simple MySQL table (imapproxy) with two fields,
'domain' and 'host'. My password_query isa 'UNION' query, exactly like:
2010 Jan 14
1
handling filename of compressed messages
i'm running dovecot 1.2.9 and, among other things, i have the zlib
plugin enabled. A shell script runs once a day to compresses all not
still compressed files on the users maildirs.
so far so good, it works fine, there's no problem on that.
what i think is not happening 100% correctly is the following:
1) user receives a message
2) BEFORE the compress routine runs,
2010 Mar 11
3
IMAP proxy configuration
i know dovecot can act as IMAP and POP3 proxy ..... but i'm having
a hard time configuring it. Actually i'm using a simple dovecot
configuration with virtual users stored on MySQL. My dovecot-sql.conf is
pretty simple:
[root at correio dovecot]# cat dovecot-sql.conf
driver = mysql
connect = host=localhost dbname=DATABASE user=USERNAME password=PASSWORD
default_pass_scheme = PLAIN
#
2010 Feb 18
1
using signed certificates for TLS/SSL
Hi,
I have, in one customer, a web server running on a Verisign-signed
certificate SSL certificate. Everything works fine, IE and Firefox
connects on https without asking anything, which usually happens on
self-signed certificates. I'm trying to use that certificate on dovecot,
but clients (Thunderbird basically) keeps saying the certificate is not
valid.
yes i'm using,
2009 Sep 08
1
compression script for use with zlib module
Hi,
I'm wondering if someone already implemented a compression script
(and would like to share it) based on the step-by-step provided on wiki
page of Zlib module.
I can already do some find|xargs gzip .... but couldnt implement it
completly as described on the wiki page. I know the suggested
step-by-step is very detailed and probably a must simplier will be
enough for almost
2010 Feb 14
3
salted passwords
The idea of salted hash algorithms is to generate a different hash
even if the same text is entered. That can be easily seen with dovecotpw:
using NON-salted SHA256, same hash is generated for a given password
[root at correio ~]# dovecotpw -s SHA256 -p 123
{SHA256}pmWkWSBCL51Bfkhn79xPuKBKHz//H6B+mY6G9/eieuM=
[root at correio ~]# dovecotpw -s SHA256 -p 123