IANA
number for you, or your organisation, so that you don't trample on any
other schema out there. I have a custom schema that I use for
postfix/dovecot - it's simple, quick, and efficient without the DB
overhead ... and I get the multi-master replication in OpenLDAP.
- --
Nikolai Lusan
Email: niko..
-in replacement for
Outlook on a Windows desktop there is "eM Client" ... there is a port of
Evolution (my preferred client) for Windows, but I'm not so sure about
the sources I have found for it - the MacOS ports of Evolution are
reputable, and I would recommend that.
- --
Nikolai Lusan
ry to system users - normally your system users have
different email addresses for email delivery.
- --
Nikolai Lusan
-BEGIN PGP SIGNATURE-
iQIzBAEBCgAdFiEEVfd4GW6z4nsBxdLo4ZaDRV2VL6QFAmJC87sACgkQ4ZaDRV2V
L6S2zw/+JepsnV9nrVQa8q67QNgaLuH9u5fVUlFK2LxDqb0B2r7AoOi289+u8Pqu
ZBnF
/cardav
servers perfectly. In the end it was a better solution than Outlook,
for the small handful of Windows users I have to support (most of whom
use Thunderbird anyway).
- --
Nikolai Lusan
-BEGIN PGP SIGNATURE-
iQIzBAEBCgAdFiEEVfd4GW6z4nsBxdLo4ZaDRV2VL6QFAl/VAZIACgkQ4ZaDRV2V
L6Qymg//VHt
nfiguration
directives and consider what they should be set to - this is why we
have sysadmins, because some has to do more than "apt install" or "wget
foo.sh | sudo ./foo.sh --install".
- --
Nikolai Lusan
-BEGIN PGP SIGNATURE-
iQIzBAEBCgAdFiEEVfd4GW6z4nsBxdLo4ZaDRV
is the public
certificate, and the ssl_key line is the key used to create the sign
the initial certificate request (the CRL is later signed by an issuer,
in the case of the snakeoil certs this is seperate private key).
There are a bunch more things worth tweaking in t
MX's to actually do the initial
recieving of email, so everything auth related (and adress related) is
in a multi-master LDAP server on each machine. Using Dovetcot-SASL for
SMTP auth too.
> The E-mail client is Thunderbird on Windows.
I my experience pretty much any client works with thi
servers are specified, it’s decided by the LDAP library
how the server connections are handled. Typically the first working server
is used, and it’s never disconnected from. So there is no load balancing or
automatic reconnecting to the “primary” server.'
So if you want/need HA it's up to you. :)
quick and responsive. Again the choice comes down to what features
you want, and what you a willing to run on the server.
- --
Nikolai Lusan
-BEGIN PGP SIGNATURE-
iQIzBAEBCgAdFiEEVfd4GW6z4nsBxdLo4ZaDRV2VL6QFAl2KEVIACgkQ4ZaDRV2V
L6RSYg//baK9bLN0u4uO47F9eX2v6m8mlESFu+AEZ5vFVVHv/6kMUw+5Nf+RvOML
- --
Nikolai Lusan
-BEGIN PGP SIGNATURE-
iQIzBAEBCgAdFiEEVfd4GW6z4nsBxdLo4ZaDRV2VL6QFAlz0T+YACgkQ4ZaDRV2V
L6RfsxAArjv3GFGEj9S3Xm7Y/IYUQjcvH0TTgXfkTHBVBn6U5kh22vGs5N48pT5d
/7lhLSXTEoQBpZKP1b7WGlkxDYeZYklqQImrYhT5ua7VXl1Zic5JFCNdfvXQD1ZR
urr
t there are multiple users logged into the
server from the monitored domain (or at least the domain I am trying to
monitor to begin with).
I am also not sure how to get the session and data transfer information out
of the metrics/stats system.
If anyone can help me I would appreciate it.
Thanks
icates with anything in the wild (i.e. non-internal services, public
mail servers, public web servers). Personally I use letsencrypt wildcards
with domain based authentication for automatic certificate renewal
(although distributing the certificates across servers can be an
"interesting&quo
nfig
includes the passdb and userdb sections.
- --
Nikolai Lusan
-BEGIN PGP SIGNATURE-
iQIzBAEBCgAdFiEEVfd4GW6z4nsBxdLo4ZaDRV2VL6QFAlwbcFwACgkQ4ZaDRV2V
L6T7IxAAjTQQfVngYU92oNfORwIeL6e9YZtvlLfo7V6d2PSgnzJ2Tdzyo2YA4AGy
eApc9SoJra8IVzanv+s6yl0BJ/EXez/ugdZ5DEUzYTf7b1
ovecot limits users to their own mail
directories with values returned via the passdb/userdb.
As a general rule anything on a *nix system that is chmod 777 is to be
avoided - it's a massive security risk.
- --
Nikolai Lusan <niko...@lusan.id.au>
-BEGIN P
perly is even smaller - I did
have a webmail client destroy my nested "if" statements). Using procmail or
sieve as an intermediate step for initial transition from mbox to maildir
is a safe bet, then it comes down to having dovecot setup properly to
deliver into maildir.
- --
Nik
n to
"claws-mail" are what I use.
> In other words, Dovecot will happily EDIT the script to mark it as
> 'false' but will not edit the actual rules or create a new rule...
Dovecot doesn't actually edit your sieve rules, you do that via an
outside method (text editor, MUA pl
rk.
FWIW there is not really a standard schema for usage with dovecot
and/or postfix - in fact the author of postfix told me personally to
just write my own schema.
--
Nikolai Lusan <niko...@lusan.id.au>
signature.asc
Description: This is a digitally signed message part
Kaiser wrote:
> On Sun, 20 Nov 2016, Nikolai Lusan wrote:
>
> > dn = cn=admin,dc=maliuta,dc=org
> > base = ou=mail,dc=mailuta,dc=org
Spot the problem ... one misplaced character, and enough alike that
only a second, third, or nth pair of eyes would
ov 20 07:24:20 kiliya dovecot: auth:
ldap(niko...@test.maliuta.org,,<1kW2C65BFI2WZbl8>): unknown user
(given password: )
Nov 20 07:24:22 kiliya dovecot: auth: Debug: client passdb out:
FAIL#0111#011user=niko...@test.maliuta.org
--
Nikolai Lusan <niko...@lusan.id.au>
signature.asc
Description: This is a digitally signed message part
19 matches
Mail list logo
