# 2.3.4.1 (f79e8e7e4): /etc/dovecot/dovecot.conf# Pigeonhole version 0.5.4 ()

1. # 2.3.4.1 (f79e8e7e4): /etc/dovecot/dovecot.conf
2. # Pigeonhole version 0.5.4 ()
3. # OS: Linux 4.19.0-9-amd64 x86_64 Debian 10.4
4. # Hostname: bgrsld-mail0.intern.bdevgw.de
5. # NOTE: Send doveconf -n output instead when asking for help.
6. auth_anonymous_username = anonymous
7. auth_cache_negative_ttl = 1 hours
8. auth_cache_size = 0
9. auth_cache_ttl = 1 hours
10. auth_cache_verify_password_with_worker = no
11. auth_debug = no
12. auth_debug_passwords = no
13. auth_default_realm =
14. auth_failure_delay = 2 secs
15. auth_gssapi_hostname =
16. auth_krb5_keytab =
17. auth_master_user_separator =
18. auth_mechanisms = PLAIN LOGIN
19. auth_policy_check_after_auth = yes
20. auth_policy_check_before_auth = yes
21. auth_policy_hash_mech = sha256
22. auth_policy_hash_nonce =
23. auth_policy_hash_truncate = 12
24. auth_policy_reject_on_fail = no
25. auth_policy_report_after_auth = yes
26. auth_policy_request_attributes = login=%{requested_username} pwhash=%{hashed_password} remote=%{rip} device_id=%{client_id} protocol=%s
27. auth_policy_server_api_header =
28. auth_policy_server_timeout_msecs = 2000
29. auth_policy_server_url =
30. auth_proxy_self =
31. auth_realms =
32. auth_socket_path = auth-userdb
33. auth_ssl_require_client_cert = no
34. auth_ssl_username_from_cert = no
35. auth_stats = no
36. auth_use_winbind = no
37. auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@
38. auth_username_format = %Lu
39. auth_username_translation =
40. auth_verbose = no
41. auth_verbose_passwords = no
42. auth_winbind_helper_path = /usr/bin/ntlm_auth
43. auth_worker_max_count = 30
44. base_dir = /var/run/dovecot
45. config_cache_size = 1 M
46. debug_log_path =
47. default_client_limit = 1000
48. default_idle_kill = 1 mins
49. default_internal_group = dovecot
50. default_internal_user = dovecot
51. default_login_user = dovenull
52. default_process_limit = 100
53. default_vsz_limit = 256 M
54. deliver_log_format = from=%{from}, envelope_sender=%{from_envelope}, subject=%{subject}, msgid=%m, size=%{size}, delivery_time=%{delivery_time}ms, %$
55. dict_db_config =
56. director_flush_socket =
57. director_mail_servers =
58. director_max_parallel_kicks = 100
59. director_max_parallel_moves = 100
60. director_output_buffer_size = 10 M
61. director_ping_idle_timeout = 30 secs
62. director_ping_max_timeout = 1 mins
63. director_servers =
64. director_user_expire = 15 mins
65. director_user_kick_delay = 2 secs
66. director_username_hash = %u
67. disable_plaintext_auth = yes
68. dotlock_use_excl = yes
69. doveadm_allowed_commands =
70. doveadm_api_key =
71. doveadm_http_rawlog_dir =
72. doveadm_password =
73. doveadm_port = 0
74. doveadm_socket_path = doveadm-server
75. doveadm_username = doveadm
76. doveadm_worker_count = 0
77. dsync_alt_char = _
78. dsync_commit_msgs_interval = 100
79. dsync_features =
80. dsync_hashed_headers = Date Message-ID
81. dsync_remote_cmd = ssh -l%{login} %{host} doveadm dsync-server -u%u -U
82. first_valid_gid = 1
83. first_valid_uid = 2000
84. haproxy_timeout = 3 secs
85. haproxy_trusted_networks =
86. hostname =
87. imap_capability =
88. imap_client_workarounds =
89. imap_fetch_failure = disconnect-immediately
90. imap_hibernate_timeout = 0
91. imap_id_log =
92. imap_id_retain = no
93. imap_id_send = name *
94. imap_idle_notify_interval = 2 mins
95. imap_literal_minus = no
96. imap_logout_format = in=%i out=%o deleted=%{deleted} expunged=%{expunged} trashed=%{trashed} hdr_count=%{fetch_hdr_count} hdr_bytes=%{fetch_hdr_bytes} body_count=%{fetch_body_count} body_bytes=%{fetch_body_bytes}
97. imap_max_line_length = 64 k
98. imap_metadata = no
99. imap_urlauth_host =
100. imap_urlauth_logout_format = in=%i out=%o
101. imap_urlauth_port = 143
102. imapc_cmd_timeout = 5 mins
103. imapc_connection_retry_count = 1
104. imapc_connection_retry_interval = 1 secs
105. imapc_features =
106. imapc_host =
107. imapc_list_prefix =
108. imapc_master_user =
109. imapc_max_idle_time = 29 mins
110. imapc_max_line_length = 0
111. imapc_password =
112. imapc_port = 143
113. imapc_rawlog_dir =
114. imapc_sasl_mechanisms =
115. imapc_ssl = no
116. imapc_ssl_verify = yes
117. imapc_user =
118. import_environment = TZ CORE_OUTOFMEM CORE_ERROR LISTEN_PID LISTEN_FDS
119. info_log_path =
120. instance_name = dovecot
121. last_valid_gid = 0
122. last_valid_uid = 2000
123. lda_mailbox_autocreate = no
124. lda_mailbox_autosubscribe = no
125. lda_original_recipient_header =
126. libexec_dir = /usr/lib/dovecot
127. listen = * [::]
128. lmtp_hdr_delivery_address = final
129. lmtp_proxy = no
130. lmtp_proxy_rawlog_dir =
131. lmtp_rawlog_dir =
132. lmtp_rcpt_check_quota = no
133. lmtp_save_to_detail_mailbox = no
134. lmtp_user_concurrency_limit = 0
135. lock_method = fcntl
136. log_core_filter =
137. log_debug =
138. log_path = syslog
139. log_timestamp = "%b %d %H:%M:%S "
140. login_access_sockets =
141. login_greeting = Dovecot (Debian) ready.
142. login_log_format = %$: %s
143. login_log_format_elements = user=<%u> method=%m rip=%r lip=%l mpid=%e %c %k session=<%{session}>
144. login_plugin_dir = /usr/lib/dovecot/modules/login
145. login_plugins =
146. login_proxy_max_disconnect_delay = 0
147. login_proxy_notify_path = proxy-notify
148. login_source_ips =
149. login_trusted_networks =
150. mail_access_groups =
151. mail_always_cache_fields =
152. mail_attachment_detection_options =
153. mail_attachment_dir =
154. mail_attachment_fs = sis posix
155. mail_attachment_hash = %{sha1}
156. mail_attachment_min_size = 128 k
157. mail_attribute_dict =
158. mail_cache_compress_continued_percentage = 200
159. mail_cache_compress_delete_percentage = 20
160. mail_cache_compress_header_continue_count = 4
161. mail_cache_compress_min_size = 32 k
162. mail_cache_fields = flags
163. mail_cache_min_mail_count = 0
164. mail_cache_record_max_size = 64 k
165. mail_cache_unaccessed_field_drop = 30 days
166. mail_chroot =
167. mail_debug = no
168. mail_fsync = optimized
169. mail_full_filesystem_access = no
170. mail_gid = 2000
171. mail_home =
172. mail_index_log2_max_age = 2 days
173. mail_index_log_rotate_max_size = 1 M
174. mail_index_log_rotate_min_age = 5 mins
175. mail_index_log_rotate_min_size = 32 k
176. mail_index_rewrite_max_log_bytes = 128 k
177. mail_index_rewrite_min_log_bytes = 8 k
178. mail_location = maildir:%Lh/Maildir/:INDEX=%Lh/Maildir/
179. mail_log_prefix = "%s(%u)<%{pid}><%{session}>: "
180. mail_max_keyword_length = 50
181. mail_max_lock_timeout = 0
182. mail_max_userip_connections = 10
183. mail_never_cache_fields = imap.envelope
184. mail_nfs_index = no
185. mail_nfs_storage = no
186. mail_plugin_dir = /usr/lib/dovecot/modules
187. mail_plugins =
188. mail_prefetch_count = 0
189. mail_privileged_group =
190. mail_save_crlf = no
191. mail_server_admin =
192. mail_server_comment =
193. mail_shared_explicit_inbox = no
194. mail_sort_max_read_count = 0
195. mail_temp_dir = /tmp
196. mail_temp_scan_interval = 1 weeks
197. mail_uid = 2000
198. mail_vsize_bg_after_count = 0
199. mailbox_idle_check_interval = 30 secs
200. mailbox_list_index = yes
201. mailbox_list_index_include_inbox = no
202. mailbox_list_index_very_dirty_syncs = no
203. maildir_broken_filename_sizes = no
204. maildir_copy_with_hardlinks = yes
205. maildir_empty_new = no
206. maildir_stat_dirs = no
207. maildir_very_dirty_syncs = no
208. master_user_separator =
209. mbox_dirty_syncs = yes
210. mbox_dotlock_change_timeout = 2 mins
211. mbox_lazy_writes = yes
212. mbox_lock_timeout = 5 mins
213. mbox_md5 = apop3d
214. mbox_min_index_size = 0
215. mbox_read_locks = fcntl
216. mbox_very_dirty_syncs = no
217. mbox_write_locks = fcntl dotlock
218. mdbox_preallocate_space = no
219. mdbox_rotate_interval = 0
220. mdbox_rotate_size = 10 M
221. metric imap_command_finished {
222. categories =
223. event_name = imap_command_finished
224. fields =
225. source_location =
226. }
227. mmap_disable = no
228. namespace {
229. disabled = no
230. hidden = no
231. ignore_on_failure = no
232. inbox = yes
233. list = yes
234. location =
235. mailbox Archive {
236. auto = no
237. autoexpunge = 0
238. autoexpunge_max_mails = 0
239. comment =
240. driver =
241. special_use = \Archive
242. }
243. mailbox Archives {
244. auto = no
245. autoexpunge = 0
246. autoexpunge_max_mails = 0
247. comment =
248. driver =
249. special_use = \Archive
250. }
251. mailbox "Deleted Messages" {
252. auto = no
253. autoexpunge = 0
254. autoexpunge_max_mails = 0
255. comment =
256. driver =
257. special_use = \Trash
258. }
259. mailbox Drafts {
260. auto = subscribe
261. autoexpunge = 0
262. autoexpunge_max_mails = 0
263. comment =
264. driver =
265. special_use = \Drafts
266. }
267. mailbox Junk {
268. auto = subscribe
269. autoexpunge = 0
270. autoexpunge_max_mails = 0
271. comment =
272. driver =
273. special_use = \Junk
274. }
275. mailbox "Junk E-mail" {
276. auto = no
277. autoexpunge = 0
278. autoexpunge_max_mails = 0
279. comment =
280. driver =
281. special_use = \Junk
282. }
283. mailbox Sent {
284. auto = subscribe
285. autoexpunge = 0
286. autoexpunge_max_mails = 0
287. comment =
288. driver =
289. special_use = \Sent
290. }
291. mailbox "Sent Items" {
292. auto = no
293. autoexpunge = 0
294. autoexpunge_max_mails = 0
295. comment =
296. driver =
297. special_use = \Sent
298. }
299. mailbox "Sent Messages" {
300. auto = no
301. autoexpunge = 0
302. autoexpunge_max_mails = 0
303. comment =
304. driver =
305. special_use = \Sent
306. }
307. mailbox Spam {
308. auto = no
309. autoexpunge = 0
310. autoexpunge_max_mails = 0
311. comment =
312. driver =
313. special_use = \Junk
314. }
315. mailbox Trash {
316. auto = subscribe
317. autoexpunge = 0
318. autoexpunge_max_mails = 0
319. comment =
320. driver =
321. special_use = \Trash
322. }
323. order = 0
324. prefix =
325. separator = /
326. subscriptions = yes
327. type = private
328. }
329. old_stats_carbon_interval = 30 secs
330. old_stats_carbon_name =
331. old_stats_carbon_server =
332. old_stats_command_min_time = 1 mins
333. old_stats_domain_min_time = 12 hours
334. old_stats_ip_min_time = 12 hours
335. old_stats_memory_limit = 16 M
336. old_stats_session_min_time = 15 mins
337. old_stats_user_min_time = 1 hours
338. passdb {
339. args = /maildata/userpass
340. auth_verbose = default
341. default_fields =
342. deny = no
343. driver = passwd-file
344. master = no
345. mechanisms =
346. name =
347. override_fields =
348. pass = no
349. result_failure = continue
350. result_internalfail = continue
351. result_success = return-ok
352. skip = never
353. username_filter =
354. }
355. pop3_client_workarounds =
356. pop3_delete_type = default
357. pop3_deleted_flag =
358. pop3_enable_last = no
359. pop3_fast_size_lookups = no
360. pop3_lock_session = no
361. pop3_logout_format = top=%t/%p, retr=%r/%b, del=%d/%m, size=%s
362. pop3_no_flag_updates = no
363. pop3_reuse_xuidl = no
364. pop3_save_uidl = no
365. pop3_uidl_duplicates = allow
366. pop3_uidl_format = %08Xu%08Xv
367. pop3c_features =
368. pop3c_host =
369. pop3c_master_user =
370. pop3c_password =
371. pop3c_port = 110
372. pop3c_quick_received_date = no
373. pop3c_rawlog_dir =
374. pop3c_ssl = no
375. pop3c_ssl_verify = yes
376. pop3c_user = %u
377. postmaster_address = postmaster@%{if;%d;ne;;%d;%{hostname}}
378. protocols = pop3 imap
379. quota_full_tempfail = no
380. rawlog_dir =
381. recipient_delimiter = +
382. rejection_reason = Your message to <%t> was automatically rejected:%n%r
383. rejection_subject = Rejected: %s
384. replication_dsync_parameters = -d -N -l 30 -U
385. replication_full_sync_interval = 1 days
386. replication_max_conns = 10
387. replicator_host = replicator
388. replicator_port = 0
389. sendmail_path = /usr/sbin/sendmail
390. service aggregator {
391. chroot = .
392. client_limit = 0
393. drop_priv_before_exec = no
394. executable = aggregator
395. extra_groups =
396. fifo_listener replication-notify-fifo {
397. group =
398. mode = 0600
399. user =
400. }
401. group =
402. idle_kill = 0
403. privileged_group =
404. process_limit = 0
405. process_min_avail = 0
406. protocol =
407. service_count = 0
408. type =
409. unix_listener replication-notify {
410. group =
411. mode = 0600
412. user =
413. }
414. user = $default_internal_user
415. vsz_limit = 18446744073709551615 B
416. }
417. service anvil {
418. chroot = empty
419. client_limit = 0
420. drop_priv_before_exec = no
421. executable = anvil
422. extra_groups =
423. group =
424. idle_kill = 4294967295 secs
425. privileged_group =
426. process_limit = 1
427. process_min_avail = 1
428. protocol =
429. service_count = 0
430. type = anvil
431. unix_listener anvil-auth-penalty {
432. group =
433. mode = 0600
434. user =
435. }
436. unix_listener anvil {
437. group =
438. mode = 0600
439. user =
440. }
441. user = $default_internal_user
442. vsz_limit = 18446744073709551615 B
443. }
444. service auth-worker {
445. chroot =
446. client_limit = 1
447. drop_priv_before_exec = no
448. executable = auth -w
449. extra_groups =
450. group =
451. idle_kill = 0
452. privileged_group =
453. process_limit = 0
454. process_min_avail = 0
455. protocol =
456. service_count = 1
457. type =
458. unix_listener auth-worker {
459. group =
460. mode = 0600
461. user = $default_internal_user
462. }
463. user =
464. vsz_limit = 18446744073709551615 B
465. }
466. service auth {
467. chroot =
468. client_limit = 0
469. drop_priv_before_exec = no
470. executable = auth
471. extra_groups =
472. group =
473. idle_kill = 0
474. privileged_group =
475. process_limit = 1
476. process_min_avail = 0
477. protocol =
478. service_count = 0
479. type =
480. unix_listener /var/spool/postfix/private/dovecot-auth {
481. group = postfix
482. mode = 0666
483. user = postfix
484. }
485. unix_listener auth-client {
486. group =
487. mode = 0600
488. user = $default_internal_user
489. }
490. unix_listener auth-login {
491. group =
492. mode = 0600
493. user = $default_internal_user
494. }
495. unix_listener auth-master {
496. group = vmail
497. mode = 0666
498. user = vmail
499. }
500. unix_listener auth-userdb {
501. group = vmail
502. mode = 0660
503. user = vmail
504. }
505. unix_listener login/login {
506. group =
507. mode = 0666
508. user =
509. }
510. unix_listener token-login/tokenlogin {
511. group =
512. mode = 0666
513. user =
514. }
515. user = $default_internal_user
516. vsz_limit = 18446744073709551615 B
517. }
518. service config {
519. chroot =
520. client_limit = 0
521. drop_priv_before_exec = no
522. executable = config
523. extra_groups =
524. group =
525. idle_kill = 4294967295 secs
526. privileged_group =
527. process_limit = 0
528. process_min_avail = 0
529. protocol =
530. service_count = 0
531. type = config
532. unix_listener config {
533. group =
534. mode = 0600
535. user =
536. }
537. user =
538. vsz_limit = 18446744073709551615 B
539. }
540. service dict-async {
541. chroot =
542. client_limit = 0
543. drop_priv_before_exec = no
544. executable = dict
545. extra_groups =
546. group =
547. idle_kill = 0
548. privileged_group =
549. process_limit = 0
550. process_min_avail = 0
551. protocol =
552. service_count = 0
553. type =
554. unix_listener dict-async {
555. group = $default_internal_group
556. mode = 0660
557. user =
558. }
559. user = $default_internal_user
560. vsz_limit = 18446744073709551615 B
561. }
562. service dict {
563. chroot =
564. client_limit = 1
565. drop_priv_before_exec = no
566. executable = dict
567. extra_groups =
568. group =
569. idle_kill = 0
570. privileged_group =
571. process_limit = 0
572. process_min_avail = 0
573. protocol =
574. service_count = 0
575. type =
576. unix_listener dict {
577. group = vmail
578. mode = 0660
579. user = vmail
580. }
581. user = $default_internal_user
582. vsz_limit = 18446744073709551615 B
583. }
584. service director {
585. chroot = .
586. client_limit = 0
587. drop_priv_before_exec = no
588. executable = director
589. extra_groups =
590. fifo_listener login/proxy-notify {
591. group =
592. mode = 00
593. user =
594. }
595. group =
596. idle_kill = 4294967295 secs
597. privileged_group =
598. process_limit = 1
599. process_min_avail = 0
600. protocol =
601. service_count = 0
602. type =
603. unix_listener director-admin {
604. group =
605. mode = 0600
606. user =
607. }
608. unix_listener login/director {
609. group =
610. mode = 00
611. user =
612. }
613. user = $default_internal_user
614. vsz_limit = 18446744073709551615 B
615. }
616. service dns_client {
617. chroot =
618. client_limit = 1
619. drop_priv_before_exec = no
620. executable = dns-client
621. extra_groups =
622. group =
623. idle_kill = 0
624. privileged_group =
625. process_limit = 0
626. process_min_avail = 0
627. protocol =
628. service_count = 0
629. type =
630. unix_listener dns-client {
631. group =
632. mode = 0666
633. user =
634. }
635. user = $default_internal_user
636. vsz_limit = 18446744073709551615 B
637. }
638. service doveadm {
639. chroot =
640. client_limit = 1
641. drop_priv_before_exec = no
642. executable = doveadm-server
643. extra_groups = $default_internal_group
644. group =
645. idle_kill = 0
646. privileged_group =
647. process_limit = 0
648. process_min_avail = 0
649. protocol =
650. service_count = 1
651. type =
652. unix_listener doveadm-server {
653. group =
654. mode = 0600
655. user =
656. }
657. user =
658. vsz_limit = 18446744073709551615 B
659. }
660. service imap-hibernate {
661. chroot =
662. client_limit = 0
663. drop_priv_before_exec = no
664. executable = imap-hibernate
665. extra_groups =
666. group =
667. idle_kill = 0
668. privileged_group =
669. process_limit = 0
670. process_min_avail = 0
671. protocol = imap
672. service_count = 0
673. type =
674. unix_listener imap-hibernate {
675. group = $default_internal_group
676. mode = 0660
677. user =
678. }
679. user = $default_internal_user
680. vsz_limit = 18446744073709551615 B
681. }
682. service imap-login {
683. chroot = login
684. client_limit = 0
685. drop_priv_before_exec = no
686. executable = imap-login
687. extra_groups =
688. group =
689. idle_kill = 0
690. inet_listener imap {
691. address =
692. haproxy = no
693. port = 143
694. reuse_port = no
695. ssl = no
696. }
697. inet_listener imaps {
698. address =
699. haproxy = no
700. port = 993
701. reuse_port = no
702. ssl = yes
703. }
704. privileged_group =
705. process_limit = 500
706. process_min_avail = 0
707. protocol = imap
708. service_count = 1
709. type = login
710. user = $default_login_user
711. vsz_limit = 18446744073709551615 B
712. }
713. service imap-urlauth-login {
714. chroot = token-login
715. client_limit = 0
716. drop_priv_before_exec = no
717. executable = imap-urlauth-login
718. extra_groups =
719. group =
720. idle_kill = 0
721. privileged_group =
722. process_limit = 0
723. process_min_avail = 0
724. protocol = imap
725. service_count = 1
726. type = login
727. unix_listener imap-urlauth {
728. group =
729. mode = 0666
730. user =
731. }
732. user = $default_login_user
733. vsz_limit = 18446744073709551615 B
734. }
735. service imap-urlauth-worker {
736. chroot =
737. client_limit = 1
738. drop_priv_before_exec = no
739. executable = imap-urlauth-worker
740. extra_groups = $default_internal_group
741. group =
742. idle_kill = 0
743. privileged_group =
744. process_limit = 1024
745. process_min_avail = 0
746. protocol = imap
747. service_count = 1
748. type =
749. unix_listener imap-urlauth-worker {
750. group =
751. mode = 0600
752. user = $default_internal_user
753. }
754. user =
755. vsz_limit = 18446744073709551615 B
756. }
757. service imap-urlauth {
758. chroot =
759. client_limit = 1
760. drop_priv_before_exec = no
761. executable = imap-urlauth
762. extra_groups =
763. group =
764. idle_kill = 0
765. privileged_group =
766. process_limit = 1024
767. process_min_avail = 0
768. protocol = imap
769. service_count = 1
770. type =
771. unix_listener token-login/imap-urlauth {
772. group =
773. mode = 0666
774. user =
775. }
776. user = $default_internal_user
777. vsz_limit = 18446744073709551615 B
778. }
779. service imap {
780. chroot =
781. client_limit = 1
782. drop_priv_before_exec = no
783. executable = imap
784. extra_groups = $default_internal_group
785. group =
786. idle_kill = 0
787. privileged_group =
788. process_limit = 1024
789. process_min_avail = 0
790. protocol = imap
791. service_count = 1
792. type =
793. unix_listener imap-master {
794. group =
795. mode = 0600
796. user =
797. }
798. unix_listener login/imap {
799. group =
800. mode = 0666
801. user =
802. }
803. user =
804. vsz_limit = 18446744073709551615 B
805. }
806. service indexer-worker {
807. chroot =
808. client_limit = 1
809. drop_priv_before_exec = no
810. executable = indexer-worker
811. extra_groups = $default_internal_group
812. group =
813. idle_kill = 0
814. privileged_group =
815. process_limit = 10
816. process_min_avail = 0
817. protocol =
818. service_count = 0
819. type =
820. unix_listener indexer-worker {
821. group =
822. mode = 0600
823. user = $default_internal_user
824. }
825. user =
826. vsz_limit = 18446744073709551615 B
827. }
828. service indexer {
829. chroot =
830. client_limit = 0
831. drop_priv_before_exec = no
832. executable = indexer
833. extra_groups =
834. group =
835. idle_kill = 0
836. privileged_group =
837. process_limit = 1
838. process_min_avail = 0
839. protocol =
840. service_count = 0
841. type =
842. unix_listener indexer {
843. group =
844. mode = 0666
845. user =
846. }
847. user = $default_internal_user
848. vsz_limit = 18446744073709551615 B
849. }
850. service ipc {
851. chroot = empty
852. client_limit = 0
853. drop_priv_before_exec = no
854. executable = ipc
855. extra_groups =
856. group =
857. idle_kill = 0
858. privileged_group =
859. process_limit = 1
860. process_min_avail = 0
861. protocol =
862. service_count = 0
863. type =
864. unix_listener ipc {
865. group =
866. mode = 0600
867. user = $default_internal_user
868. }
869. unix_listener login/ipc-proxy {
870. group =
871. mode = 0600
872. user = $default_login_user
873. }
874. user = $default_internal_user
875. vsz_limit = 18446744073709551615 B
876. }
877. service lmtp {
878. chroot =
879. client_limit = 1
880. drop_priv_before_exec = no
881. executable = lmtp -L
882. extra_groups = $default_internal_group
883. group =
884. idle_kill = 0
885. inet_listener lmtp {
886. address = 127.0.0.1
887. haproxy = no
888. port = 24
889. reuse_port = no
890. ssl = no
891. }
892. privileged_group =
893. process_limit = 0
894. process_min_avail = 5
895. protocol = lmtp
896. service_count = 0
897. type =
898. unix_listener /var/spool/postfix/private/dovecot-lmtp {
899. group = postfix
900. mode = 0600
901. user = postfix
902. }
903. unix_listener lmtp {
904. group =
905. mode = 0666
906. user =
907. }
908. user = vmail
909. vsz_limit = 18446744073709551615 B
910. }
911. service log {
912. chroot =
913. client_limit = 0
914. drop_priv_before_exec = no
915. executable = log
916. extra_groups =
917. group =
918. idle_kill = 4294967295 secs
919. privileged_group =
920. process_limit = 1
921. process_min_avail = 0
922. protocol =
923. service_count = 0
924. type = log
925. unix_listener log-errors {
926. group =
927. mode = 0600
928. user =
929. }
930. user =
931. vsz_limit = 18446744073709551615 B
932. }
933. service managesieve-login {
934. chroot =
935. client_limit = 0
936. drop_priv_before_exec = no
937. executable =
938. extra_groups =
939. group =
940. idle_kill = 0
941. inet_listener sieve {
942. address = 127.0.0.1
943. haproxy = no
944. port = 4190
945. reuse_port = no
946. ssl = no
947. }
948. privileged_group =
949. process_limit = 0
950. process_min_avail = 0
951. protocol =
952. service_count = 0
953. type =
954. user =
955. vsz_limit = 18446744073709551615 B
956. }
957. service old-stats {
958. chroot = empty
959. client_limit = 0
960. drop_priv_before_exec = no
961. executable = old-stats
962. extra_groups =
963. fifo_listener old-stats-mail {
964. group =
965. mode = 0600
966. user =
967. }
968. fifo_listener old-stats-user {
969. group =
970. mode = 0600
971. user =
972. }
973. group =
974. idle_kill = 4294967295 secs
975. privileged_group =
976. process_limit = 1
977. process_min_avail = 0
978. protocol =
979. service_count = 0
980. type =
981. unix_listener old-stats {
982. group =
983. mode = 0600
984. user =
985. }
986. user = $default_internal_user
987. vsz_limit = 18446744073709551615 B
988. }
989. service pop3-login {
990. chroot = login
991. client_limit = 0
992. drop_priv_before_exec = no
993. executable = pop3-login
994. extra_groups =
995. group =
996. idle_kill = 0
997. inet_listener pop3 {
998. address =
999. haproxy = no
1000. port = 110
1001. reuse_port = no
1002. ssl = no
1003. }
1004. inet_listener pop3s {
1005. address =
1006. haproxy = no
1007. port = 995
1008. reuse_port = no
1009. ssl = yes
1010. }
1011. privileged_group =
1012. process_limit = 0
1013. process_min_avail = 0
1014. protocol = pop3
1015. service_count = 1
1016. type = login
1017. user = $default_login_user
1018. vsz_limit = 18446744073709551615 B
1019. }
1020. service pop3 {
1021. chroot =
1022. client_limit = 1
1023. drop_priv_before_exec = no
1024. executable = pop3
1025. extra_groups = $default_internal_group
1026. group =
1027. idle_kill = 0
1028. privileged_group =
1029. process_limit = 1024
1030. process_min_avail = 0
1031. protocol = pop3
1032. service_count = 1
1033. type =
1034. unix_listener login/pop3 {
1035. group =
1036. mode = 0666
1037. user =
1038. }
1039. user =
1040. vsz_limit = 18446744073709551615 B
1041. }
1042. service replicator {
1043. chroot =
1044. client_limit = 0
1045. drop_priv_before_exec = no
1046. executable = replicator
1047. extra_groups =
1048. group =
1049. idle_kill = 4294967295 secs
1050. privileged_group =
1051. process_limit = 1
1052. process_min_avail = 0
1053. protocol =
1054. service_count = 0
1055. type =
1056. unix_listener replicator-doveadm {
1057. group =
1058. mode = 00
1059. user = $default_internal_user
1060. }
1061. unix_listener replicator {
1062. group =
1063. mode = 0600
1064. user = $default_internal_user
1065. }
1066. user =
1067. vsz_limit = 18446744073709551615 B
1068. }
1069. service stats {
1070. chroot = empty
1071. client_limit = 0
1072. drop_priv_before_exec = no
1073. executable = stats
1074. extra_groups =
1075. group =
1076. idle_kill = 4294967295 secs
1077. privileged_group =
1078. process_limit = 1
1079. process_min_avail = 0
1080. protocol =
1081. service_count = 0
1082. type =
1083. unix_listener stats-reader {
1084. group =
1085. mode = 0600
1086. user =
1087. }
1088. unix_listener stats-writer {
1089. group = $default_internal_group
1090. mode = 0660
1091. user =
1092. }
1093. user = $default_internal_user
1094. vsz_limit = 18446744073709551615 B
1095. }
1096. service submission-login {
1097. chroot = login
1098. client_limit = 0
1099. drop_priv_before_exec = no
1100. executable = submission-login
1101. extra_groups =
1102. group =
1103. idle_kill = 0
1104. inet_listener submission {
1105. address =
1106. haproxy = no
1107. port = 587
1108. reuse_port = no
1109. ssl = no
1110. }
1111. privileged_group =
1112. process_limit = 0
1113. process_min_avail = 0
1114. protocol = submission
1115. service_count = 1
1116. type = login
1117. user = $default_login_user
1118. vsz_limit = 18446744073709551615 B
1119. }
1120. service submission {
1121. chroot =
1122. client_limit = 1
1123. drop_priv_before_exec = no
1124. executable = submission
1125. extra_groups = $default_internal_group
1126. group =
1127. idle_kill = 0
1128. privileged_group =
1129. process_limit = 1024
1130. process_min_avail = 0
1131. protocol = submission
1132. service_count = 1
1133. type =
1134. unix_listener login/submission {
1135. group =
1136. mode = 0666
1137. user =
1138. }
1139. user =
1140. vsz_limit = 18446744073709551615 B
1141. }
1142. service tcpwrap {
1143. chroot =
1144. client_limit = 1
1145. drop_priv_before_exec = no
1146. executable = tcpwrap
1147. extra_groups =
1148. group =
1149. idle_kill = 0
1150. privileged_group =
1151. process_limit = 0
1152. process_min_avail = 0
1153. protocol =
1154. service_count = 0
1155. type =
1156. user = $default_internal_user
1157. vsz_limit = 18446744073709551615 B
1158. }
1159. shutdown_clients = yes
1160. ssl = required
1161. ssl_alt_cert =
1162. ssl_alt_key =
1163. ssl_ca =
1164. ssl_cert = </etc/ssl/certs/2020.mail.intern.bdevgw.de.crt
1165. ssl_cert_username_field = commonName
1166. ssl_cipher_list = EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH
1167. ssl_client_ca_dir =
1168. ssl_client_ca_file =
1169. ssl_client_cert =
1170. ssl_client_key =
1171. ssl_crypto_device =
1172. ssl_curve_list =
1173. ssl_dh = # hidden, use -P to show it
1174. ssl_key = # hidden, use -P to show it
1175. ssl_key_password =
1176. ssl_min_protocol = TLSv1.2
1177. ssl_options =
1178. ssl_prefer_server_ciphers = yes
1179. ssl_require_crl = yes
1180. ssl_verify_client_cert = no
1181. state_dir = /var/lib/dovecot
1182. stats_writer_socket_path = stats-writer
1183. submission_client_workarounds =
1184. submission_host =
1185. submission_logout_format = in=%i out=%o
1186. submission_max_mail_size = 40 M
1187. submission_max_recipients = 0
1188. submission_relay_command_timeout = 5 mins
1189. submission_relay_connect_timeout = 30 secs
1190. submission_relay_host =
1191. submission_relay_master_user =
1192. submission_relay_max_idle_time = 29 mins
1193. submission_relay_password =
1194. submission_relay_port = 25
1195. submission_relay_rawlog_dir =
1196. submission_relay_ssl = no
1197. submission_relay_ssl_verify = yes
1198. submission_relay_trusted = no
1199. submission_relay_user =
1200. submission_ssl = no
1201. submission_timeout = 30 secs
1202. syslog_facility = local5
1203. userdb {
1204. args = uid=vmail gid=vmail home=/home/vmail
1205. auth_verbose = default
1206. default_fields =
1207. driver = static
1208. name =
1209. override_fields =
1210. result_failure = continue
1211. result_internalfail = continue
1212. result_success = return-ok
1213. skip = never
1214. }
1215. valid_chroot_dirs =
1216. verbose_proctitle = no
1217. verbose_ssl = no
1218. version_ignore = no
1219. protocol lda {
1220. lda_mailbox_autocreate = yes
1221. lda_mailbox_autosubscribe = yes
1222. mail_plugins = " sieve"
1223. }
1224. protocol lmtp {
1225. lmtp_save_to_detail_mailbox = yes
1226. mail_plugins = " sieve"
1227. recipient_delimiter = +
1228. }
1229. protocol imap {
1230. imap_client_workarounds = tb-extra-mailbox-sep
1231. mail_max_userip_connections = 30
1232. mail_plugins = " imap_quota imap_acl last_login"
1233. }
1234. protocol pop3 {
1235. mail_max_userip_connections = 30
1236. mail_plugins = " last_login"
1237. pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
1238. pop3_uidl_format = %08Xu%08Xv
1239. }