diff options
Diffstat (limited to 'etc/dovecot')
| -rw-r--r-- | etc/dovecot/conf.d/10-mail.conf | 2 | ||||
| -rw-r--r-- | etc/dovecot/conf.d/10-master.conf | 12 | ||||
| -rw-r--r-- | etc/dovecot/conf.d/10-ssl.conf | 8 | 
3 files changed, 12 insertions, 10 deletions
| diff --git a/etc/dovecot/conf.d/10-mail.conf b/etc/dovecot/conf.d/10-mail.conf index de48f92d..49e70cb9 100644 --- a/etc/dovecot/conf.d/10-mail.conf +++ b/etc/dovecot/conf.d/10-mail.conf @@ -27,7 +27,7 @@  #  # <doc/wiki/MailLocation.txt>  # -#mail_location =  +mail_location = maildir:~/Mail:INBOX=~/Mail/Inbox:LAYOUT=fs  # If you need to set multiple mailbox locations or want to change default  # namespace settings, you can do it by defining namespace sections. diff --git a/etc/dovecot/conf.d/10-master.conf b/etc/dovecot/conf.d/10-master.conf index 64fa0f2c..fb03c64c 100644 --- a/etc/dovecot/conf.d/10-master.conf +++ b/etc/dovecot/conf.d/10-master.conf @@ -100,16 +100,18 @@ service auth {    # To give the caller full permissions to lookup all users, set the mode to    # something else than 0666 and Dovecot lets the kernel enforce the    # permissions (e.g. 0777 allows everyone full permissions). -  unix_listener auth-userdb { +  #unix_listener auth-userdb {      #mode = 0666      #user =       #group =  -  } +  #}    # Postfix smtp-auth -  #unix_listener /var/spool/postfix/private/auth { -  #  mode = 0666 -  #} +  unix_listener /var/spool/postfix/private/auth { +    mode = 0666 +    user = postfix +    group = postfix +  }    # Auth process is run as this user.    #user = $default_internal_user diff --git a/etc/dovecot/conf.d/10-ssl.conf b/etc/dovecot/conf.d/10-ssl.conf index ad847664..b9c2263e 100644 --- a/etc/dovecot/conf.d/10-ssl.conf +++ b/etc/dovecot/conf.d/10-ssl.conf @@ -3,14 +3,14 @@  ##  # SSL/TLS support: yes, no, required. <doc/wiki/SSL.txt> -#ssl = yes +ssl = required  # PEM encoded X.509 SSL/TLS certificate and private key. They're opened before  # dropping root privileges, so keep the key file unreadable by anyone but  # root. Included doc/mkcert.sh can be used to easily generate self-signed  # certificate, just make sure to update the domains in dovecot-openssl.cnf -ssl_cert = </etc/ssl/certs/dovecot.pem -ssl_key = </etc/ssl/private/dovecot.pem +ssl_cert = </etc/postfix/flylightning.pem +ssl_key = </etc/postfix/flylightning.key  # If key file is password protected, give the password here. Alternatively  # give it when starting dovecot with -p parameter. Since this file is often @@ -51,7 +51,7 @@ ssl_key = </etc/ssl/private/dovecot.pem  # Generate new params with `openssl dhparam -out /etc/dovecot/dh.pem 4096`  # Or migrate from old ssl-parameters.dat file with the command dovecot  # gives on startup when ssl_dh is unset. -#ssl_dh = </etc/dovecot/dh.pem +ssl_dh = </etc/dovecot/dh.pem  # Minimum SSL protocol version to use. Potentially recognized values are SSLv3,  # TLSv1, TLSv1.1, TLSv1.2 and TLSv1.3, depending on the OpenSSL version used. | 
