Date: Thu, 21 Apr 2005 19:35:13 +0200 From: Christian Damm <christian.damm@diewebmaster.at> To: Odhiambo Washington <wash@wananchi.com> Cc: freebsd-isp@freebsd.org Subject: Re: courier-imap Message-ID: <4267E451.1040201@diewebmaster.at> In-Reply-To: <20050421101626.GE23284@ns2.wananchi.com> References: <20050420145207.GC60384@ns2.wananchi.com> <4266C4BA.1010205@diewebmaster.at> <20050421054035.GA82393@ns2.wananchi.com> <42676862.5040605@diewebmaster.at> <20050421101626.GE23284@ns2.wananchi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Odhiambo Washington schrieb:
> * Christian Damm <christian.damm@diewebmaster.at> [20050421 11:51]: wrote:
>
>>
>>Odhiambo Washington schrieb:
>>
>>>* Christian Damm <christian.damm@diewebmaster.at> [20050421 00:08]: wrote:
>>>
>>>
>>>>Odhiambo Washington schrieb:
>>>>
>>>>
>>>>>Hello Sysadmins,
>>>>>
>>>>>Does anyone have any clues as to how I can easily limit access to my
>>>>>imapd daemon to just a few hosts?
>>>>>I am running courier-imap but looking at /etc/inetd.conf, I don't
>>>>>see how I could put it in there and hence use hosts.allow to control
>>>>>access. Google has not helped much, but again I may be searching using
>>>>>wrong keyword.
>>>>
>>>>1.) you can use the courier-suites own tcp server (quite similar to the
>>>>DJB tcp server), 'couriertcpd' - look into the manpage, it is able to do
>>>>ip restrictions and much more.
>>>
>>>
>>>This assumes that I use courier as the MTA, yes?
>>>
>>>In my case I only use the IMAP daemon. I use other MTA.
>>>
>>
>>no, if you look at your PS output you`ll see 'couriertcpd' running -
>>regardless which part of the courier suite you are using ('couriertcpd'
>>is the courier suites generic tcp server)
>
>
>
> You are damn right!! Now I just need to give it ACLs, you mean??
> I need to find out HOW it is invoked and how I can pass it the arguments
> that will lead to the access control.
manpage
>
>
>
>
>>>>2.) dont know if it is possible to compile courier imap aginst libwrap
>>>>and use the tcp wrapper (hosts.allow).
>>>
>>>
>>>
>>>Perhaps this one might be better. I will look into this.
>>>
>>
>>method 1 is the best in any case imho.
>
>
> Have you used it before, by any chance? I could move quickly with some
> practical experience.
>
sorry, no i have not used 'couriertcpd'`s config options in the past
(even in big complex setups there is mostly no need to tweak it).
>
>
> Best regards,
> Odhiambo Washington
> Systems Admin,
> Wananchi Online Ltd.
>
> Are you hosting your domain name with the leaders??:
> See http://webhosting.info/webhosts/tophosts/Country/KE
>
>
> DISCLAIMER : http://ns2.wananchi.com/~wash/Email/disclaimer.txt
> ----------------------------------+-----------------------------------------
> Odhiambo WASHINGTON . WANANCHI ONLINE LTD (Nairobi, KE)
> http://www.wananchi.com/email/ . 1ere Etage, Loita Hse, Loita St.,
> Mobile: (+254) 722 743 223 . # 10286, 00100 NAIROBI
> ----------------------------------+-----------------------------------------
> "It is a tremendous feeling to have a customer ask for you by name or tell
> you that a customer referred him/her to you because of the level of customer
> service you provided inspired that much confidence."
> ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>
> He who finds a wife finds what is good
> and receives favor from the Lord.
> Proverbs 18:22
>
>
>
> !DSPAM:42677d8a102471219324213!
>
--
mfg.
christian damm
technische leitung
phone: dw 42
email: christian.damm@diewebmaster.at
icq at work: 124464652
die webmaster - flötzerweg 156 - 4030 linz - austria
phone: +43-732-381242, fax: +43-732-381242-22, isdn (leonardo):
+43-732-381242-33
homepage: www.diewebmaster.at, public email: office@diewebmaster.at
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4267E451.1040201>