tp://www.exim.org/exim-html-current/doc/html/spec_html/ch40.html#SECTverifyPRVS
for details of how to implement BATV using exim.
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
[EMAIL PROTECTED] Phone: +44 1225 386101
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus
servers
against brute force attacks. Not sure how you'd do that as many,
if not all webmail servers, rely on the IMAP server to validate the
connection.
Usual disclaimer: I've never tried doing this myself. This advice
is worth what you paid for it.
--
Dennis Davis
ride = true
allow_localhost = true
...
should (ie I haven't really tested this) do the job.
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
d.h.da...@bath.ac.uk Phone: +44 1225 386101
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://c
ail/info-cyrus/2009-October/031902.html
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
d.h.da...@bath.ac.uk Phone: +44 1225 386101
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
ting"
> exit 3
> fi
At this point you might like to consider using the cyrus mbpath
command to find the user's mail directory. You're running as root,
so this should be OK. You'd certainly need to use something like
mbpath if you've set things like:
# Hash ev
hers, sorted by strength.
tls_cipher_list: HIGH:MEDIUM:@STRENGTH
To exclude SSLv2 ciphers as well, I'd write that as:
tls_cipher_list: HIGH:MEDIUM:!SSLv2:@STRENGTH
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
d.h.da...@bath.ac.uk Phone: +44 1225 386101
Cyrus Home Pag
gt; check.
Driven by the setting of "reject8bit" in /etc/imapd.conf in both
Cyrus 2.2.* and 2.3.*. The default is to change 8-bit characters
to "X". Set "reject8bit" to have lmtpd reject messages with 8-bit
characters in the headers.
--
Dennis Davis, BUCS, University of B
Mulberry can be set up to use an IMSP server for
it's options.
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
[EMAIL PROTECTED] Phone: +44 1225 386101
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
pldaniels.com/altermime/
Exactly how you'd do this would depend on the MTA (sendmail,
postfix, exim etc) you're using. For exim I'd probably consider a
transport filter.
Disclaimer: I've never actually tried to do this...
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7A
instead of starting the master process with
# a command line of the form:
#
# KRB5_KTNAME=/var/imap/krb5.keytab /usr/local/libexec/cyrus-imapd/master &
sasl_keytab: /var/imap/krb5.keytab
> altnamespace: yes
> userprefix: Other Users
> sharedprefix: Shared Folders
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
[EMAIL PROTECTED] Phone: +44 1225 386101
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
it's requesting.
You need to set up a keytab containing that key.
(No, I haven't set something like this up. But the logs on the
kerberos server are often useful in diagnosing obscure failures.)
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
[EMAIL PROTECTED]
2006
#
imsp406/tcp
and if you want to secure this (possibly using stunnel) you may
also need:
# And a secured Cyrus imsp server. Note port 906 is unassigned, so
# we'll use that.
# DHD June 2006
#
imsps 906/tcp
I'm not sure how widespread the use of Cyrus imsp
>From: Mark Hannessen <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Date: Fri, 10 Dec 2004 14:27:30 +0100
>
>I am trying to setup a kerberos v5 only cyrus imap server.
>that is: I would like all autherisation to be done by gssapi/kerberos.
...
>does anybody have a suggestion where I should look nex
e
> to Cyrus?
Others have pointed out how to do this in Cyrus. I believe most
modern MTAs have facilities for handling local parts as case
insensitive. For example it's the default with Exim unless you set
caseful_local_part as a router option.
--
Dennis Davis, BUCS, University of Bath, B
LMTP daemon
listening on the loopback address. The advantage of this
is that you can then use exim's verification options to
check the sender and/or recipient.
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
[EMAIL PROTECTED] Phone: +44 1225 386101
Cyrus Home
59.3 ( 18 Jan 2006 10:13:26 )
> that his computer is used for sending unsolicited emails.
Not really anything to do with info-cyrus. These unwanted messages
are copies of the W32/Nyxem-D virus. See:
http://www.sophos.com/virusinfo/analyses/w32nyxemd.html
for details.
--
Dennis Davis, BUCS,
new viruses.
I believe commercial anti-virus companies, eg Messagelabs, will
similarly run mail through several virus checkers. I suppose I'm
lucky in that we have a site license for Sophos.
Anyway the ClamAV signature for this particular virus was made
available last night. ClamAV now
true
allow_localhost = true
to deliver to an lmtp daemon listening on the loopback address.
I've not really tried this, but doesn't it work?
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
[EMAIL PROTECTED] Phone: +44 1225 386101
Cyrus Home Page: htt
end machine:
>
> sasl_pwcheck_method: saslauthd
> sasl_mech_list: GSSAPI
> keytab: /etc/imap/krb5.keytab
^^
This needs to be "sasl_keytab", not "keytab". If you do need a
"mupdate/hostFQDN" principal, it'll need to be in this file.
> mupd
ndmail as /usr/lib/sendmail.
We're running our Cyrus service under Solaris.
We usually make /usr/lib/sendmail a soft link to whatever we're
running as a sendmail replacement or make it a shell script that
executes a sendmail replacement.
--
Dennis Davis, BUCS, University of Bath,
+#ifdef __OpenBSD__
+#include
+#endif /* __OpenBSD__ */
+
#include "exitcodes.h"
#include "util.h"
#include "xmalloc.h"
Although I'm sure this isn't the preferred way to do it :-(
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
d.h
:
http://www.eyrie.org/~eagle/software/
might be useful for obtaining and renewing kerberos credentials.
In particular kstart:
http://www.eyrie.org/~eagle/software/kstart/
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
d.h.da...@bath.ac.uk Phone: +44 1225 386101
--
NNTP.
You can, I believe, post via gmane. See:
http://gmane.org/post.php
--
Dennis Davis
Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus
; people to read them.
Several email clients -- eg alpine, sylpheed, claws-mail, etc --
appear to have the functionality to use an NNTP server that's
separate from an IMAP server. So distinctions can get a bit
blurred...
> I'm quite certain, Cyrus has that functionality, but I could not
>
simap.org/~vanmeeuwen/cyrus-imapd-2.4-docs/Administrator_Guide/html/chap-Administrator_Guide-Deleting_and_Undeleting_Messages_and_Folders.html
--
Dennis Davis
Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus
se.
For the exim message transfer agent (MTA) see:
https://github.com/Exim/exim/wiki/BlockCracking
Disclaimer: I've never used the above, but it seems a lot of
work and thought have gone into this suggestion.
--
Dennis Davis
Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info
26 matches
Mail list logo
