Re: [Dovecot] Passwordless auth?
Hi, >I didn't quite mean that: yes, that is 'passwordless' in a sense, but >you still have to have typed a password into kinit fairly recently. > >What I meant was that with 2.2 it's finally possible to set a list of >krb5 principals for imap which is different from the list in .k5login. >This makes it possible to create special-purpose principals, which can >have their keys put in a keytab, which can then log on as an ordinary >imap user. perhaps I misunderstand you, but something like kinit -k -t /path/to/keytab authenticates w/o the need of typing a password. Cheers Dirk
Re: [Dovecot] OT/about SSDs (was: XFS vs EXT4 for mail storage)
Hi all, I found a reference about the robustness of SSDs (and rotating rust) on c0t0d0s0.org (http://www.c0t0d0s0.org/archives/7578-Switching-off-SSDs-and-the-consequences.html) pointing to this interesting paper: http://www.cse.ohio-state.edu/~zhengm/papers/2013_FAST_PowerFaultSSD.pdf Just in case you ever wondered what might happen to your SSDs if power fails. Cheers Dirk - Ursprüngliche Mail - Von: "Stan Hoeppner" An: dovecot@dovecot.org Gesendet: Sonntag, 5. Mai 2013 12:22:05 Betreff: Re: [Dovecot] XFS vs EXT4 for mail storage On 5/4/2013 10:54 AM, Charles Marcus wrote: > On 2013-05-04 11:20 AM, Marc Perkel wrote: >> For what it's worth if you can afford it I'd use SSD drives. My server >> screams since I went to SSD. > > Hi Marc, > > You have no idea how much I would love to use SSDs for this. But the > cost was simply not quite justified. > > The price keeps coming down on them though - even now, 10 months after > buying these servers, the cost would probably be low enough that we may > have actually done so, but it was going to be about double the cost of > the 15k drives at the time we priced them. > > Next time, definitely... :) The verdict is still out on use of "enterprise" SSDs. They've simply not been in use long enough en mass to know what the common failure modes are and what the real lifespan is. I personally wouldn't yet trust long term storage to them, though I have no problem using them for fast temporary storage for things like a busy mail queue. -- Stan
Re: [Dovecot] Better to use a single large storage server or multiple smaller for mdbox?
Hi there, > I have to say - I haven't actually seen this happen... Do any of your > big mailstore contacts observe this, eg rackspace, etc? Just to throw in to the discussion that with (silent) data corruption not only "the disk" is involved but many other parts of your systems. So perhaps you would like to have a look at https://indico.desy.de/getFile.py/access?contribId=65&sessionId=42&resId=0&materialId=slides&confId=257 http://indico.cern.ch/getFile.py/access?contribId=3&sessionId=0&resId=1&materialId=paper&confId=13797 The documents are from 2007 but the principals are still the same. Kind regards Dirk
Re: [Dovecot] Dovecot 2 + Director: IMAP+GSSAPI and LMTP-proxying
Hi again,
minutes after posting I found something for my LMTP-question:
Where may I specify the port number of the backend server's
LMTP-port? I suspect that the missing port number implies that
the receiving LMTP-backend server uses the same port and so
this would lead to a loop, hence the loop error?!
Just add "port=" in the passdb
section like:
passdb {
args = proxy=y nopassword=y port=25252
driver = static
}
So I am worrying about the IMAP+GSSAPI part...
Cheers,
Dirk
--
Dirk Jahnke-Zumbusch Deutsches Elektronen-Synchrotron DESY
IT Information Fabrics Member of the Helmholtz Association
D-22603 HamburgNotkestrasse 85 / 22607 Hamburg
T: +49-40-899.81760 F: +49-40-899.41760 dirk.jahnke-zumbu...@desy.de
