Nginx mail proxy - dovecot ssl backend

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello!

Is SSL backends (dovecot) supported by nginx mail proxy ?

Thank you!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk7P/RwACgkQNRQApncg294jrgCfW/lRpMywRk2tq++wRE5u3sxM
X1kAn31+gvYibdHLYM3Mv2HDaW/TjaHa
=DK/D
-----END PGP SIGNATURE-----

Hello!

On Fri, Nov 25, 2011 at 06:39:58PM -0200, Flavio Torres wrote:

Is SSL backends (dovecot) supported by nginx mail proxy ?

No, mail proxy doesn’t support ssl backends.

Maxim D.

Hi, Flavio.

You’ll need following modifications to add SSL backends support to
nginx’s mail proxy:
https://github.com/druga/unuzbl/tree/master/nginx-temp .
It’s still a WIP (but 'll enough to cope with your task), so sorry, i
didn’t converted my work into the form of patch. It’s done against
1.0.11 version of nginx.

Posted at Nginx Forum:

any chance this patch / change will be added to the default release?
We run nginx-full 1.4.4 from Debian Wheezy Backports and the ‘issue’
described above still seems to apply (no hostname / SSL support for
backend
server).

Posted at Nginx Forum:

Hello. I plan to beat all the ugliness and produce a clean patch very
soon.
I’ll let you know.

Posted at Nginx Forum:

dukzcry, that would be very very very nice :slight_smile:

We are busy with an big change in our email environment (serving +/-
10.000
mailboxes).
Currently we use Dovecot with NFS (IPsec) filesystems but we would like
to
change this to a firewalled dovecot backend + NginX as frontend.

Looking forward to your patch and maybe inclusion in an upstream
version!

Kasper

Posted at Nginx Forum:

Now, here is the minimal patch:
https://raw.github.com/druga/aeriebsd-tree/master/usr.sbin/nginx/patch-nginx_mail_proxy_ssl_backends.diff
I do provide neither hostnames nor starttls support in it, because the
code
for their support is too much invasive :frowning:

P.S.: The patch isn’t good enough to be included into nginx. So if
anybody
is going to fix it, you’re welcome.

Posted at Nginx Forum:

P.S.: I think then it may be examined for inclusion into nginx, but not
now
in it’s current form :slight_smile:

Posted at Nginx Forum:

I’m getting errors when I try to get the diff, is it still available?
Thanks…

Posted at Nginx Forum:

Thanks! I setup stunnel in the interim, but this will be more
efficient.

Posted at Nginx Forum:

Yes, but got moved. Here’s the diff:
https://github.com/dukzcry/nginx/commit/f0af0f19ccc5e173fa4dddd3974cd05ef0b52692.diff
and here’s the patched tree: GitHub - repos-holder/nginx

Posted at Nginx Forum: