Re: doveadm pw usage
ok the helps says: pw [-l] [-p plaintext] i just thought it specifies the text file. thanks for clarifying it. Bernardo Reino wrote: The argument to "-p" is not a file containing the password, but the password itself!
Re: how to setup IMAPs with letsencrypt
thank you Jeremy. I will check out them. Jeremy Ardley wrote: https://www.digitalocean.com/community/tutorials/how-to-create-let-s-encrypt-wildcard-certificates-with-certbot This may be more helpful https://medium.com/@saurabh6790/generate-wildcard-ssl-certificate-using-lets-encrypt-certbot-273e432794d7
doveadm pw usage
Hello when i want to assign a password to a user, I need to write the plain passwd to a text file then do: # doveadm pw -p input.txt {CRAM-MD5}77180880... it's not that convenient to write to a file first. does it support the format below? doveadm pw "plain password" providing the plain password as CL argument to generate a encrypted one. thank you ミユナ alice
Re: how to setup IMAPs with letsencrypt
Richard Hector wrote: otherwise you'll have to use DNS challenge method to support multiple hostnames on the same certificate. do you know how to implement this? the original certificates were issued for domain: sample.com. But this certs can be used for any.sample.com too? Thanks
Re: auth between postfix and dovecot?
Shawn Heisey wrote: Interesting. I thought it was using LMTP but it looks like master.cf has it running /usr/lib/dovecot/dovecot-lda to deliver. Would LMTP be a better option? It has always worked, so I didn't look at it very closely. I see some docs saying dovecot uses LDA for delivery by default. LDA has worse performance than LMTP. though I am not sure about this. thanks.
Re: auth between postfix and dovecot?
Shawn Heisey wrote: My setup is virtual users in a postfixadmin database. Dovecot does all authentication, even with posfix. I believe the config snippets I have included below are the relevant things that make it possible for postfix to talk to dovecot for mail delivery and authentication. Mail sent from localhost on port 25 does not require authentication on my system, because 127.0.0.0/8 is in postfix's mynetworks config and port 25's access restrictions include permit_mynetworks. Anything sent via submission (port 587) does require auth, even from trusted networks. If you can configure your webmail to use submission instead of smtp, maybe that can be authenticated. You'll need to consult support resources for your webmail to see if that is possible. I can say for sure that roundcube can do it ... I have roundcube configured to talk to port 587, which as mentioned, ALWAYS requires authentication. When postfix sends mail to dovecot for delivery, I'm pretty sure that happens without authentication. It's LMTP via unix socket, not something an outside client can access directly. Thank you. that's good suggestion. regards.
auth between postfix and dovecot?
hello experts, I have installed postfix and dovecot in the same machine. Their configure looks as: service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { mode = 0600 user = postfix group = postfix } unix_listener /var/spool/postfix/private/auth { mode = 0666 user = postfix group = postfix } auth_mechanisms = plain login !include auth-passwdfile.conf.ext my question is: when postfix talks to dovecot, does it require user's username/password for authentication? or this communication just goes without authentication? I asked this, b/c my webmail send mail from localhost has been going without authentication to postifx. so i am not sure if postfix talks to dovecot without requiring auth too. Thanks alice
Re: how to setup IMAPs with letsencrypt
> > On 22/4/22 7:25 am, al...@coakmail.com wrote: >> hello >> >> I have setup website using letsencrypt for certification. >> how can I setup IMAP to use this certs as well? >> >> Thank you. >> > Make entries in /etc/dovecot/conf.d/10-ssl.conf > > ssl = required > > ssl_cert = ssl_key = > > in /etc/dovecot/dovecot.conf or in /etc/dovecot/conf.d/10-ssl.conf > > put > > ssl_min_protocol = TLSv1.2 > ssl_cipher_list = EECDH+AESGCM:EDH+AESGCM > ssl_prefer_server_ciphers = yes > > You can override the global ssl certificates for specific domains in > /etc/dovecot/dovecot.conf > Thanks. I will give a try. after enabling SSL, can I disable port 143 entirely?
how to setup IMAPs with letsencrypt
hello I have setup website using letsencrypt for certification. how can I setup IMAP to use this certs as well? Thank you.