search for: max_request

On 15/04/2019 13:43, Larry Rosenman via dovecot wrote: > Again, this doesn't help with doveadm?running as the local user, and > also doesn't help with > the PAM authentication. > > passdb { > ? driver = pam > ? #[session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=20] > ? #[cache_key=<key>] [<service name>] > ? args = failure_show_msg=yes session=yes max_requests=20 > ? skip = authenticated > } > > How can I default the domain for PAM authentication? > (I've set auth_default_realm and it doesn't help in this case)....

> What is in the pam.d/dovecot file? (Remember to strip passwords if > included) # cat /etc/pam.d/dovecot passdb { driver = pam # args = failure_show_msg=yes # args = max_requests=12 args = %s } and /etc/pam.d/{imap,pop3} were untouched; both as follows # # $FreeBSD: releng/10.3/etc/pam.d/pop3 170771 2007-06-15 11:33:13Z yar $ # # PAM configuration for the "pop3" service # # auth #auth sufficient pam_krb5.so no_warn try_first_pass #...

On 15/04/2019 12:59, Larry Rosenman via dovecot wrote: > forgot to reply all. > > ---------- Forwarded message --------- > From: *Larry Rosenman* <larryrtx at gmail.com <mailto:larryrtx at gmail.com>> > Date: Mon, Apr 15, 2019 at 5:58 AM > Subject: Re: SOLR/Index? > To: John Fawcett <john at voipsupport.it <mailto:john at voipsupport.it>> > > >

...osenman via dovecot wrote: > > Again, this doesn't help with doveadm running as the local user, and > > also doesn't help with > > the PAM authentication. > > > > passdb { > > driver = pam > > #[session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=20] > > #[cache_key=<key>] [<service name>] > > args = failure_show_msg=yes session=yes max_requests=20 > > skip = authenticated > > } > > > > How can I default the domain for PAM authentication? > > (I've set auth_default_realm and i...

...isk every 10 sec. All my requests are made in one thread. And I found that the libvirtd may cost 30% or above cpu time. Is it normal in my case? I tried to reduce this cpu consumption and found some variable in libvirtd.conf and got a little confused by variables like max_clients, max_workers, max_requests. In my opinion, max_clients limits the number of virConnect created by app. max_workers limits the number of thread to handle requests from clients. Does that mean requests from one client may be handled in multi-thread way if max_workers is greater than max_workers? max_request limits...

Again, this doesn't help with doveadm running as the local user, and also doesn't help with the PAM authentication. passdb { driver = pam #[session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=20] #[cache_key=<key>] [<service name>] args = failure_show_msg=yes session=yes max_requests=20 skip = authenticated } How can I default the domain for PAM authentication? (I've set auth_default_realm and it doesn't help in this case). # System users (NSS, /etc/passwd,...

...nabled by default? dovecot.conf: No sections (e.g. namespace {}) or plugin settings are added by default, they're listed only as examples. Does it mean that passdb pam will use defaults (e.g. session=yes, setrcred=yes)? passdb pam { # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=<n>] # [cache_key=<key>] [<service name>] # # session=yes makes Dovecot open and immediately close PAM session. Some # PAM plugins need this to work, such as pam_mkhomedir. # # setcred=yes makes Dovecot establish PAM credentials if some PAM plugins # n...

...d in a file) the request is authorized. 2. If not, if the user is listed in a second file the request is authorized. 3. If also this check fails the request is rejected. I'm using PAM for passdb and a passwd-file for userdb: passdb { driver = pam args = session=yes failure_show_msg=yes max_requests=16 cache_key=%u%r%l dovecot-%s } userdb { driver = passwd-file args = /etc/passwd-dovecot } In /etc/pam.d/ there are two files: dovecot-pop3 dovecot-imap dovecot-pop3: #%PAM-1.0 @include common-auth @include common-account @include common-session (for this protocol everything works...

...{ ??? special_use = \Sent ? } ? mailbox "Sent Messages" { ??? special_use = \Sent ? } ? mailbox Trash { ??? special_use = \Trash ? } ? prefix = } passdb { ? args = /etc/dovecot/deny-users ? deny = yes ? driver = passwd-file } passdb { ? args = cache_key=#hidden_use-P_to_show# max_requests=256 ? driver = pam } passdb { ? args = cache_key=#hidden_use-P_to_show# max_requests=256 ? driver = pam } plugin { ? quota = fs:User quota ? quota_grace = 10%% ? quota_status_nouser = DUNNO ? quota_status_overquota = 552 5.2.2 Mailbox is full ? quota_status_success = DUNNO ? quota_warning...

...erwise not (see below). If the user has a valid Kerberos ticket and he tries to login via GSSAPI, I can't restrict him if he is not a member of the selected group. How can I overcome this issue? My config: passdb { ? driver = pam ? # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=<n>] ? # [cache_key=<key>] [<service name>] ? #args = dovecot } userdb { ? # <doc/wiki/AuthDatabase.Passwd.txt> ? driver = passwd ? # [blocking=no] ? #args = ? # Override fields from passwd ? #override_fields = home=/home/virtual/%u } ...in PAM file: auth??? [s...

Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=2172516 v1: https://listman.redhat.com/archives/libguestfs/2023-April/031258.html Please refer to the Notes section in each patch for the v2 updates. BR, Laszlo Laszlo Ersek (3): copy: rename DESTINATION_IS_ZERO_OPTION to TARGET_IS_ZERO_OPTION copy: fix layout of "long_options" table copy: rewrap error message about

...location = virtual:~/MAIL-VIRTUAL:INDEX=MEMORY prefix = Virtual/ separator = / } passdb { args = /usr/local/etc/dovecot/dovecot-sql.conf.ext driver = sql } passdb { args = user=%Ln noauthenticate driver = static skip = authenticated } passdb { args = failure_show_msg=yes session=yes max_requests=20 driver = pam skip = authenticated } plugin { fts = solr fts_autoindex = yes fts_solr = url=http://thebighonker.lerctr.org:8983/solr/dovecot/ fts_tika = http://localhost:9998/tika/ imapsieve_mailbox1_before = file:/usr/local/share/dovecot-pigeonhole/sieve/report-spam.sieve imapsi...

> I guess we have to look at the conf files then, first these two: Thank you for the config file snippets. I can confirm mine were almost identical, so I've tweaked them so that they are now exactly the same as yours except for the "--require-membership-of=example\authorization_groupname" line in ntlm_auth. Unfortunately it's still erroring out: (7) mschap: Creating

...location = virtual:~/MAIL-VIRTUAL:INDEX=MEMORY prefix = Virtual/ separator = / } passdb { args = /usr/local/etc/dovecot/dovecot-sql.conf.ext driver = sql } passdb { args = user=%Ln noauthenticate driver = static skip = authenticated } passdb { args = failure_show_msg=yes session=yes max_requests=20 driver = pam skip = authenticated } plugin { fts = solr fts_autoindex = yes fts_solr = url=http://thebighonker.lerctr.org:8983/solr/dovecot/ fts_tika = http://localhost:9998/tika/ imapsieve_mailbox1_before = file:/usr/local/share/dovecot-pigeonhole/sieve/report-spam.sieve imapsi...

...usterrestd service it drops some python errors, heres a error log output with increased loglevel. Maybe someone can give me a hint how to fix this -- snip -- [2017-11-07 10:29:04 +0000] [30982] [DEBUG] Current configuration: proxy_protocol: False worker_connections: 1000 statsd_host: None max_requests_jitter: 0 post_fork: <function post_fork at 0x28470c8> errorlog: /var/log/glusterrest/errors.log enable_stdio_inheritance: False worker_class: sync ssl_version: 2 suppress_ragged_eofs: True syslog: False syslog_facility: user when_ready: <function when_ready at 0x2842d70...

...gt; args = /usr/local/etc/dovecot/dovecot-sql.conf.ext > > driver = sql > > } > > passdb { > > args = user=%Ln noauthenticate > > driver = static > > skip = authenticated > > } > > passdb { > > args = failure_show_msg=yes session=yes max_requests=20 > > driver = pam > > skip = authenticated > > } > > plugin { > > fts = solr > > fts_autoindex = yes > > fts_solr = url=http://thebighonker.lerctr.org:8983/solr/dovecot/ > > fts_tika = http://localhost:9998/tika/ > > imapsieve_m...

Hi Aki, If I adapt this configuration on svr1 like this[0], should the mail not be delivered at svr2 passdb { driver = pam # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=<n>] # [cache_key=<key>] [<service name>] #args = dovecot default_fields = proxy=y host=svr2 } passdb { driver = passwd skip = authenticated default_fields = proxy=y host=svr2 } -----Original Message----- From: Aki Tuomi [mailto:aki.tuomi at open-xchange.com] Se...

...list = yes location = virtual:~/MAIL-VIRTUAL prefix = Virtual/ separator = / } passdb { args = /usr/local/etc/dovecot/dovecot-sql.conf.ext driver = sql } passdb { args = user=%Ln noauthenticate driver = static skip = authenticated } passdb { args = failure_show_msg=yes session=yes max_requests=20 driver = pam override_fields = domain=lerctr.org skip = authenticated } plugin { fts = solr fts_autoindex = yes fts_solr = url=http://thebighonker.lerctr.org:8983/solr/dovecot/ fts_tika = http://localhost:9998/tika/ imapsieve_mailbox1_before = file:/usr/local/share/dovecot-pigeo...

...e PAM and it appeared to know the password of my account, failing when it was entered incorrectly so I'm assuming that it was successfully using PAM. I kept the same syntax in the later config file. >From dovecot.conf: passdb pam { # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=<n>] # [cache_key=<key>] [<service name>] # # session=yes makes Dovecot open and immediately close PAM session. Some # PAM plugins need this to work, such as pam_mkhomedir. # # setcred=yes makes Dovecot establish PAM credentials if some PAM plugins # n...

>> auth: in openpam_parse_chain(): /etc/pam.d/dovecot(1): missing or invalid facility > > I do not think that it has something to do with the dovecot settings > itself but perhaps with the pam facility settings instead? i can believe that. any clues to debug? randy