Mercurial > dovecot > original-hg > dovecot-1.2
annotate dovecot-example.conf @ 666:36ac2fd352ff HEAD
Added ssl_disable setting.
author | Timo Sirainen <tss@iki.fi> |
---|---|
date | Mon, 25 Nov 2002 12:45:40 +0200 |
parents | b88b5488bcfd |
children | 0438621d25ff |
rev | line source |
---|---|
0 | 1 ## Dovecot 1.0 configuration file |
2 | |
3 # Default values are shown after each value, it's not required to uncomment | |
435 | 4 # any of the lines. Exception to this are paths, they're just examples |
5 # with real defaults being based on configure options. The paths listed here | |
6 # are for configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var | |
657
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
644
diff
changeset
|
7 # --with-ssldir=/etc/ssl |
0 | 8 |
9 # Port to listen in for IMAP connections. This port is used for TLS | |
10 # connections as well. Setting it to 0 disables it. | |
11 #imap_port = 143 | |
12 | |
13 # Port to listen in for SSL IMAP connections. Setting it to 0 disables it. | |
14 #imaps_port = 993 | |
15 | |
16 # IP or host address where to listen in for IMAP connections. Empty means to | |
17 # listen in all interfaces. It's not possible to specify multiple. | |
18 #imap_listen = | |
19 | |
20 # IP or host address where to listen in for SSL IMAP connections. Defaults | |
21 # to imap_listen if not specified. | |
22 #imaps_listen = | |
23 | |
666 | 24 # Disable SSL support. |
25 #ssl_disable = no | |
26 | |
519 | 27 # PEM encoded X.509 SSL/TLS certificate and private key. They're opened before |
518
1f9b96080525
Updated SSL certificate comments.
Timo Sirainen <tss@iki.fi>
parents:
472
diff
changeset
|
28 # dropping root privileges, so keep the key file unreadable by anyone but |
657
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
644
diff
changeset
|
29 # root. Included doc/mkcert.sh can be used to easily generate self-signed |
85a888d2766e
Added script to easily generate self-signed certificate.
Timo Sirainen <tss@iki.fi>
parents:
644
diff
changeset
|
30 # certificate, just make sure to update the domains in dovecot-openssl.cnf |
0 | 31 #ssl_cert_file = /etc/ssl/certs/imapd.pem |
32 #ssl_key_file = /etc/ssl/private/imapd.pem | |
33 | |
615
0d852af6842e
Master process generates DH/RSA parameters now and stores them into file
Timo Sirainen <tss@iki.fi>
parents:
614
diff
changeset
|
34 # SSL parameter file. Master process generates this file for login processes. |
0d852af6842e
Master process generates DH/RSA parameters now and stores them into file
Timo Sirainen <tss@iki.fi>
parents:
614
diff
changeset
|
35 # It contains Diffie Hellman and RSA parameters. |
0d852af6842e
Master process generates DH/RSA parameters now and stores them into file
Timo Sirainen <tss@iki.fi>
parents:
614
diff
changeset
|
36 #ssl_parameters_file = /var/run/dovecot/ssl-parameters.dat |
0d852af6842e
Master process generates DH/RSA parameters now and stores them into file
Timo Sirainen <tss@iki.fi>
parents:
614
diff
changeset
|
37 |
0d852af6842e
Master process generates DH/RSA parameters now and stores them into file
Timo Sirainen <tss@iki.fi>
parents:
614
diff
changeset
|
38 # How often to regenerate the SSL parameters file. Generation is quite CPU |
0d852af6842e
Master process generates DH/RSA parameters now and stores them into file
Timo Sirainen <tss@iki.fi>
parents:
614
diff
changeset
|
39 # intensive operation. The value is in hours, 0 disables regeneration |
0d852af6842e
Master process generates DH/RSA parameters now and stores them into file
Timo Sirainen <tss@iki.fi>
parents:
614
diff
changeset
|
40 # entirely. |
0d852af6842e
Master process generates DH/RSA parameters now and stores them into file
Timo Sirainen <tss@iki.fi>
parents:
614
diff
changeset
|
41 #ssl_parameters_regenerate = 24 |
0d852af6842e
Master process generates DH/RSA parameters now and stores them into file
Timo Sirainen <tss@iki.fi>
parents:
614
diff
changeset
|
42 |
0 | 43 # Disable LOGIN command and all other plaintext authentications unless |
44 # SSL/TLS is used (LOGINDISABLED capability) | |
45 #disable_plaintext_auth = no | |
46 | |
35
b420373f88f6
Added log_path and log_timestamp settings to config file. Removed -l command
Timo Sirainen <tss@iki.fi>
parents:
27
diff
changeset
|
47 # Use this logfile instead of syslog() |
b420373f88f6
Added log_path and log_timestamp settings to config file. Removed -l command
Timo Sirainen <tss@iki.fi>
parents:
27
diff
changeset
|
48 #log_path = |
b420373f88f6
Added log_path and log_timestamp settings to config file. Removed -l command
Timo Sirainen <tss@iki.fi>
parents:
27
diff
changeset
|
49 |
b420373f88f6
Added log_path and log_timestamp settings to config file. Removed -l command
Timo Sirainen <tss@iki.fi>
parents:
27
diff
changeset
|
50 # Prefix for each line written to log file. % codes are in strftime(3) |
b420373f88f6
Added log_path and log_timestamp settings to config file. Removed -l command
Timo Sirainen <tss@iki.fi>
parents:
27
diff
changeset
|
51 # format. Note the extra space at the end of line. |
b420373f88f6
Added log_path and log_timestamp settings to config file. Removed -l command
Timo Sirainen <tss@iki.fi>
parents:
27
diff
changeset
|
52 #log_timestamp = %b %d %H:%M:%S |
b420373f88f6
Added log_path and log_timestamp settings to config file. Removed -l command
Timo Sirainen <tss@iki.fi>
parents:
27
diff
changeset
|
53 |
0 | 54 ## |
55 ## Login process | |
56 ## | |
57 | |
58 # Executable location | |
661
b88b5488bcfd
updated lib paths to libexec ones
Timo Sirainen <tss@iki.fi>
parents:
657
diff
changeset
|
59 #login_executable = /usr/libexec/dovecot/imap-login |
0 | 60 |
61 # User to use for imap-login process | |
62 #login_user = imapd | |
63 | |
64 # Directory where imap-auth places authentication UNIX sockets which login | |
65 # needs to be able to connect to. The sockets are created when running as | |
66 # root, so you don't need to give imap-auth any access for it. | |
67 #login_dir = /var/run/dovecot/login | |
68 | |
435 | 69 # chroot imap-login process to the login_dir. Only reason not to do this |
0 | 70 # is if you wish to run the whole imapd without roots. |
71 #login_chroot = yes | |
72 | |
613
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
73 # Should each login be processed in it's own process (yes), or should one |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
74 # login process be allowed to process multiple connections (no)? Yes is more |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
75 # secure, espcially with SSL/TLS enabled. No is faster since there's no need |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
76 # to create processes all the time. |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
77 #login_process_per_connection = yes |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
78 |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
79 # Number of imap-login processes to create. If login_process_per_user is |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
80 # yes, this is the number of extra processes waiting for users to log in. |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
81 #login_processes_count = 3 |
0 | 82 |
614
e60620644af3
login_process_per_connection = yes scales now better when multiple users are
Timo Sirainen <tss@iki.fi>
parents:
613
diff
changeset
|
83 # Maximum number of extra login processes to create. The extra process count |
e60620644af3
login_process_per_connection = yes scales now better when multiple users are
Timo Sirainen <tss@iki.fi>
parents:
613
diff
changeset
|
84 # usually stays at login_processes_count, but when multiple users start logging |
e60620644af3
login_process_per_connection = yes scales now better when multiple users are
Timo Sirainen <tss@iki.fi>
parents:
613
diff
changeset
|
85 # in at the same time more extra processes are created. To prevent fork-bombing |
e60620644af3
login_process_per_connection = yes scales now better when multiple users are
Timo Sirainen <tss@iki.fi>
parents:
613
diff
changeset
|
86 # we check only once in a second if new processes should be created - if all |
e60620644af3
login_process_per_connection = yes scales now better when multiple users are
Timo Sirainen <tss@iki.fi>
parents:
613
diff
changeset
|
87 # of them are used at the time, we double their amount until limit set by this |
e60620644af3
login_process_per_connection = yes scales now better when multiple users are
Timo Sirainen <tss@iki.fi>
parents:
613
diff
changeset
|
88 # setting is reached. This setting is used only if login_process_per_use is yes. |
e60620644af3
login_process_per_connection = yes scales now better when multiple users are
Timo Sirainen <tss@iki.fi>
parents:
613
diff
changeset
|
89 #login_max_processes_count = 128 |
e60620644af3
login_process_per_connection = yes scales now better when multiple users are
Timo Sirainen <tss@iki.fi>
parents:
613
diff
changeset
|
90 |
0 | 91 # Maximum number of connections allowed in login state. When this limit is |
613
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
92 # reached, the oldest connections are dropped. If login_process_per_user |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
93 # is no, this is a per-process value, so the absolute maximum number of users |
1906116a62ce
Finally support for handling each login connection in it's own process.
Timo Sirainen <tss@iki.fi>
parents:
600
diff
changeset
|
94 # logging in actually login_processes_count * max_logging_users. |
0 | 95 #max_logging_users = 256 |
96 | |
97 ## | |
98 ## IMAP process | |
99 ## | |
100 | |
101 # Executable location | |
661
b88b5488bcfd
updated lib paths to libexec ones
Timo Sirainen <tss@iki.fi>
parents:
657
diff
changeset
|
102 #imap_executable = /usr/libexec/dovecot/imap |
0 | 103 |
104 # Maximum number of running imap processes. When this limit is reached, | |
105 # new users aren't allowed to log in. | |
106 #max_imap_processes = 1024 | |
107 | |
596
ab3590c3a7d9
Added verbose_proctitle setting: Show more verbose process titles (in ps).
Timo Sirainen <tss@iki.fi>
parents:
519
diff
changeset
|
108 # Show more verbose process titles (in ps). Currently shows user name and |
ab3590c3a7d9
Added verbose_proctitle setting: Show more verbose process titles (in ps).
Timo Sirainen <tss@iki.fi>
parents:
519
diff
changeset
|
109 # IP address. Useful for seeing who are actually using the IMAP processes |
ab3590c3a7d9
Added verbose_proctitle setting: Show more verbose process titles (in ps).
Timo Sirainen <tss@iki.fi>
parents:
519
diff
changeset
|
110 # (eg. shared mailboxes or if same uid is used for multiple accounts). |
ab3590c3a7d9
Added verbose_proctitle setting: Show more verbose process titles (in ps).
Timo Sirainen <tss@iki.fi>
parents:
519
diff
changeset
|
111 #verbose_proctitle = no |
ab3590c3a7d9
Added verbose_proctitle setting: Show more verbose process titles (in ps).
Timo Sirainen <tss@iki.fi>
parents:
519
diff
changeset
|
112 |
0 | 113 # Valid UID/GID ranges for imap users, defaults to 500 and above. |
114 # Note that denying root logins is hardcoded to imap-master binary and | |
115 # can't be done even if first_valid_uid is set to 0. | |
116 #first_valid_uid = 500 | |
117 #last_valid_uid = 0 | |
118 | |
119 #first_valid_gid = 1 | |
120 #last_valid_gid = 0 | |
121 | |
122 # ':' separated list of directories under which chrooting is allowed for imap | |
123 # processes (ie. /var/mail will allow chrooting to /var/mail/foo/bar too). | |
124 # WARNING: Never add directories here which local users can modify, that | |
125 # may lead to root exploit. Usually this should be done only if you don't | |
126 # allow shell access for users. | |
127 #valid_chroot_dirs = | |
128 | |
462
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
129 # Space-separated list of fields to cache for all mails. Currently these |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
130 # fields are allowed followed by a list of commands they speed up: |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
131 # |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
132 # Envelope - FETCH ENVELOPE and SEARCH FROM, TO, CC, BCC, SUBJECT, |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
133 # SENTBEFORE, SENTON, SENTSINCE, HEADER MESSAGE-ID, |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
134 # HEADER IN-REPLY-TO |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
135 # Body - FETCH BODY |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
136 # Bodystructure - FETCH BODY, BODYSTRUCTURE |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
137 # MessagePart - FETCH BODY[1.2.3] (ie. body parts), RFC822.SIZE, |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
138 # SEARCH SMALLER, LARGER, also speeds up BODY/BODYSTRUCTURE |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
139 # generation. This is always set with mbox mailboxes, and |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
140 # also default with Maildir. |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
141 # |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
142 # Different IMAP clients work in different ways, that's why Dovecot by default |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
143 # only caches MessagePart which speeds up most operations. Whenever client |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
144 # does something where caching could be used, the field is automatically marked |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
145 # to be cached later. For example after FETCH BODY the BODY will be cached |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
146 # for all new messages. Normally you should leave this alone, unless you know |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
147 # what most of your IMAP clients are. Caching more fields than needed makes |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
148 # the index files larger and generate useless I/O. |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
149 # |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
150 # With maildir there's one extra optimization - if nothing is cached, indexing |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
151 # the maildir becomes much faster since it's not opening any of the mail files. |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
152 # This could be useful if your IMAP clients access only new mails. |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
153 |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
154 #mail_cache_fields = MessagePart |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
155 |
600
3b44bc64afd4
mailbox_check_interval setting: Dovecot can notify client of new mail in
Timo Sirainen <tss@iki.fi>
parents:
596
diff
changeset
|
156 # Dovecot can notify client of new mail in selected mailbox soon after it's |
3b44bc64afd4
mailbox_check_interval setting: Dovecot can notify client of new mail in
Timo Sirainen <tss@iki.fi>
parents:
596
diff
changeset
|
157 # received. This setting specifies the minimum interval in seconds between |
3b44bc64afd4
mailbox_check_interval setting: Dovecot can notify client of new mail in
Timo Sirainen <tss@iki.fi>
parents:
596
diff
changeset
|
158 # new mail notifications to client - internally they may be checked more or |
3b44bc64afd4
mailbox_check_interval setting: Dovecot can notify client of new mail in
Timo Sirainen <tss@iki.fi>
parents:
596
diff
changeset
|
159 # less often. Setting this to 0 disables the checking. |
3b44bc64afd4
mailbox_check_interval setting: Dovecot can notify client of new mail in
Timo Sirainen <tss@iki.fi>
parents:
596
diff
changeset
|
160 #mailbox_check_interval = 30 |
3b44bc64afd4
mailbox_check_interval setting: Dovecot can notify client of new mail in
Timo Sirainen <tss@iki.fi>
parents:
596
diff
changeset
|
161 |
462
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
162 # Space-separated list of fields that Dovecot should never set to be cached. |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
163 # Useful if you want to save disk space at the cost of more I/O when the fields |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
164 # needed. |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
165 #mail_never_cache_fields = |
67d22b7b0918
Added mail_cache_fields and mail_never_cache_fields settings, plus settings
Timo Sirainen <tss@iki.fi>
parents:
435
diff
changeset
|
166 |
472
2fa0bfb65268
Added setting mail_save_crlf. Few other settings cleanups.
Timo Sirainen <tss@iki.fi>
parents:
462
diff
changeset
|
167 # Save mails with CR+LF instead of plain LF. This makes sending those mails |
2fa0bfb65268
Added setting mail_save_crlf. Few other settings cleanups.
Timo Sirainen <tss@iki.fi>
parents:
462
diff
changeset
|
168 # take less CPU, especially with sendfile() syscall with Linux and FreeBSD. |
2fa0bfb65268
Added setting mail_save_crlf. Few other settings cleanups.
Timo Sirainen <tss@iki.fi>
parents:
462
diff
changeset
|
169 # But it also creates a bit more disk I/O which may just make it slower. |
2fa0bfb65268
Added setting mail_save_crlf. Few other settings cleanups.
Timo Sirainen <tss@iki.fi>
parents:
462
diff
changeset
|
170 #mail_save_crlf = no |
2fa0bfb65268
Added setting mail_save_crlf. Few other settings cleanups.
Timo Sirainen <tss@iki.fi>
parents:
462
diff
changeset
|
171 |
644
415498fa78d6
mail_read_mmaped: Use mmap() instead of read() to read mail files. read()
Timo Sirainen <tss@iki.fi>
parents:
643
diff
changeset
|
172 # Use mmap() instead of read() to read mail files. read() seems to be a bit |
415498fa78d6
mail_read_mmaped: Use mmap() instead of read() to read mail files. read()
Timo Sirainen <tss@iki.fi>
parents:
643
diff
changeset
|
173 # faster with my Linux/x86 and it's better with NFS, so that's the default. |
415498fa78d6
mail_read_mmaped: Use mmap() instead of read() to read mail files. read()
Timo Sirainen <tss@iki.fi>
parents:
643
diff
changeset
|
174 #mail_read_mmaped = no |
415498fa78d6
mail_read_mmaped: Use mmap() instead of read() to read mail files. read()
Timo Sirainen <tss@iki.fi>
parents:
643
diff
changeset
|
175 |
0 | 176 # Copy mail to another folders using hard links. This is much faster than |
177 # actually copying the file. Only problem with it is that if either of the | |
178 # mails are modified directly both will change. This isn't a problem with | |
179 # IMAP however since it offers no way to modify the existing mails. Also | |
180 # at least mutt modifies mails by deleting the old one and inserting a new | |
181 # modified mail. So if performance matters at all you should turn this on. | |
182 #maildir_copy_with_hardlinks = no | |
183 | |
184 # Check if mails' content has been changed by external programs. This slows | |
185 # down things as extra stat() needs to be called for each file. | |
186 #maildir_check_content_changes = no | |
187 | |
643
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
188 # Which locking methods to use for locking mbox. All of them are used by |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
189 # default. flock is ignored in systems which don't have it. Note that the |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
190 # order of fcntl and flock are important to prevent deadlocks if they're both |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
191 # also used by other programs accessing the mailbox. Dotlock file is always |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
192 # created first. |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
193 #mbox_locks = dotlock fcntl flock |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
194 |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
195 # Should we create dotlock file even when we want only a read-lock? Setting |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
196 # this to yes hurts the performance when the mailbox is accessed simultaneously |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
197 # by multiple processes, but it's needed for reliable reading if no other |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
198 # locking methods are available. |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
199 #mbox_read_dotlock = no |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
200 |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
201 # Maximum time in seconds to wait for lock (all of them) before aborting. |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
202 #mbox_lock_timeout = 300 |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
203 |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
204 # If dotlock exists but the mailbox isn't modified in any way, override the |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
205 # lock file after this many seconds. |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
206 #mbox_dotlock_change_timeout = 30 |
da34bdd4e0c6
Added mbox lock settings to config file. Support timeouting fcntl() and
Timo Sirainen <tss@iki.fi>
parents:
615
diff
changeset
|
207 |
101
edc37d046b08
Added overwrite_incompatible_index setting. Also we now try to use only
Timo Sirainen <tss@iki.fi>
parents:
35
diff
changeset
|
208 # If main index file is incompatible with us, should we overwrite it or |
edc37d046b08
Added overwrite_incompatible_index setting. Also we now try to use only
Timo Sirainen <tss@iki.fi>
parents:
35
diff
changeset
|
209 # create a new index with another name. Unless you are running Dovecot in |
edc37d046b08
Added overwrite_incompatible_index setting. Also we now try to use only
Timo Sirainen <tss@iki.fi>
parents:
35
diff
changeset
|
210 # multiple computers with different architectures accessing the same |
edc37d046b08
Added overwrite_incompatible_index setting. Also we now try to use only
Timo Sirainen <tss@iki.fi>
parents:
35
diff
changeset
|
211 # mailboxes (eg. via NFS), it's safe to set this "yes". |
edc37d046b08
Added overwrite_incompatible_index setting. Also we now try to use only
Timo Sirainen <tss@iki.fi>
parents:
35
diff
changeset
|
212 #overwrite_incompatible_index = no |
edc37d046b08
Added overwrite_incompatible_index setting. Also we now try to use only
Timo Sirainen <tss@iki.fi>
parents:
35
diff
changeset
|
213 |
0 | 214 # umask to use for mail files and directories |
215 #umask = 0077 | |
216 | |
217 ## | |
218 ## Authentication processes | |
219 ## | |
220 | |
221 # You can have multiple processes; each time "auth = xx" is seen, a new | |
222 # process definition is started. The point of multiple processes is to be | |
223 # able to set stricter permissions to others. For example, plain/PAM | |
224 # authentication requires roots, but if you also use digest-md5 authentication | |
225 # for some users, you can authenticate them without any privileges in a | |
226 # separate auth process. Just remember that only one auth process is asked | |
227 # for the password, so you can't have different passwords with different | |
228 # processes (unless they have different auth methods, and you're ok with | |
229 # having different password for each method). | |
230 | |
231 # Authentication process name. | |
232 auth = default | |
233 | |
284 | 234 # Authentication methods this process allows separated with a space. |
235 # Currently supported: plain digest-md5 | |
0 | 236 auth_methods = plain |
237 | |
238 # Space separated list of realms with authentication methods that need them. | |
239 # This is usually empty or the host name of the server (eg. | |
240 # mail.mycompany.com). | |
241 # - plain auth checks the password from all realms specified in here | |
242 # - digest-md5 must have the password added for each realm separately, and | |
243 # many clients simply use the first realm listed here. so if you really | |
244 # need to add more realms, add them to end of the list. | |
245 #auth_realms = | |
246 | |
247 # Where the user information and passwords are stored into: | |
248 # passwd: /etc/passwd or similiar, using getpwnam() | |
249 # shadow: /etc/shadow or similiar, using getspnam() | |
250 # pam: PAM authentication | |
251 # passwd-file /etc/passwd.imap: /etc/passwd-like file. Supports digest-md5 | |
252 # style passwords | |
280
fa2d1a1d025e
vpopmail authentication. compiles, not tested if it really works.
Timo Sirainen <tss@iki.fi>
parents:
101
diff
changeset
|
253 # vpopmail: vpopmail authentication |
27 | 254 auth_userinfo = pam |
0 | 255 |
256 # Executable location | |
661
b88b5488bcfd
updated lib paths to libexec ones
Timo Sirainen <tss@iki.fi>
parents:
657
diff
changeset
|
257 #auth_executable = /usr/libexec/dovecot/imap-auth |
0 | 258 |
259 # User to use for the process. Only shadow and pam authentication requires | |
260 # roots, so use something else if possible. | |
261 auth_user = root | |
262 | |
435 | 263 # Directory where to chroot the process. Most authentication backends don't |
264 # work if this is set, and there's no point chrooting if auth_user is root. | |
0 | 265 #auth_chroot = |
266 | |
267 # Number of authentication processes to create | |
268 #auth_count = 1 | |
269 | |
270 | |
271 # digest-md5 authentication process. It requires special MD5 passwords which | |
272 # /etc/shadow and PAM doesn't support, so we never need roots to handle it. | |
273 # Note that the passwd-file is opened before chrooting and dropping root | |
274 # privileges, so it may be 0600-root owned file. | |
275 | |
276 #auth = digest_md5 | |
277 #auth_methods = digest-md5 | |
278 #auth_realms = | |
279 #auth_userinfo = passwd-file /etc/passwd.imap | |
280 #auth_user = imapauth | |
281 #auth_chroot = /var/run/dovecot/auth | |
282 | |
283 # if you plan to use only passwd-file, you don't need the two auth processes, | |
284 # simply set "auth_methods = plain digest-md5" |