[wplug-bsd] Dovecot IMAP and FreeBSD
Bill Moran
wmoran at potentialtech.com
Fri Nov 12 18:17:42 EST 2004
Tom Rhodes <trhodes at FreeBSD.org> wrote:
> > > Second, I don't want my users to use their shell account passwords for
> > > IMAP. It looks as though I can specify one file (say, /etc/passwd) for
> > > the user database, and then use a separate file (say, /etc/imap.passwd)
> > > for the password repository. My question: how do I create the password
> > > hashes that go in that password file?
> >
> > I dodged this problem by using SSL and forcing users to send their
> > passwords in the "clear" (which really isn't in the clear, since it's
> > SSL encrypted) I'm also keeping the user list in MySQL (although I
> > plan to move to Postgres).
>
> Did you have to give out user certificates though?
Yes, it entails more or less the same procedure required to put up an
HTTPS site. Generate a cert, sign it myself, etc.
> > However, if you use the pw command to maintain your password files (which
> > is a PITA, but works) you can use -V to give it an alternate location
> > for the files.
>
> ... pw(8) was never designed to be used by mere mortals. :P
Bah ... it's not that bad.
> > > I think those are all my questions. Then, am I correct in saying that
> > > I can open port 143 (and, obviously, start dovecot) and people can connect
> > > to port 143, authenticate securely, and read their mail from remote?
> >
> > Sounds like you're on the right track.
>
> Want to be cool? Write up walk through for people. :)
Yeah, I should do that.
--
Bill Moran
Potential Technologies
http://www.potentialtech.com
More information about the wplug-bsd
mailing list