https://doc.dovecot.org/configuration_manual/authentication/sql/#password-verification-by-sql-server

Perfect. However on Postfix it is more finicky.

https://www.postfix.org/SASL_README.html#auxprop_sql
Tip
If you must store encrypted passwords, you cannot use the sql auxprop plugin. Instead, 
see section "Using saslauthd with PAM", and configure PAM to look up the 
encrypted passwords with, for example, the pam_mysql module. You will not be able to use 
any of the methods that require access to plaintext passwords, such as the shared-secret 
methods CRAM-MD5 and DIGEST-MD5.

On Thursday, December 8, 2022 10:17:11 AM AKST, Alessio Cecchi wrote:
Yes,

we are using dovecot, also, for SASL only as authentication provider.

Here some relevants parts of the configuration:

# probably not necessary but dovecot requires it so i set it to /tmp/

mail_location = maildir:/tmp/%u/Maildir:INDEX=memory

# setup a mysql database with your users and password
passdb {
  args = /etc/dovecot/dovecot-sql.conf.ext
  driver = sql
}

userdb {
  args = /etc/dovecot/dovecot-sql.conf.ext
  driver = sql
}

# here is the most important part, with this you can query SASL via port "12345" or via socket
service auth {
  inet_listener {
    port = 12345
  }
  unix_listener /var/spool/postfix/private/auth {
    group = postfix
    mode = 0660
    user = postfix
  }
}

# SASL don't support SSL
ssl = no

Ciao

Il 08/12/22 05:53, Henry R ha scritto:
can dovecot run as a general sasl service for other apps? such as webdav.

Thanks.


Reply via email to