API tools faq
paste
Advertisement
Guest User

dovecot

a guest
Sep 7th, 2016
454
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.01 KB | None | 0 0
raw download clone embed print report
  1. group =
  2. idle_kill = 0
  3. inet_listener imap {
  4. address =
  5. haproxy = no
  6. port = 143
  7. reuse_port = no
  8. ssl = no
  9. }
  10. inet_listener imaps {
  11. address =
  12. haproxy = no
  13. port = 993
  14. reuse_port = no
  15. ssl = yes
  16. }
  17. privileged_group =
  18. process_limit = 0
  19. process_min_avail = 0
  20. protocol = imap
  21. service_count = 1
  22. type = login
  23. user = $default_login_user
  24. vsz_limit = 18446744073709551615 B
  25. }
  26. service imap-urlauth-login {
  27. chroot = token-login
  28. client_limit = 0
  29. drop_priv_before_exec = no
  30. executable = imap-urlauth-login
  31. extra_groups =
  32. group =
  33. idle_kill = 0
  34. privileged_group =
  35. process_limit = 0
  36. process_min_avail = 0
  37. protocol = imap
  38. service_count = 1
  39. type = login
  40. unix_listener imap-urlauth {
  41. group =
  42. mode = 0666
  43. user =
  44. }
  45. user = $default_login_user
  46. vsz_limit = 18446744073709551615 B
  47. }
  48. service imap-urlauth-worker {
  49. chroot =
  50. client_limit = 1
  51. drop_priv_before_exec = no
  52. executable = imap-urlauth-worker
  53. extra_groups =
  54. group =
  55. idle_kill = 0
  56. privileged_group =
  57. process_limit = 1024
  58. process_min_avail = 0
  59. protocol = imap
  60. service_count = 1
  61. type =
  62. unix_listener imap-urlauth-worker {
  63. group =
  64. mode = 0600
  65. user = $default_internal_user
  66. }
  67. user =
  68. vsz_limit = 18446744073709551615 B
  69. }
  70. service imap-urlauth {
  71. chroot =
  72. client_limit = 1
  73. drop_priv_before_exec = no
  74. executable = imap-urlauth
  75. extra_groups =
  76. group =
  77. idle_kill = 0
  78. privileged_group =
  79. process_limit = 1024
  80. process_min_avail = 0
  81. protocol = imap
  82. service_count = 1
  83. type =
  84. unix_listener token-login/imap-urlauth {
  85. group =
  86. mode = 0666
  87. user =
  88. }
  89. user = $default_internal_user
  90. vsz_limit = 18446744073709551615 B
  91. }
  92. service imap {
  93. chroot =
  94. client_limit = 1
  95. drop_priv_before_exec = no
  96. executable = imap
  97. extra_groups =
  98. group =
  99. idle_kill = 0
  100. privileged_group =
  101. process_limit = 1024
  102. process_min_avail = 0
  103. protocol = imap
  104. service_count = 1
  105. type =
  106. unix_listener imap-master {
  107. group =
  108. mode = 0600
  109. user =
  110. }
  111. unix_listener login/imap {
  112. group =
  113. mode = 0666
  114. user =
  115. }
  116. user =
  117. vsz_limit = 18446744073709551615 B
  118. }
  119. service indexer-worker {
  120. chroot =
  121. client_limit = 1
  122. drop_priv_before_exec = no
  123. executable = indexer-worker
  124. extra_groups =
  125. group =
  126. idle_kill = 0
  127. privileged_group =
  128. process_limit = 10
  129. process_min_avail = 0
  130. protocol =
  131. service_count = 0
  132. type =
  133. unix_listener indexer-worker {
  134. group =
  135. mode = 0600
  136. user = $default_internal_user
  137. }
  138. user =
  139. vsz_limit = 18446744073709551615 B
  140. }
  141. service indexer {
  142. chroot =
  143. client_limit = 0
  144. drop_priv_before_exec = no
  145. executable = indexer
  146. extra_groups =
  147. group =
  148. idle_kill = 0
  149. privileged_group =
  150. process_limit = 1
  151. process_min_avail = 0
  152. protocol =
  153. service_count = 0
  154. type =
  155. unix_listener indexer {
  156. group =
  157. mode = 0666
  158. user =
  159. }
  160. user = $default_internal_user
  161. vsz_limit = 18446744073709551615 B
  162. }
  163. service ipc {
  164. chroot = empty
  165. client_limit = 0
  166. drop_priv_before_exec = no
  167. executable = ipc
  168. extra_groups =
  169. group =
  170. idle_kill = 0
  171. privileged_group =
  172. process_limit = 1
  173. process_min_avail = 0
  174. protocol =
  175. service_count = 0
  176. type =
  177. unix_listener ipc {
  178. group =
  179. mode = 0600
  180. user =
  181. }
  182. unix_listener login/ipc-proxy {
  183. group =
  184. mode = 0600
  185. user = $default_login_user
  186. }
  187. user = $default_internal_user
  188. vsz_limit = 18446744073709551615 B
  189. }
  190. service lmtp {
  191. chroot =
  192. client_limit = 1
  193. drop_priv_before_exec = no
  194. executable = lmtp
  195. extra_groups =
  196. group =
  197. idle_kill = 0
  198. privileged_group =
  199. process_limit = 0
  200. process_min_avail = 0
  201. protocol = lmtp
  202. service_count = 0
  203. type =
  204. unix_listener lmtp {
  205. group =
  206. mode = 0666
  207. user =
  208. }
  209. user =
  210. vsz_limit = 18446744073709551615 B
  211. }
  212. service log {
  213. chroot =
  214. client_limit = 0
  215. drop_priv_before_exec = no
  216. executable = log
  217. extra_groups =
  218. group =
  219. idle_kill = 4294967295 secs
  220. privileged_group =
  221. process_limit = 1
  222. process_min_avail = 0
  223. protocol =
  224. service_count = 0
  225. type = log
  226. unix_listener log-errors {
  227. group =
  228. mode = 0600
  229. user =
  230. }
  231. user =
  232. vsz_limit = 18446744073709551615 B
  233. }
  234. service managesieve-login {
  235. chroot = login
  236. client_limit = 0
  237. drop_priv_before_exec = no
  238. executable = managesieve-login
  239. extra_groups =
  240. group =
  241. idle_kill = 0
  242. inet_listener sieve {
  243. address =
  244. haproxy = no
  245. port = 4190
  246. reuse_port = no
  247. ssl = no
  248. }
  249. privileged_group =
  250. process_limit = 0
  251. process_min_avail = 0
  252. protocol = sieve
  253. service_count = 1
  254. type = login
  255. user = $default_login_user
  256. vsz_limit = 18446744073709551615 B
  257. }
  258. service managesieve {
  259. chroot =
  260. client_limit = 1
  261. drop_priv_before_exec = no
  262. executable = managesieve
  263. extra_groups =
  264. group =
  265. idle_kill = 0
  266. privileged_group =
  267. process_limit = 1024
  268. process_min_avail = 0
  269. protocol = sieve
  270. service_count = 1
  271. type =
  272. unix_listener login/sieve {
  273. group =
  274. mode = 0666
  275. user =
  276. }
  277. user =
  278. vsz_limit = 18446744073709551615 B
  279. }
  280. service pop3-login {
  281. chroot = login
  282. client_limit = 0
  283. drop_priv_before_exec = no
  284. executable = pop3-login
  285. extra_groups =
  286. group =
  287. idle_kill = 0
  288. inet_listener pop3 {
  289. address =
  290. haproxy = no
  291. port = 110
  292. reuse_port = no
  293. ssl = no
  294. }
  295. inet_listener pop3s {
  296. address =
  297. haproxy = no
  298. port = 995
  299. reuse_port = no
  300. ssl = yes
  301. }
  302. privileged_group =
  303. process_limit = 0
  304. process_min_avail = 0
  305. protocol = pop3
  306. service_count = 1
  307. type = login
  308. user = $default_login_user
  309. vsz_limit = 18446744073709551615 B
  310. }
  311. service pop3 {
  312. chroot =
  313. client_limit = 1
  314. drop_priv_before_exec = no
  315. executable = pop3
  316. extra_groups =
  317. group =
  318. idle_kill = 0
  319. privileged_group =
  320. process_limit = 1024
  321. process_min_avail = 0
  322. protocol = pop3
  323. service_count = 1
  324. type =
  325. unix_listener login/pop3 {
  326. group =
  327. mode = 0666
  328. user =
  329. }
  330. user =
  331. vsz_limit = 18446744073709551615 B
  332. }
  333. service quota-warning {
  334. chroot =
  335. client_limit = 0
  336. drop_priv_before_exec = no
  337. executable = script /usr/local/bin/quota-warning.sh
  338. extra_groups =
  339. group =
  340. idle_kill = 0
  341. privileged_group =
  342. process_limit = 0
  343. process_min_avail = 0
  344. protocol =
  345. service_count = 0
  346. type =
  347. unix_listener quota-warning {
  348. group =
  349. mode = 0600
  350. user = vmail
  351. }
  352. user = vmail
  353. vsz_limit = 18446744073709551615 B
  354. }
  355. service replicator {
  356. chroot =
  357. client_limit = 0
  358. drop_priv_before_exec = no
  359. executable = replicator
  360. extra_groups =
  361. group =
  362. idle_kill = 4294967295 secs
  363. privileged_group =
  364. process_limit = 1
  365. process_min_avail = 0
  366. protocol =
  367. service_count = 0
  368. type =
  369. unix_listener replicator-doveadm {
  370. group =
  371. mode = 00
  372. user = $default_internal_user
  373. }
  374. unix_listener replicator {
  375. group =
  376. mode = 0600
  377. user = $default_internal_user
  378. }
  379. user =
  380. vsz_limit = 18446744073709551615 B
  381. }
  382. service ssl-params {
  383. chroot =
  384. client_limit = 0
  385. drop_priv_before_exec = no
  386. executable = ssl-params
  387. extra_groups =
  388. group =
  389. idle_kill = 0
  390. privileged_group =
  391. process_limit = 0
  392. process_min_avail = 0
  393. protocol =
  394. service_count = 0
  395. type = startup
  396. unix_listener login/ssl-params {
  397. group =
  398. mode = 0666
  399. user =
  400. }
  401. unix_listener ssl-params {
  402. group =
  403. mode = 0666
  404. user =
  405. }
  406. user =
  407. vsz_limit = 18446744073709551615 B
  408. }
  409. service stats {
  410. chroot = empty
  411. client_limit = 0
  412. drop_priv_before_exec = no
  413. executable = stats
  414. extra_groups =
  415. fifo_listener stats-mail {
  416. group =
  417. mode = 0600
  418. user =
  419. }
  420. group =
  421. idle_kill = 4294967295 secs
  422. privileged_group =
  423. process_limit = 1
  424. process_min_avail = 0
  425. protocol =
  426. service_count = 0
  427. type =
  428. unix_listener stats {
  429. group =
  430. mode = 0600
  431. user =
  432. }
  433. user = $default_internal_user
  434. vsz_limit = 18446744073709551615 B
  435. }
  436. service tcpwrap {
  437. chroot =
  438. client_limit = 1
  439. drop_priv_before_exec = no
  440. executable = tcpwrap
  441. extra_groups =
  442. group =
  443. idle_kill = 0
  444. privileged_group =
  445. process_limit = 0
  446. process_min_avail = 0
  447. protocol =
  448. service_count = 0
  449. type =
  450. user = $default_internal_user
  451. vsz_limit = 18446744073709551615 B
  452. }
  453. shutdown_clients = yes
  454. ssl = yes
  455. ssl_ca =
  456. ssl_cert = </etc/postfix/certs/host.net.crt
  457. ssl_cert_username_field = commonName
  458. ssl_cipher_list = ALL:!LOW:!SSLv2:!EXP:!aNULL
  459. ssl_client_ca_dir =
  460. ssl_client_ca_file =
  461. ssl_client_cert =
  462. ssl_client_key =
  463. ssl_crypto_device =
  464. ssl_dh_parameters_length = 1024
  465. ssl_key = </etc/postfix/certs/private/host.net.key
  466. ssl_key_password =
  467. ssl_options =
  468. ssl_parameters_regenerate = 0
  469. ssl_prefer_server_ciphers = no
  470. ssl_protocols = !SSLv2
  471. ssl_require_crl = yes
  472. ssl_verify_client_cert = no
  473. state_dir = /var/lib/dovecot
  474. stats_command_min_time = 1 mins
  475. stats_domain_min_time = 12 hours
  476. stats_ip_min_time = 12 hours
  477. stats_memory_limit = 16 M
  478. stats_session_min_time = 15 mins
  479. stats_user_min_time = 1 hours
  480. submission_host =
  481. syslog_facility = mail
  482. userdb {
  483. args = /etc/dovecot/dovecot-sql.conf.ext
  484. default_fields =
  485. driver = sql
  486. name =
  487. override_fields =
  488. result_failure = continue
  489. result_internalfail = continue
  490. result_success = return-ok
  491. skip = never
  492. }
  493. valid_chroot_dirs =
  494. verbose_proctitle = no
  495. verbose_ssl = no
  496. version_ignore = no
  497. protocol lmtp {
  498. mail_plugins = " quota sieve"
  499. postmaster_address = postmaster@host.net
  500. }
  501. protocol lda {
  502. mail_plugins = " quota autocreate sieve"
  503. postmaster_address = postmaster@host.net
  504. }
  505. protocol imap {
  506. mail_plugins = " quota imap_quota"
  507. }
  508. protocol sieve {
  509. managesieve_implementation_string = Dovecot
  510. managesieve_max_line_length = 65536
  511. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!