1 #default_process_limit = 100
2 #default_client_limit = 1000
4 # Default VSZ (virtual memory size) limit for service processes. This is mainly
5 # intended to catch and kill processes that leak memory before they eat up
7 #default_vsz_limit = 256M
9 # Login user is internally used by login processes. This is the most untrusted
10 # user in Dovecot system. It shouldn't have access to anything at all.
11 #default_login_user = dovenull
13 # Internal user is used by unprivileged processes. It should be separate from
14 # login user, so that login processes can't disturb other processes.
15 #default_internal_user = dovecot
26 # Number of connections to handle before starting a new process. Typically
27 # the only useful values are 0 (unlimited) or 1. 1 is more secure, but 0
28 # is faster. <doc/wiki/LoginProcess.txt>
31 # Number of processes to always keep waiting for more connections.
32 #process_min_avail = 0
34 # If you set service_count=0, you probably need to grow this.
35 #vsz_limit = $default_vsz_limit
53 # Create inet listener only if you can't use the above UNIX socket
55 # Avoid making LMTP visible for the entire internet
62 # Most of the memory goes to mmap()ing files. You may need to increase this
63 # limit if you have huge mailboxes.
64 #vsz_limit = $default_vsz_limit
66 # Max. number of IMAP processes (connections)
71 # Max. number of POP3 processes (connections)
76 # auth_socket_path points to this userdb socket by default. It's typically
77 # used by dovecot-lda, doveadm, possibly imap process, etc. Users that have
78 # full permissions to this socket are able to get a list of all usernames and
79 # get the results of everyone's userdb lookups.
81 # The default 0666 mode allows anyone to connect to the socket, but the
82 # userdb lookups will succeed only if the userdb returns an "uid" field that
83 # matches the caller process's UID. Also if caller's uid or gid matches the
84 # socket's uid or gid the lookup succeeds. Anything else causes a failure.
86 # To give the caller full permissions to lookup all users, set the mode to
87 # something else than 0666 and Dovecot lets the kernel enforce the
88 # permissions (e.g. 0777 allows everyone full permissions).
89 #unix_listener auth-userdb {
96 unix_listener /var/spool/postfix/private/auth {
100 # Auth process is run as this user.
101 #user = $default_internal_user
104 service auth-worker {
105 # Auth worker process is run as root by default, so that it can access
106 # /etc/shadow. If this isn't necessary, the user should be changed to
107 # $default_internal_user.
112 # If dict proxy is used, mail processes should have access to its socket.
113 # For example: mode=0660, group=vmail and global mail_access_groups=vmail