[Dovecot] Dovecot + SASL + allow_nets

Marc Cuypers m.cuypers at mgvd.be
Thu Dec 13 12:36:11 EET 2007


Andrew Garner schreef:
>> Timo Sirainen schreef:
>>> On Mon, 2007-12-03 at 14:36 +0100, Marc Cuypers wrote:
>>>> When using dovecot for authentication of an SASL (postfix) request, i
>>>> cannot use the allow_nets parameter.  The IP-address of the requester is
>>>> not known in dovecot.
>>>>
>>>> I would like to allow sasl for certain users, others are not allowed to
>>>> access via SASL.
>>>> Some users can have access to imap and pop3 from certain IP-addresses.
>>>>
>>>> How could i combine this in then dovecot configuration?
>>> Since Postfix doesn't send the IP to Dovecot, there isn't anything on
>>> Dovecot's side you can do. You could try asking about this in Postfix
>>> list.. Someone at least had a patch which allowed sending local IP to
>>> Dovecot (http://marc.info/?t=119306971600010&r=1&w=2). Maybe it sends
>>> remote IP as well.
> 
> I wrote that patch.   It passes both endpoints (remote & local)
> through to dovecot .    This lets you restrict smtp-auth just like
> pop3 or imap using the remote IP.    In my case, I had played around
> with a quick hack for doing per-ip realming (using the local IP) w/
> dovecot-sql.
Hi Andrew,

Where can i find the patch?

--
Marc


More information about the dovecot mailing list