RE: Postfix and Dovecot LDA vs. LMTP

2016-06-25 Thread Noel Butler 

On 26/06/2016 02:39, Michael Fox wrote:
The most crucial difference is that LDA is intended for delivering 
email

to a *real* user.

Aki



Thanks Aki.

Pardon my ignorance, but why does it matter?  In other words, what is
it that makes LDA better for a *real* user and LMTP better for a
virtual user?

Thanks,
Michael


We've used LDA for virtual users for a very very long time, though we 
use multiple front ends, each with postfix/dovecot and mysql (replicated 
DB) they all talk to one big storage backend via NFS (as do the 
pop3/imap/webmails servers), we looked at lmtp once but saw no 
advantages given the setup.



--
If you have the urge to reply to all rather than reply to list, you best
first read  http://members.ausics.net/qwerty/

RE: Postfix and Dovecot LDA vs. LMTP

2016-06-25 Thread Michael Fox 
> imho wiki is the way to go to be up2date with information, else it would
> make more sense to make more informative man pages in dovecot, that will
> never be outdated

I agree that the wiki is useful and important.  It just doesn't have any
depth regarding the "why" and "how" part of the equation.  For example, WHY
LMTP vs. LDA (just one example).  There are many config snippets with a
couple of lines of explanation and not much about how they fit into the big
picture.  And some config examples (like the default_fields and
override_fields issue I reported earlier) simply don't work.

In the Postfix world, there is an old Postfix book (older than Peer's book)
which goes into a lot of the "why" and "how".  It takes you through the
whole process from nothing to a full-fledged server and really gives you the
big picture.  All of that is still valid today.  Then the postfix website is
the place to go for up-to-date description of each config option.  Even
there, the web pages contain much more descriptive information about each
config option -- how it's used, when, why, side-effects, etc.

If I knew what I was doing, I'd offer to help add to the wiki.  But as a
newbie, I don't even know what I don't know.  ;-)

So I'm hoping that Peer's book will provide that overall big-picture and
that I can find an English copy somehow.

Michael

Re: Postfix and Dovecot LDA vs. LMTP

2016-06-25 Thread Benny Pedersen 

On 2016-06-25 23:56, Michael Fox wrote:


Peer:  Is there any way to get an English copy of your book?


imho wiki is the way to go to be up2date with information, else it would 
make more sense to make more informative man pages in dovecot, that will 
never be outdated


that sayed i am intrested in the book aswell

RE: Postfix and Dovecot LDA vs. LMTP

2016-06-25 Thread Michael Fox 
Thanks again Jan.

I appear to have basic LMTP working now (messages are delivered to virtual
mailboxes of valid recipients and non-existent recipients are rejected).
Cool.  Still lots more work to do.

But I think I could really use the Dovecot book.  I find the wiki to be
lacking in explanation.  So, too often I'm just copying without knowing the
reason why or how some things fit together.

Peer:  Is there any way to get an English copy of your book?

Michael



> -Original Message-
> From: dovecot [mailto:dovecot-boun...@dovecot.org] On Behalf Of "Jan
> Büren"
> Sent: Saturday, June 25, 2016 12:53 PM
> To: dovecot@dovecot.org
> Cc: Peer Heinlein 
> Subject: RE: Postfix and Dovecot LDA vs. LMTP
> 
> Hi Michael,
> we´ll actually the author is reading this list as well.
> Maybe he can help out here (cc).
> As far as I know went the publisher bancrupt and that´s why currently
> further prints and next books are delayed.
> 
> @Peer: Anyway, is there a english copy? More or less I am refering to the
> chapter LMTP with dovecot and postfix.
> 
> Hmm, just with the information in the dovecot wiki, there is at least the
> postfix part missing:
> http://wiki2.dovecot.org/HowTo/PostfixDovecotLMTP
> 
> Best luck,
> > Thanks Jan.
> >
> > I've been trying to obtain an English copy of the Dovecot book for
> months,
> > prior to starting this project.  So far, I just can't find a copy.  It's
> > too
> > bad that the author/publisher won't do a second printing or, if they're
> > not
> > interested in making any more money, then release it to the public
> domain
> > as
> > a PDF.  Very frustrating.
> >
> > Michael
> >
> >
> >> -Original Message-
> >> From: dovecot [mailto:dovecot-boun...@dovecot.org] On Behalf Of "Jan
> >> Büren"
> >> Sent: Friday, June 24, 2016 10:00 AM
> >> To: dovecot@dovecot.org
> >> Subject: Re: Postfix and Dovecot LDA vs. LMTP
> >>
> >> Hi Michael,
> >>
> >> > I'd appreciate comments from experienced users of postfix with
> >> dovecot.
> >> > Are
> >> > you using Dovecot LDA or LMTP and why?
> >> I have LMTP with dovecot running on Ubuntu 14.04 and Ubuntu 16.04.
> >>
> >> LDA is the worser solution, this is best explained in chapter LTMP in
> >> Peers dovecot book, which is unluckily in german and more or less out
> of
> >> print.
> >>
> >> But you can easily grasp the configuration details and reverse engineer
> >> the technical german phrases ...
> >>
> >>
> >> >
> >> >
> >> >
> >> > Thanks much,
> >> >
> >> > Michael
> >> >
> >> >
> >> >
> >> >
> >>
> >>
> >> --
> >> kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07
> >> DELUG-DVD Ausgabe
> >>
> >> Richardson & Büren GmbH
> >> Jan Büren
> >> Kölnstr. 311
> >> 53117 Bonn
> >>
> >> USt-IdNr. DE238288407
> >> Telefon: 0228 92 98 2012
> >>
> >>
> >> Durchwahl: 0228 92 97 8965
> >
> >
> 
> 
> --
> kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07
> DELUG-DVD Ausgabe
> 
> Richardson & Büren GmbH
> Jan Büren
> Weiherstraße 33a
> 53111 Bonn
> 
> USt-IdNr. DE238288407
> Telefon: 0228 92 98 2012
> 
> Durchwahl: 0228 92 97 8965

RE: Postfix and Dovecot LDA vs. LMTP

2016-06-25 Thread Jan Büren 
Hi Michael,
we´ll actually the author is reading this list as well.
Maybe he can help out here (cc).
As far as I know went the publisher bancrupt and that´s why currently
further prints and next books are delayed.

@Peer: Anyway, is there a english copy? More or less I am refering to the
chapter LMTP with dovecot and postfix.

Hmm, just with the information in the dovecot wiki, there is at least the
postfix part missing:
http://wiki2.dovecot.org/HowTo/PostfixDovecotLMTP

Best luck,
> Thanks Jan.
>
> I've been trying to obtain an English copy of the Dovecot book for months,
> prior to starting this project.  So far, I just can't find a copy.  It's
> too
> bad that the author/publisher won't do a second printing or, if they're
> not
> interested in making any more money, then release it to the public domain
> as
> a PDF.  Very frustrating.
>
> Michael
>
>
>> -Original Message-
>> From: dovecot [mailto:dovecot-boun...@dovecot.org] On Behalf Of "Jan
>> Büren"
>> Sent: Friday, June 24, 2016 10:00 AM
>> To: dovecot@dovecot.org
>> Subject: Re: Postfix and Dovecot LDA vs. LMTP
>>
>> Hi Michael,
>>
>> > I'd appreciate comments from experienced users of postfix with
>> dovecot.
>> > Are
>> > you using Dovecot LDA or LMTP and why?
>> I have LMTP with dovecot running on Ubuntu 14.04 and Ubuntu 16.04.
>>
>> LDA is the worser solution, this is best explained in chapter LTMP in
>> Peers dovecot book, which is unluckily in german and more or less out of
>> print.
>>
>> But you can easily grasp the configuration details and reverse engineer
>> the technical german phrases ...
>>
>>
>> >
>> >
>> >
>> > Thanks much,
>> >
>> > Michael
>> >
>> >
>> >
>> >
>>
>>
>> --
>> kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07
>> DELUG-DVD Ausgabe
>>
>> Richardson & Büren GmbH
>> Jan Büren
>> Kölnstr. 311
>> 53117 Bonn
>>
>> USt-IdNr. DE238288407
>> Telefon: 0228 92 98 2012
>>
>>
>> Durchwahl: 0228 92 97 8965
>
>


-- 
kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07
DELUG-DVD Ausgabe

Richardson & Büren GmbH
Jan Büren
Weiherstraße 33a
53111 Bonn

USt-IdNr. DE238288407
Telefon: 0228 92 98 2012

Durchwahl: 0228 92 97 8965

Re: Looking for NTLM config example

2016-06-25 Thread Mark Foley 
I've asked this several times over the past year with essentially zero 
responses. I'll keep it simple:

Does NTLM authentication work in Dovecot?

I'll post this one last time. If I still have no responses I'll have to 
conclude that no one
has actually tried this authentication method and it therefore does not work.

Thanks, --Mark

-Original Message-
From: Mark Foley 
Date: Fri, 22 Apr 2016 02:07:24 -0400
Organization: Ohio Highway Patrol Retirement System
To: dovecot@dovecot.org
Subject: Looking for NTLM config example

> Now that I am running Thunderbird on Linux and away from Windows/Outlook, I'd 
> like to take
> another run at setting up NTLM authentication from Thunderbird to my Samba4 
> AC/DC. 
>
> With the help of the samba maillist folks I was able to set up NTLM 
> authentication for domain
> user login.  I should be able to do the same for email!
>
> But, I need help. I went to 
> http://wiki2.dovecot.org/Authentication/Mechanisms/NTLM and got
> lost immediately. Are "authenticaion submethods" synonymous with "password 
> schemes"? The 7th
> line down says, "NTLM password scheme is required for NTLM, NTLM2 and 
> NTLMv2.", but in the
> referenced link I found no reference to "NTLM password scheme".
>
> The links http://wiki2.dovecot.org/Authentication/Mechanisms/NTLM and
> http://wiki2.dovecot.org/Authentication/PasswordSchemes, tell you what the 4 
> NTLM
> authentication submethods are, tells you what password schemes are, tells you 
> what the NTLM
> client/server handshake is, but doesn't actually tell you how to configure 
> dovecot config
> files.  I'm much more interested in the "how to" than in: "NTLMv2: server and 
> client nonce,
> MITM can't force downgrade" ...  whatever that means. 
>
> Anyway, probably it's my lack of understanding terminology.  I don't even 
> know what a "nonce"
> is.  But, I learn well from examples! Can somone please give me a sample 
> 10-auth.conf for NTML
> and any other supporting settings or configs I need?
>
> My current/working dovecot settings, which have been running perfectly for 
> well over a year
> now, are:
>
> $ dovecot -n
> # 2.2.15: /usr/local/etc/dovecot/dovecot.conf
> # OS: Linux 3.10.17 x86_64 Slackware 14.1
> auth_debug_passwords = yes
> auth_mechanisms = plain login
> auth_verbose = yes
> auth_verbose_passwords = plain
> disable_plaintext_auth = no
> info_log_path = /var/log/dovecot_info
> mail_location = maildir:~/Maildir
> passdb {
>   driver = shadow
> }
> protocols = imap
> ssl_cert = 
>  ssl_key =  userdb {
>   driver = passwd
> }
> verbose_ssl = yes
>
>
> Here's what I've tried so far as 10-auth.conf:
>
> disable_plaintext_auth = no
> auth_use_winbind = yes
> info_log_path = /var/log/dovecot_info
> auth_verbose = yes
> auth_debug_passwords = yes
> auth_verbose_passwords= plain
> auth_winbind_helper_path = /usr/bin/ntlm_auth
>
> auth_mechanisms = ntlm plain login
>
> userdb {
>   driver = passwd
>   args = username_format=%n allow_all_users=yes
>
> }
>
>
> Which gives me a dovecot -n of:
>
> $ dovecot -n
> # 2.2.15: /usr/local/etc/dovecot/dovecot.conf
> # OS: Linux 3.10.17 x86_64 Slackware 14.1
> auth_debug_passwords = yes
> auth_mechanisms = ntlm plain login
> auth_use_winbind = yes
> auth_verbose = yes
> auth_verbose_passwords = plain
> disable_plaintext_auth = no
> info_log_path = /var/log/dovecot_info
> mail_location = maildir:~/Maildir
> protocols = imap
> ssl_cert = 
>  ssl_key =  userdb {
>   args = username_format=%n allow_all_users=yes
>   driver = passwd
> }
> verbose_ssl = yes
>
>
> I configured Thunderbird for NTLM authentication, then tried sending a 
> message, I got the
> following in /var/log/dovecot_info:
>
> Apr 22 01:37:57 imap-login: Debug: SSL: elliptic curve secp384r1 will be used 
> for ECDH and ECDHE key exchanges
> Apr 22 01:37:57 imap-login: Debug: SSL: elliptic curve secp384r1 will be used 
> for ECDH and ECDHE key exchanges
> Apr 22 01:37:57 auth: Debug: Loading modules from directory: 
> /usr/local/lib/dovecot/auth
> Apr 22 01:37:57 imap-login: Info: Disconnected: Auth process broken 
> (disconnected before auth was ready, waited 0 secs): user=<>, 
> rip=192.168.0.58, lip=98.102.63.107, session=
>
>
> On Thunderbird I got the error, "Sending of the message failed.  The 
> Outlgoing server (SMTP)
> my.server.name does not support the selected authentication method.  Please 
> change the
> 'Autnentication method' in 'Account Settings | Outgoing Server (SMTP)'."
>
> Clearly, something is configured wrong, but I've no clue what.
>
> Can I get some advice?
>
> THX --Mark
>From dovecot-boun...@dovecot.org  Fri Apr 22 02:07:47 2016
Return-Path: 
X-Virus-Status: Clean
X-Virus-Scanned: clamav-milter 0.98.6 at mail
X-Spam-Checker-Version: SpamAssassin 3.3.2-_revision__1.19__ (2011-06-06) on
mail.hprs.local
X-Spam-Level: 
X-Spam-Status: No, score=-106.0 required=3.0 tests=USER_IN_WHITELIST,
USER_IN_WHITELIST_TO autolearn=unavailable

RE: Postfix and Dovecot LDA vs. LMTP

2016-06-25 Thread Michael Fox 
> The most crucial difference is that LDA is intended for delivering email
> to a *real* user.
> 
> Aki


Thanks Aki.

Pardon my ignorance, but why does it matter?  In other words, what is it that 
makes LDA better for a *real* user and LMTP better for a virtual user?

Thanks,
Michael

RE: Postfix and Dovecot LDA vs. LMTP

2016-06-25 Thread Michael Fox 
Thanks Jan.

I've been trying to obtain an English copy of the Dovecot book for months,
prior to starting this project.  So far, I just can't find a copy.  It's too
bad that the author/publisher won't do a second printing or, if they're not
interested in making any more money, then release it to the public domain as
a PDF.  Very frustrating.

Michael


> -Original Message-
> From: dovecot [mailto:dovecot-boun...@dovecot.org] On Behalf Of "Jan
> Büren"
> Sent: Friday, June 24, 2016 10:00 AM
> To: dovecot@dovecot.org
> Subject: Re: Postfix and Dovecot LDA vs. LMTP
> 
> Hi Michael,
> 
> > I'd appreciate comments from experienced users of postfix with dovecot.
> > Are
> > you using Dovecot LDA or LMTP and why?
> I have LMTP with dovecot running on Ubuntu 14.04 and Ubuntu 16.04.
> 
> LDA is the worser solution, this is best explained in chapter LTMP in
> Peers dovecot book, which is unluckily in german and more or less out of
> print.
> 
> But you can easily grasp the configuration details and reverse engineer
> the technical german phrases ...
> 
> 
> >
> >
> >
> > Thanks much,
> >
> > Michael
> >
> >
> >
> >
> 
> 
> --
> kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07
> DELUG-DVD Ausgabe
> 
> Richardson & Büren GmbH
> Jan Büren
> Kölnstr. 311
> 53117 Bonn
> 
> USt-IdNr. DE238288407
> Telefon: 0228 92 98 2012
> 
> 
> Durchwahl: 0228 92 97 8965