[Dovecot] User another userdb to sasl
Hello,
I use Dovecot 1.0.12 with Postfix on FreeBSD. It works perfectly, but I have a question. My users are virtual (stocked in a MySQL database). I use SASL Dovecot authentification, and SASL uses my userdb (for POP/IMAP access).
However, I would like my users have an other login/password to send email with SMTP/SASL. Or, I don't want my users use the same login/password for POP/IMAP than SMTP. More, I don't want some users could send emails with their login/password, but I want they can fetch their mails.
I'm looking for an option in my dovecot.conf to specifie a table SQL for SASL authentification (and don't use same table SQL than IMAP/POP access).
How I could do for this problem? Do you have an idea? Or, simply, is it possible with Dovecot SASL? I read all Dovecot wiki, with no results...
Thanks very much.
Nicolas
On Fri, 7 Mar 2008, Nicolas Letellier wrote:
Hello,
I use Dovecot 1.0.12 with Postfix on FreeBSD. It works perfectly, but I have a question. My users are virtual (stocked in a MySQL database). I use SASL Dovecot authentification, and SASL uses my userdb (for POP/IMAP access).
However, I would like my users have an other login/password to send email with SMTP/SASL. Or, I don't want my users use the same login/password for POP/IMAP than SMTP. More, I don't want some users could send emails with their login/password, but I want they can fetch their mails.
I'm looking for an option in my dovecot.conf to specifie a table SQL for SASL authentification (and don't use same table SQL than IMAP/POP access).
How I could do for this problem? Do you have an idea? Or, simply, is it possible with Dovecot SASL? I read all Dovecot wiki, with no results...
One solution, off of the top of my head, would be two dovecot instances, with only one providing the SASL authentication socket to postfix, which would be configured with seperate authentication methods.
You might want to look into /bin/checkpassword authentication, I can't imagine using anything else.
Andy
Andy Dills Xecunet, Inc. www.xecu.net 301-682-9972
On 3/7/2008, Nicolas Letellier (nicolas@nicoelro.net) wrote:
However, I would like my users have an other login/password to send email with SMTP/SASL. Or, I don't want my users use the same login/password for POP/IMAP than SMTP
Since dovecot is not an smtp server, this is not a dovecot issue.
You need to configure your MTA to use whatever auth system you want it to use...
--
Best regards,
Charles
On Fri, 2008-03-07 at 18:35 +0100, Nicolas Letellier wrote:
I use Dovecot 1.0.12 with Postfix on FreeBSD. It works perfectly, but I have a question. My users are virtual (stocked in a MySQL database). I use SASL Dovecot authentification, and SASL uses my userdb (for POP/IMAP access).
However, I would like my users have an other login/password to send email with SMTP/SASL. Or, I don't want my users use the same login/password for POP/IMAP than SMTP. More, I don't want some users could send emails with their login/password, but I want they can fetch their mails.
I'm looking for an option in my dovecot.conf to specifie a table SQL for SASL authentification (and don't use same table SQL than IMAP/POP access).
Your use of word "SASL" is confusing. See http://wiki.dovecot.org/Sasl
But I guess you want your password_query to do different things based on %s. For example:
select password from users where username = '%u' and service = '%Ls'
%Ls expands to imap, pop3 or smtp. http://wiki.dovecot.org/Variables tells more about the variables.
participants (4)
-
Andy Dills
-
Charles Marcus
-
Nicolas Letellier
-
Timo Sirainen