You are on page 1of 3

Admin Guide ( Unix System Administration) Dovecot IMAP/POP3 Server Configuration

Dovecot is an IMAP and POP3 server for Linux/UNIX-like systems, written with security primarily in mind. To configure Dovecot, log in as admin, select the System Administration mode and find Dovecot IMAP/POP3 Server in the E-Mail Management section on the right panel.

Networking and Protocols User and Login Options Mail Files SSL Configuration

Networking and Protocols

Serve mail protocols: protocols you want to be serving. Interfaces for IMAP | POP3 connections: IP(v4/v6) or host address where to listen in for connections. It's not currently possible to specify multiple addresses. Interfaces for IMAP SSL | POP3 SSL connections: IP(v4/v6) or host address where to listen in for SSL connections.

Make sure to click Save to preserve changes. SSL Configuration

Interval between SSL parameter regeneration: how often to regenerate the SSL parameters file. Generation is quite CPU intensive operation. The value is in hours, 0 disables regeneration entirely. Disallow plaintext authentication in non-SSL mode: disable plaintext authentications unless SSL/TLS is used. Note that 127.*.*.* and IPv6 ::1 addresses are considered secure, this setting has no effect if you connect from those addresses.

Make sure to click Save to preserve changes.

User Authentication And Login Options

Some of these options:

SASL authentication realms: space separated list of realms for SASL authentication mechanisms. You can leave it empty if you don't want to support multiple realms. Many clients simply use the first one listed here, so keep the default realm first. Default authentication realm: default realm/domain to use if none was specified. This is used for both SASL realms and appending @domain to username in plaintext logins. Minimum | Maximum valid UID: valid UID range for users, defaults to 500 and above. This is mostly to make sure that users can't log in as daemons or other system users. Note that denying root logins is hardcoded to dovecot binary and can't be done even if Maximum valid UID is set to 0. Minimum | Maximum valid group ID: valid group ID range for users, defaults to non-root/wheel. Users having non-valid group ID as primary group ID aren't allowed to log in. If user belongs to supplementary groups with non-valid GIDs, those groups are not set. Additional granted secondary groups: grant access to these groups for mail processes. Chroot directory for mail process: separated list of directories under which chrooting is allowed for mail processes .

Make sure to click Save to preserve changes.

Mail Files

Some of these options:


Allow access to entire system?: allow full filesystem access to clients. There's no access checks other than what the operating system does for the active UID/GID. Save email with CR+LF line endings?: save mails with CR+LF instead of plain LF.

Make sure to click Save to preserve changes.

You might also like