allow_nets equivalent for all users?
Hi,
It is my understanding that allow_nets is a field that gets used in a password database, and therefore is a per-user setting.
Is there an equivalent method for defining allowed network(s) for ALL users? In other words, a single setting that applies to every user?
Thanks, Bryan
On 14/03/2022 18:31 Bryan K. Walton bwalton.21225@leepfrog.com wrote:
Hi,
It is my understanding that allow_nets is a field that gets used in a password database, and therefore is a per-user setting.
Is there an equivalent method for defining allowed network(s) for ALL users? In other words, a single setting that applies to every user?
Thanks, Bryan
If you really want, you can add default_fields = allow_nets=value or override_fields = allow_nets=value to the passdb.
But question arises, why not just firewall the machine and allow connections from trusted networks only?
Aki
On Mon, Mar 14, 2022 at 06:33:16PM +0200, Aki Tuomi wrote:
If you really want, you can add default_fields = allow_nets=value or override_fields = allow_nets=value to the passdb.
But question arises, why not just firewall the machine and allow connections from trusted networks only?
Thanks, Aki,
Our Dovecot configures users against a directory, so I was hoping for something that could go into dovecot.conf. As for why though: defense in depth.
Thanks, Bryan
On 14/03/2022 18:48 Bryan K. Walton bwalton.21225@leepfrog.com wrote:
On Mon, Mar 14, 2022 at 06:33:16PM +0200, Aki Tuomi wrote:
If you really want, you can add default_fields = allow_nets=value or override_fields = allow_nets=value to the passdb.
But question arises, why not just firewall the machine and allow connections from trusted networks only?
Thanks, Aki,
Our Dovecot configures users against a directory, so I was hoping for something that could go into dovecot.conf. As for why though: defense in depth.
Thanks, Bryan
you can put
passdb { .... default_fields = allow_nets=value }
in dovecot.conf
Aki
participants (2)
-
Aki Tuomi
-
Bryan K. Walton