[Dovecot] dovecot and tcpwrappers

Kees Lemmens lemmens_kees at yahoo.co.uk
Wed Jul 27 16:39:42 EEST 2011 

Hi,

I think I sorted it out : I also had to add a service section to 
dovecot.conf and I had to change the old "imap-login" settings in 
/etc./hosts.allow to be simply "imap" now.

service tcpwrap {                                                                                                           
  unix_listener login/tcpwrap {                                                                                             
  group = $default_login_user                                                                                               
  mode = 0600                                                                                                               
  user = $default_login_user                                                                                                
  }                                                                                                                         
}                                                                                                                           

After this it seems to work fine !

Timo : maybe this could be documented a little better ? It took me quite a 
while now to figure it all out.

About the "not running from inetd" problem : would it be enough to copy the 
modules to the chrooted directory to avoid this connect(imap-login) problem 
? 

regards,
Kees Lemmens.

On Wednesday, July 27, 2011, Kees Lemmens wrote:
> Hi Timo,others,
> 
> Adding login_access_sockets = tcpwrap wasn't enough : I also had to
> recompile dovecot 2.0.13 with the --with-libwrap option. Then linking
> failed as it didn't link with libnsl.so but that was easily fixed.
> 
> However, if I try to connect now with tcpwrap switched on I still have a
> problem. It doesn't connect and shows the following error message :
> 
> tail /var/log/dovecot.log
> Jul 27 15:05:42 auth: Debug: Loading modules from directory:
> /opt64/dovecot-2.0.13/lib/dovecot/auth
> Jul 27 15:05:44 auth: Debug: auth client connected (pid=20071)
> Jul 27 15:05:44 imap-login: Error: connect(tcpwrap) failed: No such file
> or directory
> 
> Any idea what I might have forgotten ?
> 
> Thanks a lot for the response !
> 
> regards,
> Kees Lemmens.
> 
> On Wednesday, July 27, 2011, Timo Sirainen wrote:
> > On Wed, 2011-07-27 at 14:16 +0200, Kees Lemmens wrote:
> > > Since yesterday I have dovecot 2.0.13. But in version 2.0.13 it
> > > seems that starting using inetd doesn't work anymore : I only get a
> > > strange
> > 
> > > error message if I try to connect using telnet :
> > Yeah, won't work.
> > 
> > > Is dovecot indeed ignoring hosts.allow/deny ?
> > 
> > Yes. But you can enable tcpwrappers with:
> > 
> > login_access_sockets = tcpwrap
> > 
> > > BTW: I tried to post on the mailinglist but it seems I can't access
> > > them it the moment, altough I did subscribe and login. Is there
> > > anything wrong ?
> > 
> > Nothing's wrong as far as I know..


-- 
With best regards,
Kees Lemmens.

Email : lemmens<underscore>kees<at>yahoo<dot>co<dot>uk
-----------------------------------------------------------------------
NOTICE : to minimize spam I'll trash HTML based email immediately ...
BTW    : Ceterum Censeo Microsoftem esse Delendam

More information about the dovecot mailing list