Nah. Just put a comment in the config file about Dovecot's brain damage referencing the pf rule. :-)

-Larry

-----Original Message-----
From: Bob [mailto:***@mtnlion.com]
Sent: Thursday, May 14, 2015 10:28 AM
To: Lawrence R. Mulder; maia-***@renaissoft.com
Subject: Re: [Maia-users] maia not authenticating

Larry,

Yes, I can make a pf rule, but that is an ugly hack. Blocking port 110
at the OS level is almost certainly going to bite me in the butt years
from now when I forgot that I did it. What we need, I think, is for Maia
to permit IMAP or SQL auth. I think the reason dovecot dropped that
inet_listen option is that it now automatically provides open access to
localhost, so the need to specify how different ip's are handled is
theoretically unnecessary.

Thanks,
Bob

On 5/14/2015 8:13 AM, Lawrence R. Mulder wrote:
> Bob,
>
> You are on a BSD box? How about a netfilter firewall rule? Shouldn't be that difficult as an alternative to a localhost only binding if dovecot won't play nice.
>
> -----Original Message-----
> From: Bob [mailto:***@mtnlion.com]
> Sent: Thursday, May 14, 2015 10:11 AM
> To: Lawrence R. Mulder
> Subject: Re: [Maia-users] maia not authenticating
>
> Thanks for the update. I tried the code you sent from Dovecot 1. It
> doesn't work. dovecot 2 won't start with that code. While v2 is much
> more logical in terms of config, after reviewing the docs, I can't find
> a way to restrict pop3 to localhost. The dovecot wiki says it will
> accept the inet_listener command, but I was unable to get it to start
> once I added that clause to the service pop3 paragraph.
>
> Thanks,
> Bob
>
> On 5/13/2015 8:53 PM, Lawrence R. Mulder wrote:
>> The dovecot2 wiki claims it understands the old 1.2 config file format but may log warnings. Optionally you can convert the old config file to the new format using the doveconf tool like:
>>
>> # convert old config to new temp config file‎
>> doveconf -n -c /etc/dovecot/dovecot.conf > dovecot-2.conf
>>
>> If you need more info, you can check here:
>>
>> ‎http://wiki2.dovecot.org/Upgrading/2.0
>>
>>
>> Thanks,
>> -Larry
>>
>>
>> ________________________________________________
>> Lawrence R. Mulder / RHCE, VTSP, SEC+
>> Vice President, InformAbility, Inc.
>> ***@informability.com
>> http://www.informability.com/about
>> http://www.facebook.com/InformAbility
>> Ph: 630-532-5941
>> Fx: 630-532-5955
>> ________________________________________________
>> Original Message
>> From: Bob
>> Sent: Wednesday, May 13, 2015 10:38 PM
>> To: Lawrence R. Mulder; maia-***@renaissoft.com
>> Subject: Re: [Maia-users] maia not authenticating
>>
>>
>> No, I'm using dovecot 2. It doesn't understand the lines you listed. I
>> tried them in the 20-pop3.conf which is where the pop3 config is now
>> stored.
>>
>> On 5/13/2015 10:24 AM, Lawrence R. Mulder wrote:
>>> In your dovecot.conf file, have a stanza like the following:
>>>
>>> service pop3-login {
>>> inet_listener imap {
>>> address = localhost
>>> port = 110
>>> }
>>>
>>> Thanks,
>>> -Larry
>>>
>>>
>>> -----Original Message-----
>>> From: Maia-users [mailto:maia-users-***@renaissoft.com] On Behalf Of Bob
>>> Sent: Wednesday, May 13, 2015 12:19 PM
>>> To: maia-***@renaissoft.com
>>> Subject: Re: [Maia-users] maia not authenticating
>>>
>>> How do you bind only to localhost with dovecot 2?
>>>
>>> On 5/11/2015 7:07 PM, Lawrence R. Mulder wrote:
>>>> You can enable pop3 as an authentication mechanism for maia by only binding it to localhost thereby not allowing outside users to actually use it to retrieve email. Barring binding it to only localhost, you can optionally firewall the pop ports off from users also.
>>>>
>>>> Thanks,
>>>> -Larry
>>>>
>>>>
>>>> ________________________________________________
>>>> Lawrence R. Mulder / RHCE, VTSP, SEC+
>>>> Vice President, InformAbility, Inc.
>>>> ***@informability.com
>>>> http://www.informability.com/about
>>>> http://www.facebook.com/InformAbility
>>>> Ph: 630-532-5941
>>>> Fx: 630-532-5955
>>>> ________________________________________________
>>>> Original Message
>>>> From: David Newman
>>>> Sent: Monday, May 11, 2015 9:05 PM
>>>> To: maia-***@renaissoft.com
>>>> Subject: Re: [Maia-users] maia not authenticating
>>>>
>>>>
>>>> On 5/11/15 3:10 PM, Dave Overton wrote:
>>>>> Obvious answer, enable POP3?
>>>>>
>>>>> IIRC, There is no reason not to,
>>>> Orthogonal to the OP's problem, but POP may introduce a support issue.
>>>>
>>>> I had a user who insisted on running POP and then complained that
>>>> messages on his computer weren't showing up on his phone. He also was
>>>> having problems with folders.
>>>>
>>>> ArrrrRRRRRRGH. And pointing nontechnical users to RFCs isn't much help.
>>>>
>>>> dn
>>>>
>>>>
>>>>
>>>> IMAP and POP3 use the same everything (authentication, data storage,
>>>> etc) so just turn it on and fix your problem.
>>>>> Dave
>>>>>
>>>>>
>>>>>
>>>>>> -----Original Message-----
>>>>>> From: Maia-users [mailto:maia-users-***@renaissoft.com] On Behalf
>>>>>> Of Bob
>>>>>> Sent: Monday, May 11, 2015 2:19 PM
>>>>>> To: maia-***@renaissoft.com
>>>>>> Subject: [Maia-users] maia not authenticating
>>>>>>
>>>>>> I set up maia per the PHO instructions. It fails to authenticate any
>>>>>> address. I noticed that the instructions say to do the auth via pop3. I
>>>>>> don't support pop3 on my server. I tried "imap" but that failed too.
>>>>>> This is in the /usr/local/www/maia/config.php file. Any thoughts?
>>>>>> _______________________________________________
>>>>>> Maia-users mailing list
>>>>>> Maia-***@renaissoft.com
>>>>>> http://www.renaissoft.com/cgi-bin/mailman/listinfo/maia-users
>>>>> _______________________________________________
>>>>> Maia-users mailing list
>>>>> Maia-***@renaissoft.com
>>>>> http://www.renaissoft.com/cgi-bin/mailman/listinfo/maia-users
>>>>>
>>>> _______________________________________________
>>>> Maia-users mailing list
>>>> Maia-***@renaissoft.com
>>>> http://www.renaissoft.com/cgi-bin/mailman/listinfo/maia-users
>>>> _______________________________________________
>>>> Maia-users mailing list
>>>> Maia-***@renaissoft.com
>>>> http://www.renaissoft.com/cgi-bin/mailman/listinfo/maia-users
>>> _______________________________________________
>>> Maia-users mailing list
>>> Maia-***@renaissoft.com
>>> http://www.renaissoft.com/cgi-bin/mailman/listinfo/maia-users

On 5/14/15 10:27 AM, Bob wrote:

> from now when I forgot that I did it. What we need, I think, is for Maia
> to permit IMAP or SQL auth. I think the reason dovecot dropped that

Maia has supported imap for years... what broke?

--
David Morton
***@dgrmm.net