[Dovecot] Question about auth multiple configuration

Heiko Schlittermann hs at schlittermann.de
Wed Apr 28 22:34:03 EEST 2010

Fabrice MATHIEU <simpsons_bart_cs at hotmail.com> (Mi 28 Apr 2010 19:12:31 CEST):
> Hello,
> My mail system is build with postfix, dovecot and roundcube.
> In first time users can view and "manage" their mail only on the webmail.
> So this one (webmail) use IMAP (no tls/ssl at all) authentication to give access to users maildir. This connection is made on the 'loopback' interface and use PLAIN method.
> This works fine (configuration below without ssl parameters).
> That's normal. But client(network) is considered by dovecot as secure, so won't the auth possible without certificate ?
> Can't we make two auth policy to make secure (client crt require) for public IP/client and less "secure" (without crt client) for local process (postfix) and local newtwork( for roundcube ?
> I see section "auth default { ... }" and is used by ... default ! But can we make an other one to make this two particular authentication on the same "instance" ?

If I understood well, you're looking for the config option like
login_trusted_networks (as available in 1.2.11, I don't know since when).

    Best regards from Dresden/Germany
    Viele Grüße aus Dresden
    Heiko Schlittermann
 SCHLITTERMANN.de ---------------------------- internet & unix support -
 Heiko Schlittermann HS12-RIPE -----------------------------------------
 gnupg encrypted messages are welcome - key ID: 48D0359B ---------------
 gnupg fingerprint: 3061 CFBF 2D88 F034 E8D2  7E92 EE4E AC98 48D0 359B -
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
Url : http://dovecot.org/pipermail/dovecot/attachments/20100428/48309d8b/attachment.bin 

More information about the dovecot mailing list