starred/modoboa-modoboa
1
0
Fork 0
mirror of https://github.com/modoboa/modoboa.git synced 2026-04-25 00:46:03 +03:00
Code Issues 60 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #1419] Allowed characters in email addresses #1124

New issue
Open
opened 2026-02-27 11:15:24 +03:00 by kerem · 7 comments
kerem commented 2026-02-27 11:15:24 +03:00
Owner
Copy link

Originally created by @ghost on GitHub (Mar 4, 2018).
Original GitHub issue: https://github.com/modoboa/modoboa/issues/1419

I've just been upgrading one of my dovecot servers and noticed the auth_username_chars settings in 10-auth.conf

# List of allowed characters in username. If the user-given username contains
# a character not listed in here, the login automatically fails. This is just
# an extra check to make sure user can't exploit any potential quote escaping
# vulnerabilities with SQL/LDAP databases. If you want to allow all characters,
# set this value to empty.
#auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@

The default dovecot configuration means it's possible to create an account in Modoboa that a user can't login to ie úsér@example.com. This needs some research to see what is and isn't supported by Postfix and Dovecot then update Modoboa as required.

Has anyone encountered e-mail addresses containing unicode characters in the local part?

Django EmailValidator - used by Modoboa to check an e-mail address is valid
RFC 6530 Overview and Framework for Internationalized Email - proposed standard
Email address Internationalization

Originally created by @ghost on GitHub (Mar 4, 2018). Original GitHub issue: https://github.com/modoboa/modoboa/issues/1419 I've just been upgrading one of my dovecot servers and noticed the `auth_username_chars` settings in `10-auth.conf` ``` # List of allowed characters in username. If the user-given username contains # a character not listed in here, the login automatically fails. This is just # an extra check to make sure user can't exploit any potential quote escaping # vulnerabilities with SQL/LDAP databases. If you want to allow all characters, # set this value to empty. #auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@ ``` The default dovecot configuration means it's possible to create an account in Modoboa that a user can't login to ie `úsér@example.com`. This needs some research to see what is and isn't supported by Postfix and Dovecot then update Modoboa as required. Has anyone encountered e-mail addresses containing unicode characters in the local part? --- [Django EmailValidator](https://github.com/django/django/blob/5d4368cad39b79ae4ce2224c64facc72366d0fb8/django/core/validators.py#L173) - used by Modoboa to check an e-mail address is valid [RFC 6530 Overview and Framework for Internationalized Email](https://tools.ietf.org/html/rfc6530) - **proposed standard** [Email address Internationalization](https://en.wikipedia.org/wiki/Email_address#Internationalization)
kerem commented 2026-02-27 11:15:25 +03:00
Author
Owner
Copy link

@tonioo commented on GitHub (Mar 7, 2018):

@fyfe Yes, it's supported since postfix 3.0 and it should work with Modoboa too. (Look at SMTPUTF8 for example).

<!-- gh-comment-id:371217137 --> @tonioo commented on GitHub (Mar 7, 2018): @fyfe Yes, it's supported since postfix 3.0 and it should work with Modoboa too. (Look at SMTPUTF8 for example).
kerem commented 2026-02-27 11:15:25 +03:00
Author
Owner
Copy link

@ghost commented on GitHub (Mar 24, 2018):

I should have been more specific, I'm more concerned about unicode characters in usernames. As the Dovecot configuration says by default it only allows ASCII characters in a username.

<!-- gh-comment-id:375918788 --> @ghost commented on GitHub (Mar 24, 2018): I should have been more specific, I'm more concerned about unicode characters in usernames. As the Dovecot configuration says by default it only allows ASCII characters in a username.
kerem commented 2026-02-27 11:15:25 +03:00
Author
Owner
Copy link

@ghost commented on GitHub (Mar 26, 2018):

RE Postfix support looking at the Postfix documentation for SMTPUTF8 (see No automatic conversions between ASCII and UTF-8 domain names.) to properly support domain names containing Unicode charatcters lookup tables (i.e. virtual_mailbox_domains or virtual_alias_domains etc) need to list domains in Unicode (例.com) and ASCII (xn--fsq.com) format.

To support this a new field would need added to the Domain (and DomainAlias) model containing the punycoded (ASCII) version of the domain, and the Postfix maps would need updated to lookup the Unicode and ASCII versions of the domain.

I think at the moment we need a warning in the documentation saying that domains/usernames contaning unicode characters are not (fully) supported.

<!-- gh-comment-id:376271608 --> @ghost commented on GitHub (Mar 26, 2018): **RE Postfix support** looking at the [Postfix documentation for SMTPUTF8](http://www.postfix.org/SMTPUTF8_README.html) (see *No automatic conversions between ASCII and UTF-8 domain names.*) to properly support domain names containing Unicode charatcters lookup tables (i.e. `virtual_mailbox_domains` or `virtual_alias_domains` etc) need to list domains in Unicode (`例.com`) and ASCII (`xn--fsq.com`) format. To support this a new field would need added to the `Domain` (and `DomainAlias`) model containing the punycoded (ASCII) version of the domain, and the Postfix maps would need updated to lookup the Unicode and ASCII versions of the domain. --- I think at the moment we need a warning in the documentation saying that domains/usernames contaning unicode characters are not (fully) supported.
kerem commented 2026-02-27 11:15:25 +03:00
Author
Owner
Copy link

@macuser913 commented on GitHub (May 30, 2018):

I second this feature request

<!-- gh-comment-id:393265318 --> @macuser913 commented on GitHub (May 30, 2018): I second this feature request
kerem commented 2026-02-27 11:15:25 +03:00
Author
Owner
Copy link

@marchesM commented on GitHub (Mar 25, 2020):

This feature would be amazing, considering that internationalized domains are quite commons.
I have a use case that is bothering me:

  • setup an internationalized domain like: modoboà.com (xn--modobo-42.com)
  • the webmail through modoboa works just perfectly
  • setup the mailbox test@modoboà.com on gmail client on android
  • try to send an email
  • fails, postfix logs the following: warning: Illegal address syntax from unknown[IPV6_ADDRESS] in MAIL command: <test@modoboà.com>

I enabled the SMTPUTF8 on postfix following this:
http://www.postfix.org/SMTPUTF8_README.html
without this, you would get this in your postfix log:
warning: Illegal address syntax from unknown[IPV6_ADDRESS] in MAIL command: <test@modobo*??(.com>

right now it is impossible to properly email around with a domain that contains special characters

<!-- gh-comment-id:603917516 --> @marchesM commented on GitHub (Mar 25, 2020): This feature would be amazing, considering that internationalized domains are quite commons. I have a use case that is bothering me: * setup an internationalized domain like: modobo**à**.com (xn--modobo-42.com) * the webmail through modoboa works just perfectly * setup the mailbox test@modoboà.com on gmail client on android * try to send an email * fails, postfix logs the following: `warning: Illegal address syntax from unknown[IPV6_ADDRESS] in MAIL command: <test@modoboà.com>` I enabled the SMTPUTF8 on postfix following this: http://www.postfix.org/SMTPUTF8_README.html without this, you would get this in your postfix log: `warning: Illegal address syntax from unknown[IPV6_ADDRESS] in MAIL command: <test@modobo*??(.com>` right now it is impossible to properly email around with a domain that contains special characters
kerem commented 2026-02-27 11:15:25 +03:00
Author
Owner
Copy link

@marchesM commented on GitHub (Mar 27, 2020):

I managed to fix all my issues with the following:

  • /etc/postfix/main.cf make sure you are using compatibility level 2, wasn't my case: compatibility_level = 2
  • /etc/postfix/main.cf disable the smtputf8 support: smtputf8_enable = no with this option i wasn't able to receive emails to my mailbox, I was getting status=undeliverable (mail for modoboà.com loops back to myself). Be careful, with this option set to no, I am not sure if emails will actually be delivered if you have unicode characters in the username.
  • when setting up an email client, make sure you are using the ponycode version of your domain: xn--modobo-42.com in EVERY fields you have to setup

so now I am able to:

  • receive emails sent from a gmail account through web gmail and android gmail app
  • send emails from user@modoboà.com through the gmail android app and the modoboa webmail

hope this will help others, but I doubt that my settings will persist through time since the utf8 support is still a hot topic

<!-- gh-comment-id:604939541 --> @marchesM commented on GitHub (Mar 27, 2020): I managed to fix all my issues with the following: - `/etc/postfix/main.cf` make sure you are using compatibility level 2, wasn't my case: `compatibility_level = 2` - `/etc/postfix/main.cf` disable the smtputf8 support: `smtputf8_enable = no` with this option i wasn't able to receive emails to my mailbox, I was getting `status=undeliverable (mail for modoboà.com loops back to myself)`. Be careful, with this option set to no, I am not sure if emails will actually be delivered if you have unicode characters in the username. - when setting up an email client, make sure you are using the ponycode version of your domain: xn--modobo-42.com in EVERY fields you have to setup so now I am able to: - receive emails sent from a gmail account through web gmail and android gmail app - send emails from user@modoboà.com through the gmail android app and the modoboa webmail hope this will help others, but I doubt that my settings will persist through time since the utf8 support is still a hot topic
kerem commented 2026-02-27 11:15:25 +03:00
Author
Owner
Copy link

@tonioo commented on GitHub (Dec 4, 2020):

@marchesM Do you use the ponycode version of your username to connect to the webmail?

<!-- gh-comment-id:738797166 --> @tonioo commented on GitHub (Dec 4, 2020): @marchesM Do you use the ponycode version of your username to connect to the webmail?
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
fix/sievefilters-allow-email-in-rule-name
dependabot/npm_and_yarn/frontend/axios-1.15.0
translations_04c0b653215cb5fa48ab101eae1a1917_ja_JP
translations_5d93982e9fd6dab991db4faf93ce9ded_ja_JP
fix/login-issue-3995
fix/sievefilters-issues
add-vitepress-openapi
2974-dmarc-empty-email
2.3.x
updated-doc-2.3.0
feature/OIDC
delete-all-alarms
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_af_ZA
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_ar
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_ca
1.x
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_sk
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_tr
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_es_ES
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_uk
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_zh_CN
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_de_DE
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_da_DK
1.8.x
1.7.x
1.6.x
1.4.x
1.3.x
1.2.x
2.8.2
2.8.1
2.8.0
2.7.2
2.7.1
2.7.0
2.6.5
2.6.4
2.6.3
2.6.2
2.6.1
2.6.0
2.5.1
2.5.0
2.4.11
2.4.10
2.4.9
2.4.8
2.4.7
2.4.6
2.4.5
2.4.4
2.4.3
2.4.2
2.4.1
2.4.0
2.3.6
2.3.5
2.3.4
2.3.3
2.3.2
2.3.1
2.3.0
2.3.0-beta.4
2.3.0-beta.3
2.3.0-beta.2
2.3.0-beta.1
2.2.4
2.2.3
2.2.2
2.2.1
2.2.0
2.1.2
2.1.1
2.1.0
2.0.5
2.0.4
2.0.3
2.0.2
2.0.1
2.0.0
2.0.0-beta.3
2.0.0-beta.2
2.0.0-beta.1
1.17.0
1.16.1
1.16.0
1.15.0
1.14.0
1.13.1
1.13.0
1.12.2
1.12.1
1.12.0
1.11.1
1.11.0
1.10.7
1.10.6
1.10.5
1.10.4
1.10.3
1.10.2
1.10.1
1.10.0
1.9.1
1.9.0
1.8.3
1.8.2
1.8.1
1.8.0
1.7.4
1.7.3
1.7.2
1.7.1
1.7.0
1.6.3
1.6.2
1.6.1
1.6.0
1.5.3
1.5.2
1.5.1
1.5.0
1.4.5
1.4.4
1.4.3
1.4.2
1.4.1
1.4.0
1.3.5
1.3.4
1.2.2
1.3.3
1.3.2
1.3.1
1.3.0
1.2.1
1.2.0
1.2.0-rc2
1.2.0-rc1
1.1.7
1.1.6
1.1.5
1.1.4
1.1.3
1.1.2
1.1.1
1.1.0
1.0.1
1.0.0
0.9.5
0.9.4
0.9.3
0.9.2
0.9.1
0.9
0.8.8
0.8.7
0.8.6.1
0.8.6
0.8.5
0.8.4
0.8.3
0.8.3-rc1
0.8.2
0.8.1
0.8
0.8-rc2
0.8-rc1
0.7.2
0.7.1
0.7
0.6.1
0.6
0.5
0.3
0.2
0.1
Labels
Clear labels   
bug

   
bug

   
dependencies

   
design

   
documentation

   
duplicate

   
enhancement

   
enhancement

   
enhancement

   
feedback-needed

   
help-needed

   
help-needed

   
installer

   
invalid

   
looking-for-sponsors

   
modoboa-contacts

   
new-ui

   
new-ui

   
pr

   
pull-request

Mirrored from GitHub Pull Request

  
pyconfr

   
python

   
question

   
security

   
stale

   
webmail

   
wontfix
No labels
bug
bug
dependencies
design
documentation
duplicate
enhancement
enhancement
enhancement
feedback-needed
help-needed
help-needed
installer
invalid
looking-for-sponsors
modoboa-contacts
new-ui
new-ui
pr
pull-request
pyconfr
python
question
security
stale
webmail
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/modoboa-modoboa#1124
No description provided.