[Dovecot] Allowing non-SSL connections only for certain Password Databases

Urban Loesch bind at enas.net
Tue Apr 22 13:31:47 UTC 2014


Hi,

>
> Is there a way to set "disable_plaintext_auth" to different values for different Password Databases? Is there another way to do it?
>

Why do you not force SSL for all users?

I have no idea how this could be made with different databases. I have 
only build a solution for all users stored in mysql.

I'm able to force SSL for imap and pop3 on a per user basis with e.g.:

...
password_query = SELECT password FROM users WHERE userid = '%u' AND 
allow_login = 'y' AND ( force_ssl = 'y' OR '%c' = 'secured');
...

Query adopted from:
http://wiki2.dovecot.org/Authentication/RestrictAccess

For available variables see:
http://wiki2.dovecot.org/Variables

As I just said, this works for me, but only for users stored in mysql.

Regards
Urban



More information about the dovecot mailing list