"dovecot" == dovecot <dovecot@ptld.com> writes:
Me personally, this is why i prefer to use virtual users stored in a database for email and never use linux users. I have ultimate control over what users can be authenticated or receive email. I can add flags to the DB query to fail an otherwise valid user. Why would i want a root@ email address? Why would i want my system to accept email for httpd from some stranger on the internet? Why would i want to have to create a linux user at the OS level just to add a mailbox?
This is 110% agree. It's just so simple to use purely virtual users, even if you are pulling the login info from LDAP/AD for real users. But you don't need to allow *any* logins to the dovecot or postfix server using local logins at all. It's just better security.
John