[Dovecot] Yet another going from 1.2 to 2.X question: authentication

Mauricio Tavares raubvogel at gmail.com
Mon Oct 7 07:17:43 EEST 2013


On Thu, Sep 19, 2013 at 2:40 AM, Noel Butler <noel.butler at ausics.net> wrote:
> On Thu, 2013-09-19 at 00:50 -0400, Mauricio Tavares wrote:
>
>> So in 1.2.9 I had something like this:
>>
>> [...]
>>
>> socket listen {
>>         master {
>>                 path = /var/run/dovecot/auth-master
>>                 mode = 0600
>>                 user = virtual # User running Dovecot LDA's deliver
>>         }
>> }
>>
>> # Dovecot as SASL Auth
>> socket listen {
>>         client {
>>                 path = /var/spool/postfix/private/dovecot-auth
>>                 mode = 0660
>>                 user = postfix
>>                 group = postfix
>>         }
>> }
>>
>> I see I can, per http://wiki2.dovecot.org/HowTo/PostfixAndDovecotSASL,
>> setup the sasl entry as
>>
>> # Dovecot as SASL Auth
>> service auth {
>>         unix_listener /var/spool/postfix/private/dovecot-auth
>>         mode = 0660
>>         user = postfix
>>         group = postfix
>> }
>>
>> what about the lda? From http://wiki2.dovecot.org/LDA I take it would
>> be as simple as
>>
>> service auth {
>>         unix_listener auth-userdb {
>>                 mode = 0600
>>                 user = virtual # User running Dovecot LDA's deliver
>>         }
>> }
>>
>> Am I correct?
>
>
> Yes, but no need for two service auth's, put them under the one.  you
> might want to also include group= in addition to user, probably wont
> matter too much if you don't, I cant remember the consequences of not.
>
      Makes sense, so I shall set them up as

/etc/dovecot/conf.d/10-master.conf
# http://wiki2.dovecot.org/HowTo/PostfixAndDovecotSASL

service auth {
        unix_listener auth-userdb {
                mode = 0600
                user = virtual # User running Dovecot LDA's deliver
        }

        # Dovecot as SASL Auth
        unix_listener /var/spool/postfix/private/dovecot-auth {
                mode = 0660
                user = postfix
                group = postfix
        }
}

Thanks for the help (and sorry for the late reply)! Now as soon as the
namespaces make sense to me and I figure out how to get sieve properly
configured I can do the upgrade.


More information about the dovecot mailing list