1# Suggested minimal imapd.conf
2# See imapd.conf(5) for more information and more options
3
4# Space-separated users who have admin rights for all services.
5# NB: THIS MUST BE CONFIGURED
6admins: cyrus
7
8###################################################################
9## File, socket and DB location settings.
10###################################################################
11
12# Configuration directory
13configdirectory: /var/lib/cyrus
14
15# Directories for proc and lock files
16proc_path: /run/cyrus/proc
17mboxname_lockpath: /run/cyrus/lock
18
19# Locations for DB files
20# The following DB are recreated upon initialization, so should live in
21# ephemeral storage for best performance.
22duplicate_db_path: /run/cyrus/deliver.db
23ptscache_db_path:  /run/cyrus/ptscache.db
24statuscache_db_path: /run/cyrus/statuscache.db
25tls_sessions_db_path: /run/cyrus/tls_sessions.db
26
27# Which partition to use for default mailboxes
28defaultpartition: default
29partition-default: /var/spool/cyrus/mail
30
31# If sieveusehomedir is false (the default), this directory is searched
32# for Sieve scripts.
33sievedir: /var/spool/sieve
34
35###################################################################
36## Important: KEEP THESE IN SYNC WITH cyrus.conf
37###################################################################
38
39lmtpsocket: /run/cyrus/socket/lmtp
40idlesocket: /run/cyrus/socket/idle
41notifysocket: /run/cyrus/socket/notify
42
43# Syslog prefix. Defaults to cyrus (so logging is done as cyrus/imap
44# etc.)
45syslog_prefix: cyrus
46
47###################################################################
48## Server behaviour settings
49###################################################################
50
51# Space-separated list of HTTP modules that will be enabled in
52# httpd(8).  This option has no effect on modules that are disabled at
53# compile time due to missing dependencies (e.g. libical).
54#
55# Allowed values: caldav, carddav, domainkey, ischedule, rss
56httpmodules: caldav carddav
57
58# If enabled, the partitions will also be hashed, in addition to the
59# hashing done on configuration directories. This is recommended if one
60# partition has a very bushy mailbox tree.
61hashimapspool: true
62
63# Enable virtual domains
64# and set default domain to localhost
65virtdomains: yes
66defaultdomain: localhost
67
68###################################################################
69## User experience settings
70###################################################################
71
72# Minimum time between POP mail fetches in minutes
73popminpoll: 1
74
75###################################################################
76## User Authentication settings
77###################################################################
78
79# Allow plaintext logins by default (SASL PLAIN)
80allowplaintext: yes
81
82###################################################################
83## SASL library options (these are handled directly by the SASL
84## libraries, refer to SASL documentation for an up-to-date list of
85## these)
86###################################################################
87
88# The mechanism(s) used by the server to verify plaintext passwords.
89# Possible values are "saslauthd", "auxprop", "pwcheck" and
90# "alwaystrue".  They are tried in order, you can specify more than one,
91# separated by spaces.
92sasl_pwcheck_method: saslauthd
93
94# If enabled, the SASL library will automatically create authentication
95# secrets when given a plaintext password. Refer to SASL documentation
96sasl_auto_transition: no
97
98###################################################################
99## SSL/TLS Options
100###################################################################
101
102# File containing the global certificate used for ALL services (imap,
103# pop3, lmtp, sieve)
104#tls_server_cert: /etc/ssl/certs/ssl-cert-snakeoil.pem
105
106# File containing the private key belonging to the global server
107# certificate.
108#tls_server_key: /etc/ssl/private/ssl-cert-snakeoil.key
109
110
111# File containing one or more Certificate Authority (CA) certificates.
112#tls_client_ca_file: /etc/ssl/certs/cyrus-imapd-ca.pem
113
114# Path to directory with certificates of CAs.
115tls_client_ca_dir: /etc/ssl/certs
116
117# The length of time (in minutes) that a TLS session will be cached for
118# later reuse.  The maximum value is 1440 (24 hours), the default.  A
119# value of 0 will disable session caching.
120tls_session_timeout: 1440
121