On April 15, 2020, at 11:44, Scott Andrews <[email protected]>
wrote:
>
>On 4/15/20 1:04 PM, Pierre Labastie wrote:
>> On Wed, 2020-04-15 at 12:47 -0400, Scott Andrews wrote:
>>> On 4/15/20 12:38 PM, Pierre Labastie wrote:
>>>> On Wed, 2020-04-15 at 11:44 -0400, Scott Andrews wrote:
>>>>> The local.conf file is incorrect and will not allow remote logins
>>>>>
>>>>> add this to the local.conf file to correct
>>>>>
>>>>> disable_plaintext_auth = no
>>>>>
>>>>> cat > /etc/dovecot/local.conf <<- EOF
>>>>>
>>>>> protocols = imap
>>>>> disable_plaintext_auth = no
>>>>> ssl = no
>>>>> # The next line is only needed if you have no IPv6 network
>>>>> interfaces
>>>>> listen = *
>>>>> mail_location = mbox:~/Mail:INBOX=/var/mail/%u
>>>>> userdb {
>>>>> driver = passwd
>>>>> }
>>>>> passdb {
>>>>> driver = shadow
>>>>>
>>>>> }
>>>>>
>>>>> EOF
>>>>>
>>>>>
>>>> Wrong list. This should go to blfs-dev, but the proposed file in
>>>> the
>>>> book is correct with respect to the introductory comments made just
>>>> above:
>>>> "The following configuration is a simple proof of concept with IMAP
>>>> service using local users for authentication and mailbox location.
>>>> Reading files from the conf.ddirectory is commented out since the
>>>> included example configuration requires OpenSSL and Linux PAM."
>>>>
>>>> Of course, we may provide a more complete config, but I think we'd
>>>> better not do that for programs involving security, and leave that
>>>> to
>>>> the user/admin of the lfs box.
>>>>
>>>> Pierre
>>>>
>>> It is not correct in that it will only allow connections from the
>>> local
>>> machine not, it will be denied from any remote.
>> It is _a proof of concept_ (translation: do not use in production),
>> using _local_ users for authentication and mailbox location... It is
>> not intended for remote connections. This books gives recipes for
>> installing packages, not for running them.
>>
>>> Read https://wiki.dovecot.org/TestInstallation
>>>
>> We have... Have you tried the command using starttls (it is in the link
>> above)? I have not tested recently, but I think it works.
>>
>> Pierre
>>
>It does not work. The real issue with the local.conf and the sed from
>the book completely screws up all testing
>All that is needed is to generate a cert edit 10-ssl.conf
>ssl_cert = </etc/ssl/mail.example.org.crt
>ssl_key = </etc/ssl/mail.example.org.key
>dovecot.conf
>listen = *
>and auth-system.conf.ext from
># PAM-like authentication for OpenBSD.
># <doc/wiki/PasswordDatabase.BSDAuth.txt>
>passdb {
> driver = bsdauth
> # [blocking=no] [cache_key=<key>]
> #args =
>}
>to
># PAM-like authentication for OpenBSD.
># <doc/wiki/PasswordDatabase.BSDAuth.txt>
>#passdb {
> #driver = bsdauth
> # [blocking=no] [cache_key=<key>]
> #args =
>#}
>and then following
># Shadow passwords for system users (NSS, /etc/shadow or similar).
># Deprecated by PAM nowadays.
># <doc/wiki/PasswordDatabase.Shadow.txt>
>passdb {
> driver = shadow
> # [blocking=no]
> #args =
>}
>That makes STARTTLS work from local and remote systems.
>You can then follow testing installation from the dovecot site.
>Your sed completely destroys following dovecot examples and their wiki.
>If you rm local.conf then you can not follow howtos nor dovecot
>instructions as in nothing works as directed.
>Cost me 8 hours work for nothing achievable. Quite peeved at this point
>--
I think he's saying it's an example, and not something to take literally.
Please stop griping; I have enough school to deal with around here without
people throwing fits about examples. Please?
Flareon Zulu
>http://lists.linuxfromscratch.org/listinfo/lfs-support
>FAQ: http://www.linuxfromscratch.org/blfs/faq.html
>Unsubscribe: See the above information page
>Do not top post on this list.
>A: Because it messes up the order in which people normally read text.
>Q: Why is top-posting such a bad thing?
>A: Top-posting.
>Q: What is the most annoying thing in e-mail?
>http://en.wikipedia.org/wiki/Posting_style
--
http://lists.linuxfromscratch.org/listinfo/lfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
Do not top post on this list.
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in e-mail?
http://en.wikipedia.org/wiki/Posting_style
