tachtler:dovecot_authentifizierung_-_sql
Unterschiede
Hier werden die Unterschiede zwischen zwei Versionen angezeigt.
Beide Seiten der vorigen RevisionVorhergehende ÜberarbeitungNächste Überarbeitung | Vorhergehende Überarbeitung | ||
tachtler:dovecot_authentifizierung_-_sql [2015/07/13 21:26] – [Konfigurationsdatei] klaus | tachtler:dovecot_authentifizierung_-_sql [2017/04/07 14:39] (aktuell) – [/etc/dovecot/dovecot-sql.conf.ext] klaus | ||
---|---|---|---|
Zeile 180: | Zeile 180: | ||
- Die Verwaltung der Postfächer (Mailbox) wird unter Zuhilfenahme eines **Dummy-Benutzers ('' | - Die Verwaltung der Postfächer (Mailbox) wird unter Zuhilfenahme eines **Dummy-Benutzers ('' | ||
* [[tachtler: | * [[tachtler: | ||
+ | * [[tachtler: | ||
verwendet wird. | verwendet wird. | ||
Zeile 187: | Zeile 188: | ||
| [[http:// | | [[http:// | ||
| [[http:// | | [[http:// | ||
- | | [[http:// | + | | [[http:// |
Normalerweise **trennt** [[http:// | Normalerweise **trennt** [[http:// | ||
Zeile 331: | Zeile 332: | ||
# SELECT home, uid, gid \ | # SELECT home, uid, gid \ | ||
# FROM users WHERE username = ' | # FROM users WHERE username = ' | ||
- | # Tachtler | + | # Tachtler |
user_query = SELECT 10000 AS uid, 10000 as gid, '/ | user_query = SELECT 10000 AS uid, 10000 as gid, '/ | ||
+ | # Tachtler - CentOS 7 | ||
+ | user_query = SELECT 10000 AS uid, 10000 as gid, '/ | ||
+ | # Tachtler - CentOS 7 - SQL-Quota | ||
+ | user_query = SELECT 10000 AS uid, 10000 as gid, '/ | ||
# If you wish to avoid two SQL lookups (passdb + userdb), you can use | # If you wish to avoid two SQL lookups (passdb + userdb), you can use | ||
Zeile 342: | Zeile 347: | ||
# home AS userdb_home, | # home AS userdb_home, | ||
# FROM users WHERE userid = ' | # FROM users WHERE userid = ' | ||
- | # Tachtler | + | # Tachtler |
password_query = SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, '/ | password_query = SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, '/ | ||
+ | # Tachtler - CentOS 7 | ||
+ | password_query = SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, '/ | ||
# Query to get a list of all usernames. | # Query to get a list of all usernames. | ||
Zeile 364: | Zeile 371: | ||
default_pass_scheme = PLAIN | default_pass_scheme = PLAIN | ||
-- | -- | ||
- | # Tachtler | + | # Tachtler |
user_query = SELECT 10000 AS uid, 10000 as gid, '/ | user_query = SELECT 10000 AS uid, 10000 as gid, '/ | ||
+ | # Tachtler - CentOS 7 | ||
+ | user_query = SELECT 10000 AS uid, 10000 as gid, '/ | ||
+ | # Tachtler - CentOS 7 - SQL-Quota | ||
+ | user_query = SELECT 10000 AS uid, 10000 as gid, '/ | ||
-- | -- | ||
- | # Tachtler | + | # Tachtler |
+ | password_query = SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, '/ | ||
+ | # Tachtler - CentOS 7 | ||
password_query = SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, '/ | password_query = SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, '/ | ||
-- | -- | ||
Zeile 396: | Zeile 409: | ||
* '' | * '' | ||
* '' | * '' | ||
+ | **__CentOS 6__** | ||
<code ini> | <code ini> | ||
user_query = SELECT 10000 AS uid, 10000 as gid, '/ | user_query = SELECT 10000 AS uid, 10000 as gid, '/ | ||
+ | </ | ||
+ | **__CentOS 7__** | ||
+ | <code ini> | ||
+ | user_query = SELECT 10000 AS uid, 10000 as gid, '/ | ||
+ | </ | ||
+ | und **mit SQL-Quota** | ||
+ | <code ini> | ||
+ | user_query = SELECT 10000 AS uid, 10000 as gid, '/ | ||
</ | </ | ||
* //%Ld = domain = tachtler.net (in Kleinschrift) | %Ln = localpart = klaus (in Kleinschrift) | %Lu = localpart@domain = klaus@tachtler.net (in Kleinschrift)// | * //%Ld = domain = tachtler.net (in Kleinschrift) | %Ln = localpart = klaus (in Kleinschrift) | %Lu = localpart@domain = klaus@tachtler.net (in Kleinschrift)// | ||
Zeile 410: | Zeile 432: | ||
* '' | * '' | ||
* '' | * '' | ||
+ | **__CentOS 6__** | ||
<code ini> | <code ini> | ||
password_query = SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, '/ | password_query = SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, '/ | ||
+ | </ | ||
+ | **__CentOS 7__** | ||
+ | <code ini> | ||
+ | password_query = SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, '/ | ||
</ | </ | ||
* //%Ld = domain = tachtler.net (in Kleinschrift) | %Ln = localpart = klaus (in Kleinschrift) | %Lu = localpart@domain = klaus@tachtler.net (in Kleinschrift)// | * //%Ld = domain = tachtler.net (in Kleinschrift) | %Ln = localpart = klaus (in Kleinschrift) | %Lu = localpart@domain = klaus@tachtler.net (in Kleinschrift)// | ||
Zeile 511: | Zeile 538: | ||
**ggf. Stand mit Authentifizierungsverfahren '' | **ggf. Stand mit Authentifizierungsverfahren '' | ||
* [[tachtler: | * [[tachtler: | ||
+ | * [[tachtler: | ||
beschrieben. | beschrieben. | ||
Zeile 552: | Zeile 580: | ||
< | < | ||
# doveconf -n | # doveconf -n | ||
- | # 2.2.10: / | + | # 2.2.18: / |
- | # OS: Linux 2.6.32-431.11.2.el6.x86_64 x86_64 CentOS release | + | # Pigeonhole version 0.4.8 (0c4ae064f307+) |
+ | # OS: Linux 3.10.0-229.7.2.el7.x86_64 x86_64 CentOS | ||
auth_debug = yes | auth_debug = yes | ||
+ | auth_debug_passwords = yes | ||
auth_master_user_separator = * | auth_master_user_separator = * | ||
auth_mechanisms = plain digest-md5 cram-md5 login | auth_mechanisms = plain digest-md5 cram-md5 login | ||
Zeile 564: | Zeile 594: | ||
mail_plugins = " quota acl zlib mail_log notify" | mail_plugins = " quota acl zlib mail_log notify" | ||
managesieve_notify_capability = mailto | managesieve_notify_capability = mailto | ||
- | managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress | + | managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i; |
- | comparator-i; | + | |
- | mailbox date ihave | + | |
mbox_write_locks = fcntl | mbox_write_locks = fcntl | ||
namespace { | namespace { | ||
Zeile 624: | Zeile 652: | ||
quota_warning = storage=95%% quota-warning 95 %u | quota_warning = storage=95%% quota-warning 95 %u | ||
quota_warning2 = storage=80%% quota-warning 80 %u | quota_warning2 = storage=80%% quota-warning 80 %u | ||
- | sieve = ~/.dovecot.sieve | + | sieve = file:~/sieve;active=~/.dovecot.sieve |
- | sieve_dir | + | |
zlib_save = gz | zlib_save = gz | ||
zlib_save_level = 6 | zlib_save_level = 6 | ||
Zeile 649: | Zeile 676: | ||
service managesieve-login { | service managesieve-login { | ||
inet_listener sieve { | inet_listener sieve { | ||
+ | address = 192.168.0.80 | ||
port = 4190 | port = 4190 | ||
- | } | ||
- | inet_listener sieve_deprecated { | ||
- | port = 2000 | ||
} | } | ||
} | } | ||
Zeile 665: | Zeile 690: | ||
service quota-warning { | service quota-warning { | ||
executable = script / | executable = script / | ||
+ | unix_listener quota-warning { | ||
+ | user = vmail | ||
+ | } | ||
user = vmail | user = vmail | ||
} | } | ||
Zeile 685: | Zeile 713: | ||
} | } | ||
protocol imap { | protocol imap { | ||
- | mail_max_userip_connections = 30 | + | mail_max_userip_connections = 50 |
mail_plugins = " quota acl zlib mail_log notify imap_quota imap_acl imap_zlib" | mail_plugins = " quota acl zlib mail_log notify imap_quota imap_acl imap_zlib" | ||
} | } | ||
protocol sieve { | protocol sieve { | ||
- | mail_max_userip_connections = 30 | + | mail_max_userip_connections = 50 |
} | } | ||
</ | </ | ||
Zeile 700: | Zeile 728: | ||
Stopping Dovecot Imap: | Stopping Dovecot Imap: | ||
Starting Dovecot Imap: | Starting Dovecot Imap: | ||
+ | </ | ||
+ | bzw. | ||
+ | < | ||
+ | # systemctl restart dovecot | ||
</ | </ | ||
Zeile 717: | Zeile 749: | ||
zur Anzeige bringen, wenn das **Log-Ausgabe** wie in diesem internen Link beschrieben | zur Anzeige bringen, wenn das **Log-Ausgabe** wie in diesem internen Link beschrieben | ||
* [[tachtler: | * [[tachtler: | ||
+ | * [[tachtler: | ||
gesetzt wurde: | gesetzt wurde: | ||
(**Nur relevanter Ausschnitt**): | (**Nur relevanter Ausschnitt**): | ||
< | < | ||
- | ... dovecot: master: Dovecot v2.2.10 starting up for imap, lmtp, sieve (core dumps disabled) | + | ... dovecot: master: Dovecot v2.2.18 starting up for imap, lmtp, sieve (core dumps disabled) |
... dovecot: auth: Debug: Loading modules from directory: / | ... dovecot: auth: Debug: Loading modules from directory: / | ||
... dovecot: auth: Debug: Module loaded: / | ... dovecot: auth: Debug: Module loaded: / | ||
- | ... dovecot: auth: Debug: Module loaded: / | ||
... dovecot: auth: Debug: Module loaded: / | ... dovecot: auth: Debug: Module loaded: / | ||
... dovecot: auth: Debug: Read auth token secret from / | ... dovecot: auth: Debug: Read auth token secret from / | ||
... dovecot: auth: Debug: passwd-file / | ... dovecot: auth: Debug: passwd-file / | ||
- | ... dovecot: auth: Debug: auth client connected (pid=2168) | + | ... dovecot: auth: Debug: auth client connected (pid=25782) |
... dovecot: auth: Debug: auth client connected (pid=0) | ... dovecot: auth: Debug: auth client connected (pid=0) | ||
- | ... dovecot: auth: Debug: client in: AUTH# | + | ... dovecot: auth: Debug: client in: AUTH |
- | ... dovecot: auth-worker(2180): Debug: Loading modules from directory: / | + | ... dovecot: auth-worker(25792): Debug: Loading modules from directory: / |
- | ... dovecot: auth-worker(2180): Debug: Module loaded: / | + | ... dovecot: auth-worker(25792): Debug: Module loaded: / |
- | ... dovecot: auth-worker(2180): Debug: Module loaded: / | + | ... dovecot: auth-worker(25792): Debug: Module loaded: / |
- | ... dovecot: auth-worker(2180): Debug: Module loaded: / | + | ... dovecot: auth-worker(25792): Debug: passwd-file / |
- | ... dovecot: auth-worker(2180): Debug: passwd-file / | + | ... dovecot: auth-worker(25792): Debug: sql(klaus@tachtler.net): |
- | ... dovecot: auth-worker(2180): Debug: sql(klaus@tachtler.net): | + | ... dovecot: auth: Debug: client passdb out: OK |
- | 10000 AS userdb_uid, 10000 as userdb_gid, '/var/spool/ | + | |
- | concat(' | + | |
- | AND active = 1 | + | |
- | ... dovecot: auth: Debug: client passdb out: OK# | + | |
</ | </ | ||
Zeile 755: | Zeile 783: | ||
zur Anzeige bringen, wenn das **Log-Ausgabe** wie in diesem internen Link beschrieben | zur Anzeige bringen, wenn das **Log-Ausgabe** wie in diesem internen Link beschrieben | ||
* [[tachtler: | * [[tachtler: | ||
+ | * [[tachtler: | ||
gesetzt wurde: | gesetzt wurde: | ||
(**Nur relevanter Ausschnitt**): | (**Nur relevanter Ausschnitt**): | ||
< | < | ||
- | ... dovecot: auth: Debug: master in: LIST# | + | ... dovecot: auth: Debug: master in: LIST |
- | ... dovecot: auth-worker(3091): Debug: sql(*): SELECT username AS user FROM mailbox WHERE active = 1 | + | ... dovecot: auth-worker(25799): Debug: Loading modules from directory: / |
+ | ... dovecot: auth-worker(25799): | ||
+ | ... dovecot: auth-worker(25799): | ||
+ | ... dovecot: auth-worker(25799): | ||
+ | ... dovecot: auth-worker(25799): Debug: sql(*): SELECT username AS user FROM mailbox WHERE active = 1 | ||
</ | </ | ||
Zeile 768: | Zeile 801: | ||
uid 10000 | uid 10000 | ||
gid 10000 | gid 10000 | ||
- | home /var/spool/ | + | home /srv/ |
mail maildir: | mail maildir: | ||
- | quota_rule *: | + | quota_rule *: |
# doveadm user petra@tachtler.net | # doveadm user petra@tachtler.net | ||
Zeile 776: | Zeile 809: | ||
uid 10000 | uid 10000 | ||
gid 10000 | gid 10000 | ||
- | home /var/spool/ | + | home /srv/ |
mail maildir: | mail maildir: | ||
- | quota_rule *: | + | quota_rule *: |
</ | </ | ||
Zeile 785: | Zeile 818: | ||
zur Anzeige bringen, wenn das **Log-Ausgabe** wie in diesem internen Link beschrieben | zur Anzeige bringen, wenn das **Log-Ausgabe** wie in diesem internen Link beschrieben | ||
* [[tachtler: | * [[tachtler: | ||
+ | * [[tachtler: | ||
gesetzt wurde: | gesetzt wurde: | ||
(**Nur relevanter Ausschnitt**): | (**Nur relevanter Ausschnitt**): | ||
< | < | ||
- | ... dovecot: auth: Debug: Loading modules from directory: / | + | ... dovecot: auth: Debug: master in: USER |
- | ... dovecot: auth: Debug: Module loaded: / | + | ... dovecot: auth: Debug: prefetch(klaus@tachtler.net): |
- | ... dovecot: auth: Debug: Module loaded: / | + | ... dovecot: auth-worker(25809): Debug: Loading modules from directory: / |
- | ... dovecot: auth: Debug: Module loaded: / | + | ... dovecot: auth-worker(25809): Debug: Module loaded: / |
- | ... dovecot: auth: Debug: Read auth token secret from / | + | ... dovecot: auth-worker(25809): Debug: Module loaded: / |
- | ... dovecot: auth: Debug: passwd-file / | + | ... dovecot: auth-worker(25809): Debug: passwd-file / |
- | ... dovecot: auth: Debug: master in: USER# | + | ... dovecot: auth-worker(25809): Debug: sql(klaus@tachtler.net): |
- | ... dovecot: auth: Debug: prefetch(klaus@tachtler.net): | + | ... dovecot: auth: Debug: userdb out: USER 1 klaus@tachtler.net |
- | trying the next userdb | + | ... dovecot: auth: Debug: master in: USER |
- | ... dovecot: auth-worker(5173): Debug: Loading modules from directory: / | + | ... dovecot: auth: Debug: prefetch(petra@tachtler.net): |
- | ... dovecot: auth-worker(5173): Debug: Module loaded: / | + | ... dovecot: auth-worker(25809): Debug: sql(petra@tachtler.net): |
- | ... dovecot: auth-worker(5173): Debug: Module loaded: / | + | ... dovecot: auth: Debug: userdb out: USER 1 petra@tachtler.net |
- | ... dovecot: auth-worker(5173): Debug: Module loaded: / | + | |
- | ... dovecot: auth-worker(5173): Debug: passwd-file / | + | |
- | ... dovecot: auth-worker(5173): Debug: sql(klaus@tachtler.net): | + | |
- | '/var/spool/ | + | |
- | WHERE username = ' | + | |
- | ... dovecot: auth: Debug: userdb out: USER# | + | |
- | #011home=/var/spool/ | + | |
- | ... dovecot: auth: Debug: master in: USER# | + | |
- | ... dovecot: auth: Debug: prefetch(petra@tachtler.net): | + | |
- | trying the next userdb | + | |
- | ... dovecot: auth-worker(5173): Debug: sql(petra@tachtler.net): | + | |
- | '/var/spool/ | + | |
- | WHERE username = ' | + | |
- | ... dovecot: auth: Debug: userdb out: USER# | + | |
- | #011home=/var/spool/ | + | |
</ | </ | ||
Zeile 823: | Zeile 842: | ||
zur Anzeige bringen, wenn das **Log-Ausgabe** wie in diesem internen Link beschrieben | zur Anzeige bringen, wenn das **Log-Ausgabe** wie in diesem internen Link beschrieben | ||
* [[tachtler: | * [[tachtler: | ||
+ | * [[tachtler: | ||
gesetzt wurde: | gesetzt wurde: | ||
(**Nur relevanter Ausschnitt**): | (**Nur relevanter Ausschnitt**): | ||
< | < | ||
- | ... dovecot: auth: Debug: client in: AUTH# | + | ... dovecot: auth: Debug: client in: AUTH |
- | #011session=hrKnIzz37AAKAAA8# | + | ... dovecot: auth-worker(25839): Debug: Loading modules from directory: / |
- | #011rport=23143# | + | ... dovecot: auth-worker(25839): |
- | ... dovecot: auth-worker(5369): Debug: sql(klaus@tachtler.net, | + | ... dovecot: auth-worker(25839): |
- | SELECT username AS user, password, 10000 AS userdb_uid, 10000 as userdb_gid, | + | ... dovecot: auth-worker(25839): |
- | '/var/spool/ | + | ... dovecot: auth-worker(25839): Debug: sql(klaus@tachtler.net, |
- | concat(' | + | ... dovecot: auth: Debug: client passdb out: OK |
- | username = ' | + | ... dovecot: auth: Debug: master in: REQUEST |
- | ... dovecot: auth: Debug: client passdb out: OK# | + | ... dovecot: auth: Debug: prefetch(klaus@tachtler.net, |
- | ... dovecot: auth: Debug: master in: REQUEST# | + | ... dovecot: auth: Debug: master userdb out: USER |
- | # | + | ... dovecot: imap-login: Login: user=< |
- | ... dovecot: auth: Debug: prefetch(klaus@tachtler.net, | + | ... dovecot: imap(klaus@tachtler.net): |
- | ... dovecot: auth: Debug: master userdb out: USER# | + | ... dovecot: imap(klaus@tachtler.net): |
- | #011uid=10000#011gid=10000#011home=/var/spool/ | + | ... dovecot: imap(klaus@tachtler.net): |
- | # | + | ... dovecot: imap(klaus@tachtler.net): |
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
+ | ... dovecot: imap(klaus@tachtler.net): | ||
</ | </ | ||
tachtler/dovecot_authentifizierung_-_sql.txt · Zuletzt geändert: 2017/04/07 14:39 von klaus