Re: LDAP olcAccess for auth_bind

2023-05-17 Thread Andrzej Milewski
Hi, My LDAP server is installed on a Proxmox container using the TurnKey Linux template. I always thought it was a clean Debian installation. I tried it on a fresh Debian installation, and both olcAccess and the LDAP tree differ significantly from what is provided in the template. I need to pract

Re: Incorrect saved dates in mailboxes

2023-05-17 Thread Chris Szilagyi
On 2023-05-17 18:28, Joseph Tam wrote: Chris Szilagyi writes: Recently, I noticed that our expunge script is not working, and I don't think it ever has on this server. On further inspection, it looks like the saved date for emails in the folders we want to expunge is set to a recent date (

Re: Incorrect saved dates in mailboxes

2023-05-17 Thread Joseph Tam
Chris Szilagyi writes: > Recently, I noticed that our expunge script is not working, and I don't > think it ever has on this server. On further inspection, it looks like > the saved date for emails in the folders we want to expunge is set to a > recent date (yesterday) for almost all messages.

Re: Outlook fails to connect to Dovecot submission server

2023-05-17 Thread dovecot--- via dovecot
Dovecot ... submission server works well with all sorts of clients, but Outlook. I thought that was M$ intent. They purposefully design their ecosystem to not play well with others so the average person will think something is wrong with the competitor's software, give up and just continue to

Outlook fails to connect to Dovecot submission server

2023-05-17 Thread Ralf Becker via dovecot
Dovecot 2.3.20 including it's submission server works well with all sorts of clients, but Outlook. Outlook works / can connect to Dovecot IMAP service with same certificate TLS config, but it fails to connect using SMTPs on port 465. Other clients connect and send mails without problem, also op

Re: LDAP olcAccess for auth_bind

2023-05-17 Thread Mihai Badici
You can check if the acl's are correct using ldapsearch  . This second bind without dn is weird so you need to check from where it come. Anyway I think is better to have a special user for binding because you can't use the %u if you have multiple organisational units which will occur in the

Re: LDAP olcAccess for auth_bind

2023-05-17 Thread Andrzej Milewski
Hi, Thank you for your response. What you wrote makes sense, and it was definitely my mistake. I have made the necessary changes in the settings. auth_bind_userdn = cn=%u,ou=Users,dc=example,dc=com I changed the user's cn to u...@example.com. It appears that there is indeed a specific BIND attemp

RE: LDAP olcAccess for auth_bind

2023-05-17 Thread Marc
> Here are my default olcAccess settings after installation: don't put samba stuff here, just focus on one application's access. > olcAccess: {10} to * by * read > > However, I am not satisfied with these settings because using the > anonymous user, anyone can browse the entire LDAP tree. While