Skip to content

Dovecot.conf

# Location for users' mailboxes. This is the same as the old default_mail_env
# setting. The default is empty, which means that Dovecot tries to find the
# mailboxes automatically. This won't work if the user doesn't have any mail
# yet, so you should explicitly tell Dovecot the full location.
#
# If you're using mbox, giving a path to the INBOX file (eg. /var/mail/%u)
# isn't enough. You'll also need to tell Dovecot where the other mailboxes are
# and where Dovecot can place its index files. This is called the "root mail
# directory", and it must be the first path given in the mail_location setting.
#
# There are a few special variables you can use, eg.:
#
#   %u - username
#   %n - user part in user@domain, same as %u if there's no domain
#   %d - domain part in user@domain, empty if there's no domain
#   %h - home directory
mail_location = maildir:/var/mail/vhosts/%d/%u
# Enable mail process debugging. This can help you figure out why Dovecot
# isn't finding your mails.
mail_debug = no
# Maximum number of running mail processes. When this limit is reached,
# new users aren't allowed to log in.
max_mail_processes = 20
protocol imap {
}
protocol pop3 {
}
protocol lda {
  # Address to use when sending rejection mails.
  postmaster_address = postmaster@katzke.net
}
# List of allowed characters in username. If the user-given username contains
# a character not listed in here, the login automatically fails. This is just
# an extra check to make sure user can't exploit any potential quote escaping
# vulnerabilities with SQL/LDAP databases. If you want to allow all characters,
# set this value to empty.
auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@
# Username character translations before it's looked up from databases. The
# value contains series of from -> to characters. For example "#@/@" means
# that '#' and '/' characters are translated to '@'.
auth_username_translation = "#@/@+@"
# More verbose logging. Useful for figuring out why authentication isn't
# working.
auth_verbose = no
# Even more verbose logging for debugging purposes. Shows for example SQL
# queries.
auth_debug = no
# In case of password mismatches, log the passwords and used scheme so the
# problem can be debugged. Requires auth_debug=yes to be set.
auth_debug_passwords = no
# Maximum number of dovecot-auth worker processes. They're used to execute
# blocking passdb and userdb queries (eg. MySQL and PAM). They're
# automatically created and destroyed as needed.
auth_worker_max_count = 10
auth default {
  # Space separated list of wanted authentication mechanisms:
  #   plain login digest-md5 cram-md5 ntlm rpa apop anonymous gssapi
  mechanisms = plain
  # SQL database
  # http://wiki.dovecot.org/AuthDatabase/SQL
  userdb static {
    args = uid=502 gid=502 home=/var/mail/vmail
  }
  passdb sql {
    # Path for SQL configuration file, see doc/dovecot-sql.conf for example
    args = /etc/dovecot/mysql.conf
  }
  # User to use for the process. This user needs access to only user and
  # password databases, nothing else. Only shadow and pam authentication
  # requires roots, so use something else if possible. Note that passwd
  # authentication with BSDs internally accesses shadow files, which also
  # requires roots. Note that this user is NOT used to access mails.
  # That user is specified by userdb above.
  user = dovecotauth
  # It's possible to export the authentication interface to other programs:
  # This is used to allow postfix to use dovecot for smtp authentication.

  socket listen {
    client {
        path=/var/spool/postfix/private/auth
        mode = 0660
        user = postfix
        group = postfix
    }
  }
}
dict {
  #quota = mysql:/etc/dovecot-dict-quota.conf
}
plugin {
}

Leave a Reply

Note: XHTML is allowed. Your email address will never be published.

Subscribe to this comment feed via RSS