[MacPorts] howto/SetupDovecot modified

MacPorts noreply at macports.org
Mon Jun 29 20:48:27 PDT 2009 

Changed page "howto/SetupDovecot" by macports at alan.ferrency.com from 66.93.61.113*
Page URL: <http://trac.macports.org/wiki/howto/SetupDovecot>
Diff URL: <http://trac.macports.org/wiki/howto/SetupDovecot?action=diff&version=18>
Revision 18
Comment: Describe using passdb pam and userdb passwd to get full system authentication with dovecot on OS X

-------8<------8<------8<------8<------8<------8<------8<------8<--------
Index: howto/SetupDovecot
=========================================================================
--- howto/SetupDovecot (version: 17)
+++ howto/SetupDovecot (version: 18)
@@ -87,4 +87,25 @@
 
 Instead of using separate user and password files one can try set-up LDAP as user / password supply.
 
+=== System User Authentication Using PAM and passwd ===
+
+OS X supports PAM directly, and this can easily be configured to authenticate system users for dovecot.  In dovecot.conf, use this to turn on PAM based password authentication for all users configured on the system:
+
+{{{
+passdb pam {
+   args = login
+}
+}}}
+
+Unfortunately, PAM can't provide any UID, GID, or home directory information for the system users.  dovecot needs a separate "userdb" database to get this information, in order to allow IMAP loging successfully. OS X uses DirectoryServices to store password information, so you can't use "passdb passwd" to do user authentication.  However, you can use "userdb passwd" to retrieve the UID, GID, and home directory after PAM has already authenticated your username/password.  To do this:
+
+{{{
+userdb passwd {
+   args =
+}
+}}}
+
+Together, these prevent the need for hardcoded passwd.dovecot and userdb.dovecot files, and don't require any knowledge of LDAP. However, they only support system usernames, and not virtual mailboxes.  I have tested this with IMAP and the dovecot LDA (deliver) successfully.
+
+
 [wiki:howto <- Back to the HOWTO section]

-------8<------8<------8<------8<------8<------8<------8<------8<--------

* The IP shown here might not mean anything if the user or the server is
behind a proxy.

--
MacPorts <http://www.macports.org/>
Ports system for Mac OS

This is an automated message. Someone at http://www.macports.org/ added your email
address to be notified of changes on howto/SetupDovecot. If it was not you, please
report to .

More information about the macports-changes mailing list