Displaying 20 results from an estimated 5000 matches similar to: "Webmail accessive Dovecot logins"
2015 Oct 30
2
Webmail accessive Dovecot logins
Hello,
I've seen this issue before, running a imap/smtp/database server on
localhost and adding in a webmail interface, in this case Roundcube.
In my maillog I'm seeing accessive Dovecot connections and logouts
just from my own transaction of logging in, going to compose a
message, sending, and logging out.
I'm using Mysql as database backend and was wondering if there was
something
2016 Oct 05
2
Ast 13.10 to 13.11 stop working webrtc
>From this change (res_rtp_asterisk): ast 13.10 to 13.11 webrtc JSSIP stop
working, failing with
chan_sip.c:4083 retrans_pkt: Hanging up call
7238b48c11581d4166b899bf747a05f7 at 130.211.62.184:0 - no reply to our
critical packet (see
https://wiki.asterisk.org/wiki/display/AST/SIP+Retransmissions).
is there any way to configure to have the previous behaviour?
Im trying to set
2019 Apr 17
0
Problem with mysql backend and SSL ciphers
I'm not Aki but hope you don't mind...
On Wed, Apr 17, 2019, at 10:42 PM, TG Servers via dovecot wrote:
> Hi,
>
> MariaDB documentation says it accepts OpenSSL cipher strings in its ssl_cipher parameters like ssl_cipher="TLSv1.2".
> This is also mentioned when creating or changing users in terms of setting this with the REQUIRE CIPHER parameter like CREATE USER
2019 Apr 17
2
Problem with mysql backend and SSL ciphers
2016 Nov 21
0
samba tls protocols and ciphers change how?
Hai,
Im upping my servers with security setting.
Now i noticed that even some sites/tools say its ok, but its really not ok.
So Im looking for the ciphers list for samba or how can i display them.
and i want to set the cipher list and order like the example below.
Is this possible with samba?
Anyone who can point me to the right direction?
I did google .. and i getting only
2019 Apr 18
1
Problem with mysql backend and SSL ciphers
On 17.4.2019 23.00, Kostya Vasilyev via dovecot wrote:
> I'm not Aki but hope you don't mind...
>
> On Wed, Apr 17, 2019, at 10:42 PM, TG Servers via dovecot wrote:
>> Hi,
>>
>> MariaDB documentation says it accepts OpenSSL cipher strings in its
>> ssl_cipher parameters like ssl_cipher="TLSv1.2".
>> This is also mentioned when creating or
2019 Jul 20
0
Dovecot with MySQL over SSL.
On 18/07/2019 23:24, Reio Remma via dovecot wrote:
> Hello!
>
> I'm attempting to get Dovecot working with MySQL user database on
> another machine. I can connect to the MySQL (5.7.26) instance with SSL
> enabled:
>
> ?mysql -h db.mrst.ee --ssl-ca=/etc/dovecot/ca.pem
> --ssl-cert=/etc/dovecot/client-cert.pem
> --ssl-key=/etc/dovecot/client-key.pem
2013 Sep 10
2
dovecot and PFS
Hi
Is there known advices on how to favor PFS with dovecot?
In Apache, I use the following directives, with cause all modern
browsers to adopt 256 bit PFS ciphers, while keeping backward
compatibility with older browsers and avoiding BEAST attack:
SSLProtocol all -SSLv2
SSLHonorCipherOrder On
SSLCipherSuite ECDHE at STRENGTH:ECDH at STRENGTH:DH at STRENGTH:HIGH:-SSLv3-SHA1:-TLSv10
2013 Aug 14
3
force ciphers order for clients
Hi Timo,
reading this
http://www.kuketz-blog.de/perfect-forward-secrecy-mit-apple-mail/
it looks like DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA can be forced in use
with apple mail
( if no ECDHE is possible ,by missing openssl 1.x etc,
seems that apple mail tries ECDHE first if fails its going to use
RSA-AES128-SHA )
force soltution as tried
ssl_cipher_list =
2019 Jul 18
4
Dovecot with MySQL over SSL.
Hello!
I'm attempting to get Dovecot working with MySQL user database on
another machine. I can connect to the MySQL (5.7.26) instance with SSL
enabled:
?mysql -h db.mrst.ee --ssl-ca=/etc/dovecot/ca.pem
--ssl-cert=/etc/dovecot/client-cert.pem
--ssl-key=/etc/dovecot/client-key.pem --ssl-cipher=DHE-RSA-AES256-SHA -u
vmail -p
However if I use the same values in dovecot-sql.conf.ext, I
2013 Aug 23
0
SSL Cipher Order in Dovecot
Hi,
I want that dovecot uses PFS with my Apple Devices. I set the Cipher List to:
ssl_cipher_list = DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!CBC:!PSK:!SRP:!DSS:!SSLv2:!RC4
I got this from here: http://www.kuketz-blog.de/perfect-forward-secrecy-mit-apple-mail/
But then my only Outlook 2010 Client won't connect. If i enable rsa-aes128-SHA again on third place
2017 Apr 27
0
confused with ssl settings and some error - need help
> On April 27, 2017 at 10:55 AM Poliman - Serwis <serwis at poliman.pl> wrote:
>
>
> Thank You for answers. But:
> 1. How should be properly configured ssl_cipher_list?
ssl_cipher_list = ALL:!kRSA:!SRP:!kDHd:!DSS:!aNULL:!eNULL:!EXPORT:!DES:!3DES:!MD5:!PSK:!RC4:!ADH:!LOW at STRENGTH
To disable non-EC DH, use:
ssl_cipher_list =
2018 Dec 19
1
How to configure Dovecot to disable NIST's curves and still rertain EECDH?
I am interested in configuring Dovecot's TLS so as to retain forward
secrecy, but eliminate all of NIST's elliptic curves.
Besides being subject to side channel attacks [1], in some quarters
there is a general distrust of NIST's curves and any of their other
cryptographic primitives after the Dual EC DRBG debacle.
>From what I can tell, the following will prevent the use of
2017 Apr 27
0
confused with ssl settings and some error - need help
> On April 27, 2017 at 8:12 AM Poliman - Serwis <serwis at poliman.pl> wrote:
>
>
> Hi,
> To default dovecot.conf file I added (based on found documentation):
> ssl = required
> disable_plaintext_auth = yes #change default 'no' to 'yes'
> ssl_prefer_server_ciphers = yes
> ssl_options = no_compression
> ssl_dh_parameters_length = 2048
>
2017 Apr 14
0
several misc questions, public folders and sharing, quota, ssl
Can you try turning mail_debug=yes and posting logs?
Also if possible, can you try telnetting to the server and issuing
a LOGIN username password
a SELECT public/TestFolder1
with debug turned on?
ACL plugin is needed *iff* you want to *restrict* access.
Aki
> On April 14, 2017 at 11:53 PM David Mehler <dave.mehler at gmail.com> wrote:
>
>
> Hi Aki,
>
> Thanks for
2017 Apr 14
0
several misc questions, public folders and sharing, quota, ssl
Please keep responses on the list. Thank you. =)
Without ACL plugin there is no way to restrict access, it's free for all.
my site is a very tiny few user site, but ...
auth_mechanisms = login plain
mail_attribute_dict = file:%h/Mail/dovecot-attributes
mail_location = sdbox:~/Mail
mail_plugins = stats quota fts fts_lucene
namespace inbox {
inbox = yes
list = yes
location =
mailbox
2017 Apr 27
0
confused with ssl settings and some error - need help
I turned of ssl_cipher_list in dovecot.conf file (so it's default) but test
still gives errors:
Apr 27 08:55:06 serwer-1 dovecot: pop3-login: Error: SSL: Stacked error:
error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol
Apr 27 08:55:06 serwer-1 dovecot: pop3-login: Error: SSL: Stacked error:
error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol
Apr 27 08:55:07
2014 Dec 02
0
disabling certain ciphers
Am 02.12.2014 um 17:33 schrieb Darren Pilgrim:
> On 12/2/2014 1:32 AM, Reindl Harald wrote:
>>>> ssl_cipher_list = HIGH:!RC4:!MD5:!SRP:!PSK:!aNULL:@STRENGTH
>>>> ssl_dh_parameters_length = 2048
>>>> ssl_parameters_regenerate = 0
>>>> ssl_protocols = !SSLv2 !SSLv3 TLSv1 TLSv1.1 TLSv1.2
>>>
>>> But why does ssl_protocols behave
2017 May 05
0
confused with ssl settings and some error - need help
Internal PCI Scan on Tenable.io website. Of course after register account.
2017-04-30 9:11 GMT+02:00 Aki Tuomi <aki.tuomi at dovecot.fi>:
> What kind of test are you running?
>
> Aki
>
> > On April 27, 2017 at 12:00 PM Poliman - Serwis <serwis at poliman.pl>
> wrote:
> >
> >
> > I turned of ssl_cipher_list in dovecot.conf file (so it's
2020 Jun 28
2
SSL-Question
my ERROR.log show:
[2020-06-28 07:54:24] INFO main/main.c Icecast 2.4.4 server started
[2020-06-28 07:54:24] DBUG yp/yp.c Updating YP configuration
[2020-06-28 07:54:24] INFO yp/yp.c YP update thread started
[2020-06-28 07:54:24] INFO connection/connection.c SSL certificate found
at icecast.pem
[2020-06-28 07:54:24] INFO connection/connection.c SSL using ciphers