similar to: Recommended Protocols?

Good. I am going to focus on the IMAP configuration and worry about SMTP later. The following is the relevant documentation. This is very straightforward: https://doc.dovecot.org/admin_manual/ssl/dovecot_configuration/ My file 10-ssl.conf is untouched. However, this is the part that I would like to better understand: https://doc.dovecot.org/admin_manual/ssl/certificate_creation/ Before

On 10/11/20 1:52 pm, Nikolai Lusan wrote: > Greetings, > > On Mon, 2020-11-09 at 23:42 -0600, Raymond Herrera wrote: > > For several years I have been running the following in a Linux > > server. > > > Dovecot Version: 2.0.9 > > > *IMAP:* > > Connection Security: SSL/TLS > > Port: 993 > > Authentication Method: Normal Password > >

This is what I did. I obtained a certificate from this site: https://www.sslforfree.com They provided 3 files: ? certificate.crt ? private.key which make perfect sense as replacement for the 2 files provided by the distribution. I am guessing that I need somehow to append the 3rd file (ca_bundle.crt) to the first one? In order to raise its credibility? TIA On 11/10/2020 2:20 PM, Aki

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Greetings, On Mon, 2020-11-09 at 23:42 -0600, Raymond Herrera wrote: > For several years I have been running the following in a Linux > server. > > Dovecot Version: 2.0.9 > > *IMAP:* > Connection Security: SSL/TLS > Port: 993 > Authentication Method: Normal Password > > *SMTP:* > Connection Security: STARTTLS

That is good to know. I was working on the wrong assumption, attempting to create a client certificate on the Windows/Thunderbird side. I am using the SSL Certificate that comes with the distribution, so the conclusion is Thunderbird does not trust it. I have this in my notes from ages ago, for generating my own self-signed certificate: % openssl req -x509 -newkey rsa:4096 -sha256 -keyout

This is a followup to my thread "Recommended Protocols?". The error message is as follows: dovecot: imap-login: Disconnected: TLS: SSL_read() failed: SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42 I have selected both SSL/TLS and STARTTLS on the Thunderbird side, with identical results. The first question that I have is this. Is there any way to know

You've made this more difficult to understand, even :-) So the answer is: Set the following in 10-auth.conf 1. disable_plaintext_auth = no 2. auth_mechanisms = plain And yes, the encrypted passwords are stored in MySQL. On Thu, 20 Dec 2018 at 13:36, Nikolai Lusan <nikolai at lusan.id.au> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > Greetings > On

I am using SHA512-CRYPT scheme for passwords. In my dovecot-sql.conf.ext, I have: default_pass_scheme = CRYPT In 10-auth.conf, I have: auth_mechanisms = plain login digest-md5 M$ Outlook is refusing to authenticate, with error: Requested DIGEST-MD5 scheme, but we have only CRYPT What an I missing?? I hate it that this has taken me round in circles :-) -- Best regards, Odhiambo WASHINGTON,

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Greetings, So the changes to the stats modules between v2.2 and v2.3 have broken some of my monitoring. I am attempting to use the new method of gathering "metrics" from "events" - but the details in the documentation are a bit thin. I started with the examples provided at https://wiki2.dovecot.org/Statistics and tried to

Hi, I am setting up a dovecot instance to host a bunch of virtual domains, with ldap backing for auth. I am using a single hostname for test purposes, with a couple of entries in the diectory. If I use auth binds I get a result, but this does not suit the end purpose of the server. If I use ldapsearch with the same base, search filter, and credentials as the ldap auth config I get the correct

No reason to tell me about security, I just need chmod for my tests. Where to change it ? On Thu, Jan 25, 2018 at 12:00 PM, <dovecot-request at dovecot.org> wrote: > Send dovecot mailing list submissions to > dovecot at dovecot.org > > To subscribe or unsubscribe via the World Wide Web, visit > https://dovecot.org/mailman/listinfo/dovecot > or, via email,

I'm planning to upgrade my asterisk 1.4.4 to 1.4.6. usually for asterisk upgrade i delete modules directory and include, then compile the new version. Since i have couple of G729 Licenses on this server installed, would i need to call Digium to reactivate these Licenses? Is there any better and faster way of upgrade asterisk? Possibly without losing G729 License? Thanks!

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On Tue, 2020-11-10 at 00:26 -0600, Raymond Herrera wrote: > Good. I am going to focus on the IMAP configuration and worry about > SMTP > later. Yeah, also the postfix list is probably more useful for the SMTP stuff, although having said that the two products integrate seemlessly. > The following is the relevant documentation. >

What I have to change, so dovecot on new email create, sets chmod 777 on Mailbox and all subfolders subfiles all new emails/sent emails etc. -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dovecot.org/pipermail/dovecot/attachments/20180125/276846fa/attachment.html>

Hi Sorry for my question... I use dovecot+ldap How realy works (in dovecot-2.2.x ) lists of LDAP hosts to use ? ------ dovecot.conf ---- hosts = ldap.domain.pl:389 ldap-slave.domain.pl:389 #uris = -------- This is simpe HA ? I mean if ldap.domain.pl have problem another request go to ldap-slave.domain.pl ?

I don't even get what the advatages are of doing this with sql. If you use local replicated ldap and use local credential caching then your master ldap can go down without issues, even the local caching handle some local slapd issues. I guess the local caching is also faster. Afaik were databases not designed for this purpose and a better fit is ldap. > > If I understand open source

Excuse dopey question. I'm not exactly clear about certificates. Apache2 default install has this snake oil certificate Can make a new one for apache Can make one for dovecot Can make one for ssl Is there supposed to be the one (self signed ) certificate pair in one place for the machine that each process hands out ? Can they be moved to another machine ? mick -- Key ID C7D6E24C

Hi, I am trying to determine the correct LDAP schema I need to use to have either mailLocation or mailboxPath available ? Should I be just adding this to one of my own custom objectClasses ? -- Dave

Hi all, I could really use a file manager or browser to browse my Dovecot IMAP. Ideally it would have hotkeys to move, copy, delete and send. The send part needn't be coded: Just a call to a shellscript which can handle the send the way it's locally the most convenient. Anyone know of such a file manager or browser for IMAP? SteveT Steve Litt Author: The Key to Everyday Excellence

Hello, (my first post so be gentle) I will be posting this to the Roundcube mailing list too, but thought it worth asking here as well. I have a Roundcube installation running Apache with Dovecot and Sieve. When logged in to Roundcube, a user can see the Sieve scripts and enable or disable them but NOT edit them or create new scripts. In other words, Dovecot will happily EDIT the script to