Displaying 20 results from an estimated 205 matches for "valid_chroot_dirs".
2006 Oct 23
1
valid_chroot_dirs question
...pure-ftpd to give local users ftp access to their $HOMEs.
To have pure-ftpd chroot into the user home i replaced /home/user
with /home/user/./ in /etc/passwd. Unfortunately this breaks Dovecot
this way:
Oct 23 18:18:20 localhost dovecot: Invalid chroot directory
'/home/foo' (user foo) (see valid_chroot_dirs in config file)
and dovecot.conf says
# ':' separated list of directories under which chrooting is allowed for
mail
# processes (ie. /var/mail will allow chrooting to /var/mail/foo/bar
too).
# This setting doesn't affect login_chroot or auth_chroot variables.
# WARNING: Never add dire...
2005 Jun 12
1
chroot directory question
...3 box. Through SquirrelMail I can access my email - no problem. However my other users are getting this error message:
ERROR : Connection dropped by imap-server.
Query: CAPABILITY
Looking in the maillog file for further error details gives me this:
dovecot: chroot directory no included in valid_chroot_dirs: /home/user
Looking through the dovecot.conf file I see where it says not to add in
home directories under valid_chroot_dirs if the users have access to
those directories. So I'm stuck now as to what I need to add to the conf
file and I'm a little confused as to why it works for my email a...
2004 Sep 22
1
Questions about mail process chroots
Greetings,
I am configuring a new Dovecot installation, and the way the
valid_chroot_dirs and mail_chroot variables affect the mail processes are a
bit unclear to me. I was wondering if anyone could provide me with more
specific details than the comments in the configuration file do, or maybe
even recommend some values given my configuration.
We have a Debian GNU/Linux system and a mi...
2005 Mar 05
2
dovecot-pgsql.conf can't find in chroot? (debian)
...uot;..., 128) = 128
[pid 18211] munmap(0x40018000, 4096) = 0
[pid 18211] exit_group(89) = ?
Process 18211 detached
Excerpts from /etc/dovecot/dovecot.conf:
auth_userdb = pgsql /usr/local/etc/dovecot-pgsql.conf
auth_passdb = pgsql /usr/local/etc/dovecot-pgsql.conf
login_chroot = yes
valid_chroot_dirs = /usr/local/etc:/etc:/var/mail:/lib
auth_chroot = /var/run/dovecot-auth
Any recommended next steps?
Thanks a million!
-Matthew
2007 Mar 01
2
dovecot-example.conf glitches
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello,
for a nice v1.0 release, there are some glitches in the example:
1) # allow shell access for users. See doc/configuration.txt for more
information.
#valid_chroot_dirs =
There is no "doc/configuration.txt" (anymore)
2) spots like:
#login_executable = /usr/libexec/dovecot/imap-login
The path is where the file belongs to in a "real" production environment,
however, the file should reflect the place "make install" uses, esp.
be...
2003 Aug 24
1
Chrooting the Mail processes
Hello!
Could somebody give some feedback on this configuration:
- OpenBSD box with local ssh users.
- /home directory mounted with nosuid,noexec.
- postfix dropping mail in /home/username/mail/INBOX, with the UID/GID
of the user.
- dovecot:
valid_chroot_dirs = /home
default_mail_env = mbox:/home/%u/mail/:INBOX=/home/%u/mail/INBOX
Are there any obvious ways for a local user to help dovecot escape the
chroot jail?
How can I check that dovecot is REALLY using /home as chroot jail for
the imap process?
Thanks!
Bert Koelewijn
2014 Jul 02
1
Shared folders not listed by IMAP
....
When I use the doveadm command I can see shared folders:
doveadm mailbox list -u 'test at mydomain.pl'
Drafts
Sent
Spam
Trash
Shared
Virtuals
Virtuals/all
Shared/test2 at mydomain.pl
Shared/test2 at mydomain.pl/Sent
INBOX
But I can't see them over IMAP protocol.
Some config opts:
valid_chroot_dirs = /var/mail
mail_chroot = /var/mail
namespace {
type = shared
separator = /
prefix = Shared/%%u/
location = maildir:/%%u/Maildir:INDEX=~/Maildir/Shared/%%u
subscriptions = yes
list = yes
}
plugin {
acl = vfile:cache_secs=5
}
plugin {
acl_shared_dict = file:/var/mail/%i.db
}
prot...
2005 Apr 26
1
Basic configuration problem "not a directory"
...to my dovecot log:
dovecot: Apr 26 09:56:52 Fatal: chdir(/bin/false) failed with uid 513:
Not a directory
dovecot: Apr 26 09:56:52 Error: child 27345 (imap) returned error 89
.. But I'm certain the relevant directories exist. Relevant
configuration details are as follows:
* [dovecot.conf]
valid_chroot_dirs = /var/spool/vmail
default_mail_env = maildir:/var/spool/vmail/$d/%n/
* [passwd sample]
einar at domain.com::513:513:/var/spool/vmail/domain.com/:/bin/false::
* [directory listing]
[root at server einar]# pwd
/var/spool/vmail/domain.com/einar
[root at server einar]# ls -l
totalt 12
drwx------ 2...
2006 Aug 02
2
Cyrus + ldap
...iguration
file /etc/dovecot.conf line 16: Unknown setting: passdb
My dovcot.conf file:
protocols = imap pop3
login_dir = /var/run/dovecot/login
login_chroot = yes
disable_plaintext_auth = no
login_user = dovecot
first_valid_uid = 101
last_valid_uid = 101
first_valid_gid = 101
last_valid_gid = 101
valid_chroot_dirs =/home/vmail/domains
default_mail_env = maildir:/home/vmail/domains/%d/%n
auth = default
auth_mechanisms = plain
auth_userdb = ldap /etc/dovecot-ldap.conf
auth_pass = ldap /etc/dovecot-ldap.conf
auth_executable = /usr/libexec/dovecot/dovecot-auth
auth_user = dovecot-auth
It is complaining about th...
2010 Jul 22
1
Upgrade 1.1 to 1.2 double check
...2.3.0.34.1 i686 CentOS release 5.2 (Final)
log_path: /var/log/dovecot/dovecot.log
info_log_path: /var/log/dovecot/dovecot-info.log
protocols: imap imaps
listen: *:143
ssl_listen: *:993
login_dir: /var/run/dovecot/login
login_executable: /usr/libexec/dovecot/imap-login
login_greeting_capability: yes
valid_chroot_dirs: /var/mail
first_valid_uid: 5000
last_valid_uid: 5000
first_valid_gid: 5000
last_valid_gid: 5000
mail_access_groups: mail
mail_location: maildir:~/Maildir
mail_debug: yes
maildir_copy_preserve_filename: yes
imap_client_workarounds: outlook-idle
auth default:
mechanisms: plain login CRAM-MD5
d...
2007 Jul 24
3
quota: maildrop + dovecot. dovecot doesn't update maildirsize file
...info stored in maildirsize file.
# 1.0.2: /etc/dovecot/dovecot.conf
base_dir: /var/run/dovecot/
listen: 127.0.0.1
ssl_listen: *
ssl_ca_file: ...
ssl_cert_file: ...
ssl_key_file: ...
ssl_cipher_list: ALL:!LOW:!SSLv2
login_dir: /var/run/dovecot/login
login_executable: /usr/libexec/dovecot/imap-login
valid_chroot_dirs: /home/vmail/domains
first_valid_uid: 1001
last_valid_uid: 1001
first_valid_gid: 1001
last_valid_gid: 1001
mail_location: maildir:/home/vmail/domains/%d/%n
auth default:
user: dovecot-auth
passdb:
driver: ldap
args: /etc/dovecot/dovecot-ldap.conf
userdb:
driver: ldap
args: /et...
2015 Jun 25
0
replication notification with chroot users
...-SHA256:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA;
ssl_dh_parameters_length = 2048
ssl_key = </etc/ssl/private/the.key
ssl_prefer_server_ciphers = yes
ssl_protocols = !SSLv2 !SSLv3
userdb {
args = /passwd
default_fields = uid=30000 gid=30000 home=/srv/vmail/%d/%n/./
driver = passwd-file
}
valid_chroot_dirs = /srv/vmail
verbose_ssl = yes
protocol imap {
mail_max_userip_connections = 20
}
config on destination imap.netsend.nl:
# 2.2.15: /etc/dovecot/dovecot.conf
# OS: OpenBSD 5.7 amd64
auth_debug = yes
auth_mechanisms = plain login
auth_verbose = yes
first_valid_gid = 30000
first_valid_uid = 3000...
2014 Jun 08
1
Authentication Failure (newbie)
...port = 995
}
user = dovecot
}
service pop3 {
executable = /usr/lib/dovecot/pop3
}
ssl = required
ssl_cert = </etc/ssl/certs/smtpd.crt
ssl_key = </etc/ssl/private/smtpd.key
userdb {
args = uid=vmail gid=vmail home=/home/vmail/%d/%n /etc/dovecot/users
driver = passwd-file
}
valid_chroot_dirs = /var/spool/vmail
protocol pop3 {
pop3_uidl_format = %08Xu%08Xv
}
I'm sure I've done something stupid, but after thrashing about for some
days I haven't been able to figure out what it is.
Regards,
Danny
2011 Apr 28
2
Problem Authenticating with Master User
...nal) ext3
protocols: imaps imap
listen: *
ssl_ca_file: /etc/ssl/ca/ca-bundle.crt
ssl_cert_file: /etc/ssl/crt/server.crt
ssl_key_file: /etc/ssl/key/server.key
login_dir: /var/run/dovecot/login
login_executable: /usr/libexec/dovecot/imap-login
login_processes_count: 64
login_max_processes_count: 2048
valid_chroot_dirs: /home/vmail/domains
max_mail_processes: 4096
first_valid_uid: 102
last_valid_uid: 102
first_valid_gid: 102
last_valid_gid: 102
mail_uid: vmail
mail_gid: vmail
mail_location: maildir:/home/vmail/domains/%d/%n
lda:
postmaster_address: postmaster at server.com
auth_socket_path: /var/run/dovecot-a...
2009 Jul 24
5
Several errors
...009-07-25 00:01:02]
-ERR [IN-USE] Couldn't sync mailbox.
Connection closed by foreign host.
This is my dovecot.conf
base_dir = /var/run/dovecot/
protocols = pop3 pop3s imap imaps
log_path = /var/log/dovecot
info_log_path = /var/log/dovecot
login_dir = /var/run/dovecot/login
login_chroot = yes
valid_chroot_dirs = /var/mail/vhosts
#login = imap
login_user = dovecot
login_process_size = 64
login_processes_count = 3
login_max_processes_count = 128
login_max_connections = 256
login_greeting = Havecom Mailserver ready.
mail_location = maildir:/var/mail/vhosts/%d/%n/
protocol imap {
login_executable = /usr/l...
2004 Dec 12
2
Problem with LDAP and Dovecot
...= /etc/ssl/mydomain.tld/Cert.pem
ssl_key_file = /etc/ssl/mydomain.tld/PrivateKey.pem
disable_plaintext_auth = yes
login = imap
login_user = dovecot
login = pop3
verbose_proctitle = yes
first_valid_uid = 5000
last_valid_uid = 5000
first_valid_gid = 5000
last_valid_gid = 5000
mail_extra_groups = mail
valid_chroot_dirs = /var/mail/virtualmail
default_mail_env = maildir:/var/mail/virtualmail/%n/Maildir
auth = default
auth_mechanisms = plain
auth_userdb = ldap /etc/dovecot-ldap.conf
auth_passdb = ldap /etc/dovecot-ldap.conf
auth_user = dovecot
auth_verbose = yes
auth_debug = no
In /etc/ldap/slapd.conf:
access to a...
2007 Mar 28
2
chroot and raw logging
...NAMI "test/dovecot.rawlog"
1116 rawlog RET lstat -1 errno 2 No such file or directory
1116 rawlog CALL sigprocmask(0x1,0xffffffff)
1116 rawlog RET sigprocmask 0
I also noticed something else (not rawlog related). If I do a silly
(blame my curiosity ;) thing like:
valid_chroot_dirs: /
and set chroot point as /./home/vmail/test.tld/test/ in passwd-file
Dovecot will try to stat home/vmail/test.tld/test/ (and fail w/o beginning /),
then chdir to /tmp, start pop3 or imap process, and recreate
home/vmail/test.tld/test under /tmp.
17027 dovecot CALL chdir(0x87a4b29c)
17027...
2015 Apr 14
2
Dovecot and recipient_delimiter
...p3-login {
chroot = login
user = dovecot
}
ssl = required
ssl_cert = </shared/config/dovecot/certs/dovecot.pem
ssl_cipher_list = ALL:!LOW:!SSLv2:!EXP:!aNULL:!EXPORT
ssl_key = </shared/config/dovecot/private/dovecot.pem
userdb {
args = /etc/dovecot/dovecot-ldap.conf
driver = ldap
}
valid_chroot_dirs = /var/spool/vmail
protocol lda {
mail_plugins = sieve
postmaster_address = postmaster
}
any hints on what i do wrong here?
thanks
juergen
2006 May 05
2
dovecot LDA w/virtual domains and postfix
...virtual_uid_maps = static:1015
virtual_gid_maps = static:12
home_mailbox = Maildir/
and in dovecot.conf:
protocols = imap imaps pop3 pop3s
ssl_disable = no
ssl_cert_file = /etc/ssl/certs/sauerkraut.heinous.org.crt
ssl_key_file = /etc/ssl/private/sauerkraut.heinous.org.key
mail_extra_groups = mail
valid_chroot_dirs = /var/vmail/domains
default_mail_env = maildir:/var/vmail/domains/%d/%n/mail
protocol lda {
postmaster_address = postmaster at frauerpower.com
}
protocol imap {
}
protocol pop3 {
}
auth default {
mechanisms = plain
passdb ldap {
args = /etc/dovecot/dovecot-ldap.conf
}
userdb ldap {...
2015 Jun 16
0
replication of a big mailbox
...-SHA256:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA;
ssl_dh_parameters_length = 2048
ssl_key = </etc/ssl/private/the.key
ssl_prefer_server_ciphers = yes
ssl_protocols = !SSLv2 !SSLv3
userdb {
args = /passwd
default_fields = uid=30000 gid=30000 home=/srv/vmail/%d/%n/./
driver = passwd-file
}
valid_chroot_dirs = /srv/vmail
verbose_ssl = yes
protocol imap {
mail_max_userip_connections = 20
}
config on destination imap.netsend.nl:
# 2.2.15: /etc/dovecot/dovecot.conf
# OS: OpenBSD 5.7 amd64
auth_debug = yes
auth_mechanisms = plain login
auth_verbose = yes
first_valid_gid = 30000
first_valid_uid = 3000...