hi there,
what are exactly the differences between
auth_worker_max_count = 30
and
auth default {
count = 1
}
?
first are threads (for threaded auth methods) and second the number of
process ?
>From: Timo Sirainen <[EMAIL PROTECTED]>
>Date: 2008/01/01 Tue PM 09:18:05 CST
>To: Gerry Reno <[EMAIL PROTECTED]>
>Cc: dovecot@dovecot.org
>Subject: Re: [Dovecot] deliver triggering SELinux AVC denials
...
>Set dotlock_use_excl=yes to see what file it's really wanting to create.
Ok, did that. An
On Tue, 2008-01-01 at 22:06 -0500, Gerry Reno wrote:
> I setup postfix/dovecot on a new machine and now all works well with the
> small exception of dovecot triggering selinux avc denials on some
> temp... files here is a sample alert:
>
> Summary
> SELinux is preventing /usr/libexec/dovecot
I setup postfix/dovecot on a new machine and now all works well with the
small exception of dovecot triggering selinux avc denials on some
temp... files here is a sample alert:
Summary
SELinux is preventing /usr/libexec/dovecot/deliver (dovecot_deliver_t)
"link" to temp.localhost.678.40ca
On tis, 2008-01-01 at 19:15 -0500, Dean Brooks wrote:
> On Tue, Jan 01, 2008 at 03:46:23PM -0800, Asheesh Laroia wrote:
> > On Tue, 1 Jan 2008, Dean Brooks wrote:
> > >Is there a way, or can a way be added, to add an "auth_failed_delay=10s"
> > >style option that would put in an artificial delay a
On Tue, 2008-01-01 at 23:52 +0100, Anders wrote:
> Attached is a patch with the work I did on this the other night. Would
> something like that be acceptable, or should I make it in a different
> way?
v1.0 will stay as it is, but something like this could still be done for
v1.1.
I just changed to
On Tue, Jan 01, 2008 at 03:46:23PM -0800, Asheesh Laroia wrote:
> On Tue, 1 Jan 2008, Dean Brooks wrote:
> >Is there a way, or can a way be added, to add an "auth_failed_delay=10s"
> >style option that would put in an artificial delay after a failed
> >password attempt?
> >
> >As it stands now, Dov
On Tue, 1 Jan 2008, Frank Kintrup wrote:
Is there a way, or can a way be added, to add an
"auth_failed_delay=10s" style option that would put in an artificial
delay after a failed password attempt?
As it stands now, Dovecot seems highly vulnerable to widescale
brute-force password dictionary
On Tue, 1 Jan 2008, Dean Brooks wrote:
Hi,
Is there a way, or can a way be added, to add an "auth_failed_delay=10s"
style option that would put in an artificial delay after a failed
password attempt?
As it stands now, Dovecot seems highly vulnerable to widescale
brute-force password dictionary
On Tue, Jan 01, 2008 at 11:21:50PM +, Stephen Usher wrote:
> Actually, a better method which would not inconvenience real users is
> to have an accumalative delay, i.e. the first error has a 1 second
> delay, the second 2 seconds, the third 4 seconds and so on. This
> should tar-pit any b
On 1 Jan 2008, at 21:22, Timo Sirainen wrote:
On Tue, 2008-01-01 at 15:59 -0500, Dean Brooks wrote:
Hi,
Is there a way, or can a way be added, to add an
"auth_failed_delay=10s"
style option that would put in an artificial delay after a failed
password attempt?
As it stands now, Dovecot see
Hello.
I am on an irrational crusade against unneeded timers (it started as a
well-meaining power saving exercise), and I have now started removing
polling in Dovecot.
Attached is a patch with the work I did on this the other night. Would
something like that be acceptable, or should I make it in
> Is there a way, or can a way be added, to add an "auth_failed_delay=10s"
> style option that would put in an artificial delay after a failed
> password attempt?
> As it stands now, Dovecot seems highly vulnerable to widescale
> brute-force password dictionary scans.
> Even if it's not configu
On Tue, 2008-01-01 at 16:47 -0500, Dean Brooks wrote:
> > Failed auth requests are put to a queue that's flushed every 2 seconds.
> > So there is already a delay. I don't think it's a good idea to increase
> > it up from 2 seconds, it just gets annoying when you type the wrong
> > password accident
On Tue, Jan 01, 2008 at 11:22:31PM +0200, Timo Sirainen wrote:
> On Tue, 2008-01-01 at 15:59 -0500, Dean Brooks wrote:
> > Is there a way, or can a way be added, to add an "auth_failed_delay=10s"
> > style option that would put in an artificial delay after a failed
> > password attempt?
> >
> > As
On Tue, 1 Jan 2008, Timo Sirainen wrote:
On Tue, 2008-01-01 at 15:59 -0500, Dean Brooks wrote:
Hi,
Is there a way, or can a way be added, to add an "auth_failed_delay=10s"
style option that would put in an artificial delay after a failed
password attempt?
As it stands now, Dovecot seems highl
On Tue, 2008-01-01 at 15:59 -0500, Dean Brooks wrote:
> Hi,
>
> Is there a way, or can a way be added, to add an "auth_failed_delay=10s"
> style option that would put in an artificial delay after a failed
> password attempt?
>
> As it stands now, Dovecot seems highly vulnerable to widescale
> bru
Hi,
Is there a way, or can a way be added, to add an "auth_failed_delay=10s"
style option that would put in an artificial delay after a failed
password attempt?
As it stands now, Dovecot seems highly vulnerable to widescale
brute-force password dictionary scans.
Even if it's not configurable, ca
hi timo,
> Oh, that's different then. The Makefiles generated by autotools pretty
> much require GNU make.
then it's known/understood. great.
> Only after I make a release with "make dist" the
> generated Makefiles work with all makes.
ah. good to know.
> I'll add a note of this to the wiki p
On Tue, 2008-01-01 at 11:42 -0800, snowcrash wrote:
> > I can't reproduce this with FreeBSD 6.2. unicodemap.c is distributed in
> > the tarball, so I don't know why it would give that error.
>
> it's fully reproducible here.
>
> note that i'm not using the tarball. rather, pulling the hg 11b13 t
> I can't reproduce this with FreeBSD 6.2. unicodemap.c is distributed in
> the tarball, so I don't know why it would give that error.
it's fully reproducible here.
note that i'm not using the tarball. rather, pulling the hg 11b13 tag
clone. there, there's apparently *no* unicodemap.c included:
Timo Sirainen wrote:
>> I added it to v1.1, but I don't know if I should add it to v1.0. At
>> least it shouldn't do it by default to make sure that no existing
>> installations break accidentally..
>
> Hmm. And I think I'll change the settings to option_file and
> option_group. They make more sen
On Sun, 2007-12-30 at 14:13 +0100, Alexander 'Leo' Bergolth wrote:
> Is there a way to keep the already existing "From " line?
Not with v1.0, but I implemented it now for v1.1:
http://hg.dovecot.org/dovecot/rev/ce15433c6212
signature.asc
Description: This is a digitally signed message part
On Sun, 2007-12-30 at 12:33 -0600, Richard Laager wrote:
> On Sun, 2007-12-30 at 07:41 +0200, Timo Sirainen wrote:
> > Most replies to that mail ignored the 3) part, which is
> > the main reason there's no issue tracker yet.
>
> Regarding your three issues:
>
> 1. Yes, they all suck in differen
On Tue, 2008-01-01 at 19:39 +0200, Timo Sirainen wrote:
> On Tue, 2008-01-01 at 18:23 +0100, Luca Longinotti wrote:
> > Timo Sirainen wrote:
> > > On 31.12.2007, at 15.23, Luca Longinotti wrote:
> > >
> > >> +mysql_options(conn->mysql, MYSQL_READ_DEFAULT_GROUP, "client");
> > >
> > > Is "clie
On Tue, 2008-01-01 at 18:23 +0100, Luca Longinotti wrote:
> Timo Sirainen wrote:
> > On 31.12.2007, at 15.23, Luca Longinotti wrote:
> >
> >> +mysql_options(conn->mysql, MYSQL_READ_DEFAULT_GROUP, "client");
> >
> > Is "client" always the correct group to read? Would there be any point
> > in
On Mon, 2007-12-31 at 01:11 -0800, Ron Avriel wrote:
> I managed to fix the problem with this patch to
> sieve-cmu.c:
Thanks. I fixed it a bit differently:
http://hg.dovecot.org/dovecot-sieve-1.1/rev/281aade4b591
Also released v1.1.3.
signature.asc
Description: This is a digitally signed messa
Timo Sirainen wrote:
> On 31.12.2007, at 15.23, Luca Longinotti wrote:
>
>> +mysql_options(conn->mysql, MYSQL_READ_DEFAULT_GROUP, "client");
>
> Is "client" always the correct group to read? Would there be any point
> in making this configurable?
>
Well, "client" is the default group. It can
On Mon, 2007-12-31 at 18:29 -0500, Michel Bulgado wrote:
> user_attrs = mail,/var/spool/virtualmail/%d/%n
I don't know why this worked even with v0.99. :) What does "mail"
contain?
> mail_location = maildir:/var/spool/virtualmail/%d/%u
Use %n instead of %u.
> passdb pam {
> args =
On Mon, 2007-12-31 at 10:54 -0800, Daniel L. Miller wrote:
> When something "bad" happens to the indexes, my e-mail client
> (Thunderbird) reports an "unable to succeed" error on opening a
> mailbox. Leaving that mailbox and coming back works fine. Is this
> expected behaviour?
It's expected,
On Sun, 2007-12-30 at 22:02 -0800, snowcrash wrote:
> make
> make all-recursive
> Making all in src
> Making all in lib
> make: don't know how to make unicodemap.c. Stop
I can't reproduce this with FreeBSD 6.2. unicodemap.c is distributed in
the tarball, so I don't k
On 31.12.2007, at 15.23, Luca Longinotti wrote:
+ mysql_options(conn->mysql, MYSQL_READ_DEFAULT_GROUP, "client");
Is "client" always the correct group to read? Would there be any
point in making this configurable?
PGP.sig
Description: This is a digitally signed message part
Hello Timo!
Looks like that 1.1.beta13 doesn't touch the indexes with mbox at all.
None are generated/updated.
Ciao,
Gerhard
--
http://www.wiesinger.com/
On Sun, 30 Dec 2007, Timo Sirainen wrote:
http://dovecot.org/releases/1.1/beta/dovecot-1.1.beta13.tar.gz
http://dovecot.org/releases/1.
Hello everyone
Happy new year .
This is the first time I address to the list
I have the following situation and I need help from all you people
I have dovecot 0.9-11 and i want to migrate to a superior version
like dovecot 1.0 looking forward to implement quotas in my system ,
and use
Am Dienstag, 1. Januar 2008 schrieb Andrew Falanga:
> .imap/.imap/ (other than directories)
Where did you see this directory?
> mbox
http://en.wikipedia.org/wiki/Mbox
> maildir
http://en.wikipedia.org/wiki/Maildir
You usually use either mbox or maildir to store mails for all users.
Mixing
35 matches
Mail list logo
