Re: different conf files of on same.

Sun, 12 Aug 2001 15:00:22 -0700 

>>>>> On Sun, 12 Aug 2001 16:19:20 +0200,
>>>>> Tarjei Huse <[EMAIL PROTECTED]> (th) writes:

th> Hi All. 
th> Pardon me, but new cyradm? 

th> I this a new cyradm for 2.0x? or +??

2.x (actually a recent CVS pull of cyrus-imapd).  In 1.x the cyradm
interactive utility was a Tcl extension.  With 2.x it is a Perl
script.  Just adjusting to changes.

th> Now, I want a setup where 
th> - localhost may use imap (for squirrelmail) 
th> and everyone else uses pops or imaps, and also that local users
th> connects using the local networkcard and 
th> - local users are denyed the use of pop.


th> I am thinking of changing my cyrus.conf file to look something like this:
th> SERVICES {
th>   # add or remove based on preferences
th>   imap          cmd="/usr/cyrus/bin/imapd" listen="localhost:imap" prefork=0
th>   imaps         cmd="/usr/cyrus/bin/imapd -s" listen="imaps" prefork=0
th> #  pop3          cmd="/usr/cyrus/bin/pop3d" listen="pop3" prefork=0
th>   pop3s         cmd="/usr/cyrus/bin/pop3d -s" listen="195.204.129.18:pop3s" 
prefork=0
th>   sieve         cmd="/usr/cyrus/bin/timsieved" listen="sieve" prefork=0

th> What I am wondering about, is the imaps line. How can I say: "bind to these two 
interfaces ip1,ip2"? is is listen=(192.168.1.2,195.204.129.18):imaps os should I have 
to imaps:
th>   imaps         cmd="/usr/cyrus/bin/imapd -s" listen="192.168.1.2:imaps" prefork=0
th>   imaps         cmd="/usr/cyrus/bin/imapd -s" listen="195.204.129.18:imaps" 
prefork=0

The code I submitted a while ago for binding to an address is rather
simple, and can only take a single address.

Um, I think you can have two if the first identifier ("imaps") is
unique, right Ken?  So maybe this would work?

imaps1 cmd="/usr/cyrus/bin/imapd -s" listen="192.168.1.2:imaps" prefork=0
imaps2 cmd="/usr/cyrus/bin/imapd -s" listen="195.204.129.18:imaps" prefork=0

This first identifier is used with tcpwrappers lookups, if you
configured to use that software.  You could then make use of that to
do some access controlling as well.  For example we block pop access
from the labs so that students won't accidentally suck their entire
inbox down to the local PC where it will only get wiped and lost
forever later on.

-- 
Amos

Reply via email to