$OpenBSD: nosieve-patch-dovecot-example_conf,v 1.1 2010/03/23 21:32:07 pea Exp $ --- dovecot-example.conf.orig Thu Jun 18 09:37:43 2009 +++ dovecot-example.conf Wed Jul 8 20:57:18 2009 @@ -12,12 +12,11 @@ # Default values are shown for each setting, it's not required to uncomment # those. These are exceptions to this though: No sections (e.g. namespace {}) # or plugin settings are added by default, they're listed only as examples. -# Paths are also just examples with the real defaults being based on configure -# options. The paths listed here are for configure --prefix=/usr -# --sysconfdir=/etc --localstatedir=/var --with-ssldir=/etc/ssl +# *** NOTE *** Some values HAVE been changed for OpenBSD use. + # Base directory where to store runtime data. -#base_dir = /var/run/dovecot/ +base_dir = /var/dovecot/ # Protocols we want to be serving: imap imaps pop3 pop3s # If you only want to use dovecot-auth, you can set this to "none". @@ -39,13 +38,13 @@ # listen = *:10100 # .. # } -#listen = * +listen = *, [::] # Disable LOGIN command and all other plaintext authentications unless # SSL/TLS is used (LOGINDISABLED capability). Note that if the remote IP # matches the local IP (ie. you're connecting from the same computer), the # connection is considered secure and plaintext authentication is allowed. -#disable_plaintext_auth = yes +disable_plaintext_auth = yes # Should all IMAP and POP3 processes be killed when Dovecot master process # shuts down. Setting this to "no" means that Dovecot can be upgraded without @@ -92,7 +91,7 @@ # dropping root privileges, so keep the key file unreadable by anyone but # root. Included doc/mkcert.sh can be used to easily generate self-signed # certificate, just make sure to update the domains in dovecot-openssl.cnf -#ssl_cert_file = /etc/ssl/certs/dovecot.pem +ssl_cert_file = /etc/ssl/dovecotcert.pem #ssl_key_file = /etc/ssl/private/dovecot.pem # If key file is password protected, give the password here. Alternatively @@ -136,7 +135,7 @@ # which login needs to be able to connect to. The sockets are created when # running as root, so you don't have to worry about permissions. Note that # everything in this directory is deleted when Dovecot is started. -#login_dir = /var/run/dovecot/login +login_dir = /var/dovecot/login # chroot login process to the login_dir. Only reason not to do this is if you # wish to run the whole Dovecot without roots. @@ -146,7 +145,7 @@ # and don't use it anywhere else. The user must also belong to a group where # only it has access, it's used to control access for authentication process. # Note that this user is NOT used to access mails. -#login_user = dovecot +login_user = _dovecot # Set max. process size in megabytes. If you don't use # login_process_per_connection you might need to grow this. @@ -336,8 +335,9 @@ #mail_log_max_lines_per_sec = 10 # Don't use mmap() at all. This is required if you store indexes to shared -# filesystems (NFS or clustered filesystem). -#mmap_disable = no +# filesystems (NFS or clustered filesystem) or for some operating systems +# which use a separate cache for mmap, such as OpenBSD. +mmap_disable = yes # Rely on O_EXCL to work when creating dotlock files. NFS supports O_EXCL # since version 3, so this should be safe to use nowadays by default. @@ -482,7 +482,7 @@ # locking methods as well. Some operating systems don't allow using some of # them simultaneously. #mbox_read_locks = fcntl -#mbox_write_locks = dotlock fcntl +mbox_write_locks = fcntl # Maximum time in seconds to wait for lock (all of them) before aborting. #mbox_lock_timeout = 300 @@ -537,20 +537,20 @@ protocol imap { # Login executable location. - #login_executable = /usr/libexec/dovecot/imap-login + #login_executable = ${PREFIX}/libexec/dovecot/imap-login # IMAP executable location. Changing this allows you to execute other # binaries before the imap process is executed. # # This would write rawlogs into user's ~/dovecot.rawlog/, if it exists: - # mail_executable = /usr/libexec/dovecot/rawlog /usr/libexec/dovecot/imap + # mail_executable = ${PREFIX}/libexec/dovecot/rawlog ${PREFIX}/libexec/dovecot/imap # # # This would attach gdb into the imap process and write backtraces into # /tmp/gdbhelper.* files: - # mail_executable = /usr/libexec/dovecot/gdbhelper /usr/libexec/dovecot/imap + # mail_executable = ${PREFIX}/libexec/dovecot/gdbhelper ${PREFIX}/libexec/dovecot/imap # - #mail_executable = /usr/libexec/dovecot/imap + #mail_executable = ${PREFIX}/libexec/dovecot/imap # Maximum IMAP command line length in bytes. Some clients generate very long # command lines with huge mailboxes, so you may need to raise this if you get @@ -564,7 +564,7 @@ protocol imap { # Support for dynamically loadable plugins. mail_plugins is a space separated # list of plugins to load. #mail_plugins = - #mail_plugin_dir = /usr/lib/dovecot/imap + #mail_plugin_dir = ${PREFIX}/lib/dovecot/imap # IMAP logout format string: # %i - total number of bytes read from client @@ -605,7 +605,7 @@ protocol imap { # but not both. Thunderbird separates these two by forcing server to # accept '/' suffix in mailbox names in subscriptions list. # The list is space-separated. - #imap_client_workarounds = + imap_client_workarounds = delay-newmail netscape-eoh tb-extra-mailbox-sep } ## @@ -614,11 +614,11 @@ protocol imap { protocol pop3 { # Login executable location. - #login_executable = /usr/libexec/dovecot/pop3-login + #login_executable = ${PREFIX}/libexec/dovecot/pop3-login # POP3 executable location. See IMAP's mail_executable above for examples # how this could be changed. - #mail_executable = /usr/libexec/dovecot/pop3 + #mail_executable = ${PREFIX}/libexec/dovecot/pop3 # Don't try to set mails non-recent or seen with POP3 sessions. This is # mostly intended to reduce disk I/O. With maildir it doesn't move files @@ -678,7 +678,7 @@ protocol pop3 { # Support for dynamically loadable plugins. mail_plugins is a space separated # list of plugins to load. #mail_plugins = - #mail_plugin_dir = /usr/lib/dovecot/pop3 + #mail_plugin_dir = ${PREFIX}/lib/dovecot/pop3 # Workarounds for various client bugs: # outlook-no-nuls: @@ -688,7 +688,7 @@ protocol pop3 { # Outlook Express and Netscape Mail breaks if end of headers-line is # missing. This option simply sends it if it's missing. # The list is space-separated. - #pop3_client_workarounds = + pop3_client_workarounds = outlook-no-nuls oe-ns-eoh } ## @@ -706,7 +706,7 @@ protocol lda { # Support for dynamically loadable plugins. mail_plugins is a space separated # list of plugins to load. #mail_plugins = - #mail_plugin_dir = /usr/lib/dovecot/lda + #mail_plugin_dir = ${PREFIX}/lib/dovecot/lda # If user is over quota, return with temporary failure instead of # bouncing the mail. @@ -720,7 +720,7 @@ protocol lda { #deliver_log_format = msgid=%m: %$ # Binary to use for sending mails. - #sendmail_path = /usr/lib/sendmail + #sendmail_path = /usr/sbin/sendmail # Subject: header to use for rejection mails. You can use the same variables # as for rejection_reason below. @@ -739,7 +739,7 @@ protocol lda { ## # Executable location -#auth_executable = /usr/libexec/dovecot/dovecot-auth +#auth_executable = ${PREFIX}/libexec/dovecot/dovecot-auth # Set max. process size in megabytes. #auth_process_size = 256 @@ -868,7 +868,7 @@ auth default { # database (passwd usually), you can use static userdb. # REMEMBER: You'll need /etc/pam.d/dovecot file created for PAM # authentication to actually work. - passdb pam { + #passdb pam { # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=] # [cache_key=] [] # @@ -901,7 +901,7 @@ auth default { # args = session=yes %Ls # args = cache_key=%u dovecot #args = dovecot - } + #} # System users (NSS, /etc/passwd, or similiar) # In many systems nowadays this uses Name Service Switch, which is @@ -921,10 +921,10 @@ auth default { # PAM-like authentication for OpenBSD. # - #passdb bsdauth { + passdb bsdauth { # [cache_key=] - See cache_key in PAM for explanation. #args = - #} + } # passwd-like file with specified location #