similar to: Postfix & Dovecot: Client certificate authentication

> On 27 Jan 2016, at 21:55, Axel Luttgens <axel.luttgens at skynet.be> wrote: > > Hello Haravikk, > > Perhaps could you try to devise an exception based on one (or more) "remote" section(s), as in: > > remote ip.of.webmail.server { > ssl_verify_client_cert = no > [other settings, if needed] > } > > But I guess you would need to combine

Is there any way to make Dovecot 2.2.22 not require a client SSL certificate for a local IMAP connection, but require it for any remote IMAP connection? My server is configured to require client certificates: ssl = required ... auth_ssl_require_client_cert = yes I tried adding the following to create an exception for localhost: remote 127.0.0.1 { ? ssl = no ? auth_ssl_require_client_cert =

Folks, I'm trying to configure my dovecot installation to require client certificates for external/Internet connections, while still allowing my local network to not need certificates. This configuration is for Dovecot 2 (2.0.8 in Fedora 14), and I've tried to use the "remote" block to give different definitions for my local network vs the defaults. While most options seem to

Good time of the day! My English is not very good, excuse me if I said something wrong. I use dovecot-2.1.16 on Gentoo Linux amd64. I need to setup dovecot (imap and pop3) for SSL and non-SSL connection simultaneously. For SSL connections client must submit a valid SSL certificate. Now SSL part of dovecot.conf looks like this: ----------------- ssl = yes ssl_cert =

Dear subscribers, we're sharing our latest advisory with you and would like to thank everyone who contributed in finding and solving those vulnerabilities. Feel free to join our bug bounty programs (open-xchange, dovecot, powerdns) at HackerOne. Please find patches for v2.2.36 and v2.3.4 attached, or download new version from https://dovecot.org Yours sincerely, Aki Tuomi Open-Xchange Oy

I?m using dovecot to provide encrypted IMAP e-mail support for remote clients and it?s working great. However, I also need to set up a webmail front-end (Roundcube), which I?m hoping to have use unencrypted IMAP on port 143 (as only port 993 is available externally). The problem I?m running into is that I want to require client certificate authentication on port 993, but dovecot is apparently

How do I configure dovecot-2.0.x to present a client SSL certificate when proxying? If dovecot on server1.example.com has: passdb { driver = static args = proxy=y host=server2.example.com nopassword=y ssl=yes } and dovecot on server2.example.com has: ssl_verify_client_cert = yes auth_ssl_require_client_cert = yes then when a client connects to server1 and authenticates, a connection is

>From the config : auth_ssl_require_client_cert = no GMail empty vcard ... I have no ideas . so sorry. Coding snippets. What can I provide for you that will help? NOTE: it is pretty much the default config from Debian. Thank you, On Sun, May 24, 2020 at 9:29 PM Benny Pedersen <me at junc.eu> wrote: > > On 2020-05-25 02:54, hanasaki at gmail.com wrote: > > Config has >

On 02 Feb 2016, at 13:09, Haravikk <dovecot at haravikk.me> wrote: > > So I still haven?t found a way to require client certificates only for port 993/IMAPS while leaving unencrypted IMAP open for local, trusted, services. > > Is there really no way to do this? I just found out how to do the same thing for postfix (turns out it?s fairly easy, just a matter of adding the

Hello, When I modify a user account adding him to a customized group, there is a delay which can be up to 2 hours to take effect. - the user account is already created with smbldap-useradd. - the user account is modified later (with smbldap-usermod), adding him to a group which has the right "allow log on through terminal services properties" on the local security policy The samba server

Hello, Following to this old post (Tue Jul 6 02:22:22 MDT 2010), here is the solution I found : - stop nscd : /etc/init.d/nscd stop - restart samb : /etc/init.d/samba restart - start nscd : /etc/init.d/nscd start ...in this order ! Roland. > Hello, > When I modify a user account adding him to a customized group, there > is a delay which can be up to 2 hours to take effect. > - the

hello everyone, original app: rails 3.1.1 ruby 1.9.2p180 (2011-02-18 revision 30909) [i686-linux] I try to host my app into speedyrails using capistrano. I host my sample application and running. I just get only one error like my assets were not precompiled. then i solve that by adding "load ''deploy/assets''" this code in my deploy receipt. and my

On 17 December 2015 at 11:12, Sylvain CANOINE <sylvain.canoine at tv5monde.org> wrote: > Hello all, > > I updated two of my servers to CentOS 7.2 (1511) two days ago, and since, > on one of them, the network services are started (and fail to start) before > the network interfaces are online. > > Parts of "journalctl" after the last reboot : > > d?c. 17

Hello all, I updated two of my servers to CentOS 7.2 (1511) two days ago, and since, on one of them, the network services are started (and fail to start) before the network interfaces are online. Parts of "journalctl" after the last reboot : d?c. 17 10:21:44 myserver kernel: NET: Registered protocol family 40 d?c. 17 10:21:45 myserver sshd[700]: error: Bind to port 22 on

Hello, I am new to Samba and to this mailing list so please excuse my ignorance. I have a situation where when a user syncs his Desktop PALM V PDA to his Windows 2000 PRo PC - user account being a Samba mapped drive, the Server crashes...any clues??? endpoint is not connected Jan 4 16:42:06 myserver smbd[10914]: [2005/01/04 16:42:06, 0] lib/util_sock.c: get_peer_addr(1000) Jan 4 16:42:06

Hello experts After a total panic last weekend, now my LDAP+Samba is working fine, apparently. However, in my syslog, each one minute, still occurring errors like this: Apr 25 08:47:21 myserver smbd[10245]: [ID 702911 daemon.error] [2005/04/25 08:47:21, 0] lib/util_sock.c:set_socket_options(202) Apr 25 08:47:21 myserver smbd[10245]: [ID 702911 daemon.error] Failed to set socket option

I'm trying to use the mod_auth_winbind module from lorikeet SVN to control access to an Apache 2.2.3 server. Samba is 3.0.23b supplied with Mandriva 2007 and is configured is a member of a w2k3 AD domain. The Apache users are using IE on W2k or XP domain member clients. Samba and winbind are working as expected, and if I just use the mod_auth_winbind module to authenticate the users

Hello Aki and all, The below lines are in the dovecot config file. This seems to be the same as Aki's suggestion. correct? I have also double checked file perms, tried with several new key gens, several versions of thunderbird and created completely new thunderbird profiles. Thank you, ssl_cert = </etc/letsencrypt/live/...../fullchain.pem ssl_key =

Hello everyone, I am getting an error message on FreeBSD 4 after I install dovecot. To start off, I create two regular users, testuser and testuser1. I send each user emails then I install dovecot. After installing dovecot I set up the users in Maildir format then proceed to send them emails and here is what shows up in the maillogs: Email to testuser3 - Mar 29 22:34:52 myserver

This issue is peripherally related to the following thread Re: [Dovecot] client certs with godaddy ssl cert This is running on CentOS 5.2 with latest Atrpms for Dovecot as of this weekend. # rpm -qa | grep dovecot dovecot-sieve-1.1.5-8.el5 dovecot-1.1.4-0_81.el5 With assistance from Rainer Frey (Inxmail GmbH), I am able to successfully use client ssl certs for imap access on both my Nokia