On 4/15/20 1:04 PM, Pierre Labastie wrote:
On Wed, 2020-04-15 at 12:47 -0400, Scott Andrews wrote:
On 4/15/20 12:38 PM, Pierre Labastie wrote:
On Wed, 2020-04-15 at 11:44 -0400, Scott Andrews wrote:
The local.conf file is incorrect and will not allow remote logins
add this to the local.conf file to correct
disable_plaintext_auth = no
cat > /etc/dovecot/local.conf <<- EOF
protocols = imap
disable_plaintext_auth = no
ssl = no
# The next line is only needed if you have no IPv6 network
interfaces
listen = *
mail_location = mbox:~/Mail:INBOX=/var/mail/%u
userdb {
driver = passwd
}
passdb {
driver = shadow
}
EOF
Wrong list. This should go to blfs-dev, but the proposed file in
the
book is correct with respect to the introductory comments made just
above:
"The following configuration is a simple proof of concept with IMAP
service using local users for authentication and mailbox location.
Reading files from the conf.ddirectory is commented out since the
included example configuration requires OpenSSL and Linux PAM."
Of course, we may provide a more complete config, but I think we'd
better not do that for programs involving security, and leave that
to
the user/admin of the lfs box.
Pierre
It is not correct in that it will only allow connections from the
local
machine not, it will be denied from any remote.
It is _a proof of concept_ (translation: do not use in production),
using _local_ users for authentication and mailbox location... It is
not intended for remote connections. This books gives recipes for
installing packages, not for running them.
Read https://wiki.dovecot.org/TestInstallation
We have... Have you tried the command using starttls (it is in the link
above)? I have not tested recently, but I think it works.
Pierre
It does not work. The real issue with the local.conf and the sed from
the book completely screws up all testing
All that is needed is to generate a cert edit 10-ssl.conf
ssl_cert = </etc/ssl/mail.example.org.crt
ssl_key = </etc/ssl/mail.example.org.key
dovecot.conf
listen = *
and auth-system.conf.ext from
# PAM-like authentication for OpenBSD.
# <doc/wiki/PasswordDatabase.BSDAuth.txt>
passdb {
driver = bsdauth
# [blocking=no] [cache_key=<key>]
#args =
}
to
# PAM-like authentication for OpenBSD.
# <doc/wiki/PasswordDatabase.BSDAuth.txt>
#passdb {
#driver = bsdauth
# [blocking=no] [cache_key=<key>]
#args =
#}
and then following
# Shadow passwords for system users (NSS, /etc/shadow or similar).
# Deprecated by PAM nowadays.
# <doc/wiki/PasswordDatabase.Shadow.txt>
passdb {
driver = shadow
# [blocking=no]
#args =
}
That makes STARTTLS work from local and remote systems.
You can then follow testing installation from the dovecot site.
Your sed completely destroys following dovecot examples and their wiki.
If you rm local.conf then you can not follow howtos nor dovecot
instructions as in nothing works as directed.
Cost me 8 hours work for nothing achievable. Quite peeved at this point
--
http://lists.linuxfromscratch.org/listinfo/lfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
Do not top post on this list.
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in e-mail?
http://en.wikipedia.org/wiki/Posting_style
