Dovecot: only plain login working, how to enable starttlsPostfix/Dovecot support multiple domainsCan't...
How can atoms be electrically neutral when there is a difference in the positions of the charges?
How do you say "powers of ten"?
Second-rate spelling
If a set is open, does that imply that it has no boundary points?
Inverse of the covariance matrix of a multivariate normal distribution
Get length of the longest sequence of numbers with the same sign
Non-Italian European mafias in USA?
Wrap all numerics in JSON with quotes
Filling in Area Under Curve Causes Alignment Issues
Can we carry rice to Japan?
Don't know what I’m looking for regarding removable HDDs?
Can I become debt free or should I file for bankruptcy? How do I manage my debt and finances?
Do higher etale homotopy groups of spectrum of a field always vanish?
What am I? I am in theaters and computer programs
RS232 to Raspberry Pi Zero W
Is there any relevance to Thor getting his hair cut other than comedic value?
The need of reserving one's ability in job interviews
I encountered my boss during an on-site interview at another company. Should I bring it up when seeing him next time?
VAT refund for a conference ticket in Sweden
In iTunes 12 on macOS, how can I reset the skip count of a song?
Skis versus snow shoes - when to choose which for travelling the backcountry?
Reason why dimensional travelling would be restricted
Where is the line between being obedient and getting bullied by a boss
Plagiarism of code by other PhD student
Dovecot: only plain login working, how to enable starttls
Postfix/Dovecot support multiple domainsCan't connect to Postfix/Dovecot with Airmail.app but I can with Mail.app (Connection refused?)Relay access denied when not send from server itselfPostfix alias only forwarding to local usersPostfix very slow deliveryDovecot Quotas are not recalculated nor is mail rejected if quota is exceededEmails are bounced with 'user unknown' when using LDAP in Postfix virtual configwarning: /usr/lib/postfix/smtpd: bad command startup — throttlingDoes creation of a connected account in Outlook webmail require insecure SMTP?
I am configuring a brand new postfix/dovecot server but my brain cells are melting, I can't rembeber how to do this. All is working, postfix has the starttls enabled ( I see it in thunderbird configuration) but dovecot doesn't.
I try to change disable_plaintext_auth to yes and Thunderbird tells me that I have to change the authentication method to STARTTLS but when I do none working anymore.
I have no errors but can't receive or send email (the emails are correctly sended but not copied to the sent folder).
In the log I see this every time I try to access Thunderbird foldermail dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>
I think it's just a normal variable to set but I can't find it.
dovecot:
# 2.2.22 (fe789d2): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.4.13 (7b14904)
# OS: Linux 4.4.0-47-generic x86_64 Ubuntu 16.04.1 LTS ext4
auth_mechanisms = plain login
disable_plaintext_auth = no
mail_location = mbox:/var/mail/%u
mail_privileged_group = mail
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = Drafts
}
mailbox Junk {
special_use = Junk
}
mailbox Sent {
special_use = Sent
}
mailbox "Sent Messages" {
special_use = Sent
}
mailbox Trash {
special_use = Trash
}
prefix =
}
passdb {
driver = pam
}
protocols = " imap pop3"
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0660
user = postfix
}
}
ssl = no
userdb {
driver = passwd
}
main.cf postfix
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = no
# TLS parameters
#smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
#smtpd_tls_key_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_cert_file = /etc/ssl/certs/server.crt
smtpd_tls_key_file = /etc/ssl/private/server.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
#smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
smtp_tls_security_level = may
smtpd_tls_security_level = may
smtp_tls_note_starttls_offer = yes
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_protocols = !SSLv2, !SSLv3
smtpd_sasl_authenticated_header = yes
smtpd_relay_restrictions = permit_sasl_authenticated, defer_unauth_destination,permit_mynetworks
myhostname = mail.example.it
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = $myhostname,example.it, mail.example.it, localhost.localdomain,localhost
#relayhost =
mynetworks = 127.0.0.0/8 192.168.100.0/24 xx.xx.211.70/32
#mailbox_command =
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
mailbox_command = /usr/lib/dovecot/deliver
compatibility_level = 2
mail_spool_directory = /var/mail/
master.cf
submission inet n - y - - smtpd
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=may
-o smtpd_sasl_auth_enable=yes
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-o milter_macro_daemon_name=ORIGINATING
dovecot10-auth.conf
disable_plaintext_auth = no
auth_mechanisms = plain login
dovecot
asked Nov 11 '16 at 14:18
KrekerKreker
2551718
bumped to the homepage by Community♦ 16 mins ago
This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
add a comment |
I am configuring a brand new postfix/dovecot server but my brain cells are melting, I can't rembeber how to do this. All is working, postfix has the starttls enabled ( I see it in thunderbird configuration) but dovecot doesn't.
I try to change disable_plaintext_auth to yes and Thunderbird tells me that I have to change the authentication method to STARTTLS but when I do none working anymore.
I have no errors but can't receive or send email (the emails are correctly sended but not copied to the sent folder).
In the log I see this every time I try to access Thunderbird foldermail dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>
I think it's just a normal variable to set but I can't find it.
dovecot:
# 2.2.22 (fe789d2): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.4.13 (7b14904)
# OS: Linux 4.4.0-47-generic x86_64 Ubuntu 16.04.1 LTS ext4
auth_mechanisms = plain login
disable_plaintext_auth = no
mail_location = mbox:/var/mail/%u
mail_privileged_group = mail
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = Drafts
}
mailbox Junk {
special_use = Junk
}
mailbox Sent {
special_use = Sent
}
mailbox "Sent Messages" {
special_use = Sent
}
mailbox Trash {
special_use = Trash
}
prefix =
}
passdb {
driver = pam
}
protocols = " imap pop3"
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0660
user = postfix
}
}
ssl = no
userdb {
driver = passwd
}
main.cf postfix
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = no
# TLS parameters
#smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
#smtpd_tls_key_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_cert_file = /etc/ssl/certs/server.crt
smtpd_tls_key_file = /etc/ssl/private/server.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
#smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
smtp_tls_security_level = may
smtpd_tls_security_level = may
smtp_tls_note_starttls_offer = yes
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_protocols = !SSLv2, !SSLv3
smtpd_sasl_authenticated_header = yes
smtpd_relay_restrictions = permit_sasl_authenticated, defer_unauth_destination,permit_mynetworks
myhostname = mail.example.it
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = $myhostname,example.it, mail.example.it, localhost.localdomain,localhost
#relayhost =
mynetworks = 127.0.0.0/8 192.168.100.0/24 xx.xx.211.70/32
#mailbox_command =
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
mailbox_command = /usr/lib/dovecot/deliver
compatibility_level = 2
mail_spool_directory = /var/mail/
master.cf
submission inet n - y - - smtpd
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=may
-o smtpd_sasl_auth_enable=yes
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-o milter_macro_daemon_name=ORIGINATING
dovecot10-auth.conf
disable_plaintext_auth = no
auth_mechanisms = plain login
dovecot
asked Nov 11 '16 at 14:18
KrekerKreker
2551718
bumped to the homepage by Community♦ 16 mins ago
This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
add a comment |
I am configuring a brand new postfix/dovecot server but my brain cells are melting, I can't rembeber how to do this. All is working, postfix has the starttls enabled ( I see it in thunderbird configuration) but dovecot doesn't.
I try to change disable_plaintext_auth to yes and Thunderbird tells me that I have to change the authentication method to STARTTLS but when I do none working anymore.
I have no errors but can't receive or send email (the emails are correctly sended but not copied to the sent folder).
In the log I see this every time I try to access Thunderbird foldermail dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>
I think it's just a normal variable to set but I can't find it.
dovecot:
# 2.2.22 (fe789d2): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.4.13 (7b14904)
# OS: Linux 4.4.0-47-generic x86_64 Ubuntu 16.04.1 LTS ext4
auth_mechanisms = plain login
disable_plaintext_auth = no
mail_location = mbox:/var/mail/%u
mail_privileged_group = mail
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = Drafts
}
mailbox Junk {
special_use = Junk
}
mailbox Sent {
special_use = Sent
}
mailbox "Sent Messages" {
special_use = Sent
}
mailbox Trash {
special_use = Trash
}
prefix =
}
passdb {
driver = pam
}
protocols = " imap pop3"
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0660
user = postfix
}
}
ssl = no
userdb {
driver = passwd
}
main.cf postfix
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = no
# TLS parameters
#smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
#smtpd_tls_key_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_cert_file = /etc/ssl/certs/server.crt
smtpd_tls_key_file = /etc/ssl/private/server.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
#smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
smtp_tls_security_level = may
smtpd_tls_security_level = may
smtp_tls_note_starttls_offer = yes
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_protocols = !SSLv2, !SSLv3
smtpd_sasl_authenticated_header = yes
smtpd_relay_restrictions = permit_sasl_authenticated, defer_unauth_destination,permit_mynetworks
myhostname = mail.example.it
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = $myhostname,example.it, mail.example.it, localhost.localdomain,localhost
#relayhost =
mynetworks = 127.0.0.0/8 192.168.100.0/24 xx.xx.211.70/32
#mailbox_command =
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
mailbox_command = /usr/lib/dovecot/deliver
compatibility_level = 2
mail_spool_directory = /var/mail/
master.cf
submission inet n - y - - smtpd
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=may
-o smtpd_sasl_auth_enable=yes
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-o milter_macro_daemon_name=ORIGINATING
dovecot10-auth.conf
disable_plaintext_auth = no
auth_mechanisms = plain login
dovecot
asked Nov 11 '16 at 14:18
KrekerKreker
2551718
I am configuring a brand new postfix/dovecot server but my brain cells are melting, I can't rembeber how to do this. All is working, postfix has the starttls enabled ( I see it in thunderbird configuration) but dovecot doesn't.
I try to change disable_plaintext_auth to yes and Thunderbird tells me that I have to change the authentication method to STARTTLS but when I do none working anymore.
I have no errors but can't receive or send email (the emails are correctly sended but not copied to the sent folder).
In the log I see this every time I try to access Thunderbird foldermail dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>
I think it's just a normal variable to set but I can't find it.
dovecot:
# 2.2.22 (fe789d2): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.4.13 (7b14904)
# OS: Linux 4.4.0-47-generic x86_64 Ubuntu 16.04.1 LTS ext4
auth_mechanisms = plain login
disable_plaintext_auth = no
mail_location = mbox:/var/mail/%u
mail_privileged_group = mail
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = Drafts
}
mailbox Junk {
special_use = Junk
}
mailbox Sent {
special_use = Sent
}
mailbox "Sent Messages" {
special_use = Sent
}
mailbox Trash {
special_use = Trash
}
prefix =
}
passdb {
driver = pam
}
protocols = " imap pop3"
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0660
user = postfix
}
}
ssl = no
userdb {
driver = passwd
}
main.cf postfix
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = no
# TLS parameters
#smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
#smtpd_tls_key_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_cert_file = /etc/ssl/certs/server.crt
smtpd_tls_key_file = /etc/ssl/private/server.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
#smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
smtp_tls_security_level = may
smtpd_tls_security_level = may
smtp_tls_note_starttls_offer = yes
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_protocols = !SSLv2, !SSLv3
smtpd_sasl_authenticated_header = yes
smtpd_relay_restrictions = permit_sasl_authenticated, defer_unauth_destination,permit_mynetworks
myhostname = mail.example.it
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = $myhostname,example.it, mail.example.it, localhost.localdomain,localhost
#relayhost =
mynetworks = 127.0.0.0/8 192.168.100.0/24 xx.xx.211.70/32
#mailbox_command =
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
mailbox_command = /usr/lib/dovecot/deliver
compatibility_level = 2
mail_spool_directory = /var/mail/
master.cf
submission inet n - y - - smtpd
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=may
-o smtpd_sasl_auth_enable=yes
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-o milter_macro_daemon_name=ORIGINATING
dovecot10-auth.conf
disable_plaintext_auth = no
auth_mechanisms = plain login
dovecot
dovecot
asked Nov 11 '16 at 14:18
KrekerKreker
2551718
asked Nov 11 '16 at 14:18
KrekerKreker
2551718
asked Nov 11 '16 at 14:18
KrekerKreker
2551718
asked Nov 11 '16 at 14:18
KrekerKreker
2551718
asked Nov 11 '16 at 14:18
KrekerKreker
2551718
2551718
bumped to the homepage by Community♦ 16 mins ago
This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
bumped to the homepage by Community♦ 16 mins ago
This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
You need to configure SSL/TLS. These are the options from my coniguration:
ssl_cert = </etc/dovecot/dovecot.pem
ssl_key = </etc/dovecot/private/dovecot.pem
ssl_cipher_list = HIGH:!3DES:!EXP:!aNULL:!eNULL
ssl_dh_parameters_length = 2048
ssl_prefer_server_ciphers = yes
ssl_protocols = !SSLv3,!SSLv2
answered Nov 11 '16 at 18:09
BillThor BillThor
24.7k22662
I have to put them on the postfix conf or dovecot conf? There is a lot of missundersting, some dovecot's option can be put on the postfix files..
– Kreker
Nov 14 '16 at 16:57
@Kreker These need to be added to your dovecot conf,
– BillThor
Nov 14 '16 at 23:51
I've created the certificates like the doc says, but this doesn't work either. I have always this error in STARTTLSNov 15 10:23:26 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=nnn.nnn.nnn.nnn, lip=192.168.100.3, session=<3rI4glNB046f/4rO>It seems doesn't send the username or something
– Kreker
Nov 15 '16 at 9:24
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "2"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f814418%2fdovecot-only-plain-login-working-how-to-enable-starttls%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
You need to configure SSL/TLS. These are the options from my coniguration:
ssl_cert = </etc/dovecot/dovecot.pem
ssl_key = </etc/dovecot/private/dovecot.pem
ssl_cipher_list = HIGH:!3DES:!EXP:!aNULL:!eNULL
ssl_dh_parameters_length = 2048
ssl_prefer_server_ciphers = yes
ssl_protocols = !SSLv3,!SSLv2
answered Nov 11 '16 at 18:09
BillThor BillThor
24.7k22662
I have to put them on the postfix conf or dovecot conf? There is a lot of missundersting, some dovecot's option can be put on the postfix files..
– Kreker
Nov 14 '16 at 16:57
@Kreker These need to be added to your dovecot conf,
– BillThor
Nov 14 '16 at 23:51
I've created the certificates like the doc says, but this doesn't work either. I have always this error in STARTTLSNov 15 10:23:26 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=nnn.nnn.nnn.nnn, lip=192.168.100.3, session=<3rI4glNB046f/4rO>It seems doesn't send the username or something
– Kreker
Nov 15 '16 at 9:24
add a comment |
You need to configure SSL/TLS. These are the options from my coniguration:
ssl_cert = </etc/dovecot/dovecot.pem
ssl_key = </etc/dovecot/private/dovecot.pem
ssl_cipher_list = HIGH:!3DES:!EXP:!aNULL:!eNULL
ssl_dh_parameters_length = 2048
ssl_prefer_server_ciphers = yes
ssl_protocols = !SSLv3,!SSLv2
answered Nov 11 '16 at 18:09
BillThor BillThor
24.7k22662
I have to put them on the postfix conf or dovecot conf? There is a lot of missundersting, some dovecot's option can be put on the postfix files..
– Kreker
Nov 14 '16 at 16:57
@Kreker These need to be added to your dovecot conf,
– BillThor
Nov 14 '16 at 23:51
I've created the certificates like the doc says, but this doesn't work either. I have always this error in STARTTLSNov 15 10:23:26 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=nnn.nnn.nnn.nnn, lip=192.168.100.3, session=<3rI4glNB046f/4rO>It seems doesn't send the username or something
– Kreker
Nov 15 '16 at 9:24
add a comment |
You need to configure SSL/TLS. These are the options from my coniguration:
ssl_cert = </etc/dovecot/dovecot.pem
ssl_key = </etc/dovecot/private/dovecot.pem
ssl_cipher_list = HIGH:!3DES:!EXP:!aNULL:!eNULL
ssl_dh_parameters_length = 2048
ssl_prefer_server_ciphers = yes
ssl_protocols = !SSLv3,!SSLv2
answered Nov 11 '16 at 18:09
BillThor BillThor
24.7k22662
You need to configure SSL/TLS. These are the options from my coniguration:
ssl_cert = </etc/dovecot/dovecot.pem
ssl_key = </etc/dovecot/private/dovecot.pem
ssl_cipher_list = HIGH:!3DES:!EXP:!aNULL:!eNULL
ssl_dh_parameters_length = 2048
ssl_prefer_server_ciphers = yes
ssl_protocols = !SSLv3,!SSLv2
answered Nov 11 '16 at 18:09
BillThor BillThor
24.7k22662
answered Nov 11 '16 at 18:09
BillThor BillThor
24.7k22662
answered Nov 11 '16 at 18:09
BillThor BillThor
24.7k22662
answered Nov 11 '16 at 18:09
BillThor BillThor
24.7k22662
24.7k22662
I have to put them on the postfix conf or dovecot conf? There is a lot of missundersting, some dovecot's option can be put on the postfix files..
– Kreker
Nov 14 '16 at 16:57
@Kreker These need to be added to your dovecot conf,
– BillThor
Nov 14 '16 at 23:51
I've created the certificates like the doc says, but this doesn't work either. I have always this error in STARTTLSNov 15 10:23:26 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=nnn.nnn.nnn.nnn, lip=192.168.100.3, session=<3rI4glNB046f/4rO>It seems doesn't send the username or something
– Kreker
Nov 15 '16 at 9:24
add a comment |
I have to put them on the postfix conf or dovecot conf? There is a lot of missundersting, some dovecot's option can be put on the postfix files..
– Kreker
Nov 14 '16 at 16:57
@Kreker These need to be added to your dovecot conf,
– BillThor
Nov 14 '16 at 23:51
I've created the certificates like the doc says, but this doesn't work either. I have always this error in STARTTLSNov 15 10:23:26 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=nnn.nnn.nnn.nnn, lip=192.168.100.3, session=<3rI4glNB046f/4rO>It seems doesn't send the username or something
– Kreker
Nov 15 '16 at 9:24
I have to put them on the postfix conf or dovecot conf? There is a lot of missundersting, some dovecot's option can be put on the postfix files..
– Kreker
Nov 14 '16 at 16:57
I have to put them on the postfix conf or dovecot conf? There is a lot of missundersting, some dovecot's option can be put on the postfix files..
– Kreker
Nov 14 '16 at 16:57
@Kreker These need to be added to your dovecot conf,
– BillThor
Nov 14 '16 at 23:51
@Kreker These need to be added to your dovecot conf,
– BillThor
Nov 14 '16 at 23:51
I've created the certificates like the doc says, but this doesn't work either. I have always this error in STARTTLS
Nov 15 10:23:26 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=nnn.nnn.nnn.nnn, lip=192.168.100.3, session=<3rI4glNB046f/4rO> It seems doesn't send the username or something– Kreker
Nov 15 '16 at 9:24
I've created the certificates like the doc says, but this doesn't work either. I have always this error in STARTTLS
Nov 15 10:23:26 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=nnn.nnn.nnn.nnn, lip=192.168.100.3, session=<3rI4glNB046f/4rO> It seems doesn't send the username or something– Kreker
Nov 15 '16 at 9:24
add a comment |
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f814418%2fdovecot-only-plain-login-working-how-to-enable-starttls%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
