From owner-freebsd-questions@FreeBSD.ORG Fri Sep 19 15:38:39 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 8D804C9A; Fri, 19 Sep 2014 15:38:39 +0000 (UTC) Received: from blue.qeng-ho.org (blue.qeng-ho.org [217.155.128.241]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 33D1434D; Fri, 19 Sep 2014 15:38:38 +0000 (UTC) Received: from arthur.home.qeng-ho.org (arthur.home.qeng-ho.org [172.23.1.2]) by fileserver.home.qeng-ho.org (8.14.7/8.14.5) with ESMTP id s8JFcSjK034768; Fri, 19 Sep 2014 16:38:28 +0100 (BST) (envelope-from freebsd@qeng-ho.org) Message-ID: <541C4DF4.1070204@qeng-ho.org> Date: Fri, 19 Sep 2014 16:38:28 +0100 From: Arthur Chance User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:31.0) Gecko/20100101 Thunderbird/31.0 MIME-Version: 1.0 To: Dale Scott Subject: Re: is pkg saying courier and postfix are incompatible? References: <005201cfd2bd$d8ac34d0$8a049e70$@shaw.ca> <9745AE56F096E150A334CBD1@[192.168.1.50]> <541A7518.7030603@FreeBSD.org> <009601cfd398$51ca0ec0$f55e2c40$@shaw.ca> <541BD0C1.6080509@FreeBSD.org> <541BDA6D.3060702@qeng-ho.org> In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Cc: Matthew Seaman , "freebsd-questions@freebsd.org" X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Sep 2014 15:38:39 -0000 On 19/09/2014 15:12, Dale Scott wrote: >> On Sep 19, 2014, at 1:25 AM, Arthur Chance wrote: >> >>> On 19/09/2014 07:44, Matthew Seaman wrote: >>>> On 19/09/2014 00:28, Dale Scott wrote: >>>> I installed postfix-2.11.1_4,1 as a pkg and just noticed "pkg info >>>> postfix" reports DOVECOT and OPENLDAP options are off. Do I need >>>> these in my scenarios? I didn't put a ports tree on this system to >>>> see if it was possible to build a system from packages only, but am >>>> also not averse to recognizing it was pipe dream (and remember how to >>>> use portmaster again). >>> >>> You can use postfix with dovecot without having to enable the DOVECOT >>> option -- as I recall, that's something to do with postfix using the >>> dovecot authentication mechanisms. >> >> That's correct, it's to enable postfix to use dovecot's SASL interface >> to authorise users when postfix requires authorisation for mail submission. >> Much nicer to have one mechanism rather than two that might get out of sync. >> However, if authorisation is enforced via /etc/passwd or LDAP, you've >> already got your mechanism so don't need dovecot's. >> >>> You only need OPENLDAP turned on for postfix if you want to use ldap >>> lookups. (Well Duh!) For a stand-alone system without many users, ldap >>> is overkill, and you would generally be better off using lmdb or bdb >>> files instead (I prefer lmdb -- seems simpler and to have fewer overheads). >> >> And it's fast, if you have a lot of mail to process. >> >>>> Is there anything special needed in Dovecot? >>> >>> No. Either you configure postfix to use dovecot's delivery agent, or >>> you make postfix speak LMTP to dovecot: from dovecot's perspective it >>> doesn't need to know anything about or do anything differently depending >>> on what MTA you're using. >> >> LMTP has the advantage that postfix and dovecot can be in separate jails for >> extra security. > > Thanks for all the help. I'm building a fully *self-contained* proof-of-concept > business system with MantisBT as an ISO9000 issue tracker, Tryton for managing > equipment and material loaned to client jobs and returned, OpenLDAP for single > point of authentication (enterprise is MS AD), and mail working between users, > Mantis and Tryton. I'll use Mutt in the first round of demos, but will provide > RoundCube for demo users to access mail themselves (once virtual mail users are > working). I'm ignoring security for now, too much to learn, create keys and > configure, and the IT group will have their own ideas anyway if the POC proceeds > to production. Hopefully it won't look too disjointed, the alternative is maybe > funding in 2016 for the IT team to build the same thing but with better icons > (and by clicking through MS wizards ;-)) > > It could be a nice bonus if I could use my desktop Outlook client to retrieve > all the mail from Dovecot via pop3 and forward it into the enterprise system > so demo users could really experience the POC, but the POC can't connect > directly to any enterprise services (e.g mail) for now. Any comments on this > approach? I've never used Outlook in my life, so can't comment on that side of it, but dovecot does POP3 as well as IMAP. It's not as good as IMAP, but for a demo should be good enough. See http://wiki2.dovecot.org/POP3Server