Changing Password Schemes

Fri Apr 29 13:02:33 UTC 2016

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Fri, 29 Apr 2016, Carl A Jeptha wrote:

> Good Day,
> I have been following this tutorial without much luck - 
> http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes#CA-26af2b83a43b8100522c57565773f605c21f2f27_1
>
> It is obvious to me that I am not following the instructions correctly and 
> need to be shown what I am misunderstanding.
>
> I have an old postfix + dovecot + Roundcube mailserver (mail.domain.Tld). 
> Server clock is loosing time and adjusting it causes dovecot to kill itself, 
> we cannot install more memory, bigger hard-drives, etc.
>
> I have built a new server box (mail2.domain.Tld) With Postfix + dovecot + 
> Roundcube. This server is functioning, with a client's new domain, and my 
> personal domain. it's password system is SHA512-CRYPT.
>
> I have imported the users from the old server over to the new server. I have 
> created a new column "plain_pass" for the plain passwords.
>
> I will be using imapsync to transfer the mail folders from the one server to 
> the other, but will not proceed until I fix this issue.

Actually, _what_ issue?

> # 2.2.18: /etc/dovecot/dovecot.conf
> # Pigeonhole version 0.4.8 (0c4ae064f307+)
> # OS: Linux 4.2.0-35-generic x86_64 Ubuntu 15.10 ext4
> auth_mechanisms = plain login
> first_valid_gid = 8
> first_valid_uid = 150
> last_valid_gid = 8
> last_valid_uid = 150
> listen = *
> mail_gid = mail
> mail_location = maildir:/var/vmail/%d/%n
> mail_uid = vmail
> namespace inbox {
>  inbox = yes
>  location =
>  mailbox Drafts {
>    special_use = \Drafts
>  }
>  mailbox Junk {
>    special_use = \Junk
>  }
>  mailbox Sent {
>    special_use = \Sent
>  }
>  mailbox "Sent Messages" {
>    special_use = \Sent
>  }
>  mailbox Trash {
>    special_use = \Trash
>  }
>  prefix =
> }
> passdb {
>  args = /etc/dovecot/dovecot-sql.conf.ext
>  driver = sql
> }
> plugin {
>  quota_grace = 10%%
>  quota_rule = *:storage=1G
>  quota_rule2 = Trash:storage=+100M
>  quota_warning = storage=95%% quota-warning 95 %u
>  quota_warning2 = storage=80%% quota-warning 80 %u
> }
> postmaster_address = postmaster at airnet.ca
> protocols = imap pop3 lmtp lmtp pop3
> service auth {
>  unix_listener /var/spool/postfix/private/auth {
>    group = postfix
>    mode = 0666
>    user = postfix
>  }
>  unix_listener auth-userdb {
>    group = mail
>    mode = 0666
>    user = vmail
>  }
> }
> service imap-login {
>  inet_listener imap {
>    port = 143
>  }
>  inet_listener imaps {
>    port = 993
>    ssl = yes
>  }
> }
> service imap-postlogin {
>  executable = script-login /usr/local/etc/popafter.sh
>  user = $default_internal_user
> }
> service imap {
>  executable = imap imap-postlogin
> }
> service pop3-login {
>  inet_listener pop3 {
>    port = 110
>  }
>  inet_listener pop3s {
>    port = 995
>    ssl = yes
>  }
> }
> service pop3-postlogin {
>  executable = script-login /usr/local/etc/popafter.sh
>  user = $default_internal_user
> }
> service pop3 {
>  executable = pop3 pop3-postlogin
> }
> ssl_cert = </etc/ssl/certs/ssl-cert-snakeoil.pem
> ssl_cipher_list = 
> ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA
> ssl_dh_parameters_length = 2048
> ssl_key = </etc/ssl/private/ssl-cert-snakeoil.key
> ssl_prefer_server_ciphers = yes
> ssl_protocols = !SSLv2 !SSLv3
> userdb {
>  driver = prefetch
> }
> userdb {
>  args = /etc/dovecot/dovecot-sql.conf.ext
>  driver = sql
> }
>
> -- ------------ You have a good day now, en mag jou môre ook so wees, Carl A 
> Jeptha
>

- -- 
Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEVAwUBVyNbaXz1H7kL/d9rAQIbnQgAyiX9368WmhyTfTY38YfNWTXW/UW/b/0t
PqyEPx/DLLLW60aSkA0NqJa0nKzsoHip8GQfO/ZY3fqdTdep2rW4NbZW6o8/rFwW
dmNTarux25w7dNvRGWrGZiXTnGAlwQtnJTr8wuwqi2JILqPoh1dL1Ubo90ABTERv
G8q2NXgtD4m0a2aJqmyMXRmep8ocMy3IEIg8JZ/xJtmL86d4bP7kagI2yP7viIUx
EY9JSazl/u6iVIrI6jFDuFUfzAs4dr+wcQHhAM0sY8mFUVYFsdjqxCbytLy39q4O
zyj66UNAGR5yAnXAlADJ7G1fIghskFBa82p/t8QCX9VNSvOnuklqGQ==
=Q4iK
-----END PGP SIGNATURE-----