NoPaste

IMAP Konfig

von Anonymous

SNIPPET_TEXT:
  1. # Debian Cyrus imapd.conf
  2. # $Id: imapd.conf 565 2006-08-14 16:51:28Z sven $
  3. # See imapd.conf(5) for more information and more options
  4.  
  5. # Configuration directory
  6. configdirectory: /var/lib/cyrus
  7.  
  8. # Which partition to use for default mailboxes
  9. defaultpartition: default
  10. partition-default: /var/spool/cyrus/mail
  11.  
  12. # News setup
  13. partition-news: /var/spool/cyrus/news
  14. newsspool: /var/spool/news
  15.  
  16. # Alternate namespace
  17. # If enabled, activate the alternate namespace as documented in
  18. # /usr/share/doc/cyrus-doc-2.2/html/altnamespace.html, where an user's
  19. # subfolders are in the same level as the INBOX
  20. # See also userprefix and sharedprefix on imapd.conf(5)
  21. altnamespace: no
  22.  
  23. # UNIX Hierarchy Convention
  24. # Set to yes, and cyrus will accept dots in names, and use the forward
  25. # slash "/" to delimit levels of the hierarchy. This is done by converting
  26. # internally all dots to "^", and all "/" to dots. So the "rabbit.holes"
  27. # mailbox of user "helmer.fudd" is stored in "user.elmer^fud.rabbit^holes"
  28. unixhierarchysep: no
  29.  
  30. # Rejecting illegal characters in headers
  31. # Headers of RFC2882 messages must not have characters with the 8th bit
  32. # set. However, too many badly-written MUAs generate this, including most
  33. # spamware. Enable this to reject such messages.
  34. #reject8bit: yes
  35.  
  36. # Munging illegal characters in headers
  37. # Headers of RFC2882 messages must not have characters with the 8th bit
  38. # set. However, too many badly-written MUAs generate this, including most
  39. # spamware. If you kept reject8bit disabled, you can choose to leave the
  40. # crappage untouched by disabling this (if you don't care that IMAP SEARCH
  41. # won't work right anymore.
  42. #munge8bit: no
  43.  
  44. # Forcing recipient user to lowercase
  45. # Cyrus 2.2 is case-sensitive.  If all your mail users are in lowercase, it is
  46. # probably a very good idea to set lmtp_downcase_rcpt to true.  This is set by
  47. # default, per RFC2821. This was not set by default in debian versions up to
  48. # and including 2.2.12-4.
  49. lmtp_downcase_rcpt: yes
  50.  
  51. # Uncomment the following and add the space-separated users who
  52. # have admin rights for all services.
  53. admins: cyrus
  54.  
  55. # Space-separated list of users that have lmtp "admin" status (i.e. that
  56. # can deliver email through TCP/IP lmtp). If specified, this parameter
  57. # overrides the "admins" parameter above
  58. #lmtp_admins: postman
  59.  
  60. # Space-separated list of users that have mupdate "admin" status, in
  61. # addition to those in the admins: entry above. Note that mupdate slaves and
  62. # backends in a Murder cluster need to autenticate against the mupdate master
  63. # as admin users.
  64. #mupdate_admins: mupdateman
  65.  
  66. # Space-separated list of users that have imapd "admin" status, in
  67. # addition to those in the admins: entry above
  68. #imap_admins: cyrus
  69.  
  70. # Space-separated list of users that have sieve "admin" status, in
  71. # addition to those in the admins: entry above
  72. #sieve_admins: cyrus
  73.  
  74. # List of users and groups that are allowed to proxy for other users,
  75. # seperated by spaces.  Any user listed in this will be allowed to login
  76. # for any other user.  Like "admins:" above, you can have imap_proxyservers
  77. # and sieve_proxyservers.
  78. #proxyservers: cyrus
  79.  
  80. # No anonymous logins
  81. allowanonymouslogin: no
  82.  
  83. # Minimum time between POP mail fetches in minutes
  84. popminpoll: 1
  85.  
  86. # If nonzero, normal users may create their own IMAP accounts by creating
  87. # the mailbox INBOX.  The user's quota is set to the value if it is positive,
  88. # otherwise the user has unlimited quota.
  89. autocreatequota: 0
  90.  
  91. # umask used by Cyrus programs
  92. umask: 077
  93.  
  94. # Sendmail binary location
  95. # DUE TO A BUG, Cyrus sends CRLF EOLs to this program. This breaks Exim 3.
  96. # For now, to work around the bug, set this to a wrapper that calls
  97. # /usr/sbin/sendmail -dropcr instead if you use Exim 3.
  98. #sendmail: /usr/sbin/sendmail
  99.  
  100. # If enabled, cyrdeliver will look for Sieve scripts in user's home
  101. # directories: ~user/.sieve.
  102. sieveusehomedir: false
  103.  
  104. # If sieveusehomedir is false, this directory is searched for Sieve scripts.
  105. sievedir: /var/spool/sieve
  106.  
  107. # notifyd(8) method to use for "MAIL" notifications.  If not set, "MAIL"
  108. # notifications are disabled.  Valid methods are: null, log, zephyr
  109. #mailnotifier: zephyr
  110.  
  111. # notifyd(8) method to use for "SIEVE" notifications.  If not set, "SIEVE"
  112. # notifications are disabled.  This method is only used when no method is
  113. # specified in the script.  Valid methods are null, log, zephyr, mailto
  114. #sievenotifier: zephyr
  115.  
  116. # DRAC (pop-before-smtp, imap-before-smtp) support
  117. # Set dracinterval to the time in minutes to call DRAC while a user is
  118. # connected to the imap/pop services. Set to 0 to disable DRAC (default)
  119. # Set drachost to the host where the rpc drac service is running
  120. #dracinterval: 0
  121. #drachost: localhost
  122.  
  123. # If enabled, the partitions will also be hashed, in addition to the hashing
  124. # done on configuration directories. This is recommended if one partition has a
  125. # very bushy mailbox tree.
  126. hashimapspool: true
  127.  
  128. # Allow plaintext logins by default (SASL PLAIN)
  129. allowplaintext: yes
  130.  
  131. # Force PLAIN/LOGIN authentication only
  132. # (you need to uncomment this if you are not using an auxprop-based SASL
  133. # mechanism.  saslauthd users, that means you!). And pay attention to
  134. # sasl_minimum_layer and allowapop below, too.
  135. #sasl_mech_list: PLAIN
  136.  
  137. # Allow use of the POP3 APOP authentication command.
  138. # Note that this command requires that the plaintext passwords are
  139. # available in a SASL auxprop backend (eg. sasldb), and that the system
  140. # can provide enough entropy (eg. from /dev/urandom) to create a challenge
  141. # in the banner.
  142. #allowapop: no
  143.  
  144. # The minimum SSF that the server will allow a client to negotiate. A
  145. # value of 1 requires integrity protection; any higher value requires some
  146. # amount of encryption.
  147. #sasl_minimum_layer: 0
  148.  
  149. # The maximum SSF that the server will allow a client to negotiate. A
  150. # value of 1 requires integrity protection; any higher value requires some
  151. # amount of encryption.
  152. #sasl_maximum_layer: 256
  153.  
  154. # List of remote realms whose users may log in using cross-realm
  155. # authentications. Seperate each realm name by a space. A cross-realm
  156. # identity is considered any identity returned by SASL with an "@" in it.
  157. # NOTE: To support multiple virtual domains on the same interface/IP,
  158. # you need to list them all as loginreals. If you don't list them here,
  159. # (most of) your users probably won't be able to log in.
  160. loginrealms: lvps87-230-21-55.dedicated.hosteurope.de
  161.  
  162. # Enable virtual domain support.  If enabled, the user's domain will
  163. # be determined by splitting a fully qualified userid at the last '@'
  164. # or '%' symbol.  If the userid is unqualified, and the virtdomains
  165. # option is set to "on", then the domain will be determined by doing
  166. # a reverse lookup on the IP address of the incoming network
  167. # interface, otherwise the user is assumed to be in the default
  168. # domain (if set).
  169. virtdomains: userid
  170.  
  171. # The default domain for virtual domain support
  172. # If the domain of a user can't be taken from its login and it can't
  173. # be determined by doing a reverse lookup on the interface IP, this
  174. # domain is used.
  175. #defaultdomain:
  176.  
  177. #
  178. # SASL library options (these are handled directly by the SASL libraries,
  179. # refer to SASL documentation for an up-to-date list of these)
  180. #
  181.  
  182. # The mechanism(s) used by the server to verify plaintext passwords. Possible
  183. # values are "saslauthd", "auxprop", "pwcheck" and "alwaystrue".  They
  184. # are tried in order, you can specify more than one, separated by spaces.
  185. #
  186. # Do note that, since sasl will be run as user cyrus, you may have a lot of
  187. # trouble to set this up right.
  188. sasl_pwcheck_method: auxprop
  189.  
  190. # What auxpropd plugins to load, if using sasl_pwcheck_method: auxprop
  191. # by default, all plugins are tried (which is probably NOT what you want).
  192. sasl_auxprop_plugin: sasldb
  193.  
  194. # If enabled, the SASL library will automatically create authentication secrets
  195. # when given a plaintext password. Refer to SASL documentation
  196. sasl_auto_transition: no
  197.  
  198. #
  199. # SSL/TLS Options
  200. #
  201.  
  202. # File containing the global certificate used for ALL services (imap, pop3,
  203. # lmtp, sieve)
  204. #tls_cert_file: /etc/ssl/certs/ssl-cert-snakeoil.pem
  205.  
  206. # File containing the private key belonging to the global server certificate.
  207. #tls_key_file: /etc/ssl/private/ssl-cert-snakeoil.key
  208.  
  209. # File containing the certificate used for imap. If not specified, the global
  210. # certificate is used.  A value of "disabled" will disable SSL/TLS for imap.
  211. #imap_tls_cert_file: /etc/ssl/certs/cyrus-imap.pem
  212.  
  213. # File containing the private key belonging to the imap-specific server
  214. # certificate.  If not specified, the global private key is used.  A value of
  215. # "disabled" will disable SSL/TLS for imap.
  216. #imap_tls_key_file: /etc/ssl/private/cyrus-imap.key
  217.  
  218. # File containing the certificate used for pop3. If not specified, the global
  219. # certificate is used.  A value of "disabled" will disable SSL/TLS for pop3.
  220. #pop3_tls_cert_file: /etc/ssl/certs/cyrus-pop3.pem
  221.  
  222. # File containing the private key belonging to the pop3-specific server
  223. # certificate.  If not specified, the global private key is used.  A value of
  224. # "disabled" will disable SSL/TLS for pop3.
  225. #pop3_tls_key_file: /etc/ssl/private/cyrus-pop3.key
  226.  
  227. # File containing the certificate used for lmtp. If not specified, the global
  228. # certificate is used.  A value of "disabled" will disable SSL/TLS for lmtp.
  229. #lmtp_tls_cert_file: /etc/ssl/certs/cyrus-lmtp.pem
  230.  
  231. # File containing the private key belonging to the lmtp-specific server
  232. # certificate.  If not specified, the global private key is used.  A value of
  233. # "disabled" will disable SSL/TLS for lmtp.
  234. #lmtp_tls_key_file: /etc/ssl/private/cyrus-lmtp.key
  235.  
  236. # File containing the certificate used for sieve. If not specified, the global
  237. # certificate is used.  A value of "disabled" will disable SSL/TLS for sieve.
  238. #sieve_tls_cert_file: /etc/ssl/certs/cyrus-sieve.pem
  239.  
  240. # File containing the private key belonging to the sieve-specific server
  241. # certificate.  If not specified, the global private key is used.  A value of
  242. # "disabled" will disable SSL/TLS for sieve.
  243. #sieve_tls_key_file: /etc/ssl/private/cyrus-sieve.key
  244.  
  245. # File containing one or more Certificate Authority (CA) certificates.
  246. #tls_ca_file: /etc/ssl/certs/cyrus-imapd-ca.pem
  247.  
  248. # Path to directory with certificates of CAs.
  249. tls_ca_path: /etc/ssl/certs
  250.  
  251. # The length of time (in minutes) that a TLS session will be cached for later
  252. # reuse.  The maximum value is 1440 (24 hours), the default.  A value of 0 will
  253. # disable session caching.
  254. tls_session_timeout: 1440
  255.  
  256. # The list of SSL/TLS ciphers to allow, in decreasing order of precedence.
  257. # The format of the string is described in ciphers(1).  The Debian default
  258. # selects TLSv1 high-security ciphers only, and removes all anonymous ciphers
  259. # from the list (because they provide no defense against man-in-the-middle
  260. # attacks).  It also orders the list so that stronger ciphers come first.
  261. tls_cipher_list: TLSv1+HIGH:!aNULL:@STRENGTH
  262.  
  263. # Require a client certificate for ALL services (imap, pop3, lmtp, sieve).
  264. #tls_require_cert: false
  265.  
  266. # Require a client certificate for imap ONLY.
  267. #imap_tls_require_cert: false
  268.  
  269. # Require a client certificate for pop3 ONLY.
  270. #pop3_tls_require_cert: false
  271.  
  272. # Require a client certificate for lmtp ONLY.#sieve_tls_require_cert: false
  273.  
  274. #
  275. # Cyrus Murder cluster configuration
  276. #
  277. # Set the following options to the values needed for this server to
  278. # autenticate against the mupdate master server:
  279. # mupdate_server
  280. # mupdate_port
  281. # mupdate_username
  282. # mupdate_authname
  283. # mupdate_realm
  284. # mupdate_password
  285. # mupdate_retry_delay
  286.  
  287. ##
  288. ## KEEP THESE IN SYNC WITH cyrus.conf
  289. ##
  290. # Unix domain socket that lmtpd listens on.
  291. lmtpsocket: /var/run/cyrus/socket/lmtp
  292.  
  293. # The idle backend to use for IDLE command.
  294. # Options: poll (default), idled, no
  295. # poll doesn't need the idled daemon and is supposed to be more robust.
  296. # however it doesn't update as quickly as the idled backend does. "no"
  297. # turns off IDLE support. If set to "idled", you will also need to enable
  298. # the "idled" entry in cyrus.conf.
  299. idlemethod: poll
  300.  
  301. # Unix domain socket that idled listens on.
  302. idlesocket: /var/run/cyrus/socket/idle
  303.  
  304. # Unix domain socket that the new mail notification daemon listens on.
  305. notifysocket: /var/run/cyrus/socket/notify
  306.  
  307. # Syslog prefix. Defaults to cyrus (so logging is done as cyrus/imap etc.)
  308. syslog_prefix: cyrus
  309.  
  310. ##
  311. ## DEBUGGING
  312. ##
  313. # Debugging hook. See /usr/share/doc/cyrus-common-2.2/README.Debian.debug
  314. # Keep the hook disabled when it is not in use
  315. #
  316. # gdb Back-traces
  317. #debug_command: /usr/bin/gdb -batch -cd=/tmp -x /usr/lib/cyrus/get-backtrace.gdb /usr/lib/cyrus/bin/%s %d >/tmp/gdb-backtrace.cyrus.%1$s.%2$d <&$
  318. #
  319. # system-call traces
  320. #debug_command: /usr/bin/strace -tt -o /tmp/strace.cyrus.%s.%d -p %2$d <&- 2>&1 &
  321. #
  322. # library traces
  323. #debug_command: /usr/bin/ltrace -tt -n 2 -o /tmp/ltrace.cyrus.%s.%d -p %2$d <&- 2>&1 &

Quellcode

Hier kannst du den Code kopieren und ihn in deinen bevorzugten Editor einfügen. PASTEBIN_DOWNLOAD_SNIPPET_EXPLAIN