El 21/9/24 a les 18:49, Luca Olivetti via Info ha escrit:
El 21/9/24 a les 17:57, Luca Olivetti via Info ha escrit:
Hello,
is there a way to configure a passwordless login from a specific ip
address?
Something like
https://doc.dovecot.org/2.3/configuration_manual/authentication/static_password_database/
I tried saslauthd with pam and pam_access, but saslauthd doesn't
expose the ip address of the client (or I couldn't find a way to
expose it).
I see there's the -N option for imapd but I don't see a similar option
for timsieved.
I found a (convoluted) way:
1) rename /etc/imapd.conf to /etc/imapd-common.conf
2) remove the sasl_pwcheck_method line from imapd-common.conf
3) put this in /etc/imapd.conf
@include: /etc/imapd-common.conf
sasl_pwcheck_method: auxprop saslauthd
(or whatever you used in the original imapd.conf)
4) and this in /etc/imapd-nopasswd.conf
@include: /etc/imapd-common.conf
sasl_pwcheck_method: alwaystrue
then it's just a matter of spawning an alternate imapd/timsieved with
"-C /etc/imapd-nopasswd.conf" and limit the access using
/etc/hosts.allow, /etc/hosts.deny.
Bye
--
Luca Olivetti
Wetron Automation Technology https://wetron.es/
Tel. +34 93 5883004 (Ext.3010) Fax +34 93 5883007
------------------------------------------
Cyrus: Info
Permalink: https://cyrus.topicbox.com/groups/info/T210166793e2db746-Ma743c80a0fa1220249104fc0
Delivery options: https://cyrus.topicbox.com/groups/info/subscription
