search for: passworddatabase

Dave McGuire writes: >> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets >> >> then setup fail2ban to manage extrafields > > Now that's a very interesting idea, thank you! I will investigate this. If you don't expect yor firewall to handle 45K+ IPs, I'm not how you expect dovecot will handle a comma separated string...

...nt-hashing method is obsoleted. Unfortunately there's no easy way to upgrade directors to use the consistent hashing method without stopping the entire ring. The hard way would be to build a secondary director ring and start moving users to that ring in proxies. Added https://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy#moving <https://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy#moving> to explain further the hard way. -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dovecot.org/pipermail/dovecot/attachments/20180515/e8df0172/attachment.h...

...default imap/pop3 ports? Using the default ports will clearly cause loops. Can anyone kindly provide an example snippet of config that tells the director to use different port for IMAP and POP3 proxy? I have so far found the following pages helpful to what I am working on: http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy http://wiki2.dovecot.org/PasswordDatabase/ExtraFields http://wiki2.dovecot.org/Director Cheers, Aerion.

Hello, I've been running dovecot for over 3 years now and it works with no problems. I have it setup so that it authenticates users against Active Directory via LDAP and so far no problems. What I would like to know is if there is any way that I could deny access for users trying to access email via cellphones or email clients outside the company. I can

...expected to work against 1.2.11. The patch is pretty straightforward, it's making it work within the restrictions of the login process that's more interesting. I have made some changes to the wiki (pending approval) to - enhance the discussion of proxy with LDAP http://wiki.dovecot.org/PasswordDatabase/ExtraFields/Proxy - discuss the implication of this patch w.r.t. the login_chroot configuration parameter: http://wiki.dovecot.org/PasswordDatabase/ExtraFields/Proxy/HostLookup Feedback is appreciated, particulary from a security standpoint. Cheers, -Martin Foster martin_foster at netlog.net...

...mtp server proxy, to proxy a remote smtp server, the > documentation says "It's possible to use Dovecot LMTP server as a proxy to > remote LMTP or SMTP servers", but i do not find how to configure. Can > anybody gel me to understand? > > > https://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy > > However, the protocol field appears to be undocumented: > > https://github.com/dovecot/core/blob/master/src/lmtp/lmtp-proxy.c#L382 > > This is also important: > > https://wiki2.dovecot.org/LMTP#LMTP_Proxying > > Regards, > > Stephan.

Abstract from http://wiki.dovecot.org/PasswordDatabase/ExtraFields/Proxy > > host=s: The destination server's *IP address*. This field is required. > Note that currently it's required to use an IP address since no DNS > resolving is done. > Hello Timo, Here goes one more item for the v2.0 wishlist: Will it become possible...

Hello, I could have several password databases in dovecot. And according to http://wiki.dovecot.org/PasswordDatabase these passwdbs could allow or deny users and they could have different result_failure and result_sucess behaviors. So the order in which they are evaluated may be significant. So, how do I define this order? -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci...

The wiki <http://wiki.dovecot.org/PasswordDatabase/ExtraFields/Proxy> page says this: "The connections created to the destination server can't be TLS/SSL encrypted.". Hrmm. Right now, with perdition, I'm forcing the use of STARTTLS on the internal connections. I'd just as soon get rid of perdition (to have one less movin...

I am doing some research on Dovecots IMAP-Proxy features mentioned in <http://wiki.dovecot.org/HowTo/ImapProxy> and <http://wiki.dovecot.org/PasswordDatabase/ExtraFields/Proxy>. The docs only mention SQL as backend to hold required data. Is it also possible to use LDAP? TIA, p at rick -- state of mind Agentur f?r Kommunikation, Design und Softwareentwicklung Patrick Koetter Tel: 089 45227227 Echinger Strasse 3 Fax: 089 452272...

...wn local maildir storage for the users local to that server and all of the authentication and target backend pop/imap server data would be stored in the same MySQL database. The problem we are running into is the documentation is not very clear on this type of scenario. http://wiki.dovecot.org/PasswordDatabase/ExtraFields/Proxy At the bottom of this page it gives a query example of "SELECT NULL AS password, ." but that does not seem to allow for us to use the proxy_maybe if the destination server is localhost (and therefore do not proxy) it does not seem that the above query will actually s...

Hi I got dovecot 2.2.26 on a Centos7 with latest updates. Dovecot is configured to act as director and delivers to my two backend servers. I enabled lmtp proxy on director to listen on port 24. Now I see in msg headers that the connection to the lmtp proxy uses STARTTLS but the connection from proxy to backend seems to be unencrypted. Is it possible to enforce the use of STARTTLS in the

Hello. dovecot 2.2.26.0 When testing nopassword extra field (http://wiki2.dovecot.org/PasswordDatabase/ExtraFields) with CRAM-MD5 dovecot doesn't allow any password (while it should) and returns " Authentication failed" while in logs: Nov 17 08:22:34 auth-worker(1551): Info: sql(pepe,127.0.0.1,<Y8amDXpBptV/AAAB>): Requested CRAM-MD5 scheme, but we have a NULL password NUL...

...er proxy, to proxy a remote smtp server, the >> documentation says "It's possible to use Dovecot LMTP server as a >> proxy to remote LMTP or SMTP servers", but i do not find how to >> configure. Can anybody gel me to understand? > > https://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy > > However, the protocol field appears to be undocumented: > > https://github.com/dovecot/core/blob/master/src/lmtp/lmtp-proxy.c#L382 > This is also important: https://wiki2.dovecot.org/LMTP#LMTP_Proxying Regards, Stephan. -------------- next part --------------...

...working (call that the remote server). Now I want to have a few computers at the same place to access the same account on the remote server. I have another server (call this the local server) at the local site to do this with but am not sure how to do it. The proxy setup http://wiki.dovecot.org/PasswordDatabase/ExtraFields/Proxy looks about right but that does not seem to support tls? I need tls going from the local server to the remote server. I want all emails on the remote server to be the same as on the local server. This way all clients at the local site have very fast access to email and can stil...

Hello, I like to enable the allow_nets Feature (http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets) for my customers. To help them knowing there own IP I imagine a special mailbox/loginuser at the pop3 server. That user could give a valid pop3 answer from a dummy pop3 server or simply throw a login error with customised answer containing the IP information. Has anybod...

On Thursday 17 of November 2016, Aki Tuomi wrote: > On 17.11.2016 10:14, Arkadiusz Mi?kiewicz wrote: > > Hello. > > > > dovecot 2.2.26.0 > > > > When testing nopassword extra field > > (http://wiki2.dovecot.org/PasswordDatabase/ExtraFields) with CRAM-MD5 > > dovecot doesn't allow any password (while it should) and returns > > > > " Authentication failed" > > > > while in logs: > > > > Nov 17 08:22:34 auth-worker(1551): Info: > > sql(pepe,127.0.0.1,<Y8amDX...

Refer to https://dovecot.org/pipermail/dovecot/2015-March/099971.html https://wiki.dovecot.org/PasswordDatabase I tried to repeat the same thing. Set these passdb: passdb { args = /myscript.sh ip=%r driver = checkpassword result_failure = return-fail result_success = continue } passdb { args = /etc/dovecot/dovecot-sql.conf.ext ( my working auth method ) driver = sql } Created executable /myscri...

...n like now from anywhere > > >user1 at foo.org:{PLAIN}user1foo > > 2) from this file create another passwd-file with ExtraField via script / > cron jobs, that defines > > user1 at 10.0.0.100:{PLAIN}user1foo:::::user=user1 at foo.org > > see http://wiki2.dovecot.org/PasswordDatabase/ExtraFields > > Maybe allow_nets could limit the clients further. > > Then add another passdb section pointing to that file using > username_format=%n@%l > > http://wiki2.dovecot.org/AuthDatabase/PasswdFile > > That will map domain-less logins to full mail addresses,...

How exactly is LMTP proxying supposed to work? According to the example on http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy I'm only seeing "proxy" in the password_query statements. But LMTP never sends a password. IMAP Proxying is working OK: Sep 24 12:51:09 imap-login: Info: proxy(ralf.hildebrandt at charite.de): started proxying to dovecot.charite.de:993: user=<ralf.hildebrandt...