source: npl/mailserver/kopano_conf/root/etc/zarafa/server.cfg @ 2fcc226

##############################################################
# SERVER SETTINGS

# IP Address to bind to (0.0.0.0 for ANY)
# Set to 127.0.0.1 if connections should only come from localhost
# and through the webserver proxy
server_bind             = 0.0.0.0

# Accept normal TCP connections (not recommended to disable)
server_tcp_enabled      = yes

# Port to bind to
server_tcp_port         = 236

# Accept unix pipe connections (not recommended to disable)
server_pipe_enabled     = yes


# Name for identifying the server in a multi-server environment
server_name = Kopano

# Database engine (mysql)
database_engine         = mysql

# Allow connections from normal users through the unix socket
allow_local_users       = yes

# local admin users who can connect to any store (use this for the kopano-dagent)
# field is SPACE separated
# eg: local_admin_users = root vmail
local_admin_users       = root alias

# e-mail address of the Kopano System user
system_email_address    = postmaster@localhost

# drop privileges and run the process as this user
run_as_user             = kopano

# drop privileges and run the process as this group
run_as_group            = kopano


# run server in this path (when not using the -F switch)
running_path = /

# session timeout for clients. Values lower than 300 will be upped to 300
# automatically. If the server hears nothing from a client in session_timeout
# seconds, then the session is killed.
session_timeout         = 300
session_ip_check = yes

# Socket to connect to for license server
license_socket          = /var/run/kopanod/kopano-licensed

# Time (in seconds) to wait for a connection to the license server before
# terminating the request.
license_timeout = 10

##############################################################
# LOG SETTINGS

# Logging method (syslog, file)
# (DatuX: use syslog for now, because file seems to triggers a glibc locking bug in __pthread_rwlock_rdlock_slow, at least in 2.21)
log_method              = syslog

# Logfile (for log_method = file, '-' for stderr)
log_file                = /var/log/kopano/server.log

# Loglevel (0=no logging, 5=full logging)
log_level               = 2

# Log timestamp - prefix each log line with timestamp in 'file' logging mode
log_timestamp           = 1

##############################################################
# MYSQL SETTINGS (for database_engine = mysql)

# MySQL hostname to connect to for database access
#mysql_host             = localhost
mysql_socket            = /var/run/mysql/mysql.sock

# MySQL port to connect with (usually 3306)
mysql_port              = 3306

# The user under which we connect with MySQL
mysql_user              = kopano

# The password for the user (leave empty for no password)
mysql_password          = %mysql_passwd%

# Database to connect to
mysql_database          = kopano

# Where to place attachments. Value can be 'database' or 'files'
attachment_storage      = files

# When attachment_storage is 'files', use this path to store the files
attachment_path         = /home/system/kopano

# Compression level for attachments when attachment_storage is 'files'.
# Set compression level for attachments disabled=0, max=9
attachment_compression  = 6

##############################################################
#  SSL SETTINGS

# enable SSL support in server
server_ssl_enabled      = no

# Listen for SSL connections on this port
server_ssl_port         = 237

# Required Server certificate, contains the certificate and the private key parts
server_ssl_key_file     = /usr/webint/ssl/server.pem

# Password of Server certificate
server_ssl_key_pass     =

# Required Certificate Authority of server
server_ssl_ca_file      = /etc/kopano/ssl/server.crt

# Path with CA certificates, e.g. /etc/ssl/certs
server_ssl_ca_path      =

# Path of SSL Public keys of clients
sslkeys_path            = /etc/kopano/sslkeys

##############################################################
# THREAD SETTINGS

# Number of server threads
# default: 8
threads                         =       16

# Watchdog frequency. The number of watchdog checks per second.
# default: 1
watchdog_frequency      =       1

# Watchdog max age. The maximum age in ms of a task before a
# new thread is started.
# default: 500
watchdog_max_age        =       500

# Maximum SOAP keep_alive value
# default: 100
server_max_keep_alive_requests  =       100

# SOAP recv timeout value
# default: 5
server_recv_timeout     =       5

# SOAP send timeout value
# default: 60
server_send_timeout     =       60

##############################################################
#  OTHER SETTINGS

# Softdelete clean cycle (in days) 0=never running
# (SYN-3 uses a cronjob)
softdelete_lifetime     = 0

# Sync lifetime, removes all changes remembered for a client after x days of inactivity
sync_lifetime           = 90

# Set to 'yes' if all changes (for synchronization) to messages should be logged to the database
sync_log_all_changes = yes


# Set to 'yes' if you want to show the GAB to your users
enable_gab = yes

# Synchronize GAB users on every open of the GAB (otherwise, only on
# kopano-admin --sync)
sync_gab_realtime = yes

# Authentication can be through plugin (default, recommended), pam or kerberos
auth_method = plugin

# If auth_method is set to pam, you should provide the pam service name
pam_service = passwd


#############################################################
# CACHE SETTINGS

#SYN-3 caching config for around 1000 users.

# around 25% of total RAM size
cache_cell_size                 = 1G

#  about 100kb per user
cache_object_size               = 100M

# about 512kb per user
cache_indexedobject_size        = 512M

cache_store_size=512M

# Lifetime for userquota details
cache_quota_lifetime            = 1

# Lifetime for user details
cache_userdetails_lifetime      = 5

# Thread size in KB, default is 512
# WARNING: Do not set too small, your server WILL crash
thread_stacksize = 512

##############################################################
#  QUOTA SETTINGS

# The default Warning Quota Level. Set to 0 to disable this level.
# The user will receive an email when this level is reached. Value is in Mb. Default value is 0.
quota_warn              = 0

# The default Soft Quota Level. Set to 0 to disable this level.
# The user will still receive mail, but sending new mail is prohibited, until objects are removed from the store.
# VALUE is in Mb. Default value is 0.
quota_soft              = 0

# The default Hard Quota Level. Set to 0 to disable this level.
# The user can not receive and send mail, until objects are removed from the store.
# Value is in Mb. Default value is 0.
quota_hard              = 0

# The default Warning Quota Level. Set to 0 to disable this level.
# The company administrator will receive an email when this level is reached. Value is in Mb. Default value is 0.
companyquota_warn      = 0

##############################################################
#  USER PLUGIN SETTINGS

# Name of the plugin that handles users
# Required, default = ldap
# Values: ldap, unix, db
#user_plugin            = db
user_plugin             = ldap

# configuration file of the user plugin, examples can be found in /usr/share/kopano/example-config
user_plugin_config      = /etc/kopano/ldap.cfg

# location of the kopano plugins
# if you have a 64bit distribution, this probably should be changed to /usr/lib64/kopano
plugin_path             = /usr/lib/kopano

# scripts which create stores for users from an external source
# used for ldap and unix plugins only
createuser_script               =       /etc/kopano/userscripts/createuser
deleteuser_script               =       /etc/kopano/userscripts/deleteuser
creategroup_script              =       /etc/kopano/userscripts/creategroup
deletegroup_script              =       /etc/kopano/userscripts/deletegroup
createcompany_script    =       /etc/kopano/userscripts/createcompany
deletecompany_script    =       /etc/kopano/userscripts/deletecompany

##############################################################
# MISC SETTINGS

# Enable multi-company environment
# When set to true it is possible to create companies within the
# kopano instance and assign all users and groups to particular
# companies.
# When set to false, the normal single-company environment is created.
enable_hosted_kopano = false

# Enable multi-server environment
# When set to true it is possible to place users and companies on
# specific servers.
# When set to false, the normal single-server environment is created.
enable_distributed_kopano = false

# Display format of store name
# Allowed variables:
#  %u Username
#  %f Fullname
#  %c Companyname
# default: %f
storename_format = %f

# Loginname format (for Hosted installations)
# When the user does not login through a system-wide unique
# username (like the email address) a unique name is created
# by combining the username and the companyname.
# With this configuration option you can set how the
# loginname should be built up.
#
# Note: Do not use the = character in the format.
#
# Allowed variables:
#  %u username
#  %c companyname
#
# default: %u
loginname_format = %u

# Set to yes for Windows clients to be able to download the latest
# Kopano Outlook client from the Kopano server
client_update_enabled = false

# Place the correct Kopano Outlook Client in this directory for
# Windows clients to download through the Kopano server
client_update_path = /var/lib/kopano/client

# Recieve update information from the client (0 = disabled, 1 = only on error, 2 = log always)
#client_update_log_level = 1
# Log location for the client auto update files
#client_update_log_path = /var/log/kopano/autoupdate

# Everyone is a special internal group, which contains every user and group
# You may want to disable this group from the Global Addressbook by setting
# this option to 'yes'. Administrators will still be able to see the group.
hide_everyone = no

# System is a special internal user, which has super-admin privileges
# You may want to disable this user from the Global Addressbook by setting
# this option to 'yes'. Administrators will still be able to see the user.
hide_system = yes

# Allow enhanced ICS operations to speedup synchronization with cached profiles.
# default: yes
enable_enhanced_ics = yes

# AUDIT LOG SETTINGS
# Audit logging is by default not enabled
audit_log_enabled     = no
# Audit logging method (syslog, file), syslog facility is 'authpriv'
audit_log_method      = syslog
# Audit logfile (for log_method = file, '-' for stderr)
audit_log_file                = /var/log/kopano/audit.log
# Audit loglevel (0=no logging, 1=full logging)
audit_log_level               = 1
# Audit log timestamp - prefix each log line with timestamp in 'file' logging mode
audit_log_timestamp   = 1

# Disable features for users. Default all features are enabled. This
# list is space separated. Currently valid values: imap
disabled_features =


#The server has a list of deferred writes to the tproperties table, to improve overall I/O performance. The number of deferred writes is kept below this value; setting it high will allow writes to be more efficient by grouping more writes together, but may slow down reading, and setting it low will force writes to complete directly, but speed up reading of tables.
#max_deferred_records=
#max_deferred_records_folder=



# Enabling this option requires the kopano-search service to
# be running.
search_enabled = yes

# SQL Procedures allow for some optimized queries when streaming with enhanced ICS.
# This is default disabled because you must set 'thread_stack = 256k' in your
# MySQL server config under the [mysqld] tag and restart your MySQL server.
enable_sql_procedures = yes


# Time (in seconds) to wait for a connection to the kopano-search service
# before terminating the indexed search request.
search_timeout = 10

# Restrict the permissions that admins receive to folder permissions only. Please
# read the server.cfg manpage before enabling this option so you really understand
# the implications
restrict_admin_permissions = no

# The maximum level of attachment recursion; Defines the number of
# attachment-in-attachment in-attachment levels are allowed when saving and
# replicating objects in the database. If you really want a higher level of
# recursion than about 20, you probably have to increase MySQL's stack_size
# to allow replication to work properly.
embedded_attachment_limit = 20

# Header to detect whether a connection has been received through a proxy. The
# value of the header is not inspected. If the header exists then the connection
# is taken to be received via a proxy. An empty value disables proxy detection
# and the value of '*' is used to indicate that all connections are proxied
proxy_header =