similar to: IMAP/Plain Text issue with Dovecot

Hi: It appears that at least at one time, Dovecot supported plaintext authentication from localhost, even if disable_plaintext_auth = yes. To wit, the example configuration file reads: # Disable LOGIN command and all other plaintext authentications unless # SSL/TLS is used (LOGINDISABLED capability). Note that 127.*.*.* and # IPv6 ::1 addresses are considered secure, this setting has no effect

I'm trying to setup IMAP, so that it works via secure connections. I have it working fine over SSL, now I wish to get TLS to work. I have set imap and imaps to both listen on *, and have disable_plaintext_auth = yes, which according to the docs, Disable LOGIN command and all other plaintext authentications unless SSL/TLS is used (LOGINDISABLED capability). So the problem is now, that TLS

Firstly, if you're out of quota for example, and using postfix, will it need to send a bounce email, or will it do the out of quota error at SMTP time? (preferred) Also, I want a global sieve script to run first, REGARDLESS if the user has their own script. # If there is no user-specific Sieve-script, global Sieve script is # executed if set. #global_script_path = This suggests to me,

I'm unable to get dovecot-lda with sieve filtering to deliver into maildir folders. The examples on the wiki explicitly say "mbox", so I'm wondering, does the dovecot-lda sieve implementation not support filtering into maildir folders? -frank

Hi Following my last posts, i succeed to connect pop3 in localhost but not in mydomain.org (with dovecot 0.99 it worked) I have this error : -ERR Plaintext authentication disabled. Thanks

Hi, I use dovecot (pop) with gentoo but it's not securize. I would like to use pops but i don't how to do this. I think i have to use certificates... This my dovecot.conf : protocols = imap imaps pop3 pop3s imap_listen = * pop3_listen = * imaps_listen = * pop3s_listen = * ssl_disable = no login = imap login = pop3 default_mail_env = maildir:%h/.maildir mbox_locks = fcntl dotlock auth =

Okay .. have dovecot set up with following settings : userdb static { args = uid=97 gid=97 home=/export/dovecot/mail/%d/%u mail=mbox:/export/dovecot/mbox/%d/%u/ } passdb passwd-file { # Path for passwd-file args = /etc/dovecot-passdb } Passdb works I think in the sense that I can log into dovecot using a regular mail client. The real issue is when I try to deliver

Hi everyone, This is my second try with dovecot, and still no luck. What I want is twig to work with dovecot on the localhost address . I need to authenticate through pam for real accounts and through pgsql for virtual ones. I just cant autenticate: logs are : imap-:login: Authenticate PLAIN failed: Unsupported authentication mechanism or: Aborted login: method = PLAIN Could someone please

On 22.08.2017 03:56, Peter wrote: >>> Lest anyone think STARTTLS MITM doesn't happen, >>> >>> https://threatpost.com/eff-calls-out-isps-modifying-starttls-encryption-commands/109325/3/ > Right, the attack does happen, but it can be prevented by properly > configuring the server and client. Dovecot, by default, requires STARTTLS before accepting plaintext

Hello, as soon as I set "disable_plaintext_auth = yes", AUTH=GSSAPI vanishes from capabilities. ([CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=GSSAPI AUTH=PLAIN AUTH=LOGIN] vs [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS LOGINDISABLED]) Why? I'm wondering especially because at

I dont know where I went wrong, I have got the Dovecot finally looking for an auth, but it doesnt accept my passwords. Let me know what you need to see and I will post it... THanks! -- Adam Barrett dragen at gmail.com

I have a mail server running on Centos 7.2 which has been working for my LAN for a long time. I'm at the point where I have to make it accessible to the internet. At the moment, access can be insecure but as it's on my LAN it isn't an issue. However, for internet access I wish to force SSL/TLS. Having read the documents I think it's as simple as changing 10-ssl.conf from

I'm trying to enable the IMAP COMPRESS plugin listed here: http://wiki2.dovecot.org/Plugins/Compress I have added zlib globally and imap_zlib to the imap protocol. This is the output from doveconf -n with regards to mail_plugins: --cut-- mail_plugins = zlib protocol imap { mail_plugins = zlib imap_zlib } --cut But it seem like the feature is not announced when connecting to the IMAP

Hello List, I want to allow plain text passwords only on ssl/tls. Is it possible to have: auth default { mechanisms = cram-md5 ntlm ...... } and then over-ride this when connection is ssl/tls to allow plain and login? I have tried adding "mechanisms = plain login cram-md5 ntlm" to "protocol imaps{}" as an example but I get an error that the protocol does not

On 12/06/2014 02:35 AM, Nick Edwards wrote: > On 12/5/14, ML mail <mlnospam at yahoo.com> wrote: >> Hello, >> >> I am wondering which variant is more secure for user authentication and >> password scheme. Basically I am looking at both variants: >> >> 1) MD5-CRYPT password scheme storage with CRAM-MD5 auth mechanism >> 2) SHA512-CRYPT password

Hello I need to authenticate dovecot against openldap. OpenLdap's authentication method requires SHA. How must I set dovecot ? #### /etc/dovecot/dovecot-ldap.conf hosts = ldap-server dn = cn=administrator,o=admin,o=ldap-server dnpass = xxxxx # # # parametros de prueba default_pass_scheme = SHA # # # fin parametros de prueba auth_bind = yes auth_bind_userdn =

I'm using Dovecot (1.0.10) locally to test SugarCRM. When I tried to set up a mail account in Sugar, it complains with -- SECURITY PROBLEM: insecure server advertised AUTH=PLAIN Please check your settings and try again. -- don't know if that behaviour is a bug or a feature of php-imap. The case is that I'm unable to set up the mail account in Sugar. Timo answered to me on IRC about

I recently tried to look at the Dovecot mailing lists through an already-configured IMAP profile, which had worked fine in the past. But it failed saying that the authentication method was not supported. http://www.dovecot.org/mailinglists.html says: "You can get access to the IMAP archives by using *dovecot.org* as the hostname, *anonymous* as the username and an empty password.

I can''t get my view to display the most recent parameters from an associated object in a view... here is a birds-eye of my app: I have two models, Ferms and Kinetics. Ferm has_many :kinetics, Kinetic belongs_to :ferm. Kinetic has the fields ferm_id, brix and temp. In my ferms/index view I have a table listing the attributes of each ferm instance. I would like to display the most recent

Hi, we have following situation: I migrated our company mailserver from POP3 only to dovecot with IMAP and POP. We need to have unencrypted POP3 from our internal network, and the subnet our mailserver is in. Additionally, we now want to allow encrypted IMAP from the internet (for some defined accounts), preferably with TLS (which means I open Port 143 in our firewall). Now, how can I