similar to: permission/ownership of SSL cert, key & their directories

Displaying 20 results from an estimated 5000 matches similar to: "permission/ownership of SSL cert, key & their directories"

2008 Aug 27
3
Any sense of when V1.1.3 might appear?
It's been a month since 1.1.2....I'm about to do some V1.0 to V1.1 move work and I'd rather start on the curve instead of behind it.......... -- ==== Stewart Dean, Unix System Admin, Henderson Computer Resources Center of Bard College, Annandale-on-Hudson, New York 12504 sdean at bard.edu voice: 845-758-7475, fax: 845-758-7035
2007 May 14
1
Refreshing Dovecot
If I've made configuration changes, is there a way to refresh...without killing and restarting....Dovecot? -- ==== Stewart Dean, Unix System Admin, Henderson Computer Resources Center of Bard College, Annandale-on-Hudson, New York 12504 sdean at bard.edu voice: 845-758-7475, fax: 845-758-7035
2007 May 10
0
ownership/perms on DC file objects
Back in late March I asked what ownership and permissions Dovecot's own directories and files should have; I have an obsessive nature, and wanted to get things right :(.. On April Fool's Day :), Timo responded: > Dovecot opens pretty much all the configuration etc. files as root > before dropping the privileges. So in general they could all be 0600 > owned by root In my
2007 Jun 08
0
Dot Lock probelm resolution
For the record/archive, so some other unfortunate dovecot implementer won't spend weeks figuring out this particular way dotlocks can have problems... here is what was trashing our dotlocks Basically, I was seeing this: May 14 15:59:58 mercury mail:warn|warning dovecot: IMAP(sdean): Our dotlock file /var/spool/mail/sdean.lock was deleted (kept it 1 secs) > May 14 15:59:58 mercury
2007 Sep 06
7
alert function, V2
I guess the alert function is not part of the spec, because it appears to be unimplemented in Dovecot, even though most clients implement it. Timo, I would hope this would be easy to implement, and it's functionality that will be valuable to every installation. Here's why. America recently had the tragedy of a shooting rampage on a large university campus (yes, America should do
2006 Apr 18
3
Does NIS/yp work for authentication
If a host is running NIS (passwd file ends in +::0:0:::) authentication, will dovecot be able to authenticate with auth_userdb = passwd directly and automagically or do you have to do a ypcat passwd > pwfile periodically to generate a passwd file that dovecot can use? ? Thanks! -- ==== Stewart Dean, Unix System Admin, Henderson Computer Resources Center of Bard College,
2007 Apr 09
1
PAM question
I get the errmsg: auth|security:err|error dovecot-auth PAM: load_modules: can not open module /usr/lib/security/pam_prohibit That file is 444 root:security What is wrong here? Also, I'm using plain UINX authentication, but PAM keeps trying to run. How do I turn it off? I'll probably eventually want to use PAM; how do I get it to look in /etc/pam.conf instead /etc/pam.d...or will it
2007 Jul 30
2
apparent bug with filesystem quota and message lists
Don't know if anyone else uses Berkeley derived filesystem quota, but IBM's AIX does. A little over a week after migrating from UWIMAP to DC (with mbox format unchanged) everything is clean except for this one problem: When users go over quota, when they login the next time, the folder list is blank. You can imagine the panicked calls to the Helpdesk. If their quotas are raised or
2007 Jul 19
2
Performance question
I now have Dovecot in production and things are apparently trouble-free. The one known problem is that initial client inbox load can take 30 seconds - 2 minutes. For instance: 'I got fed up waiting and went and got coffee'...this with a 3MB mbox inbox...and my mail server is a substantial machine consuming 25% CPU just for this person's IMAP session. I realize that a certain
2007 Jun 14
1
How do I test new code?
I know how to run a second instance of the *base* code (to check different functionality/config) and documented it in http://wiki.dovecot.org/RunningDovecot What I realize I don't know how to do is to run an altogether different version or build of the code as that second instance, which would be good to have to check out upgrades before they go into production. While I could do a build
2005 Jan 05
1
Mozilla/Thunderbird secure authentication
I am finishing up getting SSL/IMAP working on our mail server and I notice the Use secure authentication box....very little I can find out about it, except that everyone says NOT to use it and maybe it's only for POP, not IMAP. Can you confirm?...googled you on this. Also, isn't authentication secure with SSL/IMAP anyway????? -- ==== Stewart Dean, Unix System Admin, Henderson Computer
2005 Aug 01
0
Not the server can do anything about it, but...
WIBNI if the clients' message composition windows displayed the size of the prospective outgoing message as a color-coded BIG number... <50K green <200K yellow <500K orange >1MB red ...or some such.. Idiot clueless users occasionally send inadvertantly huge messages...the problem is that there is currently no feedback loop (like this suggestion)....nobody would mail a 100
2006 Feb 21
1
documentation on modifying the configure script
On second thought (unless someone is fantastically charitable), I suppose I need to seriously concentrate on modifying the current configure script to work with the current AIX operating system and compiler. Can someone direct me to documentation on configure so I can begin my trek through the wilderness? -- ==== Stewart Dean, Unix System Admin, Henderson Computer Resources Center of Bard
2007 Mar 29
1
who owns dovecot files and dirs?
...and what permissions should they have. I am thinking of /var/run/dovecot and the index directory. What ownership, group and permissions should they be? Are there any other files/dirs created for dovecot alone (not the mail folders and INBOXes); if so, how should they be owned and permed? I had thought they were to be owned by dovecot, but it turns out that they should not -- ====
2007 Apr 09
1
What are the Key DC executables
Back a year ago, I asked what the key DC executables where that I had to bring from my compile host to the production imap server to install or upgrade DC. I was told: dovecot, dovecot.conf, dovecot-auth, imap & imap-login I recently got DC up and running unencrypted and that worked fine. Then I tried to enable SSL and the logs said I was missing
2007 Apr 17
0
PAM on AIX - resolved
I previously asked about this problem with pam on IBM's AIX Unix > I get the errmsg: > auth|security:err|error dovecot-auth PAM: load_modules: can not open > module /usr/lib/security/pam_prohibit FWIW, it turned out that the default PAM libraries are 32 bit, while I had compiled DC at 64bit. The /etc/pam.conf lines come standard like this: telnet auth required
2007 May 15
1
Why is direct invocation of dovecot preferred over inet inclusion?
I'm used to putting things in inetd and, 1) should dovecot crash, I'd think it would get restarted if it was invoked from inet's imap-login 2) it would get started well after the boot ...wouldn't that be preferable. Enlighten me, please -- ==== Stewart Dean, Unix System Admin, Henderson Computer Resources Center of Bard College, Annandale-on-Hudson, New York 12504 sdean at
2007 Jun 05
1
multiple dovecot invocations
I need to have multiple invocations of dovecot running, one for productions and then one or more for test/dev, doing things like trying different authentication methods, getting quota working, etc. I knew how to do this with inetd, but I have been convinced that direct invocation is preferable, so I need to know how to do multiple invocations of dovecot. I had thought that perhaps I could
2007 Jun 20
1
how do I download concurrency.c
When I click on the link I get not found on the server. I run on a 4 way and AIX has some pretty fancy concurrency so it would be interesting. But then I'm leaving this afternoon and won't be back until Monday..... -- ==== Stewart Dean, Unix System Admin, Henderson Computer Resources Center of Bard College, Annandale-on-Hudson, New York 12504 sdean at bard.edu voice:
2007 Jul 03
2
listen parm questions
Q1: My imap server has 4 interfaces, but only one is used for imap traffic. Can I do this: listen = 10.20.30.40:10143 (when imap.mycollege.edu is 10.20.30.40) Or is there even any benefit to doing this? Q2: Can I specify more than one port....during test eval, I've had the IT dept using port 1043 for listen....which I will, of course, change to 143 when DC goes production. So my