Re: Looking for GSSAPI config [was: Looking for NTLM config example]

aki.tu...@dovecot.fi wrote: > As mentioned before, you can use ldap as userdb instead of static userdb. > Username matching in AD environment should be done against userPrincipalName > attribute. Do you see any problem with my continuing to use: userdb { driver = passwd } ... with

Re: Looking for GSSAPI config [was: Looking for NTLM config example]

Jan, thanks for your helpful reply. You wrote: > With Dovecot I got the SSO working with Kerberos, and this part is > working great. Other parts (shared mailboxes, that sort of stuff) aren't > working for me yet. ... I'm the opposite. My mailbox setup has been working great for a year and a

Re: Where Dovecot stores subscribtions for shared folder

Hello, my location: location = maildir:%%h/Maildir:INDEX=~/.dovecot.shared/%%u/:INDEXPVT=~/.dovecot.shared/%%u/:CONTROL=~/.dovecot.shared/%%u/ Am 27.06.2016 um 14:21 schrieb Miloslav Hůla: could please someone hint me, where Dovecot stores subscribtions for shared folder? Our

Re: Looking for GSSAPI config [was: Looking for NTLM config example]

> On June 28, 2016 at 12:02 AM Jan Jurkus wrote: > > > Hi, > > I'm not entirely happy with the static userdb, because of the > limitations with kerberos/pam, but this can of course be changed rather > easily. The hardest part is to get the SSO working. > One of

Re: Looking for GSSAPI config [was: Looking for NTLM config example]

Hi, On 27-06-2016 08:58, Mark Foley wrote: > So, I'm apparently lacking in the kerberos stuff. Here's the problem -- > Samba4 uses Heimdal > Kerberos and when I provisioned my domain apparently none of these needed > kerberos files were > set up. I can, however, kerberos authenticate from

Re: Looking for NTLM config example

> On June 27, 2016 at 8:50 PM Gregory Sloop wrote: > > > > > TT> On 6/27/2016 2:45 AM, Mark Foley wrote: > >> While continuing to test gssapi, I thought I check out your suggestion on > >> NTLM v1. I did set > >> Thunderbird to NTLM v1 ... > > TT> You are aware, I hope,

Re: Looking for NTLM config example

TT> On 6/27/2016 2:45 AM, Mark Foley wrote: >> While continuing to test gssapi, I thought I check out your suggestion on >> NTLM v1. I did set >> Thunderbird to NTLM v1 ... TT> You are aware, I hope, that NTLM v1 is well over 20 years old and TT> is trivially compromised today. Basically, it's

Re: Looking for NTLM config example

On 6/27/2016 2:45 AM, Mark Foley wrote: While continuing to test gssapi, I thought I check out your suggestion on NTLM v1. I did set Thunderbird to NTLM v1 ... You are aware, I hope, that NTLM v1 is well over 20 years old and is trivially compromised today. Basically, it's about as secure as

doveadm purge -A includes users with gid outside of limits and then reports error

Hi, one our user reported that when he runs "doveadm purge -A" it goes through users that don't have gid in the first_valid_gid-last_valid_git range and it reports error. For example: doveadm(dovenull): Error: user dovenull: Mail access for users with GID 996 not permitted (see

External mail attachments storage cleanup

Hi, I have set up mdbox backend witch saving mail attachments to external files option. Dovecot store attachments to external files but never delete them. Why?

Suggestion: Split login_trusted_networks

Hi, For the upcoming 2.3 development, I'd like to re-suggest this: It seems the use of login_trusted_networks is overloaded. Example: * It's used for indicating which hosts you trust to provide XCLIENT remote IP's. (like a proxy) * It's used for indicating from which hosts you trust logins

Where Dovecot stores subscribtions for shared folder

Hi, could please someone hint me, where Dovecot stores subscribtions for shared folder? Our configuration: namespace { disabled = no hidden = no ignore_on_failure = no inbox = no list = children location =

Re: Mailboxes on NFS or iSCSI

Hi, thank you both for hints. I'm still not sure what to choose, so I'll probably test it on some dev installation. Kind regards, Milo Dne 23.06.2016 v 8:05 Götz Reinicke - IT Koordinator napsal(a): Hi, Am 22.06.16 um 16:40 schrieb Miloslav Hůla: Hello, we are running Dovecot

Re: fts_solr crashs

Hi Aki, Am 27.06.2016 um 11:14 schrieb Aki Tuomi: On 27.06.2016 12:11, M. Koehler wrote: I´ve set up in dovecot 2.2.24-1~auto+49 (from dovecot repo) fts_solr and fts_tika - jetti8 (from Debian Jessie) and latest tika-server running on a seperate machine. But if I want to rescan all messages

Re: fts_solr crashs

On 27.06.2016 12:11, M. Koehler wrote: > Hi, > > I´ve set up in dovecot 2.2.24-1~auto+49 (from dovecot repo) fts_solr > and fts_tika - jetti8 (from Debian Jessie) and latest tika-server > running on a seperate machine. But if I want to rescan all messages > for reindexing for instance all

fts_solr crashs

Hi, I´ve set up in dovecot 2.2.24-1~auto+49 (from dovecot repo) fts_solr and fts_tika - jetti8 (from Debian Jessie) and latest tika-server running on a seperate machine. But if I want to rescan all messages for reindexing for instance all attachments with "doveadm -v index -u u...@domain.tld

Re: Looking for GSSAPI config [was: Looking for NTLM config example]

Aki, again, thanks A LOT for your reply. Concerning your checklist: > 1. Functional AD or Kerberos environment Check! > 2. Time synced against your KDC (which is your Domain Controller on Windows) Check! (needed for AD/DC anyway) > 3. /etc/krb5.conf configured NO > 4. Both forward / reverse

Re: Looking for NTLM config example

While continuing to test gssapi, I thought I check out your suggestion on NTLM v1. I did set Thunderbird to NTLM v1 and modified the Dovecot config: auth_debug_passwords = yes auth_mechanisms = plain login ntlm auth_use_winbind = yes auth_verbose = yes auth_verbose_passwords = plain

Re: mail-search backtrace

On 25.06.2016 08:25, Hugh Bragg wrote: > > On 22/05/16 05:17, Hugh Bragg wrote: >> >> >> On 13/04/16 06:41, Timo Sirainen wrote: >>> On 09 Apr 2016, at 21:48, Hugh Bragg wrote: I'm repeatedly getting this error: Apr 07 04:37:27 imap(mymail@address): Panic:

Re: fts_solr not working

On 26.06.2016 21:56, Jeff Gamsby wrote: > On 2016-06-23 11:24, aki.tu...@dovecot.fi wrote: >>> On June 23, 2016 at 9:06 PM Jeff Gamsby wrote: >>> >>> >>> I am running ISPConfig 3 on Debian and have managed to install the >>> dovecot-solr and dovecot-fts plugins. >>> >>>

Re: Looking for GSSAPI config [was: Looking for NTLM config example]

On 27.06.2016 07:31, Mark Foley wrote: > Thanks for the reply. When you say it [NTLM] "should" work, I understand you > to be implying > you've not actually tried NTLM yourself, right? I've never gotten a response > from someone > saying they have or are actually using it. Your subsequent