rigacci.org

User Tools

Site Tools

Trace:
doc:appunti:linux:sa:postfix_spamassassin_clamav_dovecot

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
Next revisionBoth sides next revision
doc:appunti:linux:sa:postfix_spamassassin_clamav_dovecot [2019/04/05 10:01] – [Sanitizer/ClamAV Filter] niccolodoc:appunti:linux:sa:postfix_spamassassin_clamav_dovecot [2020/08/05 17:11] niccolo
Line 39: Line 39:
 We want a **single authentication mechanism** for SMTP, POP3 and IMAP, and we want to let the user to authenticate using the Unix **username** or the full **email address** and the password. Dovecot authentication is suitable for the task; the default Debian configuration provides authentication against the system usernames via the PAM module. The configuration file is **/etc/dovecot/conf.d/auth-system.conf.ext**. We want a **single authentication mechanism** for SMTP, POP3 and IMAP, and we want to let the user to authenticate using the Unix **username** or the full **email address** and the password. Dovecot authentication is suitable for the task; the default Debian configuration provides authentication against the system usernames via the PAM module. The configuration file is **/etc/dovecot/conf.d/auth-system.conf.ext**.
  
-To let authentication using the email address, we provide a passwd-like file **/etc/dovecot/userdb**, we will leave //gecos//, //shell// and //extra_fields// blank. See [[https://wiki2.dovecot.org/AuthDatabase/PasswdFile|PasswdFile]] wiki page for details:+To let authentication using the email address, we provide a passwd-like file **/etc/dovecot/users**, we will leave //gecos//, //shell// and //extra_fields// blank. See [[https://wiki2.dovecot.org/AuthDatabase/PasswdFile|PasswdFile]] wiki page for details:
  
 <file> <file>
Line 50: Line 50:
 passdb { passdb {
   driver = passwd-file   driver = passwd-file
-  args = scheme=CRYPT /etc/dovecot/userdb+  args = scheme=CRYPT username_format=%u /etc/dovecot/users
 } }
  
 userdb { userdb {
   driver = passwd-file   driver = passwd-file
-  args = /etc/dovecot/userdb+  args = username_format=%u /etc/dovecot/users
 } }
 </file> </file>
Line 85: Line 85:
 </code> </code>
  
-The file **/etc/dovecot/userdb** should be built e.g. by a cron-job, joining Postfix ''virtual_alias_maps'' and ''/etc/shadow'' passwords. It is re-read at each lookup. We need also to protect it:+The file **/etc/dovecot/users** should be built e.g. by a cron-job, joining Postfix ''virtual_alias_maps'' and ''/etc/shadow'' passwords. It is re-read at each lookup. We need also to protect it:
  
 <code> <code>
-chmod 0640 /etc/dovecot/userdb +chmod 0640 /etc/dovecot/users 
-chown root:dovecot /etc/dovecot/userdb+chown root:dovecot /etc/dovecot/users
 </code> </code>
  
Line 154: Line 154:
   * **dovecot-pop3d**   * **dovecot-pop3d**
  
-Once installed, the basic services **IMAP2** on port **TCP/143** and **POP3** on port **TCP/110** are already working, eventually with the **Dovecot Authentication on userdb** as seen above.+Once installed, the basic services **IMAP2** on port **TCP/143** and **POP3** on port **TCP/110** are already working, eventually with the **Dovecot Authentication on users** as seen above.
  
 ==== Enable SSL, imaps and pop3s ==== ==== Enable SSL, imaps and pop3s ====
Line 219: Line 219:
 eicar-antivirus.com: lstat() failed: Permission denied. ERROR eicar-antivirus.com: lstat() failed: Permission denied. ERROR
 </code> </code>
 +
 +The ''%%--fdpass%%'' option works only if ''clamdscan'' connects to ''clamd'' via the Unix socket.
 ===== Dovecot Local Delivery Agent ===== ===== Dovecot Local Delivery Agent =====
  
doc/appunti/linux/sa/postfix_spamassassin_clamav_dovecot.txt · Last modified: 2023/10/30 11:09 by niccolo