similar to: Execute a script from dovecot when authentication fails

Hi, I'm getting confused about the role that kerberos authentication plays. What exactly is the point of using kerberos to join a samba server to an AD domain? If using kerberos still requires you to rely on winbindd for all the nsswitch stuff then what is the point? I can just as easily specify workgroup = wkgrp security =

Hi, I'd like to have the logins that the accounts do, saved in a *sql table, with login name | IP | datetime, for audit porposes. How could I achieve that, if possible? Thanks in advanced, -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dovecot.org/pipermail/dovecot/attachments/20180112/10e98846/attachment.html>

<!DOCTYPE html> <html><head> <meta charset="UTF-8"> </head><body><p><br></p><blockquote type="cite">On January 12, 2018 at 5:41 PM Alex JOST wrote:<br><br><br>Am 12.01.2018 um 16:23 schrieb Jorge Bastos:<blockquote type="cite">Hi,<br><br> <br><br>I'd

You've made this more difficult to understand, even :-) So the answer is: Set the following in 10-auth.conf 1. disable_plaintext_auth = no 2. auth_mechanisms = plain And yes, the encrypted passwords are stored in MySQL. On Thu, 20 Dec 2018 at 13:36, Nikolai Lusan <nikolai at lusan.id.au> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > Greetings > On

On Thu, 20 Dec 2018 at 15:23, Aki Tuomi <aki.tuomi at open-xchange.com> wrote: > > On 20 December 2018 at 14:10 Odhiambo Washington < odhiambo at gmail.com> > wrote: > > > You've made this more difficult to understand, even :-) > > So the answer is: > Set the following in 10-auth.conf > > 1. disable_plaintext_auth = no > 2. auth_mechanisms =

> Technically creating and encrypting folder key does not > require decrypting user's private key. All folder keys > are encrypted with user's public key. Problem is for that this is a new user. The new user has no private key. I need for generating that private key. It do not the sense encrypts something using a key public if there is no private key. Both key public and private

Hi everyone, We are running Dovecot 2.2.9 as a primary IMAP server. Also we use Dovecot SASL for SMTP authentication. Because we are building some monitoring application, we will need to record all failed and successful login attempts. We need to record remote IP, entered password in plain text, and if possible whether auth request is for SMTP or IMAP session. I checked

Hi, I'm using Dovecot 1.2.14, and I've read PostLoginScripting on the wiki. Is there any way to make Dovecot use the same username/password for database access as userdb and passdb queries? Specifying the password with -p doesn't seem like a good idea, so I'm wondering if it can be handled by Dovecot directly. Or is it possible to track last logins with a plugin similar to

Hi, i want to use unix groups in my ACLs. http://wiki2.dovecot.org/ACL says, I can do that with a post-login script (http://wiki2.dovecot.org/PostLoginScripting). I have verified, that the script is running, and that ACL_GROUPS is correct. But I still can't access the Mailbox. Logfile says: Dec 3 11:19:35 mailint1 dovecot: imap(micha): Debug: acl vfile: reading file

We are configuring location= running a bash-script during imap-postlogin setting $MAIL in $USERDB_KEYS, as described in wiki/PostLoginScripting.txt This works fine. However, running a command like 'dovadm index [-u user] folder' only works for users with settings that match the default in mail_location= Would it be possible to make the location available for doveadm in a similar way,

What it is way most best for causing bash script run (as root) of time mailbox created (lda_mailbox_autocreate)? I use dovecot 2.3.4.1 in Debian 10. And I use of mail-crypt-plugin https://doc.dovecot.org/configuration_manual/mail_crypt_plugin/ I setup mail-crypt for requiring user encrypted EC key (mail_crypt_require_encrypted_user_key = yes). I want for passphrase encrypt EC key using client

Hi all I am in the process of migrating Courier to Dovecot, am using courier-dovecot-migrate.pl<http://www.dovecot.org/tools/courier-dovecot-migrate.pl>it works fine. I want to migrate each user as they login using post-login script (As i have huge no of users). We are using NFS storage, users are authenticated using mysql, User home directories as passed using variable mail ( usign mysql

Hi! I have a few questions regarding Dovecot proxy: 1. 1.1 If I understand correctly, setting 'nopassword' in the proxy passdb file, authentication is completely up to the destination host. Setting 'nopassword' in no way means the proxy becomes an open relay. Is this correct? 1.2 Are there any security implications when using 'nopassword' on the proxy? 2. 2.1 I would

Hi All, I use dovecot (v2.3.4) with a SQL backend for user authentication, passwords are stored in CRAMMD5 format. My SMTP server uses "doveadm auth" via auth-socket to perform sender authentification. To shut down SMTP access for hacked passwords I want to have a dedicated flag in the user database to allow/disallow SMTP for a user withouth disabling his account for IMAP. So, is

<!doctype html> <html> <head> <meta charset="UTF-8"> </head> <body> <div> Any way you could check config.log ? </div> <div> <br> </div> <div> Aki </div> <blockquote type="cite"> <div> On 15 January 2019 at 22:32 Larry Rosenman < <a

<!doctype html> <html> <head> <meta charset="UTF-8"> </head> <body> <div> https://dev.mysql.com/doc/refman/8.0/en/mysql-init.html does not support intentional removal of mysql_init </div> <div> <br> </div> <div> Aki </div> <blockquote type="cite"> <div>

Dear all, I use the IMAPSieve implementation described here: https://wiki.dovecot.org/HowTo/AntispamWithSieve It is working really great! Thanks a lot for this. The problem I have now is: A message was by accident marked by rspamd as spam, so a false-positive and is moved to the Junk folder. If I click in my email program now on `Not Spam` it is learn as HAM but moved to the INBOX. I would

> > > On 12 April 2019 21:45 Robert Kudyba via dovecot <dovecot at dovecot.org> > wrote: > > > > > > > You are running some kind of proxy in front of it. > > > > No proxy. Just sendmail with users using emacs/Rmail or > Webmail/Squirrelmail. > > > > > If you want it to show real client IP, you need to enable forwarding > of

Is it possible to run a bash script for authentication where a 0 exit code indicates success and a non-zero is failure? What I'm trying to do is create a shadow IMAP server that authenticates against a different server. That way my server will use the same passwords as an existing server. So what I would need is for dovecot to pass the username and password to my script, I attempt to log

??????? Original Message ??????? On Wednesday, April 10, 2019 9:14 PM, Aki Tuomi <aki.tuomi at open-xchange.com> wrote: > > On 10 April 2019 23:13 Laura Smith via dovecot dovecot at dovecot.org wrote: > > Sent with ProtonMail Secure Email. > > ??????? Original Message ??????? > > On Wednesday, April 10, 2019 8:20 PM, Aki Tuomi aki.tuomi at open-xchange.com wrote: