Skip to main content

Dovecot user-controllable passwords

Project description

Passwords used by your users to log into a system using SSH are precious. Way too precious to have mail software store them in plaintext on arbitrary devices (laptops, phones, …). Unless you are using LDAP to store password hashes for your system users, Dovecot doesn’t offer an out-of-the-box way to let regular users set passwords for IMAP that differ from those they use to log into the system.

This tool provides a simple way of implementing separate passwords in Dovecot for regular system users. Passwords are stored inside each user’s home directory, and they can be modified from the command line. It implements Dovecot’s checkpassword interface for password verification.

Future plans include:

  • setting additional attributes (such as mail to override the system-default mail_location)

Installation

This is a regular Python package installable using pip. Obviously, it depends on Python (tested on 3.4+). If you’re feeling adventurous, just run pip install dovecot-userpassdb as root to have everything installed inside /usr/local. If you prefer to keep things tidy and isolated, you can follow these steps instead:

  1. Create a Python virtualenv:

    # python -m venv /usr/local/venv-dovecot-userpassdb
    # PIP="/usr/local/venv-dovecot-userpassdb/bin/pip"
    # $PIP install -U pip                                # to be up-to-date
    
  2. Install the dovecot-userpassdb package inside the new virtualenv:

    # $PIP install dovecot-userpassdb
    
  3. Make the newly-installed imap-passwd script available in system PATH:

    # ln -s /usr/local/venv-dovecot-userpassdb/bin/imap-passwd /usr/local/bin
    
  4. Finally, configure Dovecot to use the provided dovecot-checkpass script, for example by including the following block:

    passdb {
        driver = checkpassword
        args = /usr/local/venv-dovecot-userpassdb/bin/dovecot-checkpass
    }
    

Project details


Release history Release notifications

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Filename, size & hash SHA256 hash help File type Python version Upload date
dovecot_userpassdb-0.1.0-py2.py3-none-any.whl (6.1 kB) Copy SHA256 hash SHA256 Wheel py2.py3
dovecot-userpassdb-0.1.0.tar.gz (6.6 kB) Copy SHA256 hash SHA256 Source None

Supported by

Elastic Elastic Search Pingdom Pingdom Monitoring Google Google BigQuery Sentry Sentry Error logging AWS AWS Cloud computing DataDog DataDog Monitoring Fastly Fastly CDN SignalFx SignalFx Supporter DigiCert DigiCert EV certificate StatusPage StatusPage Status page