[Dovecot] dovecot w/ libwrap on fbsd
Gelu Lupas
petre74 at yahoo.com
Mon Aug 29 23:26:06 EEST 2011
Dovecot with libwrap doesn't work on FreeBSD for some reason or another.
I have these lines in my /etc/hosts.allow:
ALL: LOCAL 127.0.0.1: allow
pop3: ALL: allow
ALL: ALL: deny
Yet when you try to telnet to localhost, port 110 this is what happens:
Aug 29 22:48:38 dodo dovecot: pop3-login: Error: connect(tcpwrap) failed: Permission denied
I also tried auth_debug=yes to see what's wrong but it only shows the processes which handled the connection, no extra info with the reason why it failed.
Here's the config:
# 2.0.13: /usr/local/etc/dovecot/dovecot.conf
# OS: FreeBSD 7.4-RELEASE i386
auth_mechanisms = plain login
base_dir = /var/run/dovecot/
disable_plaintext_auth = no
dotlock_use_excl = no
first_valid_uid = 1000
listen = *
login_access_sockets = tcpwrap
login_greeting =
login_log_format_elements = user=<%u> method=%m rip=%r lip=%l %c
mail_location = mbox:~/Mail/:INBOX=/var/mail/%u
mail_log_prefix = "%Us(%u): "
mail_privileged_group = mail
maildir_copy_with_hardlinks = no
passdb {
driver = pam
}
protocols = pop3
service auth {
executable = /usr/local/libexec/dovecot/auth
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0660
user = postfix
}
user = root
vsz_limit = 64 M
}
service imap-login {
chroot = login
client_limit = 128
process_limit = 32
process_min_avail = 3
service_count = 1
user = dovecot
vsz_limit = 32 M
}
service imap {
drop_priv_before_exec = no
process_limit = 128
vsz_limit = 256 M
}
service pop3-login {
chroot = login
client_limit = 128
process_limit = 32
process_min_avail = 3
service_count = 1
user = dovecot
vsz_limit = 32 M
}
service pop3 {
drop_priv_before_exec = no
process_limit = 128
vsz_limit = 256 M
}
service tcpwrap {
unix_listener login/tcpwrap {
group = $default_login_user
mode = 0600
user = $default_login_user
}
}
ssl_cert = </etc/ssl/certs/dovecot.pem
ssl_cipher_list = ALL:!LOW
ssl_key = </etc/ssl/private/dovecot.pem
userdb {
driver = passwd
}
verbose_proctitle = yes
protocol imap {
imap_client_workarounds = delay-newmail tb-extra-mailbox-sep
}
protocol pop3 {
pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
pop3_uidl_format = %08Xu%08Xv
}
protocol lda {
postmaster_address = postmaster at europrima.ro
sendmail_path = /usr/sbin/sendmail
}
More information about the dovecot
mailing list