[Dovecot] Requiring STARTTLS only on some networks

Phil Howard ttiphil at gmail.com
Fri May 7 17:35:59 EEST 2010


On Fri, May 7, 2010 at 10:26, Pascal Volk <
user+dovecot at localhost.localdomain.org<user%2Bdovecot at localhost.localdomain.org>
> wrote:

>
> By default "disable_plaintext_auth = yes" is set, in all Dovecot
> versions.
> With Dovecot v2.0 you can put something like the following in your
> dovecot.conf:
>
> remote 192.168.111.0/24 {
>  disable_plaintext_auth = no
> }
> remote fdfd:ffff:dddd::0/48 {
>  disable_plaintext_auth = no
> }
>

Do these "remote sections" need to be in a specific place in the config
file, or can they just be put where the (global) disable_plaintext_auth is
located?

Do you know if the remote address gets passed from Postfix on to Dovecot
through the authentication connection (when Dovecot is doing the
authentication for Postfix mail submission) so that these same remote rules
apply?


More information about the dovecot mailing list