RE: Save user passwords in clear text

2016-08-05 Thread Michael Fox
> Is it possible to save user passwords as clear text through dovecot? I am > currently using MD5 passwords and I allow only "plain and login” > mechanisms but I want to switch my database to clear text as this will > give me the ability to use more mechanisms such as CRAM-MD5. Is this > possible?

RE: Dovecot password policy

2016-08-05 Thread Michael Fox
> A lot of “bots” try very simple passwords say less than X > characters; over and over and over again before they give up. > > I realize Dovecot mitigates this by slowing them down; but always nice to > have another optional layer of defense to clip this kind of garbage closer > to the door.

Save user passwords in clear text

2016-08-05 Thread Lefteris Tsintjelis
Is it possible to save user passwords as clear text through dovecot? I am currently using MD5 passwords and I allow only "plain and login” mechanisms but I want to switch my database to clear text as this will give me the ability to use more mechanisms such as CRAM-MD5. Is this possible? Thank

Re: Dovecot password policy

2016-08-05 Thread Joseph Tam
Robert Blayzor writes: Is there a way to configure Dovecot to perhaps filter/enforce which passwords are accepted before authenticating? Ie: Reject immediately (without a database lookup) if password is not X characters in length? Yes, use the checkpassword hook.

Re: Dovecot password policy

2016-08-05 Thread Aki Tuomi
> On August 5, 2016 at 9:10 PM Robert Blayzor wrote: > > > On Aug 5, 2016, at 12:12 PM, Aki Tuomi wrote: > > > > The response time will be same anyways. > > > > Anyways. It is better to enforce this kind of thing when users define the > >

Re: Dovecot password policy

2016-08-05 Thread Robert Blayzor
On Aug 5, 2016, at 12:12 PM, Aki Tuomi wrote: > > The response time will be same anyways. > > Anyways. It is better to enforce this kind of thing when users define the > password than during login. The idea would be to mitigate unnecessary database dips for password

Re: Dovecot password policy

2016-08-05 Thread Aki Tuomi
> On August 5, 2016 at 6:47 PM "Michael A. Peters" > wrote: > > > On 08/05/2016 08:41 AM, Robert Blayzor wrote: > > Is there a way to configure Dovecot to perhaps filter/enforce which > > passwords are accepted before authenticating? > > > > Ie: Reject immediately

Re: Dovecot password policy

2016-08-05 Thread Michael A. Peters
On 08/05/2016 08:41 AM, Robert Blayzor wrote: Is there a way to configure Dovecot to perhaps filter/enforce which passwords are accepted before authenticating? Ie: Reject immediately (without a database lookup) if password is not X characters in length? ? Not sure what the benefit would

Re: Dovecot and Solr 6

2016-08-05 Thread Daniel Miller
On 7/7/2016 2:31 PM, KSB wrote: On 2016.07.06. 22:51, KSB wrote: Hi! Dovecot 2.2.24 Had set up solr and new schema collection. Copied dovecot provided schema. There was an error with booleans (while getting schema via http), which I "solved" by removing "add-unknown-fields-to-the-schema" from

Dovecot password policy

2016-08-05 Thread Robert Blayzor
Is there a way to configure Dovecot to perhaps filter/enforce which passwords are accepted before authenticating? Ie: Reject immediately (without a database lookup) if password is not X characters in length? ? -- Robert inoc.net!rblayzor XMPP: rblayzor.AT.inoc.net PGP Key: 78BEDCE1 @

Re: Problem with sieve configuration on dovecot+debian_jessie+ISPC3

2016-08-05 Thread Stephan Bosch
Thunderbird shows this message as only a picture. Had to view the source to read it. I'm new-ish to dovecot and sieve (haven't used it extensively till now) and I'm not sure that I configured everything propperly. The problem is that we're trying to get the following sieve code to run:

Re: Problem with sieve configuration on dovecot+debian_jessie+ISPC3

2016-08-05 Thread Filip Lončar
Well that's not a problem with the mailing list. The problem is that I'm trying to do a forwarding system between 6 emails that all have to receive each other's emails but without the duplicates. So we have emails: A, B, C, D, E, and F; And whenever someone sends an email to A; B, C, D, E, and F

Re: New password hashing scheme as plugin

2016-08-05 Thread Andreas Meyer
2016-08-05 10:59 GMT+02:00 Aki Tuomi : > > > On 02.08.2016 00:46, Andreas Meyer wrote: > > 2016-08-01 15:58 GMT+02:00 : > > > >>> On August 1, 2016 at 4:38 PM aki.tu...@dovecot.fi wrote: > >>> > >>> > >>> > On August 1, 2016 at 3:45 PM Andreas

Re: Problem with sieve configuration on dovecot+debian_jessie+ISPC3

2016-08-05 Thread Benny Pedersen
On 2016-08-02 10:25, Filip Loncar [WarpMax | FederationServers] wrote: require "duplicate"; if duplicate :header "message-id" { discard; } this sieve rule will discard your own postings on maillists when you get them back bummer This e-mail, including all attached files, if

Re: New password hashing scheme as plugin

2016-08-05 Thread Aki Tuomi
On 02.08.2016 00:46, Andreas Meyer wrote: > 2016-08-01 15:58 GMT+02:00 : > >>> On August 1, 2016 at 4:38 PM aki.tu...@dovecot.fi wrote: >>> >>> >>> On August 1, 2016 at 3:45 PM Andreas Meyer >> wrote: 2016-07-31 16:39 GMT+02:00

Problem with sieve configuration on dovecot+debian_jessie+ISPC3

2016-08-05 Thread Filip Loncar [WarpMax | FederationServers]
I'm new-ish to dovecot and sieve (haven't used it extensively till now) and I'm not sure that I configured everything propperly. The problem is that we're trying to get the following sieve code to run: require ["fileinto", "regex", "date", "relational", "vacation", "duplicate"]; require

Re: file/folder perms permissions

2016-08-05 Thread Steffen Kaiser
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thu, 4 Aug 2016, Jim Pazarena wrote: Forgive me if I am blind, but I cannot find default folder permissions. there are no "default"s, because it depends on your installation heavily. For the home directories, with the sub of mail: and deeper,