On Sat, 2010-12-04 at 20:45 +0000, Mark Alan wrote:
passdb: driver: pam passdb: driver: passwd-file args: /etc/dovecot/passwd userdb: driver: passwd userdb: driver: static args: uid=vmail gid=vmail home=/home/vmail/%u .../...
QUESTION 1: To avoid those Authentication failure errors should I also comment out the passdb pam {...} and userdb passwd {...} blocks in the main /etc/dovecot/dovecot.conf?
Yes.
I was thinking in something like: sudo sed -i '/passdb pam {/,/}/s/^/#/' /etc/dovecot/dovecot.conf sudo sed -i '/userdb passwd {/,/}/s/^/#/' /etc/dovecot/dovecot.conf
No idea if that works.
QUESTION 2: the final email arrives with an email header that includes: Received: from desk.example.com (unknown [127.0.1.1]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by mail.example.com (Postfix) with ESMTPSA id F24707FE6D for example@example.com; Sat, 4 Dec 2010 18:16:00 +0000 (WET)
Does this mean that I have SSL/TLS properly configured? The "No client certificate requested" is supposed to be there?
Not a Dovecot question, so I don't know. But my guess is that it means client connected using TLS, but server didn't require a client to send a client-side certificate. Very few people use client certs, so I don't know why that would be explicitly mentioned there.