Question regarding disable_plaintext_auth and other variables

[petersconsult]

Hello all,
i have a question as to whether i can safely set the following variables in /usr/local/directadmin/custombuild/configure/dovecot/dovecot.conf

disable_plaintext_auth = yes
auth_cache_size = 4M
auth_cache_ttl = 3600 sec
auth_cache_negative_ttl = 3600 sec
auth_mechanisms = plain login

The instructions say that "bsdauth, PAM and vpopmail require cache_key to be set for caching to be used", this is beyond my personal knowledge; on a standard CentOS/AlmaLinux 8 with DirectAdmin, would that be the case?

Thank you!

 

[petersconsult]

Sorry, i thought i'd put this in the Dovecot section of the forum..
My bad

 

[factor]

You have to start by doing a custom folder

Frequently Asked Questions | Directadmin Docs

DirectAdmin Knowledge Base

docs.directadmin.com

DA is a Templated based config system. If you were to put it in either standard location or in the

/usr/local/directadmin/custombuild/configure

it would get overwritten by a Custombuild update.

Welcome to the forum and glad you are away from Evil Cpanel..

 

[petersconsult]

Thank you for the reply!

So i would create a folder here:
/usr/local/directadmin/custombuild/custom/dovecot

And add a dovecot.conf file?

Would it need to be a copy of the file:
/usr/local/directadmin/custombuild/configure/dovecot/dovecot.conf

with my changes added?
or could i just put the variables i want?

Finally, more importantly, is there a reason not to set the following variables?

disable_plaintext_auth = yes
auth_cache_size = 4M
auth_cache_ttl = 3600 sec
auth_cache_negative_ttl = 3600 sec
auth_mechanisms = plain login

PS: it's good to move away from evil cPanel! Feels empowering!

 

[factor]

I personally haven't added much customization to dovecot. If you are worried about encryption you could use

Customizing Dovecot | Directadmin Docs

DirectAdmin Knowledge Base

docs.directadmin.com

I assume you trying to learn since you are new to DA. So I would go slow and use a Test box. DA is not at all like Cpanel.

The instructions say that "bsdauth, PAM and vpopmail require cache_key to be set for caching to be used",

Which instruction are you referring to?

You might just start here and read all of the Email section
Dovecot

• Customizing Dovecot
• Troubleshooting
• User-level

E-mail

• Perfect E-Mail Setup
• System email accounts
• Autodiscover information for mail clients
• Email Maintenance and Customization
• Reducing sending spamscore
• Troubleshooting

Exim

• Configuring and customizing Exim
• Working with Exim and queue
• Troubleshooting Exim
• Antivirus

 

[petersconsult]

Thank you for the help!
That sentence about the system requirements for auth cache is from the default dovecot.conf file itself..

i'm having some odd behavior, with Mac Mail clients having to re-authenticate at random times.. I can't find any trace of any ill behavior in the logs, so i'm trying to limit 'accidents', like Mail clients attempting to connect without SSL or TLS, implementing an auth cache to free up resources, etc..

Most of the users connecting to this particular server are from the same IP address, so i edited the variable:

mail_max_userip_connections

which was set to an obviously low number (30, i believe)
so i'm hoping that upping it to 100 will do it, since it's easily conceivable that 100 devices would be connected from the same IP to the same server at the same time..

i'm also configuring another new server intended to receive accounts currently hosted on cPanel (i'm progressively migrating 6 servers this way) and i want to make the transition smoother than for my first client..

For example, one small detail that caused a lot of trouble during the migration of my first client is that, in cPanel, in the 'namespace inbox' domain, you find:

prefix = INBOX.

Whereas in DA, you'll find:

prefix =

This caused a massive headache because, despite imapsync having correctly migrated all of the data, mailboxes, subfolders, etc, once the Mail clients connected to the new server, all of the 'special' mailboxes 'disappeared'

This next time, i'll try to set the prefix the same way as cPanel in order to smooth the transition..

This seems like a small detail, but some of my other clients have people all over the world, and i simply can't afford to help each one to resolve these issues..

So, all that to say, i'm trying to get Dovecot and Exim on these to behave as closely as possible to the way they do on cPanel, at least as far as clients are concerned..

Sorry for the long post, now you know everything ;-)

 

[factor]

prefix = INBOX.

You may look here. The DA namespace is not RFC compliant
https://forum.directadmin.com/threads/setup-imap-folders.58430/ < This is the way I do it.
You can use the standard way as well
here

Version 1.47.0 | Directadmin Docs

DirectAdmin Knowledge Base

www.directadmin.com

Are you using the Migration guide?

How-to: cPanel to DA migration

As we're getting more and more questions on how to use https://forum.directadmin.com/showthread.php?t=52792&p=280613#post280613, I've decided to write this article to make it clear :) See the 2nd post if you'd just like to try it for a single or couple accounts. FAQ for new customers...

forum.directadmin.com

You also might read through the top stickies on Cpanel

DirectAdmin General Discussion

This area is for general DirectAdmin Q & A. Please do not post support, troubleshooting, or "how to" questions here.SUPPORT REQUESTS WILL BE DELETED.

forum.directadmin.com