[Dovecot] Dovecot SASL

Pascal Volk user+dovecot at localhost.localdomain.org
Thu Jun 17 16:30:42 EEST 2010


On 06/17/2010 02:32 PM Tseveendorj Ochirlantuu wrote:
> disable_plaintext_auth is already set yes in
> /etc/dovecot/conf.d/01-dovecot-postfix.conf. why it didn't appear.
> 
> Today I just upgraded dovecot please see the dovecot -n below.
> 
> # 1.2.9: /etc/dovecot/dovecot.conf
> # OS: Linux 2.6.32-22-server x86_64 Ubuntu 10.04 LTS
> log_timestamp: %Y-%m-%d %H:%M:%S
> protocols: imap pop3 imaps pop3s managesieve
> ssl_cert_file: /etc/ssl/certs/ssl-mail.pem
> ssl_key_file: /etc/ssl/private/ssl-mail.key
> ssl_cipher_list:
> ALL:!LOW:!SSLv2:ALL:!aNULL:!ADH:!eNULL:!EXP:RC4+RSA:+HIGH:+MEDIUM
> login_dir: /var/run/dovecot/login
> login_executable(default): /usr/lib/dovecot/imap-login
> login_executable(imap): /usr/lib/dovecot/imap-login
> login_executable(pop3): /usr/lib/dovecot/pop3-login
> login_executable(managesieve): /usr/lib/dovecot/managesieve-login
> mail_privileged_group: mail
> mail_location: maildir:~/Maildir
> mbox_write_locks: fcntl dotlock
> mail_executable(default): /usr/lib/dovecot/imap
> mail_executable(imap): /usr/lib/dovecot/imap
> mail_executable(pop3): /usr/lib/dovecot/pop3
> mail_executable(managesieve): /usr/lib/dovecot/managesieve
> mail_plugin_dir(default): /usr/lib/dovecot/modules/imap
> mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap
> mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3
> mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve
> imap_client_workarounds(default): outlook-idle delay-newmail
> imap_client_workarounds(imap): outlook-idle delay-newmail
> imap_client_workarounds(pop3):
> imap_client_workarounds(managesieve):
> pop3_client_workarounds(default):
> pop3_client_workarounds(imap):
> pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh
> pop3_client_workarounds(managesieve):
> lda:
>   postmaster_address: postmaster
>   mail_plugins: sieve
>   quota_full_tempfail: yes
>   deliver_log_format: msgid=%m: %$
>   rejection_reason: Your message to <%t> was automatically rejected:%n%r
> auth default:
>   mechanisms: plain login
>   passdb:
>     driver: pam
>   userdb:
>     driver: passwd
>   socket:
>     type: listen
>     client:
>       path: /var/spool/postfix/private/dovecot-auth
>       mode: 432
>       user: postfix
>       group: postfix
> plugin:
>   sieve: ~/.dovecot.sieve
>   sieve_dir: ~/sieve
> 

By default the disable_plaintext_auth setting is set to yes. dovecot -n
reports only non-default settings. So when you set
disable_plaintext_auth to yes (its default value) in your dovecot.conf
and run `dovecot -n | grep disable_plaintext_auth`, you will see
nothing.

With Dovecot v2.0 you can use `doveconf -N`, to see non-default +
explicit configured default settings.

Back to disable_plaintext_auth: Let me copy and paste from the
dovecot.conf:
# Disable LOGIN command and all other plaintext authentications unless
# SSL/TLS is used (LOGINDISABLED capability). Note that if the remote IP
# matches the local IP (ie. you're connecting from the same computer), the
# connection is considered secure and plaintext authentication is allowed.
#disable_plaintext_auth = yes

You can't use palintext authentication, as long plaintext auth is disabled.


Regards,
Pascal
-- 
The trapper recommends today: c01dcofe.1016815 at localdomain.org


More information about the dovecot mailing list