Rudy Gevaert wrote: > JOYDEEP wrote: >> Dear list, >> >> after implementing the imaps , I need to configure sieve to start >> STARTTLS. >> >> sivtest -a aftab -u aftab linux.kolkatainfoservices.in -m LOGIN -t >> "" >> >> is working well. is there any config file for sieve so that I can force >> sieve to start STARTTLS ? bcoz I am using sieve from a web-based email >> client called felamimail. > > I'm not sure what you are trying to say, because it is the client that > has to issue STARTTLS, and not the server. The server just advertises > his capabilities. E.g. TLS OK Rudy, thanks for your hints. I think I must be more verbose here. I have imaps. whenever I try to use sieve from felamimail web mail client it reports ------------------------------------------------------- Apr 3 14:51:12 linux slapd[4169]: conn=727 op=0 RESULT tag=97 err=0 text= Apr 3 14:51:12 linux master[10304]: about to exec /usr/lib/cyrus/bin/timsieved Apr 3 14:51:12 linux sieve[10304]: executed Apr 3 14:51:12 linux sieve[10304]: accepted connection Apr 3 14:51:12 linux sieve[10304]: badlogin: linux.kolkatainfoservices.in[127.0.0.1] PLAIN encryption needed to use mechanism ------------------------------------------------------------------------------------------------------------------- If I manually test with the command sivtest -a aftab -u aftab linux.kolkatainfoservices.in -m LOGIN -t "" it runs successfully. the log reports ---------------------------------------------------- Apr 3 14:54:33 linux imaps[10364]: login: linux.kolkatainfoservices.in [127.0.0.1] aftab LOGIN+TLS User logged in ------------------------------------------------------------------------------ so here i need something so that sieve can work with imaps. > > Btw I have in mine imapd.conf > allowplaintext: 0 > > And that disables sending a password not encryped over the wire for > imap and sieve. (I think lmtp has to be preauthed, I'm using it that > way). > > Also I can say you can't run sieve over ssl natively by cyrus. I have > set up a second imapd.conf with in it the same as in my other > imapd.conf except: > allowplaintext: 1 > and I have two timsieved's running in my cyrus.conf: > sieve cmd="/usr/cyrus/bin/timsieved -C > /mail/mail1/etc/imapd.conf" listen="mail1.ugent.be:sieve" prefork=0 > lsieve cmd="/usr/cyrus/bin/timsieved -C > /mail/mail1/etc/imapd_local_sieve.conf" listen="localhost:sieve" > prefork=0 > > I then have set up an stunnel that redirects port 4000 to the sieve on > localhost:sieve. Users can then use sieve over ssl. (In fact the > only user is our webmail client that supports sieve over ssl, but not > sieve+tls). > > Also note that I'm advertising only PLAIN in my sasl_mech_list. I'm > not advertising "LOGIN" because setting allowplaintext:0 will disable > LOGIN. See http://cyrusimap.web.cmu.edu//imapd/overview.html#login > > > Rudy > >> >> thanks >> >> ---- >> Cyrus Home Page: http://cyrusimap.web.cmu.edu/ >> Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki >> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html >> >> >> ---- >> Cyrus Home Page: http://cyrusimap.web.cmu.edu/ >> Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki >> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > ---- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
