Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- protocols = imap pop3 imaps pop3s
- listen = *
- disable_plaintext_auth = no
- shutdown_clients = yes
- log_path = /var/log/dovecot.log
- log_timestamp = ""
- ssl_cert_file = /var/easypush/etc/certificates/server.crt
- ssl_key_file = /var/easypush/etc/certificates/server.key
- #ssl_key_password =
- #ssl_ca_file =
- #ssl_verify_client_cert = no
- #ssl_parameters_regenerate = 168
- #ssl_cipher_list = ALL:!LOW
- #verbose_ssl = no
- login_user = dovecot
- login_process_size = 32
- login_process_per_connection = yes
- login_processes_count = 3
- # Read this in from Easypush settings
- #login_max_processes_count = 128
- #login_max_connections = 256
- # Greeting message for clients.
- login_greeting = Namaskar (hello) deepOfix Mail Server Welcomes you.
- # Space-separated list of elements we want to log. The elements which have
- # a non-empty variable value are joined together to form a comma-separated
- # string.
- #login_log_format_elements = user=<%u> method=%m rip=%r lip=%l %c
- # Login log format. %$ contains login_log_format_elements string, %s contains
- # the data we want to log.
- #login_log_format = %$: %s
- ##
- ## Mailbox locations and namespaces
- ##
- mail_location = maildir:~/Maildir
- # REMEMBER: If you add any namespaces, the default namespace must be added
- # explicitly, ie. mail_location does nothing unless you have a namespace
- # without a location setting. Default namespace is simply done by having a
- # namespace with empty prefix.
- namespace private {
- # Hierarchy separator to use. You should use the same separator for all
- # namespaces or some clients get confused. '/' is usually a good one.
- # The default however depends on the underlying mail storage format.
- separator = .
- # Prefix required to access this namespace. This needs to be different for
- # all namespaces. For example "Public/".
- prefix = INBOX.
- # Physical location of the mailbox. This is in same format as
- # mail_location, which is also the default for it.
- location = maildir:~/Maildir
- # There can be only one INBOX, and this setting defines which namespace
- # has it.
- inbox = yes
- # If namespace is hidden, it's not advertised to clients via NAMESPACE
- # extension or shown in LIST replies. This is mostly useful when converting
- # from another server with different namespaces which you want to depricate
- # but still keep working. For example you can create hidden namespaces with
- # prefixes "~/mail/", "~%u/mail/" and "mail/".
- hidden = no
- }
- # Grant access to these extra groups for mail processes. Typical use would be
- # to give "mail" group write access to /var/mail to be able to create dotlocks.
- # The dovecot processes get these groups' privileges in addition to the dovecot
- # ones; the list of groups must be separated by spaces.
- mail_extra_groups = mail
- ##
- ## Mail processes
- ##
- # Enable mail process debugging. This can help you figure out why Dovecot
- # isn't finding your mails.
- mail_debug = yes
- # Don't use mmap() at all. This is required if you store indexes to shared
- # filesystems (NFS or clustered filesystem).
- #mmap_disable = no
- # Don't write() to mmaped files. This is required for some operating systems
- # which use separate caches for them, such as OpenBSD.
- #mmap_no_write = no
- # Don't use fsync() or fdatasync() calls. This makes the performance better
- # at the cost of potential data loss if the server (or the file server)
- # goes down.
- #fsync_disable = no
- # Show more verbose process titles (in ps). Currently shows user name and
- # IP address. Useful for seeing who are actually using the IMAP processes
- # (eg. shared mailboxes or if same uid is used for multiple accounts).
- verbose_proctitle = yes
- # Valid UID range for users, defaults to 500 and above. This is mostly
- # to make sure that users can't log in as daemons or other system users.
- # Note that denying root logins is hardcoded to dovecot binary and can't
- # be done even if first_valid_uid is set to 0.
- first_valid_uid = 1000
- #last_valid_uid = 0
- # Valid GID range for users, defaults to non-root/wheel. Users having
- # non-valid GID as primary group ID aren't allowed to log in. If user
- # belongs to supplementary groups with non-valid GIDs, those groups are
- # not set.
- #first_valid_gid = 1
- #last_valid_gid = 0
- # Maximum number of running mail processes. When this limit is reached,
- # new users aren't allowed to log in.
- #max_mail_processes = 1024
- # Set max. process size in megabytes. Most of the memory goes to mmap()ing
- # files, so it shouldn't harm much even if this limit is set pretty high.
- #mail_process_size = 256
- # When copying a message, do it with hard links whenever possible. This makes
- # the performance much better, and it's unlikely to have any side effects.
- #maildir_copy_with_hardlinks = no
- # When copying a message, try to preserve the base filename. Only if the
- # destination mailbox already contains the same name (ie. the mail is being
- # copied there twice), a new name is given. The destination filename check is
- # done only by looking at dovecot-uidlist file, so if something outside
- # Dovecot does similar filename preserving copies, you may run into problems.
- # NOTE: This setting requires maildir_copy_with_hardlinks = yes to work.
- #maildir_copy_preserve_filename = no
- protocol imap {
- # Login executable location.
- #login_executable = /usr/lib/dovecot/imap-login
- # IMAP executable location. Changing this allows you to execute other
- # binaries before the imap process is executed.
- #
- # This would write rawlogs into ~/dovecot.rawlog/ directory:
- # mail_executable = /usr/lib/dovecot/rawlog /usr/lib/dovecot/imap
- #
- # This would attach gdb into the imap process and write backtraces into
- # /tmp/gdbhelper.* files:
- # mail_executable = /usr/libexec/dovecot/gdbhelper /usr/libexec/dovecot/imap
- #
- #mail_executable = /usr/lib/dovecot/imap
- # Maximum IMAP command line length in bytes. Some clients generate very long
- # command lines with huge mailboxes, so you may need to raise this if you get
- # "Too long argument" or "IMAP command line too large" errors often.
- #imap_max_line_length = 65536
- # Support for dynamically loadable plugins. mail_plugins is a space separated
- # list of plugins to load.
- mail_plugins = quota imap_quota
- #mail_plugin_dir = /usr/lib/dovecot/modules/imap
- # Send IMAP capabilities in greeting message. This makes it unnecessary for
- # clients to request it with CAPABILITY command, so it saves one round-trip.
- # Many clients however don't understand it and ask the CAPABILITY anyway.
- #login_greeting_capability = no
- # Override the IMAP CAPABILITY response.
- #imap_capability =
- # Workarounds for various clien/t bugs:
- # delay-newmail:
- # Send EXISTS/RECENT new mail notifications only when replying to NOOP
- # and CHECK commands. Some clients ignore them otherwise, for example OSX
- # Mail (<v2.1). Outlook Express breaks more badly though, without this it
- # may show user "Message no longer in server" errors. Note that OE6 still
- # breaks even with this workaround if synchronization is set to
- # "Headers Only".
- # outlook-idle:
- # Outlook and Outlook Express never abort IDLE command, so if no mail
- # arrives in half a hour, Dovecot closes the connection. This is still
- # fine, except Outlook doesn't connect back so you don't see if new mail
- # arrives.
- # netscape-eoh:
- # Netscape 4.x breaks if message headers don't end with the empty "end of
- # headers" line. Normally all messages have this, but setting this
- # workaround makes sure that Netscape never breaks by adding the line if
- # it doesn't exist. This is done only for FETCH BODY[HEADER.FIELDS..]
- # commands. Note that RFC says this shouldn't be done.
- # tb-extra-mailbox-sep:
- # With mbox storage a mailbox can contain either mails or submailboxes,
- # but not both. Thunderbird separates these two by forcing server to
- # accept '/' suffix in mailbox names in subscriptions list.
- # The list is space-separated.
- imap_client_workarounds = outlook-idle
- }
- ##
- ## POP3 specific settings
- ##
- protocol pop3 {
- # Login executable location.
- #login_executable = /usr/lib/dovecot/pop3-login
- # POP3 executable location. See IMAP's mail_executable above for examples
- # how this could be changed.
- #mail_executable = /usr/lib/dovecot/pop3
- # Don't try to set mails non-recent or seen with POP3 sessions. This is
- # mostly intended to reduce disk I/O. With maildir it doesn't move files
- # from new/ to cur/, with mbox it doesn't write Status-header.
- #pop3_no_flag_updates = no
- # Support LAST command which exists in old POP3 specs, but has been removed
- # from new ones. Some clients still wish to use this though. Enabling this
- # makes RSET command clear all \Seen flags from messages.
- #pop3_enable_last = no
- # If mail has X-UIDL header, use it as the mail's UIDL.
- #pop3_reuse_xuidl = no
- # Keep the mailbox locked for the entire POP3 session.
- #pop3_lock_session = no
- pop3_uidl_format = UID%u-%v
- # POP3 logout format string:
- # %t - number of TOP commands
- # %p - number of bytes sent to client as a result of TOP command
- # %r - number of RETR commands
- # %b - number of bytes sent to client as a result of RETR command
- # %d - number of deleted messages
- # %m - number of messages (before deletion)
- # %s - mailbox size in bytes (before deletion)
- #pop3_logout_format = top=%t/%p, retr=%r/%b, del=%d/%m, size=%s
- # Support for dynamically loadable plugins. mail_plugins is a space separated
- # list of plugins to load.
- mail_plugins = quota
- #mail_plugin_dir = /usr/lib/dovecot/modules/pop3
- # Workarounds for various client bugs:
- # outlook-no-nuls:
- # Outlook and Outlook Express hang if mails contain NUL characters.
- # This setting replaces them with 0x80 character.
- # oe-ns-eoh:
- # Outlook Express and Netscape Mail breaks if end of headers-line is
- # missing. This option simply sends it if it's missing.
- # The list is space-separated.
- #pop3_client_workarounds =
- }
- # Executable location
- #auth_executable = /usr/lib/dovecot/dovecot-auth
- # Set max. process size in megabytes.
- #auth_process_size = 256
- # Authentication cache size in kilobytes. 0 means it's disabled.
- # Note that bsdauth, PAM and vpopmail require cache_key to be set for caching
- # to be used.
- #auth_cache_size = 0
- # Time to live in seconds for cached data. After this many seconds the cached
- # record is no longer used, *except* if the main database lookup returns
- # internal failure. We also try to handle password changes automatically: If
- # user's previous authentication was successful, but this one wasn't, the
- # cache isn't used. For now this works only with plaintext authentication.
- #auth_cache_ttl = 3600
- # Space separated list of realms for SASL authentication mechanisms that need
- # them. You can leave it empty if you don't want to support multiple realms.
- # Many clients simply use the first one listed here, so keep the default realm
- # first.
- #auth_realms =
- # Default realm/domain to use if none was specified. This is used for both
- # SASL realms and appending @domain to username in plaintext logins.
- #auth_default_realm =
- # List of allowed characters in username. If the user-given username contains
- # a character not listed in here, the login automatically fails. This is just
- # an extra check to make sure user can't exploit any potential quote escaping
- # vulnerabilities with SQL/LDAP databases. If you want to allow all characters,
- # set this value to empty.
- auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@
- # Username character translations before it's looked up from databases. The
- # value contains series of from -> to characters. For example "#@/@" means
- # that '#' and '/' characters are translated to '@'.
- #auth_username_translation =
- # Username formatting before it's looked up from databases. You can use
- # the standard variables here, eg. %Lu would lowercase the username, %n would
- # drop away the domain if it was given, or "%n-AT-%d" would change the '@' into
- # "-AT-". This translation is done after auth_username_translation changes.
- #auth_username_format =
- # If you want to allow master users to log in by specifying the master
- # username within the normal username string (ie. not using SASL mechanism's
- # support for it), you can specify the separator character here. The format
- # is then <username><separator><master username>. UW-IMAP uses "*" as the
- # separator, so that could be a good choice.
- #auth_master_user_separator =
- # Username to use for users logging in with ANONYMOUS SASL mechanism
- #auth_anonymous_username = anonymous
- # More verbose logging. Useful for figuring out why authentication isn't
- # working.
- #auth_verbose = no
- # Even more verbose logging for debugging purposes. Shows for example SQL
- # queries.
- auth_debug = yes
- # In case of password mismatches, log the passwords and used scheme so the
- # problem can be debugged. Requires auth_debug=yes to be set.
- #auth_debug_passwords = no
- # Maximum number of dovecot-auth worker processes. They're used to execute
- # blocking passdb and userdb queries (eg. MySQL and PAM). They're
- # automatically created and destroyed as needed.
- #auth_worker_max_count = 30
- # Host name to use in GSSAPI principal names. The default is to use the
- # name returned by gethostname().
- #auth_gssapi_hostname =
- # Kerberos keytab to use for the GSSAPI mechanism. Will use the system
- # default (usually /etc/krb5.keytab) if not specified.
- #auth_krb5_keytab =
- auth default {
- # Space separated list of wanted authentication mechanisms:
- # plain login digest-md5 cram-md5 ntlm rpa apop anonymous gssapi
- mechanisms = plain
- #
- # Password database is used to verify user's password (and nothing more).
- # You can have multiple passdbs and userdbs. This is useful if you want to
- # allow both system users (/etc/passwd) and virtual users to login without
- # duplicating the system users into virtual database.
- #
- # <doc/wiki/PasswordDatabase.txt>
- #
- # checkpassword executable authentication
- # NOTE: You will probably want to use "userdb prefetch" with this.
- # <doc/wiki/PasswordDatabase.CheckPassword.txt>
- passdb checkpassword {
- # Path for checkpassword binary
- args = /var/qmail/bin/auth_pop
- }
- # vpopmail authentication <doc/wiki/AuthDatabase.VPopMail.txt>
- #passdb vpopmail {
- # [cache_key=<key>] - See cache_key in PAM for explanation.
- #args =
- #}
- #
- # User database specifies where mails are located and what user/group IDs
- # own them. For single-UID configuration use "static".
- #
- # <doc/wiki/UserDatabase.txt>
- #
- # /etc/passwd or similar, using getpwnam(). In many systems nowadays this
- # uses Name Service Switch, which is configured in /etc/nsswitch.conf.
- # <doc/wiki/AuthDatabase.Passwd.txt>
- #}
- # "prefetch" user database means that the passdb already provided the
- # needed information and there's no need to do a separate userdb lookup.
- # This can be made to work with SQL and LDAP databases, see their example
- # configuration files for more information how to do it.
- # <doc/wiki/UserDatabase.Prefetch.txt>
- userdb prefetch {
- }
- # User to use for the process. This user needs access to only user and
- # password databases, nothing else. Only shadow and pam authentication
- # requires roots, so use something else if possible. Note that passwd
- # authentication with BSDs internally accesses shadow files, which also
- # requires roots. Note that this user is NOT used to access mails.
- # That user is specified by userdb above.
- user = root
- #passdb pam {
- # use /etc/pam.d/imap and /etc/pam.d/pop3
- # args = args = failure_show_msg=yes
- #}
- }
- plugin {
- # Here you can give some extra environment variables to mail processes.
- # This is mostly meant for passing parameters to plugins. %variable
- # expansion is done for all values.
- # Quota plugin. Multiple backends are supported:
- # dirsize: Find and sum all the files found from mail directory.
- # Extremely SLOW with Maildir. It'll eat your CPU and disk I/O.
- # dict: Keep quota stored in dictionary (eg. SQL)
- # maildir: Maildir++ quota
- # fs: Read-only support for filesystem quota
- quota = maildir
- # ACL plugin. vfile backend reads ACLs from "dovecot-acl" file from maildir
- # directory. You can also optionally give a global ACL directory path where
- # ACLs are applied to all users' mailboxes. The global ACL directory contains
- # one file for each mailbox, eg. INBOX or sub.mailbox.
- #acl = vfile:/etc/dovecot-acls
- # Convert plugin. If set, specifies the source storage path which is
- # converted to destination storage (mail_location) when the user logs in.
- # The existing mail directory is renamed to <dir>-converted.
- #convert_mail = mbox:%h/mail
- # Skip mailboxes which we can't open successfully instead of aborting.
- #convert_skip_broken_mailboxes = no
- # Trash plugin. When saving a message would make user go over quota, this
- # plugin automatically deletes the oldest mails from configured mailboxes
- # until the message can be saved within quota limits. The configuration file
- # is a text file where each line is in format: <priority> <mailbox name>
- # Mails are first deleted in lowest -> highest priority number order
- #trash = /etc/dovecot-trash.conf
- # Lazy expunge plugin. Currently works only with maildirs. When a user
- # expunges mails, the mails are moved to a mailbox in another namespace
- # (1st). When a mailbox is deleted, the mailbox is moved to another namespace
- # (2nd) as well. Also if the deleted mailbox had any expunged messages,
- # they're moved to a 3rd namespace. The mails won't be counted in quota,
- # and they're not deleted automatically (use a cronjob or something).
- #lazy_expunge = .EXPUNGED/ .DELETED/ .DELETED/.EXPUNGED/
- }
- auth_debug=yes
- auth_debug_passwords=yes
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement