Displaying 20 results from an estimated 11000 matches similar to: "Dovecot proxy"
2007 Nov 23
3
dovecot with ldap and allow_nets
Hi,
I'm using dovecot on debian etch:
||/ Name Version
ii dovecot-common 1.0.rc15-2etch1
ii dovecot-imapd 1.0.rc15-2etch1
ii dovecot-pop3d 1.0.rc15-2etch1
# dovecot --version
1.0.rc15
Now here is my question.
Some of the mail users may only login from the LAN, while others can
login from the LAN and the internet.
I've read about
2019 Apr 30
8
Feature request: exclude IP/network in allow_nets extra field
Dear all,
We use `allow_nets`[1] to restrict login clients, it works fine.
Recently we need to allow some users to login from everywhere except some IP/networks, how can we accomplish this with "allow_nets"?
Tried allow_nets="!a.b.c.d", but Dovecot reports error "allow_nets: Invalid network '!a.b.c.d'".
Can we have this feature?
i guess it should be done
2014 Oct 22
2
special "what's my ip" pop account
Hello,
I like to enable the allow_nets Feature
(http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets)
for my customers. To help them knowing there own IP I imagine a
special mailbox/loginuser at the pop3 server.
That user could give a valid pop3 answer from a dummy pop3 server or
simply throw a login error with customised answer containing the IP
information.
Has anybody done
2018 Aug 23
1
allow_nets based on RBL
This was brought up in 2014, and left without conclusion, so I thought
it would be time to bump it :)
I would love a way to do allow_nets based on an RBL check, could this be
added to the feature-list?
https://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
Thanks
--
Tom
2015 Sep 21
4
Dovecot proxy ignores trusted root certificate store
On Mon, 21 Sep 2015, Edgar Pettijohn wrote:
> doveconf -n?
doveconf -n|grep ssl should suffice:
ssl = required
ssl_ca = </usr/local/share/certs/ca-root-nss.crt
ssl_cert = </path/to/my/file.pem
ssl_key = </path/to/my/file.pem
ssl_require_crl = no
I'm using "ssl_ca = </usr/local/share/certs/ca-root-nss.crt" as a
temporary workaround, even though this is not what
2015 Mar 02
2
IP drop list
On 03/01/2015 06:34 PM, Benny Pedersen wrote:
>> The other side of this equation, Postfix, has had this capability
>> for years. Why it hasn't been added to dovecot is a mystery. It's
>> the only thing (really, the ONLY thing!) that I dislike about dovecot.
>
> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
>
> then setup fail2ban to
2017 May 31
2
Bug with 2.2.29-1~auto+25 back to haunt me
After upgrading from 2.2.28-1~auto+45 to 2.2.29-1~auto+25 I'm gettings
this:
May 31 16:44:31 mproxy dovecot: auth: Fatal: passdb imap: Cannot verify certificate without ssl_ca_dir or ssl_ca_file setting
May 31 16:44:31 mproxy dovecot: master: Error: service(auth): command startup failed, throttling for 8 secs
May 31 16:44:31 mproxy dovecot: imap-login: Disconnected: Auth process broken
2008 Apr 07
3
feature request: deny IP address via database
Hey folks. One feature I'd really like to see in dovecot is the
ability to point it at a database (with a configurable query) and
have it allow or deny a connection based on looking up the source IP
address in that database.
I run Postfix, and I've got it configured to use a database server
for its smtpd_client_restrictions checks. Ideally I'd like to point
dovecot at
2015 Oct 11
2
dovecot as proxy and verification of the backends certificate
Hello,
I'm using a dovecot as proxy, connecting to one or more backends.
The backends use X.509 certificates.
The proxy's passdb returns
extra fields:
user=foo
proxy
host=backend1.<domain>
ssl=yes
nopassword=y
Thus the proxy connects to the backend but can't verify the backends
certificate.
The following comment suggests using ssl_client_ca_file for
2007 Apr 29
2
Method to globally limit network access
G'day All,
I am new to dovecot. I've run across the "allow_net" to restrict access
on what seems like a per user basis. Is the a way to global limit access
to one or more networks?
Marcus O.
2018 Sep 12
3
Server certificate verification error with Dovecot 2.3.2.1
I'm attempting to upgrade my Dovecot installation to 2.3.2.1. My SSL
certificate authority provides a bundle containing their CA, plus
intermediate CAs, which I configure using the 'ssl_ca' option. The
comments in the configuration file say to only set this when you're
requiring client certificates, which I'm not, but fetchmail complains
with a "Server certificate
2015 Dec 22
2
allow_nets=local in passdb gets "auth: Panic"
Hi,
I have the following configuration in my dovecot.conf for Dovecot 2.2.21:
passdb {
driver = ldap
args = /etc/dovecot/dovecot-ldap.conf.ext
default_fields = allow_nets=local,127.0.0.1,10.255.1.0/24
}
This triggers "auth: Panic" on POP3/IMAP logins as the below:
Dec 22 14:57:39 localhost dovecot: auth: ldap(u0000,::1,<oiF8SHYngqsAAAAAAAAAAAAAAAAAAAAB>): allow_nets:
2014 Jan 25
1
allow_nets + default + ldap
Hello,
I'm playing with allow_nets function. It is really cool!
In a filebased passwd backend you simply add "allow_nets=192.0.2.143/32"
as mentioned in http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
But if I use an LDAP backend it looks different.
Following http://wiki2.dovecot.org/AuthDatabase/LDAP/AuthBinds and
2015 Jan 05
2
'ssl_cipher_list' setting
Hi, I am Yoshi, Japanese.
I used
FreeBSD 10.1
Dovecot 2.2.15
I want pop3s, so I made
/usr/local/etc/dovecot/local.conf
ssl = yes
ssl_cert = </usr/local/etc/dovecot/server.pem
ssl_key = </usr/local/etc/dovecot/server.key
ssl_ca = </usr/local/etc/dovecot/ca.pem
ssl_protocols = !SSLv2 !SSLv3
ssl_cipher_list = ALL:!LOW:!SSLv2:!SSLV3:!EXP:!aNULL:!RC4
It's work fine.
But, change
2019 Nov 06
2
Dovecot mangesieve proxy - internal failure
Hello list,
i'm running an internal dovecot instance with working managesieve. But
on my external dovecot-proxy instance i got an internal error. Nothing
logs on internal dovecot.
Nov 06 14:55:12 managesieve-login: Error: proxy: Remote sent invalid
response: * OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE
IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=GSSAPI] Dovecot (Ubuntu)
2014 May 05
3
Disable IMAP for ONE user only
I use MySQL to store my virtual users passwords and I am running the
latest version of Dovecot.
What I need to do is have one particular user have ONLY access to their
email via Roundcube (webmail) and no IMAP/SMTP access.
Therefore, how do I disable IMAP/SMTP access for just one user?
2018 Mar 21
2
why is dovecot "Allowing any password"
Hi,
I noticed the following in the logs of our debian wheezy server:
> Mar 21 07:13:47 mail dovecot: auth: Debug: ldap(username,1.2.3.4,<g2/rF+ZnjAAu5ceg>): bind search: base=CN=Users, DC=samba, DC=company, DC=com filter=(&(objectclass=person)(sAMA
> ccountName=username)(!(userAccountControl=514)))
> Mar 21 07:13:47 mail dovecot: auth: Debug:
2010 Aug 31
4
No audio on call forward after upgrade from Asterisk 1.4 to 1.6
Hi everyone,
This is my first post to the list, although I am a long term user of Asterisk. I have recently found a problem that I just can't seem to solve.
I have a client that has an Ubuntu x64 based Asterisk server with and ISDN Dahdi interface and about 25 SIP handsets. Everything was working fine in Asterisk 1.4 and now after migrating the config to Asterisk 1.6.2.5 I have one single
2010 Dec 15
2
ssl enabled, but ssl_cert not set ( 2.0.7 freebsd 8.1 )
hello
trying to install dovecot 2 on a fresh installed machine
I get this error message :
doveconf -n > dovecot-new.conf
doveconf: Error: ssl enabled, but ssl_cert not set
doveconf: Fatal: Error in configuration file
/usr/local/etc/dovecot/dovecot.conf: ssl enabled, but ssl_cert not set
the ssl config file look like the following :
Thanks for any info.
##
## SSL settings
##
# SSL/TLS
2010 Mar 25
1
ADS member server to 2008 R2
Hi all,
I have a strange problem, and I can't seem to solve it.
I have set up a Ubuntu 9.10 server with samba+kerberos to be an ADS member server. The PDC was a 2003 SBS server, and all was well.
Recently I added a 2008 R2 server standard to the mix, and promoted it as a domain controller. Ever since I did this, the samba server stops working daily.
I have updated to 3.4.7 out of the