RE: Postfix and Dovecot LDA vs. LMTP
On 26/06/2016 02:39, Michael Fox wrote: The most crucial difference is that LDA is intended for delivering email to a *real* user. Aki Thanks Aki. Pardon my ignorance, but why does it matter? In other words, what is it that makes LDA better for a *real* user and LMTP better for a virtual user? Thanks, Michael We've used LDA for virtual users for a very very long time, though we use multiple front ends, each with postfix/dovecot and mysql (replicated DB) they all talk to one big storage backend via NFS (as do the pop3/imap/webmails servers), we looked at lmtp once but saw no advantages given the setup. -- If you have the urge to reply to all rather than reply to list, you best first read http://members.ausics.net/qwerty/
RE: Postfix and Dovecot LDA vs. LMTP
> imho wiki is the way to go to be up2date with information, else it would > make more sense to make more informative man pages in dovecot, that will > never be outdated I agree that the wiki is useful and important. It just doesn't have any depth regarding the "why" and "how" part of the equation. For example, WHY LMTP vs. LDA (just one example). There are many config snippets with a couple of lines of explanation and not much about how they fit into the big picture. And some config examples (like the default_fields and override_fields issue I reported earlier) simply don't work. In the Postfix world, there is an old Postfix book (older than Peer's book) which goes into a lot of the "why" and "how". It takes you through the whole process from nothing to a full-fledged server and really gives you the big picture. All of that is still valid today. Then the postfix website is the place to go for up-to-date description of each config option. Even there, the web pages contain much more descriptive information about each config option -- how it's used, when, why, side-effects, etc. If I knew what I was doing, I'd offer to help add to the wiki. But as a newbie, I don't even know what I don't know. ;-) So I'm hoping that Peer's book will provide that overall big-picture and that I can find an English copy somehow. Michael
Re: Postfix and Dovecot LDA vs. LMTP
On 2016-06-25 23:56, Michael Fox wrote: Peer: Is there any way to get an English copy of your book? imho wiki is the way to go to be up2date with information, else it would make more sense to make more informative man pages in dovecot, that will never be outdated that sayed i am intrested in the book aswell
RE: Postfix and Dovecot LDA vs. LMTP
Thanks again Jan. I appear to have basic LMTP working now (messages are delivered to virtual mailboxes of valid recipients and non-existent recipients are rejected). Cool. Still lots more work to do. But I think I could really use the Dovecot book. I find the wiki to be lacking in explanation. So, too often I'm just copying without knowing the reason why or how some things fit together. Peer: Is there any way to get an English copy of your book? Michael > -Original Message- > From: dovecot [mailto:dovecot-boun...@dovecot.org] On Behalf Of "Jan > Büren" > Sent: Saturday, June 25, 2016 12:53 PM > To: dovecot@dovecot.org > Cc: Peer Heinlein> Subject: RE: Postfix and Dovecot LDA vs. LMTP > > Hi Michael, > we´ll actually the author is reading this list as well. > Maybe he can help out here (cc). > As far as I know went the publisher bancrupt and that´s why currently > further prints and next books are delayed. > > @Peer: Anyway, is there a english copy? More or less I am refering to the > chapter LMTP with dovecot and postfix. > > Hmm, just with the information in the dovecot wiki, there is at least the > postfix part missing: > http://wiki2.dovecot.org/HowTo/PostfixDovecotLMTP > > Best luck, > > Thanks Jan. > > > > I've been trying to obtain an English copy of the Dovecot book for > months, > > prior to starting this project. So far, I just can't find a copy. It's > > too > > bad that the author/publisher won't do a second printing or, if they're > > not > > interested in making any more money, then release it to the public > domain > > as > > a PDF. Very frustrating. > > > > Michael > > > > > >> -Original Message- > >> From: dovecot [mailto:dovecot-boun...@dovecot.org] On Behalf Of "Jan > >> Büren" > >> Sent: Friday, June 24, 2016 10:00 AM > >> To: dovecot@dovecot.org > >> Subject: Re: Postfix and Dovecot LDA vs. LMTP > >> > >> Hi Michael, > >> > >> > I'd appreciate comments from experienced users of postfix with > >> dovecot. > >> > Are > >> > you using Dovecot LDA or LMTP and why? > >> I have LMTP with dovecot running on Ubuntu 14.04 and Ubuntu 16.04. > >> > >> LDA is the worser solution, this is best explained in chapter LTMP in > >> Peers dovecot book, which is unluckily in german and more or less out > of > >> print. > >> > >> But you can easily grasp the configuration details and reverse engineer > >> the technical german phrases ... > >> > >> > >> > > >> > > >> > > >> > Thanks much, > >> > > >> > Michael > >> > > >> > > >> > > >> > > >> > >> > >> -- > >> kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07 > >> DELUG-DVD Ausgabe > >> > >> Richardson & Büren GmbH > >> Jan Büren > >> Kölnstr. 311 > >> 53117 Bonn > >> > >> USt-IdNr. DE238288407 > >> Telefon: 0228 92 98 2012 > >> > >> > >> Durchwahl: 0228 92 97 8965 > > > > > > > -- > kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07 > DELUG-DVD Ausgabe > > Richardson & Büren GmbH > Jan Büren > Weiherstraße 33a > 53111 Bonn > > USt-IdNr. DE238288407 > Telefon: 0228 92 98 2012 > > Durchwahl: 0228 92 97 8965
RE: Postfix and Dovecot LDA vs. LMTP
Hi Michael, we´ll actually the author is reading this list as well. Maybe he can help out here (cc). As far as I know went the publisher bancrupt and that´s why currently further prints and next books are delayed. @Peer: Anyway, is there a english copy? More or less I am refering to the chapter LMTP with dovecot and postfix. Hmm, just with the information in the dovecot wiki, there is at least the postfix part missing: http://wiki2.dovecot.org/HowTo/PostfixDovecotLMTP Best luck, > Thanks Jan. > > I've been trying to obtain an English copy of the Dovecot book for months, > prior to starting this project. So far, I just can't find a copy. It's > too > bad that the author/publisher won't do a second printing or, if they're > not > interested in making any more money, then release it to the public domain > as > a PDF. Very frustrating. > > Michael > > >> -Original Message- >> From: dovecot [mailto:dovecot-boun...@dovecot.org] On Behalf Of "Jan >> Büren" >> Sent: Friday, June 24, 2016 10:00 AM >> To: dovecot@dovecot.org >> Subject: Re: Postfix and Dovecot LDA vs. LMTP >> >> Hi Michael, >> >> > I'd appreciate comments from experienced users of postfix with >> dovecot. >> > Are >> > you using Dovecot LDA or LMTP and why? >> I have LMTP with dovecot running on Ubuntu 14.04 and Ubuntu 16.04. >> >> LDA is the worser solution, this is best explained in chapter LTMP in >> Peers dovecot book, which is unluckily in german and more or less out of >> print. >> >> But you can easily grasp the configuration details and reverse engineer >> the technical german phrases ... >> >> >> > >> > >> > >> > Thanks much, >> > >> > Michael >> > >> > >> > >> > >> >> >> -- >> kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07 >> DELUG-DVD Ausgabe >> >> Richardson & Büren GmbH >> Jan Büren >> Kölnstr. 311 >> 53117 Bonn >> >> USt-IdNr. DE238288407 >> Telefon: 0228 92 98 2012 >> >> >> Durchwahl: 0228 92 97 8965 > > -- kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07 DELUG-DVD Ausgabe Richardson & Büren GmbH Jan Büren Weiherstraße 33a 53111 Bonn USt-IdNr. DE238288407 Telefon: 0228 92 98 2012 Durchwahl: 0228 92 97 8965
Re: Looking for NTLM config example
I've asked this several times over the past year with essentially zero responses. I'll keep it simple: Does NTLM authentication work in Dovecot? I'll post this one last time. If I still have no responses I'll have to conclude that no one has actually tried this authentication method and it therefore does not work. Thanks, --Mark -Original Message- From: Mark FoleyDate: Fri, 22 Apr 2016 02:07:24 -0400 Organization: Ohio Highway Patrol Retirement System To: dovecot@dovecot.org Subject: Looking for NTLM config example > Now that I am running Thunderbird on Linux and away from Windows/Outlook, I'd > like to take > another run at setting up NTLM authentication from Thunderbird to my Samba4 > AC/DC. > > With the help of the samba maillist folks I was able to set up NTLM > authentication for domain > user login. I should be able to do the same for email! > > But, I need help. I went to > http://wiki2.dovecot.org/Authentication/Mechanisms/NTLM and got > lost immediately. Are "authenticaion submethods" synonymous with "password > schemes"? The 7th > line down says, "NTLM password scheme is required for NTLM, NTLM2 and > NTLMv2.", but in the > referenced link I found no reference to "NTLM password scheme". > > The links http://wiki2.dovecot.org/Authentication/Mechanisms/NTLM and > http://wiki2.dovecot.org/Authentication/PasswordSchemes, tell you what the 4 > NTLM > authentication submethods are, tells you what password schemes are, tells you > what the NTLM > client/server handshake is, but doesn't actually tell you how to configure > dovecot config > files. I'm much more interested in the "how to" than in: "NTLMv2: server and > client nonce, > MITM can't force downgrade" ... whatever that means. > > Anyway, probably it's my lack of understanding terminology. I don't even > know what a "nonce" > is. But, I learn well from examples! Can somone please give me a sample > 10-auth.conf for NTML > and any other supporting settings or configs I need? > > My current/working dovecot settings, which have been running perfectly for > well over a year > now, are: > > $ dovecot -n > # 2.2.15: /usr/local/etc/dovecot/dovecot.conf > # OS: Linux 3.10.17 x86_64 Slackware 14.1 > auth_debug_passwords = yes > auth_mechanisms = plain login > auth_verbose = yes > auth_verbose_passwords = plain > disable_plaintext_auth = no > info_log_path = /var/log/dovecot_info > mail_location = maildir:~/Maildir > passdb { > driver = shadow > } > protocols = imap > ssl_cert = > ssl_key = userdb { > driver = passwd > } > verbose_ssl = yes > > > Here's what I've tried so far as 10-auth.conf: > > disable_plaintext_auth = no > auth_use_winbind = yes > info_log_path = /var/log/dovecot_info > auth_verbose = yes > auth_debug_passwords = yes > auth_verbose_passwords= plain > auth_winbind_helper_path = /usr/bin/ntlm_auth > > auth_mechanisms = ntlm plain login > > userdb { > driver = passwd > args = username_format=%n allow_all_users=yes > > } > > > Which gives me a dovecot -n of: > > $ dovecot -n > # 2.2.15: /usr/local/etc/dovecot/dovecot.conf > # OS: Linux 3.10.17 x86_64 Slackware 14.1 > auth_debug_passwords = yes > auth_mechanisms = ntlm plain login > auth_use_winbind = yes > auth_verbose = yes > auth_verbose_passwords = plain > disable_plaintext_auth = no > info_log_path = /var/log/dovecot_info > mail_location = maildir:~/Maildir > protocols = imap > ssl_cert = > ssl_key = userdb { > args = username_format=%n allow_all_users=yes > driver = passwd > } > verbose_ssl = yes > > > I configured Thunderbird for NTLM authentication, then tried sending a > message, I got the > following in /var/log/dovecot_info: > > Apr 22 01:37:57 imap-login: Debug: SSL: elliptic curve secp384r1 will be used > for ECDH and ECDHE key exchanges > Apr 22 01:37:57 imap-login: Debug: SSL: elliptic curve secp384r1 will be used > for ECDH and ECDHE key exchanges > Apr 22 01:37:57 auth: Debug: Loading modules from directory: > /usr/local/lib/dovecot/auth > Apr 22 01:37:57 imap-login: Info: Disconnected: Auth process broken > (disconnected before auth was ready, waited 0 secs): user=<>, > rip=192.168.0.58, lip=98.102.63.107, session= > > > On Thunderbird I got the error, "Sending of the message failed. The > Outlgoing server (SMTP) > my.server.name does not support the selected authentication method. Please > change the > 'Autnentication method' in 'Account Settings | Outgoing Server (SMTP)'." > > Clearly, something is configured wrong, but I've no clue what. > > Can I get some advice? > > THX --Mark >From dovecot-boun...@dovecot.org Fri Apr 22 02:07:47 2016 Return-Path: X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.98.6 at mail X-Spam-Checker-Version: SpamAssassin 3.3.2-_revision__1.19__ (2011-06-06) on mail.hprs.local X-Spam-Level: X-Spam-Status: No, score=-106.0 required=3.0 tests=USER_IN_WHITELIST, USER_IN_WHITELIST_TO autolearn=unavailable
RE: Postfix and Dovecot LDA vs. LMTP
> The most crucial difference is that LDA is intended for delivering email > to a *real* user. > > Aki Thanks Aki. Pardon my ignorance, but why does it matter? In other words, what is it that makes LDA better for a *real* user and LMTP better for a virtual user? Thanks, Michael
RE: Postfix and Dovecot LDA vs. LMTP
Thanks Jan. I've been trying to obtain an English copy of the Dovecot book for months, prior to starting this project. So far, I just can't find a copy. It's too bad that the author/publisher won't do a second printing or, if they're not interested in making any more money, then release it to the public domain as a PDF. Very frustrating. Michael > -Original Message- > From: dovecot [mailto:dovecot-boun...@dovecot.org] On Behalf Of "Jan > Büren" > Sent: Friday, June 24, 2016 10:00 AM > To: dovecot@dovecot.org > Subject: Re: Postfix and Dovecot LDA vs. LMTP > > Hi Michael, > > > I'd appreciate comments from experienced users of postfix with dovecot. > > Are > > you using Dovecot LDA or LMTP and why? > I have LMTP with dovecot running on Ubuntu 14.04 and Ubuntu 16.04. > > LDA is the worser solution, this is best explained in chapter LTMP in > Peers dovecot book, which is unluckily in german and more or less out of > print. > > But you can easily grasp the configuration details and reverse engineer > the technical german phrases ... > > > > > > > > > > Thanks much, > > > > Michael > > > > > > > > > > > -- > kivitendo mit Schnelleinstieg zu RB-Druckvorlagen im Linux-Magazin 07 > DELUG-DVD Ausgabe > > Richardson & Büren GmbH > Jan Büren > Kölnstr. 311 > 53117 Bonn > > USt-IdNr. DE238288407 > Telefon: 0228 92 98 2012 > > > Durchwahl: 0228 92 97 8965