From marcio.merlone at a1.ind.br Fri Nov 1 18:26:14 2013 From: marcio.merlone at a1.ind.br (Marcio Merlone) Date: Fri, 01 Nov 2013 14:26:14 -0200 Subject: [Dovecot] Shared namespace, separator, username and dots. Message-ID: <5273D626.5040001@a1.ind.br> Hi folks, I run a legacy mailserver that i had replaced courier-imap for dovecot 1.2. Everything is fine except for shared namespace. Maildir structure has been created using dot '.' as folder separator. It happens that all our users are created as name.surname as default. So when I want to select a shared folder, MUA end up with the following IMAP command: select shared.jhon.doe.folder.subfolder Obviously I took ages to figure why it won't work since it takes 'doe' as a folder and not a username part. When sharing a folder from 'sales' user, for example, it works fine. What do you suggest to make shared folders work for all without rebuilding hundreds of maildirs to change folder separator from '.' to '/'? Thanks for any hint. # 1.2.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-52-server x86_64 Ubuntu 10.04.4 LTS log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap imaps managesieve ssl_listen: * disable_plaintext_auth: no verbose_ssl: yes login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(managesieve): /usr/lib/dovecot/managesieve-login login_process_per_connection: no login_max_processes_count: 1024 max_mail_processes: 1024 mail_max_userip_connections(default): 20 mail_max_userip_connections(imap): 20 mail_max_userip_connections(managesieve): 10 first_valid_gid: 0 mail_privileged_group: mail mail_location: maildir:~/Maildir:INDEX=/var/cache/dovecot/%n fsync_disable: yes maildir_very_dirty_syncs: yes mbox_write_locks: fcntl dotlock mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(managesieve): /usr/lib/dovecot/managesieve mail_plugins(default): quota imap_quota acl imap_acl mail_plugins(imap): quota imap_quota acl imap_acl mail_plugins(managesieve): mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve namespace: type: private separator: . inbox: yes list: yes subscriptions: yes namespace: type: shared separator: . prefix: shared.%%u. location: maildir:%%h/Maildir:INDEX=%u/Maildir/shared/%%u list: children subscriptions: yes lda: postmaster_address: postmaster at a1.ind.br mail_plugins: quota sieve acl quota_full_tempfail: yes auth_socket_path: /var/run/dovecot/auth-master fsync_disable: no auth default: mechanisms: plain login master_user_separator: * passdb: driver: pam args: session=yes blocking=yes dovecot passdb: driver: passwd-file args: /etc/dovecot/passwd.masterusers pass: yes master: yes userdb: driver: nss args: service=ldap blocking=yes socket: type: listen client: path: /var/spool/postfix/private/dovecot mode: 436 user: postfix group: postfix master: path: /var/run/dovecot/auth-master mode: 438 plugin: sieve: ~/.dovecot.sieve acl: vfile acl_shared_dict: proxy::acl dict: acl: mysql:/etc/dovecot/acl-dict-sql.conf -- *Marcio Merlone* TI - Administrador de redes *A1 Engenharia - Unidade Corporativa* Fone: +55 41 3616-3797 Cel: +55 41 9689-0036 http://www.a1.ind.br/ From skdovecot at smail.inf.fh-brs.de Fri Nov 1 19:00:45 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen) Date: Fri, 01 Nov 2013 18:00:45 +0100 Subject: [Dovecot] Logging in to a virtual users Maildir In-Reply-To: References: Message-ID: <5273DE3D.9090402@smail.inf.fh-brs.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Steve Downes wrote: > # disable ssl for now ssl = no disable_plaintext_auth = no > > set spoolfile=imaps://steve at vmail-s/ > [2013-10-31 14:35:23] Looking up vmail-s... [2013-10-31 14:35:23] > Connecting to vmail-s... [2013-10-31 14:35:23] Connection failed. > errno: 111... [2013-10-31 14:35:23] Could not connect to vmail-s > (Connection refused). You have setup mutt to connect to vmail-s, but in your server you have disbled ssl. Does Dovecot listen on 993 at all? You get Connection refused. - -- Steffen -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) Comment: Using GnuPG with undefined - http://www.enigmail.net/ iQEVAwUBUnPePV3r2wJMiz2NAQLLdggAmymcKwIJgCELX9iRKW9Isjdt7AI7VhTz uTd5iQYmWRutX0h0dQBv5GMSym2mSgc/liCdOGRRR7tr2D2p7UjIoi1FNDnTOx1p NSUXoTuM3c21+2FAv8Zdi+l9KtLUGZSWFbV2ToOAfBrRQ88nkcG1Eu5yCv4B+mis eDPqDE4uvRty2xGzbqks7Tt2TTHbU2eJbxs1WgObpONQmM3i0Oaypv8LojykP4yI tph8dPW4p6dqC3vRiKI3/aIQjY9XF2/F2w8fhZZfSFD0CepboWFWwAeRCQLZclP2 ZxOYm0ykiiw2rV0GUvhlCEodKb2T9P+7z79uPV6QEAnjK0Yg1rcG+A== =ik34 -----END PGP SIGNATURE----- From rs at sys4.de Fri Nov 1 19:57:59 2013 From: rs at sys4.de (Robert Schetterer) Date: Fri, 01 Nov 2013 18:57:59 +0100 Subject: [Dovecot] Shared namespace, separator, username and dots. In-Reply-To: <5273D626.5040001@a1.ind.br> References: <5273D626.5040001@a1.ind.br> Message-ID: <5273EBA7.7010707@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 01.11.2013 17:26, schrieb Marcio Merlone: > Hi folks, > > I run a legacy mailserver that i had replaced courier-imap for > dovecot 1.2. Everything is fine except for shared namespace. > Maildir structure has been created using dot '.' as folder > separator. It happens that all our users are created as > name.surname as default. So when I want to select a shared folder, > MUA end up with the following IMAP command: > > select shared.jhon.doe.folder.subfolder > > Obviously I took ages to figure why it won't work since it takes > 'doe' as a folder and not a username part. When sharing a folder > from 'sales' user, for example, it works fine. What do you suggest > to make shared folders work for all without rebuilding hundreds of > maildirs to change folder separator from '.' to '/'? > > Thanks for any hint. > > # 1.2.9: /etc/dovecot/dovecot.conf thats simply to old to give good advice, upgrade to a recent version however perhaps read http://wiki.dovecot.org/Plugins/Listescape > # OS: Linux 2.6.32-52-server x86_64 Ubuntu 10.04.4 LTS > log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap imaps managesieve > ssl_listen: * disable_plaintext_auth: no verbose_ssl: yes > login_dir: /var/run/dovecot/login login_executable(default): > /usr/lib/dovecot/imap-login login_executable(imap): > /usr/lib/dovecot/imap-login login_executable(managesieve): > /usr/lib/dovecot/managesieve-login login_process_per_connection: > no login_max_processes_count: 1024 max_mail_processes: 1024 > mail_max_userip_connections(default): 20 > mail_max_userip_connections(imap): 20 > mail_max_userip_connections(managesieve): 10 first_valid_gid: 0 > mail_privileged_group: mail mail_location: > maildir:~/Maildir:INDEX=/var/cache/dovecot/%n fsync_disable: yes > maildir_very_dirty_syncs: yes mbox_write_locks: fcntl dotlock > mail_executable(default): /usr/lib/dovecot/imap > mail_executable(imap): /usr/lib/dovecot/imap > mail_executable(managesieve): /usr/lib/dovecot/managesieve > mail_plugins(default): quota imap_quota acl imap_acl > mail_plugins(imap): quota imap_quota acl imap_acl > mail_plugins(managesieve): mail_plugin_dir(default): > /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): > /usr/lib/dovecot/modules/imap mail_plugin_dir(managesieve): > /usr/lib/dovecot/modules/managesieve namespace: type: private > separator: . inbox: yes list: yes subscriptions: yes namespace: > type: shared separator: . prefix: shared.%%u. location: > maildir:%%h/Maildir:INDEX=%u/Maildir/shared/%%u list: children > subscriptions: yes lda: postmaster_address: postmaster at a1.ind.br > mail_plugins: quota sieve acl quota_full_tempfail: yes > auth_socket_path: /var/run/dovecot/auth-master fsync_disable: no > auth default: mechanisms: plain login master_user_separator: * > passdb: driver: pam args: session=yes blocking=yes dovecot passdb: > driver: passwd-file args: /etc/dovecot/passwd.masterusers pass: > yes master: yes userdb: driver: nss args: service=ldap > blocking=yes socket: type: listen client: path: > /var/spool/postfix/private/dovecot mode: 436 user: postfix group: > postfix master: path: /var/run/dovecot/auth-master mode: 438 > plugin: sieve: ~/.dovecot.sieve acl: vfile acl_shared_dict: > proxy::acl dict: acl: mysql:/etc/dovecot/acl-dict-sql.conf > > Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSc+ueAAoJEP8jBObu0LlEWz0H/j0Wij9fqr5Aj5N3fa/mR2TC 62hOl//R2QuSLmBz4WSPz2athWmY/VHF8MVfN0FBehuzZQwK1+i8bUZgKCDu4v1P kWikdxJp+wV2jZeAFvOn6NcfsFwLIHW4yDTRS5CbguAM+ECYwkp9JqW/oZ2onA/2 rRCERoxd263SLkuuXe1VU0zUMwXkGAf88d3+wzTzjAcbIx6iQn1TwEg+1wckFndS IdFwsDdDumNTWFNWHsgDNYlrMOBkcQCgrehhUNCl6c8O3hm4r/eRZzR2ljTmsmYi QfJG8ZIuMa1c15Uh3zzATCkmWQofH+CVcTOPQJIgrwJyFqGCnILtjhks0w2SaDQ= =JQTg -----END PGP SIGNATURE----- From user+dovecot at localhost.localdomain.org Fri Nov 1 22:05:57 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Fri, 01 Nov 2013 20:05:57 +0000 Subject: [Dovecot] init script as provided http://wiki2.dovecot.org/DovecotInit In-Reply-To: References: Message-ID: <527409A5.1000601@localhost.localdomain.org> On 10/31/2013 11:19 AM Jess Portnoy wrote: > Hello list, > > I would add: > # dovecot Startup script for the dovecot server > # > # chkconfig: - > # processname: dovecot > # config: /path/to/config > # pidfile: /path/to/pid > > So that it supports the chkconfig used by RHEL and clones too. > > Also, maybe it should be installed by the Makefile's install target? it > could then also set: > DAEMON=/path/to/dovecot/daemon > instead of: > DAEMON=/usr/local/sbin/dovecot > > Cause naturally, it will know the prefix chosen. > > May the source be with you, > > Jess Portnoy The comments between "### BEGIN INIT INFO" and "### END INIT INFO" are comments as defined in "Comment Conventions for Init Scripts"?. Therefore each LSB compliant Linux distributions should know how to handle those comments. The keywords you've mentioned are not defined in the specification. I think it would be the distribution's job to add local extensions (see specification). Also the comments are ignored by other operation systems, e.g. *BSD or Solaris. Reason, why the Makefile shouldn't install the init script: - there could be a /etc/init.d/dovecot from a package - the init script (copied from doc/dovecot-initd.sh) could contain local modifications Regards, Pascal -- 1 = http://refspecs.linuxfoundation.org/LSB_4.0.0/LSB-Core-generic/LSB-Core-generic/initscrcomconv.html -- The trapper recommends today: fabaceae.1330520 at localdomain.org From user+dovecot at localhost.localdomain.org Fri Nov 1 22:15:26 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Fri, 01 Nov 2013 20:15:26 +0000 Subject: [Dovecot] Configuring SPECIAL-USE Dovecot 2.0.9 In-Reply-To: References: Message-ID: <52740BDE.3040506@localhost.localdomain.org> On 10/30/2013 06:35 PM Keith Mountifield wrote: > Hi All, > > I'm trying to configure Dovecot 2.0.9 to support Outlook 2013. > > As I understand it, I need to configure XLIST. I have added > > imap_capability = +XLIST > > to 20-imap.conf > > When I try to query the IMAP folders I get an error "An IMAP command > Failed". Looking at the logs I get XLIST Command not found. > > I can only assume that I'm missing something in the configuration. > > Any help would be greatly appreciated Simple solution: Update to a newer version. XLIST was added in Dovecot v2.1.x on Mar 21 2012: http://hg.dovecot.org/dovecot-2.1/rev/03499202690f Dovecot v2.1.4 has been released on 2012-04-09. Regards, Pascal -- The trapper recommends today: c01dcafe.1330521 at localdomain.org From jtam.home at gmail.com Sat Nov 2 02:38:17 2013 From: jtam.home at gmail.com (Joseph Tam) Date: Fri, 1 Nov 2013 17:38:17 -0700 (PDT) Subject: [Dovecot] Logging in to a virtual users Maildir In-Reply-To: References: Message-ID: Steve Downes writes: > When I open a local mutt I get the following:- > 1) could not connect to vmail-s (connection refused) (vmail-s is the > mailserver host) Full stop, anything past here and you're debugging noise. You've configured out SSL/TLS on dovecot ... > /etc/dovecot/dovecot.conf > # disable ssl for now > ssl = no ... but your Mutt configuration has ... > ~/.mutt.muttrc > set spoolfile=imaps://steve at vmail-s/ ... and your debug logs state ... > [2013-10-31 14:35:23] Reading imaps://steve at vmail-s/... > [2013-10-31 14:35:23] Looking up vmail-s... > [2013-10-31 14:35:23] Connecting to vmail-s... > [2013-10-31 14:35:23] Connection failed. errno: 111... > [2013-10-31 14:35:23] Could not connect to vmail-s (Connection > refused). > [2013-10-31 14:35:25] Connected to vmail-s:993 on fd=-1 You configured dovecot to accept only plain IMAP (on port 143), but your mail reader is configured to connect to an IMAP/SSL service (port 993). Maybe it will start working if you configure Mutt set spoolfile=imap://steve at vmail-s/ (Just guessing -- I don't use Mutt.) Joseph Tam From tss at iki.fi Sat Nov 2 12:16:41 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 12:16:41 +0200 Subject: [Dovecot] doveadm can't import his own mdboxes In-Reply-To: <524C23A4.1020709@heinlein-support.de> References: <524C23A4.1020709@heinlein-support.de> Message-ID: <5621586C-CD18-4513-893D-7A86A24BD8EC@iki.fi> On 2.10.2013, at 16.46, Peer Heinlein wrote: > As you can see, our namespace seperator is "." and not "/": > > The problem is, that doveadm isn't able to import his own mdbox-directory: > > # doveadm import -u max.muster mdbox:mdbox BACKUP all > doveadm(max.muster): Error: Couldn't create mailbox > BACKUP.INBOX/test/huhu: Character not allowed in mailbox name: ?/' Fixed: http://hg.dovecot.org/dovecot-2.2/rev/1936d50f01c4 From tss at iki.fi Sat Nov 2 12:21:40 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 12:21:40 +0200 Subject: [Dovecot] Shared namespace, separator, username and dots. In-Reply-To: <5273D626.5040001@a1.ind.br> References: <5273D626.5040001@a1.ind.br> Message-ID: On 1.11.2013, at 18.26, Marcio Merlone wrote: > I run a legacy mailserver that i had replaced courier-imap for dovecot 1.2. Everything is fine except for shared namespace. Maildir structure has been created using dot '.' as folder separator. It happens that all our users are created as name.surname as default. So when I want to select a shared folder, MUA end up with the following IMAP command: > > select shared.jhon.doe.folder.subfolder > > Obviously I took ages to figure why it won't work since it takes 'doe' as a folder and not a username part. When sharing a folder from 'sales' user, for example, it works fine. What do you suggest to make shared folders work for all without rebuilding hundreds of maildirs to change folder separator from '.' to '/?? The only other solution would be to translate the username to not contain dots, so for example the mailbox name would become shared.john_doe.folder.subfolder. But this can?t currently be done only for shared mailboxes, you?d have to do it globally with e.g.: auth_username_translate = ._ This would affect %u and %n in your settings also, so some paths would change. From reganyelcich at gmail.com Sat Nov 2 12:25:51 2013 From: reganyelcich at gmail.com (Regan Yelcich) Date: Sat, 2 Nov 2013 23:25:51 +1300 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? Message-ID: Can someone advise the best way to convert mailboxes from Mbox to Maildir for Dovecot 2.17 on Ubuntu? Thanks. From tss at iki.fi Sat Nov 2 12:27:40 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 12:27:40 +0200 Subject: [Dovecot] failed: Message has been copied too many times In-Reply-To: <526E325F.7000308@um.es> References: <5268F864.8030800@um.es> <5268F941.9040908@um.es> <526E325F.7000308@um.es> Message-ID: On 28.10.2013, at 11.46, Angel L. Mateo wrote: > El 26/10/13 17:10, Timo Sirainen escribi?: >> On 24.10.2013, at 13.41, Angel L. Mateo wrote: >> >>>> amateo_adm at myotis51:~$ sudo doveadm search -u vlo mailbox >>>> BORRADOS.INBOX.MNCS >>>> doveadm(vlo): Error: Syncing mailbox BORRADOS.INBOX.MNCS failed: Message >>>> has been copied too many times (59306 + -1) >> >> Looks like the index is corrupted. It should never have gotten that high. Have you tried doveadm force-resync -u vlo INBOX? >> > I have just tried it now, for the same problem with other user. But it didn't fix anything. > > The problem is that for some reason, dovecot is duplicating user mails. In the problem I'm having today, a user has 3833 distinct messages in a mailbox, but 122 of them are duplicated 19866 each, so a search in the folder shows 2228712 messages. A force-resync of the folder doesn't fix anything. > > What worried me the most is that this problem is appearing very often in my system (once a week at least). In normal operation it wouldn?t be possible to get the refcount that high. The IMAP command would simply fail instead of growing the refcount obove 32768. The only possibilities I can think of are: a) something causing corruption b) multiple IMAP sessions at exactly the same time copying the same mail Anyway, it?s definitely a bug that the refcount can?t be shrunk. Fixed: http://hg.dovecot.org/dovecot-2.2/rev/8cdd4124de0b From noel.butler at ausics.net Sat Nov 2 12:40:11 2013 From: noel.butler at ausics.net (Noel Butler) Date: Sat, 02 Nov 2013 20:40:11 +1000 Subject: [Dovecot] =?utf-8?q?Best_way_from_Mbox_to_Maildir_using_2=2E17=3F?= In-Reply-To: References: Message-ID: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> On 02/11/2013 20:25, Regan Yelcich wrote: > Can someone advise the best way to convert mailboxes from Mbox to > Maildir for Dovecot 2.17 on Ubuntu? Thanks. mb2md.pl http://batleth.sapienti-sat.org/projects/mb2md/ From tss at iki.fi Sat Nov 2 12:46:58 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 12:46:58 +0200 Subject: [Dovecot] Replication on v2.2.6 - I'm stuck (again) In-Reply-To: References: Message-ID: <4F7372E9-F1EC-40BA-8246-F44C495078B9@iki.fi> On 30.10.2013, at 13.01, IT geek 31 wrote: > I'm trying to get Dovecot replication working between two servers. I > didn't have much luck on v2.1.3, so after receiving advice from the list I > have upgraded to v2.2.6. > > I now get the error: > > Oct 30 11:50:16 server1 dovecot: doveadm(mark): Error: user mark: Auth PASS > lookup failed > Oct 30 11:50:16 server2 dovecot: doveadm(mark): Error: sync: > /var/run/dovecot/auth-userdb: passdb lookup failed (to see if user is > proxied, because doveadm_port is set) I don?t think you need to have doveadm_port set, since you?re not replicating over TCP. Remove it and it should just work? Anyway, it still shouldn?t have failed, this fixes it: http://hg.dovecot.org/dovecot-2.2/rev/47848e9fc622 also this gives a bit better error message for the PASS lookup failure: http://hg.dovecot.org/dovecot-2.2/rev/9b45f6d20d9d From steve at kingswayelec.co.uk Sat Nov 2 13:10:30 2013 From: steve at kingswayelec.co.uk (Steve Downes) Date: Sat, 02 Nov 2013 11:10:30 +0000 Subject: [Dovecot] Logging in to a virtual users Maildir In-Reply-To: References: Message-ID: <2d7438e2db86cf73c98db263dcb0882b@powernet.com> On 2013-11-02 00:38, Joseph Tam wrote: > Steve Downes writes: > >> When I open a local mutt I get the following:- >> 1) could not connect to vmail-s (connection refused) (vmail-s is >> the >> mailserver host) > > Full stop, anything past here and you're debugging noise. > > You've configured out SSL/TLS on dovecot ... > >> /etc/dovecot/dovecot.conf >> # disable ssl for now >> ssl = no > > ... but your Mutt configuration has ... > >> ~/.mutt.muttrc >> set spoolfile=imaps://steve at vmail-s/ > > ... and your debug logs state ... > >> [2013-10-31 14:35:23] Reading imaps://steve at vmail-s/... >> [2013-10-31 14:35:23] Looking up vmail-s... >> [2013-10-31 14:35:23] Connecting to vmail-s... >> [2013-10-31 14:35:23] Connection failed. errno: 111... >> [2013-10-31 14:35:23] Could not connect to vmail-s (Connection >> refused). >> [2013-10-31 14:35:25] Connected to vmail-s:993 on fd=-1 > > You configured dovecot to accept only plain IMAP (on port 143), but > your mail reader is configured to connect to an IMAP/SSL service > (port 993). > > Maybe it will start working if you configure Mutt > > set spoolfile=imap://steve at vmail-s/ > > (Just guessing -- I don't use Mutt.) > > Joseph Tam Joseph, Doh!! The hours I have spent looking around the dovecot & mutt config files & not spotted that "imaps". How embarrassing. However that is not to distract from me thanking you profusely from the bottom of my heart for spotting it. Having corrected it the log files are now giving information & I'm sure I'll have it logging in soon. Thanks also to Steffan for more or less the same reply. Steve From tss at iki.fi Sat Nov 2 13:16:12 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 13:16:12 +0200 Subject: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' In-Reply-To: <5270E2AE.6020900@otenet.gr> References: <51C1AB7B.9030404@otenet.gr> <4EAAD8C1-A99F-4D66-9FB6-32E634E4A8A5@iki.fi> <20130624104131.GB9999@otenet.gr> <51CA967E.1000701@otenet.gr> <625F4988-B777-4DB0-84FF-E5ED6A5EFD14@iki.fi> <5270E2AE.6020900@otenet.gr> Message-ID: Well, if that patch didn?t work, then the problem is elsewhere. There aren?t many other good possibilities left though.. How about adding this patch, it should be even safer than the previous one: http://hg.dovecot.org/dovecot-2.2/rev/d3062d066593 On 30.10.2013, at 12.42, Dimos Alevizos wrote: > I'm afraid it doesn't seem to be working. > I've compiled a patched 2.2.6 dovecot with the patch you sent and installed it in a production server (had to be 2.2.6 cause we've upgraded all the rest since I begun this thread months ago) and although we still have mbox corruptions (rarely as before) the server isn't crashing : > > Oct 30 11:15:19 pop04 dovecot: pop3-login: Login: user=, method=PLAIN, rip=85.72.232.35, lip=83.235.66.43, mpid=24419, secured, session=<+0ywxfHpIQBVSOgj> > Oct 30 11:15:20 pop04 dovecot: pop3(artower at otenet.gr): Disconnected: Logged out top=0/0, retr=0/0, del=0/1336, size=471029518 > Oct 30 11:19:12 pop04 dovecot: lmtp(2863, artower at otenet.gr): r7U3KnyhcFIvCwAAckDtvw: msgid=: size=17823 saved mail to INBOX > Oct 30 11:33:12 pop04 dovecot: pop3-login: Login: user=, method=PLAIN, rip=85.72.224.94, lip=83.235.66.43, mpid=600, secured, session= > Oct 30 11:33:12 pop04 dovecot: pop3(artower at otenet.gr): Error: Syncing INBOX failed: Mailbox isn't a valid mbox file > Oct 30 11:33:12 pop04 dovecot: pop3(artower at otenet.gr): Error: Couldn't init INBOX: Mailbox isn't a valid mbox file > Oct 30 11:33:12 pop04 dovecot: pop3(artower at otenet.gr): Mailbox init failed top=0/0, retr=0/0, del=0/0, size=0 > Oct 30 11:33:33 pop04 dovecot: lmtp(16314, artower at otenet.gr): Au4vIMqucFK6PwAAckDtvw: msgid=<004401ced552$bb5ecd70$321c6850$@planet.nl>: size=7975817 save failed to INBOX: Mailbox isn't a valid mbox file > > Perhaps the patch is only valid for 2.1.16 and needs to be modified for 2.2.6 ? > > Thank you for your time > Dimos Alevizos > > > -------- Original Message -------- > Subject: Re: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' > From: Timo Sirainen > To: Dimos Alevizos > CC: dovecot at dovecot.org, Dimitris Paouris > Date: 26/06/2013 06:59 ?? > >> It crashes one specific IMAP/POP3 session, so others are unaffected. The potential problems: >> >> * It might cause the user's mbox to become crashing constantly. so first crash -> client reconnects -> client attempts the same operation -> crash again. Then again, this might not happen, it depends. >> >> * The mbox file would probably become slightly more corrupted than normally, because it doesn't finish moving data around. No data should get actually lost, but some parts could become duplicated (e.g. some headers or even mails, possibly causing UID renumbering = redownloading). >> >> So not ideal in production, but shouldn't be too bad either, especially if you just wait for the first crash and then immediately switch to the old unpatched version. >> >> On 26.6.2013, at 10.21, Dimos Alevizos wrote: >> >>> Hi, >>> >>> I haven't had the time to compile it yet, but a question just occurred. >>> Given that it's so rare and we can't reproduce it on a dev server, how safe is this to use on a production server ? >>> When you say "crash" you mean the whole dovecot server or that specific client's child ? >>> >>> D. >>> >>> -------- Original Message -------- >>> Subject: Re: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' >>> From: dalevizo >>> To: Timo Sirainen >>> CC: dovecot at dovecot.org, Dimitris Paouris >>> Date: 24/06/2013 01:41 ?? >>> >>>> Thanx I'll try the patch as soon as possible and I'll let you know. >>>> It is indeed very rare. We're only seeing 4-5 corruptions in about 13 >>>> million logins per day. >>>> I've been trying to convince our design team that we should move to >>>> maildir, but the truth is that it's quite a change, and we're way too >>>> busy to deal with everything else AND a migration from mbox to maildir. >>>> >>>> D. >>>> >>>> On Mon 24/06/2013 13:16, Timo Sirainen wrote: >>>>> On 19.6.2013, at 16.00, Dimos Alevizos wrote: >>>>> >>>>>> we're having some problems with our dovecot setup. >>>>>> I've seen similar problems in the mailing list some years ago but alas wasn't able to find a solution. >>>>>> >>>>>> Our setup is as follows : >>>>>> An MX farm (postfix) sends mails via LMTP to a director farm (dovecot 2.1.12) which proxies pop3/imap/lmtp traffic to a dovecot farm (dovecot 2.1.16). >>>>>> All mailboxes and indexes are on NFS and all servers are Centos. >>>>>> >>>>>> The problem is that at times we see mailboxes (all of them are in mbox format) beginning with FFrom or FrFrom and of course dovecot says it's not a valid mbox file. >>>>> >>>>> This is quite an old bug, but it happens rarely enough that I haven't been able to reproduce and fix it. Actually people hadn't complained about it for a long time now, so I had assumed it had somehow gotten fixed already. >>>>> >>>>> With the attached debug patch it should crash instead of (completely) corrupting the mbox file. Debugging the resulting core file with gdb could be useful in figuring this out. >>>>> >>>>> Although I wouldn't recommend mbox format for any big installation anyway.. >>>>> >>>> >>>> >>>>> >>>>> >>>> >>> >> > From tss at iki.fi Sat Nov 2 13:18:04 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 13:18:04 +0200 Subject: [Dovecot] Crash in dovecot 2.2.6 In-Reply-To: <526F7133.9010903@wildgooses.com> References: <526F7133.9010903@wildgooses.com> Message-ID: <8BF929C5-1256-4E37-BAC7-B400EB80E5AA@iki.fi> On 29.10.2013, at 10.26, Ed W wrote: > Hi, I recently upgraded from a dovecot 2.1 version to 2.2.6. I now have a single user who occasionally triggers a crash (just this one user it seems?). The user connects via LiveMail (v14.0.8117.) and IMAP. > > Oct 29 08:05:26 mail1 dovecot: imap(customer at example.org): Error: Raw backtrace: /usr/lib/dovecot/libdovecot.so.0(+0x6575a) [0xd94cc75a] -> /usr/lib/dovecot/libdovecot.so.0(+0x657cb) [0xd94cc7cb] -> /usr/lib/dovecot/libdovecot.so.0(i_fatal+0) [0xd9481991] -> /usr/lib/dovecot/libdovecot There was an assert error message logged before this raw backtrace. What is it? From tss at iki.fi Sat Nov 2 13:34:46 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 13:34:46 +0200 Subject: [Dovecot] BUG with Maildir/cur/:2, (was Re: Broken files?) In-Reply-To: References: <1E5DD284-BF48-4207-92B2-AEACCE042064@kreme.com> Message-ID: <5B4DCFB1-294C-4302-8FD5-982CBA2968BE@iki.fi> On 28.10.2013, at 16.29, Steffen Kaiser wrote: >> I *think* I figured it out, the mailboxes that were causing the errors each had a file in them named ?:,2? since removing those and removing the dovecot-uidlist the problem hasn?t returned. > > if the Maildir has the file ":,2" in it, you get two errors the first time you select that mailbox: > > Error: Broken file //Maildir/.t/dovecot-uidlist line 2: Invalid extended fields: : > Warning: Fixed a duplicate: //Maildir/.t/cur/:2, -> 1382969744.M379516P28028.msa > > but the ":2," remains in the Maildir. The next time the mailbox changes, e.g after "touch //Maildir/.t/cur", you only get the first error. > > Actually such file should never exist in a Maildir and is most likly not created by Dovecot itself, but for robustness Dovecot could rename such file into some sane name. Tested with OK, fixed: http://hg.dovecot.org/dovecot-2.2/rev/58dfed53ab43 From tss at iki.fi Sat Nov 2 13:55:49 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 13:55:49 +0200 Subject: [Dovecot] Pre imap-session scripting In-Reply-To: <20131028132401.BA6CC473@pobox.sk> References: <20131028132401.BA6CC473@pobox.sk> Message-ID: <73494ED9-BD53-4080-BA9D-4E9CC6A9708D@iki.fi> On 28.10.2013, at 14.24, azurIt wrote: > is it possible to run a script right after the IMAP/POP3 session was started? I know about post-login scripting but this is probably not what i'm looking for. I need to run a script which will know PID of process running IMAP session (so it must be already started). Thank you. The only way currently would be to create a new plugin that executes the script. But I added some new code that would make it possible with post-login scripts: http://hg.dovecot.org/dovecot-2.2/rev/9ef23179892a With this you could configure your userdb for example: userdb { .. default_fields = mail_pid=%{session_pid} } Now in your post-login script you?ll have MAIL_PID environment containing the PID. From tss at iki.fi Sat Nov 2 14:20:12 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 14:20:12 +0200 Subject: [Dovecot] backup maildir mailbox bugs In-Reply-To: <835A9C19-67D4-4E27-9D56-06DBE78DB5B1@iki.fi> References: <835A9C19-67D4-4E27-9D56-06DBE78DB5B1@iki.fi> Message-ID: On 26.10.2013, at 18.23, Timo Sirainen wrote: > On 20.10.2013, at 19.24, Anand Kumria wrote: > >> Using dovecot v2.2.5.5, I get the following: >> >> $ doveadm -v backup -R -u user at example.com maildir:/home/rsync/ >> example.com/user/Maildir/ >> >> [...] >> >> dsync(user at example.com): Panic: file dsync-mailbox-export.c: line 228 >> (export_save_change_get): assertion failed: (change->type == >> DSYNC_MAIL_CHANGE_TYPE_FLAG_CHANGE) > > That?s definitely a bug, but I?m not sure how to reproduce it. Can you create such a test maildir where this happens that you could send to me? For example you could change all the mail contents to just use ?x? letters. Here?s a script that does it: http://dovecot.org/tools/maildir-anonymize.pl > > Most likely this is related to your specific dovecot.index* files, and deleting them would fix the problem. I?d still like to fix the real bug though. I don?t see why it would repeatedly happen, although I did find a bug that could cause that behavior during race conditions: http://hg.dovecot.org/dovecot-2.2/rev/dbe7c5a0021e From tss at iki.fi Sat Nov 2 14:22:34 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 14:22:34 +0200 Subject: [Dovecot] Error: Syncing mailbox virtual failed: Virtual mailbox missing configuration file In-Reply-To: <20131012173749.GK27227@herakles.constabel-it.de> References: <20131012173749.GK27227@herakles.constabel-it.de> Message-ID: <0610D0C7-A025-4EF7-9CDF-06A32B5DDB84@iki.fi> On 12.10.2013, at 20.37, Mike Constabel wrote: > doveadm search -u xx at xx.de savedbefore 15w > > or other search queries i got as first line: > > doveadm(xx at xx.de): Error: Syncing mailbox virtual failed: Virtual mailbox missing configuration file > > The virtual Mailbox has a config file: > > # cat /mailspool1/xx.de/xx/Maildir/virtual/Alle\ eigenen\ E-Mails/dovecot-virtual > * > all Fixed a few days ago: http://hg.dovecot.org/dovecot-2.2/rev/c120623cb109 From tss at iki.fi Sat Nov 2 14:32:18 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 14:32:18 +0200 Subject: [Dovecot] Doveadm with a 2nd Instance In-Reply-To: <52443267.9000201@gmail.com> References: <52443267.9000201@gmail.com> Message-ID: <804F6583-9879-4910-98D4-A86D56CEA2D8@iki.fi> On 26.9.2013, at 16.11, Chris Lasater wrote: > While testing some more I found out something else. I have an alias set for doveadm so it was running with sudo and that ended up being part of the issue. If doveadm is run as a regular user then the problem goes away > > [user at server ~]$ doveadm -i Director log find > Debug: /home/user/apps/logs/director/director_debug.log > Info: /home/user/apps/logs/director/director_info.log > Warning: /home/user/apps/logs/director/director.log > Error: /home/user/apps/logs/director/director.log > Fatal: /home/user/apps/logs/director/director.log > > [user at server ~]$ sudo doveadm -i Director log find > Debug: /home/user/apps/logs/dovecot_debug.log > Info: /home/user/apps/logs/dovecot_info.log > Warning: /home/user/apps/logs/dovecot.log > Error: /home/user/apps/logs/dovecot.log > Fatal: /home/user/apps/logs/dovecot.log > > Also if I run "sudo doveadm stop" to stop the main instance, I now have the ability to use the -i Director using sudo. Unfortunately this makes it difficult to manage two instances. Does anyone have an idea of getting this to work with sudo? I don?t see why sudo should matter here. I can?t reproduce this, it always works no matter what I do. Do you have two different doveadm commands in different paths (sudo vs non-sudo path)? The way the -i parameter works is simply: 1. Look at the ?instances? in the built-in configured STATE_DIR (doveconf -d state_dir) 2. Find the instance name from the file (2nd parameter) and the base_dir (3rd parameter) 3. Get the base_dir/dovecot.conf symlink?s destination path 4. Use that path as the config file From tss at iki.fi Sat Nov 2 15:28:33 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 15:28:33 +0200 Subject: [Dovecot] DH parameter length too small? In-Reply-To: <525C1716.6080901@kaladix.org> References: <525C1716.6080901@kaladix.org> Message-ID: <778B06D1-EF64-4E24-BE07-10CAE2869A5A@iki.fi> On 14.10.2013, at 19.08, J?rg L?bbert wrote: > from my understanding, using 1024bit DH parameters results in a not sufficiently secure key exchange for DH(E). Therefore I think it would be advisable to have parameters of at least 2048bit . In fact, I would see a great benefit in chosing parameter length arbitrarily. > > I also do not see the benefit of parameter regeneration. What were the design goals here? http://hg.dovecot.org/dovecot-2.2/rev/43ab5abeb8f0 From tss at iki.fi Sat Nov 2 15:31:09 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 15:31:09 +0200 Subject: [Dovecot] [bug] ssl-params hangs when FIPS is enabled In-Reply-To: <524B10FA.2060709@redhat.com> References: <524B10FA.2060709@redhat.com> Message-ID: <9853264C-AB6E-4991-AAAD-1A9C164E067B@iki.fi> On 1.10.2013, at 21.14, Michal Hlavinka wrote: > we found a bug in ssl-params. It calls openssl DH generator for 512 and 1024 bits, but in FIPS mode, openssl won't generate anything for less than 1024, so it fails with: > error:0506A06E:Diffie-Hellman routines:DH_BUILTIN_GENPARAMS:key size too small > > but when DH generator fails, ssl-params hangs forever in io_loop_run: http://hg.dovecot.org/dovecot-2.2/rev/c472e0454ee3 should fix this. From tss at iki.fi Sat Nov 2 21:49:36 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 2 Nov 2013 21:49:36 +0200 Subject: [Dovecot] METADATA for v2.2.7 Message-ID: In case someone wants to try: http://hg.dovecot.org/dovecot-2.2/rev/0a08efeb3f40 The commit message lists the TODO. So for example if you want to enable it just for webmail (because quota limits aren?t there yet): mail_attribute_dict = file:%h/dovecot-attributes local 10.0.0.0/24 { imap_metadata = yes } Compared to the old metadata plugin, there are some improvements: - Uses lib-storage attributes internally, which means: - dsync replicates METADATA - it will be easy to add support for untagged METADATA notifications to clients when they change - SETMETADATA atomically either updates all or none of the changes Things that work in the METADATA code, but still require lib-dict changes to work properly: - Values with unlimited sizes - Values with binary data (NULs) From trupheenix at gmail.com Sat Nov 2 22:20:51 2013 From: trupheenix at gmail.com (Tru Pheenix) Date: Sun, 3 Nov 2013 01:50:51 +0530 Subject: [Dovecot] Stuck with authentication for my dovecot installation. Message-ID: Hello! I have been following instructions from here to setup dovecot along with postfix and postgresql and sasl2. I try to login but I keep getting the following messages in /var/log/mail.log Nov 2 19:51:39 localhost dovecot: ssl-params: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) Nov 2 19:51:39 localhost dovecot: anvil: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) Nov 2 19:51:39 localhost dovecot: config: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) Nov 2 19:51:39 localhost dovecot: log: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) Nov 2 19:51:39 localhost dovecot: master: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) Nov 2 19:51:44 localhost dovecot: master: Dovecot v2.0.19 starting up (core dumps disabled) Nov 2 19:53:11 localhost dovecot: master: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) Nov 2 19:53:11 localhost dovecot: log: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) Nov 2 19:53:11 localhost dovecot: master: Dovecot v2.0.19 starting up (core dumps disabled) Nov 2 19:53:29 localhost dovecot: auth: Debug: Loading modules from directory: /usr/lib/dovecot/modules/auth Nov 2 19:53:29 localhost dovecot: auth: Debug: Module loaded: /usr/lib/dovecot/modules/auth/libdriver_pgsql.so Nov 2 19:53:29 localhost dovecot: auth: Debug: auth client connected (pid=12718) Nov 2 19:53:29 localhost dovecot: auth: pgsql(localhost): Connected to database mails Nov 2 19:53:41 localhost dovecot: auth: Debug: client in: AUTH#0111#011PLAIN#011service=imap#011secured#011lip=127.0.0.1#011rip=127.0.0.1#011lport=143#011rport=58759#011resp= Nov 2 19:53:41 localhost dovecot: auth: Debug: sql(someone at mydomain.com,127.0.0.1): query: SELECT userid as user, password FROM users WHERE userid = 'someone at mydomain.com' Nov 2 19:53:41 localhost dovecot: auth: sql(someone at mydomain.com,127.0.0.1): Password mismatch My doveconf -n gives the following output # 2.0.19: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-24-virtual i686 Ubuntu 12.04 LTS auth_debug = yes auth_verbose = yes passdb { args = /etc/dovecot/dovecot-sql.conf driver = sql } passdb { driver = pam } protocols = " imap pop3" ssl_cert = References: Message-ID: Sorry I forgot to put the link I'm following instructions from here http://wiki2.dovecot.org/HowTo/DovecotPostgresql On Sun, Nov 3, 2013 at 1:50 AM, Tru Pheenix wrote: > Hello! > > I have been following instructions from here to setup dovecot along with > postfix and postgresql and sasl2. > > I try to login but I keep getting the following messages in > /var/log/mail.log > > > Nov 2 19:51:39 localhost dovecot: ssl-params: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) > Nov 2 19:51:39 localhost dovecot: anvil: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) > Nov 2 19:51:39 localhost dovecot: config: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) > Nov 2 19:51:39 localhost dovecot: log: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) > Nov 2 19:51:39 localhost dovecot: master: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) > Nov 2 19:51:44 localhost dovecot: master: Dovecot v2.0.19 starting up (core dumps disabled) > Nov 2 19:53:11 localhost dovecot: master: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) > Nov 2 19:53:11 localhost dovecot: log: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) > Nov 2 19:53:11 localhost dovecot: master: Dovecot v2.0.19 starting up (core dumps disabled) > Nov 2 19:53:29 localhost dovecot: auth: Debug: Loading modules from directory: /usr/lib/dovecot/modules/auth > Nov 2 19:53:29 localhost dovecot: auth: Debug: Module loaded: /usr/lib/dovecot/modules/auth/libdriver_pgsql.so > Nov 2 19:53:29 localhost dovecot: auth: Debug: auth client connected (pid=12718) > Nov 2 19:53:29 localhost dovecot: auth: pgsql(localhost): Connected to database mails > Nov 2 19:53:41 localhost dovecot: auth: Debug: client in: AUTH#0111#011PLAIN#011service=imap#011secured#011lip=127.0.0.1#011rip=127.0.0.1#011lport=143#011rport=58759#011resp= > Nov 2 19:53:41 localhost dovecot: auth: Debug: sql(someone at mydomain.com,127.0.0.1): query: SELECT userid as user, password FROM users WHERE userid = 'someone at mydomain.com' > Nov 2 19:53:41 localhost dovecot: auth: sql(someone at mydomain.com,127.0.0.1): Password mismatch > > > My doveconf -n gives the following output > > > # 2.0.19: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-24-virtual i686 Ubuntu 12.04 LTS > auth_debug = yes > > auth_verbose = yes > passdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > passdb { > driver = pam > } > > protocols = " imap pop3" > ssl_cert = ssl_key = userdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > > } > userdb { > driver = passwd > } > > Please let me know what is wrong. > > Regards > > Tru Pheenix > > From mark at msapiro.net Sun Nov 3 01:36:26 2013 From: mark at msapiro.net (Mark Sapiro) Date: Sat, 02 Nov 2013 16:36:26 -0700 Subject: [Dovecot] Assertion error in Dovecot 2.2.6 Message-ID: <52758C7A.90307@msapiro.net> Background. A while back I upgraded my phone to one currently using Android 4.1.2 and K9 mail 4.409. This phone/MUA combination seems at times to go crazy making IMAP connections. At first, I had mail_max_userip_connections = 30 (my largest imap account has 19 folders). The issue I had at that time was multiple errors like Oct 14 17:45:16 sbh16 dovecot: imap-login: Maximum number of connections from user+IP exceeded (mail_max_userip_connections=30): user=, method=PLAIN, rip=xx.xx.xx.xx, lip=xx.xx.xx.xx, TLS, session= I then set mail_max_userip_connections = 50 This greatly reduced but didn't completely eliminate these messages, but then I would see multiple Oct 31 16:13:40 sbh16 dovecot: master: Warning: service(imap-login): process_limit (100) reached, client connections are being dropped and Oct 31 16:13:40 sbh16 dovecot: imap-login: Disconnected: Connection queue full (no auth attempts in 4 secs): user=<>, rip=xx.xx.xx.xx, lip=xx.xx.xx.xx, TLS handshaking, session= followed finally by Oct 31 16:13:40 sbh16 dovecot: imap-login: Panic: file client-common.c: line 190 (client_destroy): assertion failed: (!client->authenticating) Oct 31 16:13:40 sbh16 dovecot: auth: Warning: auth client 19669 disconnected with 1 pending requests: EOF Oct 31 16:13:40 sbh16 dovecot: imap-login: Fatal: master: service(imap-login): child 19669 killed with signal 6 (core not dumped - add -D parameter to service imap-login { executable } I then set default_process_limit = 200, and things seem to have settled down, but I thought the panic should be reported. Possibly this is relevant - the above only seem to occur when the phone is connecting via wifi and possibly only when the phone has just switched from the phone data network to wifi. Current doveconf -n # 2.2.6: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 2.6.18-8.1.14.el5 i686 CentOS release 5 (Final) auth_mechanisms = plain apop login auth_worker_max_count = 5 default_process_limit = 200 mail_location = mbox:~/Mail:INBOX=/var/spool/mail/%u mail_privileged_group = mail mbox_write_locks = fcntl dotlock namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /usr/local/etc/dovecot.passwd driver = passwd-file } passdb { driver = pam } protocols = imap pop3 service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 } } ssl_cert = The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan From kremels at kreme.com Sun Nov 3 11:01:52 2013 From: kremels at kreme.com (LuKreme) Date: Sun, 3 Nov 2013 02:01:52 -0700 Subject: [Dovecot] Assertion error in Dovecot 2.2.6 In-Reply-To: <52758C7A.90307@msapiro.net> References: <52758C7A.90307@msapiro.net> Message-ID: <7A2BB141-13CA-4A1A-B928-4A3A43040019@kreme.com> On 02 Nov 2013, at 17:36 , Mark Sapiro wrote: Hi Mark! > I then set mail_max_userip_connections = 50 I had similar issue with both my iOS devices and my Computers, especially if they would happen to check at the same time from the same WiFi, as they are wont to do. I just set mail_max_userip_connections = 90 and haven't noticed any problems. $ grep -i warning /var/log/maillog | grep dovecot $ (no Panics or fatals either) -- Law of Probability Dispersal: Whatever hits the fan will not be evenly distributed. From wildfire at progsoc.org Sun Nov 3 13:27:45 2013 From: wildfire at progsoc.org (Anand Kumria) Date: Sun, 3 Nov 2013 11:27:45 +0000 Subject: [Dovecot] backup maildir mailbox bugs In-Reply-To: <835A9C19-67D4-4E27-9D56-06DBE78DB5B1@iki.fi> References: <835A9C19-67D4-4E27-9D56-06DBE78DB5B1@iki.fi> Message-ID: Hi Timo, I would but exactly how to run this script usefully escapes me. Neither: $ perl maildir-anonymize.pl . $ perl maildir-anonymize.pl Maildir/ work. And: $ cd Maildir; perl maildir-anonymize.pl * outputs lots of 'x', but that isn't useful. Since I assume you want the original contents anonymized. Also, the issue might be related to the folder structure, the original is using Maildir within Maildir (what Dovecot 1.x creates actually). So you might need the full structure? Regards, Anand On 26 October 2013 16:23, Timo Sirainen wrote: > On 20.10.2013, at 19.24, Anand Kumria wrote: > > > Using dovecot v2.2.5.5, I get the following: > > > > $ doveadm -v backup -R -u user at example.com maildir:/home/rsync/ > > example.com/user/Maildir/ > > > > [...] > > > > dsync(user at example.com): Panic: file dsync-mailbox-export.c: line 228 > > (export_save_change_get): assertion failed: (change->type == > > DSYNC_MAIL_CHANGE_TYPE_FLAG_CHANGE) > > That?s definitely a bug, but I?m not sure how to reproduce it. Can you > create such a test maildir where this happens that you could send to me? > For example you could change all the mail contents to just use ?x? letters. > Here?s a script that does it: > http://dovecot.org/tools/maildir-anonymize.pl > > Most likely this is related to your specific dovecot.index* files, and > deleting them would fix the problem. I?d still like to fix the real bug > though. > > > From marc at perkel.com Sun Nov 3 15:35:01 2013 From: marc at perkel.com (Marc Perkel) Date: Sun, 03 Nov 2013 05:35:01 -0800 Subject: [Dovecot] Encryption solution for messages at rest In-Reply-To: References: Message-ID: <52765105.5090407@perkel.com> On 10/28/2013 9:02 AM, Douglas Mortensen wrote: > Hi, > > We have clients with various security & compliance requirements. Although not required, it would be ideal to have messages encrypted at rest. We already use SSL/TLS to secure the transmission of most email. However, it would be nice to have them encrypted sitting on our server. Is anyone doing this? I think that ideally, rather than full-disk encryption, we should use an encryption that encrypts the actual email messages as they sit on our file system. This way even if we ever had our server breached by an attacker, they wouldn't be able to do anything with the messages. However, this would also mean that if the attacker can't decrypt the files, than dovecot and postfix still would need to. This means that the encryption key would need to be available to the dovecot deamon. We'd either need to have it in a file that is restricted to access only by dovecot (less secure), or use an encryption passphrase for the certificate which would have to be typed in manually each time that dovecot starts or restarts (more secure, but also more work and possibility of disruption because the server can't restart gracefully without a human being having to be present [although I don't think we have issues with unexpected restarts anyway]). > > Is anyone doing anything like this with dovecot? > > Thanks!! > - > Doug Mortensen > Network Consultant > Impala Networks Inc > CCNA, MCSA, Security+, A+ > Linux+, Network+, Server+ > A.A.S. Information Technology > . > www.impalanetworks.com > P: (505) 327-7300 > F: (505) 327-7545 > I use OpenVZ which is a near 0 overhead virtualization for Linux only. So I create a separate virtual machine for web services and email services. So someone hacking the web will never get at the email because it's not there. It also allows me to back them up separately and move/restore them separately on different computers. From vorgusa at gmail.com Sun Nov 3 17:37:43 2013 From: vorgusa at gmail.com (Chris Lasater) Date: Sun, 03 Nov 2013 10:37:43 -0500 Subject: [Dovecot] Doveadm with a 2nd Instance In-Reply-To: <804F6583-9879-4910-98D4-A86D56CEA2D8@iki.fi> References: <52443267.9000201@gmail.com> <804F6583-9879-4910-98D4-A86D56CEA2D8@iki.fi> Message-ID: <52766DC7.5060002@gmail.com> On 11/02/2013 08:32 AM, Timo Sirainen wrote: > On 26.9.2013, at 16.11, Chris Lasater wrote: > >> While testing some more I found out something else. I have an alias set for doveadm so it was running with sudo and that ended up being part of the issue. If doveadm is run as a regular user then the problem goes away >> >> [user at server ~]$ doveadm -i Director log find >> Debug: /home/user/apps/logs/director/director_debug.log >> Info: /home/user/apps/logs/director/director_info.log >> Warning: /home/user/apps/logs/director/director.log >> Error: /home/user/apps/logs/director/director.log >> Fatal: /home/user/apps/logs/director/director.log >> >> [user at server ~]$ sudo doveadm -i Director log find >> Debug: /home/user/apps/logs/dovecot_debug.log >> Info: /home/user/apps/logs/dovecot_info.log >> Warning: /home/user/apps/logs/dovecot.log >> Error: /home/user/apps/logs/dovecot.log >> Fatal: /home/user/apps/logs/dovecot.log >> >> Also if I run "sudo doveadm stop" to stop the main instance, I now have the ability to use the -i Director using sudo. Unfortunately this makes it difficult to manage two instances. Does anyone have an idea of getting this to work with sudo? > I don?t see why sudo should matter here. I can?t reproduce this, it always works no matter what I do. Do you have two different doveadm commands in different paths (sudo vs non-sudo path)? The way the -i parameter works is simply: > > 1. Look at the ?instances? in the built-in configured STATE_DIR (doveconf -d state_dir) > 2. Find the instance name from the file (2nd parameter) and the base_dir (3rd parameter) > 3. Get the base_dir/dovecot.conf symlink?s destination path > 4. Use that path as the config file > I only have 1 doveadm binary, and I have an alias set up for it: alias doveadm="sudo -E PATH=$PATH LD_LIBRARY_PATH=$LD_LIBRARY_PATH /home/user/apps/dovecot/bin/doveadm" I later found out that if I change the base_dir for both instances to a different folder, the problem went away, so it appeared to grab the default base_dir when I told it to use the Director instance. From itgeek31 at googlemail.com Sun Nov 3 21:53:58 2013 From: itgeek31 at googlemail.com (IT geek 31) Date: Sun, 3 Nov 2013 20:53:58 +0100 Subject: [Dovecot] Replication on v2.2.6 - I'm stuck (again) In-Reply-To: <4F7372E9-F1EC-40BA-8246-F44C495078B9@iki.fi> References: <4F7372E9-F1EC-40BA-8246-F44C495078B9@iki.fi> Message-ID: Hi Timo, Thanks for your response. Getting it to replicate over TCP is what I'm after. How do I tweak my config to get it to do that? I followed http://wiki2.dovecot.org/Replication, but I've obviously taking a wrong turn... -Mark On 2 November 2013 11:46, Timo Sirainen wrote: > On 30.10.2013, at 13.01, IT geek 31 wrote: > > > I'm trying to get Dovecot replication working between two servers. I > > didn't have much luck on v2.1.3, so after receiving advice from the list > I > > have upgraded to v2.2.6. > > > > I now get the error: > > > > Oct 30 11:50:16 server1 dovecot: doveadm(mark): Error: user mark: Auth > PASS > > lookup failed > > Oct 30 11:50:16 server2 dovecot: doveadm(mark): Error: sync: > > /var/run/dovecot/auth-userdb: passdb lookup failed (to see if user is > > proxied, because doveadm_port is set) > > I don?t think you need to have doveadm_port set, since you?re not > replicating over TCP. Remove it and it should just work? Anyway, it still > shouldn?t have failed, this fixes it: > > http://hg.dovecot.org/dovecot-2.2/rev/47848e9fc622 > > also this gives a bit better error message for the PASS lookup failure: > > http://hg.dovecot.org/dovecot-2.2/rev/9b45f6d20d9d > > From tss at iki.fi Sun Nov 3 22:08:03 2013 From: tss at iki.fi (Timo Sirainen) Date: Sun, 03 Nov 2013 22:08:03 +0200 Subject: [Dovecot] v2.2.7 released Message-ID: <1383509283.14365.2.camel@hurina> http://dovecot.org/releases/2.2/dovecot-2.2.7.tar.gz http://dovecot.org/releases/2.2/dovecot-2.2.7.tar.gz.sig * Some usage of passdb checkpassword could have been exploitable by local users. You may need to modify your setup to keep it working. See http://wiki2.dovecot.org/AuthDatabase/CheckPassword#Security + auth: Added ability to truncate values logged by auth_verbose_passwords (see 10-logging.conf comment) + mdbox: Added "mdbox_deleted" storage, which can be used to access messages with refcount=0. For example: doveadm import mdbox_deleted:~/mdbox "" mailbox inbox subject oops + ssl-params: Added ssl_dh_parameters_length setting. - master process was doing a hostname.domain lookup for each created process, which may have caused a lot of unnecessary DNS lookups. - dsync: Syncing over 100 messages at once caused problems in some situations, causing messages to get new UIDs. - fts-solr: Different Solr hosts for different users didn't work. From tss at iki.fi Sun Nov 3 22:23:53 2013 From: tss at iki.fi (Timo Sirainen) Date: Sun, 3 Nov 2013 22:23:53 +0200 Subject: [Dovecot] Replication on v2.2.6 - I'm stuck (again) In-Reply-To: References: <4F7372E9-F1EC-40BA-8246-F44C495078B9@iki.fi> Message-ID: <178BD068-EEE7-4C29-B05E-19225673C349@iki.fi> 1) Upgrade to v2.2.7 2) Use: mail_replica = tcp:server2.mydomain.com On 3.11.2013, at 21.53, IT geek 31 wrote: > Hi Timo, > > Thanks for your response. > > Getting it to replicate over TCP is what I'm after. How do I tweak my config to get it to do that? > > I followed http://wiki2.dovecot.org/Replication, but I've obviously taking a wrong turn... > > > -Mark > > > On 2 November 2013 11:46, Timo Sirainen wrote: > On 30.10.2013, at 13.01, IT geek 31 wrote: > > > I'm trying to get Dovecot replication working between two servers. I > > didn't have much luck on v2.1.3, so after receiving advice from the list I > > have upgraded to v2.2.6. > > > > I now get the error: > > > > Oct 30 11:50:16 server1 dovecot: doveadm(mark): Error: user mark: Auth PASS > > lookup failed > > Oct 30 11:50:16 server2 dovecot: doveadm(mark): Error: sync: > > /var/run/dovecot/auth-userdb: passdb lookup failed (to see if user is > > proxied, because doveadm_port is set) > > I don?t think you need to have doveadm_port set, since you?re not replicating over TCP. Remove it and it should just work? Anyway, it still shouldn?t have failed, this fixes it: > > http://hg.dovecot.org/dovecot-2.2/rev/47848e9fc622 > > also this gives a bit better error message for the PASS lookup failure: > > http://hg.dovecot.org/dovecot-2.2/rev/9b45f6d20d9d > > From tss at iki.fi Sun Nov 3 22:52:06 2013 From: tss at iki.fi (Timo Sirainen) Date: Sun, 3 Nov 2013 22:52:06 +0200 Subject: [Dovecot] v2.2.7 released In-Reply-To: <1383509283.14365.2.camel@hurina> References: <1383509283.14365.2.camel@hurina> Message-ID: <36D8C5FE-2717-404B-96DE-56D84E0AB2C5@iki.fi> On 3.11.2013, at 22.08, Timo Sirainen wrote: > * Some usage of passdb checkpassword could have been exploitable by > local users. You may need to modify your setup to keep it working. > See http://wiki2.dovecot.org/AuthDatabase/CheckPassword#Security Oh, forgot to mention here: This problem was found by the cPanel people (cPanel uses checkpassword). They also reserved CVE-2013-6171 for this. From erickom at metropolitancollege.co.za Mon Nov 4 01:47:25 2013 From: erickom at metropolitancollege.co.za (Eric Kom) Date: Mon, 04 Nov 2013 01:47:25 +0200 Subject: [Dovecot] [Dovecot-news] v2.2.7 released In-Reply-To: <36D8C5FE-2717-404B-96DE-56D84E0AB2C5@iki.fi> References: <1383509283.14365.2.camel@hurina> <36D8C5FE-2717-404B-96DE-56D84E0AB2C5@iki.fi> Message-ID: Thanks again for the released. Timo Sirainen wrote: >On 3.11.2013, at 22.08, Timo Sirainen wrote: > >> * Some usage of passdb checkpassword could have been exploitable by >> local users. You may need to modify your setup to keep it working. >> See http://wiki2.dovecot.org/AuthDatabase/CheckPassword#Security > >Oh, forgot to mention here: This problem was found by the cPanel people >(cPanel uses checkpassword). They also reserved CVE-2013-6171 for this. > >_______________________________________________ >Dovecot-news mailing list >Dovecot-news at dovecot.org >http://dovecot.org/cgi-bin/mailman/listinfo/dovecot-news -- Senior IT Manager Metropolitan Schools 013 750 2255 This message was sent from my Android mobile. I was out from the office at that time. From reganyelcich at gmail.com Mon Nov 4 06:33:30 2013 From: reganyelcich at gmail.com (Regan Yelcich) Date: Mon, 4 Nov 2013 17:33:30 +1300 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> Message-ID: On 2/11/2013, at 11:40 pm, Noel Butler wrote: > On 02/11/2013 20:25, Regan Yelcich wrote: >> Can someone advise the best way to convert mailboxes from Mbox to >> Maildir for Dovecot 2.17 on Ubuntu? Thanks. > > > mb2md.pl > > http://batleth.sapienti-sat.org/projects/mb2md/ I don't need to do anything specific for Dovecot? It'll see the new Maildir account and automatically create the indexes etc? From Ralf.Hildebrandt at charite.de Mon Nov 4 10:50:15 2013 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Mon, 4 Nov 2013 09:50:15 +0100 Subject: [Dovecot] v2.2.7 released In-Reply-To: <1383509283.14365.2.camel@hurina> References: <1383509283.14365.2.camel@hurina> Message-ID: <20131104085015.GE4650@charite.de> * Timo Sirainen : > http://dovecot.org/releases/2.2/dovecot-2.2.7.tar.gz > http://dovecot.org/releases/2.2/dovecot-2.2.7.tar.gz.sig Works like a charm here. > - master process was doing a hostname.domain lookup for each created > process, which may have caused a lot of unnecessary DNS lookups. Cool -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From noel.butler at ausics.net Mon Nov 4 11:29:14 2013 From: noel.butler at ausics.net (Noel Butler) Date: Mon, 04 Nov 2013 19:29:14 +1000 Subject: [Dovecot] =?utf-8?q?Best_way_from_Mbox_to_Maildir_using_2=2E17=3F?= In-Reply-To: References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> Message-ID: <4b0ee107261198e3c3203b10641c176d@ausics.net> On 04/11/2013 14:33, Regan Yelcich wrote: > On 2/11/2013, at 11:40 pm, Noel Butler wrote: > >> On 02/11/2013 20:25, Regan Yelcich wrote: >>> Can someone advise the best way to convert mailboxes from Mbox to >>> Maildir for Dovecot 2.17 on Ubuntu? Thanks. >> >> >> mb2md.pl >> >> http://batleth.sapienti-sat.org/projects/mb2md/ > > > I don't need to do anything specific for Dovecot? It'll see the new > Maildir account and automatically create the indexes etc? IIRC it shows you how to use it, you need to indicate where the new maildir is, if you have only a few, do them all manually, if you have many, write a quick bash or perl script to do them, and dovecot will create the indexes when they login. You will need to tell dovecot to look for the new location though, if your using system users as I suspect you are, then maildir:~/Maildir should do it *but* dont forget to make sure your MTA knows to use maildir as well, I've not worked with system users for a decade, but I think in postfix home_mailbox = Maildir/ will do it, with sendmail its much more tricky and your best sticking with mbox, if exim, NFI - dont use it :) From reganyelcich at gmail.com Mon Nov 4 11:48:10 2013 From: reganyelcich at gmail.com (Regan Yelcich) Date: Mon, 4 Nov 2013 22:48:10 +1300 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: <4b0ee107261198e3c3203b10641c176d@ausics.net> References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> <4b0ee107261198e3c3203b10641c176d@ausics.net> Message-ID: <9C189EB9-BB13-483E-9413-0E8888B5E847@gmail.com> Thanks for the tips Noel I'll give that a go. I'm moving just a small number of mailboxes over from system users on one server to a new server using a virtual user setup = dovecot + postfix & postfix admin using MySQL. Thanks! > On 4/11/2013, at 10:29 pm, Noel Butler wrote: > >> On 04/11/2013 14:33, Regan Yelcich wrote: >>> On 2/11/2013, at 11:40 pm, Noel Butler wrote: >>>> On 02/11/2013 20:25, Regan Yelcich wrote: >>>> Can someone advise the best way to convert mailboxes from Mbox to >>>> Maildir for Dovecot 2.17 on Ubuntu? Thanks. >>> mb2md.pl >>> http://batleth.sapienti-sat.org/projects/mb2md/ >> I don't need to do anything specific for Dovecot? It'll see the new >> Maildir account and automatically create the indexes etc? > > IIRC it shows you how to use it, you need to indicate where the new maildir is, if you have only a few, do them all manually, if you have many, write a quick bash or perl script to do them, and dovecot will create the indexes when they login. > > You will need to tell dovecot to look for the new location though, if your using system users as I suspect you are, then maildir:~/Maildir should do it *but* dont forget to make sure your MTA knows to use maildir as well, I've not worked with system users for a decade, but I think in postfix home_mailbox = Maildir/ will do it, with sendmail its much more tricky and your best sticking with mbox, if exim, NFI - dont use it :) > From wildfire at progsoc.org Mon Nov 4 14:30:02 2013 From: wildfire at progsoc.org (Anand Kumria) Date: Mon, 4 Nov 2013 12:30:02 +0000 Subject: [Dovecot] backup maildir mailbox bugs In-Reply-To: References: <835A9C19-67D4-4E27-9D56-06DBE78DB5B1@iki.fi> Message-ID: Hi, I've retried with v2.2.7 and I get a slightly different backtrace now: $ doveadm -v backup -R -u user at example.com maildir:/home/rsync/ example.com/user/Maildir/ [...] dsync(user at example.com): Panic: file dsync-brain-mailbox.c: line 668 (dsync_brain_slave_recv_mailbox): assertion failed: (memcmp(dsync_box->mailbox_guid, local_dsync_box.mailbox_guid, sizeof(dsync_box->mailbox_guid)) == 0) dsync(user at example.com): Error: Raw backtrace: /usr/lib/dovecot/libdovecot.so.0(+0x5f030) [0x7f5716869030] -> /usr/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x2a) [0x7f571686910a] -> /usr/lib/dovecot/libdovecot.so.0(i_fatal+0) [0x7f5716823779] -> doveadm [user at example.com Archives/2004 send:mailbox recv:mailbox](dsync_brain_slave_recv_mailbox+0x399) [0x42d4e9] -> doveadm [ user at example.com Archives/2004 send:mailbox recv:mailbox](dsync_brain_run+0x369) [0x42b2d9] -> doveadm [user at example.comArchives/2004 send:mailbox recv:mailbox]() [0x4290c3] -> doveadm [ user at example.com Archives/2004 send:mailbox recv:mailbox]() [0x411c17] -> doveadm [user at example.com Archives/2004 send:mailbox recv:mailbox](doveadm_mail_try_run+0x260) [0x4128e0] -> doveadm [ user at example.com Archives/2004 send:mailbox recv:mailbox](main+0x3f0) [0x411800] -> /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xed) [0x7f571646b76d] -> doveadm [user at example.com Archives/2004 send:mailbox recv:mailbox]() [0x4119fd] Let me know what else I can do to assist. Thanks, Anand On 3 November 2013 11:27, Anand Kumria wrote: > Hi Timo, > > I would but exactly how to run this script usefully escapes me. > > Neither: > > $ perl maildir-anonymize.pl . > > $ perl maildir-anonymize.pl Maildir/ > > work. > > And: > > $ cd Maildir; perl maildir-anonymize.pl * > > outputs lots of 'x', but that isn't useful. Since I assume you want the > original contents anonymized. > > Also, the issue might be related to the folder structure, the original is > using Maildir within Maildir (what Dovecot 1.x creates actually). > > So you might need the full structure? > > Regards, > Anand > > > On 26 October 2013 16:23, Timo Sirainen wrote: > >> On 20.10.2013, at 19.24, Anand Kumria wrote: >> >> > Using dovecot v2.2.5.5, I get the following: >> > >> > $ doveadm -v backup -R -u user at example.com maildir:/home/rsync/ >> > example.com/user/Maildir/ >> > >> > [...] >> > >> > dsync(user at example.com): Panic: file dsync-mailbox-export.c: line 228 >> > (export_save_change_get): assertion failed: (change->type == >> > DSYNC_MAIL_CHANGE_TYPE_FLAG_CHANGE) >> >> That?s definitely a bug, but I?m not sure how to reproduce it. Can you >> create such a test maildir where this happens that you could send to me? >> For example you could change all the mail contents to just use ?x? letters. >> Here?s a script that does it: >> http://dovecot.org/tools/maildir-anonymize.pl >> >> Most likely this is related to your specific dovecot.index* files, and >> deleting them would fix the problem. I?d still like to fix the real bug >> though. >> >> >> > From skdovecot at smail.inf.fh-brs.de Mon Nov 4 16:34:29 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 4 Nov 2013 15:34:29 +0100 (CET) Subject: [Dovecot] Stuck with authentication for my dovecot installation. In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sun, 3 Nov 2013, Tru Pheenix wrote: >> Nov 2 19:53:41 localhost dovecot: auth: Debug: sql(someone at mydomain.com,127.0.0.1): query: SELECT userid as user, password FROM users WHERE userid = 'someone at mydomain.com' >> Nov 2 19:53:41 localhost dovecot: auth: sql(someone at mydomain.com,127.0.0.1): Password mismatch Where is the line about PAM? >> auth_verbose = yes >> passdb { >> args = /etc/dovecot/dovecot-sql.conf >> driver = sql >> } So, the password storred in the database does not match the enterred one, then the next passdb {} should be tried >> passdb { >> driver = pam >> } did you enabled dovecot in PAM? Or is a suitable default in PAM configured? >> userdb { >> driver = passwd >> } Just the userdb {} for passwd, no SQL? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUnewdV3r2wJMiz2NAQIkOwf/SJKKBqXNOXzd/Fd3483kYJIKs4ffRwWa wPuA9fwtqpY0UaVP/GVjQbbql0AW8tpUiHLH3t3sypqKp03C/kupc4Q0sCAfH7s/ RupBaNLDZ07Jtjl1MIcxYRVu9tXKHOTPTfs6/OjGe09LXir0ujM+uy/dX3/U6vPA IlnIG4PKTI5fqfBucvbjbwNDmQ8qatT9qxfdOMVkYRr4a6baWoaYUOEGD0WYmh2l kXKlOtezDOQBq+nvKrzAI66bm3c2Qiy87+fANafH37Ms9ZE7cIHdUrPiWKeWQdmY b+pyLAzoLrZkflz+iDdNrM7eX4k7q0qP9yQb0ujZquICQiduUqQZuw== =n2Zs -----END PGP SIGNATURE----- From mmoore at ucar.edu Mon Nov 4 17:16:27 2013 From: mmoore at ucar.edu (Mark Moore) Date: Mon, 04 Nov 2013 08:16:27 -0700 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: <4b0ee107261198e3c3203b10641c176d@ausics.net> References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> <4b0ee107261198e3c3203b10641c176d@ausics.net> Message-ID: <5277BA4B.2040209@ucar.edu> On 11/04/2013 02:29 AM, Noel Butler wrote: > On 04/11/2013 14:33, Regan Yelcich wrote: >> On 2/11/2013, at 11:40 pm, Noel Butler wrote: >> >>> On 02/11/2013 20:25, Regan Yelcich wrote: >>>> Can someone advise the best way to convert mailboxes from Mbox to >>>> Maildir for Dovecot 2.17 on Ubuntu? Thanks. >>> >>> >>> mb2md.pl >>> >>> http://batleth.sapienti-sat.org/projects/mb2md/ The program has at least 2 bugs in it: . If the body has paragraph break (i.e., '\n') followed by the RFC822 keyword 'From', the original message will loose the last half of the message and a phantom message will be created. Change from my notes: # if ( /^From / # -to- # if ( /^From .*? \d\d:\d\d:\d\d \d\d\d\d/ . I never could figure out where the second bug was. This one created some messages with blank subject lines. Another annoyance was prefixing the newly created mail folders with a '.' Our site is small (300 users) with 15-20 years of e-mail history. A conservative estimate of the conversion was something like 30 million messages. Did it work? Yes. I wish I had more time for testing, though. In the end, we fixed the problems on the back side. >> >> >> I don't need to do anything specific for Dovecot? It'll see the new >> Maildir account and automatically create the indexes etc? > > IIRC it shows you how to use it, you need to indicate where the new maildir is, if you have only a few, do them all manually, if you > have many, write a quick bash or perl script to do them, and dovecot will create the indexes when they login. > > You will need to tell dovecot to look for the new location though, if your using system users as I suspect you are, then > maildir:~/Maildir should do it *but* dont forget to make sure your MTA knows to use maildir as well, I've not worked with system > users for a decade, but I think in postfix home_mailbox = Maildir/ will do it, with sendmail its much more tricky and your best > sticking with mbox, if exim, NFI - dont use it :) > -- Mark --0- ---------------------------------------------------------------------- Mark Moore UCAR/NCAR/CGD mmoore at ucar.edu 1850 Table Mesa Drive (W) 303 497-1338 Boulder, CO 80305 (F) 303 497-1324 From CMarcus at Media-Brokers.com Mon Nov 4 18:37:49 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 04 Nov 2013 11:37:49 -0500 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: <5277BA4B.2040209@ucar.edu> References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> <4b0ee107261198e3c3203b10641c176d@ausics.net> <5277BA4B.2040209@ucar.edu> Message-ID: <5277CD5D.1060501@Media-Brokers.com> On 2013-11-04 10:16 AM, Mark Moore wrote: > Another annoyance was prefixing the newly created mail folders with a '.' this is standard for maildir... http://www.courier-mta.org/maildir.html -- Best regards, */Charles/* From alex at receptiveit.com.au Mon Nov 4 02:55:08 2013 From: alex at receptiveit.com.au (Alex Ferrara) Date: Mon, 4 Nov 2013 11:55:08 +1100 Subject: [Dovecot] Shared mailbox help needed Message-ID: <469644D8-008C-4E2B-B5B4-579EF4EE9C2B@receptiveit.com.au> Hi everyone, I am in the middle of a migration from Cyrus 2.4 to Dovecot 2.1.7, and I have everything mostly working. I set up Dovecot to authenticate against Active Directory (Samba4) using PAM and SSSD, and have also used the fantastic cyrus2dovecot perl script to do a test migration of all our mail, and that is now working flawlessly. I have the issue of shared IMAP accounts to deal with, and I am a little stuck. I see that Dovecot is very flexible, and I think I am getting stuck in this flexibility. I thought that if I explain what I am trying to achieve, someone might point me in the right direction. In the Cyrus regime, we have several imap accounts that are shared with a group of people. These groups are actual unix groups that actual unix users are a member of. If we want a person to access a mailbox, we add them to the group and then at next login, it pops up in Thunderbird automatically. SSSD does, from what I can tell, a decent job of binding to AD and mapping AD users to unix users, but since not all of the users have an NIS uid in AD, I decided to use a static mapping. This might have been the wrong decision, I am not sure. userdb { driver = static args = uid=900 gid=900 home=/mnt/mail/%u allow_all_users=yes } It probably isn't important at this stage, but the mail spool is stored on an NFS server and the indexes are stored locally. Thanks in advance, Alex Ferrara Director Receptive IT Solutions From gilles.chauvin at univ-rouen.fr Mon Nov 4 13:03:04 2013 From: gilles.chauvin at univ-rouen.fr (Gilles Chauvin) Date: Mon, 04 Nov 2013 12:03:04 +0100 Subject: [Dovecot] v2.2.7 released In-Reply-To: <1383509283.14365.2.camel@hurina> References: <1383509283.14365.2.camel@hurina> Message-ID: <52777EE8.5080707@univ-rouen.fr> On 03/11/2013 21:08, Timo Sirainen wrote: > + mdbox: Added "mdbox_deleted" storage, which can be used to access > messages with refcount=0. For example: doveadm import > mdbox_deleted:~/mdbox "" mailbox inbox subject oops > Hi Timo, We're currently running Dovecot 2.1.16. To ease the recovery process, in case of accidental mail deletion, we're using the lazy_expunge plugin to keep deleted mail in a user hidden namespace during a couple of days before they really get deleted. Could this be replaced by this new feature? I guess the mdbox_deleted storage get emptied after a purge (which is what we're doing every night)? Regards, Gilles. From noel.butler at ausics.net Tue Nov 5 03:28:55 2013 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 05 Nov 2013 11:28:55 +1000 Subject: [Dovecot] =?utf-8?q?Best_way_from_Mbox_to_Maildir_using_2=2E17=3F?= In-Reply-To: <5277BA4B.2040209@ucar.edu> References: "\"" <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net>" <4b0ee107261198e3c3203b10641c176d@ausics.net> <5277BA4B.2040209@ucar.edu> Message-ID: On 05/11/2013 01:16, Mark Moore wrote: >>>> mb2md.pl >>>> >>>> http://batleth.sapienti-sat.org/projects/mb2md/ > > > The program has at least 2 bugs in it: > > . If the body has paragraph break (i.e., '\n') followed by the RFC822 > keyword 'From', the original message will loose the last half of > the message and a phantom message will be created. > > Change from my notes: > > # if ( /^From / > # -to- > # if ( /^From .*? \d\d:\d\d:\d\d \d\d\d\d/ > > . I never could figure out where the second bug was. This one created > some messages with blank subject lines. > Never noticed this, but, it was a very very long time ago I last used it, and since most users over here have always been pop3, probably never had many to convert in the first place when I did use it, so risk was so low. I think it was around the time we merged, and had to combine sendmail/dovecot and qmail/vpopmail/dovecot systems into just a postfix/dovecot solution, either we fluked it, or any affecteds didnt bother to report it. > Another annoyance was prefixing the newly created mail folders with a > '.' > As Charles has already mentioned, thats how Maildir works From mmoore at ucar.edu Tue Nov 5 05:20:47 2013 From: mmoore at ucar.edu (Mark Moore) Date: Mon, 04 Nov 2013 20:20:47 -0700 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: References: "\"" <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net>" <4b0ee107261198e3c3203b10641c176d@ausics.net> <5277BA4B.2040209@ucar.edu> Message-ID: <5278640F.9010801@ucar.edu> On 11/04/2013 06:28 PM, Noel Butler wrote: > > >> Another annoyance was prefixing the newly created mail folders with a >> '.' >> > > As Charles has already mentioned, thats how Maildir works > > I'd modify this to 'the way Maildir wants it'....not necessarily the way it _must_ work. I suspected the preference, but, again, didn't have enough time to investigate. (Some) users requested that their folders be visible, which is what they were familiar with under mbox. BASH to the rescue and a short while later....POOF! Also, Thunderbird is quite happy creating folders without the preceding '.', which seems to work without incident with the Maildir format. ...and in case it's not quite obvious by this point, the intricacies of e-mail storage are not my long suite. I bow to the great authorities. :-) -- Mark --0- ---------------------------------------------------------------------- Mark Moore UCAR/NCAR/CGD mmoore at ucar.edu 1850 Table Mesa Drive (W) 303 497-1338 Boulder, CO 80305 (F) 303 497-1324 From gumby at henkel-wallace.org Tue Nov 5 07:49:59 2013 From: gumby at henkel-wallace.org (David Henkel-Wallace) Date: Mon, 4 Nov 2013 21:49:59 -0800 Subject: [Dovecot] Is it safe to manipulate Maildir files directly? Message-ID: <47742F7C-D292-4F24-AC10-F962B0A33036@henkel-wallace.org> Dovecoters, is it safe to manipulate files in Maildir/xxx directly or will Dovecot become unstable if I don't make these changes by talking to Dovecot and having it make the changes? (I'm running 2.1.7 under Wheezy, IMAP only) My specific application: I am running spamassassin and would like users to be able to submit spam (and ham) directly by moving it into special folders. A cron job can then find it and take action: feed spam messages to the bayesian trainer and then delete them; feed ham messages to the trainer and then move them into ~/Maildir/cur/ Having the cron job find the messages and train spamassassin is no problem. The question is how to move the messages. Is it safe to simply rename the files from my cron job? The dovecot wiki implies that dovecot will notice a change in mtime and deal with it safely. Am I reading this correctly? Changing a message flags (i.e. name) and/or directory will change mtime. If I have to go through to Dovecot I am afraid I'd need the user's credentials, which is not appropriate. Thanks! -d From skdovecot at smail.inf.fh-brs.de Tue Nov 5 09:10:46 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 5 Nov 2013 08:10:46 +0100 (CET) Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: References: "\"" <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net>" <4b0ee107261198e3c3203b10641c176d@ausics.net> <5277BA4B.2040209@ucar.edu> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 5 Nov 2013, Noel Butler wrote: > On 05/11/2013 01:16, Mark Moore wrote: > >>>>> mb2md.pl >>>>> >>>>> http://batleth.sapienti-sat.org/projects/mb2md/ >> >> >> The program has at least 2 bugs in it: >> >> . If the body has paragraph break (i.e., '\n') followed by the RFC822 >> keyword 'From', the original message will loose the last half of >> the message and a phantom message will be created. >> >> Change from my notes: >> >> # if ( /^From / >> # -to- >> # if ( /^From .*? \d\d:\d\d:\d\d \d\d\d\d/ >> >> . I never could figure out where the second bug was. This one created >> some messages with blank subject lines. You have a badly formatted mbox file, if there is such distinction neccessary: http://manpages.ubuntu.com/manpages/precise/man5/mbox.5.html " In order to avoid misinterpretation of lines in message bodies which begin with the four characters "From", followed by a space character, the mail delivery agent must quote any occurrence of "From " at the start of a body line. " also look at the example of the From-line with date, your date is not RFC822. However, the date-format varies. Therefore, the start token of a (next) message in mbox are the five characters "From " at the start of a line. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUniZ9l3r2wJMiz2NAQKN5wf+NkbKObZHgFX0AqPmFJFkY7eZb4KKPBMa LuRTbk+nm7DBwtNs0kbsh7WQJLxcEc+Kdt7O7Oe1+vnE3dKMsJDEvD7iIlItKVS/ 5pZW0a4LZKEdefh5RCXXZIJbKp4isvo3LKXMFEJhMY3evoEnQAo9P1if8B+weUz9 v4DxcoasDS53JgZFUBmb2ZCxpHFvthtQdTTyJA/8RvkEioUu+iLmS18HMx1pjCZ8 G/U7O28ru2Ver8nXn5L0k9Q0GKyzZTfKg4m/YiUXe98qOc299X5D1PfHFGpJafy5 AMVFXdb9XHtXa5D9re7Zu+LTIlHxg291UgUm6oLgRETyrg1av9sZ+Q== =cCgO -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Tue Nov 5 09:22:57 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 5 Nov 2013 08:22:57 +0100 (CET) Subject: [Dovecot] Is it safe to manipulate Maildir files directly? In-Reply-To: <47742F7C-D292-4F24-AC10-F962B0A33036@henkel-wallace.org> References: <47742F7C-D292-4F24-AC10-F962B0A33036@henkel-wallace.org> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 4 Nov 2013, David Henkel-Wallace wrote: > is it safe to manipulate files in Maildir/xxx directly or will Dovecot if "xxx" does not include the Dovecot-related index files etc., then yes. > become unstable if I don't make these changes by talking to Dovecot and > having it make the changes? (I'm running 2.1.7 under Wheezy, IMAP only) > > My specific application: I am running spamassassin and would like users > to be able to submit spam (and ham) directly by moving it into special > folders. A cron job can then find it and take action: feed spam > messages to the bayesian trainer and then delete them; feed ham messages > to the trainer and then move them into ~/Maildir/cur/ I did this before switching to antispam. I use antispam with spool2dir now, that central directory has a inotify watcher that trains the messages instantly. > Having the cron job find the messages and train spamassassin is no > problem. The question is how to move the messages. Is it safe to > simply rename the files from my cron job? You mean "ham -> ~/Maildir/cur"? Yes, but there is a slight chance, that an user already copy'ed the message there. If the stem of the filename, the part before the colon ":", is already present in the Maildir/cur or ~~/new, Dovecot might gets confused. I think all present versions generate an error in the sense "duplicate found, fixed by renaming into something". I did not moved the message files from "ham" into the INBOX. I named the folders: spam/yes and spam/no, all my users moved messages into spam/yes, but copied them into spam/no and moved them themselves into their correct mailbox. Maybe, you can avoid that step, too. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUnic0V3r2wJMiz2NAQKywgf/f2ZE+U1NzCVkAAgwASdsv79SxrqNkrf/ +G+2HyBgFfRqk3TchPjVp3GYxFZjLhVZT5GhvU3P1RGfbgv+WKiGfaHSF5FGXVfv u16xcdHkyBBikwyT1YQ8rsO6YAIgUmUEoUIkrQGqdN40NpBx6TgIZZjmhyVTlr4g Nda9A+7dEAfvwyaXJSUxVPIjZC0+CONJ6+o4Wm+taXLbBAnb7brHAly8+ovjjvAt S5wyrPefR9U7N3U2ENyeZI7okib+qKNDIZ5AaMOdcP2ZHvebjJMLPA524glzBWyu 1Hq7OHabfLcugThlHTXr3WxKBMACiA2J5uNOxH4A3hxQmB+x7S7NqQ== =VZIk -----END PGP SIGNATURE----- From fumiyas at osstech.jp Tue Nov 5 09:30:36 2013 From: fumiyas at osstech.jp (SATOH Fumiyasu) Date: Tue, 05 Nov 2013 16:30:36 +0900 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> Message-ID: <87eh6vs3tv.wl%fumiyas@osstech.jp> At Tue, 5 Nov 2013 08:10:46 +0100 (CET), Steffen Kaiser wrote: > >>>>> http://batleth.sapienti-sat.org/projects/mb2md/ > >> > >> The program has at least 2 bugs in it: > >> > >> . If the body has paragraph break (i.e., '\n') followed by the RFC822 > >> keyword 'From', the original message will loose the last half of > >> the message and a phantom message will be created. > >> > >> Change from my notes: > >> > >> # if ( /^From / > >> # -to- > >> # if ( /^From .*? \d\d:\d\d:\d\d \d\d\d\d/ > >> > >> . I never could figure out where the second bug was. This one created > >> some messages with blank subject lines. > > You have a badly formatted mbox file, if there is such distinction neccessary: No. There are some variants of mbox format. See https://en.wikipedia.org/wiki/Mbox#Family > http://manpages.ubuntu.com/manpages/precise/man5/mbox.5.html > > " In order to avoid misinterpretation of lines in message bodies which > begin with the four characters "From", followed by a space character, > the mail delivery agent must quote any occurrence of "From " at the > start of a body line. > " -- -- Name: SATOH Fumiyasu @ OSS Technology Corp. (fumiyas @ osstech co jp) -- Business Home: http://www.OSSTech.co.jp/ -- GitHub Home: https://GitHub.com/fumiyas/ -- PGP Fingerprint: BBE1 A1C9 525A 292E 6729 CDEC ADC2 9DCA 5E1C CBCA From dovecot at lists.wgwh.ch Tue Nov 5 09:40:31 2013 From: dovecot at lists.wgwh.ch (Oli Schacher) Date: Tue, 5 Nov 2013 08:40:31 +0100 Subject: [Dovecot] Is it safe to manipulate Maildir files directly? In-Reply-To: <47742F7C-D292-4F24-AC10-F962B0A33036@henkel-wallace.org> References: <47742F7C-D292-4F24-AC10-F962B0A33036@henkel-wallace.org> Message-ID: <20131105084031.5b254ca0@lists.wgwh.ch> On Mon, 4 Nov 2013 21:49:59 -0800 David Henkel-Wallace wrote: > Having the cron job find the messages and train spamassassin is no > problem. The question is how to move the messages. Is it safe to > simply rename the files from my cron job? > [...] > If I have to go through to Dovecot I am afraid I'd need the user's > credentials, which is not appropriate. > you can do all this with doveadm scripts. http://wiki2.dovecot.org/Tools/Doveadm Something like this should work: doveadm search -A mailbox 'hamreport' 2>/dev/null | while read user guid uid; do doveadm fetch -u $user text mailbox-guid $guid uid $uid | sa-learn --ham ; doveadm move -u $user INBOX mailbox-guid $guid uid $uid ; done this should fetch all mails in the 'hamreport' folder of every user, pass it to sa-learn and then move it to the user's INBOX you don't need the user credentials , but you have to make sure doveadm can find all users (iterate_query setting with SQL auth db) hth Oli -- message transmitted on 100% recycled electrons From amateo at um.es Tue Nov 5 10:10:47 2013 From: amateo at um.es (Angel L. Mateo) Date: Tue, 05 Nov 2013 09:10:47 +0100 Subject: [Dovecot] failed: Message has been copied too many times In-Reply-To: <5272749B.1050201@ehu.es> References: <5268F864.8030800@um.es> <5268F941.9040908@um.es> <526E325F.7000308@um.es> <5272749B.1050201@ehu.es> Message-ID: <5278A807.80209@um.es> El 31/10/13 16:17, Joseba Torre escribi?: > > Are you sure it's dovecot who is duplicating emails? I have seen this No, I'm not sure. > before (not so many copies, but the same effect) and I've always thought > it was a thunderbird thing (in every case I've seen the client was > thunderbird, and I think your users also use it). > It could be the reason. My users are using thunderbird and this problem always happened with users with lot of automatic mails in a mailbox, so the could be trying to delete them (although I told to some of them and they told me that they didn't, but you know...) > I've always solved with the thunderbird function to remove duplicates. > Where is this function? Is it a complement? -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci?n y las Comunicaciones Aplicadas (ATICA) http://www.um.es/atica Tfo: 868887590 Fax: 868888337 From lists at wildgooses.com Tue Nov 5 10:26:03 2013 From: lists at wildgooses.com (Ed W) Date: Tue, 05 Nov 2013 08:26:03 +0000 Subject: [Dovecot] Crash in dovecot 2.2.6 In-Reply-To: <8BF929C5-1256-4E37-BAC7-B400EB80E5AA@iki.fi> References: <526F7133.9010903@wildgooses.com> <8BF929C5-1256-4E37-BAC7-B400EB80E5AA@iki.fi> Message-ID: <5278AB9B.10506@wildgooses.com> On 02/11/2013 11:18, Timo Sirainen wrote: > On 29.10.2013, at 10.26, Ed W wrote: > >> Hi, I recently upgraded from a dovecot 2.1 version to 2.2.6. I now have a single user who occasionally triggers a crash (just this one user it seems?). The user connects via LiveMail (v14.0.8117.) and IMAP. >> >> Oct 29 08:05:26 mail1 dovecot: imap(customer at example.org): Error: Raw backtrace: /usr/lib/dovecot/libdovecot.so.0(+0x6575a) [0xd94cc75a] -> /usr/lib/dovecot/libdovecot.so.0(+0x657cb) [0xd94cc7cb] -> /usr/lib/dovecot/libdovecot.so.0(i_fatal+0) [0xd9481991] -> /usr/lib/dovecot/libdovecot > There was an assert error message logged before this raw backtrace. What is it? > I'm sorry, yes of course there is. Sorry, tunnel vision: Samples: Nov 5 06:08:43 mail1 dovecot: imap(user at example.com): Panic: file mail-index-transaction-export.c: line 203 (log_append_ext_hdr_update): assertion failed: (u32.offset + u32.size <= ext_hdr_size) Nov 5 06:13:21 mail1 dovecot: imap(user at example.com): Panic: file mail-index-transaction-export.c: line 203 (log_append_ext_hdr_update): assertion failed: (u32.offset + u32.size <= ext_hdr_size) Nov 5 07:50:59 mail1 dovecot: imap(user at example.com): Panic: file mail-index-transaction-export.c: line 203 (log_append_ext_hdr_update): assertion failed: (u32.offset + u32.size <= ext_hdr_size) Nov 5 07:55:23 mail1 dovecot: imap(user at example.com): Panic: file mail-index-transaction-export.c: line 203 (log_append_ext_hdr_update): assertion failed: (u32.offset + u32.size <= ext_hdr_size) Thanks Ed W From bernd at petrovitsch.priv.at Tue Nov 5 11:44:24 2013 From: bernd at petrovitsch.priv.at (Bernd Petrovitsch) Date: Tue, 05 Nov 2013 10:44:24 +0100 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: <4b0ee107261198e3c3203b10641c176d@ausics.net> References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> <4b0ee107261198e3c3203b10641c176d@ausics.net> Message-ID: <1383644664.31862.31.camel@thorin> On Mon, 2013-11-04 at 19:29 +1000, Noel Butler wrote: [...] > think in postfix home_mailbox = Maildir/ will do it, with sendmail its > much more tricky and your best sticking with mbox, if exim, NFI - dont Or - strategically - you use dovecot's LDA which should know where to throw the mails in. For sendmail, read http://platyna.platinum.linux.pl/blog/?p=3: Basically add somewhere in the middle of the /etc/mail/sendmail.mc (where the other FEATURE() lines are) ---- snip ---- FEATURE(local_procmail, `/usr/libexec/dovecot/deliver', `deliver -d $u', `SPhnu9')dnl MODIFY_MAILER_FLAGS(`LOCAL', `-f')dnl ---- snip ---- and add the end, we do not need the procmail-mailer (as above uses/modifies the local mailer) ---- snip ---- dnl MAILER(procmail)dnl ---- snip ---- Caveat emptor: It's Fedora/RedHat-world over here and installation from RPMs. So check the paths;-) Bernd -- Bernd Petrovitsch Email : bernd at petrovitsch.priv.at LUGA : http://www.luga.at From itgeek31 at googlemail.com Tue Nov 5 12:01:22 2013 From: itgeek31 at googlemail.com (IT geek 31) Date: Tue, 5 Nov 2013 11:01:22 +0100 Subject: [Dovecot] Replication on v2.2.6 - I'm stuck (again) In-Reply-To: <178BD068-EEE7-4C29-B05E-19225673C349@iki.fi> References: <4F7372E9-F1EC-40BA-8246-F44C495078B9@iki.fi> <178BD068-EEE7-4C29-B05E-19225673C349@iki.fi> Message-ID: Hi Timo, Thanks for the info. I've upgraded to v2.2.7 and made the change. Now I get: Nov 5 11:00:00 server1 dovecot: dsync-server(mark): Error: Couldn't lock /home/mark/.dovecot-sync.lock: Timed out after 30 seconds Nov 5 11:00:02 server1 dovecot: dsync-local(mark): Error: Couldn't lock /home/mark/.dovecot-sync.lock: Timed out after 30 seconds Also, I get a lot of errors about Dovecot trying to replicate mailboxes for (system) users that don't have them. Is there any way to exclude users from replication? -Mark On 3 November 2013 21:23, Timo Sirainen wrote: > 1) Upgrade to v2.2.7 > > 2) Use: > > mail_replica = tcp:server2.mydomain.com > > On 3.11.2013, at 21.53, IT geek 31 wrote: > > > Hi Timo, > > > > Thanks for your response. > > > > Getting it to replicate over TCP is what I'm after. How do I tweak my > config to get it to do that? > > > > I followed http://wiki2.dovecot.org/Replication, but I've obviously > taking a wrong turn... > > > > > > -Mark > > > > > > On 2 November 2013 11:46, Timo Sirainen wrote: > > On 30.10.2013, at 13.01, IT geek 31 wrote: > > > > > I'm trying to get Dovecot replication working between two servers. I > > > didn't have much luck on v2.1.3, so after receiving advice from the > list I > > > have upgraded to v2.2.6. > > > > > > I now get the error: > > > > > > Oct 30 11:50:16 server1 dovecot: doveadm(mark): Error: user mark: Auth > PASS > > > lookup failed > > > Oct 30 11:50:16 server2 dovecot: doveadm(mark): Error: sync: > > > /var/run/dovecot/auth-userdb: passdb lookup failed (to see if user is > > > proxied, because doveadm_port is set) > > > > I don?t think you need to have doveadm_port set, since you?re not > replicating over TCP. Remove it and it should just work? Anyway, it still > shouldn?t have failed, this fixes it: > > > > http://hg.dovecot.org/dovecot-2.2/rev/47848e9fc622 > > > > also this gives a bit better error message for the PASS lookup failure: > > > > http://hg.dovecot.org/dovecot-2.2/rev/9b45f6d20d9d > > > > > > From noel.butler at ausics.net Tue Nov 5 12:01:46 2013 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 05 Nov 2013 20:01:46 +1000 Subject: [Dovecot] =?utf-8?q?Best_way_from_Mbox_to_Maildir_using_2=2E17=3F?= In-Reply-To: <87eh6vs3tv.wl%fumiyas@osstech.jp> References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> <87eh6vs3tv.wl%fumiyas@osstech.jp> Message-ID: On 05/11/2013 17:30, SATOH Fumiyasu wrote: > At Tue, 5 Nov 2013 08:10:46 +0100 (CET), > Steffen Kaiser wrote: >> >>>>> http://batleth.sapienti-sat.org/projects/mb2md/ >> >> >> >> The program has at least 2 bugs in it: >> >> >> >> . If the body has paragraph break (i.e., '\n') followed by the RFC822 >> >> keyword 'From', the original message will loose the last half of >> >> the message and a phantom message will be created. >> >> >> >> Change from my notes: >> >> >> >> # if ( /^From / >> >> # -to- >> >> # if ( /^From .*? \d\d:\d\d:\d\d \d\d\d\d/ >> >> >> >> . I never could figure out where the second bug was. This one created >> >> some messages with blank subject lines. >> >> You have a badly formatted mbox file, if there is such distinction >> neccessary: > > No. There are some variants of mbox format. > See https://en.wikipedia.org/wiki/Mbox#Family > RFC 4155 o Each message in the mbox database MUST be immediately preceded by a single separator line, which MUST conform to the following syntax: The exact character sequence of "From"; a single Space character (0x20); the email address of the message sender (as obtained from the message envelope or other authoritative source), conformant with the "addr-spec" syntax from RFC 2822; >> http://manpages.ubuntu.com/manpages/precise/man5/mbox.5.html >> >> " In order to avoid misinterpretation of lines in message bodies >> which >> begin with the four characters "From", followed by a space >> character, >> the mail delivery agent must quote any occurrence of "From " at >> the >> start of a body line. >> " From noel.butler at ausics.net Tue Nov 5 12:04:10 2013 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 05 Nov 2013 20:04:10 +1000 Subject: [Dovecot] =?utf-8?q?Best_way_from_Mbox_to_Maildir_using_2=2E17=3F?= In-Reply-To: <1383644664.31862.31.camel@thorin> References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> <4b0ee107261198e3c3203b10641c176d@ausics.net> <1383644664.31862.31.camel@thorin> Message-ID: <18299667c6164f61c53cdc19b9de2a67@ausics.net> On 05/11/2013 19:44, Bernd Petrovitsch wrote: > On Mon, 2013-11-04 at 19:29 +1000, Noel Butler wrote: > [...] >> think in postfix home_mailbox = Maildir/ will do it, with sendmail >> its >> much more tricky and your best sticking with mbox, if exim, NFI - dont > > Or - strategically - you use dovecot's LDA which should know where to > throw the mails in. > but using system users, you wouldnt use dovecot's LDA :) From daniele at grinta.net Tue Nov 5 12:11:09 2013 From: daniele at grinta.net (Daniele Nicolodi) Date: Tue, 05 Nov 2013 11:11:09 +0100 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: <18299667c6164f61c53cdc19b9de2a67@ausics.net> References: <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> <4b0ee107261198e3c3203b10641c176d@ausics.net> <1383644664.31862.31.camel@thorin> <18299667c6164f61c53cdc19b9de2a67@ausics.net> Message-ID: <5278C43D.9060402@grinta.net> On 05/11/2013 11:04, Noel Butler wrote: > On 05/11/2013 19:44, Bernd Petrovitsch wrote: >> On Mon, 2013-11-04 at 19:29 +1000, Noel Butler wrote: >> [...] >>> think in postfix home_mailbox = Maildir/ will do it, with sendmail >>> its >>> much more tricky and your best sticking with mbox, if exim, NFI - dont >> >> Or - strategically - you use dovecot's LDA which should know where to >> throw the mails in. >> > > but using system users, you wouldnt use dovecot's LDA :) Why not? Cheers, Daniele From noel.butler at ausics.net Tue Nov 5 13:24:49 2013 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 05 Nov 2013 21:24:49 +1000 Subject: [Dovecot] =?utf-8?q?Best_way_from_Mbox_to_Maildir_using_2=2E17=3F?= In-Reply-To: <5278C43D.9060402@grinta.net> References: "\" <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> " <4b0ee107261198e3c3203b10641c176d@ausics.net>" <1383644664.31862.31.camel@thorin> <18299667c6164f61c53cdc19b9de2a67@ausics.net> <5278C43D.9060402@grinta.net> Message-ID: <5ae538512e31a6b272629bbb427d1f44@ausics.net> On 05/11/2013 20:11, Daniele Nicolodi wrote: > On 05/11/2013 11:04, Noel Butler wrote: >> >> but using system users, you wouldnt use dovecot's LDA :) > > Why not? > pure overkill, your MTA already knows where it goes, it doesnt need to do any special lookups, would you use postfix virtual, to deliver local user? no, of course you wouldnt :) From mhlavink at redhat.com Tue Nov 5 13:52:23 2013 From: mhlavink at redhat.com (Michal Hlavinka) Date: Tue, 05 Nov 2013 12:52:23 +0100 Subject: [Dovecot] [bug] ssl-params hangs when FIPS is enabled In-Reply-To: <9853264C-AB6E-4991-AAAD-1A9C164E067B@iki.fi> References: <524B10FA.2060709@redhat.com> <9853264C-AB6E-4991-AAAD-1A9C164E067B@iki.fi> Message-ID: <5278DBF7.5020208@redhat.com> On 11/02/2013 02:31 PM, Timo Sirainen wrote: > On 1.10.2013, at 21.14, Michal Hlavinka wrote: > >> we found a bug in ssl-params. It calls openssl DH generator for 512 and 1024 bits, but in FIPS mode, openssl won't generate anything for less than 1024, so it fails with: >> error:0506A06E:Diffie-Hellman routines:DH_BUILTIN_GENPARAMS:key size too small >> >> but when DH generator fails, ssl-params hangs forever in io_loop_run: > > http://hg.dovecot.org/dovecot-2.2/rev/c472e0454ee3 should fix this. tested (whole 2.2.7) and it works fine Thanks From daniele at grinta.net Tue Nov 5 14:04:12 2013 From: daniele at grinta.net (Daniele Nicolodi) Date: Tue, 05 Nov 2013 13:04:12 +0100 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: <5ae538512e31a6b272629bbb427d1f44@ausics.net> References: "\" <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> " <4b0ee107261198e3c3203b10641c176d@ausics.net>" <1383644664.31862.31.camel@thorin> <18299667c6164f61c53cdc19b9de2a67@ausics.net> <5278C43D.9060402@grinta.net> <5ae538512e31a6b272629bbb427d1f44@ausics.net> Message-ID: <5278DEBC.9050809@grinta.net> On 05/11/2013 12:24, Noel Butler wrote: > On 05/11/2013 20:11, Daniele Nicolodi wrote: >> On 05/11/2013 11:04, Noel Butler wrote: > >>> >>> but using system users, you wouldnt use dovecot's LDA :) >> >> Why not? >> > > pure overkill, your MTA already knows where it goes, it doesnt need to > do any special lookups, would you use postfix virtual, to deliver local > user? no, of course you wouldnt :) Using dovecot-lda has nothing to do with postfix virtual users, it is the only way I know to use sieve filtering and have messages indexed at delivery. Cheers, Daniele From gumby at henkel-wallace.org Tue Nov 5 14:36:28 2013 From: gumby at henkel-wallace.org (DV Henkel-Wallace) Date: Tue, 5 Nov 2013 04:36:28 -0800 Subject: [Dovecot] s it safe to manipulate Maildir files directly? In-Reply-To: References: Message-ID: > Date: Tue, 5 Nov 2013 08:40:31 +0100 > From: Oli Schacher > > On Mon, 4 Nov 2013 21:49:59 -0800 > David Henkel-Wallace wrote: > >> Having the cron job find the messages and train spamassassin is no >> problem. The question is how to move the messages. Is it safe to >> simply rename the files from my cron job? > [...] >> If I have to go through to Dovecot I am afraid I'd need the user's >> credentials, which is not appropriate. > > you can do all this with doveadm scripts. Oli, thanks for the suggestion. It hadn't occured to me to consider doveadm. That's exactly the right tool. Regards, David From gumby at henkel-wallace.org Tue Nov 5 14:41:42 2013 From: gumby at henkel-wallace.org (DV Henkel-Wallace) Date: Tue, 5 Nov 2013 04:41:42 -0800 Subject: [Dovecot] dovecot Digest, Vol 127, Issue 7 In-Reply-To: References: Message-ID: > Date: Tue, 5 Nov 2013 08:22:57 +0100 (CET) > From: Steffen Kaiser > >> >> My specific application: I am running spamassassin and would like users >> to be able to submit spam (and ham) directly by moving it into special >> folders. > I did this before switching to antispam. > I use antispam with spool2dir now, that central directory has a inotify > watcher that trains the messages instantly. This is a great idea. In my case I think I will get away with a five minute cron job since the pickup latency should be manageable to the users and there is less to install. But I like in principle the idea of an immediate, fs-driven trigger, which would probably use fewer CPU cycles in the aggregate. > [...]all my users moved messages into spam/yes, > but copied them into spam/no Unfortunately I can't rely on users getting this right, much less understanding the difference between copy and move semantics. And I'm probably not going to be able to upgrade my users. Thanks for your advice! -d From trupheenix at gmail.com Tue Nov 5 15:30:22 2013 From: trupheenix at gmail.com (Tru Pheenix) Date: Tue, 5 Nov 2013 19:00:22 +0530 Subject: [Dovecot] Issue with postfix not handing over e-mails to dovecot Message-ID: Hello! I have installed postfix with dovecot and postgresql. I have set up SASL authentication for postfix and dovecot and been able to test them successfully. I am able to send sasl authenticated emails through smtpd on postfix using a mail client like Thunderbird. However, now I am unable to receive any e-mails. When I respond to the emails, I get a not delivered failure from postfix. I cannot figure out why postfix is not handing over the e-mails to dovecot. So here are some links to follow: posftconf output: https://gist.github.com/anonymous/7318863 doveconf output: https://gist.github.com/anonymous/7318896 tail -f /var/log/mail.* output (when receiving mail): https://gist.github.com/anonymous/7318945 Any help to solve this would be highly appreciated. Regards Tru Pheenix From joseba.torre at ehu.es Tue Nov 5 15:59:19 2013 From: joseba.torre at ehu.es (Joseba Torre) Date: Tue, 05 Nov 2013 14:59:19 +0100 Subject: [Dovecot] failed: Message has been copied too many times In-Reply-To: <5278A807.80209@um.es> References: <5268F864.8030800@um.es> <5268F941.9040908@um.es> <526E325F.7000308@um.es> <5272749B.1050201@ehu.es> <5278A807.80209@um.es> Message-ID: <5278F9B7.5020208@ehu.es> El 05/11/13 09:10, Angel L. Mateo escribi?: > El 31/10/13 16:17, Joseba Torre escribi?: >> >> Are you sure it's dovecot who is duplicating emails? I have seen this > > No, I'm not sure. > >> before (not so many copies, but the same effect) and I've always thought >> it was a thunderbird thing (in every case I've seen the client was >> thunderbird, and I think your users also use it). >> > It could be the reason. My users are using thunderbird and this > problem always happened with users with lot of automatic mails in a > mailbox, so the could be trying to delete them (although I told to some > of them and they told me that they didn't, but you know...) > In my personal case, it happens every now and then without any external activity, and definetly without any manual deleting (may be it's related to automatic filtering?) >> I've always solved with the thunderbird function to remove duplicates. >> > Where is this function? Is it a complement? I don't think so. Just right click on any folder in the folder pane, and in spanish there is a "Borrar duplicados" option. But I have installed a "Remove Duplicate Messages (Alternate)" extension, maybe this option comes from this. Aaaaaaagur. > From tpotega at wp-sa.pl Tue Nov 5 16:02:21 2013 From: tpotega at wp-sa.pl (Tomasz Potega) Date: Tue, 5 Nov 2013 15:02:21 +0100 Subject: [Dovecot] Message parser loops on certain messages (e.g. with a trailing CR character) Message-ID: <5278FA6D.6030305@wp-sa.pl> Hi, dovecot's message parser enters an endless loop when fed with certain multipart messages with stray CR characters. parse_next_body_to_boundary() assumes the '\r' might be the beginning of a boundary line, reducing the block size by one: src/lib-mail/message-parser.c: 404 /* no linefeeds in this block. we can just skip it. */ 405 ret = 0; 406 if (block_r->data[block_r->size-1] == '\r') { 407 /* this may be the beginning of the \r\n--boundary */ 408 block_r->size--; 409 } For a block size of 1 (e.g. the trailing '\r' character), dovecot ends up processing zero-sized blocks, calling message_parser_read_more() without skipping the input stream: ... #6 0x00007f94f49374c7 in i_stream_read (stream=0xbe2fc8) at istream.c:167 #7 0x00007f94f49383d5 in i_stream_read_data (stream=0xbe2fc8, data_r=0x7fff2141d6b0, size_r=0x7fff2141d6b8, threshold=1) at istream.c:497 #8 0x00007f94f4918c2b in message_parser_read_more (ctx=0xbe7c10, block_r=0x7fff2141d6a0, full_r=0x7fff2141d667) at message-parser.c:128 #9 0x00007f94f491af67 in message_parser_parse_next_block (ctx=0xbe7c10, block_r=0x7fff2141d6a0) at message-parser.c:1012 #10 0x00007f94f491b2fb in message_parser_parse_body (ctx=0xbe7c10, hdr_callback=0x7f94f4c69a75 , context=0xbf0450) at message-parser.c:1075 #11 0x00007f94f4c6a876 in index_mail_parse_body (mail=0xbecd00, field=MAIL_CACHE_IMAP_BODYSTRUCTURE) at index-mail.c:895 #12 0x00007f94f4c6aedb in index_mail_parse_bodystructure (mail=0xbecd00, field=MAIL_CACHE_IMAP_BODYSTRUCTURE) at index-mail.c:1046 #13 0x00007f94f4c6b4a5 in index_mail_get_special (_mail=0xbecd00, field=MAIL_FETCH_IMAP_BODYSTRUCTURE, value_r=0x7fff2141d958) at index-mail.c:1170 #14 0x00007f94f4bfab53 in maildir_mail_get_special (_mail=0xbecd00, field=MAIL_FETCH_IMAP_BODYSTRUCTURE, value_r=0x7fff2141d958) at maildir-mail.c:570 #15 0x00007f94f4c36ea1 in mail_get_special (mail=0xbecd00, field=MAIL_FETCH_IMAP_BODYSTRUCTURE, value_r=0x7fff2141d958) at mail.c:269 #16 0x000000000041c5d7 in fetch_bodystructure (ctx=0xbd6a48, mail=0xbecd00, context=0x0) at imap-fetch.c:678 ... You will find a sample message attached to this mail. I have added a check to see if the parser is past the EOF (and omit reducing the block size then) as a band-aid fix, but this might call for a more elegant solution. Best regards, Tomasz Pot?ga [Wirtualna Polska] Znajdziesz nas tutaj: [Wp na Facebooku] [Wp na Twitterze] [Wp na SlideShare] [Wp w Google+] [Wp na YouTube] "WIRTUALNA POLSKA" Sp??ka Akcyjna z siedzib? w Gda?sku przy ul. Traugutta 115 C, wpisana do Krajowego Rejestru S?dowego - Rejestru Przedsi?biorc?w prowadzonego przez S?d Rejonowy Gda?sk - P??noc w Gda?sku pod numerem KRS 0000068548, o kapitale zak?adowym 67.980.024,00 z?otych op?aconym w ca?o?ci oraz Numerze Identyfikacji Podatkowej 957-07-51-216. -------------- next part -------------- Message-ID: <526F7EEF.4020507 at wp-sa.pl> Date: Tue, 29 Oct 2013 10:25:03 +0100 From: Tomasz Potega User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130917 Thunderbird/17.0.9 To: Tomasz Potega Subject: test Content-Type: multipart/mixed; boundary="------------020801050602010609000403" Return-Path: tpotega at wp-sa.pl MIME-Version: 1.0 --------------020801050602010609000403 Content-Type: text/plain; charset="ISO-8859-2"; format=flowed Content-Transfer-Encoding: 7bit --------------020801050602010609000403 Content-Type: text/plain; charset="UTF-8"; name="redhat-release" Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename="redhat-release" CentOS release 6.4 (Final) From mhlavink at redhat.com Tue Nov 5 16:42:58 2013 From: mhlavink at redhat.com (Michal Hlavinka) Date: Tue, 05 Nov 2013 15:42:58 +0100 Subject: [Dovecot] [bug] ssl-params hangs when FIPS is enabled In-Reply-To: <9853264C-AB6E-4991-AAAD-1A9C164E067B@iki.fi> References: <524B10FA.2060709@redhat.com> <9853264C-AB6E-4991-AAAD-1A9C164E067B@iki.fi> Message-ID: <527903F2.40809@redhat.com> On 11/02/2013 02:31 PM, Timo Sirainen wrote: > On 1.10.2013, at 21.14, Michal Hlavinka wrote: > >> we found a bug in ssl-params. It calls openssl DH generator for 512 and 1024 bits, but in FIPS mode, openssl won't generate anything for less than 1024, so it fails with: >> error:0506A06E:Diffie-Hellman routines:DH_BUILTIN_GENPARAMS:key size too small >> >> but when DH generator fails, ssl-params hangs forever in io_loop_run: > > http://hg.dovecot.org/dovecot-2.2/rev/c472e0454ee3 should fix this. I spoke too soon. Original issue is fixed - when FIPS mode is enabled, ssl-params no longer fails. On the other hand, underlaying problem still exists. When ssl-params fails (for whatever reason) it gets stuck. One way to reproduce it is chroot without /dev populated # /usr/libexec/dovecot/ssl-params Info: Generating SSL parameters Fatal: DH_generate_parameters(bits=1024, gen=2) failed: error:24064064:lib(36):func(100):reason(100) Error: child process failed with status 22784 -> ssl-params is stuck From wildfire at progsoc.org Tue Nov 5 16:12:48 2013 From: wildfire at progsoc.org (Anand Kumria) Date: Tue, 5 Nov 2013 14:12:48 +0000 Subject: [Dovecot] increased core dumps with v2.2.7 Message-ID: Hi, After upgrading to v2.2.7 yesterday, I am starting to get a larger number of bugs occurring -- unfortunately I hadn't configured things to save core dumps (now done). But I am seeing things like: dovecot: imap(user at example.com): Fatal: master: service(imap): child 27931 killed with signal 11 (core dumped) kernel: [151706.763475] imap[4878]: segfault at 7fff53b0aff8 ip 00007fdc7ed65ece sp 00007fff53b0b000 error 6 in lib20_zlib_plugin.so[7fdc7ed61000+7000] dovecot: imap(user2 at example.com): Fatal: master: service(imap): child 4870 killed with signal 11 (core dumped) As soon as I have more info., I'll let you know. A From forums at artfulrobot.com Tue Nov 5 17:54:07 2013 From: forums at artfulrobot.com (Rich) Date: Tue, 05 Nov 2013 15:54:07 +0000 Subject: [Dovecot] Config problem: want SSL + local roundcube Message-ID: <5279149F.3080907@artfulrobot.com> Hi, Have used dovecot for many years, happy that it worked well without me needing to do anything much! But since the upgrade from v1 to v2.1.7-7 I've come across some config probs. I want IMAP and to force TLS for all internet connections. However, I run RoundCube on the same server (over https) and this needs access too, but this doesn't need to be TLS because it's local anyway. The auto-config update script made some changes, it added the following to force SSL. service imap-login { inet_listener imap { port = 0 } } ssl = required But this seems to forbid the local roundcube service from logging in. Can anyone help me with my config? I had a stab, adding the following, but it didn't work. Was a complete guess anyway! remote 127.0.0.1 { ssl = no service imap-login { inet_listener imap { port = 143 } } } Here's my full config: # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-amd64 x86_64 Debian 7.2 ext3 auth_default_realm = artfulrobot.com log_timestamp = "%Y-%m-%d %H:%M:%S " mail_location = maildir:/home/virtual/%d/%n mail_privileged_group = mail passdb { args = username_format=%n /etc/exim4/virtual_domains/%d/passwords driver = passwd-file } protocols = imap service auth { unix_listener auth-client { group = Debian-exim mode = 0660 } user = root } service imap-login { inet_listener imap { port = 0 } } ssl = required ssl_cert = References: <5279149F.3080907@artfulrobot.com> Message-ID: <5279153F.8070501@thelounge.net> Am 05.11.2013 16:54, schrieb Rich: > Have used dovecot for many years, happy that it worked well without me needing to do anything much! But since the > upgrade from v1 to v2.1.7-7 I've come across some config probs. > > I want IMAP and to force TLS for all internet connections. However, I run RoundCube on the same server (over https) > and this needs access too, but this doesn't need to be TLS because it's local anyway does it hurt? no! does it hurt make the config more complex than needed? yes! so leave roundcube use TLS on 127.0.0.1 and you are done you are not the first one seeking a solution for this non existing problem -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From forums at artfulrobot.com Tue Nov 5 18:35:15 2013 From: forums at artfulrobot.com (Rich) Date: Tue, 05 Nov 2013 16:35:15 +0000 Subject: [Dovecot] Config problem: want SSL + local roundcube In-Reply-To: <5279153F.8070501@thelounge.net> References: <5279149F.3080907@artfulrobot.com> <5279153F.8070501@thelounge.net> Message-ID: <52791E43.5020500@artfulrobot.com> On 05/11/13 15:56, Reindl Harald wrote: > does it hurt? no! My SSL certificate is of course invalid for 127.0.0.1 and I could not get RC to connect on port 993 for some reason (although that's probably for a RC mailing list, granted). From dar at darklajid.de Tue Nov 5 18:45:12 2013 From: dar at darklajid.de (Benjamin Podszun) Date: Tue, 05 Nov 2013 17:45:12 +0100 Subject: [Dovecot] Config problem: want SSL + local roundcube In-Reply-To: <52791E43.5020500@artfulrobot.com> References: <5279149F.3080907@artfulrobot.com> <5279153F.8070501@thelounge.net> <52791E43.5020500@artfulrobot.com> Message-ID: <0c6c51bd-9efe-4525-9ca6-d78ad069785e@darklajid.de> On Tuesday, November 5, 2013 5:35:15 PM CEST, Rich wrote: > On 05/11/13 15:56, Reindl Harald wrote: >> does it hurt? no! > > My SSL certificate is of course invalid for 127.0.0.1 and I > could not get RC to connect on port 993 for some reason > (although that's probably for a RC mailing list, granted). > I guess the question is mostly "Why isn't RC connecting to your certificate's CN like everyone else"? Why 127.0.0.1, not example.com? From h.reindl at thelounge.net Tue Nov 5 18:45:55 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 05 Nov 2013 17:45:55 +0100 Subject: [Dovecot] Config problem: want SSL + local roundcube In-Reply-To: <52791E43.5020500@artfulrobot.com> References: <5279149F.3080907@artfulrobot.com> <5279153F.8070501@thelounge.net> <52791E43.5020500@artfulrobot.com> Message-ID: <527920C3.6030405@thelounge.net> Am 05.11.2013 17:35, schrieb Rich: > On 05/11/13 15:56, Reindl Harald wrote: >> does it hurt? no! > > My SSL certificate is of course invalid for 127.0.0.1 have you tried that it matters or do you only guess? http://trac.roundcube.net/ticket/1485771 > and I could not get RC to connect on port 993 for some reason http://trac.roundcube.net/wiki/Howto_Config 'default_host' By default the login screen provides a text box where you need to enter the IMAP host which you want to connect to. This box can be hidden by setting one fixed IMAP host address: $rcmail_config['default_host'] = 'localhost'; To use SSL/TLS connection, enter the hostname with prefix "ssl://" or "tls://" And if you want a drop-down list like it's explained in the comments you need something like this: $rcmail_config['default_host'] = array('mail.example.com', 'webmail.example.com', 'ssl://mail.example.com:993'); -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From forums at artfulrobot.com Tue Nov 5 18:50:13 2013 From: forums at artfulrobot.com (Rich) Date: Tue, 05 Nov 2013 16:50:13 +0000 Subject: [Dovecot] Config problem: want SSL + local roundcube In-Reply-To: <527920C3.6030405@thelounge.net> References: <5279149F.3080907@artfulrobot.com> <5279153F.8070501@thelounge.net> <52791E43.5020500@artfulrobot.com> <527920C3.6030405@thelounge.net> Message-ID: <527921C5.1010700@artfulrobot.com> Ok, thanks for your time, let's end this thread. Seems it's probably more a RC thing than a Dovecot thing. Still can't get it to work (yes I'd already RTFM'ed and tried all the various RC config options) but happy to ask over at RC instead. Thanks. Rich From claus.r at bayern-mail.de Tue Nov 5 15:52:20 2013 From: claus.r at bayern-mail.de (claus) Date: Tue, 05 Nov 2013 14:52:20 +0100 Subject: [Dovecot] Problem migration from cyrus with imapc Message-ID: <1e175ac4736d2f2d3b3e8b79bbacc3e2@bayern-mail.de> Hi all, i have problem with namespace when i try to migrate from cyrus to dovecot with imapc. If i login to the old cyrus i get: telnet 192.168.8.164 143 Trying 192.168.8.164... Connected to 192.168.8.164. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready. a login testbox at old.cyrus.de secret a namespace a OK [CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE STARTTLS AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR X-NETSCAPE] User logged in * NAMESPACE (("INBOX." ".")) NIL (("" ".")) a OK Completed a list "" "*" * LIST (\HasChildren) "." "INBOX" * LIST (\HasNoChildren) "." "INBOX.Drafts" * LIST (\HasNoChildren) "." "INBOX.Gesendete Mails" * LIST (\HasNoChildren) "." "INBOX.Sent" * LIST (\HasNoChildren) "." "INBOX.Trash" * LIST (\HasNoChildren) "." "INBOX.spam" * LIST (\HasChildren) "." "INBOX.test1" * LIST (\HasNoChildren) "." "INBOX.test1.test11" a OK Completed after migration with: root at dovecot-backend1:~ # dsync -o imapc_user=testbox at old.cyrus.de -o imapc_password=secret -o imapc_host=192.168.8.164 -o imapc_features=rfc822.size -o mailbox_list_index=no -Dv backup -R -u m1234567890 imapc: i get the folowing result: telnet 192.168.8.164 143 Trying 192.168.8.164... Connected to 192.168.8.164. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready. a login testmig at example.org test a OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS SPECIAL-USE BINARY MOVE QUOTA] Logged in a namespace * NAMESPACE (("INBOX." ".")) NIL NIL a OK Namespace completed. a list "" "*" * LIST (\HasChildren) "." INBOX * LIST (\HasNoChildren) "." INBOX.INBOX.Drafts * LIST (\HasNoChildren) "." "INBOX.INBOX.Gesendete Mails" * LIST (\HasNoChildren) "." INBOX.INBOX.Sent * LIST (\HasNoChildren) "." INBOX.INBOX.Trash * LIST (\HasNoChildren) "." INBOX.INBOX.spam * LIST (\HasChildren) "." INBOX.INBOX.test1 * LIST (\HasNoChildren) "." INBOX.INBOX.test1.test11 * LIST (\Noselect \HasChildren) "." INBOX.INBOX a OK List completed. Can everyone explain me where the extra "prefix INBOX" came from and how i can resolve that? The migration should be transparent for users. Did you need any extra informations? 192.168.8.164 is a dovecot-proxy. Consolelog of dsync and doveconf -n follows. Thanks! claus root at dovecot-backend1:~ # doveconf -n # 2.2.6: /etc/dovecot/dovecot.conf # OS: Linux 3.0.93-0.8-xen x86_64 SUSE Linux Enterprise Server 11 (x86_64) auth_debug = yes auth_master_user_separator = * auth_verbose = yes disable_plaintext_auth = no login_trusted_networks = 192.168.8.164/32 mail_debug = yes mail_location = mdbox:~/mdbox:ALT=/altstorage/%h/mdbox mail_plugins = " quota stats" managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { inbox = yes list = children location = prefix = INBOX. separator = . type = private } passdb { args = /etc/dovecot/dovecot-sql-master.conf.ext driver = sql master = yes pass = yes } passdb { args = /etc/dovecot/dovecot-sql.conf.ext default_fields = userdb_home=/vmail/%1Mu/%2.1Mu/%u driver = sql } plugin { quota = dict:User quota::file:%h/dovecot-quota quota_rule = *:storage=10240 sieve = ~/.dovecot.sieve sieve_dir = ~/sieve stats_refresh = 10 secs stats_track_cmds = yes } postmaster_address = postmaster at mnet-online.de protocols = imap pop3 lmtp sieve service imap { executable = imap postlogin } service lmtp { inet_listener lmtp { address = port = 24 } } service managesieve-login { inet_listener sieve { port = 4190 } } service pop3 { executable = pop3 postlogin } service postlogin { executable = script-login -d rawlog -b } service stats { fifo_listener stats-mail { mode = 0666 user = vmail } } ssl = no userdb { driver = prefetch } userdb { args = /etc/dovecot/dovecot-sql.conf.ext default_fields = home=/vmail/%1Mu/%2.1Mu/%u driver = sql } verbose_proctitle = yes protocol lmtp { mail_plugins = " quota stats sieve" } protocol imap { mail_plugins = " quota stats imap_quota imap_stats" } root at dovecot-backend1:~ # root at dovecot-backend1:~ # dsync -o imapc_user=testbox at old.cyrus.de -o imapc_password=secret -o imapc_host=1 92.168.8.164 -o imapc_features=rfc822.size -o mailbox_list_index=no -Dv backup -R -u m1234567890 imapc: doveadm(root): Debug: Loading modules from directory: /usr/lib64/dovecot/modules doveadm(root): Debug: Module loaded: /usr/lib64/dovecot/modules/lib10_quota_plugin.so doveadm(root): Debug: Module loaded: /usr/lib64/dovecot/modules/lib90_stats_plugin.so doveadm(root): Debug: Loading modules from directory: /usr/lib64/dovecot/modules/doveadm doveadm(root): Debug: Skipping module doveadm_acl_plugin, because dlopen() failed: /usr/lib64/dovecot/modules/dovead m/lib10_doveadm_acl_plugin.so: undefined symbol: acl_user_module (this is usually intentional, so just ignore this m essage) doveadm(root): Debug: Skipping module doveadm_expire_plugin, because dlopen() failed: /usr/lib64/dovecot/modules/dov eadm/lib10_doveadm_expire_plugin.so: undefined symbol: expire_set_deinit (this is usually intentional, so just ignor e this message) doveadm(root): Debug: Module loaded: /usr/lib64/dovecot/modules/doveadm/lib10_doveadm_quota_plugin.so doveadm(root): Debug: Module loaded: /usr/lib64/dovecot/modules/doveadm/lib10_doveadm_sieve_plugin.so doveadm(root): Debug: Skipping module doveadm_fts_plugin, because dlopen() failed: /usr/lib64/dovecot/modules/dovead m/lib20_doveadm_fts_plugin.so: undefined symbol: fts_backend_rescan (this is usually intentional, so just ignore thi s message) doveadm(m1234567890): Debug: auth input: m1234567890 home=/vmail/0/e/m1234567890 uid=10000 gid=10000 doveadm(m1234567890): Debug: Effective uid=10000, gid=10000, home=/vmail/0/e/m1234567890 doveadm(m1234567890): Debug: Quota root: name=User quota backend=dict args=:file:/vmail/0/e/m1234567890/dovecot-quot a doveadm(m1234567890): Debug: Quota rule: root=User quota mailbox=* bytes=10485760 messages=0 doveadm(m1234567890): Debug: Quota grace: root=User quota bytes=1048576 (10%) doveadm(m1234567890): Debug: dict quota: user=m1234567890, uri=file:/vmail/0/e/m1234567890/dovecot-quota, noenforcin g=0 doveadm(m1234567890): Debug: Namespace inbox: type=private, prefix=INBOX., sep=., inbox=yes, hidden=no, list=yes, su bscriptions=yes location=mdbox:~/mdbox:ALT=/altstorage//vmail/0/e/m1234567890/mdbox doveadm(m1234567890): Debug: fs: root=/vmail/0/e/m1234567890/mdbox, index=, indexpvt=, control=, inbox=, alt=/altsto rage//vmail/0/e/m1234567890/mdbox doveadm(m1234567890): Debug: Namespace : type=private, prefix=, sep=, inbox=no, hidden=yes, list=no, subscriptions=n o location=fail::LAYOUT=none doveadm(m1234567890): Debug: none: root=, index=, indexpvt=, control=, inbox=, alt= doveadm(m1234567890): Debug: Namespace INBOX.: Using permissions from /vmail/0/e/m1234567890/mdbox: mode=0700 gid=de fault dsync(m1234567890): Debug: Effective uid=10000, gid=10000, home=/vmail/0/e/m1234567890 dsync(m1234567890): Debug: Quota root: name=User quota backend=dict args=:file:/vmail/0/e/m1234567890/dovecot-quota dsync(m1234567890): Debug: Quota rule: root=User quota mailbox=* bytes=10485760 messages=0 dsync(m1234567890): Debug: Quota grace: root=User quota bytes=1048576 (10%) dsync(m1234567890): Debug: dict quota: user=m1234567890, uri=file:/vmail/0/e/m1234567890/dovecot-quota, noenforcing= 0 dsync(m1234567890): Debug: Namespace inbox: type=private, prefix=INBOX., sep=., inbox=yes, hidden=no, list=yes, subs criptions=yes location=imapc: dsync(m1234567890): Debug: imapc(192.168.8.164:143): Looking up IP address dsync(m1234567890): Debug: imapc(192.168.8.164:143): Connecting to 192.168.8.164:143 dsync(m1234567890): Debug: imapc(192.168.8.164:143): Server capabilities: IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5 dsync(m1234567890): Debug: imapc(192.168.8.164:143): Authenticating as testbox at post-ist-da.de dsync(m1234567890): Debug: imapc(192.168.8.164:143): Server capabilities: IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX -REFERRALS NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT THREAD=ORDEREDSUBJECT THR EAD=REFERENCES ANNOTATEMORE IDLE STARTTLS AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR X-NETSCAPE dsync(m1234567890): Debug: imapc(192.168.8.164:143): Authenticated successfully dsync(m1234567890): Debug: imapc: root=, index=, indexpvt=, control=, inbox=, alt= dsync(m1234567890): Debug: Namespace : type=private, prefix=, sep=, inbox=no, hidden=yes, list=no, subscriptions=no location=fail::LAYOUT=none dsync(m1234567890): Debug: none: root=, index=, indexpvt=, control=, inbox=, alt= dsync(m1234567890): Debug: brain M: in state=master_recv_handshake dsync(m1234567890): Debug: brain M: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=send_mailbox_tree dsync(m1234567890): Debug: brain M: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=send_mailbox_tree dsync(m1234567890): Debug: brain M: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=send_mailbox_tree dsync(m1234567890): Debug: brain M: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=send_mailbox_tree dsync(m1234567890): Debug: brain M: out state=send_mailbox_tree_deletes changed=1 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=send_mailbox_tree_deletes dsync(m1234567890): Debug: brain M: out state=recv_mailbox_tree changed=1 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=recv_mailbox_tree dsync(m1234567890): Debug: brain M: out state=recv_mailbox_tree changed=0 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=recv_mailbox_tree dsync(m1234567890): Debug: brain M: out state=recv_mailbox_tree changed=0 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=recv_mailbox_tree dsync(m1234567890): Debug: brain M: out state=recv_mailbox_tree changed=0 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=recv_mailbox_tree dsync(m1234567890): Debug: brain M: out state=recv_mailbox_tree changed=0 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=recv_mailbox_tree dsync(m1234567890): Debug: brain M: out state=recv_mailbox_tree changed=0 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree dsync(m1234567890): Debug: brain S: out state=send_mailbox_tree_deletes changed=1 dsync(m1234567890): Debug: brain M: in state=recv_mailbox_tree dsync(m1234567890): Debug: brain M: out state=recv_mailbox_tree_deletes changed=1 dsync(m1234567890): Debug: brain S: in state=send_mailbox_tree_deletes dsync(m1234567890): Debug: brain S: out state=recv_mailbox_tree changed=1 dsync(m1234567890): Debug: brain M: in state=recv_mailbox_tree_deletes dsync(m1234567890): Debug: doveadm-sieve: Iterating Sieve mailbox attributes dsync(m1234567890): Debug: sieve: Pigeonhole version 0.4.2 initializing dsync(m1234567890): Debug: sieve: include: sieve_global_dir is not set; it is currently not possible to include `:gl obal' scripts. dsync(m1234567890): Debug: sieve-storage: using active sieve script path: /vmail/0/e/m1234567890/.dovecot.sieve dsync(m1234567890): Debug: sieve-storage: using sieve script storage directory: /vmail/0/e/m1234567890/sieve dsync(m1234567890): Debug: sieve-storage: permission lookup failed from /vmail/0/e/m1234567890/sieve dsync(m1234567890): Debug: sieve-storage: created storage directory /vmail/0/e/m1234567890/sieve/tmp dsync(m1234567890): Debug: sieve-storage: relative path to sieve storage in active link: sieve/ dsync(m1234567890): Debug: Namespace INBOX.: /vmail/0/e/m1234567890/mdbox/mailboxes/INBOX doesn't exist yet, using d efault permissions dsync(m1234567890): Debug: Namespace INBOX.: Using permissions from /vmail/0/e/m1234567890/mdbox: mode=0700 gid=defa ult dsync(m1234567890): Debug: Namespace INBOX.: /vmail/0/e/m1234567890/mdbox/mailboxes/INBOX/Drafts doesn't exist yet, using default permissions dsync(m1234567890): Debug: Namespace INBOX.: /vmail/0/e/m1234567890/mdbox/mailboxes/INBOX/Gesendete Mails doesn't ex ist yet, using default permissions dsync(m1234567890): Debug: Namespace INBOX.: /vmail/0/e/m1234567890/mdbox/mailboxes/INBOX/Sent doesn't exist yet, us ing default permissions dsync(m1234567890): Debug: Namespace INBOX.: /vmail/0/e/m1234567890/mdbox/mailboxes/INBOX/Trash doesn't exist yet, u sing default permissions dsync(m1234567890): Debug: Namespace INBOX.: /vmail/0/e/m1234567890/mdbox/mailboxes/INBOX/spam doesn't exist yet, us ing default permissions dsync(m1234567890): Debug: Namespace INBOX.: /vmail/0/e/m1234567890/mdbox/mailboxes/INBOX/test1 doesn't exist yet, u sing default permissions dsync(m1234567890): Debug: Namespace INBOX.: /vmail/0/e/m1234567890/mdbox/mailboxes/INBOX/test1/test11 doesn't exist yet, using default permissions dsync(m1234567890): Debug: brain M: out state=master_send_mailbox changed=1 dsync(m1234567890): Debug: brain S: in state=recv_mailbox_tree dsync(m1234567890): Debug: brain S: out state=recv_mailbox_tree_deletes changed=1 dsync(m1234567890): Debug: brain M: in state=master_send_mailbox dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=recv_mailbox_tree_deletes dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mailbox send_state=mailbox dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mailbox send_state=mailbox changed=0 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=0 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: doveadm-sieve: Iterating Sieve mailbox attributes dsync(m1234567890): Debug: sieve: Pigeonhole version 0.4.2 initializing dsync(m1234567890): Debug: sieve: include: sieve_global_dir is not set; it is currently not possible to include `:gl obal' scripts. dsync(m1234567890): Debug: sieve-storage: using active sieve script path: /vmail/0/e/m1234567890/.dovecot.sieve dsync(m1234567890): Debug: sieve-storage: using sieve script storage directory: /vmail/0/e/m1234567890/sieve dsync(m1234567890): Debug: sieve-storage: using permissions from /vmail/0/e/m1234567890/sieve: mode=0700 gid=-1 dsync(m1234567890): Debug: sieve-storage: relative path to sieve storage in active link: sieve/ dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mailbox send_state=mailbox dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=attributes send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=attributes dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=changes changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=attributes send_state=mail_requests dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=changes send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=changes dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=changes changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=changes send_state=mail_requests dsync(m1234567890): Debug: brain M: Import INBOX: Import change GUID= UID=17 hdr_hash=1789a3a22dd73779304ac0b58acc37 a4 dsync(m1234567890): Debug: brain M: Import INBOX: Last common UID=0 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=changes send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=changes dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=changes changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=changes send_state=mail_requests dsync(m1234567890): Debug: brain M: Import INBOX: Import change GUID= UID=66 hdr_hash=774ba1d07279fbe1d87762463a8ab8 27 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=changes send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=changes dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=changes changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=changes send_state=mail_requests dsync(m1234567890): Debug: brain M: Import INBOX: Import change GUID= UID=272 hdr_hash=68a2925178bf0e3dda93c8b77229a f3b dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=changes send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=changes dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=changes changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=changes send_state=mail_requests dsync(m1234567890): Debug: brain M: Import INBOX: Import change GUID= UID=2721 hdr_hash=68a2925178bf0e3dda93c8b77229 af3b dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=changes send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=changes dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=changes changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=changes send_state=mail_requests dsync(m1234567890): Debug: brain M: Import INBOX: Import change GUID= UID=2822 hdr_hash=d5c0ccf93da2b285badf6e43cb95 856d dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=changes send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=changes dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=changes changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=changes send_state=mail_requests dsync(m1234567890): Debug: brain M: Import INBOX: Import change GUID= UID=2826 hdr_hash=5626d629f014622b9cafbe769542 de7f dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=changes send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=changes dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=changes changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=changes send_state=mail_requests dsync(m1234567890): Debug: brain M: Import INBOX: Import change GUID= UID=2827 hdr_hash=c76df14284fa8963e7c2abd677b0 b4e6 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=changes send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=changes dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=changes send_state=mail_requests dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=mail_requests dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=mail_requests dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=mail_requests dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=mail_requests dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=mail_requests dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=mail_requests dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=mail_requests changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=mail_requests send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=mail_requests dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=mail_requests send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=recv_last_common send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=done dsync(m1234567890): Debug: brain M: import mail uid 17 guid dsync(m1234567890): Debug: brain M: Import INBOX: Import mail body for GUID= UID=17 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=recv_last_common send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=recv_last_common send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=done dsync(m1234567890): Debug: brain M: import mail uid 66 guid dsync(m1234567890): Debug: brain M: Import INBOX: Import mail body for GUID= UID=66 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=recv_last_common send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=recv_last_common send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=done dsync(m1234567890): Debug: brain M: import mail uid 272 guid dsync(m1234567890): Debug: brain M: Import INBOX: Import mail body for GUID= UID=272 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=recv_last_common send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=recv_last_common send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=done dsync(m1234567890): Debug: brain M: import mail uid 2721 guid dsync(m1234567890): Debug: brain M: Import INBOX: Import mail body for GUID= UID=2721 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=recv_last_common send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=recv_last_common send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=done dsync(m1234567890): Debug: brain M: import mail uid 2822 guid dsync(m1234567890): Debug: brain M: Import INBOX: Import mail body for GUID= UID=2822 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=recv_last_common send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=recv_last_common send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=done dsync(m1234567890): Debug: brain M: import mail uid 2826 guid dsync(m1234567890): Debug: brain M: Import INBOX: Import mail body for GUID= UID=2826 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=recv_last_common send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=recv_last_common send_state=mails changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=done dsync(m1234567890): Debug: brain M: import mail uid 2827 guid dsync(m1234567890): Debug: brain M: Import INBOX: Import mail body for GUID= UID=2827 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=mails send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=recv_last_common send_state=mails dsync(m1234567890): Debug: brain S: out box 'INBOX' recv_state=recv_last_common send_state=done changed=1 dsync(m1234567890): Debug: brain S: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=mails send_state=done dsync(m1234567890): Debug: brain M: Import INBOX: Saved UIDs: 17,66,272,2721,2822,2826:2827 dsync(m1234567890): Debug: brain M: Import INBOX: Finish update: min_next_uid=2828 min_first_recent_uid=1 min_highes t_modseq=1 min_highest_pvt_modseq=0 dsync(m1234567890): Debug: brain M: Import INBOX: Reassign UIDs: 1:16,18:65,67:271,273:2720,2722:2821,2823:2825 dsync(m1234567890): Debug: brain M: out box 'INBOX' recv_state=recv_last_common send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=sync_mails dsync(m1234567890): Debug: brain S: in box 'INBOX' recv_state=recv_last_common send_state=done dsync(m1234567890): Debug: brain S: out box '' recv_state=recv_last_common send_state=done changed=1 dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX' recv_state=recv_last_common send_state=done dsync(m1234567890): Debug: brain M: out box '' recv_state=recv_last_common send_state=done changed=1 dsync(m1234567890): Debug: brain M: out state=master_send_mailbox changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=0 dsync(m1234567890): Debug: brain M: in state=master_send_mailbox dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX.INBOX.Drafts' recv_state=mailbox send_state=mailbox dsync(m1234567890): Debug: brain M: out box '' recv_state=mailbox send_state=mailbox changed=1 dsync(m1234567890): Debug: brain M: out state=master_send_mailbox changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=0 dsync(m1234567890): Debug: brain M: in state=master_send_mailbox dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX.INBOX.Gesendete Mails' recv_state=mailbox send_state=mailbox dsync(m1234567890): Debug: brain M: out box '' recv_state=mailbox send_state=mailbox changed=1 dsync(m1234567890): Debug: brain M: out state=master_send_mailbox changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=0 dsync(m1234567890): Debug: brain M: in state=master_send_mailbox dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX.INBOX.Sent' recv_state=mailbox send_state=mailbox dsync(m1234567890): Debug: brain M: out box '' recv_state=mailbox send_state=mailbox changed=1 dsync(m1234567890): Debug: brain M: out state=master_send_mailbox changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=0 dsync(m1234567890): Debug: brain M: in state=master_send_mailbox dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX.INBOX.Trash' recv_state=mailbox send_state=mailbox dsync(m1234567890): Debug: brain M: out box '' recv_state=mailbox send_state=mailbox changed=1 dsync(m1234567890): Debug: brain M: out state=master_send_mailbox changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=0 dsync(m1234567890): Debug: brain M: in state=master_send_mailbox dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX.INBOX.spam' recv_state=mailbox send_state=mailbox dsync(m1234567890): Debug: brain M: out box '' recv_state=mailbox send_state=mailbox changed=1 dsync(m1234567890): Debug: brain M: out state=master_send_mailbox changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=0 dsync(m1234567890): Debug: brain M: in state=master_send_mailbox dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX.INBOX.test1' recv_state=mailbox send_state=mailbox dsync(m1234567890): Debug: brain M: out box '' recv_state=mailbox send_state=mailbox changed=1 dsync(m1234567890): Debug: brain M: out state=master_send_mailbox changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=0 dsync(m1234567890): Debug: brain M: in state=master_send_mailbox dsync(m1234567890): Debug: brain M: out state=sync_mails changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=1 dsync(m1234567890): Debug: brain M: in state=sync_mails dsync(m1234567890): Debug: brain M: in box 'INBOX.INBOX.test1.test11' recv_state=mailbox send_state=mailbox dsync(m1234567890): Debug: brain M: out box '' recv_state=mailbox send_state=mailbox changed=1 dsync(m1234567890): Debug: brain M: out state=master_send_mailbox changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=slave_recv_mailbox changed=0 dsync(m1234567890): Debug: brain M: in state=master_send_mailbox dsync(m1234567890): Debug: brain M: out state=done changed=1 dsync(m1234567890): Debug: brain S: in state=slave_recv_mailbox dsync(m1234567890): Debug: brain S: out state=done changed=1 dsync(m1234567890): Debug: brain M: in state=done dsync(m1234567890): Debug: brain M: out state=done changed=1 dsync(m1234567890): Debug: brain S: in state=done dsync(m1234567890): Debug: brain S: out state=done changed=1 dsync(m1234567890): Debug: imapc(192.168.8.164:143): Disconnected root at dovecot-backend1:~ # From tss at iki.fi Tue Nov 5 20:02:07 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 5 Nov 2013 20:02:07 +0200 Subject: [Dovecot] increased core dumps with v2.2.7 In-Reply-To: References: Message-ID: <4AC24F2B-45A3-43F1-A3DF-DFFC215D6E39@iki.fi> On 5.11.2013, at 16.12, Anand Kumria wrote: > After upgrading to v2.2.7 yesterday, I am starting to get a larger number > of bugs occurring -- unfortunately I hadn't configured things to save core > dumps (now done). > > > But I am seeing things like: > > dovecot: imap(user at example.com): Fatal: master: service(imap): child > 27931 killed with signal 11 (core dumped) > > kernel: [151706.763475] imap[4878]: segfault at 7fff53b0aff8 ip > 00007fdc7ed65ece sp 00007fff53b0b000 error 6 in > lib20_zlib_plugin.so[7fdc7ed61000+7000] Most likely http://hg.dovecot.org/dovecot-2.2/rev/10c0aae82d0d fixes this. From wildfire at progsoc.org Tue Nov 5 19:50:14 2013 From: wildfire at progsoc.org (Anand Kumria) Date: Tue, 5 Nov 2013 17:50:14 +0000 Subject: [Dovecot] infinite loop (causing crash) whilst closing connection Message-ID: Hi Timo, As a follow-up to my earlier email, I've managed to get a few backtraces now. #305439 o_stream_close (stream=0x1680c10) at ostream.c:85 #305440 0x00007ff222f70f3c in o_stream_zlib_send_outbuf (zstream=0x1680b80) at ostream-zlib.c:97 #305441 0x00007ff222f70fef in o_stream_zlib_send_flush (zstream=0x1680b80) at ostream-zlib.c:182 #305442 0x00007ff222f711cb in o_stream_zlib_flush (stream=) at ostream-zlib.c:222 #305443 0x00007ff2243f142d in o_stream_flush (stream=0x1680c10) at ostream.c:147 #305444 0x00007ff222f70ddf in o_stream_zlib_close (stream=0x1680b80, close_parent=true) at ostream-zlib.c:35 #305445 0x00007ff2243f12ce in o_stream_close_full (close_parents=true, stream=0x1680c10) at ostream.c:49 #305446 o_stream_close (stream=0x1680c10) at ostream.c:85 #305447 0x00007ff222f70f3c in o_stream_zlib_send_outbuf (zstream=0x1680b80) at ostream-zlib.c:97 #305448 0x00007ff222f70fef in o_stream_zlib_send_flush (zstream=0x1680b80) at ostream-zlib.c:182 #305449 0x00007ff222f711cb in o_stream_zlib_flush (stream=) at ostream-zlib.c:222 #305450 0x00007ff2243f142d in o_stream_flush (stream=0x1680c10) at ostream.c:147 #305451 0x00007ff222f70ddf in o_stream_zlib_close (stream=0x1680b80, close_parent=true) at ostream-zlib.c:35 #305452 0x00007ff2243f12ce in o_stream_close_full (close_parents=true, stream=0x1680c10) at ostream.c:49 #305453 o_stream_close (stream=0x1680c10) at ostream.c:85 #305454 0x00007ff222f70f3c in o_stream_zlib_send_outbuf (zstream=0x1680b80) at ostream-zlib.c:97 #305455 0x00007ff222f710ff in o_stream_zlib_send_flush (zstream=0x1680b80) at ostream-zlib.c:193 #305456 0x00007ff222f71491 in o_stream_zlib_sendv (stream=0x1680b80, iov=0x7fff6b3e1870, iov_count=1) at ostream-zlib.c:257 #305457 0x00007ff2243f1785 in o_stream_sendv (stream=0x1680c10, iov=0x7fff6b3e1870, iov_count=1) at ostream.c:229 #305458 0x00007ff2243f186f in o_stream_nsendv (stream=0x1680c10, iov=, iov_count=) at ostream.c:263 #305459 0x00007ff2243f189a in o_stream_nsend (stream=, data=, size=) at ostream.c:255 #305460 0x00000000004157f0 in client_send_tagline (cmd=, data=0x423c82 "OK Close completed.") at imap-client.c:388 #305461 0x000000000040c833 in cmd_close (cmd=0x167c4d0) at cmd-close.c:37 #305462 0x000000000041707d in command_exec (cmd=0x167c4d0) at imap-commands.c:158 #305463 0x0000000000416110 in client_command_input (cmd=0x167c4d0) at imap-client.c:780 #305464 0x00000000004161f5 in client_command_input (cmd=0x167c4d0) at imap-client.c:841 #305465 0x000000000041649d in client_handle_next_command (remove_io_r=, client=0x167b8f0) at imap-client.c:879 #305466 client_handle_input (client=0x167b8f0) at imap-client.c:891 #305467 0x00000000004165de in client_continue_pending_input (client=0x167b8f0) at imap-client.c:715 #305468 0x000000000040ed89 in idle_client_input (ctx=) at cmd-idle.c:112 #305469 0x00007ff2243e8686 in io_loop_call_io (io=0x16e67e0) at ioloop.c:387 #305470 0x00007ff2243e953f in io_loop_handler_run (ioloop=) at ioloop-epoll.c:220 #305471 0x00007ff2243e8198 in io_loop_run (ioloop=0x165d730) at ioloop.c:411 #305472 0x00007ff224397b93 in master_service_run (service=0x165d5c0, callback=) at master-service.c:566 #305473 0x000000000040af18 in main (argc=1, argv=0x165d390) at main.c:400 Let me know if you need further information. This is with dovecot v2.2.7 (1:2.2.7.0-1) Thanks, Anand From tss at iki.fi Tue Nov 5 20:19:09 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 5 Nov 2013 20:19:09 +0200 Subject: [Dovecot] Message parser loops on certain messages (e.g. with a trailing CR character) In-Reply-To: <5278FA6D.6030305@wp-sa.pl> References: <5278FA6D.6030305@wp-sa.pl> Message-ID: On 5.11.2013, at 16.02, Tomasz Potega wrote: > dovecot's message parser enters an endless loop when fed with certain > multipart messages with stray CR characters. > > parse_next_body_to_boundary() assumes the '\r' might be the beginning > of a boundary line, reducing the block size by one: Thanks, fixed: http://hg.dovecot.org/dovecot-2.2/rev/aa1aede0f7f2 > I have added a check to see if the parser is past the EOF (and omit > reducing the block size then) as a band-aid fix, but this might call > for a more elegant solution. I think I did the same fix. Also I don?t think it?s possible to normally use this as a DoS attack against users, because with mail_save_crlf=no (default) the CRs are stripped. And with mail_save_crlf=yes I?m not sure if such message can even pass through SMTP servers. From frank at moltke28.B.Shuttle.DE Tue Nov 5 21:01:54 2013 From: frank at moltke28.B.Shuttle.DE (Frank Elsner) Date: Tue, 5 Nov 2013 20:01:54 +0100 Subject: [Dovecot] ssl-params regeneration with dovecot 2.2.7 Message-ID: <20131105200154.6cb53cf27a2bc57f8b0e08f0@moltke28.B.Shuttle.DE> Hello, after switching from version 2.2.7 to 2.2.7 I miss the loglines which say: ssl-params: Generating SSL parameters ssl-params: SSL parameters regeneration completed The configuration has not been changed and reads: | # 2.2.7: /usr/local/dovecot/etc/dovecot/dovecot.conf | # OS: Linux 2.6.35.14-106.fc14.i686.PAE i686 Fedora release 14 (Laughlin) ext3 | auth_mechanisms = plain login | default_vsz_limit = 512 M | first_valid_uid = 200 | last_valid_uid = 65534 | listen = * | lmtp_save_to_detail_mailbox = yes | login_greeting = c64.shuttle.de - IMAPs Service (dovecot) ready. | login_log_format_elements = %u %r %c | mail_location = maildir:/var/spool/mail/%u | mail_log_prefix = "%Us(%u,%r): " | mail_plugin_dir = /usr/dovecot/lib/dovecot/ | mail_plugins = notify quota fts fts_squat | namespace inbox { | inbox = yes | list = yes | location = | mailbox Drafts { | special_use = \Drafts | } | mailbox Gesendet { | special_use = \Sent | } | mailbox SPAM { | special_use = \Junk | } | mailbox Sent { | special_use = \Sent | } | mailbox Trash { | special_use = \Trash | } | prefix = | subscriptions = yes | type = private | } | passdb { | args = dovecot | driver = pam | } | plugin { | fts = squat | fts_squat = partial=4 full=10 | mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename flag_change append | mail_log_fields = uid box from subject msgid size flags | mail_log_group_events = yes | quota = maildir:User quota | quota_rule = *:storage=2G | quota_rule2 = Trash:storage=+100M | } | postmaster_address = postmaster at moltke28.b.shuttle.de | protocols = imap | service anvil { | client_limit = 1027 | } | service auth { | unix_listener auth-client { | group = exim | mode = 0660 | user = exim | } | } | service imap-login { | inet_listener imap { | port = 143 | } | inet_listener imaps { | port = 993 | ssl = yes | } | process_limit = 512 | process_min_avail = 10 | } | service imap-postlogin { | executable = script-login /usr/local/sbin/dovecot-imap-post-login | } | service imap { | executable = imap imap-postlogin | } | service lmtp { | inet_listener lmtp { | address = 0.0.0.0 | port = 24 | } | } | service pop3-login { | inet_listener pop3 { | port = 110 | } | inet_listener pop3s { | port = 995 | ssl = yes | } | } | service pop3 { | process_limit = 1024 | } | ssl_cert = References: "\"\\\"\\\\\\\"" <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net>" "\"" "<4b0ee107261198e3c3203b10641c176d@ausics.net>\" <1383644664.31862.31.camel@thorin> <18299667c6164f61c53cdc19b9de2a67@ausics.net> "<5278C43D.9060402@grinta.net>\"" <5ae538512e31a6b272629bbb427d1f44@ausics.net> Message-ID: <02d47a18afbec6d7eecd5abac0f95c07@junc.eu> Noel Butler skrev den 2013-11-05 12:24: > On 05/11/2013 20:11, Daniele Nicolodi wrote: >> On 05/11/2013 11:04, Noel Butler wrote: > pure overkill, your MTA already knows where it goes, it doesnt need to > do any special lookups, would you use postfix virtual, to deliver > local user? no, of course you wouldnt :) one day postfix will as exim support sieve, just wait :) From frank at moltke28.B.Shuttle.DE Tue Nov 5 21:10:25 2013 From: frank at moltke28.B.Shuttle.DE (Frank Elsner) Date: Tue, 5 Nov 2013 20:10:25 +0100 Subject: [Dovecot] ssl-params regeneration with dovecot 2.2.7 In-Reply-To: <20131105200154.6cb53cf27a2bc57f8b0e08f0@moltke28.B.Shuttle.DE> References: <20131105200154.6cb53cf27a2bc57f8b0e08f0@moltke28.B.Shuttle.DE> Message-ID: <20131105201025.2fd459fd1b56b4e9dedcbfa4@moltke28.B.Shuttle.DE> On Tue, 5 Nov 2013 20:01:54 +0100 Frank Elsner wrote: > Hello, > > after switching from version 2.2.7 to 2.2.7 I miss the loglines which say: Sorry, typo. Should read "after switching from version 2.2.6 to 2.2.7" ^ --Frank From kjonca at o2.pl Tue Nov 5 21:38:09 2013 From: kjonca at o2.pl (Kamil =?iso-8859-2?Q?Jo=F1ca?=) Date: Tue, 05 Nov 2013 20:38:09 +0100 Subject: [Dovecot] (Maybe stupid) question about selecting mailbox References: <8738q40xux.fsf@alfa.kjonca> <7760BF72-E445-4F89-8A31-8B3AEE96DCE2@iki.fi> Message-ID: <87a9hifxlq.fsf@alfa.kjonca> Timo Sirainen writes: > On 21.8.2013, at 2.02, Kamil Jo?ca wrote: > >> Does mailbox with "\NoSelect" can be select or examine? >> >> I'm not sure but IMVHO "select x" should not work. > .. >> mail_location = maildir:~/Mail/1:LAYOUT=fs:INBOX=~/Mail/1/INBOX > > Fixed: http://hg.dovecot.org/dovecot-2.2/rev/6942a3da740c Thanks. Somehow I missed your answer. I simply realized that dovecot now works fine. Thank you again. KJ -- http://wolnelektury.pl/wesprzyj/teraz/ An atom-blaster is a good weapon, but it can point both ways. -- Isaac Asimov From kuizhang at gmail.com Tue Nov 5 22:54:27 2013 From: kuizhang at gmail.com (Kui Zhang) Date: Tue, 5 Nov 2013 12:54:27 -0800 Subject: [Dovecot] squat assertion result core dump with imap process Message-ID: Hello, Recently, we had a file system problem. After fsck we started to get some core dump with imap process. Nov 4 15:15:04 mail_server1 dovecot: imap(user at domain.tld): Panic: file squat-trie.c: line 293 (squat_trie_lock): assertion failed: (trie->fd != -1) Nov 4 15:15:04 mail_server1 dovecot: imap(user at domain.tld): Error: Raw backtrace: /usr/lib/dovecot/libdovecot.so.0(+0x4892a) [0x7fe8b7c9392a] -> /usr/lib/dovecot/libdovecot.so.0(+0x48976) [0x7fe8b7c93976] -> /usr/lib/dovecot/libdovecot.so.0(i_error+0) [0x7fe8b7c66faf] -> /usr/lib/dovecot/modules/lib21_fts_squat_plugin.so(+0x4ef4) [0x7fe8b51d9ef4] -> /usr/lib/dovecot/modules/lib21_fts_squat_plugin.so(squat_trie_build_deinit+0x9d2) [0x7fe8b51dcc02] -> /usr/lib/dovecot/modules/lib21_fts_squat_plugin.so(+0x4150) [0x7fe8b51d9150] -> /usr/lib/dovecot/modules/lib21_fts_squat_plugin.so(+0x41b1) [0x7fe8b51d91b1] -> /usr/lib/dovecot/modules/lib20_fts_plugin.so(+0x6b7c) [0x7fe8b5a05b7c] -> /usr/lib/dovecot/modules/lib20_fts_plugin.so(fts_backend_update_deinit+0x2c) [0x7fe8b5a05bfc] -> /usr/lib/dovecot/modules/lib10_quota_plugin.so(+0xb65a) [0x7fe8b642765a] -> /usr/lib/dovecot/libdovecot-storage.so.0(mdbox_sync_begin+0x419) [0x7fe8b7f22069] -> /usr/lib/dovecot/libdovecot-storage.so.0(mdbox_sync+0x46) [0x7fe8b7f224a6] -> /usr/lib/dovecot/libdovecot-storage.so.0(mdbox_storage_sync_init+0x87) [0x7fe8b7f22587] -> /usr/lib/dovecot/libdovecot-storage.so.0(mailbox_sync_init+0x31) [0x7fe8b7f614d1] -> dovecot/imap [user at domain.tld 204.174.223.223 UID](imap_sync_init+0x67) [0x419397] -> dovecot/imap [user at domain.tld204.174.223.223 UID](cmd_sync_delayed+0x1c7) [0x419637] -> dovecot/imap [user at domain.tld 204.174.223.223 UID](client_handle_input+0x1fd) [0x41131d] -> dovecot/imap [user at domain.tld 204.174.223.223 UID](client_input+0x5f) [0x411b7f] -> /usr/lib/dovecot/libdovecot.so.0(io_loop_call_io+0x36) [0x7fe8b7c9fb56] -> /usr/lib/dovecot/libdovecot.so.0(io_loop_handler_run+0x9f) [0x7fe8b7ca0b8f] -> /usr/lib/dovecot/libdovecot.so.0(io_loop_run+0x28) [0x7fe8b7c9faf8] -> /usr/lib/dovecot/libdovecot.so.0(master_service_run+0x13) [0x7fe8b7c8b413] -> dovecot/imap [user at domain.tld 204.174.223.223 UID](main+0x2a4) [0x419dd4] -> /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xfd) [0x7fe8b78dfead] -> dovecot/imap [user at domain.tld 204.174.223.223 UID Nov 4 15:15:04 mail_server1 dovecot: imap(user at domain.tld): Fatal: master: service(imap): child 28415 killed with signal 6 (core dumped) doveadm index -u user at domain.tld mailbox_name Removing index files and re index help with the crashes. From time to time we still get these in the log: Nov 5 10:52:53 mail_server1 dovecot: imap(user at domain.tld): Error: Corrupted squat uidlist file /media/drbd/user_name/mdbox/mailboxes/Drafts/dbox-Mails/dovecot.index.search.uids: wrong indexid Nov 5 11:40:00 mail_server1 dovecot: imap(user at domain.tld): Error: Corrupted squat uidlist file /media/drbd/user_name/mdbox/mailboxes/folder2/dbox-Mails/dovecot.index.search.uids: wrong indexid I am using: dovecot-dbg 2:2.1.16-0~auto+30 Thanks Kui.Z From jtam.home at gmail.com Tue Nov 5 23:15:16 2013 From: jtam.home at gmail.com (Joseph Tam) Date: Tue, 5 Nov 2013 13:15:16 -0800 (PST) Subject: [Dovecot] Issue with postfix not handing over e-mails to dovecot In-Reply-To: References: Message-ID: Tru Pheenix writes: > posftconf output: https://gist.github.com/anonymous/7318863 > doveconf output: https://gist.github.com/anonymous/7318896 > tail -f /var/log/mail.* output (when receiving mail): > https://gist.github.com/anonymous/7318945 Unless these are exceeding long, you probably should inline the contents to save people from having to jump around to get the information to help you. It will also properly archive the context to the solution. >From your logs, it appears your mail system does not know what user is mapped to "someone at mydomain.com": Nov 5 13:21:06 localhost postfix/local[11185]: 5716D8007B: to=, relay=local, delay=0.59, delays=0.57/0.01/0/0.01, dsn=5.1.1, status=bounced (unknown user: "someone") I don't know whether this message is produced by postfix or by dovecot, but one thing I did notice is that your postfix configuration mailbox_command = /usr/lib/dovecot/deliver -c /etc/dovecot/conf.d/01-mail-stack-delivery.conf -m "${EXTENSION}" has upper-case "EXTENSION", whereas the Dovecot wiki uses lower case: http://wiki2.dovecot.org/LDA/Postfix If that's not it, maybe it's your SQL. You can also ask dovecot to look up user "somebody" and debug your way from there: doveadm user somebody Joseph Tam From wildfire at progsoc.org Tue Nov 5 22:16:32 2013 From: wildfire at progsoc.org (Anand Kumria) Date: Tue, 5 Nov 2013 20:16:32 +0000 Subject: [Dovecot] increased core dumps with v2.2.7 In-Reply-To: <4AC24F2B-45A3-43F1-A3DF-DFFC215D6E39@iki.fi> References: <4AC24F2B-45A3-43F1-A3DF-DFFC215D6E39@iki.fi> Message-ID: Yes, it appears that that might be the issue. A On 5 November 2013 18:02, Timo Sirainen wrote: > On 5.11.2013, at 16.12, Anand Kumria wrote: > > > After upgrading to v2.2.7 yesterday, I am starting to get a larger number > > of bugs occurring -- unfortunately I hadn't configured things to save > core > > dumps (now done). > > > > > > But I am seeing things like: > > > > dovecot: imap(user at example.com): Fatal: master: service(imap): child > > 27931 killed with signal 11 (core dumped) > > > > kernel: [151706.763475] imap[4878]: segfault at 7fff53b0aff8 ip > > 00007fdc7ed65ece sp 00007fff53b0b000 error 6 in > > lib20_zlib_plugin.so[7fdc7ed61000+7000] > > Most likely http://hg.dovecot.org/dovecot-2.2/rev/10c0aae82d0d fixes this. > > > From noel.butler at ausics.net Wed Nov 6 00:39:03 2013 From: noel.butler at ausics.net (Noel Butler) Date: Wed, 06 Nov 2013 08:39:03 +1000 Subject: [Dovecot] =?utf-8?q?Best_way_from_Mbox_to_Maildir_using_2=2E17=3F?= In-Reply-To: <5278DEBC.9050809@grinta.net> References: "\"\\\"\\\\\\\" <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> \\\" <4b0ee107261198e3c3203b10641c176d@ausics.net>\\\" <1383644664.31862.31.camel@thorin> <18299667c6164f61c53cdc19b9de2a67@ausics.net> <5278C43D.9060402@grinta.net>" <5ae538512e31a6b272629bbb427d1f44@ausics.net>" <5278DEBC.9050809@grinta.net> Message-ID: <98530c18782324571126a677b93349b4@ausics.net> On 05/11/2013 22:04, Daniele Nicolodi wrote: > On 05/11/2013 12:24, Noel Butler wrote: >> On 05/11/2013 20:11, Daniele Nicolodi wrote: >>> On 05/11/2013 11:04, Noel Butler wrote: >> >>>> >>>> but using system users, you wouldnt use dovecot's LDA :) >>> >>> Why not? >>> >> >> pure overkill, your MTA already knows where it goes, it doesnt need to >> do any special lookups, would you use postfix virtual, to deliver >> local >> user? no, of course you wouldnt :) > > Using dovecot-lda has nothing to do with postfix virtual users, it is > the only way I know to use sieve filtering and have messages indexed at > delivery. > > Cheers, > Daniele again, overkill, system users means users have full access to system account and can write procmail rules, if you dont allow that access, then you dont trust them, so you should be using virtual users. From noel.butler at ausics.net Wed Nov 6 00:42:19 2013 From: noel.butler at ausics.net (Noel Butler) Date: Wed, 06 Nov 2013 08:42:19 +1000 Subject: [Dovecot] =?utf-8?q?Best_way_from_Mbox_to_Maildir_using_2=2E17=3F?= In-Reply-To: <02d47a18afbec6d7eecd5abac0f95c07@junc.eu> References: "\"\\\"\\\\\\\" " "<207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net>\" \"\\\"\" \"" <4b0ee107261198e3c3203b10641c176d@ausics.net>\" <1383644664.31862.31.camel@thorin> <18299667c6164f61c53cdc19b9de2a67@ausics.net> " <5278C43D.9060402@grinta.net>\"" <5ae538512e31a6b272629bbb427d1f44@ausics.net> <02d47a18afbec6d7eecd5abac0f95c07@junc.eu> Message-ID: On 06/11/2013 05:08, Benny Pedersen wrote: > Noel Butler skrev den 2013-11-05 12:24: >> On 05/11/2013 20:11, Daniele Nicolodi wrote: >>> On 05/11/2013 11:04, Noel Butler wrote: > >> pure overkill, your MTA already knows where it goes, it doesnt need to >> do any special lookups, would you use postfix virtual, to deliver >> local user? no, of course you wouldnt :) > > one day postfix will as exim support sieve, just wait :) why would I wait, we use postifx and only in virtual users, very zippy, very resource nice, makes us very happy, but maybe you were meaning something esle, as I've just woken up so off to have some coffee, It might click later on :) From daniele at grinta.net Wed Nov 6 00:52:44 2013 From: daniele at grinta.net (Daniele Nicolodi) Date: Tue, 05 Nov 2013 23:52:44 +0100 Subject: [Dovecot] Best way from Mbox to Maildir using 2.17? In-Reply-To: <98530c18782324571126a677b93349b4@ausics.net> References: "\"\\\"\\\\\\\" <207a4fbcdc9e0b3702568c992e1f4a3d@ausics.net> \\\" <4b0ee107261198e3c3203b10641c176d@ausics.net>\\\" <1383644664.31862.31.camel@thorin> <18299667c6164f61c53cdc19b9de2a67@ausics.net> <5278C43D.9060402@grinta.net>" <5ae538512e31a6b272629bbb427d1f44@ausics.net>" <5278DEBC.9050809@grinta.net> <98530c18782324571126a677b93349b4@ausics.net> Message-ID: <527976BC.5090103@grinta.net> On 05/11/2013 23:39, Noel Butler wrote: > On 05/11/2013 22:04, Daniele Nicolodi wrote: >> On 05/11/2013 12:24, Noel Butler wrote: >>> On 05/11/2013 20:11, Daniele Nicolodi wrote: >>>> On 05/11/2013 11:04, Noel Butler wrote: >>> >>>>> >>>>> but using system users, you wouldnt use dovecot's LDA :) >>>> >>>> Why not? >>>> >>> >>> pure overkill, your MTA already knows where it goes, it doesnt need to >>> do any special lookups, would you use postfix virtual, to deliver >>> local >>> user? no, of course you wouldnt :) >> >> Using dovecot-lda has nothing to do with postfix virtual users, it is >> the only way I know to use sieve filtering and have messages indexed at >> delivery. >> >> Cheers, >> Daniele > > again, overkill, system users means users have full access to system > account and can write procmail rules, if you dont allow that access, > then you dont trust them, so you should be using virtual users. You may enjoy writing procmail rules, most people does not :) Anyhow dovecot indexing at delivery time is the real advantage, and I really don't see any difference in calling dovecot-lda instead of procmail. Cheers, Daniele From trupheenix at gmail.com Wed Nov 6 09:23:01 2013 From: trupheenix at gmail.com (Tru Pheenix) Date: Wed, 6 Nov 2013 12:53:01 +0530 Subject: [Dovecot] Postfix delivers mails to maildir and not to dovecot LDA for a virtual user Message-ID: Hi I have been able to setup postfix and dovecot using postgres as the backend store with virtual user maps on Ubuntu 12.04 LTS Server. I have been following instructions from here: http://wiki2.dovecot.org/HowTo/DovecotPostgresql I haven't setup postfix to use saslauthd and PAM, instead I am using dovecot for SASL authentication. Rest of the table structures and query files are the same as from the wiki. SASL authentication works correctly for SMTP POP IMAP. I am able to send emails from a mail client such as Thunderbird with SASL authentication. However I am not able to receive emails for virtual users. I cannot figure out why. System users are getting their emails in the mail box correctly. Postfix fires the mailbox_command to hand over the mail to dovecot. This is how my *mail.log* looks when I send emails from an external domain: Nov 6 06:48:21 localhost postfix/smtpd[20053]: E075280C52: client= mail-ee0-f41.google.com[74.125.83.41] Nov 6 06:48:22 localhost postfix/cleanup[20064]: E075280C52: message-id=< CAJ+V0eCU891rSzSMVbcSy4zsRUk5GUp58b70Wv_WgZxLbKuyLw at mail.gmail.com> Nov 6 06:48:22 localhost postfix/qmgr[17492]: E075280C52: from=< me at gmail.com>, size=3124, nrcpt=1 (queue active) *Nov 6 06:48:22 localhost postfix/virtual[20066]: E075280C52: to=>, relay=virtual, delay=0.85, delays=0.7/0.02/0/0.13, dsn=2.0.0, status=sent (delivered to maildir)* Nov 6 06:48:22 localhost postfix/qmgr[17492]: E075280C52: removed Nov 6 06:48:22 localhost postfix/smtpd[20053]: disconnect from mail-ee0-f41.google.com[74.125.83.41] Postfix seems to deliver the mail to maildir instead of the home directory of the virtual user. Incase of the system user, the logs indicate that the mailbox_command was fired and I do get to see the mail in the inbox. My postfix *main.cf *: alias_database = hash:/etc/aliases alias_maps = hash:/etc/aliases append_dot_mydomain = no biff = no broken_sasl_auth_clients = yes config_directory = /etc/postfix dovecot_destination_recipient_limit = 1 inet_interfaces = all *mailbox_command = /usr/lib/dovecot/deliver -c /etc/dovecot/conf.d/01-mail-stack-delivery.conf -m "${EXTENSION}"* mailbox_size_limit = 0 mydestination = localhost, localhost.localdomain, localhost myhostname = mydomain.com mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 readme_directory = no recipient_delimiter = + relayhost = smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache smtp_use_tls = yes smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu) smtpd_recipient_restrictions = reject_unknown_recipient_domain, reject_unauth_pipelining, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination smtpd_sasl_auth_enable = yes smtpd_sasl_authenticated_header = yes smtpd_sasl_local_domain = $myhostname smtpd_sasl_path = private/dovecot-auth smtpd_sasl_security_options = noanonymous smtpd_sasl_type = dovecot smtpd_sender_restrictions = reject_unknown_sender_domain smtpd_tls_auth_only = yes smtpd_tls_cert_file = /root/certs/www.mydomain.com.pem smtpd_tls_key_file = /root/certs/www.mydomain.com.key smtpd_tls_mandatory_ciphers = medium smtpd_tls_mandatory_protocols = SSLv3, TLSv1 smtpd_tls_received_header = yes smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache smtpd_use_tls = yes tls_random_source = dev:/dev/urandom transport_maps = pgsql:/etc/postfix/transport.cf virtual_gid_maps = pgsql:/etc/postfix/gids.cf virtual_mailbox_base = /home virtual_mailbox_domains = mydomain.com *virtual_mailbox_maps = pgsql:/etc/postfix/mailboxes.cf * virtual_maps = pgsql:/etc/postfix/virtual.cf *virtual_transport = dovecot* virtual_uid_maps = pgsql:/etc/postfix/uids.cf I have included the virtual_transport parameter to indicate that dovecot is running as LDA. I have also included the pgsql query file in the virtual_mailbox_maps parameter. My *mailboxes.cf *file which points the email id of the virtual user to the appropriate mail path: user=mailreader password=secret dbname=mails table=postfix_mailboxes select_field=mailbox where_field=userid hosts=localhost My postfix *master.cf * file: smtp inet n - n - - smtpd pickup fifo n - - 60 1 pickup cleanup unix n - - - 0 cleanup qmgr fifo n - n 300 1 qmgr tlsmgr unix - - - 1000? 1 tlsmgr rewrite unix - - - - - trivial-rewrite bounce unix - - - - 0 bounce defer unix - - - - 0 bounce trace unix - - - - 0 bounce verify unix - - - - 1 verify flush unix n - - 1000? 0 flush proxymap unix - - n - - proxymap proxywrite unix - - n - 1 proxymap smtp unix - - - - - smtp relay unix - - - - - smtp showq unix n - - - - showq error unix - - - - - error retry unix - - - - - error discard unix - - - - - discard local unix - n n - - local virtual unix - n n - - virtual lmtp unix - - - - - lmtp anvil unix - - - - 1 anvil scache unix - - - - 1 scache maildrop unix - n n - - pipe flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient} uucp unix - n n - - pipe flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient) *dovecot unix - n n - - pipe* * flags=DRhu user=vmailuser:vmailuser argv=/usr/lib/dovecot/deliver -f* * ${sender} -d ${recipient}* ifmail unix - n n - - pipe flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) bsmtp unix - n n - - pipe flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient scalemail-backend unix - n n - 2 pipe flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension} mailman unix - n n - - pipe flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py ${nexthop} ${user} I have included the dovecot LDA service line above so that postfix can deliver to virtual users as per: http://wiki2.dovecot.org/LDA/Postfix This is my *doveconf -n* output: # 2.0.19: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-24-virtual i686 Ubuntu 12.04 LTS ext4 auth_debug = yes auth_debug_passwords = yes auth_mechanisms = plain login digest-md5 cram-md5 auth_verbose = yes mail_debug = yes *mail_location = maildir:/home/vmailuser/%d/%n/Maildir* managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave passdb { args = /etc/dovecot/dovecot-sql.conf driver = sql } plugin { sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 sieve service auth { unix_listener /var/spool/postfix/private/dovecot-auth { group = postfix mode = 0660 user = postfix } } ssl_cert = was automatically rejected:%n%r } I have setup *mail_location *to point to the home directory of vmailuser under which for the given domain the virtual users mail dir is created. However, the mails clearly don't seem to get delivered for the virtual user. Any help to fix this would be appreciated. Thanks! :) Regards Tru Pheenix From amandy_lda at outlook.com Wed Nov 6 09:23:31 2013 From: amandy_lda at outlook.com (ldaamandy) Date: Wed, 6 Nov 2013 07:23:31 +0000 Subject: [Dovecot] how to display dovecot.index.cache Message-ID: hello dovecot at dovecot.org: I want to see the contents of dovecot.index.cache . Is there any command can make it become visible character displayed ? the command idxview can displayed doveoct.index and logview can dispalyed dovecot.index.log but it seems no command to displays dovecot.index.cache for us. thanks amandy From tpotega at wp-sa.pl Wed Nov 6 09:32:22 2013 From: tpotega at wp-sa.pl (Tomasz Potega) Date: Wed, 6 Nov 2013 08:32:22 +0100 Subject: [Dovecot] get_disconnect_reason() gets called with NULL ctx->litinput Message-ID: <5279F086.3050205@wp-sa.pl> Hi, I have found get_disconnect_reason() to be called with NULL ctx->litinput at times, making dovecot crash when accessing v_offset: src/imap/cmd-append.c: 83 switch (i_stream_read(client->input)) { 84 case -1: 85 /* disconnected */ 86 reason = get_disconnect_reason(ctx, ctx->litinput->v_offset); 87 cmd_append_finish(cmd->context); 88 /* Reset command so that client_destroy() doesn't try to call 89 cmd_append_continue_message() anymore. */ Best regards, Tomasz Pot?ga [Wirtualna Polska] Znajdziesz nas tutaj: [Wp na Facebooku] [Wp na Twitterze] [Wp na SlideShare] [Wp w Google+] [Wp na YouTube] "WIRTUALNA POLSKA" Sp??ka Akcyjna z siedzib? w Gda?sku przy ul. Traugutta 115 C, wpisana do Krajowego Rejestru S?dowego - Rejestru Przedsi?biorc?w prowadzonego przez S?d Rejonowy Gda?sk - P??noc w Gda?sku pod numerem KRS 0000068548, o kapitale zak?adowym 67.980.024,00 z?otych op?aconym w ca?o?ci oraz Numerze Identyfikacji Podatkowej 957-07-51-216. From tpotega at wp-sa.pl Wed Nov 6 11:31:12 2013 From: tpotega at wp-sa.pl (Tomasz Potega) Date: Wed, 6 Nov 2013 10:31:12 +0100 Subject: [Dovecot] Missing i_stream_unref in imap_msgpart_crlf_seek()? Message-ID: <527A0C60.4010409@wp-sa.pl> Hi, imap_msgpart_crlf_seek() returns an error stream in case of problems in message_skip_virtual(). The original input stream is not being unreferenced, preventing destroy callbacks from being executed. Shouldn't we have an i_stream_unref(&input) here: src/lib-imap-storage/imap-msgpart.c: 398 if (message_skip_virtual(input, virtual_skip, &cr_skipped) < 0) { 399 errinput = i_stream_create_error(errno); 400 i_stream_set_name(errinput, i_stream_get_name(input)); 401 return errinput; 402 } ? Best regards, Tomasz Pot?ga [Wirtualna Polska] Znajdziesz nas tutaj: [Wp na Facebooku] [Wp na Twitterze] [Wp na SlideShare] [Wp w Google+] [Wp na YouTube] "WIRTUALNA POLSKA" Sp??ka Akcyjna z siedzib? w Gda?sku przy ul. Traugutta 115 C, wpisana do Krajowego Rejestru S?dowego - Rejestru Przedsi?biorc?w prowadzonego przez S?d Rejonowy Gda?sk - P??noc w Gda?sku pod numerem KRS 0000068548, o kapitale zak?adowym 67.980.024,00 z?otych op?aconym w ca?o?ci oraz Numerze Identyfikacji Podatkowej 957-07-51-216. From Olivier.Girard at univ-angers.fr Wed Nov 6 12:09:31 2013 From: Olivier.Girard at univ-angers.fr (Olivier Girard) Date: Wed, 06 Nov 2013 11:09:31 +0100 Subject: [Dovecot] 2.2.6 auth process crash using LMTP and LDAP on director. Message-ID: <527A155B.1060703@univ-angers.fr> I'm upgrading my configuration to use director and lmtp for delivery. (doveconf -n at end of the mail). I use the same config for auth on mail backends and see no errors. My setup seem to work nicely but i have some auth process crashing when using lmtp protocol. Everything is working a sexpected then i've got 5-6 errors like this in logs and a crach of the auth process: dovecot: lmtp(47269): Error: passdb lookup(_mail_): Disconnected unexpectedly pid 47406 (auth), uid 143: exited on signal 11 Actually, i didn't configure to core dump. Do you think seting up lmtp protocol to static auth adding something like folow will be better for this problem? protocol lmtp { passdb { args = proxy=y nopassword=y driver = static } } Please note that my configuration is actually listening on inet fot LMTP but that the goal is to configure postfix on the same server and switch to socket, this expain the configuration of the service auth to provide a socket to postfix. Here is my director config: % doveconf -n # 2.2.6: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 8.4-RELEASE-p4 amd64 auth_cache_negative_ttl = 0 auth_cache_size = 16 M auth_mechanisms = plain login auth_verbose = yes auth_verbose_passwords = sha1 default_process_limit = 4000 director_mail_servers = 192.168.16.1 192.168.16.2 192.168.16.3 director_servers = 192.168.16.4 192.168.16.5 192.168.16.6 disable_plaintext_auth = no doveadm_port = 24245 info_log_path = syslog instance_name = director lmtp_proxy = yes mail_debug = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave passdb { args = /usr/local/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size } service anvil { client_limit = 12003 } service auth-worker { process_min_avail = 10 user = $default_internal_user } service auth { client_limit = 16000 unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { mode = 0666 user = $default_internal_user } user = $default_internal_user } service director { fifo_listener login/proxy-notify { mode = 0666 } inet_listener { address = 192.168.16.4 port = 9090 } unix_listener director-userdb { mode = 0600 } unix_listener login/director { mode = 0666 } } service doveadm { inet_listener { port = 24245 } } service imap-login { executable = imap-login director } service lmtp { inet_listener lmtp { address = * :: port = 24 } } service pop3-login { executable = pop3-login director } ssl_cert = References: <20131105200154.6cb53cf27a2bc57f8b0e08f0@moltke28.B.Shuttle.DE> Message-ID: <527A1C9D.6080404@thelounge.net> Am 05.11.2013 20:01, schrieb Frank Elsner: > after switching from version 2.2.6 to 2.2.7 I miss the loglines which say: > > ssl-params: Generating SSL parameters > ssl-params: SSL parameters regeneration completed > > What's going on? No more logging or no regeneration? it is intentional i guess http://hg.dovecot.org/dovecot-2.2/rev/43ab5abeb8f0 ssl-params: Added ssl_dh_parameters_length & removed ssl_parameters_regenerate setting ssl-params: Added ssl_dh_parameters_length & removed ssl_parameters_regenerate setting. ssl_parameters_regenerate was based on some text from GNUTLS documentation a long time ago, but there's really not much point in doing it. Ideally we should also support "openssl dhparam" input files, but for now there's the ssl_dh_parameters_length setting that can be used to specify the wanted DH parameters length. If the current ssl-parameters.dat has a different length, it's regenerated. We should probably at some point support also built-in DH parameters which are returned while the ssl-params runs. -------- Original-Nachricht -------- Betreff: Re: [Dovecot] DH parameter length too small? Datum: Sat, 2 Nov 2013 15:28:33 +0200 Von: Timo Sirainen Antwort an: Dovecot Mailing List An: J?rg L?bbert Kopie (CC): Dovecot Mailing List On 14.10.2013, at 19.08, J?rg L?bbert wrote: > from my understanding, using 1024bit DH parameters results in a not > sufficiently secure key exchange for DH(E). Therefore I think it would > be advisable to have parameters of at least 2048bit . In fact, I would > see a great benefit in chosing parameter length arbitrarily. > > I also do not see the benefit of parameter regeneration. What were the design goals here? http://hg.dovecot.org/dovecot-2.2/rev/43ab5abeb8f0 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From tss at iki.fi Wed Nov 6 12:54:56 2013 From: tss at iki.fi (Timo Sirainen) Date: Wed, 6 Nov 2013 12:54:56 +0200 Subject: [Dovecot] get_disconnect_reason() gets called with NULL ctx->litinput In-Reply-To: <5279F086.3050205@wp-sa.pl> References: <5279F086.3050205@wp-sa.pl> Message-ID: <0DAA5F35-EBE8-438A-B3E2-05CA6DBE411B@iki.fi> On 6.11.2013, at 9.32, Tomasz Potega wrote: > I have found get_disconnect_reason() to be called with NULL > ctx->litinput at times, making dovecot crash when accessing v_offset: Fixed: http://hg.dovecot.org/dovecot-2.2/rev/672350cdf509 From tss at iki.fi Wed Nov 6 13:00:58 2013 From: tss at iki.fi (Timo Sirainen) Date: Wed, 6 Nov 2013 13:00:58 +0200 Subject: [Dovecot] Missing i_stream_unref in imap_msgpart_crlf_seek()? In-Reply-To: <527A0C60.4010409@wp-sa.pl> References: <527A0C60.4010409@wp-sa.pl> Message-ID: On 6.11.2013, at 11.31, Tomasz Potega wrote: > imap_msgpart_crlf_seek() returns an error stream in case of problems > in message_skip_virtual(). The original input stream is not being > unreferenced, preventing destroy callbacks from being executed. > > Shouldn't we have an i_stream_unref(&input) here: > > src/lib-imap-storage/imap-msgpart.c: > 398 if (message_skip_virtual(input, virtual_skip, &cr_skipped) > < 0) { > 399 errinput = i_stream_create_error(errno); > 400 i_stream_set_name(errinput, i_stream_get_name(input)); > 401 return errinput; > 402 } > > ? Yep: http://hg.dovecot.org/dovecot-2.2/rev/0505adfe2d8e From trupheenix at gmail.com Wed Nov 6 14:24:12 2013 From: trupheenix at gmail.com (Tru Pheenix) Date: Wed, 6 Nov 2013 17:54:12 +0530 Subject: [Dovecot] Postfix delivers mails to maildir and not to dovecot LDA for a virtual user In-Reply-To: References: Message-ID: Fixed this issue. My transport table was having a "virtual:" entry against my domain name instead of "dovecot:" Now all is working! :) On Wed, Nov 6, 2013 at 12:53 PM, Tru Pheenix wrote: > Hi > > I have been able to setup postfix and dovecot using postgres as the > backend store with virtual user maps on Ubuntu 12.04 LTS Server. > > I have been following instructions from here: > http://wiki2.dovecot.org/HowTo/DovecotPostgresql > > I haven't setup postfix to use saslauthd and PAM, instead I am using > dovecot for SASL authentication. Rest of the table structures and query > files are the same as from the wiki. > > SASL authentication works correctly for SMTP POP IMAP. > > I am able to send emails from a mail client such as Thunderbird with SASL > authentication. > > However I am not able to receive emails for virtual users. I cannot figure > out why. System users are getting their emails in the mail box correctly. > Postfix fires the mailbox_command to hand over the mail to dovecot. > > This is how my *mail.log* looks when I send emails from an external > domain: > > Nov 6 06:48:21 localhost postfix/smtpd[20053]: E075280C52: client= > mail-ee0-f41.google.com[74.125.83.41] > Nov 6 06:48:22 localhost postfix/cleanup[20064]: E075280C52: message-id=< > CAJ+V0eCU891rSzSMVbcSy4zsRUk5GUp58b70Wv_WgZxLbKuyLw at mail.gmail.com> > Nov 6 06:48:22 localhost postfix/qmgr[17492]: E075280C52: from=< > me at gmail.com>, size=3124, nrcpt=1 (queue active) > *Nov 6 06:48:22 localhost postfix/virtual[20066]: E075280C52: > to=>, relay=virtual, > delay=0.85, delays=0.7/0.02/0/0.13, dsn=2.0.0, status=sent (delivered to > maildir)* > Nov 6 06:48:22 localhost postfix/qmgr[17492]: E075280C52: removed > Nov 6 06:48:22 localhost postfix/smtpd[20053]: disconnect from > mail-ee0-f41.google.com[74.125.83.41] > > Postfix seems to deliver the mail to maildir instead of the home directory > of the virtual user. Incase of the system user, the logs indicate that the > mailbox_command was fired and I do get to see the mail in the inbox. > > My postfix *main.cf *: > > alias_database = hash:/etc/aliases > alias_maps = hash:/etc/aliases > append_dot_mydomain = no > biff = no > broken_sasl_auth_clients = yes > config_directory = /etc/postfix > dovecot_destination_recipient_limit = 1 > inet_interfaces = all > *mailbox_command = /usr/lib/dovecot/deliver -c > /etc/dovecot/conf.d/01-mail-stack-delivery.conf -m "${EXTENSION}"* > mailbox_size_limit = 0 > mydestination = localhost, localhost.localdomain, localhost > myhostname = mydomain.com > mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 > readme_directory = no > recipient_delimiter = + > relayhost = > smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache > smtp_use_tls = yes > smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu) > smtpd_recipient_restrictions = reject_unknown_recipient_domain, > reject_unauth_pipelining, permit_mynetworks, permit_sasl_authenticated, > reject_unauth_destination > smtpd_sasl_auth_enable = yes > smtpd_sasl_authenticated_header = yes > smtpd_sasl_local_domain = $myhostname > smtpd_sasl_path = private/dovecot-auth > smtpd_sasl_security_options = noanonymous > smtpd_sasl_type = dovecot > smtpd_sender_restrictions = reject_unknown_sender_domain > smtpd_tls_auth_only = yes > smtpd_tls_cert_file = /root/certs/www.mydomain.com.pem > smtpd_tls_key_file = /root/certs/www.mydomain.com.key > smtpd_tls_mandatory_ciphers = medium > smtpd_tls_mandatory_protocols = SSLv3, TLSv1 > smtpd_tls_received_header = yes > smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache > smtpd_use_tls = yes > tls_random_source = dev:/dev/urandom > transport_maps = pgsql:/etc/postfix/transport.cf > virtual_gid_maps = pgsql:/etc/postfix/gids.cf > virtual_mailbox_base = /home > virtual_mailbox_domains = mydomain.com > *virtual_mailbox_maps = pgsql:/etc/postfix/mailboxes.cf > * > virtual_maps = pgsql:/etc/postfix/virtual.cf > *virtual_transport = dovecot* > virtual_uid_maps = pgsql:/etc/postfix/uids.cf > > I have included the virtual_transport parameter to indicate that dovecot > is running as LDA. I have also included the pgsql query file in the > virtual_mailbox_maps parameter. > > My *mailboxes.cf *file which points the email id of > the virtual user to the appropriate mail path: > > user=mailreader > password=secret > dbname=mails > table=postfix_mailboxes > select_field=mailbox > where_field=userid > hosts=localhost > > My postfix *master.cf * file: > > smtp inet n - n - - smtpd > pickup fifo n - - 60 1 pickup > cleanup unix n - - - 0 cleanup > qmgr fifo n - n 300 1 qmgr > tlsmgr unix - - - 1000? 1 tlsmgr > rewrite unix - - - - - trivial-rewrite > bounce unix - - - - 0 bounce > defer unix - - - - 0 bounce > trace unix - - - - 0 bounce > verify unix - - - - 1 verify > flush unix n - - 1000? 0 flush > proxymap unix - - n - - proxymap > proxywrite unix - - n - 1 proxymap > smtp unix - - - - - smtp > relay unix - - - - - smtp > showq unix n - - - - showq > error unix - - - - - error > retry unix - - - - - error > discard unix - - - - - discard > local unix - n n - - local > virtual unix - n n - - virtual > lmtp unix - - - - - lmtp > anvil unix - - - - 1 anvil > scache unix - - - - 1 scache > maildrop unix - n n - - pipe > flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient} > uucp unix - n n - - pipe > flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail > ($recipient) > *dovecot unix - n n - - pipe* > * flags=DRhu user=vmailuser:vmailuser argv=/usr/lib/dovecot/deliver -f* > * ${sender} -d ${recipient}* > ifmail unix - n n - - pipe > flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) > bsmtp unix - n n - - pipe > flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender > $recipient > scalemail-backend unix - n n - 2 pipe > flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store > ${nexthop} ${user} ${extension} > mailman unix - n n - - pipe > flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py > ${nexthop} ${user} > > I have included the dovecot LDA service line above so that postfix can > deliver to virtual users as per: http://wiki2.dovecot.org/LDA/Postfix > > This is my *doveconf -n* output: > > # 2.0.19: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-24-virtual i686 Ubuntu 12.04 LTS ext4 > auth_debug = yes > auth_debug_passwords = yes > auth_mechanisms = plain login digest-md5 cram-md5 > auth_verbose = yes > mail_debug = yes > *mail_location = maildir:/home/vmailuser/%d/%n/Maildir* > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character > vacation subaddress comparator-i;ascii-numeric relational regex imap4flags > copy include variables body enotify environment mailbox date ihave > passdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > plugin { > sieve = ~/.dovecot.sieve > sieve_dir = ~/sieve > } > protocols = imap pop3 sieve > service auth { > unix_listener /var/spool/postfix/private/dovecot-auth { > group = postfix > mode = 0660 > user = postfix > } > } > ssl_cert = ssl_cipher_list = > ALL:!LOW:!SSLv2:ALL:!aNULL:!ADH:!eNULL:!EXP:RC4+RSA:+HIGH:+MEDIUM > ssl_key = userdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > verbose_ssl = yes > protocol imap { > imap_client_workarounds = delay-newmail > mail_max_userip_connections = 10 > } > protocol pop3 { > mail_max_userip_connections = 10 > pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > } > protocol lda { > deliver_log_format = msgid=%m: %$ > mail_plugins = sieve > postmaster_address = postmaster > quota_full_tempfail = yes > rejection_reason = Your message to <%t> was automatically rejected:%n%r > } > > > I have setup *mail_location *to point to the home directory of vmailuser > under which for the given domain the virtual users mail dir is created. > However, the mails clearly don't seem to get delivered for the virtual > user. > > Any help to fix this would be appreciated. Thanks! :) > > Regards > > Tru Pheenix > > From user+dovecot at localhost.localdomain.org Wed Nov 6 21:16:17 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Wed, 06 Nov 2013 19:16:17 +0000 Subject: [Dovecot] how to display dovecot.index.cache In-Reply-To: References: Message-ID: <527A9581.1010101@localhost.localdomain.org> On 11/06/2013 07:23 AM ldaamandy wrote: > hello dovecot at dovecot.org: > > I want to see the contents of dovecot.index.cache . Is there any command can make it become visible character displayed ? strings(1); for example: strings mdbox/mailboxes/INBOX/dbox-Mails/dovecot.index.cache For details see: http://wiki2.dovecot.org/IndexFiles#Cache_file > the command idxview can displayed doveoct.index and logview can dispalyed dovecot.index.log but it seems no command to displays dovecot.index.cache for us. Using idxview and logview indicates the you are using Dovecot v1.x. You should consider to update to a more recent AND better supported version. Regards, Pascal -- The trapper recommends today: c01dcofe.1331020 at localdomain.org From tss at iki.fi Wed Nov 6 22:34:34 2013 From: tss at iki.fi (Timo Sirainen) Date: Wed, 6 Nov 2013 22:34:34 +0200 Subject: [Dovecot] how to display dovecot.index.cache In-Reply-To: References: Message-ID: On 6.11.2013, at 9.23, ldaamandy wrote: > hello dovecot at dovecot.org: > > I want to see the contents of dovecot.index.cache . Is there any command can make it become visible character displayed ? > the command idxview can displayed doveoct.index and logview can dispalyed dovecot.index.log but it seems no command to displays dovecot.index.cache for us. Looking at dovecot.index also displays dovecot.index.cache contents. (The cache file is unusable without dovecot.index.) From amandy_lda at outlook.com Thu Nov 7 04:45:29 2013 From: amandy_lda at outlook.com (ldaamandy) Date: Thu, 7 Nov 2013 02:45:29 +0000 Subject: [Dovecot] how to display dovecot.index.cache In-Reply-To: References: , Message-ID: thank you Timo Sirainen: is that The contents of the dovecot.index file containing the content of index.cache or they are the same one ? It seems that dovecot.index is major. > From: tss at iki.fi > Date: Wed, 6 Nov 2013 22:34:34 +0200 > To: amandy_lda at outlook.com > CC: dovecot at dovecot.org > Subject: Re: [Dovecot] how to display dovecot.index.cache > > On 6.11.2013, at 9.23, ldaamandy wrote: > > > hello dovecot at dovecot.org: > > > > I want to see the contents of dovecot.index.cache . Is there any command can make it become visible character displayed ? > > the command idxview can displayed doveoct.index and logview can dispalyed dovecot.index.log but it seems no command to displays dovecot.index.cache for us. > > Looking at dovecot.index also displays dovecot.index.cache contents. (The cache file is unusable without dovecot.index.) > From tss at iki.fi Thu Nov 7 04:49:28 2013 From: tss at iki.fi (Timo Sirainen) Date: Thu, 7 Nov 2013 04:49:28 +0200 Subject: [Dovecot] how to display dovecot.index.cache In-Reply-To: References: , Message-ID: I mean when you run "idxview dovecot.index?, it actually opens both dovecot.index and dovecot.index.cache (and also dovecot.index.log) and combines all of their contents and displays the merged output. dovecot.index contains only pointers inside the dovecot.index.cache file, but without these pointers the dovecot.index.cache isn?t very usable. On 7.11.2013, at 4.45, ldaamandy wrote: > thank you Timo Sirainen: > > is that The contents of the dovecot.index file containing the content of index.cache or they are the same one ? > It seems that dovecot.index is major. > >> From: tss at iki.fi >> Date: Wed, 6 Nov 2013 22:34:34 +0200 >> To: amandy_lda at outlook.com >> CC: dovecot at dovecot.org >> Subject: Re: [Dovecot] how to display dovecot.index.cache >> >> On 6.11.2013, at 9.23, ldaamandy wrote: >> >>> hello dovecot at dovecot.org: >>> >>> I want to see the contents of dovecot.index.cache . Is there any command can make it become visible character displayed ? >>> the command idxview can displayed doveoct.index and logview can dispalyed dovecot.index.log but it seems no command to displays dovecot.index.cache for us. >> >> Looking at dovecot.index also displays dovecot.index.cache contents. (The cache file is unusable without dovecot.index.) >> > From tss at iki.fi Thu Nov 7 05:36:17 2013 From: tss at iki.fi (Timo Sirainen) Date: Thu, 7 Nov 2013 05:36:17 +0200 Subject: [Dovecot] Solr clusters Message-ID: <0A0E4CAD-2E8A-4B65-8DE1-2DD59E33BCEB@iki.fi> Hi all, Has anyone implemented larger Dovecot+Solr clusters and would be willing to give some details about how it works for you? My understanding about it so far is: - SolrCloud isn?t usable with Dovecot. Replication isn?t useful, because nobody wants to pay for double the disk space for indexes that could be regenerated anyway. The autosharding isn?t very useful also, because: I think the shard keys could be created in two possible ways: a) Mails would be entirely randomly distributed across the cluster. This would make updates efficient, because the writes would be fully distributed across all servers. But I think it would also make reads somewhat inefficient, since all the servers would have to be searched and the results combined. Also if a server is lost, there?s no easy way to reindex back the missing data, because it would contain a piece of pretty much all the users? data. b) Shard keys could be created so that the same user would typically go only to 1-2 servers. It would be possible (at least in theory) to find a broken server?s list of users and reindex only their data, but I?m not sure if this method is any easier than the non-SolrCloud setup. - Without SolrCloud you?d then need to shard the data manually. This would be easy enough to do by just assigning different users to different shards. But at some point the index is going to become too large and you need to add more shards and move some existing users to them. To keep the search performance good during the move, I guess this could be done with a script that does: 1) reindex user to new shard, 2) update userdb to point to new shard, 3) delete user from old shard, 4) doveadm fts rescan the user to remove any mails already deleted during the reindexing. - It seems that Solr index shouldn?t grow above 200 GB or the performance will be getting too bad? I?ve seen this in a few web pages. So each server should likely be running multiple separate Solr instances (shards). - http://www.hathitrust.org/blogs/large-scale-search/scaling-large-scale-search-from-500000-volumes-5-million-volumes-and-beyond recommends NFS (or I guess any kind of a shared filesystem), which does seem to make sense. Since Dovecot wants to get instantly updated search results after indexing, I think it?s probably better not to separate the indexing and searching servers. - Would be interesting to know what kind of hardware your Solr servers currently have, how well they?re performing and what are the bottlenecks? From the above URL it appears that disk I/O is first, but if there?s enough of that available then CPU usage is second. I?m not quite sure where most of the memory goes - caching? - I?m guessing users are doing relatively few searches compared to how many new emails are being indexed/deleted all the time? From amandy_lda at outlook.com Thu Nov 7 06:13:16 2013 From: amandy_lda at outlook.com (ldaamandy) Date: Thu, 7 Nov 2013 04:13:16 +0000 Subject: [Dovecot] how to display dovecot.index.cache In-Reply-To: <527A9581.1010101@localhost.localdomain.org> References: , <527A9581.1010101@localhost.localdomain.org> Message-ID: thank you for your advice?: I will have a try . I just want to know how to sync dovecot.index to memory and the meening of every field in dovecot.index. > Date: Wed, 6 Nov 2013 19:16:17 +0000 > From: user+dovecot at localhost.localdomain.org > To: dovecot at dovecot.org > Subject: Re: [Dovecot] how to display dovecot.index.cache > > On 11/06/2013 07:23 AM ldaamandy wrote: > > hello dovecot at dovecot.org: > > > > I want to see the contents of dovecot.index.cache . Is there any command can make it become visible character displayed ? > > strings(1); for example: > strings mdbox/mailboxes/INBOX/dbox-Mails/dovecot.index.cache > > For details see: http://wiki2.dovecot.org/IndexFiles#Cache_file > > > the command idxview can displayed doveoct.index and logview can dispalyed dovecot.index.log but it seems no command to displays dovecot.index.cache for us. > > Using idxview and logview indicates the you are using Dovecot v1.x. You > should consider to update to a more recent AND better supported version. > > > Regards, > Pascal > -- > The trapper recommends today: c01dcofe.1331020 at localdomain.org From amandy_lda at outlook.com Thu Nov 7 07:25:35 2013 From: amandy_lda at outlook.com (ldaamandy) Date: Thu, 7 Nov 2013 05:25:35 +0000 Subject: [Dovecot] how to display dovecot.index.cache In-Reply-To: References: , , , , Message-ID: a ha , I have got it , I'm very happy to know that ,thank you very much ? !! > From: tss at iki.fi > Date: Thu, 7 Nov 2013 04:49:28 +0200 > To: amandy_lda at outlook.com > CC: dovecot at dovecot.org > Subject: Re: [Dovecot] how to display dovecot.index.cache > > I mean when you run "idxview dovecot.index?, it actually opens both dovecot.index and dovecot.index.cache (and also dovecot.index.log) and combines all of their contents and displays the merged output. dovecot.index contains only pointers inside the dovecot.index.cache file, but without these pointers the dovecot.index.cache isn?t very usable. > > On 7.11.2013, at 4.45, ldaamandy wrote: > > > thank you Timo Sirainen: > > > > is that The contents of the dovecot.index file containing the content of index.cache or they are the same one ? > > It seems that dovecot.index is major. > > > >> From: tss at iki.fi > >> Date: Wed, 6 Nov 2013 22:34:34 +0200 > >> To: amandy_lda at outlook.com > >> CC: dovecot at dovecot.org > >> Subject: Re: [Dovecot] how to display dovecot.index.cache > >> > >> On 6.11.2013, at 9.23, ldaamandy wrote: > >> > >>> hello dovecot at dovecot.org: > >>> > >>> I want to see the contents of dovecot.index.cache . Is there any command can make it become visible character displayed ? > >>> the command idxview can displayed doveoct.index and logview can dispalyed dovecot.index.log but it seems no command to displays dovecot.index.cache for us. > >> > >> Looking at dovecot.index also displays dovecot.index.cache contents. (The cache file is unusable without dovecot.index.) > >> > > > From jg at softjury.de Thu Nov 7 09:53:38 2013 From: jg at softjury.de (Jan Phillip Greimann) Date: Thu, 07 Nov 2013 08:53:38 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) Message-ID: <527B4702.4070100@softjury.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Good morning dovecot-community, I noticed a strange log-entry since the last day: Nov 7 08:34:42 hetzner postfix/lmtp[3764]: 61CB01A3938: to=, relay=mail.larptreff.de[private/dovecot-lmtp], delay=0.05, delays=0.01/0.01/0.02/0.01, dsn=4.4.2, status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) Thankfully I've configured a cronjob for a daily pflogsumm-report, but I don't understand this. It worked for months like a charm. It seems this only happens on mails with "+"-Delimiter. In my opinion there is only one thing which could cause this problem: I updated my dovecot on 2013/11/04 from 2.2.6-1~auto+36 to 2.2.7-1~auto+2 maillog: http://pastebin.com/WDGfEjdp doveconf -n: http://pastebin.com/ay6dxiUf I will try to downgrade again, did someone have a clue? Changelog from 2.2.7 didn't show changes on lmtp. Best regards, Jan -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSe0cCAAoJENEKhqzzuxPlLOsH/iQLHuYXH/8HQJI1cyOQ/Xkl KK010kT9EwOZCax+xputF1Cyg9XSCGBwMBA8YFWjTk57EVfNZ4RZLCkpZQU8b0X/ SsDq7jyh8QTBf7K2LEs34L6g2OMbuhv3Hl+D/RqBm09HPoBUGJZEM5ZQu28QE7rD GETa3XkQPwMyo+3GwWXmAzg3wz4tOEGg6meaOzQlGVJshQpSKbDjvln5RtsVc1Qh X9Xa4HdEesH/NXxr6uKUUEjHcp67BLWvmZHrDDIOp4dATqxDbq29QGfiJFvURKur DJZ2hbPPgEFf/Wdf5l3PXfV2OgnubyLiTgRZ7pb+xFNUAlJ2YCeRv5CUigLaps8= =0Jya -----END PGP SIGNATURE----- From jg at softjury.de Thu Nov 7 09:59:31 2013 From: jg at softjury.de (Jan Phillip Greimann) Date: Thu, 07 Nov 2013 08:59:31 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <527B4702.4070100@softjury.de> References: <527B4702.4070100@softjury.de> Message-ID: <527B4863.5090201@softjury.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Additional note: Downgrade impossible because http://xi.rename-it.nl/debian/ didn't have the 2.2.6 packages anymore. :( -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSe0hjAAoJENEKhqzzuxPljrwH/0GGwoFVPZVEfqvM0QuvRduB qCu1MtscKaiSyaXp5m5I2kfZ0TJL1BcARMGEjeDaCULQf6Z3v197EDHCto9VL0eT acUCC1YnbKKiTmkETvIFP2zZwmkthur6hOOmGWn02SDvpIdiPq0nKMaD8fxTnETd r4dafw8fkTpEJXiEHk9AZv9xcTOdEbZz66gNb0gN3hNs5+uVF1wjznv1JfnFys1u JSufXKBmmASBzPqTsMmEJ9KT+IFEDzH5GWWo0RD15RgF8Lpr883XWfmX3WjK8Tbw Mbwfr+PinkAJ/B1DflzaIWfklNXReh298WdcUAZVL0aT9/Cg7xicHQ5RBrGhBl4= =kjqG -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Thu Nov 7 10:47:13 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 7 Nov 2013 09:47:13 +0100 (CET) Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <527B4702.4070100@softjury.de> References: <527B4702.4070100@softjury.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 7 Nov 2013, Jan Phillip Greimann wrote: > maillog: > http://pastebin.com/WDGfEjdp are there some other log files, too? In it one sees that the recipient jg+introversion at larptreff.de is successfully interpreted as jg at larptreff.de and data seems to be good as well: maildir++: root=/var/vmail/larptreff.de/jg/Maildir, index=, indexpvt=, control=, inbox=/var/vmail/larptreff.de/jg/Maildir But I don't see any log entry about that a deliviery has been tried at all. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUntTkV3r2wJMiz2NAQL7aQgApEPYGOhO5QQB/8xj0QbPHg7CIH8u2j5b GrbyXPTHjag5U+vIqooY8SkBzRzBAzN5RhWg0Ss3gy9dkxzukZWjb3jfF7nMrvGa AQ9q30nex0Lq/WTmzsEvsnSctwBCtggM2IQZbsz1uKBM1L2KaOY5Gp9CUsPqhN8A QHkxvHVllX6gxOFw6/RoFYnFrrbUHZ1dNA+iSkQfA44oiCC/fGQGOExsoq1ODZ2w Bahm31Ul5Yls1SquwHQEXraGhXxczPkBl7LPXwNiPM0p/t9ad/ItfonEQxBVGfS3 wMHMhH+iJaE8Qyc5G2Am6Z6mytWcidwAUj+BO/CYpgt5Hk2adpaJ2w== =Qaog -----END PGP SIGNATURE----- From jg at softjury.de Thu Nov 7 11:12:20 2013 From: jg at softjury.de (Jan Phillip Greimann) Date: Thu, 07 Nov 2013 10:12:20 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: References: <527B4702.4070100@softjury.de> Message-ID: <527B5974.1080204@softjury.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello Steffen, no other logs. :-/ That's even the only one with lmtp-debug-messages, now all log entries look like that: http://pastebin.com/raw.php?i=zFeC9Ncr I want to make a workaround in postfix like rewrite jg+*@larptreff.de -> jg at larptreff.de but I can't find a solution for relay-domains. (sending my mails via relay-domain to dovecot) Regards Jan Am 07.11.2013 09:47, schrieb Steffen Kaiser: > On Thu, 7 Nov 2013, Jan Phillip Greimann wrote: > >> maillog: http://pastebin.com/WDGfEjdp > > are there some other log files, too? In it one sees that the > recipient jg+introversion at larptreff.de is successfully interpreted > as jg at larptreff.de and data seems to be good as well: maildir++: > root=/var/vmail/larptreff.de/jg/Maildir, index=, indexpvt=, > control=, inbox=/var/vmail/larptreff.de/jg/Maildir > > But I don't see any log entry about that a deliviery has been tried > at all. > > -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSe1l0AAoJENEKhqzzuxPl+msIAJ6EuLwig/M1G4XS7hUSvnjH /KtJYVF6Ove3a1iWqVyYk2DIxgJBDcyjJwmw+U6pjnoDxap1p+sgVpgcLwTBvV7v GVbwFNfoGKjarSVYAknH0LiLzw0DUCItzt2Ga7mU4ngeTopPnSK0Qvu0hMF1lnu+ HpHmwyJZC40A1d0BewoIciK6/R9ZFLsc325sShn8sFz77pWGyC0VR/tJ2Q0qKLcQ Yr8Fhs/+nsOkrkTxEJvhHJNaxnsnO2PBupKe57YOCl+awTlPbtIcpOJnqVgfKznO j5+qua0nPaifHTpmz7DCKlFAdM3jv25HQ6Ow0Nr6rE0cVftFs1GWjUWyDUDXB+o= =Dy+Z -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Thu Nov 7 11:32:04 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 7 Nov 2013 10:32:04 +0100 (CET) Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <527B5974.1080204@softjury.de> References: <527B4702.4070100@softjury.de> <527B5974.1080204@softjury.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 7 Nov 2013, Jan Phillip Greimann wrote: > That's even the only one with lmtp-debug-messages, now all log entries > look like that: > > http://pastebin.com/raw.php?i=zFeC9Ncr is this some sort of LMTP ahead to probe the recipient? Greylisting perhaps with local recipients? Does " decided action=PREPEND X-policyd-weight: using cached result;" mean that no action has been performed, but the negative result cached already will be returned. Do you have a corresponding lmtp log entry? To test LMTP try this: telnet to your LMTP port, or for an Unix socket: socat - UNIX:/var/run/dovecot/lmtp Then speak LMTP: LHLO loc mail from: rcpt to: quit and without the +detail in rcpt to. If you get to enter the QUIT without losing you connection, your postfix log entry does not makes sense to me. 2xx responses are successful, 4xx temporary error, 5xx errors. You should not see no other resonse codes. See the Dovecot log and probably monitor the system for an abort or segfault of a Dovecot LMTP process. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUnteFV3r2wJMiz2NAQIb4gf9G55K7x6znpmts4/5cg2YLq7de0rRF1DA Aunjb4nss66fGz/Dj3bHf4k8AyR4nkwhw4PrSTE+rtMNhAZu7qo9jL6gpS7B1X6o B6CXNg/tlM8QAR2p21Q42Aa4I+W6a9nVVzaAckrZbOfIaDb0qcDEcmBKlfujRDTU E76CWS6ZIadDXk1pTOz6S0VBmmaDY0Avavm+IyOUAYC8Y4DDmJZlAmKfzek055L3 qqP44V4p+dqvgVDu72F+Pv9Xsvag6y8lb39nJ1JUzpKBH52sC+l7TVs2EPsrrLwf aRj882qjnwqVX5NuFk1Rb05Ohj2chZnE/ByelKD4EUW7XZxk+LFp5g== =w8ZQ -----END PGP SIGNATURE----- From trashcan at odo.in-berlin.de Thu Nov 7 11:35:54 2013 From: trashcan at odo.in-berlin.de (Michael Grimm) Date: Thu, 07 Nov 2013 10:35:54 +0100 Subject: [Dovecot] =?utf-8?q?status=3Dundeliverable_=28lost_connection_wit?= =?utf-8?q?h_mail=2Elarptreff=2Ede=5Bprivate/dovecot-lmtp=5D_while_sending?= =?utf-8?q?_MAIL_FROM=29?= In-Reply-To: <527B4702.4070100@softjury.de> References: <527B4702.4070100@softjury.de> Message-ID: <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> On 2013-11-07 8:53, Jan Phillip Greimann wrote: This is dovecot 2.2.7, postfix 2.10.2, all addresses type virtual mailbox domain class, and dovecot/lmtp delivery. > I noticed a strange log-entry since the last day: > > Nov 7 08:34:42 hetzner postfix/lmtp[3764]: 61CB01A3938: > to=, > relay=mail.larptreff.de[private/dovecot-lmtp], delay=0.05, > delays=0.01/0.01/0.02/0.01, dsn=4.4.2, status=undeliverable (lost > connection with mail.larptreff.de[private/dovecot-lmtp] while sending > MAIL FROM) I noticed as well, that some of my addresses lead to unusual rejections never anticipated before: postfix/lmtp[1234]: 3dFbVw2NVmz6SL: to=, relay=mx1.example.com[private/dovecot-lmtp], delay=0.04, delays=0.03/0/0/0.01, dsn=4.4.2, status=undeliverable (lost connection with mx1.example.com[private/dovecot-lmtp] while sending MAIL FROM) > It seems this only happens on mails with "+"-Delimiter. In my case regular addresses are rejected as well (see example). What I really do not understand is that out of e.g. 50 different recipient addresses of one virtual mailbox domain only a few are rejected, the other pass as usual. This is not random, some addresses pass always, others fail reproducible. > In my opinion there is only one thing which could cause this problem: > I updated my dovecot on 2013/11/04 from 2.2.6-1~auto+36 to > 2.2.7-1~auto+2 I updated two days ago. > I will try to downgrade again, did someone have a clue? I have no clue what leads to those random rejections of recipient addresses. After setting ... | warn_if_reject reject_unverified_recipient ... those mails are accepted. But I do consider this a temporary workaround. Regards, Michael From jg at softjury.de Thu Nov 7 11:52:00 2013 From: jg at softjury.de (Jan Phillip Greimann) Date: Thu, 07 Nov 2013 10:52:00 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: References: <527B4702.4070100@softjury.de> <527B5974.1080204@softjury.de> Message-ID: <527B62C0.9040402@softjury.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 07.11.2013 10:32, schrieb Steffen Kaiser: > On Thu, 7 Nov 2013, Jan Phillip Greimann wrote: > >> That's even the only one with lmtp-debug-messages, now all log >> entries look like that: > >> http://pastebin.com/raw.php?i=zFeC9Ncr > > is this some sort of LMTP ahead to probe the recipient? > Greylisting perhaps with local recipients? Does " decided > action=PREPEND X-policyd-weight: using cached result;" mean that no > action has been performed, but the negative result cached already > will be returned. Do you have a corresponding lmtp log entry? I've enabled dovecots debug-log after the problems happened, so there are no corresponding lmtp logs. > To test LMTP try this: > > telnet to your LMTP port, or for an Unix socket: > > socat - UNIX:/var/run/dovecot/lmtp > > Then speak LMTP: > > LHLO loc mail > from: > > rcpt to: quit > > and without the +detail in rcpt to. If you get to enter the QUIT > without losing you connection, your postfix log entry does not > makes sense to me. 2xx responses are successful, 4xx temporary > error, 5xx errors. You should not see no other resonse codes. Okay, the log entries make no sense at all it seems. With socat it works like charm. > See the Dovecot log and probably monitor the system for an abort > or segfault of a Dovecot LMTP process. As far as I see there are no segfaults. Postfix and dovecot are logging to syslog --> mail.log, and there is only the given output. Regards Jan -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSe2LAAAoJENEKhqzzuxPllZUH/jm3eCAPMhnmGShj1V0qwZnA YbmrEfLBjqm8Yh3KMhmyzZLDF6wkv4JEFJJGpeHlfQ1yRuHb7QZ0/z0hVceQCkOp JSv7+o9QWurRMbQmcu/CzL5JFz2p9SLN4vRReAgXWmavCazwzgnzeoDzf705rajy 2rMlwwLn0VGVAykFP0IHTLL+ldWaCCur0A98mHe3lKeK9OOGbBrrdDoW+VSMQVUi x60vBHmcoN0L3EKXYyVC1G2BMPXNC/RiT4ElAjJCNA7M0kKyPtU5ZVsiiEUFYWm1 btrizND9+8bMI/T1axjw5Jv94HqKC6KIJMXprwipuXWUeA68snUIDy17wFqEa1U= =E8P3 -----END PGP SIGNATURE----- From jg at softjury.de Thu Nov 7 12:07:05 2013 From: jg at softjury.de (Jan Phillip Greimann) Date: Thu, 07 Nov 2013 11:07:05 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> Message-ID: <527B6649.2060202@softjury.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 >> In my opinion there is only one thing which could cause this >> problem: I updated my dovecot on 2013/11/04 from 2.2.6-1~auto+36 >> to 2.2.7-1~auto+2 > > I updated two days ago. @Timo, did you changed something within LMTP? ;-D >> I will try to downgrade again, did someone have a clue? > > I have no clue what leads to those random rejections of recipient > addresses. After setting ... > > | warn_if_reject reject_unverified_recipient > > ... those mails are accepted. But I do consider this a temporary > workaround. This workaround did it for me too, hope this is considered as a bug and fixed soon. > Regards, Michael > Regards, Jan -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSe2ZJAAoJENEKhqzzuxPlQdsH/Rtl1E3e6CkMqVxAZjgZ7TRs VaPaZLaAVefF7LdxNaiK71XNyXlgAOqJ9Hxr1x7QTO5Z6akMp40yAZF0cII7SD0j buTQ8QKoqWOra+J8S11SAYLqbHsi2N8DbOjQ1v+uXk4cweHSGmuAeLT5ZiHWdT/H 5ZN5LifbmCk7bSWyN53SvZiEC81/XMIdaSGuFxA3bpaxyoYlfvq1y569fQdDYTIJ da3kO4l0VaNDhcWGrR8pMr5PFAPF6Z/lw575M54IcMeWzrzgyDbXETOhN488D4xI +vd79wUakeivOPD0MOxutst93TExZmLr8sxsqFB6nREx75U2iEEbSgbgPsMg8oo= =CIQ6 -----END PGP SIGNATURE----- From tss at iki.fi Thu Nov 7 12:43:31 2013 From: tss at iki.fi (Timo Sirainen) Date: Thu, 7 Nov 2013 12:43:31 +0200 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <527B62C0.9040402@softjury.de> References: <527B4702.4070100@softjury.de> <527B5974.1080204@softjury.de> <527B62C0.9040402@softjury.de> Message-ID: <76FEAC92-E0DC-4649-9DA0-11A393380A33@iki.fi> On 7.11.2013, at 11.52, Jan Phillip Greimann wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Am 07.11.2013 10:32, schrieb Steffen Kaiser: >> On Thu, 7 Nov 2013, Jan Phillip Greimann wrote: >> >>> That's even the only one with lmtp-debug-messages, now all log >>> entries look like that: >> >>> http://pastebin.com/raw.php?i=zFeC9Ncr >> >> is this some sort of LMTP ahead to probe the recipient? >> Greylisting perhaps with local recipients? Does " decided >> action=PREPEND X-policyd-weight: using cached result;" mean that no >> action has been performed, but the negative result cached already >> will be returned. Do you have a corresponding lmtp log entry? > > I've enabled dovecots debug-log after the problems happened, so there > are no corresponding lmtp logs. Dovecot debug logs rarely help with any random problems you have, they?re mostly there to find out configuration mistakes. More interesting would be to know if you see ANY error/warning messages in Dovecot logs (Fatal, Panic, Error, Warning). You?ll also see the last 1000 error messages since dovecot started with ?doveadm log errors?. From tss at iki.fi Thu Nov 7 13:04:15 2013 From: tss at iki.fi (Timo Sirainen) Date: Thu, 7 Nov 2013 13:04:15 +0200 Subject: [Dovecot] Solr clusters In-Reply-To: <0A0E4CAD-2E8A-4B65-8DE1-2DD59E33BCEB@iki.fi> References: <0A0E4CAD-2E8A-4B65-8DE1-2DD59E33BCEB@iki.fi> Message-ID: On 7.11.2013, at 5.36, Timo Sirainen wrote: > Has anyone implemented larger Dovecot+Solr clusters and would be willing to give some details about how it works for you? My understanding about it so far is: > > - SolrCloud isn?t usable with Dovecot. Replication isn?t useful, because nobody wants to pay for double the disk space for indexes that could be regenerated anyway. The autosharding isn?t very useful also, because: I think the shard keys could be created in two possible ways: a) Mails would be entirely randomly distributed across the cluster. This would make updates efficient, because the writes would be fully distributed across all servers. But I think it would also make reads somewhat inefficient, since all the servers would have to be searched and the results combined. Also if a server is lost, there?s no easy way to reindex back the missing data, because it would contain a piece of pretty much all the users? data. b) Shard keys could be created so that the same user would typically go only to 1-2 servers. It would be possible (at least in theory) to find a broken server?s list of users and reindex only their data, but I?m not sure if this method is any easier than the non-SolrCloud setup. Of course, if you do use NFS (or other shared filesystem) and you trust it enough not to easily lose all of the data, you don?t need replication and the auto-sharding could be useful after all.. From CMarcus at Media-Brokers.com Thu Nov 7 13:35:49 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 07 Nov 2013 06:35:49 -0500 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <527B5974.1080204@softjury.de> References: <527B4702.4070100@softjury.de> <527B5974.1080204@softjury.de> Message-ID: <527B7B15.8090308@Media-Brokers.com> On 2013-11-07 4:12 AM, Jan Phillip Greimann wrote: > That's even the only one with lmtp-debug-messages, now all log entries > look like that: > > http://pastebin.com/raw.php?i=zFeC9Ncr Please don't post configs, logs, etc to pastebin... just paste them inline. Many people won't bother to click unknown/untrusted links, and it also will eventually break the list history (if the content is ever moved or removed from pastebin)... -- Best regards, */Charles/* From ihab_mishriki at hotmail.com Thu Nov 7 15:33:03 2013 From: ihab_mishriki at hotmail.com (ihab) Date: Thu, 7 Nov 2013 05:33:03 -0800 (PST) Subject: [Dovecot] my quota warning script not getting executed2 Message-ID: <1383831183836-45196.post@n4.nabble.com> Why is my quota warning script not getting executed? :( dovecot version is 1.2.15 this is part of dovecot.conf protocol imap { listen = 127.0.0.1:143 #ji1 quota config mail_plugins = quota } quota = maildir:User quota quota_rule = *:storage=2M quota_exceeded_message=Quota exceeded please go http://www.go.com . quota_warning = storage=99%% /usr/local/bin/quota-warning.sh 99 %u quota_warning2 = storage=98%% /usr/local/bin/quota-warning.sh 98 %u quota_warning3 = storage=97%% /usr/local/bin/quota-warning.sh 97 %u and this is quota-warning.sh FROM="postmasterEmail" msg="From: $FROM To: TEST EMAIL Subject: Your email quota is 10% full Your mailbox is now 10% full." echo -e "$msg" | /usr/sbin/sendmail -f $FROM "TEST EMAIL " exit 0 -- View this message in context: http://dovecot.2317879.n4.nabble.com/my-quota-warning-script-not-getting-executed2-tp45196.html Sent from the Dovecot mailing list archive at Nabble.com. From me at junc.eu Thu Nov 7 18:10:33 2013 From: me at junc.eu (Benny Pedersen) Date: Thu, 07 Nov 2013 17:10:33 +0100 Subject: [Dovecot] my quota warning script not getting executed2 In-Reply-To: <1383831183836-45196.post@n4.nabble.com> References: <1383831183836-45196.post@n4.nabble.com> Message-ID: <022d44a6f126cd00f84514a5071fef40@junc.eu> ihab skrev den 2013-11-07 14:33: > Why is my quota warning script not getting executed? :( 1.2.15 is old, most users here just will say update to 2.x.x, but that sayed it would imho be possible to configure 1.x.x to have quota dict in sql, then postfix can imho temp fail based on that info in sql why did 2.x.x solve this with a policy service running in c code ? http://sys4.de/en/blog/2013/04/08/postfix-dovecot-mailbox-quota/ am i sleeping ? also why not let imap users see the imap_quota in there mua like thunderbird ? or even roundcube/horde/squirrelmail ? :) From rs at sys4.de Thu Nov 7 18:54:10 2013 From: rs at sys4.de (Robert Schetterer) Date: Thu, 07 Nov 2013 17:54:10 +0100 Subject: [Dovecot] my quota warning script not getting executed2 In-Reply-To: <022d44a6f126cd00f84514a5071fef40@junc.eu> References: <1383831183836-45196.post@n4.nabble.com> <022d44a6f126cd00f84514a5071fef40@junc.eu> Message-ID: <527BC5B2.1020408@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 07.11.2013 17:10, schrieb Benny Pedersen: > ihab skrev den 2013-11-07 14:33: >> Why is my quota warning script not getting executed? :( > > 1.2.15 is old, most users here just will say update to 2.x.x, but > that sayed it would imho be possible to configure 1.x.x to have > quota dict in sql, then postfix can imho temp fail based on that > info in sql > > why did 2.x.x solve this with a policy service running in c code ? > > http://sys4.de/en/blog/2013/04/08/postfix-dovecot-mailbox-quota/ > > am i sleeping ? > > also why not let imap users see the imap_quota in there mua like > thunderbird ? or even roundcube/horde/squirrelmail ? :) > > there is no real relation between, showing imap quota in the imap client, dovecot policy service and or quota warn scripts specially the warn script is for the imap owner of a mailbox, he may get overquota with i.e copy mail in mailbox via imap, too the policy service is for mail and mailbox quota delivered in by i.e smtp server ( blog only describes how to implement ) the quota show function in imap clients is ignored widly by users in real world , so warnings are fine Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSe8WuAAoJEP8jBObu0LlEXG4H/1z70sf7xmSQpOOCwoFsdhaL 6YgiWBdDk7t009Kg3B9v8vrfTtaX3LhhhzbwCeS4FYGRNRus3qQC/p3HJ1ja3Kru xTcNiFvMBoSPQErMdHScseLhOsMa4fXlUp2PUnHdfryMlHkGQ3FPnaLaa0uleUNC zW2157OB6Rz1L0a3Rq04/SOB2ZsZ/h3PNUa5xIiWpLfMHSu8IheGu2Apl3yiTl/9 EMtDgaNEAiSTVSVTTCV7PQ4Vj0doUoA5bl8V86HrCRcKzw9fzYcmMupFCHxnj/Wq SGvL9mJJ8JB6/reS4poqGWVUiyggnqcS0Hw1cd56VsZQWcbYTs6bJoqHq1rGzYM= =Bw1E -----END PGP SIGNATURE----- From trashcan at odo.in-berlin.de Thu Nov 7 20:30:55 2013 From: trashcan at odo.in-berlin.de (Michael Grimm) Date: Thu, 7 Nov 2013 19:30:55 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <76FEAC92-E0DC-4649-9DA0-11A393380A33@iki.fi> References: <527B4702.4070100@softjury.de> <527B5974.1080204@softjury.de> <527B62C0.9040402@softjury.de> <76FEAC92-E0DC-4649-9DA0-11A393380A33@iki.fi> Message-ID: <458487F2-557C-4B0C-BB34-E04BC9C5C9CF@odo.in-berlin.de> Timo Sirainen wrote: Sorry, but neither my log files starting a week ago ... > More interesting would be to know if you see ANY error/warning messages in Dovecot logs (Fatal, Panic, Error, Warning). ... nor ... > You?ll also see the last 1000 error messages since dovecot started with ?doveadm log errors?. ... show any messages, none. This is 2.2.7 (775b1e025939). Regards, Michael From alex.wanderley at edmonton.ca Thu Nov 7 23:45:45 2013 From: alex.wanderley at edmonton.ca (alexwanderley) Date: Thu, 7 Nov 2013 13:45:45 -0800 (PST) Subject: [Dovecot] proxy, userdb and passdb In-Reply-To: <526145F7.9020303@mur.at> References: <526145F7.9020303@mur.at> Message-ID: <1383860745696-45200.post@n4.nabble.com> Hello Jogi, Did you happen to have this working? Could you share how? Thanks, Alex -- View this message in context: http://dovecot.2317879.n4.nabble.com/proxy-userdb-and-passdb-tp44860p45200.html Sent from the Dovecot mailing list archive at Nabble.com. From achim at ag-web.biz Fri Nov 8 02:25:03 2013 From: achim at ag-web.biz (Achim Gottinger) Date: Fri, 08 Nov 2013 01:25:03 +0100 Subject: [Dovecot] Question about folder sharing Message-ID: <527C2F5F.1050009@ag-web.biz> Hi, I run dovecot (2.1.7) on debian wheezy in conjuniction with postfix, samba4 (as ldap backend) and sogo. I configured folder sharing but have an few issues. With my current config users can share the inbox and other folders. If the acl allows creatings subfolders this does work for all folders beside inbox. What i want to archiev is the following: If an user shares his inbox, others should be able to create subfolders and those should inherit the inboxe's acl. All subfolders of inbox should appear as folders at root level and not as subfolders of the inbox. I thought this can be done by setting the prefix of namespace inbox to INBOX/. I did this and changed the IMAP Server Folder setting in thunderbird to INBOX (like it was earlier when i used courier). Now subfolders created at rootlevel or as subfolders of the inbox appear on rootlevel in thunderbird but they do not inherit the acl's from inbox. Is there an way to achive this? doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.2 ext4 auth_debug = yes auth_gssapi_hostname = $ALL auth_krb5_keytab = /etc/dovecot/dovecot.keytab auth_master_user_separator = % auth_mechanisms = plain login gssapi auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@% auth_username_format = %n auth_verbose = yes debug_log_path = syslog disable_plaintext_auth = no first_valid_gid = 998 first_valid_uid = 998 info_log_path = syslog mail_debug = yes mail_gid = 998 mail_home = /home/vmail/%u mail_location = maildir:/home/vmail/%u/mail mail_plugins = acl mail_shared_explicit_inbox = no mail_uid = 998 maildir_very_dirty_syncs = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { list = children location = maildir:/home/vmail/%%u/mail:INDEX=/home/vmail/%u/mail/shared/%%u prefix = shared/%%u/ separator = / subscriptions = no type = shared } namespace inbox { inbox = yes location = maildir:/home/vmail/%u/mail prefix = separator = / type = private } passdb { args = /etc/dovecot/dovecot-ldap-passdb.conf.ext driver = ldap } passdb { args = /etc/dovecot/passwd.masterusers driver = passwd-file master = yes } plugin { acl = vfile acl_anyone = allow acl_shared_dict = file:/home/vmail/.shared-mailboxes sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = " imap lmtp sieve" service auth-worker { user = $default_internal_user } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { group = vmail mode = 0777 user = vmail } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } service imap-postlogin { executable = script-login /etc/dovecot/acl-groups.sh user = $default_internal_user } service imap { executable = imap imap-postlogin } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0666 user = postfix } } service managesieve-login { inet_listener sieve { port = 4190 } } ssl_cert = References: <527C2F5F.1050009@ag-web.biz> Message-ID: <527C4369.2010307@ag-web.biz> Hmm inheritance for Inbox subfolders is working now that i changed namespace inbox into namespace. However the prefix INDEX thing does not look nice for shared folders they appear as shaler/username/INBOX/[foldername] The docs mention: ACL Inheritance Every time you create a new mailbox, it gets its ACLs from the parent mailbox. If you're creating a root-level mailbox, it uses the namespace's default ACLs. There is no actual inheritance, however: If you modify parent's ACLs, the child's ACLs stay the same. There is currently no support for ACL inheritance. Namespace's default ACLs are read from "dovecot-acl" file in the namespace's mail root directory (e.g. /var/public/Maildir). Note that currently these default ACLs are used only when creating new mailboxes, they aren't used for mailboxes without ACLs. What i do not understand where would i have to put an dovecot-acl for user default? My mail_home is /home/vmail/%u and mail root an subfolder mail inside. The dovecot-acl residing here is the one with the acl's for inbox and therefore only used for inboxe's subfolders. Am 08.11.2013 01:25, schrieb Achim Gottinger: > Hi, > > I run dovecot (2.1.7) on debian wheezy in conjuniction with postfix, > samba4 (as ldap backend) and sogo. I configured folder sharing but > have an few issues. > With my current config users can share the inbox and other folders. If > the acl allows creatings subfolders this does work for all folders > beside inbox. > > What i want to archiev is the following: > > If an user shares his inbox, others should be able to create > subfolders and those should inherit the inboxe's acl. All subfolders > of inbox should appear as folders at root level and not as subfolders > of the inbox. > > I thought this can be done by setting the prefix of namespace inbox to > INBOX/. I did this and changed the IMAP Server Folder setting in > thunderbird to INBOX (like it was earlier when i used courier). Now > subfolders created at rootlevel or as subfolders of the inbox appear > on rootlevel in thunderbird but they do not inherit the acl's from > inbox. Is there an way to achive this? > > doveconf -n > > # 2.1.7: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.2 ext4 > auth_debug = yes > auth_gssapi_hostname = $ALL > auth_krb5_keytab = /etc/dovecot/dovecot.keytab > auth_master_user_separator = % > auth_mechanisms = plain login gssapi > auth_username_chars = > abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@% > auth_username_format = %n > auth_verbose = yes > debug_log_path = syslog > disable_plaintext_auth = no > first_valid_gid = 998 > first_valid_uid = 998 > info_log_path = syslog > mail_debug = yes > mail_gid = 998 > mail_home = /home/vmail/%u > mail_location = maildir:/home/vmail/%u/mail > mail_plugins = acl > mail_shared_explicit_inbox = no > mail_uid = 998 > maildir_very_dirty_syncs = yes > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include variables body enotify > environment mailbox date ihave > namespace { > list = children > location = > maildir:/home/vmail/%%u/mail:INDEX=/home/vmail/%u/mail/shared/%%u > prefix = shared/%%u/ > separator = / > subscriptions = no > type = shared > } > namespace inbox { > inbox = yes > location = maildir:/home/vmail/%u/mail > prefix = > separator = / > type = private > } > passdb { > args = /etc/dovecot/dovecot-ldap-passdb.conf.ext > driver = ldap > } > passdb { > args = /etc/dovecot/passwd.masterusers > driver = passwd-file > master = yes > } > plugin { > acl = vfile > acl_anyone = allow > acl_shared_dict = file:/home/vmail/.shared-mailboxes > sieve = ~/.dovecot.sieve > sieve_dir = ~/sieve > } > protocols = " imap lmtp sieve" > service auth-worker { > user = $default_internal_user > } > service auth { > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0666 > user = postfix > } > unix_listener auth-userdb { > group = vmail > mode = 0777 > user = vmail > } > } > service imap-login { > inet_listener imap { > port = 143 > } > inet_listener imaps { > port = 993 > ssl = yes > } > } > service imap-postlogin { > executable = script-login /etc/dovecot/acl-groups.sh > user = $default_internal_user > } > service imap { > executable = imap imap-postlogin > } > service lmtp { > unix_listener /var/spool/postfix/private/dovecot-lmtp { > group = postfix > mode = 0666 > user = postfix > } > } > service managesieve-login { > inet_listener sieve { > port = 4190 > } > } > ssl_cert = ssl_key = userdb { > args = /etc/dovecot/dovecot-ldap-userdb.conf.ext > driver = ldap > } > userdb { > args = /etc/dovecot/dovecot-ldap-userdb-groups.conf.ext > driver = ldap > } > protocol imap { > imap_client_workarounds = delay-newmail > mail_plugins = acl imap_acl > } > protocol lmtp { > mail_plugins = acl sieve > } > From achim at ag-web.biz Fri Nov 8 04:02:34 2013 From: achim at ag-web.biz (Achim Gottinger) Date: Fri, 08 Nov 2013 03:02:34 +0100 Subject: [Dovecot] Question about folder sharing In-Reply-To: <527C4369.2010307@ag-web.biz> References: <527C2F5F.1050009@ag-web.biz> <527C4369.2010307@ag-web.biz> Message-ID: <527C463A.9000004@ag-web.biz> Am 08.11.2013 02:50, schrieb Achim Gottinger: > Hmm inheritance for Inbox subfolders is working now that i changed > namespace inbox into namespace. > > However the prefix INDEX thing does not look nice for shared folders > they appear as shaler/username/INBOX/[foldername] > > The docs mention: > > > ACL Inheritance > > Every time you create a new mailbox, it gets its ACLs from the parent > mailbox. If you're creating a root-level mailbox, it uses the > namespace's default ACLs. There is no actual inheritance, however: If > you modify parent's ACLs, the child's ACLs stay the same. There is > currently no support for ACL inheritance. > > Namespace's default ACLs are read from "dovecot-acl" file in the > namespace's mail root directory (e.g. /var/public/Maildir). Note that > currently these default ACLs are used only when creating new > mailboxes, they aren't used for mailboxes without ACLs. > > What i do not understand where would i have to put an dovecot-acl for > user default? My mail_home is /home/vmail/%u and mail root an > subfolder mail inside. The dovecot-acl residing here is the one with > the acl's for inbox and therefore only used for inboxe's subfolders. > Beside that i guess it would still not allow users to create folders via thunderbird by right click on shared/[username] and selecting new folder. Seems the only workaround is to create an separate folder share him and set acls on that folder so the hierarchy would end up linke this Inbox Trash ... shared/[username] (users inbox) shared/[username]/folder (the helper folder with proper acl's) shared/[username]/folder/[subfolders] and if there are subfolders in the inbox shared/[username]/INBOX/[subfolder] From goetz.reinicke at filmakademie.de Fri Nov 8 09:48:05 2013 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Fri, 08 Nov 2013 08:48:05 +0100 Subject: [Dovecot] how to calculate mail storage/traffic used Message-ID: <527C9735.1050409@filmakademie.de> Hi, may be som mailserver admins on the list can give me som hint. Thats not dovecot related, but I know the knowledg here is enormous. We have to setup a server which gets a copy of all messages send and received by our mailserver as a 1:1 copy. Mails send to multiple recipients should be calculated and saved per user. (great if you usually have lost of mails send to groups of people.) So no dedublication should be used here. (e.g. save the message and refer the different recipients to it.) How can I calculate the current traffic in the best way to extrapolate the amount of space to be planed for the new server? We think to have a couples of days to be saved. Thanks for any hint or comment. Regards G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 Fax +49 7141 969 55 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From skdovecot at smail.inf.fh-brs.de Fri Nov 8 10:07:51 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 8 Nov 2013 09:07:51 +0100 (CET) Subject: [Dovecot] how to calculate mail storage/traffic used In-Reply-To: <527C9735.1050409@filmakademie.de> References: <527C9735.1050409@filmakademie.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 8 Nov 2013, G?tz Reinicke - IT Koordinator wrote: > We have to setup a server which gets a copy of all messages send and > received by our mailserver as a 1:1 copy. Mails send to multiple > recipients should be calculated and saved per user. (great if you > usually have lost of mails send to groups of people.) > > So no dedublication should be used here. (e.g. save the message and > refer the different recipients to it.) > > How can I calculate the current traffic in the best way to extrapolate > the amount of space to be planed for the new server? I would check your MTA logs, if you get the size of the message and the [number of] recipients. Do you really want to store outgoing mails, too? In mailboxes accessable by IMAP or the like? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUnyb113r2wJMiz2NAQKSlwf/Z9U211qwC8QFfsweEcP7pOuhB8pJySio TfEZnFZHkr7wpyXNcJ/9o0lTmb2/LTHz1Z6o88l7ejqG8Ni6DZr/45/icX1yKZ/x Mi9Xz0tHgVN1yfDShS9ghJrMFtN87vH/49vG98aY9149m6K1b5m5d5nwBv8ctwWq KwLHk3IlW6nH41T1jrJqA2GKAFvLrLg6qvUDs3SoEoNSyKlrN3RCeiobWTGgbAaC lh3CtUCfzSP3T6qo5ZLeOCffqpl1YdAGuD5/691pGmn6pgFCSCS9LeOuuclH2Itz w+j4MtUmcdThmiOn3IbzD+KTgJCOLt1UA2v89tbS3QGK5JYOEYF4pQ== =jcui -----END PGP SIGNATURE----- From goetz.reinicke at filmakademie.de Fri Nov 8 10:47:05 2013 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Fri, 08 Nov 2013 09:47:05 +0100 Subject: [Dovecot] how to calculate mail storage/traffic used In-Reply-To: References: <527C9735.1050409@filmakademie.de> Message-ID: <527CA509.8070403@filmakademie.de> Am 08.11.13 09:07, schrieb Steffen Kaiser: > On Fri, 8 Nov 2013, G?tz Reinicke - IT Koordinator wrote: > >> We have to setup a server which gets a copy of all messages send and >> received by our mailserver as a 1:1 copy. Mails send to multiple >> recipients should be calculated and saved per user. (great if you >> usually have lost of mails send to groups of people.) > >> So no dedublication should be used here. (e.g. save the message and >> refer the different recipients to it.) > >> How can I calculate the current traffic in the best way to extrapolate >> the amount of space to be planed for the new server? > > I would check your MTA logs, if you get the size of the message and the > [number of] recipients. Do you really want to store outgoing mails, > too? In mailboxes accessable by IMAP or the like? Hi, no, we have to put all messages in ELM / singel file format on to a networkshare to be collected and processed by a document management system. We need in and out mails to be saved. I know there are better/other solutions including good dedublication for mail archiving, but thats how it works. Cheers . G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 Fax +49 7141 969 55 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From jg at softjury.de Fri Nov 8 11:07:28 2013 From: jg at softjury.de (Jan Phillip Greimann) Date: Fri, 08 Nov 2013 10:07:28 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <458487F2-557C-4B0C-BB34-E04BC9C5C9CF@odo.in-berlin.de> References: <527B4702.4070100@softjury.de> <527B5974.1080204@softjury.de> <527B62C0.9040402@softjury.de> <76FEAC92-E0DC-4649-9DA0-11A393380A33@iki.fi> <458487F2-557C-4B0C-BB34-E04BC9C5C9CF@odo.in-berlin.de> Message-ID: <527CA9D0.1090001@softjury.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 07.11.2013 19:30, schrieb Michael Grimm: > Timo Sirainen wrote: > > Sorry, but neither my log files starting a week ago ... > >> More interesting would be to know if you see ANY error/warning >> messages in Dovecot logs (Fatal, Panic, Error, Warning). > > ... nor ... > >> You?ll also see the last 1000 error messages since dovecot >> started with ?doveadm log errors?. > > ... show any messages, none. This is 2.2.7 (775b1e025939). > > Regards, Michael > Same here, no errors or any logs. Only since 2.2.7. Regards, Jan -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSfKnPAAoJENEKhqzzuxPlWb8H/05dv4jQASaIYyKUi5CPRpNO /TXkUKBwqOVgGBo5mxW06ppfao6zICfEYQUS+Xk131CugXkfamCiFaZD/lHaa5ib dOz8wGuJuuZ9VXw4+J4GXpAIcxhV9OFNibehzpeHTmFe/1SmtS3iHoan85hHNqc6 cDcdCet7fF56yYBGcGNCf1uQvCxgVWcvKZ2QkyP6MfoOay8g88J1V+Di9iJTJzXz 9899lcWl8w2I6vUaexaw2o63s19POsjLHVbx7BPvDtF0ohG960yfGxIJ7qDTX3Kn D0AOIUanmsGgdXifUudJlMfh2KKAXuOhgHYa5ODM42g+8QNSKRddmQla5ARoSqw= =RPY6 -----END PGP SIGNATURE----- From jkrzyz at wprost.pl Fri Nov 8 12:05:16 2013 From: jkrzyz at wprost.pl (=?UTF-8?B?SmFrdWIgS3J6ecW8ZXdza2k=?=) Date: Fri, 08 Nov 2013 11:05:16 +0100 Subject: [Dovecot] Problem with master user Message-ID: <527CB75C.2020005@wprost.pl> Hello. I have problem as below: Nov 8 10:41:52 store1 dovecot: auth: Debug: auth(master at example.com,::1,master,): Master user lookup for login: jkrzyz at example.com Nov 8 10:41:52 store1 dovecot: auth: Debug: passwd-file(master at example.com,::1,master,): lookup: user=master at example.com file=/etc/dovecot/master-use rs Nov 8 10:41:52 store1 dovecot: auth: Debug: password(master at example.com,::1,master,): Generating DIGEST-MD5 from user 'master', password 'test' Nov 8 10:41:52 store1 dovecot: auth: passdb(master at example.com,::1,master,): Master user logging in as jkrzyz at example.com Nov 8 10:41:52 store1 dovecot: auth: Debug: ldap(jkrzyz at example.com,::1,): pass search: base=dc=example,dc=com scope=subtree filter=(&(locMailActive=TRUE)(| (uid=jkrzyz at example.com)(uid=jkrzyz)(mailRoutingAddress=jkrzyz at example.com))) fields=mailRoutingAddress,userPassword Nov 8 10:41:52 store1 dovecot: auth: Debug: ldap(jkrzyz at example.com,::1,): result: mailRoutingAddress=jkrzyz at example.com userPassword=test2 Nov 8 10:41:52 store1 dovecot: auth: Debug: password(jkrzyz at example.com,::1,): Generating DIGEST-MD5 from user 'master', password 'test2' Nov 8 10:41:52 store1 dovecot: auth: Debug: password(jkrzyz at example.com,::1,): Credentials: d64221d543d7c9a809c7d6e424d87be8 Nov 8 10:41:52 store1 dovecot: auth: digest-md5(jkrzyz at example.com,::1,): password mismatch As you can see, password is check against user passdb and not passwd-file, where master's password is stored. Test is password of master user, test2 is password of jkrzyz Setting pass=yes or no makes no difference. What is wrong with my config? dovecot --version 2.1.7 dovecot.conf snippet: passdb { args = scheme=PLAIN /etc/dovecot/master-users driver = passwd-file master = yes pass = yes } passdb { args = /etc/dovecot/dovecot-ldap.conf.ext driver = ldap } userdb { args = /etc/dovecot/dovecot-ldap.conf.ext driver = ldap } /etc/dovecot/master-users: master:{PLAIN}test master at example.com:{PLAIN}test From goetz.reinicke at filmakademie.de Fri Nov 8 12:12:26 2013 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Fri, 08 Nov 2013 11:12:26 +0100 Subject: [Dovecot] how to calculate mail storage/traffic used - SOLVED In-Reply-To: <527CA509.8070403@filmakademie.de> References: <527C9735.1050409@filmakademie.de> <527CA509.8070403@filmakademie.de> Message-ID: <527CB90A.2010800@filmakademie.de> SendmailAnalyzer http://sareport.darold.net/index.html collects all Messaging flows like total incomming/outgoing and size in sum and average. and it has a graphic web interface ;) /G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 Fax +49 7141 969 55 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From tss at iki.fi Fri Nov 8 15:07:12 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 8 Nov 2013 14:07:12 +0100 Subject: [Dovecot] Dovecot MTA Message-ID: Hi all, I've never really wanted to create my own MTA, because I like Postfix quite a lot. And I always thought it would require a horribly lot of time to be able to create something that was anywhere even close to having Postfix's features. (I would shudder to even think about recreating Dovecot from scratch nowadays.) But slowly over time I've also been thinking of ways how things could be done a bit better, and I think I have enough ideas to start thinking about Dovecot MTA more seriously in a few more months (after my current busy schedule calms down a bit). And (unlike Dovecot!) I'm not planning on taking over the world with the MTA (or at least not very quickly), but it would definitely be useful for many installations I know of. My main design goals for the MTA are: * In normal load don't queue mails, just continue delivering the mail through different processes/services until it succeeds or fails, and only after that return ok/failure to the SMTP client. So there's no (forced) post-queue filtering, everything would normally happen pre-queue. This is required because in Germany (and EU in general?) you aren't allowed to just drop spams after SMTP server has responsed OK to the client, even if you?re 100% sure it?s a spam. So this would also mean that the SMTP DATA replies will come more slowly, which means that the SMTP server must be able to handle a lot more concurrent SMTP connections, which means that in large installations the smtpd process must be able to asynchronously handle multiple SMTP client connections. * In some cases you can't really avoid placing mails into a queue. This could be because of temporary failures or maybe because of an abnormal load spike. A mail queue in local disk isn't very nice though, because if the local disk dies, the queued mails are lost. Dovecot MTA will allow the queue to be in object storage and it will also likely support replication (similar to current dsync replication). In both of these cases if a server dies, another server can quickly take over its queue and continue handling it. * Dovecot MTA is a new product, which means we can add some requirements to how it's being used, especially related to securely sending emails between servers. It could do a bunch of checks at startup and fail to even start if everything isn't correct. Here are some things I had in mind - not sure if all of these are good ideas or not: - Require DKIM configuration. All outgoing mails will be DKIM signed. - Require the domain?s DNS to contain _submission._tcp SRV record (and actually might as well require _imap._tcp too) - Require SSL certificates to be configured and always allow remote to use STARTTLS - Require DANE TLSA record to exist and match the server's configured SSL cert - Have very good (and strict?) DNSSEC support. If we know a remote server is supposed to have valid DNSSEC entries, but doesn't, fail to deliver mail entirely? - Add a new DNS record that advertises this is a Dovecot MTA (or compatible). If such entry is found (especially when correctness is guaranteed by DNSSEC), the email sender can assume that certain features exist and work correctly. If they don't, it could indicate an attack and the mail sending should be retried later. This DNS record would of course be good to try to standardize. * Configuration: It would take years to implement all of the settings that Postfix has, but I think it's not going to be necessary. In fact I think the number of new settings to dovecot.conf that Dovecot MTA requires would be very minimal. Instead nearly all of the configuration could be done using Sieve scripts. We'd need to implement some new MTA-specific Sieve extensions and a few core features/configurations/databases that the scripts can use, but after that there wouldn't be really any limits to what could be done with them. * Try to implement as many existing interfaces as possible (e.g. Milter and various Postfix APIs like policy servers) so that it wouldn?t be necessary to reimplement all the tools and filters. So perhaps something like this could be done in time for Dovecot v2.4. Any thoughts/ideas/suggestions? From tsvetkov_av at grandvision.ru Fri Nov 8 15:25:06 2013 From: tsvetkov_av at grandvision.ru (Aleksey Tsvetkov) Date: Fri, 8 Nov 2013 17:25:06 +0400 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <20131108172506.1e79591b@work> Hi! It is possible to look towards Exim. To take as a basis ACL system. On Fri, 8 Nov 2013 14:07:12 +0100 Timo Sirainen writes: >Hi all, > >I've never really wanted to create my own MTA, because I like Postfix quite a lot. And I always thought it would require a horribly lot of time to be able to create something that was anywhere even close to having Postfix's features. (I would shudder to >even think about recreating Dovecot from scratch nowadays.) But slowly over time I've also been thinking of ways how things could be done a bit better, and I think I have enough ideas to start thinking about Dovecot MTA more seriously in a few more >months (after my current busy schedule calms down a bit). And (unlike Dovecot!) I'm not planning on taking over the world with the MTA (or at least not very quickly), but it would definitely be useful for many installations I know of. > >My main design goals for the MTA are: > >* In normal load don't queue mails, just continue delivering the mail through different processes/services until it succeeds or fails, and only after that return ok/failure to the SMTP client. So there's no (forced) post-queue filtering, everything >would normally happen pre-queue. This is required because in Germany (and EU in general?) you aren't allowed to just drop spams after SMTP server has responsed OK to the client, even if you?re 100% sure it?s a spam. So this would also mean that the SMTP >DATA replies will come more slowly, which means that the SMTP server must be able to handle a lot more concurrent SMTP connections, which means that in large installations the smtpd process must be able to asynchronously handle multiple SMTP client >connections. > >* In some cases you can't really avoid placing mails into a queue. This could be because of temporary failures or maybe because of an abnormal load spike. A mail queue in local disk isn't very nice though, because if the local disk dies, the queued >mails are lost. Dovecot MTA will allow the queue to be in object storage and it will also likely support replication (similar to current dsync replication). In both of these cases if a server dies, another server can quickly take over its queue and >continue handling it. > >* Dovecot MTA is a new product, which means we can add some requirements to how it's being used, especially related to securely sending emails between servers. It could do a bunch of checks at startup and fail to even start if everything isn't correct. >Here are some things I had in mind - not sure if all of these are good ideas or not: > >- Require DKIM configuration. All outgoing mails will be DKIM signed. >- Require the domain?s DNS to contain _submission._tcp SRV record (and actually might as well require _imap._tcp too) >- Require SSL certificates to be configured and always allow remote to use STARTTLS >- Require DANE TLSA record to exist and match the server's configured SSL cert >- Have very good (and strict?) DNSSEC support. If we know a remote server is supposed to have valid DNSSEC entries, but doesn't, fail to deliver mail entirely? >- Add a new DNS record that advertises this is a Dovecot MTA (or compatible). If such entry is found (especially when correctness is guaranteed by DNSSEC), the email sender can assume that certain features exist and work correctly. If they don't, it >could indicate an attack and the mail sending should be retried later. This DNS record would of course be good to try to standardize. > >* Configuration: It would take years to implement all of the settings that Postfix has, but I think it's not going to be necessary. In fact I think the number of new settings to dovecot.conf that Dovecot MTA requires would be very minimal. Instead >nearly all of the configuration could be done using Sieve scripts. We'd need to implement some new MTA-specific Sieve extensions and a few core features/configurations/databases that the scripts can use, but after that there wouldn't be really any >limits to what could be done with them. > > * Try to implement as many existing interfaces as possible (e.g. Milter and various Postfix APIs like policy servers) so that it wouldn?t be necessary to reimplement all the tools and filters. > >So perhaps something like this could be done in time for Dovecot v2.4. Any thoughts/ideas/suggestions? > -- Best regards, Aleksey Tsvetkov System Administrator Company Grand Vision tel. +7(495)933-39-79, ext. 184 From gedalya at gedalya.net Fri Nov 8 15:29:27 2013 From: gedalya at gedalya.net (Gedalya) Date: Fri, 08 Nov 2013 08:29:27 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <527CE737.6010108@gedalya.net> Very interesting.. a few questions if I may? On 11/08/2013 08:07 AM, Timo Sirainen wrote: > Hi all, > > I've never really wanted to create my own MTA, because I like Postfix quite a lot. And I always thought it would require a horribly lot of time to be able to create something that was anywhere even close to having Postfix's features. (I would shudder to even think about recreating Dovecot from scratch nowadays.) But slowly over time I've also been thinking of ways how things could be done a bit better, and I think I have enough ideas to start thinking about Dovecot MTA more seriously in a few more months (after my current busy schedule calms down a bit). And (unlike Dovecot!) I'm not planning on taking over the world with the MTA (or at least not very quickly), but it would definitely be useful for many installations I know of. > > My main design goals for the MTA are: > > * In normal load don't queue mails, just continue delivering the mail through different processes/services until it succeeds or fails, and only after that return ok/failure to the SMTP client. So there's no (forced) post-queue filtering, everything would normally happen pre-queue. This is required because in Germany (and EU in general?) you aren't allowed to just drop spams after SMTP server has responsed OK to the client, even if you?re 100% sure it?s a spam. So this would also mean that the SMTP DATA replies will come more slowly, which means that the SMTP server must be able to handle a lot more concurrent SMTP connections, which means that in large installations the smtpd process must be able to asynchronously handle multiple SMTP client connections. This is basically what I normally do with exim, and I believe it can be achieved with postfix, so basically your point is a single asynchronous smtpd for multiple connections? My experience has been that the real problem with SMTP-time decision making is the concurrency of the extremely heavy (e.g.) spamassassin processes, heavy in both memory and CPU, and I/O if you use bayes which you should. > > * In some cases you can't really avoid placing mails into a queue. This could be because of temporary failures or maybe because of an abnormal load spike. A mail queue in local disk isn't very nice though, because if the local disk dies, the queued mails are lost. Dovecot MTA will allow the queue to be in object storage and it will also likely support replication (similar to current dsync replication). In both of these cases if a server dies, another server can quickly take over its queue and continue handling it. Yes that would be nice. Another thing regarding multiple servers that I'd build in is a much more powerful way to manage scanning backends, keep track of dead ones (like freeradius zombie/dead tracking). > * Dovecot MTA is a new product, which means we can add some requirements to how it's being used, especially related to securely sending emails between servers. It could do a bunch of checks at startup and fail to even start if everything isn't correct. Here are some things I had in mind - not sure if all of these are good ideas or not: They are all good ideas as long as these requirements can be turned off per site :-) > > - Require DKIM configuration. All outgoing mails will be DKIM signed. > - Require the domain?s DNS to contain _submission._tcp SRV record (and actually might as well require _imap._tcp too) > - Require SSL certificates to be configured and always allow remote to use STARTTLS > - Require DANE TLSA record to exist and match the server's configured SSL cert > - Have very good (and strict?) DNSSEC support. If we know a remote server is supposed to have valid DNSSEC entries, but doesn't, fail to deliver mail entirely? > - Add a new DNS record that advertises this is a Dovecot MTA (or compatible). If such entry is found (especially when correctness is guaranteed by DNSSEC), the email sender can assume that certain features exist and work correctly. If they don't, it could indicate an attack and the mail sending should be retried later. This DNS record would of course be good to try to standardize. > > * Configuration: It would take years to implement all of the settings that Postfix has, but I think it's not going to be necessary. In fact I think the number of new settings to dovecot.conf that Dovecot MTA requires would be very minimal. Instead nearly all of the configuration could be done using Sieve scripts. We'd need to implement some new MTA-specific Sieve extensions and a few core features/configurations/databases that the scripts can use, but after that there wouldn't be really any limits to what could be done with them. It comes to mind that you would want a separate master process for this in case one would run it on the same box with dovecot imap. Or at least a way to restart/reconfigure it separately. > * Try to implement as many existing interfaces as possible (e.g. Milter and various Postfix APIs like policy servers) so that it wouldn?t be necessary to reimplement all the tools and filters. > > So perhaps something like this could be done in time for Dovecot v2.4. Any thoughts/ideas/suggestions? > From cryptodan at gmail.com Fri Nov 8 15:31:20 2013 From: cryptodan at gmail.com (Daniel Reinhardt) Date: Fri, 8 Nov 2013 13:31:20 +0000 Subject: [Dovecot] Dovecot MTA In-Reply-To: <20131108172506.1e79591b@work> References: <20131108172506.1e79591b@work> Message-ID: Easy configuration of virtual users and a default location setup to handle virtual users. On Fri, Nov 8, 2013 at 1:25 PM, Aleksey Tsvetkov wrote: > Hi! > It is possible to look towards Exim. To take as a basis ACL system. > > On Fri, 8 Nov 2013 14:07:12 +0100 > Timo Sirainen writes: > > >Hi all, > > > >I've never really wanted to create my own MTA, because I like Postfix > quite a lot. And I always thought it would require a horribly lot of time > to be able to create something that was anywhere even close to having > Postfix's features. (I would shudder to > >even think about recreating Dovecot from scratch nowadays.) But slowly > over time I've also been thinking of ways how things could be done a bit > better, and I think I have enough ideas to start thinking about Dovecot MTA > more seriously in a few more > >months (after my current busy schedule calms down a bit). And (unlike > Dovecot!) I'm not planning on taking over the world with the MTA (or at > least not very quickly), but it would definitely be useful for many > installations I know of. > > > >My main design goals for the MTA are: > > > >* In normal load don't queue mails, just continue delivering the mail > through different processes/services until it succeeds or fails, and only > after that return ok/failure to the SMTP client. So there's no (forced) > post-queue filtering, everything > >would normally happen pre-queue. This is required because in Germany (and > EU in general?) you aren't allowed to just drop spams after SMTP server has > responsed OK to the client, even if you?re 100% sure it?s a spam. So this > would also mean that the SMTP > >DATA replies will come more slowly, which means that the SMTP server must > be able to handle a lot more concurrent SMTP connections, which means that > in large installations the smtpd process must be able to asynchronously > handle multiple SMTP client > >connections. > > > >* In some cases you can't really avoid placing mails into a queue. This > could be because of temporary failures or maybe because of an abnormal load > spike. A mail queue in local disk isn't very nice though, because if the > local disk dies, the queued > >mails are lost. Dovecot MTA will allow the queue to be in object storage > and it will also likely support replication (similar to current dsync > replication). In both of these cases if a server dies, another server can > quickly take over its queue and > >continue handling it. > > > >* Dovecot MTA is a new product, which means we can add some requirements > to how it's being used, especially related to securely sending emails > between servers. It could do a bunch of checks at startup and fail to even > start if everything isn't correct. > >Here are some things I had in mind - not sure if all of these are good > ideas or not: > > > >- Require DKIM configuration. All outgoing mails will be DKIM signed. > >- Require the domain?s DNS to contain _submission._tcp SRV record (and > actually might as well require _imap._tcp too) > >- Require SSL certificates to be configured and always allow remote to > use STARTTLS > >- Require DANE TLSA record to exist and match the server's configured SSL > cert > >- Have very good (and strict?) DNSSEC support. If we know a remote server > is supposed to have valid DNSSEC entries, but doesn't, fail to deliver mail > entirely? > >- Add a new DNS record that advertises this is a Dovecot MTA (or > compatible). If such entry is found (especially when correctness is > guaranteed by DNSSEC), the email sender can assume that certain features > exist and work correctly. If they don't, it > >could indicate an attack and the mail sending should be retried later. > This DNS record would of course be good to try to standardize. > > > >* Configuration: It would take years to implement all of the settings > that Postfix has, but I think it's not going to be necessary. In fact I > think the number of new settings to dovecot.conf that Dovecot MTA requires > would be very minimal. Instead > >nearly all of the configuration could be done using Sieve scripts. We'd > need to implement some new MTA-specific Sieve extensions and a few core > features/configurations/databases that the scripts can use, but after that > there wouldn't be really any > >limits to what could be done with them. > > > > * Try to implement as many existing interfaces as possible (e.g. Milter > and various Postfix APIs like policy servers) so that it wouldn?t be > necessary to reimplement all the tools and filters. > > > >So perhaps something like this could be done in time for Dovecot v2.4. > Any thoughts/ideas/suggestions? > > > > > -- > Best regards, > Aleksey Tsvetkov > System Administrator > Company Grand Vision > tel. +7(495)933-39-79, ext. 184 > -- Daniel Reinhardt cryptodan at cryptodan.net http://www.cryptodan.net 301-875-7018(c) 410-455-0488(h) From gedalya at gedalya.net Fri Nov 8 15:33:46 2013 From: gedalya at gedalya.net (Gedalya) Date: Fri, 08 Nov 2013 08:33:46 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <20131108172506.1e79591b@work> References: <20131108172506.1e79591b@work> Message-ID: <527CE83A.8090300@gedalya.net> You can indeed get exim to reply post-DATA having done quite a lot of decision making, and also exim will deliver immediately as opposed to queuing, but: > just continue delivering the mail through different processes/services until it succeeds or fails, and only after that return ok/failure to the SMTP client. Does that mean something LMTP-like? Reply with OK after the delivery is totally complete? On 11/08/2013 08:25 AM, Aleksey Tsvetkov wrote: > Hi! > It is possible to look towards Exim. To take as a basis ACL system. From tss at iki.fi Fri Nov 8 15:34:11 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 8 Nov 2013 14:34:11 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <20131108172506.1e79591b@work> Message-ID: <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> On 8.11.2013, at 14.31, Daniel Reinhardt wrote: > Easy configuration of virtual users and a default location setup to handle > virtual users. The user handling would be exactly the same as it is now (same userdb settings). Dovecot MTA isn?t intended to be run standalone, most likely it can only deliver mails to Dovecot LMTP. From tss at iki.fi Fri Nov 8 15:39:19 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 8 Nov 2013 14:39:19 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527CE737.6010108@gedalya.net> References: <527CE737.6010108@gedalya.net> Message-ID: On 8.11.2013, at 14.29, Gedalya wrote: >> * In normal load don't queue mails, just continue delivering the mail through different processes/services until it succeeds or fails, and only after that return ok/failure to the SMTP client. So there's no (forced) post-queue filtering, everything would normally happen pre-queue. This is required because in Germany (and EU in general?) you aren't allowed to just drop spams after SMTP server has responsed OK to the client, even if you?re 100% sure it?s a spam. So this would also mean that the SMTP DATA replies will come more slowly, which means that the SMTP server must be able to handle a lot more concurrent SMTP connections, which means that in large installations the smtpd process must be able to asynchronously handle multiple SMTP client connections. > This is basically what I normally do with exim, and I believe it can be achieved with postfix, so basically your point is a single asynchronous smtpd for multiple connections? But can you (easily) configure them so that pre-queue filtering happens normally, except under heavy load it would automatically switch to post-queue filtering to avoid temporarily rejecting mails? > My experience has been that the real problem with SMTP-time decision making is the concurrency of the extremely heavy (e.g.) spamassassin processes, heavy in both memory and CPU, and I/O if you use bayes which you should. Yeah. In cloud(-like) environments the idea is also that Antispam/virus instances could be started and stopped on the automatically on the fly as needed. >> * Dovecot MTA is a new product, which means we can add some requirements to how it's being used, especially related to securely sending emails between servers. It could do a bunch of checks at startup and fail to even start if everything isn't correct. Here are some things I had in mind - not sure if all of these are good ideas or not: > They are all good ideas as long as these requirements can be turned off per site :-) That was kind of the idea, that some of these couldn?t be turned off :) So the idea being that Dovecot MTA would slowly start making email a secure communication method. >> * Configuration: It would take years to implement all of the settings that Postfix has, but I think it's not going to be necessary. In fact I think the number of new settings to dovecot.conf that Dovecot MTA requires would be very minimal. Instead nearly all of the configuration could be done using Sieve scripts. We'd need to implement some new MTA-specific Sieve extensions and a few core features/configurations/databases that the scripts can use, but after that there wouldn't be really any limits to what could be done with them. > It comes to mind that you would want a separate master process for this in case one would run it on the same box with dovecot imap. Or at least a way to restart/reconfigure it separately. You could run two Dovecot instances if you wanted to. But I have also some plans for making it possible to restart/upgrade Dovecot without losing any existing connections. From gedalya at gedalya.net Fri Nov 8 15:55:32 2013 From: gedalya at gedalya.net (Gedalya) Date: Fri, 08 Nov 2013 08:55:32 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527CE737.6010108@gedalya.net> Message-ID: <527CED54.1020906@gedalya.net> On 11/08/2013 08:39 AM, Timo Sirainen wrote: > On 8.11.2013, at 14.29, Gedalya wrote: > >>> * In normal load don't queue mails, just continue delivering the mail through different processes/services until it succeeds or fails, and only after that return ok/failure to the SMTP client. So there's no (forced) post-queue filtering, everything would normally happen pre-queue. This is required because in Germany (and EU in general?) you aren't allowed to just drop spams after SMTP server has responsed OK to the client, even if you?re 100% sure it?s a spam. So this would also mean that the SMTP DATA replies will come more slowly, which means that the SMTP server must be able to handle a lot more concurrent SMTP connections, which means that in large installations the smtpd process must be able to asynchronously handle multiple SMTP client connections. >> This is basically what I normally do with exim, and I believe it can be achieved with postfix, so basically your point is a single asynchronous smtpd for multiple connections? > But can you (easily) configure them so that pre-queue filtering happens normally, except under heavy load it would automatically switch to post-queue filtering to avoid temporarily rejecting mails? Dunno.. define "easy". I love exim, but some people would say even simple things are not easy with it. But I would agree that a lot can be achieved if you start designing something with these problems in mind. We could all really use a flexible way to decide when to do things and on which back-end server dependent upon what is available, and general load on the system. > >> My experience has been that the real problem with SMTP-time decision making is the concurrency of the extremely heavy (e.g.) spamassassin processes, heavy in both memory and CPU, and I/O if you use bayes which you should. > Yeah. In cloud(-like) environments the idea is also that Antispam/virus instances could be started and stopped on the automatically on the fly as needed. > >>> * Dovecot MTA is a new product, which means we can add some requirements to how it's being used, especially related to securely sending emails between servers. It could do a bunch of checks at startup and fail to even start if everything isn't correct. Here are some things I had in mind - not sure if all of these are good ideas or not: >> They are all good ideas as long as these requirements can be turned off per site :-) > That was kind of the idea, that some of these couldn?t be turned off :) So the idea being that Dovecot MTA would slowly start making email a secure communication method. OK that's a pretty aggressively noble idea. I'm in favor. You'd probably want to (also) run the tests externally and publicly as a form of positive feedback - like a web-based test that grants a domain a "dovecot certified" status. >>> * Configuration: It would take years to implement all of the settings that Postfix has, but I think it's not going to be necessary. In fact I think the number of new settings to dovecot.conf that Dovecot MTA requires would be very minimal. Instead nearly all of the configuration could be done using Sieve scripts. We'd need to implement some new MTA-specific Sieve extensions and a few core features/configurations/databases that the scripts can use, but after that there wouldn't be really any limits to what could be done with them. >> It comes to mind that you would want a separate master process for this in case one would run it on the same box with dovecot imap. Or at least a way to restart/reconfigure it separately. > You could run two Dovecot instances if you wanted to. But I have also some plans for making it possible to restart/upgrade Dovecot without losing any existing connections. > That would be warmly received. From rs at sys4.de Fri Nov 8 16:33:23 2013 From: rs at sys4.de (Robert Schetterer) Date: Fri, 08 Nov 2013 15:33:23 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <527CF633.3000107@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 08.11.2013 14:07, schrieb Timo Sirainen: > So perhaps something like this could be done in time for Dovecot > v2.4. Any thoughts/ideas/suggestions? Hi Timo, lot of good ideas, but in my world a new/better imap client, cross plattform, with extended and working groupware feature would be more needed, as you wrote, there are allready good working smtp servers, which have nearly all features you want to implement, perhaps dovecot mta will be a good idea for making smaller dovecot setups more easy. But perhaps doing it like a "smtp proxy" would be more easy. I agree doing more sieve stuff. I am critical about new DNS stuff, cause this must be widly agreed by people. However i will think about your ideas in more detail, next days and mail it to the list. Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSfPYuAAoJEP8jBObu0LlELFYH/1Bv5mp3I2FH8wWr1GywaYWQ XHYVDSZH96q0m5BNpfYjS66y1+6BqNOQcoLtE04hJixX7ccOZs96V9LyOt26mz5C S6xHBl6afj8vhnP1B1CbXzBIqicSG4PVuNvRvFsgxYKzJtwrxujXOJptbW3k5jnB I3tHdya3rFUyMON9OrMAbAlNEDEOJFU7Eju6R32PXOqHxPvMmpcOysacitr/Lsn8 oe1FYWveL4uiApDG9pAuUnt3YfwmEFBk9jKcxTLSYYPag+mDebCgPdXn1fsUV4xY 4zrg0qJE20/U/I0oP9mGDoP6d0UXDgXoyN0Rcy0kEOfsqPUg8hcWe7qn8Nwtc9o= =TIMH -----END PGP SIGNATURE----- From tss at iki.fi Fri Nov 8 16:44:22 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 8 Nov 2013 15:44:22 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527CF633.3000107@sys4.de> References: <527CF633.3000107@sys4.de> Message-ID: On 8.11.2013, at 15.33, Robert Schetterer wrote: > Am 08.11.2013 14:07, schrieb Timo Sirainen: >> So perhaps something like this could be done in time for Dovecot >> v2.4. Any thoughts/ideas/suggestions? > > Hi Timo, lot of good ideas, but in my world a new/better imap client, > cross plattform, with extended and working groupware feature would be > more needed, Would be nice yes, but I don?t think client side development is something I?m going to do anytime soon. > as you wrote, there are allready good working smtp > servers, which have nearly all features you want to implement, perhaps > dovecot mta will be a good idea for making smaller dovecot setups more > easy. Actually its main target audience is large ISPs and such :) The Sieve scripting for configurations is especially useful for many who want complex configurations. From CMarcus at Media-Brokers.com Fri Nov 8 17:12:33 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Fri, 08 Nov 2013 10:12:33 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527CF633.3000107@sys4.de> References: <527CF633.3000107@sys4.de> Message-ID: <527CFF61.1000209@Media-Brokers.com> On 2013-11-08 9:33 AM, Robert Schetterer wrote: > Hi Timo, lot of good ideas, but in my world a new/better imap client, > cross plattform, with extended and working groupware feature would be > more needed, as you wrote, there are allready good working smtp > servers I agree... would *love* to see you (Timo) work on a cross-platform IMAP only (or at least IMAP optimized) mail client! > But perhaps doing it like a "smtp proxy" would be more easy. I agree > doing more sieve stuff. I am critical about new DNS stuff, cause this > must be widly agreed by people. Also exactly (smtp_proxy) what I was thinking... Postfix, especially now that it has postscreen features, is going to be extremely hard to beat, as far as security (especially in keeping the spambots away) goes... Maybe the very first version could be just a simple smtp_proxy, then start adding features that can work pre-proxy, until eventually you get to the point it could handle everything by itself - or maybe you'd find that you could do everything you'd want to do in the pre-proxy features and wouldn't have to worry about duplicating all of the features of the mature MTAs out there... And the first pre-proxy feature could be for handling mails with a local destination - and I'm thinking specifically about my old feature request for the 'submission_server' feature so that emails sent would automatically have a copy added to the sent folder, so that clients could disable the 'Copy to sent folder' feature and avoid the overhead of uploading the email twice. Maybe even be able to detect somehow (not sure if this is possible to be done reliably) if a client is configured to save a copy to sent folder to prevent duplicates of sent messages - and best would be to be able to detect this and refuse the copy with an informative message to disable the Save to sent feature in the MUA... > However i will think about your ideas in more detail, next days and > mail it to the list. Me too... Thanks Timo! -- Best regards, */Charles/* From ronleach at tesco.net Fri Nov 8 17:15:32 2013 From: ronleach at tesco.net (Ron Leach) Date: Fri, 08 Nov 2013 15:15:32 +0000 Subject: [Dovecot] Dovecot MTA In-Reply-To: <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> References: <20131108172506.1e79591b@work> <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> Message-ID: <527D0014.60505@tesco.net> On 08/11/2013 13:34, Timo Sirainen wrote: > Dovecot MTA isn?t intended to be run standalone, most likely it can only deliver mails to Dovecot LMTP. > May I clarify? So Dovecot MTA might be for inbound SMTP only? Or also for outbound SMTP? (From the feature list I'd assumed outbound, as well.) If also for outbound, we have thought to run inbound and outbound on different servers, with the outbound server not listening to any internet-capable ports, simply to reduce further the opportunity for external access leading to spam generation (because any inbound access could lead to privilege escalation due to some exploit, and alter the ACLs, for example). Running on separate servers would imply standalone (unless config data is on NFS, perhaps). Very supportive for the ideas listed, especially around email authentication, and security. Ron From tss at iki.fi Fri Nov 8 17:19:18 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 8 Nov 2013 16:19:18 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527CFF61.1000209@Media-Brokers.com> References: <527CF633.3000107@sys4.de> <527CFF61.1000209@Media-Brokers.com> Message-ID: <74924F36-9832-4C7A-9D40-803CCD202F5E@iki.fi> On 8.11.2013, at 16.12, Charles Marcus wrote: > And the first pre-proxy feature could be for handling mails with a local destination - and I'm thinking specifically about my old feature request for the 'submission_server' feature so that emails sent would automatically have a copy added to the sent folder, so that clients could disable the 'Copy to sent folder' feature and avoid the overhead of uploading the email twice. Maybe even be able to detect somehow (not sure if this is possible to be done reliably) if a client is configured to save a copy to sent folder to prevent duplicates of sent messages - and best would be to be able to detect this and refuse the copy with an informative message to disable the Save to sent feature in the MUA? This is more about the SMTP submission server, which is already more or less implemented, although without the auto-bcc-feature: http://hg.rename-it.nl/dovecot-2.2-patches/file/9d3dd00ecc31/submission.patch From tss at iki.fi Fri Nov 8 17:22:13 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 8 Nov 2013 16:22:13 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527D0014.60505@tesco.net> References: <20131108172506.1e79591b@work> <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> <527D0014.60505@tesco.net> Message-ID: <88B44565-DBB7-495D-B422-8498ED9D8DE7@iki.fi> On 8.11.2013, at 16.15, Ron Leach wrote: > On 08/11/2013 13:34, Timo Sirainen wrote: >> Dovecot MTA isn?t intended to be run standalone, most likely it can only deliver mails to Dovecot LMTP. >> > May I clarify? So Dovecot MTA might be for inbound SMTP only? Or also for outbound SMTP? (From the feature list I'd assumed outbound, as well.) Ah, I had actually been mostly just thinking about inbound SMTP features. It should of course support outbound SMTP as well, but I?m less familiar about what functionality would be useful for that. By ?not standalone? I meant mainly that it won?t duplicate any existing Dovecot functionality, like passdbs/userdbs/mail delivery. From noel.butler at ausics.net Fri Nov 8 17:37:36 2013 From: noel.butler at ausics.net (Noel Butler) Date: Sat, 09 Nov 2013 01:37:36 +1000 Subject: [Dovecot] Problem with master user In-Reply-To: <527CB75C.2020005@wprost.pl> References: <527CB75C.2020005@wprost.pl> Message-ID: <30f2381c92f2b02e0ef2e87b4de4b1bb@ausics.net> doveconf -n output is ordinarily required however, at a guess, you have not defined auth_master_user_separator On 08/11/2013 20:05, Jakub Krzy?ewski wrote: > Hello. > > I have problem as below: > > Nov 8 10:41:52 store1 dovecot: auth: Debug: > auth(master at example.com,::1,master,): > Master user lookup for login: jkrzyz at example.com > Nov 8 10:41:52 store1 dovecot: auth: Debug: > passwd-file(master at example.com,::1,master,): > lookup: user=master at example.com file=/etc/dovecot/master-use > rs > Nov 8 10:41:52 store1 dovecot: auth: Debug: > password(master at example.com,::1,master,): > Generating DIGEST-MD5 from user 'master', password 'test' > Nov 8 10:41:52 store1 dovecot: auth: > passdb(master at example.com,::1,master,): > Master user logging in as jkrzyz at example.com > Nov 8 10:41:52 store1 dovecot: auth: Debug: > ldap(jkrzyz at example.com,::1,): pass > search: base=dc=example,dc=com scope=subtree > filter=(&(locMailActive=TRUE)(| > (uid=jkrzyz at example.com)(uid=jkrzyz)(mailRoutingAddress=jkrzyz at example.com))) > fields=mailRoutingAddress,userPassword > Nov 8 10:41:52 store1 dovecot: auth: Debug: > ldap(jkrzyz at example.com,::1,): > result: mailRoutingAddress=jkrzyz at example.com userPassword=test2 > Nov 8 10:41:52 store1 dovecot: auth: Debug: > password(jkrzyz at example.com,::1,): > Generating DIGEST-MD5 from user 'master', password 'test2' > Nov 8 10:41:52 store1 dovecot: auth: Debug: > password(jkrzyz at example.com,::1,): > Credentials: d64221d543d7c9a809c7d6e424d87be8 > Nov 8 10:41:52 store1 dovecot: auth: > digest-md5(jkrzyz at example.com,::1,): > password mismatch > > As you can see, password is check against user passdb and not > passwd-file, where master's password is stored. > Test is password of master user, test2 is password of jkrzyz > Setting pass=yes or no makes no difference. > What is wrong with my config? > > dovecot --version > 2.1.7 > > dovecot.conf snippet: > > passdb { > args = scheme=PLAIN /etc/dovecot/master-users > driver = passwd-file > master = yes > pass = yes > } > passdb { > args = /etc/dovecot/dovecot-ldap.conf.ext > driver = ldap > } > userdb { > args = /etc/dovecot/dovecot-ldap.conf.ext > driver = ldap > } > > /etc/dovecot/master-users: > > master:{PLAIN}test > master at example.com:{PLAIN}test From CMarcus at Media-Brokers.com Fri Nov 8 17:43:16 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Fri, 08 Nov 2013 10:43:16 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <88B44565-DBB7-495D-B422-8498ED9D8DE7@iki.fi> References: <20131108172506.1e79591b@work> <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> <527D0014.60505@tesco.net> <88B44565-DBB7-495D-B422-8498ED9D8DE7@iki.fi> Message-ID: <527D0694.6070103@Media-Brokers.com> On 2013-11-08 10:22 AM, Timo Sirainen wrote: > Ah, I had actually been mostly just thinking about inbound SMTP features. Hmmm.... well, I'd hate to see this turn into a huge time-sink for you. The fact is, postfix's maturity combined with its new postscreen capabilities will make it a very, very hard sell to postfix shops - especially the larger ones that rely heavily on postfix's ability to filter out the crap with as few resources as possible - and postscreen just increased that already powerful capability by at least one or two orders of magnitude. I'm just having a hard time seeing it. I think it would be better to focus more on outbound capabilities/features myself, so, by default, dovecot would handle all mail destined for a 'local' domain (one handled by the same dovecot server), with the ability to selectively choose (ie 'transports') which external domains dove_smtp handles directly (initially other dovecot servers), then passes all other 'external' mail to the outbound proxy. But, that is just me... it sounds like you have given this a bit of thought, and it also sounds like there is a good reason for that - maybe a paying customer? ;) -- Best regards, */Charles/* From dovecot-l at fu-berlin.de Fri Nov 8 20:16:49 2013 From: dovecot-l at fu-berlin.de (Heiko Schlichting) Date: Fri, 8 Nov 2013 19:16:49 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <20131108181649.GC60079@zedat.fu-berlin.de> Hi Timo, > So perhaps something like this could be done in time for Dovecot v2.4. > Any thoughts/ideas/suggestions? Many good ideas but with Exim and Postfix we do have two very powerful MTAs out there. I doubt there is demand for an additional one and this project will eat much time which can be invested to enhance your great IMAP server. Heiko Heiko Schlichting Freie Universit?t Berlin heiko.schlichting at fu-berlin.de Zentraleinrichtung f?r Datenverarbeitung Telefon +49 30 838-54327 Fabeckstra?e 32 Telefax +49 30 838454327 14195 Berlin From bill-dovecot at carpenter.org Fri Nov 8 20:35:02 2013 From: bill-dovecot at carpenter.org (WJCarpenter) Date: Fri, 08 Nov 2013 10:35:02 -0800 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527D0694.6070103@Media-Brokers.com> References: <20131108172506.1e79591b@work> <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> <527D0014.60505@tesco.net> <88B44565-DBB7-495D-B422-8498ED9D8DE7@iki.fi> <527D0694.6070103@Media-Brokers.com> Message-ID: <527D2ED6.1080506@carpenter.org> On 11/08/2013 07:43 AM, Charles Marcus wrote: > On 2013-11-08 10:22 AM, Timo Sirainen wrote: >> Ah, I had actually been mostly just thinking about inbound SMTP >> features. > > Hmmm.... well, I'd hate to see this turn into a huge time-sink for > you. The fact is, postfix's maturity combined with its new postscreen > capabilities will make it a very, very hard sell to postfix shops - > especially the larger ones that rely heavily on postfix's ability to > filter out the crap with as few resources as possible - and postscreen > just increased that already powerful capability by at least one or two > orders of magnitude. Likewise, exim users aren't likely to be sold. Most of things originally listed are either standard or easily accomplished in exim. I would probably be pretty skeptical and uninterested in a Dovecot MTA. No offense. I think you should look at other existing MTAs besides postfix before concluding there is a hole that needs filling. (You know the old Internet saying ... all programs evolve until they can send email. I guess you are getting there. :-) From CMarcus at Media-Brokers.com Fri Nov 8 20:46:09 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Fri, 08 Nov 2013 13:46:09 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527D2ED6.1080506@carpenter.org> References: <20131108172506.1e79591b@work> <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> <527D0014.60505@tesco.net> <88B44565-DBB7-495D-B422-8498ED9D8DE7@iki.fi> <527D0694.6070103@Media-Brokers.com> <527D2ED6.1080506@carpenter.org> Message-ID: <527D3171.3040803@Media-Brokers.com> On 2013-11-08 1:35 PM, WJCarpenter wrote: > I would probably be pretty skeptical and uninterested in a Dovecot > MTA. No offense. I think you should look at other existing MTAs > besides postfix before concluding there is a hole that needs filling. The one exception to this though, is if it was simply implemented as a proxy, but used for internal/local only emails - so, no need to involve postfix or Exim for mail submitted to the dovecot_mta if the recipient is destined for the dovecot_LDA... The more I think about it the more I even like this idea... -- Best regards, */Charles/* From bill-dovecot at carpenter.org Fri Nov 8 21:16:12 2013 From: bill-dovecot at carpenter.org (WJCarpenter) Date: Fri, 08 Nov 2013 11:16:12 -0800 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527D3171.3040803@Media-Brokers.com> References: <20131108172506.1e79591b@work> <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> <527D0014.60505@tesco.net> <88B44565-DBB7-495D-B422-8498ED9D8DE7@iki.fi> <527D0694.6070103@Media-Brokers.com> <527D2ED6.1080506@carpenter.org> <527D3171.3040803@Media-Brokers.com> Message-ID: <527D387C.3030106@carpenter.org> On 11/08/2013 10:46 AM, Charles Marcus wrote: > On 2013-11-08 1:35 PM, WJCarpenter wrote: >> I would probably be pretty skeptical and uninterested in a Dovecot >> MTA. No offense. I think you should look at other existing MTAs >> besides postfix before concluding there is a hole that needs filling. > > The one exception to this though, is if it was simply implemented as a > proxy, but used for internal/local only emails - so, no need to > involve postfix or Exim for mail submitted to the dovecot_mta if the > recipient is destined for the dovecot_LDA... > > The more I think about it the more I even like this idea... > Well, that's sort of true for operational efficiency kinds of things, but do you really one to configure one program for internal mail and another for externally sent/received mail? I don't, but tastes vary. :-) From CMarcus at Media-Brokers.com Fri Nov 8 21:56:03 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Fri, 08 Nov 2013 14:56:03 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527D387C.3030106@carpenter.org> References: <20131108172506.1e79591b@work> <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> <527D0014.60505@tesco.net> <88B44565-DBB7-495D-B422-8498ED9D8DE7@iki.fi> <527D0694.6070103@Media-Brokers.com> <527D2ED6.1080506@carpenter.org> <527D3171.3040803@Media-Brokers.com> <527D387C.3030106@carpenter.org> Message-ID: <527D41D3.9090900@Media-Brokers.com> On 2013-11-08 2:16 PM, WJCarpenter wrote: > On 11/08/2013 10:46 AM, Charles Marcus wrote: >> On 2013-11-08 1:35 PM, WJCarpenter wrote: >>> I would probably be pretty skeptical and uninterested in a Dovecot >>> MTA. No offense. I think you should look at other existing MTAs >>> besides postfix before concluding there is a hole that needs filling. >> >> The one exception to this though, is if it was simply implemented as >> a proxy, but used for internal/local only emails - so, no need to >> involve postfix or Exim for mail submitted to the dovecot_mta if the >> recipient is destined for the dovecot_LDA... >> >> The more I think about it the more I even like this idea... >> > > Well, that's sort of true for operational efficiency kinds of things, > but do you really one to configure one program for internal mail and > another for externally sent/received mail? I don't, but tastes vary. :-) As long as the configuration was simple, I don't see a problem... What seems inefficient to me, especially since dovecot now has a submission server, is to submit to dovecot, then pass to postfix, then back to dovecot (for local mail)... -- Best regards, */Charles/* From mkliewe at gmx.de Fri Nov 8 22:47:03 2013 From: mkliewe at gmx.de (Michael Kliewe) Date: Fri, 08 Nov 2013 21:47:03 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <527D4DC7.2010604@gmx.de> Hi Timo, I would also, like others, see you mainly working on Dovecot as an IMAP server. As far as I can see there are many things on the roadmap, and I hope many more will be added (for example a built-in health-checker for director backends). Only if you have enough personal resources and Dovecot as an IMAP server will not "loose your attention", I would love to see your expertise in making a better MTA. You are talking about bigger ISP installations, and there you always have at least 3 tiers: Internet-facing SMTP servers, in-the-middle-SMTP-servers delivering local mail to Dovecot via LDA or LMTP, and some outbound SMTP servers. For these middle-SMTP-servers that more or less just connect to Dovecot to deliver local mails I could see a more lightweight MTA solution, so instead of having Postfix+Dovecot I would like to see Dovecot(+MTA features) only. I'm not sure if I would use your MTA as the Internet-facing server, where "just" a fast SMTP server is needed with good Spam filters, Anti-DDOS-Features and so on. But that would be the position where all your strict DNS and TLS features are needed. I would love making email more secure by default. I totally like your idea of the object storage instead of local files for queues. That is an awesome feature for situations where your harddisks fails, your postfix-server burns down or goes into long maintenance. Having mails in a more central (redundant) place is very cool, so if one server dies another can quickly take over all "his" mails. That feature is awesome for the outbound SMTP servers, where millions of mails are "stored" in the queues for many days, a harddisk failure is a big problem there. Sum up: I would love to see you working on a MTA, but ONLY if you don't neglect the worlds best IMAP server :-) Michael From Alter.Depp at gmx.de Fri Nov 8 23:19:05 2013 From: Alter.Depp at gmx.de (Alter Depp) Date: Fri, 08 Nov 2013 22:19:05 +0100 Subject: [Dovecot] Can't get sieve/managedsieve working Message-ID: <2945d2d67013652fffc08a7c931704b2@gmx.de> Hi, I am running dovecot 2.1.7 for a while, with roundcube webmail frontend 0.9.5 . Now I wanted to add sieve to filter mails. Unfortunately most tutorials are for dovecot 1.x but I'm running dovecot 2 on debian wheezy. I could upload some scripst with sieve-connect, checked and activated them. When I try to edit filters with thunderbird sieve plugin 0.2.2 nothing happens. If I try to edit filters with roundcube managesieve plugin nothing happens, too, but I get some errors in logfile: > roundcube: "Authentication failed." (3) > roundcube: Not currently in AUTHORISATION stata (1): Can someone help me, to get it running? # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.6.11+ armv6l Debian 7.2 auth_debug = yes auth_debug_passwords = yes auth_verbose = yes auth_verbose_passwords = plain lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes listen = * mail_location = mbox:~/mail:INBOX=/var/mail/%u managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { inbox = yes location = mailbox { special_use = \Drafts name = Drafts } mailbox { special_use = \Junk name = Junk } mailbox { special_use = \Sent name = Sent } mailbox { special_use = \Sent name = Sent Messages } mailbox { special_use = \Trash name = Trash } prefix = name = inbox } passdb { driver = pam } plugin { sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } postmaster_address = stefan at localhost protocols = " imap sieve" service replication-notify-fifo { name = aggregator } service anvil-auth-penalty { name = anvil } service auth-worker { name = auth-worker } service auth-client { name = auth } service config { name = config } service dict { name = dict } service login/proxy-notify { name = director } service dns-client { name = dns_client } service doveadm-server { name = doveadm } service imap { name = imap-login } service login/imap { name = imap } service indexer-worker { name = indexer-worker } service indexer { name = indexer } service ipc { name = ipc } service lmtp { name = lmtp } service log-errors { name = log } service { inet_listener { port = 4190 name = sieve } name = managesieve-login } service login/sieve { name = managesieve } service pop3 { name = pop3-login } service login/pop3 { name = pop3 } service replicator { name = replicator } service login/ssl-params { name = ssl-params } service stats-mail { name = stats } ssl_cert = References: <2945d2d67013652fffc08a7c931704b2@gmx.de> Message-ID: <527D5823.4060102@ag-web.biz> Am 08.11.2013 22:19, schrieb Alter Depp: > Hi, > > I am running dovecot 2.1.7 for a while, with roundcube webmail > frontend 0.9.5 . Now I wanted to add sieve to filter mails. > Unfortunately most tutorials are for dovecot 1.x but I'm running > dovecot 2 on debian wheezy. > I could upload some scripst with sieve-connect, checked and activated > them. When I try to edit filters with thunderbird sieve plugin 0.2.2 > nothing happens. If I try to edit filters with roundcube managesieve > plugin nothing happens, too, but I get some errors in logfile: >> roundcube: "Authentication failed." (3) >> roundcube: Not currently in AUTHORISATION stata (1): > Can someone help me, to get it running? An wild guess but it may help if you define mail_home as well. From manuel.delgado at ucr.ac.cr Fri Nov 8 23:58:08 2013 From: manuel.delgado at ucr.ac.cr (Manuel Delgado) Date: Fri, 8 Nov 2013 15:58:08 -0600 Subject: [Dovecot] Can't get sieve/managedsieve working In-Reply-To: <2945d2d67013652fffc08a7c931704b2@gmx.de> References: <2945d2d67013652fffc08a7c931704b2@gmx.de> Message-ID: Hi Alter, On Fri, Nov 8, 2013 at 3:19 PM, Alter Depp wrote: > Hi, > > I am running dovecot 2.1.7 for a while, with roundcube webmail frontend > 0.9.5 . Now I wanted to add sieve to filter mails. Unfortunately most > tutorials are for dovecot 1.x but I'm running dovecot 2 on debian wheezy. > I could upload some scripst with sieve-connect, checked and activated > them. When I try to edit filters with thunderbird sieve plugin 0.2.2 > nothing happens. If I try to edit filters with roundcube managesieve plugin > nothing happens, too, but I get some errors in logfile: > >> roundcube: "Authentication failed." (3) >> roundcube: Not currently in AUTHORISATION stata (1): >> > Can someone help me, to get it running? > > > > > > I've a similar design with Dovecot 2.1.7 and Roundcube 0.9.x. I'm using the SieveRules plugin from JohnDoh and Pigeonhole in Dovecot. I followed the wiki and everything worked fine, maybe this can help you: http://wiki2.dovecot.org/Pigeonhole/ For example, my configs look something like: #[...] protocols = imap lmtp sieve protocol lmtp { mail_plugins = $mail_plugins sieve } service managesieve-login { inet_listener sieve { port = 4190 } service_count = 1 } #[...] Regards, Manuel Delgado ----------------------------------------------------------- *Usuario Linux* *#520940 * Bach. Computaci?n e Inform?tica Universidad de Costa Rica From tss at iki.fi Sat Nov 9 00:19:08 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 8 Nov 2013 23:19:08 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527D4DC7.2010604@gmx.de> References: <527D4DC7.2010604@gmx.de> Message-ID: On 8.11.2013, at 21.47, Michael Kliewe wrote: > Sum up: I would love to see you working on a MTA, but ONLY if you don't neglect the worlds best IMAP server :-) I?m not going to start Dovecot MTA until there are more Dovecot developers. Ideally the new developer(s) would be writing most of the MTA code.. From tss at iki.fi Sat Nov 9 00:25:50 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 8 Nov 2013 23:25:50 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527D4DC7.2010604@gmx.de> References: <527D4DC7.2010604@gmx.de> Message-ID: <52A57FB0-2248-4F87-A1A8-D42E24DB72D1@iki.fi> On 8.11.2013, at 21.47, Michael Kliewe wrote: > I would also, like others, see you mainly working on Dovecot as an IMAP server. As far as I can see there are many things on the roadmap, and I hope many more will be added (for example a built-in health-checker for director backends). Oh, and the built-in health checker for directors isn?t planned at all. There?s no need for it to be built-in, and it?s better to use a script that different installations can easily modify for their own purposes. A somewhat better health-checking script (that could differentiate between temporary and permanent failures) would be good though. And Dovecot roadmap is slowly shrinking .. there aren?t all that many big features left anymore. Soon it?s mainly going to be improvements to reliability and performance. So I need to find some new things to do in any case. :) From deano at areyes.com Sat Nov 9 00:27:37 2013 From: deano at areyes.com (Dean Carpenter) Date: Fri, 08 Nov 2013 17:27:37 -0500 Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin Message-ID: <527D6559.7000804@areyes.com> This might be a fairly long message, but I wanted to be sure to include as much information as possible. I'm having an issue with the dovecot-antispam plugin in that it seems to be unable to successfully run anything from the pipe backend. To qualify that, they run, but they fail ... Running /usr/bin/sa-learn directly always returns with an error code of 1, and the bayes DB isn't actually updated. Running the /usr/local/bin/sa-learn-pipe.sh script from the example will run sa-learn successfully, but sa-learn fails partway through, right on a sql DB access. I have both bayes and FuzzyOcr data stored in mysql, and the error occurs on accessing either one. That is, I've tested with FuzzyOcr enabled, and it fails on the db access to the FuzzyOcr DB, and I've tried it with FuzzyOcr disabled. In that case, it fails on the access to the bayes DB. The error line right there is : libgcc_s.so.1 must be installed for pthread_cancel to work Since sa-learn terminated prematurely, the bayes DB isn't updated at all. Running /usr/bin/sa-learn or the script /usr/local/bin/sa-learn-pipe.sh directly from cmdline works fine though - sa-learn completes correctly and updates the bayes DB properly, I can see the new tokens. $ sa-learn-pipe.sh --spam < /usr/share/doc/spamassassin/examples/sample-spam.txt $ sa-learn --spam /usr/share/doc/spamassassin/examples/sample-spam.txt I think it would be great to have a dedicated logfile for antispam, one that would capture both stdout as well as stderr. These tests are being done on a clean Ubuntu 13.04 system. I'm rebuilding the VM repeatedly as I configure the various pieces, and can test any changes or whatever you might suggest very easily. I've fully scripted the install and configuration of Exim4, Dovecot, Spamassassin, Clamav, Percona/Mysql, Roundcube, and can build a full VM under Virtualbox or any VPS in less than 10 minutes. Ubuntu 13.04 Dovecot 2.1.7 dovecot-antispam 2.0+20120225-3 Anyone else using the antispam plugin with spamassassin 3.3.2 ? Anything I can check to see what's causing this problem ? -------------------------------------------------------- $ cat /usr/local/bin/sa-learn-pipe.sh #!/bin/bash echo /usr/bin/sa-learn $* /tmp/sendmail-msg-$$.txt echo "$$-start ($*)" >> /var/log/sa-learn-pipe.log cat<&0 >> /tmp/sendmail-msg-$$.txt /usr/bin/sa-learn -D $* /tmp/sendmail-msg-$$.txt >> /tmp/sa-learn-pipe.$$.log 2>&1 echo $$ sa-learn rc=$? id=$(id) HOME=$HOME >> /var/log/sa-learn-pipe.log while read line; do echo $$-sa-learn "$line" >> /var/log/sa-learn-pipe.log done < /tmp/sa-learn-pipe.$$.log rm -f /tmp/sendmail-msg-$$.txt echo "$$-end" >> /var/log/sa-learn-pipe.log exit 0 -------------------------------------------------------- With FuzzyOcr DISabled, fails right after Bayes DB access $ cat /var/log/sa-learn-pipe.log 4505-start (--spam) 4505 sa-learn rc=134 id=uid=108(Debian-exim) gid=113(Debian-exim) groups=113(Debian-exim) HOME= 4505-sa-learn Nov 8 09:05:26.134 [4507] dbg: logger: adding facilities: all 4505-sa-learn Nov 8 09:05:26.134 [4507] dbg: logger: logging level is DBG 4505-sa-learn Nov 8 09:05:26.134 [4507] dbg: generic: SpamAssassin version 3.3.2 4505-sa-learn Nov 8 09:05:26.134 [4507] dbg: generic: Perl 5.014002, PREFIX=/usr, DEF_RULES_DIR=/usr/share/spamassassin, LOCAL_RULES_DIR=/etc/spamassassin, LOCAL_STATE_DIR=/var/lib/spamassassin : : 4505-sa-learn Nov 8 09:05:27.131 [4507] dbg: replacetags: done replacing tags 4505-sa-learn Nov 8 09:05:27.131 [4507] dbg: FreeMail: loaded freemail_domains entries: 2470 normal, 29 wildcard 4505-sa-learn Nov 8 09:05:27.132 [4507] dbg: plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x3879e88) implements 'learner_new', priority 0 4505-sa-learn Nov 8 09:05:27.132 [4507] dbg: bayes: learner_new self=Mail::SpamAssassin::Plugin::Bayes=HASH(0x3879e88), bayes_store_module=Mail::SpamAssassin::BayesStore::MySQL 4505-sa-learn Nov 8 09:05:27.151 [4507] dbg: bayes: using username: debian-spamd 4505-sa-learn Nov 8 09:05:27.151 [4507] dbg: bayes: learner_new: got store=Mail::SpamAssassin::BayesStore::MySQL=HASH(0x3ec0388) 4505-sa-learn Nov 8 09:05:27.152 [4507] dbg: plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x3879e88) implements 'learner_is_scan_available', priority 0 4505-sa-learn libgcc_s.so.1 must be installed for pthread_cancel to work 4505-end 7235-start () -------------------------------------------------------- With FuzzyOcr ENabled, fails right after FuzzyOcr DB access $ cat /var/log/sa-learn-pipe.log : : 7804-sa-learn Nov 8 09:37:09.612 [7806] info: FuzzyOcr: Using scan ocrad-invert: /usr/bin/ocrad -s5 -i $input 7804-sa-learn Nov 8 09:37:09.612 [7806] info: FuzzyOcr: Using scan ocrad-decolorize-invert: /usr/bin/ocrad -s5 -i $input 7804-sa-learn Nov 8 09:37:09.612 [7806] info: FuzzyOcr: Using scan ocrad-decolorize: /usr/bin/ocrad -s5 $input 7804-sa-learn Nov 8 09:37:09.612 [7806] info: FuzzyOcr: Using scan gocr: /usr/bin/gocr -i $input 7804-sa-learn Nov 8 09:37:09.612 [7806] info: FuzzyOcr: Using scan gocr-180: /usr/bin/gocr -l 180 -d 2 -i $input 7804-sa-learn Nov 8 09:37:09.612 [7806] info: FuzzyOcr: Using scan tesseract: /usr/bin/tesseract $input $output 7804-sa-learn Nov 8 09:37:09.612 [7806] info: FuzzyOcr: Importing for MLDBM databases not available (dependencies missing) 7804-sa-learn Nov 8 09:37:09.612 [7806] dbg: FuzzyOcr: Connecting to: dbi:mysql:database=FuzzyOcr;mysql_socket=/var/run/mysqld/mysqld.sock 7804-sa-learn libgcc_s.so.1 must be installed for pthread_cancel to work 7804-end -------------------------------------------------------- syslog entries from running with sa-learn-pipe.sh script antispam_pipe_program = /usr/local/bin/sa-learn-pipe.sh Nov 8 09:36:41 newgalah1 imap: antispam: plugin initialising (2.0-notgit) Nov 8 09:36:41 newgalah1 imap: antispam: verbose debug enabled Nov 8 09:36:41 newgalah1 imap: antispam: "Junk" is exact match spam folder Nov 8 09:36:41 newgalah1 imap: antispam: "Spam" is exact match spam folder Nov 8 09:36:41 newgalah1 imap: antispam: no unsure folders Nov 8 09:36:41 newgalah1 imap: antispam: "Trash" is wildcard match trash folder Nov 8 09:36:41 newgalah1 imap: antispam: "Deleted *" is wildcard match trash folder Nov 8 09:36:41 newgalah1 imap: antispam: pipe backend spam argument = --spam Nov 8 09:36:41 newgalah1 imap: antispam: pipe backend not-spam argument = --ham Nov 8 09:36:41 newgalah1 imap: antispam: pipe backend program = /usr/local/bin/sa-learn-pipe.sh Nov 8 09:36:41 newgalah1 imap: antispam: pipe backend tmpdir /tmpNov 8 09:37:08 newgalah1 imap: antispam: mailbox_is_unsure(Junk): 0 Nov 8 09:37:08 newgalah1 imap: antispam: mailbox_is_trash(INBOX): 0 Nov 8 09:37:08 newgalah1 imap: antispam: mailbox_is_trash(Junk): 0 Nov 8 09:37:08 newgalah1 imap: antispam: mail copy: from trash: 0, to trash: 0 Nov 8 09:37:08 newgalah1 imap: antispam: mailbox_is_spam(INBOX): 0 Nov 8 09:37:08 newgalah1 imap: antispam: mailbox_is_spam(Junk): 1 Nov 8 09:37:08 newgalah1 imap: antispam: mailbox_is_unsure(INBOX): 0 Nov 8 09:37:08 newgalah1 imap: antispam: mail copy: src spam: 0, dst spam: 1, src unsure: 0 Nov 8 09:37:08 newgalah1 imap: antispam: running mailtrain backend program /usr/local/bin/sa-learn-pipe.sh Nov 8 09:37:08 newgalah1 imap: antispam: running mailtrain backend program /usr/local/bin/sa-learn-pipe.sh Nov 8 09:37:08 newgalah1 imap: antispam: running mailtrain backend program parameter 1 --spam -------------------------------------------------------- syslog entries from running with sa-learn directly antispam_pipe_program = /usr/bin/sa-learn Nov 8 09:44:57 newgalah1 imap: antispam: plugin initialising (2.0-notgit) Nov 8 09:44:57 newgalah1 imap: antispam: verbose debug enabled Nov 8 09:44:57 newgalah1 imap: antispam: "Junk" is exact match spam folder Nov 8 09:44:57 newgalah1 imap: antispam: "Spam" is exact match spam folder Nov 8 09:44:57 newgalah1 imap: antispam: no unsure folders Nov 8 09:44:57 newgalah1 imap: antispam: "Trash" is wildcard match trash folder Nov 8 09:44:57 newgalah1 imap: antispam: "Deleted *" is wildcard match trash folder Nov 8 09:44:57 newgalah1 imap: antispam: pipe backend spam argument = --spam Nov 8 09:44:57 newgalah1 imap: antispam: pipe backend not-spam argument = --ham Nov 8 09:44:57 newgalah1 imap: antispam: pipe backend program = /usr/bin/sa-learn Nov 8 09:44:57 newgalah1 imap: antispam: pipe backend tmpdir /tmp Nov 8 09:44:57 newgalah1 imap: antispam: mailbox_is_unsure(Junk): 0 Nov 8 09:44:57 newgalah1 imap: antispam: mailbox_is_trash(INBOX): 0 Nov 8 09:44:57 newgalah1 imap: antispam: mailbox_is_trash(Junk): 0 Nov 8 09:44:57 newgalah1 imap: antispam: mail copy: from trash: 0, to trash: 0 Nov 8 09:44:57 newgalah1 imap: antispam: mailbox_is_spam(INBOX): 0 Nov 8 09:44:57 newgalah1 imap: antispam: mailbox_is_spam(Junk): 1 Nov 8 09:44:57 newgalah1 imap: antispam: mailbox_is_unsure(INBOX): 0 Nov 8 09:44:57 newgalah1 imap: antispam: mail copy: src spam: 0, dst spam: 1, src unsure: 0 Nov 8 09:44:57 newgalah1 imap: antispam: running mailtrain backend program /usr/bin/sa-learn Nov 8 09:44:57 newgalah1 imap: antispam: running mailtrain backend program /usr/bin/sa-learn Nov 8 09:44:57 newgalah1 imap: antispam: running mailtrain backend program parameter 1 --spam Nov 8 09:44:58 newgalah1 imap: antispam: run program failed with exit code -1 -------------------------------------------------------- $ cat 90-plugin.conf plugin { antispam_debug_target = syslog antispam_verbose_debug = 1 antispam_backend = pipe antispam_trash_pattern = Trash;Deleted * antispam_spam = Junk;Spam antispam_pipe_program = /usr/local/bin/sa-learn-pipe.sh # antispam_pipe_program_args = --progress antispam_pipe_program_spam_arg = --spam antispam_pipe_program_notspam_arg = --ham antispam_pipe_tmpdir = /tmp } -------------------------------------------------------- $ dovecot -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.8.0-32-generic x86_64 Ubuntu 13.04 auth_mechanisms = cram-md5 login plain first_valid_uid = 108 mail_location = maildir:~/Maildir:LAYOUT=fs:INBOX=~/Maildir/INBOX managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;as cii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { inbox = yes location = mailbox Drafts { auto = subscribe special_use = \Drafts } mailbox Junk { auto = subscribe special_use = \Junk } mailbox Sent { auto = subscribe special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Spam { auto = subscribe special_use = \Junk } mailbox Trash { auto = subscribe special_use = \Trash } prefix = } passdb { args = scheme=plain username_format=%u /var/mail/%d/PASSWD driver = passwd-file } plugin { antispam_backend = pipe antispam_debug_target = syslog antispam_pipe_program = /usr/local/bin/sa-learn-pipe.sh antispam_pipe_program_notspam_arg = --ham antispam_pipe_program_spam_arg = --spam antispam_pipe_tmpdir = /tmp antispam_spam = Junk;Spam antispam_trash_pattern = Trash;Deleted * antispam_verbose_debug = 1 sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = " imap lmtp sieve" service auth { unix_listener auth-client { mode = 0666 } } ssl = required ssl_cert = I've created a dict service that listens on a unix socket and answers queries for sieve scripts (among other things). As I understand it (from the source code at http://hg.dovecot.org/dovecot-2.2/file/tip/src/lib-dict/dict-client.c), the dict client will unescape \001n, \001t, and \0011 to line feeds, tabs, and the \001 character respectively. In my service I am escaping those three characters in my response (if I don't escape them the line-oriented nature of the protocol causes a failure for multiline sieve scripts) but every time LDA attempts to process a sieve script I get an error in the logs (see below) showing sieve choking on \001 characters. Is there some configuration value I've missed or something? *dovecot log* Nov 8 23:04:54 www dovecot: lmtp(29940, josh at redacted.com): pxg7JxZufVL0dAAAPhZyyg: sieve: failed to compile script dict:proxy:/var/run/dovecot-auth.sock:sieve;name=main script (view user logfile /var/mail/vhosts/redacted.com/josh/.dovecot.sieve.log for more information) *.dovecot.sieve.log* sieve: info: started log at Nov 08 16:14:38. main script: line 1: error: unexpected character(s) starting with 0x01. main script: line 1: error: unexpected unknown characters found at (the presumed) end of file. main script: error: parse failed. From stan at hardwarefreak.com Sat Nov 9 04:57:03 2013 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Fri, 08 Nov 2013 20:57:03 -0600 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <527DA47F.2090001@hardwarefreak.com> On 11/8/2013 7:07 AM, Timo Sirainen wrote: > I've never really wanted to create my own MTA, because I like Postfix And given Postfix, Exim, etc, are mature and feature complete, why would you want to at this time? > My main design goals for the MTA are: ... > * Dovecot MTA is a new product "Product". Open source developers usually don't refer to new projects as "products". > * Configuration: ...Instead nearly all of the > configuration could be done using Sieve scripts. ... > * Try to implement as many existing interfaces as possible (e.g. > Milter and various Postfix APIs like policy servers) so that it > wouldn?t be necessary to reimplement all the tools and filters. It seems pretty clear your long term goal with this is to sew up Dovecot into a single source integrated stack that doesn't require an external MTA, and to sell the stack as a product. If this is your motivation behind this MTA, please state so. If this future integrated Dovecot stack product may negatively impact current open source Dovecot users, please state so. -- Stan From nick.z.edwards at gmail.com Sat Nov 9 06:11:19 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Sat, 9 Nov 2013 14:11:19 +1000 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527D4DC7.2010604@gmx.de> References: <527D4DC7.2010604@gmx.de> Message-ID: On 11/9/13, Michael Kliewe wrote: > Hi Timo, > > I would also, like others, see you mainly working on Dovecot as an IMAP > server. As far as I can see there are many things on the roadmap, and I > hope many more will be added (for example a built-in health-checker for > director backends). > > Only if you have enough personal resources and Dovecot as an IMAP server > will not "loose your attention", I would love to see your expertise in > making a better MTA. Yes, some of us have been waiting for some years now, for a configurable change to alter the method of dovecots method of failover, which is just load balancing between servers rather than true failover, like postix, I see now why it gets no importance. From odhiambo at gmail.com Sat Nov 9 10:50:02 2013 From: odhiambo at gmail.com (Odhiambo Washington) Date: Sat, 9 Nov 2013 11:50:02 +0300 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: Hi Timo, You really love Postfix. Now take some time and look at Exim too. It has many of the features and would probably be much better with your input - to improve the areas you see as lacking. You are capable of churning out an excellent product, but for this one, I'd suggest you just engage the Exim Developers and push your ideas/contributions to them and in a shorter time you can get this shiny MTA you are dreaming of. Worse case scenario - just fork out Exim. Exim+Dovecot has worked very well for me for years. I started using Exim and Dovecot from their inceptions. I am not sure I'd be excited about anything else. On 8 November 2013 16:07, Timo Sirainen wrote: > Hi all, > > I've never really wanted to create my own MTA, because I like Postfix quite a lot. And I always thought it would require a horribly lot of time to be able to create something that was anywhere even close to having Postfix's features. (I would shudder to even think about recreating Dovecot from scratch nowadays.) But slowly over time I've also been thinking of ways how things could be done a bit better, and I think I have enough ideas to start thinking about Dovecot MTA more seriously in a few more months (after my current busy schedule calms down a bit). And (unlike Dovecot!) I'm not planning on taking over the world with the MTA (or at least not very quickly), but it would definitely be useful for many installations I know of. > > My main design goals for the MTA are: > > * In normal load don't queue mails, just continue delivering the mail through different processes/services until it succeeds or fails, and only after that return ok/failure to the SMTP client. So there's no (forced) post-queue filtering, everything would normally happen pre-queue. This is required because in Germany (and EU in general?) you aren't allowed to just drop spams after SMTP server has responsed OK to the client, even if you?re 100% sure it?s a spam. So this would also mean that the SMTP DATA replies will come more slowly, which means that the SMTP server must be able to handle a lot more concurrent SMTP connections, which means that in large installations the smtpd process must be able to asynchronously handle multiple SMTP client connections. > > * In some cases you can't really avoid placing mails into a queue. This could be because of temporary failures or maybe because of an abnormal load spike. A mail queue in local disk isn't very nice though, because if the local disk dies, the queued mails are lost. Dovecot MTA will allow the queue to be in object storage and it will also likely support replication (similar to current dsync replication). In both of these cases if a server dies, another server can quickly take over its queue and continue handling it. > > * Dovecot MTA is a new product, which means we can add some requirements to how it's being used, especially related to securely sending emails between servers. It could do a bunch of checks at startup and fail to even start if everything isn't correct. Here are some things I had in mind - not sure if all of these are good ideas or not: > > - Require DKIM configuration. All outgoing mails will be DKIM signed. > - Require the domain?s DNS to contain _submission._tcp SRV record (and actually might as well require _imap._tcp too) > - Require SSL certificates to be configured and always allow remote to use STARTTLS > - Require DANE TLSA record to exist and match the server's configured SSL cert > - Have very good (and strict?) DNSSEC support. If we know a remote server is supposed to have valid DNSSEC entries, but doesn't, fail to deliver mail entirely? > - Add a new DNS record that advertises this is a Dovecot MTA (or compatible). If such entry is found (especially when correctness is guaranteed by DNSSEC), the email sender can assume that certain features exist and work correctly. If they don't, it could indicate an attack and the mail sending should be retried later. This DNS record would of course be good to try to standardize. > > * Configuration: It would take years to implement all of the settings that Postfix has, but I think it's not going to be necessary. In fact I think the number of new settings to dovecot.conf that Dovecot MTA requires would be very minimal. Instead nearly all of the configuration could be done using Sieve scripts. We'd need to implement some new MTA-specific Sieve extensions and a few core features/configurations/databases that the scripts can use, but after that there wouldn't be really any limits to what could be done with them. > > * Try to implement as many existing interfaces as possible (e.g. Milter and various Postfix APIs like policy servers) so that it wouldn?t be necessary to reimplement all the tools and filters. > > So perhaps something like this could be done in time for Dovecot v2.4. Any thoughts/ideas/suggestions? > -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 "I can't hear you -- I'm using the scrambler." From tss at iki.fi Sat Nov 9 11:48:13 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 9 Nov 2013 10:48:13 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527DA47F.2090001@hardwarefreak.com> References: <527DA47F.2090001@hardwarefreak.com> Message-ID: On 9.11.2013, at 3.57, Stan Hoeppner wrote: >> My main design goals for the MTA are: > ... >> * Dovecot MTA is a new product > > "Product". Open source developers usually don't refer to new projects > as "products?. Maybe I?ve been talking to business people for too long now :) >> * Configuration: ...Instead nearly all of the >> configuration could be done using Sieve scripts. > ... >> * Try to implement as many existing interfaces as possible (e.g. >> Milter and various Postfix APIs like policy servers) so that it >> wouldn?t be necessary to reimplement all the tools and filters. > > It seems pretty clear your long term goal with this is to sew up Dovecot > into a single source integrated stack that doesn't require an external > MTA, and to sell the stack as a product. > > If this is your motivation behind this MTA, please state so. If this > future integrated Dovecot stack product may negatively impact current > open source Dovecot users, please state so. We?re already more or less selling what we?re planning on selling, but currently the MTA is Postfix. But yeah, the new MTA needs to have some business reason for bringing it into existence. Still, I don?t see how it could negatively impact Dovecot. It?s going to be open source anyway. From tss at iki.fi Sat Nov 9 12:06:36 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 9 Nov 2013 11:06:36 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527D4DC7.2010604@gmx.de> Message-ID: <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> On 9.11.2013, at 5.11, Nick Edwards wrote: > On 11/9/13, Michael Kliewe wrote: >> Hi Timo, >> >> I would also, like others, see you mainly working on Dovecot as an IMAP >> server. As far as I can see there are many things on the roadmap, and I >> hope many more will be added (for example a built-in health-checker for >> director backends). >> >> Only if you have enough personal resources and Dovecot as an IMAP server >> will not "loose your attention", I would love to see your expertise in >> making a better MTA. > > Yes, some of us have been waiting for some years now, for a > configurable change to alter the method of dovecots method of > failover, which is just load balancing between servers rather than > true failover, like postix, I see now why it gets no importance. Ah, you?re talking about SQL connections. Had to look up from old mails what you were talking about. It hasn?t changed, because I think the current behavior with load balancing + failover is more useful than failover-only. And you can already do failover-only with an external load balancer. Sure, Dovecot could also implement it, but it?s not something I especially want to spend time on implementing. From achim at ag-web.biz Sat Nov 9 12:48:13 2013 From: achim at ag-web.biz (Achim Gottinger) Date: Sat, 09 Nov 2013 11:48:13 +0100 Subject: [Dovecot] Question about folder sharing In-Reply-To: <527C2F5F.1050009@ag-web.biz> References: <527C2F5F.1050009@ag-web.biz> Message-ID: <527E12ED.8030803@ag-web.biz> Am 08.11.2013 01:25, schrieb Achim Gottinger: > Hi, > > I run dovecot (2.1.7) on debian wheezy in conjuniction with postfix, > samba4 (as ldap backend) and sogo. I configured folder sharing but > have an few issues. > With my current config users can share the inbox and other folders. If > the acl allows creatings subfolders this does work for all folders > beside inbox. > > What i want to archiev is the following: > > If an user shares his inbox, others should be able to create > subfolders and those should inherit the inboxe's acl. All subfolders > of inbox should appear as folders at root level and not as subfolders > of the inbox. > > I thought this can be done by setting the prefix of namespace inbox to > INBOX/. I did this and changed the IMAP Server Folder setting in > thunderbird to INBOX (like it was earlier when i used courier). Now > subfolders created at rootlevel or as subfolders of the inbox appear > on rootlevel in thunderbird but they do not inherit the acl's from > inbox. Is there an way to achive this? > > doveconf -n > > mail_location = maildir:/home/vmail/%u/mail > namespace { > list = children > location = > maildir:/home/vmail/%%u/mail:INDEX=/home/vmail/%u/mail/shared/%%u > prefix = shared/%%u/ > separator = / > subscriptions = no > type = shared > } > namespace inbox { > inbox = yes > location = maildir:/home/vmail/%u/mail > prefix = > separator = / > type = private > } > > userdb { > args = /etc/dovecot/dovecot-ldap-userdb.conf.ext > driver = ldap > } > userdb { > args = /etc/dovecot/dovecot-ldap-userdb-groups.conf.ext > driver = ldap > } I changed the location of the inbox like this mail_location = maildir:/home/vmail/%u/mail:INBOX= /home/vmail/%u/mail/.Inbox namespace { list = children location = maildir:/home/vmail/%%u/mail:INDEX=/home/vmail/%u/mail/shared/%%u:INBOX= /home/vmail/%%u/mail/.Inbox prefix = shared/%%u/ separator = / subscriptions = no type = shared } namespace inbox { inbox = yes location = maildir:/home/vmail/%u/mail:INBOX= /home/vmail/%u/mail/.Inbox prefix = separator = / type = private } Also exteded my ldap queries to return the correct mail variable (=mail=/home/vmail/%u/mail:INBOX=/home/vmail/%u/mail/.Inbox). Now an dovecot-acl inside /home/vmail/%u/mail gets used for newly created subfolders, which is very helpful. However if i share an users inbox now the hierarchie looks like this for an user with access. shared/user shared/user/Inbox shared/user/INBOX All three folders point to user's inbox. If i set mail_shared_explicit_inbox=yes "shared/user" is greyed out but the other two folders remain. Can someone here tell me what i did wrong to have three verisons of the inbox now? Thanks in advance achim~ From achim at ag-web.biz Sat Nov 9 13:20:53 2013 From: achim at ag-web.biz (Achim Gottinger) Date: Sat, 09 Nov 2013 12:20:53 +0100 Subject: [Dovecot] Question about folder sharing In-Reply-To: <527E12ED.8030803@ag-web.biz> References: <527C2F5F.1050009@ag-web.biz> <527E12ED.8030803@ag-web.biz> Message-ID: <527E1A95.4030700@ag-web.biz> Am 09.11.2013 11:48, schrieb Achim Gottinger: > Am 08.11.2013 01:25, schrieb Achim Gottinger: >> Hi, >> >> I run dovecot (2.1.7) on debian wheezy in conjuniction with postfix, >> samba4 (as ldap backend) and sogo. I configured folder sharing but >> have an few issues. >> With my current config users can share the inbox and other folders. >> If the acl allows creatings subfolders this does work for all folders >> beside inbox. >> >> What i want to archiev is the following: >> >> If an user shares his inbox, others should be able to create >> subfolders and those should inherit the inboxe's acl. All subfolders >> of inbox should appear as folders at root level and not as subfolders >> of the inbox. >> >> I thought this can be done by setting the prefix of namespace inbox >> to INBOX/. I did this and changed the IMAP Server Folder setting in >> thunderbird to INBOX (like it was earlier when i used courier). Now >> subfolders created at rootlevel or as subfolders of the inbox appear >> on rootlevel in thunderbird but they do not inherit the acl's from >> inbox. Is there an way to achive this? >> >> doveconf -n >> >> mail_location = maildir:/home/vmail/%u/mail >> namespace { >> list = children >> location = >> maildir:/home/vmail/%%u/mail:INDEX=/home/vmail/%u/mail/shared/%%u >> prefix = shared/%%u/ >> separator = / >> subscriptions = no >> type = shared >> } >> namespace inbox { >> inbox = yes >> location = maildir:/home/vmail/%u/mail >> prefix = >> separator = / >> type = private >> } >> >> userdb { >> args = /etc/dovecot/dovecot-ldap-userdb.conf.ext >> driver = ldap >> } >> userdb { >> args = /etc/dovecot/dovecot-ldap-userdb-groups.conf.ext >> driver = ldap >> } > I changed the location of the inbox like this > mail_location = maildir:/home/vmail/%u/mail:INBOX= > /home/vmail/%u/mail/.Inbox > namespace { > list = children > location = > maildir:/home/vmail/%%u/mail:INDEX=/home/vmail/%u/mail/shared/%%u:INBOX= > /home/vmail/%%u/mail/.Inbox > prefix = shared/%%u/ > separator = / > subscriptions = no > type = shared > } > namespace inbox { > inbox = yes > location = maildir:/home/vmail/%u/mail:INBOX= > /home/vmail/%u/mail/.Inbox > prefix = > separator = / > type = private > } > Also exteded my ldap queries to return the correct mail variable > (=mail=/home/vmail/%u/mail:INBOX=/home/vmail/%u/mail/.Inbox). > > Now an dovecot-acl inside /home/vmail/%u/mail gets used for newly > created subfolders, which is very helpful. However if i share an users > inbox now the hierarchie looks like this for an user with access. > > shared/user > shared/user/Inbox > shared/user/INBOX > > All three folders point to user's inbox. If i set > mail_shared_explicit_inbox=yes "shared/user" is greyed out but the > other two folders remain. Can someone here tell me what i did wrong to > have three verisons of the inbox now? > > Thanks in advance > achim~ Changed .Inbox to .INBOX now there is only one folder named INBOX visible. The ACL's from /home/vmail/%u/mail are used for all subfolders under ../mail no matter if they have an dovecot-acl file inside or not. Can not find this documented, it's useful in my case but is it supposed to work like that? Nice thing is i can create root-level folders for users with an mail_location configured like that in the shared subsections. From itgeek31 at googlemail.com Sat Nov 9 13:22:25 2013 From: itgeek31 at googlemail.com (IT geek 31) Date: Sat, 9 Nov 2013 11:22:25 +0000 Subject: [Dovecot] Replication on v2.2.6 - I'm stuck (again) In-Reply-To: References: <4F7372E9-F1EC-40BA-8246-F44C495078B9@iki.fi> <178BD068-EEE7-4C29-B05E-19225673C349@iki.fi> Message-ID: <6C4B4203-3270-4B5B-92D1-DCB74B504D25@googlemail.com> Hi, Does anyone have any ideas? I need to iron out these few remaining issues before I deploy this into production... -Mark > On 5 Nov 2013, at 10:01 am, IT geek 31 wrote: > > Hi Timo, > > Thanks for the info. I've upgraded to v2.2.7 and made the change. Now I get: > > Nov 5 11:00:00 server1 dovecot: dsync-server(mark): Error: Couldn't lock /home/mark/.dovecot-sync.lock: Timed out after 30 seconds > Nov 5 11:00:02 server1 dovecot: dsync-local(mark): Error: Couldn't lock /home/mark/.dovecot-sync.lock: Timed out after 30 seconds > > Also, I get a lot of errors about Dovecot trying to replicate mailboxes for (system) users that don't have them. Is there any way to exclude users from replication? > > > -Mark > > > >> On 3 November 2013 21:23, Timo Sirainen wrote: >> 1) Upgrade to v2.2.7 >> >> 2) Use: >> >> mail_replica = tcp:server2.mydomain.com >> >> On 3.11.2013, at 21.53, IT geek 31 wrote: >> >> > Hi Timo, >> > >> > Thanks for your response. >> > >> > Getting it to replicate over TCP is what I'm after. How do I tweak my config to get it to do that? >> > >> > I followed http://wiki2.dovecot.org/Replication, but I've obviously taking a wrong turn... >> > >> > >> > -Mark >> > >> > >> > On 2 November 2013 11:46, Timo Sirainen wrote: >> > On 30.10.2013, at 13.01, IT geek 31 wrote: >> > >> > > I'm trying to get Dovecot replication working between two servers. I >> > > didn't have much luck on v2.1.3, so after receiving advice from the list I >> > > have upgraded to v2.2.6. >> > > >> > > I now get the error: >> > > >> > > Oct 30 11:50:16 server1 dovecot: doveadm(mark): Error: user mark: Auth PASS >> > > lookup failed >> > > Oct 30 11:50:16 server2 dovecot: doveadm(mark): Error: sync: >> > > /var/run/dovecot/auth-userdb: passdb lookup failed (to see if user is >> > > proxied, because doveadm_port is set) >> > >> > I don?t think you need to have doveadm_port set, since you?re not replicating over TCP. Remove it and it should just work? Anyway, it still shouldn?t have failed, this fixes it: >> > >> > http://hg.dovecot.org/dovecot-2.2/rev/47848e9fc622 >> > >> > also this gives a bit better error message for the PASS lookup failure: >> > >> > http://hg.dovecot.org/dovecot-2.2/rev/9b45f6d20d9d >> > >> > > From d.parthey at metaways.de Sat Nov 9 17:18:05 2013 From: d.parthey at metaways.de (Daniel Parthey) Date: Sat, 09 Nov 2013 16:18:05 +0100 Subject: [Dovecot] Can't get sieve/managedsieve working In-Reply-To: <2945d2d67013652fffc08a7c931704b2@gmx.de> References: <2945d2d67013652fffc08a7c931704b2@gmx.de> Message-ID: Hi with modern Thunderbird Versions you will need to use the daily snapshot of the Thunderbird SIEVE extension, since 0.2.2 doesn't work any more. Regards Daniel From arekm at maven.pl Sat Nov 9 20:28:09 2013 From: arekm at maven.pl (Arkadiusz =?utf-8?q?Mi=C5=9Bkiewicz?=) Date: Sat, 9 Nov 2013 19:28:09 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <201311091928.11849.arekm@maven.pl> On Friday 08 of November 2013, Timo Sirainen wrote: > My main design goals for the MTA are: [...] > * Configuration: It would take years to implement all of the settings that > Postfix has, but I think it's not going to be necessary. In fact I think > the number of new settings to dovecot.conf that Dovecot MTA requires would > be very minimal. Instead nearly all of the configuration could be done > using Sieve scripts. We'd need to implement some new MTA-specific Sieve > extensions and a few core features/configurations/databases that the > scripts can use, but after that there wouldn't be really any limits to > what could be done with them. What I would love is configuration flexibility, some simplified programming language for configuration to allow doing magic things with this new mta and not just be limited by fixed configuration boundaries. exim allows much of such flexibility (including delivery dependant on moon phase - can be easily implemented) but its configuration language is horrible. (For simple mta lovers - http://opensmtpd.org/) -- Arkadiusz Mi?kiewicz, arekm / maven.pl From pw at wk-serv.de Sat Nov 9 22:11:33 2013 From: pw at wk-serv.de (Patrick Westenberg) Date: Sat, 09 Nov 2013 21:11:33 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down Message-ID: <527E96F5.4040107@wk-serv.de> Hi everyone, I'm running a test environment with a proxy in front of working replication between two backends but redirecting in case of a backend failure is not working. Nov 09 21:03:59 imap-login: Error: proxy(mail at example.net): connect(10.5.29.211, 143) failed: Connection refused (after 0 secs, local=10.5.29.201:38333) I appreciate any advice. Regards Patrick Proxy: # 2.2.7: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.2 auth_debug = yes auth_mechanisms = plain login auth_verbose = yes default_process_limit = 150 director_mail_servers = 10.5.29.211 10.5.29.212 director_servers = 10.5.29.201 director_user_expire = 5 mins disable_plaintext_auth = no lmtp_proxy = yes log_path = /var/log/dovecot.log mail_plugins = notify replication managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave passdb { args = proxy=y nopassword=y driver = static } protocols = imap pop3 lmtp sieve service aggregator { fifo_listener replication-notify-fifo { user = vmail } unix_listener replication-notify { user = vmail } } service auth { unix_listener auth-userdb { user = dovecot } } service director { fifo_listener login/proxy-notify { mode = 0666 } inet_listener { address = 10.5.29.201 port = 9090 } unix_listener director-userdb { mode = 0600 } unix_listener login/director { mode = 0666 } } service imap-login { executable = imap-login director } service lmtp { inet_listener lmtp { address = 10.5.29.201 port = 24 } } service managesieve-login { executable = managesieve-login director inet_listener sieve { port = 4190 } } service pop3-login { executable = pop3-login director } service replicator { unix_listener replicator-doveadm { mode = 0600 } } ssl = no protocol lmtp { auth_socket_path = director-userdb } Backend 1: # 2.2.7: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.2 auth_debug = yes auth_mechanisms = plain login auth_verbose = yes disable_plaintext_auth = no dotlock_use_excl = no doveadm_password = secret doveadm_port = 12345 dsync_remote_cmd = ssh -l%{login} %{host} doveadm dsync-server -u%u hostname = mb01.example.net listen = 10.5.29.211 log_path = /var/log/dovecot.log mail_debug = yes mail_fsync = always mail_gid = vmail mail_home = /var/mail/%d/%n mail_location = maildir:~/Maildir mail_plugins = quota notify replication mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave mmap_disable = yes namespace inbox { inbox = yes location = mailbox Drafts { auto = subscribe special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { auto = subscribe special_use = \Sent } mailbox Spamverdacht { auto = subscribe } mailbox Trash { auto = subscribe special_use = \Trash } prefix = INBOX. separator = . type = private } passdb { args = /usr/local/etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { mail_replica = tcp:10.5.29.212 quota = dict:User quota::file:%h/Maildir/dovecot-quota quota_rule2 = INBOX.Trash:ignore quota_warning = storage=90%% quota-warning 90 %u quota_warning2 = storage=75%% quota-warning 75 %u sieve = ~/.dovecot.sieve sieve_after = /usr/local/etc/dovecot/sieve/sieve_after.sieve sieve_default = /usr/local/etc/dovecot/sieve/default.sieve sieve_dir = ~/sieve } postmaster_address = postmaster at example.net protocols = imap pop3 lmtp sieve service aggregator { fifo_listener replication-notify-fifo { user = vmail } unix_listener replication-notify { user = vmail } } service auth { unix_listener auth-userdb { mode = 0666 user = vmail } } service doveadm { inet_listener { port = 12345 } } service lmtp { inet_listener lmtp { address = 10.5.29.211 port = 24 } } service managesieve-login { inet_listener sieve { port = 4190 } } service quota-warning { executable = script /usr/local/etc/dovecot/quota_warning.sh unix_listener quota-warning { user = vmail } user = root } service replicator { process_min_avail = 1 unix_listener replicator-doveadm { mode = 0600 } } ssl = no submission_host = mf01.example.net userdb { args = /usr/local/etc/dovecot/dovecot-sql.conf.ext driver = sql } protocol lmtp { mail_plugins = quota notify replication sieve } protocol imap { mail_max_userip_connections = 30 mail_plugins = quota notify replication imap_quota } Backend 2: # 2.2.7: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.2 auth_debug = yes auth_mechanisms = plain login auth_verbose = yes disable_plaintext_auth = no dotlock_use_excl = no doveadm_password = secret doveadm_port = 12345 dsync_remote_cmd = ssh -l%{login} %{host} doveadm dsync-server -u%u hostname = mb02.example.net listen = 10.5.29.212 log_path = /var/log/dovecot.log mail_debug = yes mail_fsync = always mail_gid = vmail mail_home = /var/mail/%d/%n mail_location = maildir:~/Maildir mail_plugins = quota notify replication mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave mmap_disable = yes namespace inbox { inbox = yes location = mailbox Drafts { auto = subscribe special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { auto = subscribe special_use = \Sent } mailbox Spamverdacht { auto = subscribe } mailbox Trash { auto = subscribe special_use = \Trash } prefix = INBOX. separator = . type = private } passdb { args = /usr/local/etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { mail_replica = tcp:10.5.29.211 quota = dict:User quota::file:%h/Maildir/dovecot-quota quota_rule2 = INBOX.Trash:ignore quota_warning = storage=90%% quota-warning 90 %u quota_warning2 = storage=75%% quota-warning 75 %u sieve = ~/.dovecot.sieve sieve_after = /usr/local/etc/dovecot/sieve/sieve_after.sieve sieve_default = /usr/local/etc/dovecot/sieve/default.sieve sieve_dir = ~/sieve } postmaster_address = postmaster at example.net protocols = imap pop3 lmtp sieve service aggregator { fifo_listener replication-notify-fifo { user = vmail } unix_listener replication-notify { user = vmail } } service auth { unix_listener auth-userdb { mode = 0666 user = vmail } } service doveadm { inet_listener { port = 12345 } } service lmtp { inet_listener lmtp { address = 10.5.29.212 port = 24 } } service managesieve-login { inet_listener sieve { port = 4190 } } service quota-warning { executable = script /usr/local/etc/dovecot/quota_warning.sh unix_listener quota-warning { user = vmail } user = root } service replicator { process_min_avail = 1 unix_listener replicator-doveadm { mode = 0600 user = vmail } } ssl = no submission_host = mf01.example.net userdb { args = /usr/local/etc/dovecot/dovecot-sql.conf.ext driver = sql } protocol lmtp { mail_plugins = quota notify replication sieve } protocol imap { mail_max_userip_connections = 30 mail_plugins = quota notify replication imap_quota } From list_dovecot at bluerosetech.com Sat Nov 9 23:46:52 2013 From: list_dovecot at bluerosetech.com (Darren Pilgrim) Date: Sat, 09 Nov 2013 13:46:52 -0800 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <527EAD4C.2050304@bluerosetech.com> On 11/8/2013 5:07 AM, Timo Sirainen wrote: > I've never really wanted to create my own MTA, Then please don't. Dovecot took over because the mailbox side of email was a wheel that needed reinventing. That is not the case with SMTP servers. Fork Exim or Postfix if you want to create an MTA. There's 14+ years of operational wisdom rolled into Postfix and even more for Exim. From andrzej.filip at gmail.com Sun Nov 10 01:48:57 2013 From: andrzej.filip at gmail.com (Andrzej A. Filip) Date: Sun, 10 Nov 2013 00:48:57 +0100 Subject: [Dovecot] Dovecot MSA -> MTA In-Reply-To: References: Message-ID: <527EC9E9.1030004@gmail.com> On 11/08/2013 02:07 PM, Timo Sirainen wrote: > [...] > So perhaps something like this could be done in time for Dovecot v2.4. Any thoughts/ideas/suggestions? Have you considered creating SMTP MSA (port 587) server as "step one"? Making dovecot itself handle SMTP AUTH may help to better integrate dovecot with a few more MTA servers. From h.reindl at thelounge.net Sun Nov 10 01:59:27 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Sun, 10 Nov 2013 00:59:27 +0100 Subject: [Dovecot] Dovecot MSA -> MTA In-Reply-To: <527EC9E9.1030004@gmail.com> References: <527EC9E9.1030004@gmail.com> Message-ID: <527ECC5F.7050407@thelounge.net> Am 10.11.2013 00:48, schrieb Andrzej A. Filip: > On 11/08/2013 02:07 PM, Timo Sirainen wrote: >> [...] >> So perhaps something like this could be done in time for Dovecot v2.4. Any thoughts/ideas/suggestions? > > Have you considered creating SMTP MSA (port 587) server as "step one"? > > Making dovecot itself handle SMTP AUTH may help to better integrate > dovecot with a few more MTA servers. hardly - only in very small environments this could work everywhere else you have sender-dependent relay hosts, RCPT dependent relayhosts and all sort of aliases which you *do not* want treated different between incoming mail from outside or a internal server and submission mail the only real difference between submission is that it is authenticated and because the authentication a few restrictions are not applied but in usual there is and must not be any difference in the mail-routing so no - make it complete or not at all -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From andrzej.filip at gmail.com Sun Nov 10 02:29:52 2013 From: andrzej.filip at gmail.com (Andrzej A. Filip) Date: Sun, 10 Nov 2013 01:29:52 +0100 Subject: [Dovecot] Dovecot MSA -> Simple MTA -> MTA In-Reply-To: <527ECC5F.7050407@thelounge.net> References: <527EC9E9.1030004@gmail.com> <527ECC5F.7050407@thelounge.net> Message-ID: <527ED380.9040509@gmail.com> On 11/10/2013 12:59 AM, Reindl Harald wrote: > > > Am 10.11.2013 00:48, schrieb Andrzej A. Filip: >> On 11/08/2013 02:07 PM, Timo Sirainen wrote: >>> [...] >>> So perhaps something like this could be done in time for Dovecot v2.4. Any thoughts/ideas/suggestions? >> >> Have you considered creating SMTP MSA (port 587) server as "step one"? >> >> Making dovecot itself handle SMTP AUTH may help to better integrate >> dovecot with a few more MTA servers. > > hardly - only in very small environments this could work > > everywhere else you have sender-dependent relay hosts, RCPT dependent relayhosts > and all sort of aliases which you *do not* want treated different between > incoming mail from outside or a internal server and submission mail > > the only real difference between submission is that it is authenticated > and because the authentication a few restrictions are not applied > > but in usual there is and must not be any difference in the mail-routing > > so no - make it complete or not at all Would "simple MTA" make more sense to you? * MSA * sending out via smart host * accepting incoming from email gateway It may make sense for organizations with geographically distributed branches. From h.reindl at thelounge.net Sun Nov 10 02:42:33 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Sun, 10 Nov 2013 01:42:33 +0100 Subject: [Dovecot] Dovecot MSA -> Simple MTA -> MTA In-Reply-To: <527ED380.9040509@gmail.com> References: <527EC9E9.1030004@gmail.com> <527ECC5F.7050407@thelounge.net> <527ED380.9040509@gmail.com> Message-ID: <527ED679.3030504@thelounge.net> Am 10.11.2013 01:29, schrieb Andrzej A. Filip: > On 11/10/2013 12:59 AM, Reindl Harald wrote: >> >> >> Am 10.11.2013 00:48, schrieb Andrzej A. Filip: >>> On 11/08/2013 02:07 PM, Timo Sirainen wrote: >>>> [...] >>>> So perhaps something like this could be done in time for Dovecot v2.4. Any thoughts/ideas/suggestions? >>> >>> Have you considered creating SMTP MSA (port 587) server as "step one"? >>> >>> Making dovecot itself handle SMTP AUTH may help to better integrate >>> dovecot with a few more MTA servers. >> >> hardly - only in very small environments this could work >> >> everywhere else you have sender-dependent relay hosts, RCPT dependent relayhosts >> and all sort of aliases which you *do not* want treated different between >> incoming mail from outside or a internal server and submission mail >> >> the only real difference between submission is that it is authenticated >> and because the authentication a few restrictions are not applied >> >> but in usual there is and must not be any difference in the mail-routing >> >> so no - make it complete or not at all > > Would "simple MTA" make more sense to you? > * MSA > * sending out via smart host > * accepting incoming from email gateway > > It may make sense for organizations with geographically distributed > branches honestly having a new MTA makes no sense at all for me it is hard to impossible to beat out postfix/exim these days the unix principle is have one tool for one job and let work the tools together -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From d.parthey at metaways.de Sun Nov 10 05:42:45 2013 From: d.parthey at metaways.de (Daniel Parthey) Date: Sun, 10 Nov 2013 04:42:45 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: <527E96F5.4040107@wk-serv.de> References: <527E96F5.4040107@wk-serv.de> Message-ID: <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> Hi Patrick the director does not check backends for availability. If one backend goes up or down, you need to instruct the director to add/remove this backend from its pool. You might be looking for a script named "poolmon" which does exactly this. Regards Daniel From nick.z.edwards at gmail.com Sun Nov 10 08:21:58 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Sun, 10 Nov 2013 16:21:58 +1000 Subject: [Dovecot] Dovecot MTA In-Reply-To: <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> Message-ID: On 11/9/13, Timo Sirainen wrote: > On 9.11.2013, at 5.11, Nick Edwards wrote: > >> On 11/9/13, Michael Kliewe wrote: >>> Hi Timo, >>> >>> I would also, like others, see you mainly working on Dovecot as an IMAP >>> server. As far as I can see there are many things on the roadmap, and I >>> hope many more will be added (for example a built-in health-checker for >>> director backends). >>> >>> Only if you have enough personal resources and Dovecot as an IMAP server >>> will not "loose your attention", I would love to see your expertise in >>> making a better MTA. >> >> Yes, some of us have been waiting for some years now, for a >> configurable change to alter the method of dovecots method of >> failover, which is just load balancing between servers rather than >> true failover, like postix, I see now why it gets no importance. > > Ah, you?re talking about SQL connections. Had to look up from old mails what > you were talking about. It hasn?t changed, because I think the current > behavior with load balancing + failover is more useful than failover-only. > And you can already do failover-only with an external load balancer. Sure, > Dovecot could also implement it, but it?s not something I especially want to > spend time on implementing. > My employer has 18 pop3 servers, one imap customer access (imap here has so little use we cant justify a redundant machine, not for 11, yes, eleven only users after 2 years of offering imap , and 2 imap (webmail). Sp, each server has a replicated mysql database If I use your "better" method, I have 18 machines polling themselves and the MASTER server, this needlessly slams the daylights out of the master as I'm sure even you can imagine. We have 4 customer relay smtp servers and 4 inbound smtp servers, postifx, using its failover and "better" method, means they only hit the master server when the local mysql unix socket is not listening, ie, mysqld is stopped - the master server NEVER sees them. How is your method, "better" than true failover like method used by postfix, your methods is load balancing, it is not failover, and causes problems on larger networks I'm sure in some cases most people using it are happy and wont have performance increases noticeable, but if you are going to offer a backup for auth, it really shoulds be able to configure, if we want it to DoS our master, or only talk to master when it cant talk local, so I think it should be matter you need to consider, else you are only half arsed doing it, and like implying we should go introduce a further point of failure, by using yet more third party softwares From pug at felsing.net Sun Nov 10 11:25:04 2013 From: pug at felsing.net (Christian Felsing) Date: Sun, 10 Nov 2013 10:25:04 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <527F50F0.2040700@felsing.net> Hi Timo, Am 08.11.2013 14:07, schrieb Timo Sirainen: > I've never really wanted to create my own MTA, because I like Postfix > quite a lot. And I always thought it would require a horribly lot of ...and there virtually nothing which could not be built with Postfix. Maybe a Postfix addon/proxy for easier integration of Dovecot would help. If I need a very fast MTA for e.g. a Raspberry based mail system I would prefer qmail as MTA. > My main design goals for the MTA are: ... hmm - I consider still to use Postfix as MTA, because it is a nightmare to replace all those MTA monitoring tools, log analyzer and other support tools. Did you asked Wietse for those improvements in Postfix? > So perhaps something like this could be done in time for Dovecot > v2.4. Any thoughts/ideas/suggestions? To the risk to become off topic: Please consider to add server side private/public key encryption for incoming mails. If client logs on, the password is used to unlock users server side private key. If mail arrives from MTA or any other source, mail is encrypted with users public key. Key pair should be located in LDAP or SQL server. PGP and S/MIME should be supported. This is for the situation if NSA or other organizations asks admin for users mail insistently, see http://xkcd.com/538/ A much better solution would be to improve IMAP protocol to allow user to use his client certificate not only for authentication on IMAP server but decrypt his mails also. Dovecot needs only public key and client does decryption. This should not replace end-to-end encryption provided by enigmail etc. Christian From p at sys4.de Sun Nov 10 11:26:22 2013 From: p at sys4.de (Patrick Ben Koetter) Date: Sun, 10 Nov 2013 10:26:22 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <20131110092622.GB14209@sys4.de> Timo, * Timo Sirainen : > I've never really wanted to create my own MTA, because I like Postfix quite > a lot. And I always thought it would require a horribly lot of time to be > able to create something that was anywhere even close to having Postfix's > features. (I would shudder to even think about recreating Dovecot from > scratch nowadays.) But slowly over time I've also been thinking of ways how > things could be done a bit better, and I think I have enough ideas to start > thinking about Dovecot MTA more seriously in a few more months (after my > current busy schedule calms down a bit). And (unlike Dovecot!) I'm not > planning on taking over the world with the MTA (or at least not very > quickly), but it would definitely be useful for many installations I know > of. which problems would your MTA solve? I can't speak for Exim. The only functional shortcoming on the Postfix side I know of is its lack for URLAUTH support. > My main design goals for the MTA are: > > * In normal load don't queue mails, just continue delivering the mail > through different processes/services until it succeeds or fails, and only > after that return ok/failure to the SMTP client. So there's no (forced) > post-queue filtering, everything would normally happen pre-queue. This is > required because in Germany (and EU in general?) you aren't allowed to just > drop spams after SMTP server has responsed OK to the client, even if you?re > 100% sure it?s a spam. So this would also mean that the SMTP DATA replies > will come more slowly, which means that the SMTP server must be able to > handle a lot more concurrent SMTP connections, which means that in large > installations the smtpd process must be able to asynchronously handle > multiple SMTP client connections. Here in Germany (and with Postfix) we use the pre-queue smtpd_proxy_filter and the Sendmail MILTER API to process mail compliant with local jurisdiction. Usually you need that on the inbound side. On the submission side, where MUAs connect and users tend to complain that submission takes to long (message is scanned in session) the organizational context may allow to post-queue process such messages. > * In some cases you can't really avoid placing mails into a queue. This > could be because of temporary failures or maybe because of an abnormal load > spike. A mail queue in local disk isn't very nice though, because if the > local disk dies, the queued mails are lost. Dovecot MTA will allow the queue > to be in object storage and it will also likely support replication (similar > to current dsync replication). In both of these cases if a server dies, > another server can quickly take over its queue and continue handling it. If the local disk dies it does not necessarily need to be lost if you mirror the message and a failover SMTP instance takes over and delivers the dead MTAs messages. > * Dovecot MTA is a new product, which means we can add some requirements to how it's being used, especially related to securely sending emails between servers. It could do a bunch of checks at startup and fail to even start if everything isn't correct. Here are some things I had in mind - not sure if all of these are good ideas or not: > > - Require DKIM configuration. All outgoing mails will be DKIM signed. I agree. Every MTA should be required to DKIM-sign outgoing messages. But having a DKIM signature on outgoing messages is a policy and not a function. I don't see the benefit to build an extra MTA for that. There already are several implementations out there that provide DKIM signing and verification and they hardly slow down an MTA. > - Require the domain?s DNS to contain _submission._tcp SRV record (and actually might as well require _imap._tcp too) Are you referring to RFC 6186 ? I consider that a MUA feature which helps users to setup their MUA easily and not something a MTA would benefit from. Besides I think Microsofts autodiscover and Mozillas autoconfig services that autoconfiguration to a much higher level. "SRV Records for Locating Email Submission/Access Services" can tell you where the service is, but they don't fix your login or tell you it is wrong - autodiscover and autoconfig can do that. > - Require SSL certificates to be configured and always allow remote to use STARTTLS A policy not a functional deficit. Every reasonable MTA, I know of, can do that. > - Require DANE TLSA record to exist and match the server's configured SSL cert A policy and a functional deficit. I'd say that's because currently DANE is in RFC draft status. Postfix snapshot can do that. Postfix 2.11, expected to be published in Q1/2014, will likely support it. I expect other MTAs to adopt DANE soon. > - Have very good (and strict?) DNSSEC support. If we know a remote server is supposed to have valid DNSSEC entries, but doesn't, fail to deliver mail entirely? How would you know? A destination server policy? The only trustful way to automatically retrieve such a policy would be a DNSSEC query result, which won't work in this case because that DNSSEC status is what you are looking for. Sounds like a chicken-and-egg problem to me. :) That leaves it to local policies noted in e.g. a map. Postfix 2.11 will support that by expanding its current smtp_tls_policy_maps parameter with the new 'dane-only' option: dane-only Mandatory DANE TLS. The TLS policy for the destination is obtained via TLSA records in DNSSEC. If no TLSA records are found, or none are usable, no connection is made to the server. (...) > - Add a new DNS record that advertises this is a Dovecot MTA (or compatible). If such entry is found (especially when correctness is guaranteed by DNSSEC), the email sender can assume that certain features exist and work correctly. If they don't, it could indicate an attack and the mail sending should be retried later. This DNS record would of course be good to try to standardize. Is this a variation of DANE? DANE for MUAs? It would be an MUA feature and not one to implement in the MTA, right? I like the idea. But given the speed it takes MUA producers to adopt new standards I doubt we will see such a standard in widely deployed MUAs (Outlook, Mail, Thunderbird [dying project]) within reasonable time. Besides the impression I have that vendors are moving to webclients/web app solutions. > * Configuration: It would take years to implement all of the settings that Postfix has, but I think it's not going to be necessary. In fact I think the number of new settings to dovecot.conf that Dovecot MTA requires would be very minimal. Instead nearly all of the configuration could be done using Sieve scripts. We'd need to implement some new MTA-specific Sieve extensions and a few core features/configurations/databases that the scripts can use, but after that there wouldn't be really any limits to what could be done with them. I understand the costs to implement features are low. That's good. What are the costs for admins to learn the new features. To me it seems (writing 'seems' on purpose, because I don't 'know') most of the features you proposed are policies and not features. Current MTAs are/will be able to support the functionality required to enforce the policies you listed. If I am right about all this, then I'd conclude it would be more useful to create and publish a BCP document and - optionally - submit that to IETF. IIRC last time I spoke to Alexey he was looking for a BCP for IMAP. > * Try to implement as many existing interfaces as possible (e.g. Milter and various Postfix APIs like policy servers) so that it wouldn?t be necessary to reimplement all the tools and filters. I would *love* IMAP - especially Dovecot - do adopt these filter APIs on the IMAP side - connection, session and content filters. > So perhaps something like this could be done in time for Dovecot v2.4. Any > thoughts/ideas/suggestions? From what I have read I am not convinced a Dovecot MTA would implement anything that takes SMTP itself any further. I see pain, but no gain. ;) You'd have an additional Dovecot product, which might make sense. But its not up to me to judge on that. Personally, I would like Dovecot to add other protocols on top of its message store. But that's another story out of this discussions scope. :) p at rick -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 316 bytes Desc: Digital signature URL: From pw at wk-serv.de Sun Nov 10 11:57:12 2013 From: pw at wk-serv.de (Patrick Westenberg) Date: Sun, 10 Nov 2013 10:57:12 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> References: <527E96F5.4040107@wk-serv.de> <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> Message-ID: <527F5878.5000509@wk-serv.de> Daniel Parthey schrieb: > Hi Patrick > > the director does not check backends for availability. If one backend goes up or down, you need to instruct the director to add/remove this backend from its pool. http://blog.dovecot.org/2012/02/dovecot-clustering-with-dsync-based.html says: One possibility is to use Dovecot proxies, which know which servers are down. Instead of directing users to those servers, it would direct them to replica servers. I know that proxy and director are two different things but I don't know how to configure my servers to get this redirection working. Patrick From S.Liebl at gmx.de Sat Nov 9 15:01:44 2013 From: S.Liebl at gmx.de (Stefan Liebl) Date: Sat, 09 Nov 2013 14:01:44 +0100 Subject: [Dovecot] Can't get sieve/managedsieve working In-Reply-To: <527D5823.4060102@ag-web.biz> References: <2945d2d67013652fffc08a7c931704b2@gmx.de> <527D5823.4060102@ag-web.biz> Message-ID: <97706c879a80227e8a98991bc1294543@gmx.de> Am 2013-11-08 22:31, schrieb Achim Gottinger: > Am 08.11.2013 22:19, schrieb Alter Depp: >> I am running dovecot 2.1.7 for a while, with roundcube webmail >> frontend 0.9.5 . > An wild guess but it may help if you define mail_home as well. Does this setting exist in dovecot 2? Where should I set it and to what? Stefan From d.parthey at metaways.de Sun Nov 10 14:03:40 2013 From: d.parthey at metaways.de (Daniel Parthey) Date: Sun, 10 Nov 2013 13:03:40 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: <527F5878.5000509@wk-serv.de> References: <527E96F5.4040107@wk-serv.de> <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> <527F5878.5000509@wk-serv.de> Message-ID: Hi Patrick, do you want to use the proxy *without* the director? Then you would need to remove all director_... entries from your proxy config. The proxy backend is controlled by passdb extra fields. Here is how to setup a proxy without the director: http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy You need to keep the password database up-to-date and ensure to not return an unhealthy backend IP in the "host" extra field, since the knowledge of the proxy (as mentioned in the blog) is simply read from the passdb database. Database content needs to be maintained by external tools. Regards Daniel From Alter.Depp at gmx.de Sun Nov 10 15:42:44 2013 From: Alter.Depp at gmx.de (Alter Depp) Date: Sun, 10 Nov 2013 14:42:44 +0100 Subject: [Dovecot] Can't get sieve/managedsieve working In-Reply-To: References: <2945d2d67013652fffc08a7c931704b2@gmx.de> Message-ID: <27d64d613042ace833bb120d97540202@gmx.de> Am 2013-11-08 22:58, schrieb Manuel Delgado: > On Fri, Nov 8, 2013 at 3:19 PM, Alter Depp wrote: >> I am running dovecot 2.1.7 for a while, with roundcube webmail >> frontend >> 0.9.5 . > I've a similar design with Dovecot 2.1.7 and Roundcube 0.9.x. I'm using > the > SieveRules plugin from JohnDoh and Pigeonhole in Dovecot. I have tried the managesieve plugin shipped with roundcube git and now switched to SieveRules. But it still can't connect to server. > I followed the wiki and everything worked fine, maybe this can help > you: > http://wiki2.dovecot.org/Pigeonhole/ I'm a little confused about this guide because it says: > The only thing you need to do to activate the ManageSieve protocol > support in Dovecot is to add sieve to the protocols= configuration line > in your dovecot.conf. I thought, the 'protocols=' isn't used anymore in dovecot 2. > For example, my configs look something like: > #[...] > protocols = imap lmtp sieve So I installed dovecot-lmtp. But no difference. Stefan From pw at wk-serv.de Sun Nov 10 20:24:16 2013 From: pw at wk-serv.de (Patrick Westenberg) Date: Sun, 10 Nov 2013 19:24:16 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: References: <527E96F5.4040107@wk-serv.de> <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> <527F5878.5000509@wk-serv.de> Message-ID: <527FCF50.2020108@wk-serv.de> Daniel Parthey schrieb: > You need to keep the password database up-to-date and ensure to not return an unhealthy backend IP in the "host" extra field, since the knowledge of the proxy (as mentioned in the blog) is simply read from the passdb database. Database content needs to be maintained by external tools. The blog says "One possibility is to use Dovecot proxies, which know which servers are down." So why do I have to From tss at iki.fi Sun Nov 10 20:32:09 2013 From: tss at iki.fi (Timo Sirainen) Date: Sun, 10 Nov 2013 19:32:09 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: <527FCF50.2020108@wk-serv.de> References: <527E96F5.4040107@wk-serv.de> <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> <527F5878.5000509@wk-serv.de> <527FCF50.2020108@wk-serv.de> Message-ID: <31D7700E-A8D3-47D8-98B2-C04C737C4520@iki.fi> On 10.11.2013, at 19.24, Patrick Westenberg wrote: > Daniel Parthey schrieb: > >> You need to keep the password database up-to-date and ensure to not return an unhealthy backend IP in the "host" extra field, since the knowledge of the proxy (as mentioned in the blog) is simply read from the passdb database. Database content needs to be maintained by external tools. > > The blog says "One possibility is to use Dovecot proxies, which know which servers are down." > > So why do I have to The blog was telling the idea how things would work, not exactly whose responsibility it is to do every part of them. The Dovecot proxies will know which backend servers are down (but not without extra scripting). From tss at iki.fi Sun Nov 10 20:34:07 2013 From: tss at iki.fi (Timo Sirainen) Date: Sun, 10 Nov 2013 19:34:07 +0100 Subject: [Dovecot] Replication on v2.2.6 - I'm stuck (again) In-Reply-To: References: <4F7372E9-F1EC-40BA-8246-F44C495078B9@iki.fi> <178BD068-EEE7-4C29-B05E-19225673C349@iki.fi> Message-ID: <1DCE50C7-9A4E-47B6-906D-A8F219D7FCC7@iki.fi> On 5.11.2013, at 11.01, IT geek 31 wrote: > Thanks for the info. I've upgraded to v2.2.7 and made the change. Now I > get: > > Nov 5 11:00:00 server1 dovecot: dsync-server(mark): Error: Couldn't lock > /home/mark/.dovecot-sync.lock: Timed out after 30 seconds > Nov 5 11:00:02 server1 dovecot: dsync-local(mark): Error: Couldn't lock > /home/mark/.dovecot-sync.lock: Timed out after 30 seconds Every time? I can see how it could happen for the initial dsync that takes a long time, but afterwards the syncs should be pretty fast. > Also, I get a lot of errors about Dovecot trying to replicate mailboxes for > (system) users that don't have them. Is there any way to exclude users > from replication? Dovecot replicates those users that are returned by: doveadm user ?*? How that list is generated depends on the userdbs you have. With passwd it?s filtered only by first_valid_uid and last_valid_uid settings. Perhaps you can set those to the range of users you actually want replicated. From pw at wk-serv.de Sun Nov 10 20:43:43 2013 From: pw at wk-serv.de (Patrick Westenberg) Date: Sun, 10 Nov 2013 19:43:43 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: <31D7700E-A8D3-47D8-98B2-C04C737C4520@iki.fi> References: <527E96F5.4040107@wk-serv.de> <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> <527F5878.5000509@wk-serv.de> <527FCF50.2020108@wk-serv.de> <31D7700E-A8D3-47D8-98B2-C04C737C4520@iki.fi> Message-ID: <527FD3DF.5000300@wk-serv.de> Timo Sirainen schrieb: > The blog was telling the idea how things would work, not exactly whose responsibility it is to do every part of them. The Dovecot proxies will know which backend servers are down (but not without extra scripting). So another ineffectual feature from Dovecot. You should have limited yourself creating a good imap server instead of adding features and features which can only be used useful if you tinker around. From rs at sys4.de Sun Nov 10 20:49:57 2013 From: rs at sys4.de (Robert Schetterer) Date: Sun, 10 Nov 2013 19:49:57 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: <527FD3DF.5000300@wk-serv.de> References: <527E96F5.4040107@wk-serv.de> <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> <527F5878.5000509@wk-serv.de> <527FCF50.2020108@wk-serv.de> <31D7700E-A8D3-47D8-98B2-C04C737C4520@iki.fi> <527FD3DF.5000300@wk-serv.de> Message-ID: <527FD555.7010807@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 10.11.2013 19:43, schrieb Patrick Westenberg: > Timo Sirainen schrieb: > >> The blog was telling the idea how things would work, not exactly >> whose responsibility it is to do every part of them. The Dovecot >> proxies will know which backend servers are down (but not without >> extra scripting). > > So another ineffectual feature from Dovecot. > > You should have limited yourself creating a good imap server > instead of adding features and features which can only be used > useful if you tinker around. > > Hey Patrick, its open software why dont hack yourself , everyone would like to see things getting better Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSf9VPAAoJEP8jBObu0LlEJq0IAKYAom5Y+qpcsqgJwMDHBHCj NNC03zZGjKD42ropwl2gcWVS/pbG8qlUKXaTMralCtjAd+qB/U4yOw9rRf9A6YsZ ERbv4YTUywbNNt5IeVhkmYoGfeijFOOWdlXhEYjQjnF8jsO5cMKINB+r+AB6gYMV 4vc6OcSH2343AGZBLtBm/nuJrOhDsgBsNUHm7pNxn6S+eyGDAjy4ey7i37NtRySE cGigM3eSwd5UYo7xPZffAVnwWy14TZE2KhGFIB+LZoS71mmzJhTFIvVz2OO2XRYs KZ6jNtTWJLX4fVOCEq199MsaE+9NIHiqP4rBqZahZsG8c+/wxShpdBs/RpSxykw= =fmlT -----END PGP SIGNATURE----- From tss at iki.fi Sun Nov 10 20:50:14 2013 From: tss at iki.fi (Timo Sirainen) Date: Sun, 10 Nov 2013 19:50:14 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: <527FD3DF.5000300@wk-serv.de> References: <527E96F5.4040107@wk-serv.de> <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> <527F5878.5000509@wk-serv.de> <527FCF50.2020108@wk-serv.de> <31D7700E-A8D3-47D8-98B2-C04C737C4520@iki.fi> <527FD3DF.5000300@wk-serv.de> Message-ID: <3864402B-537C-4A5F-851B-2B2BBDB58B04@iki.fi> On 10.11.2013, at 19.43, Patrick Westenberg wrote: > Timo Sirainen schrieb: > >> The blog was telling the idea how things would work, not exactly whose responsibility it is to do every part of them. The Dovecot proxies will know which backend servers are down (but not without extra scripting). > > So another ineffectual feature from Dovecot. > > You should have limited yourself creating a good imap server instead of adding features and features which can only be used useful if you tinker around. Different installations want to use features in different ways. I can?t make everyone happy, so I try to keep everything as configurable as possible. Director + poolmon should work for what you want to do. I don?t see a problem with poolmon being a separate script. The company who initially paid for the director feature specifically didn?t want me to implement anything like poolmon, because they had their own and wanted to use it. From daniele at grinta.net Sun Nov 10 21:00:38 2013 From: daniele at grinta.net (Daniele Nicolodi) Date: Sun, 10 Nov 2013 20:00:38 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <527FD7D6.4090408@grinta.net> On 08/11/2013 14:07, Timo Sirainen wrote: > I've never really wanted to create my own MTA, because I like Postfix > quite a lot. And I always thought it would require a horribly lot of > time to be able to create something that was anywhere even close to > having Postfix's features. Hello Timo, I don't want to put too much stop energy into this, and I'm not really in the position to tell you what to do with your time and energies, but I feel that the world does not need another MTA, and that most of your design goals can be very well accomplished with existing tools or minimal extensions to them. At the same time I see here on the mailing list frequent reports of bugs in Dovecot that would have been quite easy to catch with more test coverage. Spending time and energies into extending unit and integration tests for the current Dovecot would IMHO be very well worth. Additionally I feel that Dovecot documentation can see some love as well. Having the wiki as main source of documentation does not look very polished, compared, for example to the extremely good written and maintained Postfix documentation. I know that designing something from scratch is much more catchy than polishing a mature project. At the same time realizing a MTA capable of replacing existing solutions in non trivial cases is probably that much work that the fun will end quickly :) Just my two cents. Best, Daniele From tss at iki.fi Sun Nov 10 21:04:53 2013 From: tss at iki.fi (Timo Sirainen) Date: Sun, 10 Nov 2013 20:04:53 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527FD7D6.4090408@grinta.net> References: <527FD7D6.4090408@grinta.net> Message-ID: <69BDEE41-3266-439F-9D53-F4E43985D542@iki.fi> On 10.11.2013, at 20.00, Daniele Nicolodi wrote: > At the same time I see here on the mailing list frequent reports of bugs > in Dovecot that would have been quite easy to catch with more test > coverage. Spending time and energies into extending unit and integration > tests for the current Dovecot would IMHO be very well worth. This is definitely something that?s going to improve in future, regardless of what other Dovecot features are going to be implemented. > Additionally I feel that Dovecot documentation can see some love as > well. Having the wiki as main source of documentation does not look > very polished, compared, for example to the extremely good written and > maintained Postfix documentation. I don?t know how to improve the current documentation. (Other than implementing the few missing man pages.) There is going to be a Dovecot book soon though, maybe that?ll help. From me at junc.eu Sun Nov 10 21:15:31 2013 From: me at junc.eu (Benny Pedersen) Date: Sun, 10 Nov 2013 20:15:31 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: Message-ID: <27d8ceef27a0f9a57c5bbb046d2495b6@junc.eu> Timo Sirainen skrev den 2013-11-08 14:07: > So perhaps something like this could be done in time for Dovecot v2.4. > Any thoughts/ideas/suggestions? why is users not just change from postfix/dovecot to currier-* ? its imho much better :) http://www.courier-mta.org/ From lstone19 at stonejongleux.com Sun Nov 10 21:20:08 2013 From: lstone19 at stonejongleux.com (Larry Stone) Date: Sun, 10 Nov 2013 13:20:08 -0600 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527FD7D6.4090408@grinta.net> References: <527FD7D6.4090408@grinta.net> Message-ID: On Nov 10, 2013, at 1:00 PM, Daniele Nicolodi wrote: > On 08/11/2013 14:07, Timo Sirainen wrote: >> I've never really wanted to create my own MTA, because I like Postfix >> quite a lot. And I always thought it would require a horribly lot of >> time to be able to create something that was anywhere even close to >> having Postfix's features. > > Hello Timo, > > I don't want to put too much stop energy into this, and I'm not really > in the position to tell you what to do with your time and energies, but > I feel that the world does not need another MTA, and that most of your > design goals can be very well accomplished with existing tools or > minimal extensions to them. > > At the same time I see here on the mailing list frequent reports of bugs > in Dovecot that would have been quite easy to catch with more test > coverage. Spending time and energies into extending unit and integration > tests for the current Dovecot would IMHO be very well worth. I totally agree. I'm fairly new to Dovecot and am already quite cautious. Frequent new versions that always seem to have lots of bugs. Compare that to Postfix which has very infrequent new versions although lots of "snapshots" that are intermediate versions for those who want to test or really, really need a new feature. This shows in the amount of traffic the Dovecot list generates compared to the Postfix list. > Additionally I feel that Dovecot documentation can see some love as > well. Having the wiki as main source of documentation does not look > very polished, compared, for example to the extremely good written and > maintained Postfix documentation. > Agree here too. IMHO, the Dovecot documentation has become disjointed due to the feature creep that has made it into Dovecot. As I said in a post back in March: "All of this said (and much of it not worth repeating), one problem that seems to affect all software as it grows is that as documentation is "patched" to describe new features, it becomes too complex for the new user who just wants to do something simple to figure how to do that simple stuff. For the user who has been along for the long ride since the software started, it makes sense but the new user is overwhelmed. Rewriting documentation is no easy task but it can help for someone to take a look at it the way a new user might who knows nothing about the software. I don't know the history of Dovecot but my guess would be the Dovecot LDA was added after the Dovecot POP/IMAP server component. Why? Because the www.dovecot.org Overview says "Dovecot is an open source IMAP and POP3 email server for Linux/UNIX-like systems" without any mention of the Dovecot LDA anywhere on that front page. Longtime users know about the Dovecot LDA but they rarely read that first page and it's harder to notice something is missing than it is to notice something is wrong." Timo said in his reply that he doesn't know how to improve the current documentation. I'll take him at his word. I submit that it really needs a total rewrite, not continued editing. And before someone suggests if I believe it needs to be rewritten, I should offer to do it myself, I will just say that I don't know anywhere near enough about Dovecot to do that. I use a very small subset of Dovecot's capability (I started with it as a drop-in replacement for UW-IMAP; other than Dovecot's authentication module, if UW-IMAP didn't do it, then I don't use that feature in Dovecot) and have no experience with the Dovecot LDA. -- Larry Stone lstone19 at stonejongleux.com http://www.stonejongleux.com/ -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4160 bytes Desc: not available URL: From me at staticsafe.ca Sun Nov 10 21:21:46 2013 From: me at staticsafe.ca (staticsafe) Date: Sun, 10 Nov 2013 14:21:46 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <27d8ceef27a0f9a57c5bbb046d2495b6@junc.eu> References: <27d8ceef27a0f9a57c5bbb046d2495b6@junc.eu> Message-ID: <527FDCCA.2070101@staticsafe.ca> On 11/10/2013 14:15, Benny Pedersen wrote: > Timo Sirainen skrev den 2013-11-08 14:07: > >> So perhaps something like this could be done in time for Dovecot v2.4. >> Any thoughts/ideas/suggestions? > > why is users not just change from postfix/dovecot to currier-* ? > > its imho much better :) > > http://www.courier-mta.org/ > > Shh, don't start a holy war. :) -- staticsafe O< ascii ribbon campaign - stop html mail - www.asciiribbon.org Please don't top post. It is not logical. Please don't CC me! I'm subscribed to whatever list I just posted on. From achim at ag-web.biz Sun Nov 10 21:55:37 2013 From: achim at ag-web.biz (Achim Gottinger) Date: Sun, 10 Nov 2013 20:55:37 +0100 Subject: [Dovecot] Can't get sieve/managedsieve working In-Reply-To: <97706c879a80227e8a98991bc1294543@gmx.de> References: <2945d2d67013652fffc08a7c931704b2@gmx.de> <527D5823.4060102@ag-web.biz> <97706c879a80227e8a98991bc1294543@gmx.de> Message-ID: <527FE4B9.6060400@ag-web.biz> Am 09.11.2013 14:01, schrieb Stefan Liebl: > Am 2013-11-08 22:31, schrieb Achim Gottinger: >> Am 08.11.2013 22:19, schrieb Alter Depp: >>> I am running dovecot 2.1.7 for a while, with roundcube webmail >>> frontend 0.9.5 . >> An wild guess but it may help if you define mail_home as well. > > Does this setting exist in dovecot 2? Where should I set it and to what? > > Stefan I had to let mail_home point to an different folder that mail_location, but i use virtual users and dovecot runs as user vmail only. http://wiki2.dovecot.org/VirtualUsers/Home. The thunderbird sieve addon works here with plaintext passwords over imap or imaps. It does not work with kerberos authetication and may have an problem with tls as well. You said you can upload scipts with sieve-connect, do they apply to incoming mails? I'd go through the manual login and upload tests described here as well http://wiki2.dovecot.org/Pigeonhole/ManageSieve/Troubleshooting?highlight=%28sieve%29|%28telnet%29 achim~ From itgeek31 at googlemail.com Sun Nov 10 21:57:07 2013 From: itgeek31 at googlemail.com (IT geek 31) Date: Sun, 10 Nov 2013 20:57:07 +0100 Subject: [Dovecot] Replication on v2.2.6 - I'm stuck (again) In-Reply-To: <1DCE50C7-9A4E-47B6-906D-A8F219D7FCC7@iki.fi> References: <4F7372E9-F1EC-40BA-8246-F44C495078B9@iki.fi> <178BD068-EEE7-4C29-B05E-19225673C349@iki.fi> <1DCE50C7-9A4E-47B6-906D-A8F219D7FCC7@iki.fi> Message-ID: On 10 November 2013 19:34, Timo Sirainen wrote: > On 5.11.2013, at 11.01, IT geek 31 wrote: > > > Thanks for the info. I've upgraded to v2.2.7 and made the change. Now I > > get: > > > > Nov 5 11:00:00 server1 dovecot: dsync-server(mark): Error: Couldn't lock > > /home/mark/.dovecot-sync.lock: Timed out after 30 seconds > > Nov 5 11:00:02 server1 dovecot: dsync-local(mark): Error: Couldn't lock > > /home/mark/.dovecot-sync.lock: Timed out after 30 seconds > > Every time? I can see how it could happen for the initial dsync that takes > a long time, but afterwards the syncs should be pretty fast. > > Yes. I started the daemon four hours ago and I'm still seeing that error. Oddly, I'm seeing it even though the data hasn't changed - I'm using test data on a non-production system. So nothing should be replicating. > > Also, I get a lot of errors about Dovecot trying to replicate mailboxes > for > > (system) users that don't have them. Is there any way to exclude users > > from replication? > > Dovecot replicates those users that are returned by: doveadm user ?*? > > How that list is generated depends on the userdbs you have. With passwd > it?s filtered only by first_valid_uid and last_valid_uid settings. Perhaps > you can set those to the range of users you actually want replicated. Where is this filter set? From gedalya at gedalya.net Sun Nov 10 22:13:27 2013 From: gedalya at gedalya.net (Gedalya) Date: Sun, 10 Nov 2013 15:13:27 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527FD7D6.4090408@grinta.net> Message-ID: <527FE8E7.7030601@gedalya.net> On 11/10/2013 02:20 PM, Larry Stone wrote: > Timo said in his reply that he doesn't know how to improve the current documentation. I'll take him at his word. I submit that it really needs a total rewrite, not continued editing. And before someone suggests if I believe it needs to be rewritten, I should offer to do it myself, I will just say that I don't know anywhere near enough about Dovecot to do that. I use a very small subset of Dovecot's capability (I started with it as a drop-in replacement for UW-IMAP; other than Dovecot's authentication module, if UW-IMAP didn't do it, then I don't use that feature in Dovecot) and have no experience with the Dovecot LDA. I also don't think I know enough about Dovecot to take it upon myself to document it in its entirety but I know I could help with the topics I do know. In general, I think the wiki can use more "prose" pages that would kind of introduce newcomers to some concepts. Currently many pages seem to get right down to the details, assuming the reader must already know what this is about otherwise why would he be here. And on the other hand, some pages are IMHO actually too terse and should be more detailed. So, my vote is the wiki could improve but there should be some agreement on what form it should take. From me at junc.eu Sun Nov 10 22:24:33 2013 From: me at junc.eu (Benny Pedersen) Date: Sun, 10 Nov 2013 21:24:33 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527CF633.3000107@sys4.de> Message-ID: <98c3999815ae55cb01faedbc8b0cf452@junc.eu> Timo Sirainen skrev den 2013-11-08 15:44: > Actually its main target audience is large ISPs and such :) The Sieve > scripting for configurations is especially useful for many who want > complex configurations. extend dovecot -n to output current config as xml ? maybe even configure it all via xml ? backports of policy server in 2.x to 1.x, support postfix more in policy services From tss at iki.fi Sun Nov 10 22:38:33 2013 From: tss at iki.fi (Timo Sirainen) Date: Sun, 10 Nov 2013 21:38:33 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <98c3999815ae55cb01faedbc8b0cf452@junc.eu> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> Message-ID: <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> On 10.11.2013, at 21.24, Benny Pedersen wrote: > extend dovecot -n to output current config as xml ? > > maybe even configure it all via xml ? All the configuration goes through src/config/* code, which can be easily replaced with anything else. The original idea was to make it possible to store the configuration in different formats, like XML or SQL. Then again, the current config code is horrible and should be rewritten, especially to make it more modular and be able to use different formats without having to recreate the whole config code. And it?s currently spending way too much CPU, which might become a problem in some complex setups. So yeah, I think it would be nice, but I also think there are a lot of other much more important things that need to be done. From h.reindl at thelounge.net Sun Nov 10 22:39:22 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Sun, 10 Nov 2013 21:39:22 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <98c3999815ae55cb01faedbc8b0cf452@junc.eu> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> Message-ID: <527FEEFA.4030308@thelounge.net> Am 10.11.2013 21:24, schrieb Benny Pedersen: > Timo Sirainen skrev den 2013-11-08 15:44: > >> Actually its main target audience is large ISPs and such :) The Sieve >> scripting for configurations is especially useful for many who want >> complex configurations. > > extend dovecot -n to output current config as xml ? > > maybe even configure it all via xml ? > > backports of policy server in 2.x to 1.x 1.x is dead since a long long time, any second backport features is completly wasted time -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From me at junc.eu Sun Nov 10 23:39:27 2013 From: me at junc.eu (Benny Pedersen) Date: Sun, 10 Nov 2013 22:39:27 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> Message-ID: <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> Timo Sirainen skrev den 2013-11-10 21:38: > On 10.11.2013, at 21.24, Benny Pedersen wrote: > >> extend dovecot -n to output current config as xml ? >> >> maybe even configure it all via xml ? > > All the configuration goes through src/config/* code, which can be > easily replaced with anything else. The original idea was to make it > possible to store the configuration in different formats, like XML or > SQL. Then again, the current config code is horrible and should be > rewritten, especially to make it more modular and be able to use > different formats without having to recreate the whole config code. > And it?s currently spending way too much CPU, which might become a > problem in some complex setups. So yeah, I think it would be nice, but > I also think there are a lot of other much more important things that > need to be done. its also if xml its simple to make webconfigs from the xml file, but nice that you see config as a problem that needs redisigning before create another problem with subject, here i still using dovecot 1.2.17 in gentoo, i feal no need yet to discard that old software yet here, asked gentoo devs to put it back to portage, but was denied for some reason i just dont understand as you still have wiki for version 1 it should imho be supported in os'es as well for the dovecot submission server will that mean dovecot will now get the imap folder for sending mails ? thanks btw for brind mta up, i think dovecot/postfix is a well working combo From h.reindl at thelounge.net Sun Nov 10 23:46:32 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Sun, 10 Nov 2013 22:46:32 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> Message-ID: <527FFEB8.6060603@thelounge.net> Am 10.11.2013 22:39, schrieb Benny Pedersen: > here i still using dovecot 1.2.17 in gentoo, i feal no need yet to discard that old software > yet here, asked gentoo devs to put it back to portage, but was denied for some reason i > just dont understand what exactly dou you not understand in no longer supported upstream which is *here* and the last update is 2.5 years ago? > as you still have wiki for version 1 maybe the 1.0 wiki should be deleted if that helps even you to understand that 1.x is EOL long time ago? there where 2.0 and 2.1 and so who do you think is wasting it's time supporting *four major releases*? > it should imho be supported in os'es as well why? if you do not care more than two years about a upgrade why do you think upstream and distribution-maintainers should care about you? -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From me at junc.eu Mon Nov 11 00:53:48 2013 From: me at junc.eu (Benny Pedersen) Date: Sun, 10 Nov 2013 23:53:48 +0100 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: <527FD555.7010807@sys4.de> References: "\"<527E96F5.4040107@wk-serv.de> <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> <527F5878.5000509@wk-serv.de> " <527FCF50.2020108@wk-serv.de>" <31D7700E-A8D3-47D8-98B2-C04C737C4520@iki.fi> <527FD3DF.5000300@wk-serv.de> <527FD555.7010807@sys4.de> Message-ID: <76d8ba0347c1ef059ccda0b6b9e08b67@junc.eu> Robert Schetterer skrev den 2013-11-10 19:49: >> So another ineffectual feature from Dovecot. > Hey Patrick, its open software why dont hack yourself , everyone would > like to see things getting better +1 From dovecot.cf at m-otion.at Mon Nov 11 01:54:47 2013 From: dovecot.cf at m-otion.at (Christian Ferbar) Date: Mon, 11 Nov 2013 00:54:47 +0100 Subject: [Dovecot] sieve + notify + $subject$ + empty subject = segv Message-ID: <2086345.mmLcDMkM5v@chris-pc.fritz.box> Hello, we can reproduce a bug where lmtp crashes: LMTP telnet session: Trying 127.0.0.1... Connected to localhost.localdomain (127.0.0.1). Escape character is '^]'. 220 lisa.m-otion.at Dovecot ready. lhlo xyz 250-xyz.m-otion.at 250-8BITMIME 250-ENHANCEDSTATUSCODES 250 PIPELINING mail from: 250 2.1.0 OK rcpt to: 250 2.1.5 OK data 354 OK From: test . Connection closed by foreign host. /var/log/messages tells me: Nov 11 00:07:00 mail kernel: lmtp[15868]: segfault at 0000000000000000 rip 00002b1960d01d70 rsp 00007fff3fa95908 error 4 pigeonhole 0.4.2, dovecot 2.2.6 and this is what I found out: If you use a sieve script containing the following line notify :method "mailto" :options "xyz" :message "$from$*#+$subject$"; and send a mail without a Subject: header line lmtp crashes. The bug is related to the sieve module in /src/lib-sieve/plugins/notify/ext-notify-common.c:266. The line contains only a check if mail_get_headers_utf8 returns an error. So the workaround for this line would be to add a check if header[0] is not NULL. if ( (mail_get_headers_utf8(msgdata->mail, "subject", &header) >= 0) && header[0] ) str_append(out_msg, header[0]); IMHO this patch should be applied to the "$from$" replacement as well. The comments in the dovecot's header file says for mail_get_headers: Returns -1 if error, 0 otherwise (with or without headers found). hope it helps, Regards Christian Ferbar From stephan at rename-it.nl Mon Nov 11 02:48:26 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 11 Nov 2013 01:48:26 +0100 Subject: [Dovecot] sieve + notify + $subject$ + empty subject = segv In-Reply-To: <2086345.mmLcDMkM5v@chris-pc.fritz.box> References: <2086345.mmLcDMkM5v@chris-pc.fritz.box> Message-ID: <5280295A.8030801@rename-it.nl> On 11/11/2013 12:54 AM, Christian Ferbar wrote: > Hello, > > we can reproduce a bug where lmtp crashes: > If you use a sieve script containing the following line > notify :method "mailto" :options "xyz" :message "$from$*#+$subject$"; > > and send a mail without a Subject: header line lmtp crashes. The bug is related to the sieve module in /src/lib-sieve/plugins/notify/ext-notify-common.c:266. The line contains only a check if mail_get_headers_utf8 returns an error. So the workaround for this line would be to add a check if header[0] is not NULL. This is an old one. Good catch. This should fix it: http://hg.rename-it.nl/dovecot-2.2-pigeonhole/rev/44f659981723 I solved it slightly differently. Also added tests. Regards, Stephan. From wdgarc88 at gmail.com Mon Nov 11 07:24:46 2013 From: wdgarc88 at gmail.com (Edwardo Garcia) Date: Mon, 11 Nov 2013 15:24:46 +1000 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> Message-ID: My company have 36 dovecots, one biggest ISP in country 3 million user, agree with Nick poster, we had stop use dovecot load balance because too bad effect on primary database, now use single localhost, we have script run every 30 second to test login, if fail sleep 30 second, try again, fail and down ethernet interface so hardware load balancer see server not answer and can not use, nagios soon tell us of problem, very very bad and stupid way, but only option is safe, we have look at alternative to dovecot for this and still look, not happy with unreliable softwares to immitate feature. big network mean big time locate and fix problem when arise so you be good to say no extra point of failure. Too many cog in chain eventually lead to problem. Timo pleaz reconsider feature On Sun, Nov 10, 2013 at 4:21 PM, Nick Edwards wrote: > On 11/9/13, Timo Sirainen wrote: > > On 9.11.2013, at 5.11, Nick Edwards wrote: > > > >> On 11/9/13, Michael Kliewe wrote: > >>> Hi Timo, > >>> > >>> I would also, like others, see you mainly working on Dovecot as an IMAP > >>> server. As far as I can see there are many things on the roadmap, and I > >>> hope many more will be added (for example a built-in health-checker for > >>> director backends). > >>> > >>> Only if you have enough personal resources and Dovecot as an IMAP > server > >>> will not "loose your attention", I would love to see your expertise in > >>> making a better MTA. > >> > >> Yes, some of us have been waiting for some years now, for a > >> configurable change to alter the method of dovecots method of > >> failover, which is just load balancing between servers rather than > >> true failover, like postix, I see now why it gets no importance. > > > > Ah, you?re talking about SQL connections. Had to look up from old mails > what > > you were talking about. It hasn?t changed, because I think the current > > behavior with load balancing + failover is more useful than > failover-only. > > And you can already do failover-only with an external load balancer. > Sure, > > Dovecot could also implement it, but it?s not something I especially > want to > > spend time on implementing. > > > > My employer has 18 pop3 servers, one imap customer access (imap here > has so little use we cant justify a redundant machine, not for 11, > yes, eleven only users after 2 years of offering imap , and 2 imap > (webmail). > > Sp, each server has a replicated mysql database > > If I use your "better" method, I have 18 machines polling themselves > and the MASTER server, this needlessly slams the daylights out of the > master as I'm sure even you can imagine. > > We have 4 customer relay smtp servers and 4 inbound smtp servers, > postifx, using its failover and "better" method, means they only hit > the master server when the local mysql unix socket is not listening, > ie, mysqld is stopped - the master server NEVER sees them. > > How is your method, "better" than true failover like method used by > postfix, your methods is load balancing, it is not failover, and > causes problems on larger networks > > I'm sure in some cases most people using it are happy and wont have > performance increases noticeable, but if you are going to offer a > backup for auth, it really shoulds be able to configure, if we want it > to DoS our master, or only talk to master when it cant talk local, so > I think it should be matter you need to consider, else you are only > half arsed doing it, and like implying we should go introduce a > further point of failure, by using yet more third party softwares > From tlx at leuxner.net Mon Nov 11 07:56:37 2013 From: tlx at leuxner.net (Thomas Leuxner) Date: Mon, 11 Nov 2013 06:56:37 +0100 Subject: [Dovecot] Incorrect Responses on deliverable mails with LMTP server Message-ID: <3CA1F46B-AF23-49F9-AEDF-11CE5DEAA846@leuxner.net> Appears some change between 2.2.6 and 2.2.7 altered the response codes for LMTP user verification probes. Dovecot 2.2.6: Nov 2 15:50:48 spectre postfix/qmgr[627]: 3dBjr80wMgz1s: from=, size=271, nrcpt=1 (queue active) Nov 2 15:50:48 spectre postfix/cleanup[6226]: 3dBjr80xbYz1w: message-id=<20131102145047.2D3C6824147 at sam.dfn-cert.de> Nov 2 15:50:48 spectre postfix/lmtp[6228]: 3dBjr80wMgz1s: to=, orig_to=, relay=spectre.leuxner.net[private/dovecot-lmtp], delay=0.03, delays=0/0.01/0.01/0.01, dsn=2.1.5, status=deliverable (250 2.1.5 OK) Dovecot 2.2.7: Nov 5 05:24:04 spectre postfix/qmgr[627]: 3dDHnc5J06z1s: from=, size=271, nrcpt=1 (queue active) Nov 5 05:24:04 spectre postfix/smtpd[2484]: 3dDHnc5KWcz1w: client=web.heise.de[193.99.144.71] Nov 5 05:24:04 spectre postfix/cleanup[2489]: 3dDHnc5KWcz1w: message-id= Nov 5 05:24:04 spectre postfix/lmtp[2491]: 3dDHnc5J06z1s: to=, orig_to=, relay=spectre.leuxner.net[private/dovecot-lmtp], delay=0.03, delays=0/0.01/0.01/0, dsn=4.4.2, status=undeliverable (lost connection with spectre.leuxner.net[private/dovecot-lmtp] while sending MAIL FROM) While it still seems to work, mail gets delivered, it looks pretty ugly in the logs. Regards Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 203 bytes Desc: Message signed with OpenPGP using GPGMail URL: From skdovecot at smail.inf.fh-brs.de Mon Nov 11 09:31:28 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 11 Nov 2013 08:31:28 +0100 (CET) Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: <527D6559.7000804@areyes.com> References: <527D6559.7000804@areyes.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 8 Nov 2013, Dean Carpenter wrote: > Running /usr/bin/sa-learn directly always returns with an error code of > 1, and the bayes DB isn't actually updated. Running the > /usr/local/bin/sa-learn-pipe.sh script from the example will run > sa-learn successfully, but sa-learn fails partway through, right on a > sql DB access. I have both bayes and FuzzyOcr data stored in mysql, and > the error occurs on accessing either one. That is, I've tested with > FuzzyOcr enabled, and it fails on the db access to the FuzzyOcr DB, and > I've tried it with FuzzyOcr disabled. In that case, it fails on the > access to the bayes DB. > > The error line right there is : > > libgcc_s.so.1 must be installed for pthread_cancel to work > > Since sa-learn terminated prematurely, the bayes DB isn't updated at all. But this is not a Dovecot problem, isn't it? Antispam calls sa-learn, but that program fails. Do you have the system library libgcc_s installed as the error message says? Search the net for that error message, see: https://lists.ubuntu.com/archives/foundations-bugs/2012-March/070050.html If you are on a 64bit system, maybe sa-learn is compiled 32bit only, then the library must be installed as 32bit version as well. > 4505 sa-learn rc=134 id=uid=108(Debian-exim) gid=113(Debian-exim) > groups=113(Debian-exim) HOME= > 4505-sa-learn libgcc_s.so.1 must be installed for pthread_cancel to work > 4505-end > Nov 8 09:44:57 newgalah1 imap: antispam: running mailtrain backend > program parameter 1 --spam > Nov 8 09:44:58 newgalah1 imap: antispam: run program failed with exit > code -1 - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUoCH0F3r2wJMiz2NAQKypwf+M63gGswfoTkNqB0VB/TgK47hb8GQfwNj S6WpypdiSUbVU9NkHezdKmQNmSEyGP/34UChacNCtUbezRV77j/vc1kb/Uap+Z76 cETR5m0zFt5Svl84lm14027ZU9Ph5O0ddr2NTi1NJqmos4V8zBw2C6OfD85vFN1T HDPz6e1h8mIFKhoisudbHt/2KcQkkPA9NinGnSgtpyyGwX7pVghQ6Hb4XD5xD/7F HTXqOit52NvzDn2tflIWxdyOIbAxN5wU4q5tWvA0ZckCbAqpc9o+zbAYZm8nOqmo lm+oaaBpKNbPyScQTFTn7ccmm2GDsxxUEQ6ubX7GxPXOnQvuHjMefg== =Xew9 -----END PGP SIGNATURE----- From rs at sys4.de Mon Nov 11 10:13:57 2013 From: rs at sys4.de (Robert Schetterer) Date: Mon, 11 Nov 2013 09:13:57 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527FD7D6.4090408@grinta.net> Message-ID: <528091C5.1060106@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 10.11.2013 20:20, schrieb Larry Stone: > I totally agree. I'm fairly new to Dovecot and am already quite > cautious. Frequent new versions that always seem to have lots of > bugs. Compare that to Postfix which has very infrequent new > versions although lots of "snapshots" that are intermediate > versions for those who want to test or really, really need a new > feature. thats not a fair game, i agree postfix docs are done hyper well, but dovecot has to handle much more stuff and setups, also there is still need integrate more major features which are need in different config types/places, on postfix there isnt so much pressure for new features, so its by design of new feature integration, that there will be bugs, however i agree testing and release procedure needs to be "upgraded" some kind Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSgJG/AAoJEP8jBObu0LlEIp8IALPbb2st5/cMH6xgGAh+26V/ 9WX+U9KB09QkqtC8SbcspNw+efdzCEr2VYVOjT+O7ORSgnbCP6nwU1qFkxeqJ6GK BUj8wpgKJ6122aKlP21SSxJ+uU7ZV5SiDMwWIZtgtz9T5iyqUHFmgPGkTU2h6Xeq 2sFaHi1D5qrnem9VIJnZ5s0wpipF+CdzW1oyznm9hJCKtc1wPDtdPaxUcH7mm52Q JNS7o5U32+Uk5PHQj9nqbKWyewNv+5j/7VLsxDUIW9SWo5kNC9aUMWo0ew3GJlfS zkBeZJ1bMzPtc7ktb07055MqCxlUix2wDmVQaHMJ/JcS6bLXExkzBif7x3ldGdI= =M3ys -----END PGP SIGNATURE----- From rs at sys4.de Mon Nov 11 10:30:00 2013 From: rs at sys4.de (Robert Schetterer) Date: Mon, 11 Nov 2013 09:30:00 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> Message-ID: <52809588.10500@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 11.11.2013 06:24, schrieb Edwardo Garcia: > My company have 36 dovecots, one biggest ISP in country 3 million > user, agree with Nick poster, we had stop use dovecot load balance > because too bad effect on primary database, now use single > localhost, we have script run every 30 second to test login, if > fail sleep 30 second, try again, fail and down ethernet interface > so hardware load balancer see server not answer and can not use, > nagios soon tell us of problem, very very bad and stupid way, but > only option is safe, we have look at alternative to dovecot for > this and still look, not happy with unreliable softwares to > immitate feature. > > big network mean big time locate and fix problem when arise so you > be good to say no extra point of failure. Too many cog in chain > eventually lead to problem. Wow thats big, and may have implications out of my scope, but database replication is not the job of dovecot, after all why not use loadbalancer like keepalived etc and setup proxies on them so you may combine check feaures from loadbalancers to target related dovecot proxies, which themselves conect to backhand dovecot servers, also its easy to monitor, for sure you may need some shared storage too, which is again not real related to dovecot , i tested ceph , so i think its possible to have seperate mount points with i.e ocfs2 for each domain. At the end ,for such big setups there should be enough budget to get things solved by hire specialists for each software part which is involved Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSgJWEAAoJEP8jBObu0LlEjpcIAKcZofBBiVGw9EqKzmEoGqTq y3A0CqnsmSmi21V5ofBlyrYpNSkusd+V2mKPFIUBoABwpFyWxUsQgO5n22lGX70+ 7Tkqa4ClBM7ImrXVfZ/uznkDlOwfIZGomIoouYPdm+4mq5oRVv+jmUv4PBg9fzi2 6cVOG8WBMuLtx/vBJypWoixxd075pv0/mCXSHZvFL9Th8TAk39p73rZ+woJPcN3w Qb6EKNcaOvl9PNVzjpquDP9jWrynUCCp70sUAhnHqc0778m2Gjx5boj2kXpSpgPz Tro9F6UesJU62sAyjzled2Jm2XH5EuhAhwLOlUZP88B1N7Ijs7vHTfnWPQelnaM= =pBeW -----END PGP SIGNATURE----- From kremels at kreme.com Mon Nov 11 12:06:15 2013 From: kremels at kreme.com (LuKreme) Date: Mon, 11 Nov 2013 03:06:15 -0700 Subject: [Dovecot] Dovecot MTA In-Reply-To: <27d8ceef27a0f9a57c5bbb046d2495b6@junc.eu> References: <27d8ceef27a0f9a57c5bbb046d2495b6@junc.eu> Message-ID: <140C1A2F-59C6-441D-AF01-AB195BD44564@kreme.com> On 10 Nov 2013, at 12:15 , Benny Pedersen wrote: > Timo Sirainen skrev den 2013-11-08 14:07: > >> So perhaps something like this could be done in time for Dovecot v2.4. >> Any thoughts/ideas/suggestions? > > why is users not just change from postfix/dovecot to currier-* ? I switched FROM courier for two reasons: 1) Dovecot authentication was a lot easier to deal with and mostly 2) Dovecot is soooo much faster. -- "If you can't do something smart, do something right." From wdgarc88 at gmail.com Mon Nov 11 12:58:48 2013 From: wdgarc88 at gmail.com (Edwardo Garcia) Date: Mon, 11 Nov 2013 20:58:48 +1000 Subject: [Dovecot] Dovecot MTA In-Reply-To: <52809588.10500@sys4.de> References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> <52809588.10500@sys4.de> Message-ID: But is dovecot job to authenticate, mysql replicate fine, it is dovecot that is not fine by ignoring desire effect by only talk localhost and not any other unless locahost auth not respond. Silly offer one option if it cause denial of service, again setting up more third party softwares is not answer, more cogs in chain, more chances of breakage, we think dropping server altogether is better if server auth not work rather than overload master server because of dovecot design. On Mon, Nov 11, 2013 at 6:30 PM, Robert Schetterer wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > > Am 11.11.2013 06:24, schrieb Edwardo Garcia: > > My company have 36 dovecots, one biggest ISP in country 3 million > > user, agree with Nick poster, we had stop use dovecot load balance > > because too bad effect on primary database, now use single > > localhost, we have script run every 30 second to test login, if > > fail sleep 30 second, try again, fail and down ethernet interface > > so hardware load balancer see server not answer and can not use, > > nagios soon tell us of problem, very very bad and stupid way, but > > only option is safe, we have look at alternative to dovecot for > > this and still look, not happy with unreliable softwares to > > immitate feature. > > > > big network mean big time locate and fix problem when arise so you > > be good to say no extra point of failure. Too many cog in chain > > eventually lead to problem. > > Wow thats big, and may have implications out of my scope, but database > replication is not the job of dovecot, after all why not use > loadbalancer like keepalived etc and setup proxies on them so you may > combine check feaures from loadbalancers to target related dovecot > proxies, which themselves conect to backhand dovecot servers, also its > easy to monitor, for sure you may need some shared storage too, which > is again not real related to dovecot , i tested ceph , so i think its > possible to have seperate mount points with i.e ocfs2 for each domain. > > At the end ,for such big setups there should be enough budget to get > things solved by hire specialists for each software part which is involved > > > Best Regards > MfG Robert Schetterer > > - -- > [*] sys4 AG > > http://sys4.de, +49 (89) 30 90 46 64 > Franziskanerstra?e 15, 81669 M?nchen > > Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 > Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer > Aufsichtsratsvorsitzender: Florian Kirstein > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ > > iQEcBAEBAgAGBQJSgJWEAAoJEP8jBObu0LlEjpcIAKcZofBBiVGw9EqKzmEoGqTq > y3A0CqnsmSmi21V5ofBlyrYpNSkusd+V2mKPFIUBoABwpFyWxUsQgO5n22lGX70+ > 7Tkqa4ClBM7ImrXVfZ/uznkDlOwfIZGomIoouYPdm+4mq5oRVv+jmUv4PBg9fzi2 > 6cVOG8WBMuLtx/vBJypWoixxd075pv0/mCXSHZvFL9Th8TAk39p73rZ+woJPcN3w > Qb6EKNcaOvl9PNVzjpquDP9jWrynUCCp70sUAhnHqc0778m2Gjx5boj2kXpSpgPz > Tro9F6UesJU62sAyjzled2Jm2XH5EuhAhwLOlUZP88B1N7Ijs7vHTfnWPQelnaM= > =pBeW > -----END PGP SIGNATURE----- > From CMarcus at Media-Brokers.com Mon Nov 11 13:29:50 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 11 Nov 2013 06:29:50 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <527FFEB8.6060603@thelounge.net> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> <527FFEB8.6060603@thelounge.net> Message-ID: <5280BFAE.8020503@Media-Brokers.com> On 2013-11-10 4:46 PM, Reindl Harald wrote: > maybe the 1.0 wiki should be deleted if that helps even you to > understand that 1.x is EOL long time ago? there where 2.0 and 2.1 and > so who do you think is wasting it's time supporting *four major releases*? Well, it would probably be a good thing to add a major, impossible to miss disclaimer on all wiki1 pages that the 1.x series is no longer supported... Wietse did the same thing for old/obsolete postfix pages way back (I remember when it came up on the mail list) by adding a watermark/background to all old/obsolete pages... here is an example: http://www.postfix.org/spam.html -- Best regards, */Charles/* From CMarcus at Media-Brokers.com Mon Nov 11 13:32:02 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 11 Nov 2013 06:32:02 -0500 Subject: [Dovecot] Dovecot replication not redirecting if server is down In-Reply-To: <527FD3DF.5000300@wk-serv.de> References: <527E96F5.4040107@wk-serv.de> <8a1f6c39-ab24-405e-a6a4-54da08b22012@email.android.com> <527F5878.5000509@wk-serv.de> <527FCF50.2020108@wk-serv.de> <31D7700E-A8D3-47D8-98B2-C04C737C4520@iki.fi> <527FD3DF.5000300@wk-serv.de> Message-ID: <5280C032.5070201@Media-Brokers.com> On 2013-11-10 1:43 PM, Patrick Westenberg wrote: > Timo Sirainen schrieb: > >> The blog was telling the idea how things would work, not exactly >> whose responsibility it is to do every part of them. The Dovecot >> proxies will know which backend servers are down (but not without >> extra scripting). > > So another ineffectual feature from Dovecot. Or, maybe just another irrelevant comment from an ineffectual mail admin wanna-be? Seriously Patrick... you should consider adjusting your attitude. I for one am very grateful to Timo for dovecot, even for the features that I am not expert enough to make full or effective use of myself (yet)... -- Best regards, */Charles/* From CMarcus at Media-Brokers.com Mon Nov 11 13:34:43 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 11 Nov 2013 06:34:43 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> Message-ID: <5280C0D3.3060705@Media-Brokers.com> On 2013-11-11 12:24 AM, Edwardo Garcia wrote: > My company have 36 dovecots, one biggest ISP in country 3 million user, > agree with Nick poster, we had stop use dovecot load balance because too > bad effect on primary database, now use single localhost, we have script > run every 30 second to test login, if fail sleep 30 second, try again, fail > and down ethernet interface so hardware load balancer see server not answer > and can not use, nagios soon tell us of problem, very very bad and stupid > way, but only option is safe, we have look at alternative to dovecot for > this and still look, not happy with unreliable softwares to immitate > feature. > > big network mean big time locate and fix problem when arise so you be good > to say no extra point of failure. Too many cog in chain eventually lead to > problem. > > Timo pleaz reconsider feature Well, since you are so big, and really need this feature in your large COMMERCIAL environment, maybe you should step up and PAY Timo to implement it? Comments like this really piss me off. -- Best regards, */Charles/* From h.reindl at thelounge.net Mon Nov 11 13:35:18 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 11 Nov 2013 12:35:18 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <5280BFAE.8020503@Media-Brokers.com> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> <527FFEB8.6060603@thelounge.net> <5280BFAE.8020503@Media-Brokers.com> Message-ID: <5280C0F6.3020603@thelounge.net> Am 11.11.2013 12:29, schrieb Charles Marcus: > On 2013-11-10 4:46 PM, Reindl Harald wrote: >> maybe the 1.0 wiki should be deleted if that helps even you to understand that 1.x is EOL long time ago? there >> where 2.0 and 2.1 and so who do you think is wasting it's time supporting *four major releases*? > > Well, it would probably be a good thing to add a major, impossible to miss disclaimer on all wiki1 pages that the > 1.x series is no longer supported... it was explained *to you* on this list several times in the past and you insist to write postings "but i still use 1.x" which may suggest to other readers "hey, so it must be fine" so what does a disclaimer help in case of users like you which insist to ignore whatever people tell them in whatever context? wll, maybe you are some kind of special in that context....... -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From CMarcus at Media-Brokers.com Mon Nov 11 13:39:02 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 11 Nov 2013 06:39:02 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> <52809588.10500@sys4.de> Message-ID: <5280C1D6.40408@Media-Brokers.com> On 2013-11-11 5:58 AM, Edwardo Garcia wrote: > Silly offer one option if it cause denial of service, again setting up more > third party softwares is not answer, more cogs in chain, more chances of > breakage, we think dropping server altogether is better if server auth not > work rather than overload master server because of dovecot design. I'm quite certain Timo would be very happy to provide a quote to you for what it would cost to implement this for you... or, you could do so yourself (it is open-source software after all). Otherwise, I think you should reconsider your comments and apologize to Timo and the list for your childish whining. -- Best regards, */Charles/* From CMarcus at Media-Brokers.com Mon Nov 11 13:42:08 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 11 Nov 2013 06:42:08 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <5280C0F6.3020603@thelounge.net> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> <527FFEB8.6060603@thelounge.net> <5280BFAE.8020503@Media-Brokers.com> <5280C0F6.3020603@thelounge.net> Message-ID: <5280C290.2090201@Media-Brokers.com> On 2013-11-11 6:35 AM, Reindl Harald wrote: > Am 11.11.2013 12:29, schrieb Charles Marcus: >> Well, it would probably be a good thing to add a major, impossible to >> miss disclaimer on all wiki1 pages that the 1.x series is no longer >> supported.. > it was explained *to you* on this list several times in the past > and you insist to write postings "but i still use 1.x" which > may suggest to other readers "hey, so it must be fine" > > so what does a disclaimer help in case of users like you which > insist to ignore whatever people tell them in whatever context? > > wll, maybe you are some kind of special in that context....... ??? I've *never* used 1.x, I started off with 2.1.x... Maybe you should stop posting to mail lists before you've had your morning coffee... -- Best regards, */Charles/* From h.reindl at thelounge.net Mon Nov 11 14:03:34 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 11 Nov 2013 13:03:34 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <5280C290.2090201@Media-Brokers.com> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> <527FFEB8.6060603@thelounge.net> <5280BFAE.8020503@Media-Brokers.com> <5280C0F6.3020603@thelounge.net> <5280C290.2090201@Media-Brokers.com> Message-ID: <5280C796.5060407@thelounge.net> Am 11.11.2013 12:42, schrieb Charles Marcus: > On 2013-11-11 6:35 AM, Reindl Harald wrote: >> Am 11.11.2013 12:29, schrieb Charles Marcus: >>> Well, it would probably be a good thing to add a major, impossible to miss disclaimer on all wiki1 pages that >>> the 1.x series is no longer supported.. > >> it was explained *to you* on this list several times in the past >> and you insist to write postings "but i still use 1.x" which >> may suggest to other readers "hey, so it must be fine" >> >> so what does a disclaimer help in case of users like you which >> insist to ignore whatever people tell them in whatever context? >> >> wll, maybe you are some kind of special in that context....... > > ??? I've *never* used 1.x, I started off with 2.1.x... > > Maybe you should stop posting to mail lists before you've had your morning coffee... for some reason i tend to mix up you and Benny Pedersen, maybe historical because the unforgetable TLS/SSL discussion with you flagged both as lerning restistent and that you quote and reply a repsonse to Benny made it easier to mix up -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From janfrode at tanso.net Mon Nov 11 14:43:15 2013 From: janfrode at tanso.net (Jan-Frode Myklebust) Date: Mon, 11 Nov 2013 13:43:15 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <88B44565-DBB7-495D-B422-8498ED9D8DE7@iki.fi> References: <20131108172506.1e79591b@work> <48E29E11-F5D9-4036-B982-E8B5165C4C87@iki.fi> <527D0014.60505@tesco.net> <88B44565-DBB7-495D-B422-8498ED9D8DE7@iki.fi> Message-ID: <20131111124315.GA4962@mushkin.tanso.net> On Fri, Nov 08, 2013 at 04:22:13PM +0100, Timo Sirainen wrote: > > Ah, I had actually been mostly just thinking about inbound SMTP features. > It should of course support outbound SMTP as well, but I?m less familiar > about what functionality would be useful for that. Outbound is mostly the same as inbound, except requirement of authentication and TLS for the "submission" (587/tcp) and ssl wrapped "smtps" port 465/tcp. Features we'd want: * authentication * per user rate limiting might be handled by Dovecot MTA instead of external program? * spam filtering trough milter? * virus filtering trough milter? * Per user Geo-blocking would be great! * Protection from password guessing ? Plus it would be great if it could check if the authentication is still valid when re-using connection, ref missing feature in postfix: http://postfix.1071664.n5.nabble.com/Solution-to-SMTPAuth-compromised-accounts-td61415.html -jf From tss at iki.fi Mon Nov 11 14:59:41 2013 From: tss at iki.fi (Timo Sirainen) Date: Mon, 11 Nov 2013 14:59:41 +0200 Subject: [Dovecot] Dovecot MTA In-Reply-To: <5280BFAE.8020503@Media-Brokers.com> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> <527FFEB8.6060603@thelounge.net> <5280BFAE.8020503@Media-Brokers.com> Message-ID: <658EF745-126B-4E6E-B995-B86F559A7040@iki.fi> On 11.11.2013, at 13.29, Charles Marcus wrote: > On 2013-11-10 4:46 PM, Reindl Harald wrote: >> maybe the 1.0 wiki should be deleted if that helps even you to understand that 1.x is EOL long time ago? there where 2.0 and 2.1 and so who do you think is wasting it's time supporting *four major releases*? > > Well, it would probably be a good thing to add a major, impossible to miss disclaimer on all wiki1 pages that the 1.x series is no longer supported... > > Wietse did the same thing for old/obsolete postfix pages way back (I remember when it came up on the mail list) by adding a watermark/background to all old/obsolete pages... here is an example: > > http://www.postfix.org/spam.html That?s also been my plan, but for a long time I didn?t do it because Debian was still using Dovecot v1.x. But yeah, now?s a good time. Added. From zinovik.igor at gmail.com Mon Nov 11 15:00:12 2013 From: zinovik.igor at gmail.com (Igor Zinovik) Date: Mon, 11 Nov 2013 17:00:12 +0400 Subject: [Dovecot] Getting debug output from antispam plugin with dspam Message-ID: Hello. I'm trying to get some output from antispam plugin when it invokes dspam binary for retraining. Currently I see no messages related to dspam execution. Dovecot IMAP server works as 'vmail' user: # ps aux|grep 'dovecot/imap' vmail 3062 0.7 0.0 29824 3008 ? S 16:22 0:00 dovecot/imap User 'vmail' is listed as trusted in /etc/dspam/dspam.conf # fgrep vmail /etc/dspam/dspam.conf Trust vmail Dovecot IMAP plugins and antispam configuration: # doveconf -n | egrep -e '(^#|antispam|protocol imap)' # 2.2.7: /etc/dovecot/dovecot.conf # OS: Linux 3.7.10-1.16-default x86_64 openSUSE 12.3 (x86_64) antispam_allow_append_to_spam = YES antispam_backend = dspam antispam_dspam_args = --client;--user;%Lu;--deliver=spam,innocent;--source=error;--signature=%%s antispam_dspam_binary = /usr/sbin/dspam antispam_dspam_notspam = --class=innocent antispam_dspam_result_header = X-DSPAM-Result antispam_dspam_spam = --class=spam antispam_signature = X-DSPAM-Signature antispam_signature_missing = move antispam_spam = Spam antispam_trash = trash;Trash;Deleted;deleted;Deleted Items protocol imap { mail_plugins = expire mail_log notify quota trash imap_quota antispam Antispam plugin is successfully loaded: # grep antispam_plugin /var/log/dovecot/dovecot.log Nov 11 16:22:32 imap: Debug: Module loaded: /usr/lib64/dovecot/modules/lib90_antispam_plugin.so As i understand plugin would not work with message that do not contains dspam signature, so I sent GTUBE message to myself and when I move it to Spam folder I see only Dovecot messages: Nov 11 16:28:06 imap(zinovik at example.org): Info: copy from INBOX: box=Spam, uid=3422, msgid=<20131111144014.731f035b871deb0e082bc22e at example.org>, size=1130 Nov 11 16:28:06 imap(zinovik at example.org): Info: delete: box=INBOX, uid=26792, msgid=<20131111144014.731f035b871deb0e082bc22e at example.org>, size=1130 Nov 11 16:28:06 imap(zinovik at example.org): Info: expunge: box=INBOX, uid=26792, msgid=<20131111144014.731f035b871deb0e082bc22e at example.org>, size=1130 Dspam logs nothing, though debugging is turned on # ps aux | egrep -e '^dspam' dspam 2939 0.0 0.0 116408 2420 ? S 15:38 0:00 /usr/sbin/dspam --daemon --debug # egrep '^Debug ' /etc/dspam/dspam.conf Debug * Even if I set dspam binary to file that do not exist i do not get any debugging messages (according to code function i_debug("execution %s failed...") should be triggered). Maybe there is some kind of verbose output knob for plugins in Dovecot? I turned on everything I found (also using mail_log for imap protocol): # doveconf -n|egrep -e '(verbose|debug)' auth_debug = yes auth_verbose = yes mail_debug = yes verbose_ssl = yes Is there anybody out there who use Dovecot 2.2.7 with antispam plugin? Antispam plugin revision 5ebc6aae4d7c From janfrode at tanso.net Mon Nov 11 15:13:48 2013 From: janfrode at tanso.net (Jan-Frode Myklebust) Date: Mon, 11 Nov 2013 14:13:48 +0100 Subject: [Dovecot] Dovecot MSA -> MTA In-Reply-To: <527ECC5F.7050407@thelounge.net> References: <527EC9E9.1030004@gmail.com> <527ECC5F.7050407@thelounge.net> Message-ID: <20131111131348.GB4962@mushkin.tanso.net> On Sun, Nov 10, 2013 at 12:59:27AM +0100, Reindl Harald wrote: > > everywhere else you have sender-dependent relay hosts, RCPT dependent relayhosts > and all sort of aliases which you *do not* want treated different between > incoming mail from outside or a internal server and submission mail > > the only real difference between submission is that it is authenticated > and because the authentication a few restrictions are not applied I don't quite agree. Our "smarthosts" has very little local knowledge about where to route messages. They only follow MX records. It's the incoming SMTP servers that has all the knowledge, and needs to be robust against millions of broken mailservers and spam-bots on the internet. The fact that submission is authenticated is an opportunity to integrate better with the userdb than postfix and exim does. To have native quotas, brute-force protection, per user geo-blocking, etc.. that are difficult to achieve with the general SMTP servers. > > but in usual there is and must not be any difference in the mail-routing Incoming SMTP servers routes to dovecot-LMTP, internal exchange, and more. Outgoing would only need to follow MX (even for messages heading back home to us). -jf From tom at whyscream.net Mon Nov 11 15:17:41 2013 From: tom at whyscream.net (Tom Hendrikx) Date: Mon, 11 Nov 2013 14:17:41 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <658EF745-126B-4E6E-B995-B86F559A7040@iki.fi> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> <527FFEB8.6060603@thelounge.net> <5280BFAE.8020503@Media-Brokers.com> <658EF745-126B-4E6E-B995-B86F559A7040@iki.fi> Message-ID: <5280D8F5.3020003@whyscream.net> On 11/11/2013 01:59 PM, Timo Sirainen wrote: > On 11.11.2013, at 13.29, Charles Marcus > wrote: > >> On 2013-11-10 4:46 PM, Reindl Harald >> wrote: >>> maybe the 1.0 wiki should be deleted if that helps even you to >>> understand that 1.x is EOL long time ago? there where 2.0 and 2.1 >>> and so who do you think is wasting it's time supporting *four >>> major releases*? >> >> Well, it would probably be a good thing to add a major, impossible >> to miss disclaimer on all wiki1 pages that the 1.x series is no >> longer supported... >> >> Wietse did the same thing for old/obsolete postfix pages way back >> (I remember when it came up on the mail list) by adding a >> watermark/background to all old/obsolete pages... here is an >> example: >> >> http://www.postfix.org/spam.html > > That?s also been my plan, but for a long time I didn?t do it because > Debian was still using Dovecot v1.x. But yeah, now?s a good time. > Added. > In addition to this, it could be a nice idea to move all dovecot 1.x content to the wiki1.dovecot.org subdomain. Searches for 'dovecot ' in google are persistently showing wiki.dovecot.org as top hits, and the wiki2 contents with lower priority. That surely doesn't help beginners... For example: https://www.google.nl/search?q=dovecot+lda Regards, Tom -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 901 bytes Desc: OpenPGP digital signature URL: From apm at one.com Mon Nov 11 15:18:36 2013 From: apm at one.com (Peter Mogensen) Date: Mon, 11 Nov 2013 14:18:36 +0100 Subject: [Dovecot] Dovecot MTA Message-ID: <5280D92C.302@one.com> Timo Sirainen wrote: > And Dovecot roadmap is slowly shrinking .. there aren?t all that many > big features left anymore. Soon it?s mainly going to be improvements > to reliability and performance. So I need to find some new things to > do in any case. :) True ... If I try to make a wish list for features many of them requires fixing the IMAP protocol it self. (Like not having the folder display name being the unique identifier) Which reminds me that the IMAP5 process (if there ever was one) seems to be slowed to a halt. Now, there's a task for a developer looking for something to do ;-) /Peter From andrea.gabellini.sc at telecomitalia.sm Mon Nov 11 16:01:28 2013 From: andrea.gabellini.sc at telecomitalia.sm (Andrea gabellini - SC) Date: Mon, 11 Nov 2013 15:01:28 +0100 Subject: [Dovecot] maildir_very_dirty_syncs and GFS Message-ID: <5280E338.8030101@telecomitalia.sm> Hello, I have two dovecot 2.2.7 and postfix with LDA backend that shares a GFS partition as email storage. In front of them there is a proxy with Director. In both backend servers only Dovecot access the cur/ directory. Can I use maildir_very_dirty_syncs=yes? Thanks, Andrea -- ---------------------------------------------------------------- That is what learning is. You suddenly understand something you've understood all your life, but in a new way. ---------------------------------------------------------------- Ing. *Andrea Gabellini* Email: andrea.gabellini at telecomitalia.sm Skype: andreagabellini Tel: (+378) 0549 886111 Fax: (+378) 0549 886188 Telecom Italia San Marino S.p.A. Strada degli Angariari, 3 47891 Rovereta Republic of San Marino http://www.telecomitalia.sm From apm at one.com Mon Nov 11 16:21:37 2013 From: apm at one.com (Peter Mogensen) Date: Mon, 11 Nov 2013 15:21:37 +0100 Subject: [Dovecot] server side private/public key Message-ID: <5280E7F1.4070408@one.com> *Christian Felsing wrote: * > Please consider to add server side private/public key encryption for incoming mails. > If client logs on, the password is used to unlock users server side private key. > If mail arrives from MTA or any other source, mail is encrypted with users public key. > Key pair should be located in LDAP or SQL server. PGP and S/MIME should be supported. > This is for the situation if NSA or other organizations asks admin for > users mail insistently, So ... exactly which security threat are you thinking about preventing here? This won't protect against: * NSA listening in on the mails when they arrive. * NSA taking a backup of your mails and wait for your first attempt to read them - at which time they'll have your private key in plain text. It seems like a much wider protection to just keep you private key for your self. /Peter From tss at iki.fi Mon Nov 11 16:55:51 2013 From: tss at iki.fi (Timo Sirainen) Date: Mon, 11 Nov 2013 16:55:51 +0200 Subject: [Dovecot] server side private/public key In-Reply-To: <5280E7F1.4070408@one.com> References: <5280E7F1.4070408@one.com> Message-ID: <5AC76A6A-4BB1-4795-A0F6-553A2A52F85B@iki.fi> On 11.11.2013, at 16.21, Peter Mogensen wrote: > *Christian Felsing wrote: > * > > Please consider to add server side private/public key encryption for incoming mails. > > If client logs on, the password is used to unlock users server side private key. > > If mail arrives from MTA or any other source, mail is encrypted with users public key. > > Key pair should be located in LDAP or SQL server. PGP and S/MIME should be supported. http://dovecot.org/patches/2.2/mail-filter.tar.gz can be used to implement this. From skdovecot at smail.inf.fh-brs.de Mon Nov 11 17:08:49 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 11 Nov 2013 16:08:49 +0100 (CET) Subject: [Dovecot] Enable Rawlog from userdb in Dovecot v2.2 Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, how do I enable Rawlog for one person only? http://wiki2.dovecot.org/Debugging/Rawlog describes how to enable the postlogin script for all users. Rawlog gets active only, if the dovecot.rawlog directory exists. So far, it's working. However. I suspect that there is some notable overhead in this chain, so I tried to enable rawlog via userdb extra fields. So setup the config as: service imap { executable = imap } service postlogin { executable = script-login -d rawlog unix_listener postlogin { } } In the userdb extra fields I tried: service/imap/executable=imap postlogin Log entry: imap: Debug: Unknown userdb setting: plugin/service/imap/executable=imap postlogin and: service imap/executable=imap postlogin (note the space between service imap) Log entry: imap: Debug: Unknown userdb setting: plugin/service imap/executable=imap postlogin - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUoDzAV3r2wJMiz2NAQJxgwf+NCaABKspwVffTpQqVIAdlXGi2gUrRd29 1Ic82v5xqx8jMQ+UxnKNJBX2jgs87GITWpPtTXUVS8H6piNDJrcAxT0lIun0l4Ob 4riQh01HrMjwWORAAWvHHQWZbyiDu8i2h8PjQAG/8idpCt0lCmmr2DyRQwSx+7lf JgfxfccYMRhAHtethm82cjWs3Q/M9deO+ds+aLwxGhDaYxHcU8vD3ESuhqnsR4Bh VqemH3wBADpfKH3ThRKknsfGfEU5d8bcz1GzhOcjfwC24kPsei4k9wcDAy+moyk1 8vPYyvWnhhfb0/yiO3eLpX0mdlM9Iur1X3MFvA0tFwnB8RtuqZGw3g== =/TtK -----END PGP SIGNATURE----- From Alter.Depp at gmx.de Mon Nov 11 17:20:56 2013 From: Alter.Depp at gmx.de (Alter Depp) Date: Mon, 11 Nov 2013 16:20:56 +0100 Subject: [Dovecot] [solved] Can't get sieve/managedsieve working In-Reply-To: <2945d2d67013652fffc08a7c931704b2@gmx.de> References: <2945d2d67013652fffc08a7c931704b2@gmx.de> Message-ID: Am 2013-11-08 22:19, schrieb Alter Depp: > I am running dovecot 2.1.7 for a while, with roundcube webmail > frontend 0.9.5 . Now I wanted to add sieve to filter mails. > I could upload some scripst with sieve-connect, checked and activated > them. When I try to edit filters with thunderbird sieve plugin 0.2.2 > nothing happens. If I try to edit filters with roundcube managesieve > plugin nothing happens, too, but I get some errors in logfile: >> roundcube: "Authentication failed." (3) >> roundcube: Not currently in AUTHORISATION stata (1): After some debugging sessions I found the solution in file 10-auth.conf: > disable_plaintext_auth = no Stefan From lists at sterenborg.info Mon Nov 11 17:54:01 2013 From: lists at sterenborg.info (Rob Sterenborg (lists)) Date: Mon, 11 Nov 2013 16:54:01 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <69BDEE41-3266-439F-9D53-F4E43985D542@iki.fi> References: <527FD7D6.4090408@grinta.net> <69BDEE41-3266-439F-9D53-F4E43985D542@iki.fi> Message-ID: <5280FD99.30401@sterenborg.info> On 11/10/2013 08:04 PM, Timo Sirainen wrote: > On 10.11.2013, at 20.00, Daniele Nicolodi wrote: > >> Additionally I feel that Dovecot documentation can see some love as >> well. Having the wiki as main source of documentation does not look >> very polished, compared, for example to the extremely good written and >> maintained Postfix documentation. > > I don?t know how to improve the current documentation. (Other than > implementing the few missing man pages.) There is going to be a Dovecot > book soon though, maybe that?ll help. How Dovecot documentation can be improved? Well, what I find extremely helpful from the Postfix documentation but cannot find the equivalent for Dovecot is: http://www.postfix.org/postconf.5.html Wiki's are helpful, but a full list of all configuration parameters, how they work and, when applicable, how they are related to other parameters will likely help a lot of users. -- Rob From CMarcus at Media-Brokers.com Mon Nov 11 17:58:45 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 11 Nov 2013 10:58:45 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <5280D8F5.3020003@whyscream.net> References: <527CF633.3000107@sys4.de> <98c3999815ae55cb01faedbc8b0cf452@junc.eu> <31DD180F-4230-40F6-9DC1-60D49F491909@iki.fi> <33e1b5d8ac4f99554b6db2184cee8f0e@junc.eu> <527FFEB8.6060603@thelounge.net> <5280BFAE.8020503@Media-Brokers.com> <658EF745-126B-4E6E-B995-B86F559A7040@iki.fi> <5280D8F5.3020003@whyscream.net> Message-ID: <5280FEB5.2080302@Media-Brokers.com> On 2013-11-11 8:17 AM, Tom Hendrikx wrote: > In addition to this, it could be a nice idea to move all dovecot 1.x > content to the wiki1.dovecot.org subdomain. Searches for 'dovecot > ' in google are persistently showing wiki.dovecot.org > as top hits, and the wiki2 contents with lower priority. That surely > doesn't help beginners... For example: > https://www.google.nl/search?q=dovecot+lda Regards, Tom I agree... I was not a fan of the whole wiki1 vs wiki2 thing from the beginning... -- Best regards, */Charles/* From lstone19 at stonejongleux.com Mon Nov 11 18:24:38 2013 From: lstone19 at stonejongleux.com (Larry Stone) Date: Mon, 11 Nov 2013 10:24:38 -0600 (CST) Subject: [Dovecot] Dovecot MTA In-Reply-To: <5280FD99.30401@sterenborg.info> References: <527FD7D6.4090408@grinta.net> <69BDEE41-3266-439F-9D53-F4E43985D542@iki.fi> <5280FD99.30401@sterenborg.info> Message-ID: On Mon, 11 Nov 2013, Rob Sterenborg (lists) wrote: > On 11/10/2013 08:04 PM, Timo Sirainen wrote: >> On 10.11.2013, at 20.00, Daniele Nicolodi wrote: >> >>> Additionally I feel that Dovecot documentation can see some love as >>> well. Having the wiki as main source of documentation does not look >>> very polished, compared, for example to the extremely good written and >>> maintained Postfix documentation. >> >> I don?t know how to improve the current documentation. (Other than >> implementing the few missing man pages.) There is going to be a Dovecot >> book soon though, maybe that?ll help. > > How Dovecot documentation can be improved? Well, what I find extremely > helpful from the Postfix documentation but cannot find the equivalent for > Dovecot is: http://www.postfix.org/postconf.5.html > > Wiki's are helpful, but a full list of all configuration parameters, how they > work and, when applicable, how they are related to other parameters will > likely help a lot of users. My experience is wiki's and a lot of equivalent are sort of a scattershot approach to deal with specific issues. They don't work well as the formal documentation. I'd like to see one structured manual that starts at a high level and works its way down into the details. I tend to be someone who likes to skim documentation looking for what I need. As a result, I'm not a fan of documentation that consists of lots of links elsewhere since that's difficult to skim. Ideally, this structured manual would start with an overview of what Dovecot is and its major components (I consider the IMAP/POP server a separate component from the Dovecot LDA as each can be used independent of the other). From there more detail about each of the major components and how to use and configure them. From there, even more detail as needed. In a note a few days ago, I said I don't know enough about Dovecot to write new documentation. But I realized there is an area I can help with which is reviewing it to help make sure it makes sense even to the neophyte. Review it and provide feedback to the author along the lines of "I have no clue what this means" where appropriate. I think one of the problems that plagues documentation everywhere is a tendency to assume knowledge that the reader doesn't have. When you're too close to a project, you tend to forget that everyone doesn't know what you know. It's something I am sometimes guilty of in my full-time job when I send out an email saying something needs to be a priority without explaining why it needs to be a priority (assuming the recipient knows the why). Writing good documentation is hard, no question about it. And it is very overlooked and undervalued many places. -- Larry Stone lstone19 at stonejongleux.com From janfrode at tanso.net Mon Nov 11 19:04:35 2013 From: janfrode at tanso.net (Jan-Frode Myklebust) Date: Mon, 11 Nov 2013 18:04:35 +0100 Subject: [Dovecot] server side private/public key In-Reply-To: <5280E7F1.4070408@one.com> References: <5280E7F1.4070408@one.com> Message-ID: Serverside private key probably doesn't protect against much, but a way for users to upload a public key and automatically encrypt all messages when received might have value. Limits exposure for messages at rest. -jf > Den 11. nov. 2013 kl. 15:21 skrev Peter Mogensen : > > *Christian Felsing wrote: > * > > Please consider to add server side private/public key encryption for incoming mails. > > If client logs on, the password is used to unlock users server side private key. > > If mail arrives from MTA or any other source, mail is encrypted with users public key. > > Key pair should be located in LDAP or SQL server. PGP and S/MIME should be supported. > >> This is for the situation if NSA or other organizations asks admin for >> users mail insistently, > > So ... exactly which security threat are you thinking about preventing here? > > This won't protect against: > * NSA listening in on the mails when they arrive. > * NSA taking a backup of your mails and wait for your first attempt to read them - at which time they'll have your private key in plain text. > > It seems like a much wider protection to just keep you private key for your self. > > /Peter > From me at junc.eu Mon Nov 11 20:14:22 2013 From: me at junc.eu (Benny Pedersen) Date: Mon, 11 Nov 2013 19:14:22 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <140C1A2F-59C6-441D-AF01-AB195BD44564@kreme.com> References: <27d8ceef27a0f9a57c5bbb046d2495b6@junc.eu> <140C1A2F-59C6-441D-AF01-AB195BD44564@kreme.com> Message-ID: <655f7db22e58195c6314227235fde4f5@junc.eu> LuKreme skrev den 2013-11-11 11:06: > I switched FROM courier for two reasons: > 1) Dovecot authentication was a lot easier to deal with currier authlib was hard ? one only need to use saslauthd with -r imap, if i remember, or setup cyrus-sasl up with currier authsocket, not a problem on gentoo > and mostly > 2) Dovecot is soooo much faster. breaks faster ? From trashcan at odo.in-berlin.de Mon Nov 11 20:17:24 2013 From: trashcan at odo.in-berlin.de (Michael Grimm) Date: Mon, 11 Nov 2013 19:17:24 +0100 Subject: [Dovecot] Incorrect Responses on deliverable mails with LMTP server In-Reply-To: <3CA1F46B-AF23-49F9-AEDF-11CE5DEAA846@leuxner.net> References: <3CA1F46B-AF23-49F9-AEDF-11CE5DEAA846@leuxner.net> Message-ID: Thomas Leuxner wrote: > Appears some change between 2.2.6 and 2.2.7 altered the response codes for LMTP user verification probes. > > Dovecot 2.2.6: > > Nov 2 15:50:48 spectre postfix/qmgr[627]: 3dBjr80wMgz1s: from=, size=271, nrcpt=1 (queue active) > Nov 2 15:50:48 spectre postfix/cleanup[6226]: 3dBjr80xbYz1w: message-id=<20131102145047.2D3C6824147 at sam.dfn-cert.de> > Nov 2 15:50:48 spectre postfix/lmtp[6228]: 3dBjr80wMgz1s: to=, orig_to=, relay=spectre.leuxner.net[private/dovecot-lmtp], delay=0.03, delays=0/0.01/0.01/0.01, dsn=2.1.5, status=deliverable (250 2.1.5 OK) > > Dovecot 2.2.7: > > Nov 5 05:24:04 spectre postfix/qmgr[627]: 3dDHnc5J06z1s: from=, size=271, nrcpt=1 (queue active) > Nov 5 05:24:04 spectre postfix/smtpd[2484]: 3dDHnc5KWcz1w: client=web.heise.de[193.99.144.71] > Nov 5 05:24:04 spectre postfix/cleanup[2489]: 3dDHnc5KWcz1w: message-id= > Nov 5 05:24:04 spectre postfix/lmtp[2491]: 3dDHnc5J06z1s: to=, orig_to=, relay=spectre.leuxner.net[private/dovecot-lmtp], delay=0.03, delays=0/0.01/0.01/0, dsn=4.4.2, status=undeliverable (lost connection with spectre.leuxner.net[private/dovecot-lmtp] while sending MAIL FROM) > > While it still seems to work, mail gets delivered, it looks pretty ugly in the logs. Interesting, but how can those mails become delivered with a "status=undeliverable"? Except, that you don't use reject_unverified_recipient in your smtpd_recipient_restrictions, true? Jan and myself need explicit "warn_if_reject reject_unverified_recipient" in postfix' smtpd_recipient_restrictions ... http://dovecot.org/list/dovecot/2013-November/093326.html http://dovecot.org/list/dovecot/2013-November/093331.html ... to get such mails delivered. Regards, Michael From me at junc.eu Mon Nov 11 20:20:24 2013 From: me at junc.eu (Benny Pedersen) Date: Mon, 11 Nov 2013 19:20:24 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <5280C0D3.3060705@Media-Brokers.com> References: "\" <527D4DC7.2010604@gmx.de> " <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi>" <5280C0D3.3060705@Media-Brokers.com> Message-ID: Charles Marcus skrev den 2013-11-11 12:34: > Well, since you are so big, and really need this feature in your large > COMMERCIAL environment, maybe you should step up and PAY Timo to > implement it? > > Comments like this really piss me off. payments could be with working patch, nobody cares :( same goes with opendmarc/opendkim where google servers needs there patches, arg ! From me at junc.eu Mon Nov 11 20:28:39 2013 From: me at junc.eu (Benny Pedersen) Date: Mon, 11 Nov 2013 19:28:39 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> <52809588.10500@sys4.de> Message-ID: <61614fc8995d8afdcb6b8fa574b38801@junc.eu> Edwardo Garcia skrev den 2013-11-11 11:58: > But is dovecot job to authenticate, mysql replicate fine, it is > dovecot > that is not fine by ignoring desire effect by only talk localhost and > not > any other unless locahost auth not respond. so move to postgresql/mysql backend and change from dovecot to dbmail ? why blame dovecot for using fs mail store ? is your problem unstable nfs ? give up and get google app mx :) From tlx at leuxner.net Mon Nov 11 20:54:29 2013 From: tlx at leuxner.net (Thomas Leuxner) Date: Mon, 11 Nov 2013 19:54:29 +0100 Subject: [Dovecot] Incorrect Responses on deliverable mails with LMTP server In-Reply-To: References: <3CA1F46B-AF23-49F9-AEDF-11CE5DEAA846@leuxner.net> Message-ID: <20131111185429.GA15476@nihlus.leuxner.net> * Michael Grimm 2013.11.11 19:17: > Interesting, but how can those mails become delivered with a "status=undeliverable"? Except, that you don't use reject_unverified_recipient in your smtpd_recipient_restrictions, true? > > Jan and myself need explicit "warn_if_reject reject_unverified_recipient" in postfix' smtpd_recipient_restrictions ... > http://dovecot.org/list/dovecot/2013-November/093326.html > http://dovecot.org/list/dovecot/2013-November/093331.html > ... to get such mails delivered. I have to admit that I very briefly skimmed your mails as they had this '+' delimiter reference in it, which I don't use. Now looking more closely this is clearly the same issue I'm facing. The LMTP server took a hit with the latest release. As to smtpd_recipient_restrictions, I actually do have reject_unverified_recipient in it, without the 'warn_if_reject' safety net. I was also suprised that the address probe did not lead to rejections, guessing it is because of the temporary failure it gives. Regards Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From CMarcus at Media-Brokers.com Mon Nov 11 20:56:08 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 11 Nov 2013 13:56:08 -0500 Subject: [Dovecot] Dovecot MTA In-Reply-To: <61614fc8995d8afdcb6b8fa574b38801@junc.eu> References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> <52809588.10500@sys4.de> <61614fc8995d8afdcb6b8fa574b38801@junc.eu> Message-ID: <52812848.5090709@Media-Brokers.com> On 2013-11-11 1:28 PM, Benny Pedersen wrote: > Edwardo Garcia skrev den 2013-11-11 11:58: >> But is dovecot job to authenticate, mysql replicate fine, it is dovecot >> that is not fine by ignoring desire effect by only talk localhost >> and not >> any other unless locahost auth not respond. > > so move to postgresql/mysql backend and change from dovecot to dbmail ? > > why blame dovecot for using fs mail store ? > > is your problem unstable nfs ? > > give up and get google app mx :) Benny, you really should just stop talking for the most part, most of what you say is not just irrelevant or OT, it is plain ridiculous. The comments discussing how dovecot handles non-responsive mysql hosts have absolutely NOTHING to do with using NFS or SQL for mail storage. In fact, I'd go so far as to say they do seem to have a valid point, although I haven't looked closely at the details, because I don't need to (have just a single mysql DB for user verifying/authenticating) - but since the need is one more for larger or even commercial shops, then they should be able to deal with the issues themselves - either via scripts, as has been suggested by Timo, or simply by doing the heavy lifting and writing the code (or paying Timo to write the code) to do what they are whining that it doesn't do. -- Best regards, */Charles/* From tss at iki.fi Mon Nov 11 20:59:51 2013 From: tss at iki.fi (Timo Sirainen) Date: Mon, 11 Nov 2013 20:59:51 +0200 Subject: [Dovecot] Dovecot MTA In-Reply-To: <52812848.5090709@Media-Brokers.com> References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> <52809588.10500@sys4.de> <61614fc8995d8afdcb6b8fa574b38801@junc.eu> <52812848.5090709@Media-Brokers.com> Message-ID: This thread really should be starting to die soon. Very little of it has to do with the MTA subject itself.. If you have other complaints, create new threads with new subjects. On 11.11.2013, at 20.56, Charles Marcus wrote: > On 2013-11-11 1:28 PM, Benny Pedersen wrote: >> Edwardo Garcia skrev den 2013-11-11 11:58: >>> But is dovecot job to authenticate, mysql replicate fine, it is dovecot >>> that is not fine by ignoring desire effect by only talk localhost and not >>> any other unless locahost auth not respond. >> >> so move to postgresql/mysql backend and change from dovecot to dbmail ? >> >> why blame dovecot for using fs mail store ? >> >> is your problem unstable nfs ? >> >> give up and get google app mx :) > > Benny, you really should just stop talking for the most part, most of what you say is not just irrelevant or OT, it is plain ridiculous. > > The comments discussing how dovecot handles non-responsive mysql hosts have absolutely NOTHING to do with using NFS or SQL for mail storage. > > In fact, I'd go so far as to say they do seem to have a valid point, although I haven't looked closely at the details, because I don't need to (have just a single mysql DB for user verifying/authenticating) - but since the need is one more for larger or even commercial shops, then they should be able to deal with the issues themselves - either via scripts, as has been suggested by Timo, or simply by doing the heavy lifting and writing the code (or paying Timo to write the code) to do what they are whining that it doesn't do. > > -- > > Best regards, > > */Charles/* From itgeek31 at googlemail.com Mon Nov 11 21:01:22 2013 From: itgeek31 at googlemail.com (IT geek 31) Date: Mon, 11 Nov 2013 20:01:22 +0100 Subject: [Dovecot] dsync-server panic/fatal errors Message-ID: Would anyone like to hazard a guess what these errors mean: Nov 11 18:57:04 server2 dovecot: dsync-server(mark): Panic: file mbox-lock.c: line 799 (mbox_lock): assertion failed: (lock_type == F_RDLCK || mbox->mbox_lock_type != F_RDLCK) Nov 11 18:57:04 server2 dovecot: dsync-server(mark): Fatal: master: service(doveadm): child 3119 killed with signal 6 (core not dumped - set service doveadm { drop_priv_before_exec=yes }) Getting this replication working is driving me nuts! :'-( Any help would be appreciated. -Mark From tlx at leuxner.net Mon Nov 11 21:03:41 2013 From: tlx at leuxner.net (Thomas Leuxner) Date: Mon, 11 Nov 2013 20:03:41 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <527CA9D0.1090001@softjury.de> References: <527B4702.4070100@softjury.de> <527B5974.1080204@softjury.de> <527B62C0.9040402@softjury.de> <76FEAC92-E0DC-4649-9DA0-11A393380A33@iki.fi> <458487F2-557C-4B0C-BB34-E04BC9C5C9CF@odo.in-berlin.de> <527CA9D0.1090001@softjury.de> Message-ID: <20131111190341.GA15560@nihlus.leuxner.net> * Jan Phillip Greimann 2013.11.08 10:07: > Same here, no errors or any logs. Only since 2.2.7. Yep. Same here. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From h.reindl at thelounge.net Mon Nov 11 21:22:06 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 11 Nov 2013 20:22:06 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> Message-ID: <52812E5E.1050903@thelounge.net> why do you not simply shut up? Am 11.11.2013 19:20, schrieb Benny Pedersen: > payments could be with working patch, nobody cares :( Am 11.11.2013 19:28, schrieb Benny Pedersen: > so move to postgresql/mysql backend and change from dovecot to dbmail ? > why blame dovecot for using fs mail store ? > is your problem unstable nfs ? > give up and get google app mx :) Am 10.11.2013 20:15, schrieb Benny Pedersen: > why is users not just change from postfix/dovecot to currier-* ? > its imho much better :) > http://www.courier-mta.org/ Am 10.11.2013 21:24, schrieb Benny Pedersen: > backports of policy server in 2.x to 1.x, support postfix more in policy services Am 10.11.2013 22:39, schrieb Benny Pedersen: > here i still using dovecot 1.2.17 in gentoo, i feal no need yet to discard that > old software yet here, asked gentoo devs to put it back to portage, but was denied for > some reason i just dont understand -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From me at junc.eu Mon Nov 11 21:59:33 2013 From: me at junc.eu (Benny Pedersen) Date: Mon, 11 Nov 2013 20:59:33 +0100 Subject: [Dovecot] =?utf-8?q?blames_for_using_maillists_=3F?= Message-ID: <3a734674976f190c9a427ca31ead6e26@junc.eu> why do you not simply shut up? # sieve rule require ["imap4flags"]; # rule:[reindl] if allof (header :contains "From" "h.reindl at thelounge.net") { setflag ["\\Seen","\\Flagged"]; stop; } From janfrode at tanso.net Mon Nov 11 22:08:34 2013 From: janfrode at tanso.net (Jan-Frode Myklebust) Date: Mon, 11 Nov 2013 21:08:34 +0100 Subject: [Dovecot] highly available userdb (Was: Re Dovecot MTA) In-Reply-To: References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> Message-ID: <20131111200834.GA23762@mushkin.tanso.net> My installation is only serving 1/10 of your size, but long time ago we migrated off mysql for userdatabase, and over to LDAP. The MySQL data source had issues (not dovecot related), and didn't seem like the right tool for the job. Initially we kept mysql as the authoritative database over our users, and mirrored the user details over to LDAP/389ds -- which we pointed dovecot and postfix to. Then eventually we migrated completely out of MySQL as user database. LDAP/389ds gives us easy multimaster replication, easy integration with dovecot, postfix, etc., client side support for failover between servers, and it is very fast. I don't think we've ever had any issue with the userdb after migrating to LDAP. our two 389ds servers are doing about 80 ldap bind() authentications per second (plus dovecot auth cache is masking a lot more), 300 searches/s and are using about 20% of a single cpu core each. So, I would very much recommend you look into if something similar can work for you. -jf On Mon, Nov 11, 2013 at 03:24:46PM +1000, Edwardo Garcia wrote: > My company have 36 dovecots, one biggest ISP in country 3 million user, > agree with Nick poster, we had stop use dovecot load balance because too > bad effect on primary database, now use single localhost, we have script > run every 30 second to test login, if fail sleep 30 second, try again, fail > and down ethernet interface so hardware load balancer see server not answer > and can not use, nagios soon tell us of problem, very very bad and stupid > way, but only option is safe, we have look at alternative to dovecot for > this and still look, not happy with unreliable softwares to immitate > feature. > > big network mean big time locate and fix problem when arise so you be good > to say no extra point of failure. Too many cog in chain eventually lead to > problem. > > Timo pleaz reconsider feature > > > On Sun, Nov 10, 2013 at 4:21 PM, Nick Edwards wrote: > > > On 11/9/13, Timo Sirainen wrote: > > > On 9.11.2013, at 5.11, Nick Edwards wrote: > > > > > >> On 11/9/13, Michael Kliewe wrote: > > >>> Hi Timo, > > >>> > > >>> I would also, like others, see you mainly working on Dovecot as an IMAP > > >>> server. As far as I can see there are many things on the roadmap, and I > > >>> hope many more will be added (for example a built-in health-checker for > > >>> director backends). > > >>> > > >>> Only if you have enough personal resources and Dovecot as an IMAP > > server > > >>> will not "loose your attention", I would love to see your expertise in > > >>> making a better MTA. > > >> > > >> Yes, some of us have been waiting for some years now, for a > > >> configurable change to alter the method of dovecots method of > > >> failover, which is just load balancing between servers rather than > > >> true failover, like postix, I see now why it gets no importance. > > > > > > Ah, you?re talking about SQL connections. Had to look up from old mails > > what > > > you were talking about. It hasn?t changed, because I think the current > > > behavior with load balancing + failover is more useful than > > failover-only. > > > And you can already do failover-only with an external load balancer. > > Sure, > > > Dovecot could also implement it, but it?s not something I especially > > want to > > > spend time on implementing. > > > > > > > My employer has 18 pop3 servers, one imap customer access (imap here > > has so little use we cant justify a redundant machine, not for 11, > > yes, eleven only users after 2 years of offering imap , and 2 imap > > (webmail). > > > > Sp, each server has a replicated mysql database > > > > If I use your "better" method, I have 18 machines polling themselves > > and the MASTER server, this needlessly slams the daylights out of the > > master as I'm sure even you can imagine. > > > > We have 4 customer relay smtp servers and 4 inbound smtp servers, > > postifx, using its failover and "better" method, means they only hit > > the master server when the local mysql unix socket is not listening, > > ie, mysqld is stopped - the master server NEVER sees them. > > > > How is your method, "better" than true failover like method used by > > postfix, your methods is load balancing, it is not failover, and > > causes problems on larger networks > > > > I'm sure in some cases most people using it are happy and wont have > > performance increases noticeable, but if you are going to offer a > > backup for auth, it really shoulds be able to configure, if we want it > > to DoS our master, or only talk to master when it cant talk local, so > > I think it should be matter you need to consider, else you are only > > half arsed doing it, and like implying we should go introduce a > > further point of failure, by using yet more third party softwares > > From h.reindl at thelounge.net Mon Nov 11 22:09:38 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 11 Nov 2013 21:09:38 +0100 Subject: [Dovecot] blames for using maillists ? In-Reply-To: <3a734674976f190c9a427ca31ead6e26@junc.eu> References: <3a734674976f190c9a427ca31ead6e26@junc.eu> Message-ID: <52813982.9060904@thelounge.net> not for using mailing-lists but for just trolling interesting that you stripped the quotes to hide it BTW sieve supports discard............. Am 11.11.2013 20:59, schrieb Benny Pedersen: > why do you not simply shut up? > > # sieve rule > require ["imap4flags"]; > # rule:[reindl] > if allof (header :contains "From" "h.reindl at thelounge.net") > { > setflag ["\\Seen","\\Flagged"]; > stop; > } -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From deano-dovecot at areyes.com Mon Nov 11 23:00:44 2013 From: deano-dovecot at areyes.com (Dean) Date: Mon, 11 Nov 2013 16:00:44 -0500 Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: References: <527D6559.7000804@areyes.com> Message-ID: <5281457C.4040903@areyes.com> On 11/11/2013 02:31 AM, Steffen Kaiser wrote: > On Fri, 8 Nov 2013, Dean Carpenter wrote: > > > Running /usr/bin/sa-learn directly always returns with an error code of > > 1, and the bayes DB isn't actually updated. Running the > > /usr/local/bin/sa-learn-pipe.sh script from the example will run > > sa-learn successfully, but sa-learn fails partway through, right on a > > sql DB access. I have both bayes and FuzzyOcr data stored in mysql, and > > the error occurs on accessing either one. That is, I've tested with > > FuzzyOcr enabled, and it fails on the db access to the FuzzyOcr DB, and > > I've tried it with FuzzyOcr disabled. In that case, it fails on the > > access to the bayes DB. > > > The error line right there is : > > > libgcc_s.so.1 must be installed for pthread_cancel to work > > > Since sa-learn terminated prematurely, the bayes DB isn't updated at > all. > > But this is not a Dovecot problem, isn't it? Antispam calls sa-learn, > but that program fails. Exactly true. But the circumstance is particular to Dovecot, and I'm sure that *someone* else out there is using this config (dovecot and spamassassin). So hoping someone has seen this and gotten around it. > > Do you have the system library libgcc_s installed as the error message > says? Yup. $ locate libgcc_s /lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/lib/gcc/x86_64-linux-gnu/4.7/libgcc_s.so > Search the net for that error message, see: > https://lists.ubuntu.com/archives/foundations-bugs/2012-March/070050.html > > If you are on a 64bit system, maybe sa-learn is compiled 32bit only, > then the library must be installed as 32bit version as well. /usr/bin/sa-learn is a perl script, calling the various Mail::SpamAssassin modules. No 32/64 bit there afaik. -- Dean Carpenter deano is at areyes dot com 94TT :) From noel.butler at ausics.net Tue Nov 12 03:00:43 2013 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 12 Nov 2013 11:00:43 +1000 Subject: [Dovecot] =?utf-8?q?blames_for_using_maillists_=3F?= In-Reply-To: <3a734674976f190c9a427ca31ead6e26@junc.eu> References: <3a734674976f190c9a427ca31ead6e26@junc.eu> Message-ID: <334bddc54903fb5880b7bfacbed95c82@ausics.net> On 12/11/2013 05:59, Benny Pedersen wrote: > why do you not simply shut up? > > # sieve rule > require ["imap4flags"]; > # rule:[reindl] > if allof (header :contains "From" "h.reindl at thelounge.net") > { > setflag ["\\Seen","\\Flagged"]; > stop; > } haha is this jackass still polluting the list? Better still to forward to his upstream provider if allof (header :contains "From" "thelounge.net", header :contains "From" "rhsoft.net") { redirect "abuse at inode.at"; } From noel.butler at ausics.net Tue Nov 12 03:14:49 2013 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 12 Nov 2013 11:14:49 +1000 Subject: [Dovecot] Dovecot MTA In-Reply-To: <61614fc8995d8afdcb6b8fa574b38801@junc.eu> References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> <52809588.10500@sys4.de> <61614fc8995d8afdcb6b8fa574b38801@junc.eu> Message-ID: On 12/11/2013 04:28, Benny Pedersen wrote: > Edwardo Garcia skrev den 2013-11-11 11:58: >> But is dovecot job to authenticate, mysql replicate fine, it is >> dovecot >> that is not fine by ignoring desire effect by only talk localhost and >> not >> any other unless locahost auth not respond. > > so move to postgresql/mysql backend and change from dovecot to dbmail ? > > why blame dovecot for using fs mail store ? > > is your problem unstable nfs ? > > give up and get google app mx :) WTF drugs are you on? Or maybe its more to the point of what medication you're not taking. Briefly reading, he;s talking about the same problem i and a few otehrs have brought up in the past (i gave up on it since Timo made it very clear he has no interest at all and Edward is really wasting his time) *dovecot authentication for users* unless I missed something, possible, so much noise on this list I rarely bother to read it anymore, and this mornings reading reaffirms why i dont From h.reindl at thelounge.net Tue Nov 12 11:28:26 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 12 Nov 2013 10:28:26 +0100 Subject: [Dovecot] blames for using maillists ? In-Reply-To: <334bddc54903fb5880b7bfacbed95c82@ausics.net> References: <3a734674976f190c9a427ca31ead6e26@junc.eu> <334bddc54903fb5880b7bfacbed95c82@ausics.net> Message-ID: <5281F4BA.6040208@thelounge.net> Am 12.11.2013 02:00, schrieb Noel Butler: > On 12/11/2013 05:59, Benny Pedersen wrote: >> why do you not simply shut up? >> >> # sieve rule >> require ["imap4flags"]; >> # rule:[reindl] >> if allof (header :contains "From" "h.reindl at thelounge.net") >> { >> setflag ["\\Seen","\\Flagged"]; >> stop; >> } > > > haha is this jackass still polluting the list? > > > Better still to forward to his upstream provider > > if allof (header :contains "From" "thelounge.net", header :contains "From" "rhsoft.net") > { > redirect "abuse at inode.at"; > } who do you think you are? better look in the archives what i write Benny he surely knows why i stripped the quotes P.S.: if you throw away messages of somebody and so not knowing the context better be quiet - realize that people like you misusing their power of maintain a meaningless australian RBL are not taken serious -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From h.reindl at thelounge.net Tue Nov 12 11:30:23 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 12 Nov 2013 10:30:23 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> <52809588.10500@sys4.de> <61614fc8995d8afdcb6b8fa574b38801@junc.eu> Message-ID: <5281F52F.1080401@thelounge.net> Am 12.11.2013 02:14, schrieb Noel Butler: > On 12/11/2013 04:28, Benny Pedersen wrote: >> Edwardo Garcia skrev den 2013-11-11 11:58: >>> But is dovecot job to authenticate, mysql replicate fine, it is dovecot >>> that is not fine by ignoring desire effect by only talk localhost and not >>> any other unless locahost auth not respond. >> >> so move to postgresql/mysql backend and change from dovecot to dbmail ? >> >> why blame dovecot for using fs mail store ? >> >> is your problem unstable nfs ? >> >> give up and get google app mx :) > > > WTF drugs are you on? Or maybe its more to the point of what medication you're not taking you smartass better should have read all your mails before suggest someone should reridect my repsones to our ISP in your previous answer oh, yeah, i know, you are not reading this but have the mouth open and playing the saint internet police -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From martin.rabl at rablnet.de Tue Nov 12 11:36:16 2013 From: martin.rabl at rablnet.de (Martin Rabl) Date: Tue, 12 Nov 2013 10:36:16 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <5281F52F.1080401@thelounge.net> References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> <52809588.10500@sys4.de> <61614fc8995d8afdcb6b8fa574b38801@junc.eu> <5281F52F.1080401@thelounge.net> Message-ID: <5281F690.4020607@rablnet.de> Pls, people, be kind and polite! Thats not the way for talking to each other! Greetings, Martin Am 12.11.2013 10:30, schrieb Reindl Harald: > Am 12.11.2013 02:14, schrieb Noel Butler: >> On 12/11/2013 04:28, Benny Pedersen wrote: >>> Edwardo Garcia skrev den 2013-11-11 11:58: >>>> But is dovecot job to authenticate, mysql replicate fine, it is dovecot >>>> that is not fine by ignoring desire effect by only talk localhost and not >>>> any other unless locahost auth not respond. >>> >>> so move to postgresql/mysql backend and change from dovecot to dbmail ? >>> >>> why blame dovecot for using fs mail store ? >>> >>> is your problem unstable nfs ? >>> >>> give up and get google app mx :) >> >> >> WTF drugs are you on? Or maybe its more to the point of what medication you're not taking > > you smartass better should have read all your mails before > suggest someone should reridect my repsones to our ISP > in your previous answer > > oh, yeah, i know, you are not reading this but have the mouth > open and playing the saint internet police > -- Viele Gr??e, Martin Rabl From h.reindl at thelounge.net Tue Nov 12 11:51:20 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 12 Nov 2013 10:51:20 +0100 Subject: [Dovecot] Dovecot MTA In-Reply-To: <5281F690.4020607@rablnet.de> References: <527D4DC7.2010604@gmx.de> <274BEFD7-32BD-4432-BEED-BF64197F2F2E@iki.fi> <52809588.10500@sys4.de> <61614fc8995d8afdcb6b8fa574b38801@junc.eu> <5281F52F.1080401@thelounge.net> <5281F690.4020607@rablnet.de> Message-ID: <5281FA18.3070206@thelounge.net> tell that Noel which is blocking my messages and so did not read what i quoted from Benny's trolling but opens his mouth tell that Noel which is abusing his power by set complete IP-ranges on RBL lists he maintains because he does not like one person using a mailserver on that range besides many other people >> blocked using >> bl.alt-backspace.org; This range is used by caustic Internet troll Harald >> Reindl h.reindl at thelounge.net / ACCESS DENIED - see >> http://www.alt-backspace.org/usage.php#misc (in reply to RCPT TO command) tell that Noel which recommends redirect to our ISP >> if allof (header :contains "From" "thelounge.net", header :contains "From" "rhsoft.net") >> { >> redirect "abuse at inode.at"; >> } Am 12.11.2013 10:36, schrieb Martin Rabl: > Pls, people, be kind and polite! > Thats not the way for talking to each other! > Greetings, > Martin > > Am 12.11.2013 10:30, schrieb Reindl Harald: >> Am 12.11.2013 02:14, schrieb Noel Butler: >>> On 12/11/2013 04:28, Benny Pedersen wrote: >>>> Edwardo Garcia skrev den 2013-11-11 11:58: >>>>> But is dovecot job to authenticate, mysql replicate fine, it is dovecot >>>>> that is not fine by ignoring desire effect by only talk localhost and not >>>>> any other unless locahost auth not respond. >>>> >>>> so move to postgresql/mysql backend and change from dovecot to dbmail ? >>>> >>>> why blame dovecot for using fs mail store ? >>>> >>>> is your problem unstable nfs ? >>>> >>>> give up and get google app mx :) >>> >>> >>> WTF drugs are you on? Or maybe its more to the point of what medication you're not taking >> >> you smartass better should have read all your mails before >> suggest someone should reridect my repsones to our ISP >> in your previous answer >> >> oh, yeah, i know, you are not reading this but have the mouth >> open and playing the saint internet police -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From marcin at mejor.pl Tue Nov 12 15:36:13 2013 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Tue, 12 Nov 2013 14:36:13 +0100 Subject: [Dovecot] dovecot-2.2.7: Fatal: master: service(imap): child 49545 killed with signal 11 (core dumped) Message-ID: <52822ECD.2070808@mejor.pl> Hi! After upgrade I'm noticing many coredummps, below is backtrace: $ echo "bt"|gdb .... #0 o_stream_zlib_flush (stream=0xc8be5b27640) at ostream-zlib.c:222 222 if (o_stream_zlib_send_flush(zstream) < 0) (gdb) #0 o_stream_zlib_flush (stream=0xc8be5b27640) at ostream-zlib.c:222 #1 0x00007a695e8f09cd in o_stream_flush (stream=stream at entry=0xc8be5b276d0) at ostream.c:147 #2 0x00007a695e83c06f in o_stream_zlib_close (stream=0xc8be5b27640, close_parent=true) at ostream-zlib.c:35 #3 0x00007a695e8f0375 in o_stream_close_full (stream=stream at entry=0xc8be5b276d0, close_parents=close_parents at entry=true) at ostream.c:49 #4 0x00007a695e8f06e2 in o_stream_close (stream=stream at entry=0xc8be5b276d0) at ostream.c:85 #5 0x00007a695e8f1738 in o_stream_copy_error_from_parent (_stream=_stream at entry=0xc8be5b27640) at ostream.c:434 #6 0x00007a695e83c5cc in o_stream_zlib_flush (stream=0xc8be5b27640) at ostream-zlib.c:227 #7 0x00007a695e8f09cd in o_stream_flush (stream=stream at entry=0xc8be5b276d0) at ostream.c:147 #8 0x00007a695e83c06f in o_stream_zlib_close (stream=0xc8be5b27640, close_parent=true) at ostream-zlib.c:35 #9 0x00007a695e8f0375 in o_stream_close_full (stream=stream at entry=0xc8be5b276d0, close_parents=close_parents at entry=true) at ostream.c:49 #10 0x00007a695e8f06e2 in o_stream_close (stream=stream at entry=0xc8be5b276d0) at ostream.c:85 #11 0x00007a695e8f1738 in o_stream_copy_error_from_parent (_stream=_stream at entry=0xc8be5b27640) at ostream.c:434 #12 0x00007a695e83c5cc in o_stream_zlib_flush (stream=0xc8be5b27640) at ostream-zlib.c:227 #13 0x00007a695e8f09cd in o_stream_flush (stream=stream at entry=0xc8be5b276d0) at ostream.c:147 #14 0x00007a695e83c06f in o_stream_zlib_close (stream=0xc8be5b27640, close_parent=true) at ostream-zlib.c:35 #15 0x00007a695e8f0375 in o_stream_close_full (stream=stream at entry=0xc8be5b276d0, close_parents=close_parents at entry=true) at ostream.c:49 #16 0x00007a695e8f06e2 in o_stream_close (stream=stream at entry=0xc8be5b276d0) at ostream.c:85 #17 0x00007a695e8f1738 in o_stream_copy_error_from_parent (_stream=_stream at entry=0xc8be5b27640) at ostream.c:434 #18 0x00007a695e83c5cc in o_stream_zlib_flush (stream=0xc8be5b27640) at ostream-zlib.c:227 #19 0x00007a695e8f09cd in o_stream_flush (stream=stream at entry=0xc8be5b276d0) at ostream.c:147 #20 0x00007a695e83c06f in o_stream_zlib_close (stream=0xc8be5b27640, close_parent=true) at ostream-zlib.c:35 #21 0x00007a695e8f0375 in o_stream_close_full (stream=stream at entry=0xc8be5b276d0, close_parents=close_parents at entry=true) at ostream.c:49 #22 0x00007a695e8f06e2 in o_stream_close (stream=stream at entry=0xc8be5b276d0) at ostream.c:85 #23 0x00007a695e8f1738 in o_stream_copy_error_from_parent (_stream=_stream at entry=0xc8be5b27640) at ostream.c:434 #24 0x00007a695e83c5cc in o_stream_zlib_flush (stream=0xc8be5b27640) at ostream-zlib.c:227 #25 0x00007a695e8f09cd in o_stream_flush (stream=stream at entry=0xc8be5b276d0) at ostream.c:147 #26 0x00007a695e83c06f in o_stream_zlib_close (stream=0xc8be5b27640, close_parent=true) at ostream-zlib.c:35 [...] #285878 0x00007a695e8f0adc in o_stream_default_cork (_stream=0xc8be5b27640, set=) at ostream.c:419 #285879 o_stream_default_cork (_stream=0xc8be5b27640, set=) at ostream.c:412 #285880 0x00000c8be506b72d in client_input (client=0xc8be5b07b00) at imap-client.c:945 #285881 0x00007a695e8e4867 in io_loop_call_io (io=0xc8be5b8f370) at ioloop.c:387 #285882 0x00007a695e8e5d1f in io_loop_handler_run (ioloop=ioloop at entry=0xc8be5ab50f0) at ioloop-epoll.c:220 #285883 0x00007a695e8e4178 in io_loop_run (ioloop=0xc8be5ab50f0) at ioloop.c:411 #285884 0x00007a695e87a847 in master_service_run (service=0xc8be5ab4f80, callback=callback at entry=0xc8be5077f20 ) at master-service.c:566 #285885 0x00000c8be50785d4 in main (argc=1, argv=0xc8be5ab4d50) at main.c:400 And gdb is killing by OOM. I suspect this can be related to imapc. Regards, Marcin From marcin at mejor.pl Tue Nov 12 16:13:53 2013 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Tue, 12 Nov 2013 15:13:53 +0100 Subject: [Dovecot] dovecot-2.2.7: Fatal: master: service(imap): child 49545 killed with signal 11 (core dumped) In-Reply-To: <52822ECD.2070808@mejor.pl> References: <52822ECD.2070808@mejor.pl> Message-ID: <528237A1.1000600@mejor.pl> In dmesg I can see: " denied resource overstep by requesting 8392704 for RLIMIT_STACK against limit 8388608 for /usr/libexec/dovecot/imap " I'm using hardened kernel (with grsec patch). From ihab_mishriki at hotmail.com Tue Nov 12 15:47:43 2013 From: ihab_mishriki at hotmail.com (ihab) Date: Tue, 12 Nov 2013 05:47:43 -0800 (PST) Subject: [Dovecot] how to make quota per user ?? Message-ID: <1384264063139-45335.post@n4.nabble.com> I use dovecot version 1.2.15 and i put quota for all users , now i want to give more size for some emails , i already added the quota to user database , and i added the queries from http://wiki.dovecot.org/Quota/1.1 MySQL: user_query = select uid, gid, home, \ concat('*:bytes=', quota_bytes) as quota_rule \ from users where userid = '%u' # MySQL with userdb prefetch: Remember to prefix quota_rule with userdb_ # (just like all other userdb extra fields): password_query = select userid as user, password, \ uid as userdb_uid, gid as userdb_gid, \ concat('*:bytes=', quota_bytes) as userdb_quota_rule \ from users where userid = '%u' but it is not work what i have to change and in which files please ? -- View this message in context: http://dovecot.2317879.n4.nabble.com/how-to-make-quota-per-user-tp45335.html Sent from the Dovecot mailing list archive at Nabble.com. From ihab_mishriki at hotmail.com Tue Nov 12 15:50:53 2013 From: ihab_mishriki at hotmail.com (ihab) Date: Tue, 12 Nov 2013 05:50:53 -0800 (PST) Subject: [Dovecot] my quota warning script not getting executed2 In-Reply-To: <1383831183836-45196.post@n4.nabble.com> References: <1383831183836-45196.post@n4.nabble.com> Message-ID: <1384264253717-45336.post@n4.nabble.com> i solved the problem i was need to make the dovecot enable to debug the code i put debugger in warning script file and i found this error Thanks for alll ;) -- View this message in context: http://dovecot.2317879.n4.nabble.com/my-quota-warning-script-not-getting-executed2-tp45196p45336.html Sent from the Dovecot mailing list archive at Nabble.com. From anmeyer at anup.de Tue Nov 12 17:00:08 2013 From: anmeyer at anup.de (Andreas Meyer) Date: Tue, 12 Nov 2013 16:00:08 +0100 Subject: [Dovecot] how to make quota per user ?? In-Reply-To: <1384264063139-45335.post@n4.nabble.com> References: <1384264063139-45335.post@n4.nabble.com> Message-ID: <20131112160008.4281fa9e@itxnew.bitcorner.intern> ihab wrote: > I use dovecot version 1.2.15 and i put quota for all users , now i want to upgrade to at least 2.1.17, it's a painless process. > give more size for some emails , i already added the quota to user database > , and i added the queries from http://wiki.dovecot.org/Quota/1.1 > MySQL: > user_query = select uid, gid, home, \ > concat('*:bytes=', quota_bytes) as quota_rule \ > from users where userid = '%u' We use with v 2.1.17 user_query = SELECT maildir, uid, gid, concat('*:storage=', quota) AS quota_rule, concat('Trash:storage=+', quota_trash) AS quota_rule2 FROM mailbox WHERE username = '%u' > > # MySQL with userdb prefetch: Remember to prefix quota_rule with userdb_ > # (just like all other userdb extra fields): > password_query = select userid as user, password, \ > uid as userdb_uid, gid as userdb_gid, \ > concat('*:bytes=', quota_bytes) as userdb_quota_rule \ > from users where userid = '%u' Andreas From tolga at ozses.net Tue Nov 12 17:04:01 2013 From: tolga at ozses.net (Muzaffer Tolga Ozses) Date: Tue, 12 Nov 2013 17:04:01 +0200 Subject: [Dovecot] Can't see e-mails Message-ID: Hi, I have a postfix+dovecot+mysql+roundcube setup. I recently changed providers. At the moment, postfix can receive e-mails but either dovecot or roundcube can't see e-mails. I did a telnet example.com 143 then a login user pass and this is what I see: 2013-11-12 16:08:51 auth: Debug: sql(alanya at boradental.com.tr,193.255.135.254): SELE CT '/var/vmail/boradental.com.tr/alanya' as home, 'maildir:/var/vmail/ boradental.com .tr/alanya' as mail, 5000 AS uid, 5000 AS gid, concat('dirsize:storage=', quota) AS quota FROM mailbox WHERE username = 'alanya at boradental.com.tr' AND active = '1' 2013-11-12 16:08:51 auth: Debug: master out: USER 3767009281 alanya at borad ental.com.tr home=/var/vmail/boradental.com.tr/alanya mail=maildir:/va r/vmail/boradental.com.tr/alanya uid=5000 gid=5000 quota=dirsize:storage=0 so I'm assuming dovecot works. Am I right to assume this? If I'm not, what's the solution? If I am, how can I debug this? Regards, From manuel.delgado at ucr.ac.cr Tue Nov 12 17:55:16 2013 From: manuel.delgado at ucr.ac.cr (Manuel Delgado) Date: Tue, 12 Nov 2013 09:55:16 -0600 Subject: [Dovecot] how to make quota per user ?? In-Reply-To: <20131112160008.4281fa9e@itxnew.bitcorner.intern> References: <1384264063139-45335.post@n4.nabble.com> <20131112160008.4281fa9e@itxnew.bitcorner.intern> Message-ID: On Tue, Nov 12, 2013 at 9:00 AM, Andreas Meyer wrote: > ihab wrote: > > > I use dovecot version 1.2.15 and i put quota for all users , now i want > to > > upgrade to at least 2.1.17, it's a painless process. > > > give more size for some emails , i already added the quota to user > database > > , and i added the queries from http://wiki.dovecot.org/Quota/1.1 > > MySQL: > > user_query = select uid, gid, home, \ > > concat('*:bytes=', quota_bytes) as quota_rule \ > > from users where userid = '%u' > > We use with v 2.1.17 > user_query = SELECT maildir, uid, gid, concat('*:storage=', quota) AS > quota_rule, concat('Trash:storage=+', quota_trash) AS quota_rule2 FROM > mailbox WHERE username = '%u' > > > > > # MySQL with userdb prefetch: Remember to prefix quota_rule with userdb_ > > # (just like all other userdb extra fields): > > password_query = select userid as user, password, \ > > uid as userdb_uid, gid as userdb_gid, \ > > concat('*:bytes=', quota_bytes) as userdb_quota_rule \ > > from users where userid = '%u' > > Andreas > We use it with dovecot 2.1.7 too but we have 2 diferente namespaces so rules looks like: user_query = SELECT maildir, uid, gid, concat('*:storage=', quota) AS quota_rule, concat('*:storage=', quota) AS quota2_rule FROM mailbox WHERE username = '%u' Both NS have the same quota. ~Manuel Delgado From CMarcus at Media-Brokers.com Tue Nov 12 18:18:43 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 12 Nov 2013 11:18:43 -0500 Subject: [Dovecot] Can't see e-mails In-Reply-To: References: Message-ID: <528254E3.4020605@Media-Brokers.com> On 2013-11-12 10:04 AM, Muzaffer Tolga Ozses wrote: > I have a postfix+dovecot+mysql+roundcube setup. I recently changed > providers. At the moment, postfix can receive e-mails but either dovecot or > roundcube can't see e-mails. What do you mean by 'changed providers'? -- Best regards, */Charles/* From tolga at ozses.net Tue Nov 12 19:08:56 2013 From: tolga at ozses.net (Muzaffer Tolga Ozses) Date: Tue, 12 Nov 2013 19:08:56 +0200 Subject: [Dovecot] Can't see e-mails In-Reply-To: <528254E3.4020605@Media-Brokers.com> References: <528254E3.4020605@Media-Brokers.com> Message-ID: Migrated to DigitalOcean from another VPS regards, On 12 Nov 2013 18:19, "Charles Marcus" wrote: > > On 2013-11-12 10:04 AM, Muzaffer Tolga Ozses wrote: >> >> I have a postfix+dovecot+mysql+roundcube setup. I recently changed >> providers. At the moment, postfix can receive e-mails but either dovecot or >> roundcube can't see e-mails. > > > What do you mean by 'changed providers'? > > -- > > Best regards, > > */Charles/* From david.johnson at marshallelectronics.net Tue Nov 12 20:00:07 2013 From: david.johnson at marshallelectronics.net (David Johnson) Date: Tue, 12 Nov 2013 10:00:07 -0800 Subject: [Dovecot] Dovecot 2.0.9 Quota Limit issues Message-ID: <52826CA7.7050008@marshallelectronics.net> Hello, I've tried searching for information regarding this problem but haven't found anything. Currently I have a Dovecot 2.0.9 with virtual users from a SQL table. Right now I'm only using global quota limits. Here is my quota setup: plugin { quota = maildir:User quota quota_rule = *:storage=3G quota_rule2 = Trash:storage=+100M quota_rule3 = Archive:storage=+1G quota_rule4 = Archive/2013:storage=+1G quota_rule5 = Junk:ignore } According to the documentation this should allow the Archive folder to have an additional 1G in it that is not counted toward the global 3G. However I have users who have 2G in the Archive folder, and about 1G elsewhere. At this point they stop receiving emails due to quota exceeded. doveadm quota get -u displays this: Quota name Type Value Limit % User quota STORAGE 3150312 3145728 100 User quota MESSAGE 8271 - 0 If I change Archive:storage=+1G to Archive:ignore then they can receive emails again. After the change doveadm quota get -u displays this: Quota name Type Value Limit % User quota STORAGE 1266885 3145728 40 User quota MESSAGE 8271 - 0 Is there something I'm missing as to why this setup isn't working? Thanks! -- David J. From nick.z.edwards at gmail.com Wed Nov 13 05:49:03 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Wed, 13 Nov 2013 13:49:03 +1000 Subject: [Dovecot] trashed Message-ID: On 11/12/13, Reindl Harald wrote: > tell that Noel which is blocking my messages and so did > not read what i quoted from Benny's trolling but opens > his mouth > > tell that Noel which is abusing his power by set complete > IP-ranges on RBL lists he maintains because he does not > like one person using a mailserver on that range besides > many other people > Let us see Posfix list - BANNED Roundcube List - MODERATED Centos List - MODERATED (maybe banned) Fedora list - 1/ MODERATED - 2/ Had hissy fit temper tantrum with moderators a few days ago about his continual moderation and claimed was quitting fedora list. Likely has resubscribed to Fedora (if indeed even did quit), like on Postfix under a lists at rhsoft.net address or something similar and thats only the ones *I* know about. So, your in a blacklist as well? wouldnt have anything to do with your actions pretty much everywhere would it now, nooooooooooooooooooooooooooooo, of course not. Taking into account all of the above, I think its fair to say, its more than one person that doesn't like your foul mouthed antics, which was explained to you many times by fedora moderators, trying to get you to change, all you had to do, and they would remove moderation, but you refused, so you deserve it, no one else to blame but yourself YOU ARE NOT THE VICTIM >>> blocked using >>> bl.alt-backspace.org; This range is used by caustic Internet troll >>> Harald >>> Reindl h.reindl at thelounge.net / ACCESS DENIED - see >>> http://www.alt-backspace.org/usage.php#misc (in reply to RCPT TO >>> command) Awesome! Thanks for that, I have just enabled bl.alt-backspace.org on our company servers ciao From nick.z.edwards at gmail.com Wed Nov 13 05:52:09 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Wed, 13 Nov 2013 13:52:09 +1000 Subject: [Dovecot] highly available userdb Message-ID: On 11/12/13, Jan-Frode Myklebust wrote: > My installation is only serving 1/10 of your size, but long time ago we > migrated off mysql for userdatabase, and over to LDAP. The MySQL data > source had issues (not dovecot related), and didn't seem like the right > tool for the job. A database is a database, a master is a master, and a slave is a slave our mysql has never had problem, not a single one, its why I'm so annoyed dovecot is talking to master when it doesn't need to From h.reindl at thelounge.net Wed Nov 13 11:35:14 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 13 Nov 2013 10:35:14 +0100 Subject: [Dovecot] trashed In-Reply-To: References: Message-ID: <528347D2.4080105@thelounge.net> Am 13.11.2013 04:49, schrieb Nick Edwards: > Let us see > > Posfix list - BANNED look at the thread history > Roundcube List - MODERATED because Noel if you look at that threwad > Centos List - MODERATED (maybe banned) because two postings a long time ago > Fedora list - 1/ MODERATED > - 2/ Had hissy fit temper tantrum with moderators a > few days ago about his continual moderation and claimed was quitting > fedora list. users list on fedora-devel no longer, most likely because my work in writing hundrets of bugreports and testing hundrets of packages all the time http://kparal.wordpress.com/ http://www.spinics.net/lists/fedora-devel/msg189823.html http://www.mail-archive.com/devel at lists.fedoraproject.org/msg68627.html > Likely has resubscribed to Fedora (if indeed even did quit), like on > Postfix under a lists at rhsoft.net address or something similar for sure not on the users list > Taking into account all of the above, I think its fair to say, its > more than one person that doesn't like your foul mouthed antics so what, i and many others also do not like people which obviously not trying one second to search for existing solutins about topics explained many thousand times and they continue to refuse reading basic docs > which > was explained to you many times by fedora moderators, trying to get > you to change, all you had to do, and they would remove moderation, > but you refused, so you deserve it, no one else to blame but yourself read the thread, they demanded to live by he "fedora code of conduct" even off-list and everywhere > YOU ARE NOT THE VICTIM there do not need to be vitims at all >>>> blocked using >>>> bl.alt-backspace.org; This range is used by caustic Internet troll >>>> Harald >>>> Reindl h.reindl at thelounge.net / ACCESS DENIED - see >>>> http://www.alt-backspace.org/usage.php#misc (in reply to RCPT TO >>>> command) > > Awesome! Thanks for that, I have just enabled bl.alt-backspace.org on > our company servers you are a fool because you are blocking many other domains and most likely not a single message from me on a mailing-list because it arrives from the list-IP knowing that and using such a RBL on a company server should lead in you get fired because incompetence -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From itgeek31 at googlemail.com Wed Nov 13 11:54:53 2013 From: itgeek31 at googlemail.com (IT geek 31) Date: Wed, 13 Nov 2013 10:54:53 +0100 Subject: [Dovecot] trashed In-Reply-To: <528347D2.4080105@thelounge.net> References: <528347D2.4080105@thelounge.net> Message-ID: Guys, I don't wanna get involved with your internal beef, but some of us have real issues getting Dovecot to work as we need it to... If you could focus your efforts and considerable knowledge on helping others then this list would be much better for it. -Mark On 13 November 2013 10:35, Reindl Harald wrote: > > > Am 13.11.2013 04:49, schrieb Nick Edwards: > > Let us see > > > > Posfix list - BANNED > > look at the thread history > > > Roundcube List - MODERATED > > because Noel if you look at that threwad > > > Centos List - MODERATED (maybe banned) > > because two postings a long time ago > > > Fedora list - 1/ MODERATED > > - 2/ Had hissy fit temper tantrum with moderators a > > few days ago about his continual moderation and claimed was quitting > > fedora list. > > users list > > on fedora-devel no longer, most likely because my work in > writing hundrets of bugreports and testing hundrets of > packages all the time > > http://kparal.wordpress.com/ > http://www.spinics.net/lists/fedora-devel/msg189823.html > http://www.mail-archive.com/devel at lists.fedoraproject.org/msg68627.html > > > Likely has resubscribed to Fedora (if indeed even did quit), like on > > Postfix under a lists at rhsoft.net address or something similar > > for sure not on the users list > > > Taking into account all of the above, I think its fair to say, its > > more than one person that doesn't like your foul mouthed antics > > so what, i and many others also do not like people which obviously > not trying one second to search for existing solutins about > topics explained many thousand times and they continue to > refuse reading basic docs > > > which > > was explained to you many times by fedora moderators, trying to get > > you to change, all you had to do, and they would remove moderation, > > but you refused, so you deserve it, no one else to blame but yourself > > read the thread, they demanded to live by he "fedora code of conduct" > even off-list and everywhere > > > YOU ARE NOT THE VICTIM > > there do not need to be vitims at all > > >>>> blocked using > >>>> bl.alt-backspace.org; This range is used by caustic Internet troll > >>>> Harald > >>>> Reindl h.reindl at thelounge.net / ACCESS DENIED - see > >>>> http://www.alt-backspace.org/usage.php#misc (in reply to RCPT TO > >>>> command) > > > > Awesome! Thanks for that, I have just enabled bl.alt-backspace.org on > > our company servers > > you are a fool because you are blocking many other domains and most > likely not a single message from me on a mailing-list because > it arrives from the list-IP > > knowing that and using such a RBL on a company server should > lead in you get fired because incompetence > > From nick.z.edwards at gmail.com Wed Nov 13 12:49:32 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Wed, 13 Nov 2013 20:49:32 +1000 Subject: [Dovecot] trashed In-Reply-To: <528347D2.4080105@thelounge.net> References: <528347D2.4080105@thelounge.net> Message-ID: *yawn* you just dont get it do you, you have brought EVERYTHING upon yourself, no one else to blame, only YOU because you make a couple of helpful posts does not give you the right to continue to abuse everyone like you repeatedly do and as for blacklist, I am the operations centre manager cant fire myselfl and you need oi be reminded of why blacklists are there they are there to stop trouble makers, as one example you on roundcube list have a habit of CC direct abuse at people, you probably do it everywhere too, the blacklist might not stop your trolling on lists but it saves people getting direct inbox abuse trash from you. if you are so worried about your other domains being rejected then MAYBE YOU SHOULD PUT YOUR BRAIN INTO GEAR FIRSTand STOP ABUSING PEOPLE, it can not be made more clear, that is understandable by eve a 5 yo child, but apparently not you! On 11/13/13, Reindl Harald wrote: > > for sure not on the users list > >> Taking into account all of the above, I think its fair to say, its >> more than one person that doesn't like your foul mouthed antics > > so what, i and many others also do not like people which obviously > not trying one second to search for existing solutins about > topics explained many thousand times and they continue to > refuse reading basic docs > >> which >> was explained to you many times by fedora moderators, trying to get >> you to change, all you had to do, and they would remove moderation, >> but you refused, so you deserve it, no one else to blame but yourself > > read the thread, they demanded to live by he "fedora code of conduct" > even off-list and everywhere > >> YOU ARE NOT THE VICTIM > > there do not need to be vitims at all > >>>>> blocked using >>>>> bl.alt-backspace.org; This range is used by caustic Internet troll >>>>> Harald >>>>> Reindl h.reindl at thelounge.net / ACCESS DENIED - see >>>>> http://www.alt-backspace.org/usage.php#misc (in reply to RCPT TO >>>>> command) >> >> Awesome! Thanks for that, I have just enabled bl.alt-backspace.org on >> our company servers > > you are a fool because you are blocking many other domains and most > likely not a single message from me on a mailing-list because > it arrives from the list-IP > > knowing that and using such a RBL on a company server should > lead in you get fired because incompetence > > From h.reindl at thelounge.net Wed Nov 13 12:57:08 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 13 Nov 2013 11:57:08 +0100 Subject: [Dovecot] trashed In-Reply-To: References: <528347D2.4080105@thelounge.net> Message-ID: <52835B04.2080203@thelounge.net> Am 13.11.2013 11:49, schrieb Nick Edwards: > *yawn* > you just dont get it do you, you have brought EVERYTHING upon > yourself, no one else to blame, only YOU stop the whining, if i do not want to read a mail from someone else i simply do not read it and for this i do not need anbodys help > because you make a couple of helpful posts does not give you the right > to continue to abuse everyone like you repeatedly do maybe too people are that whinery and feel absued and victimed on a ridiculous base > and as for blacklist, I am the operations centre manager cant fire myselfl well, than you can't be in a important operations centre because if so you would not be permitted to make such a stupid decision at your own for anybody else > and you need oi be reminded of why blacklists are there blacklists are to drop message from spam-servers > they are there to stop trouble makers, as one example you on > roundcube list have a habit of CC direct abuse at people, you probably > do it everywhere too, the blacklist might not stop your trolling on > lists but it saves people getting direct inbox abuse trash from you. again: if i do not want to read a mail from someone else i simply do not read it and for this i do not need anbodys help > if you are so worried about your other domains being rejected then > MAYBE YOU SHOULD PUT YOUR BRAIN INTO GEAR FIRSTand STOP ABUSING > PEOPLE, it can not be made more clear, that is understandable by eve a > 5 yo child, but apparently not you! even a 5 yo child understands that blocking complete class C networks because someone does not like a single person means you are not qualified to be responsible for any production server > On 11/13/13, Reindl Harald wrote: >> >> for sure not on the users list >> >>> Taking into account all of the above, I think its fair to say, its >>> more than one person that doesn't like your foul mouthed antics >> >> so what, i and many others also do not like people which obviously >> not trying one second to search for existing solutins about >> topics explained many thousand times and they continue to >> refuse reading basic docs >> >>> which >>> was explained to you many times by fedora moderators, trying to get >>> you to change, all you had to do, and they would remove moderation, >>> but you refused, so you deserve it, no one else to blame but yourself >> >> read the thread, they demanded to live by he "fedora code of conduct" >> even off-list and everywhere >> >>> YOU ARE NOT THE VICTIM >> >> there do not need to be vitims at all >> >>>>>> blocked using >>>>>> bl.alt-backspace.org; This range is used by caustic Internet troll >>>>>> Harald >>>>>> Reindl h.reindl at thelounge.net / ACCESS DENIED - see >>>>>> http://www.alt-backspace.org/usage.php#misc (in reply to RCPT TO >>>>>> command) >>> >>> Awesome! Thanks for that, I have just enabled bl.alt-backspace.org on >>> our company servers >> >> you are a fool because you are blocking many other domains and most >> likely not a single message from me on a mailing-list because >> it arrives from the list-IP >> >> knowing that and using such a RBL on a company server should >> lead in you get fired because incompetence -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From wdgarc88 at gmail.com Wed Nov 13 13:04:07 2013 From: wdgarc88 at gmail.com (Edwardo Garcia) Date: Wed, 13 Nov 2013 21:04:07 +1000 Subject: [Dovecot] trashed In-Reply-To: References: <528347D2.4080105@thelounge.net> Message-ID: Halo Nick, Yes agree Riendl has sent me direct foul mouth abuse from this list, I have my staff now enabling this blacklist too. He filtered out now on lists too, wont see him bullying potty mouth again good ridden On Wed, Nov 13, 2013 at 8:49 PM, Nick Edwards wrote: > *yawn* > you just dont get it do you, you have brought EVERYTHING upon > yourself, no one else to blame, only YOU > > because you make a couple of helpful posts does not give you the right > to continue to abuse everyone like you repeatedly do > > and as for blacklist, I am the operations centre manager cant fire myselfl > and you need oi be reminded of why blacklists are there > > they are there to stop trouble makers, as one example you on > roundcube list have a habit of CC direct abuse at people, you probably > do it everywhere too, the blacklist might not stop your trolling on > lists but it saves people getting direct inbox abuse trash from you. > > if you are so worried about your other domains being rejected then > MAYBE YOU SHOULD PUT YOUR BRAIN INTO GEAR FIRSTand STOP ABUSING > PEOPLE, it can not be made more clear, that is understandable by eve a > 5 yo child, but apparently not you! > > > > > > On 11/13/13, Reindl Harald wrote: > > > > for sure not on the users list > > > >> Taking into account all of the above, I think its fair to say, its > >> more than one person that doesn't like your foul mouthed antics > > > > so what, i and many others also do not like people which obviously > > not trying one second to search for existing solutins about > > topics explained many thousand times and they continue to > > refuse reading basic docs > > > >> which > >> was explained to you many times by fedora moderators, trying to get > >> you to change, all you had to do, and they would remove moderation, > >> but you refused, so you deserve it, no one else to blame but yourself > > > > read the thread, they demanded to live by he "fedora code of conduct" > > even off-list and everywhere > > > >> YOU ARE NOT THE VICTIM > > > > there do not need to be vitims at all > > > >>>>> blocked using > >>>>> bl.alt-backspace.org; This range is used by caustic Internet troll > >>>>> Harald > >>>>> Reindl h.reindl at thelounge.net / ACCESS DENIED - see > >>>>> http://www.alt-backspace.org/usage.php#misc (in reply to RCPT TO > >>>>> command) > >> > >> Awesome! Thanks for that, I have just enabled bl.alt-backspace.org on > >> our company servers > > > > you are a fool because you are blocking many other domains and most > > likely not a single message from me on a mailing-list because > > it arrives from the list-IP > > > > knowing that and using such a RBL on a company server should > > lead in you get fired because incompetence > > > > > From h.reindl at thelounge.net Wed Nov 13 13:11:05 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 13 Nov 2013 12:11:05 +0100 Subject: [Dovecot] trashed In-Reply-To: References: <528347D2.4080105@thelounge.net> Message-ID: <52835E49.5000008@thelounge.net> Am 13.11.2013 12:04, schrieb Edwardo Garcia: > Yes agree Riendl has sent me direct foul mouth abuse from this list, I have > my staff now enabling this blacklist too. > He filtered out now on lists too, wont see him bullying potty mouth again > good ridden says the one responding off-list himself -------- Original-Nachricht -------- Betreff: Re: [Dovecot] Dovecot MTA Datum: Mon, 11 Nov 2013 08:54:04 +1000 Von: Edwardo Garcia An: Reindl Harald > On Wed, Nov 13, 2013 at 8:49 PM, Nick Edwards wrote: > >> *yawn* >> you just dont get it do you, you have brought EVERYTHING upon >> yourself, no one else to blame, only YOU >> >> because you make a couple of helpful posts does not give you the right >> to continue to abuse everyone like you repeatedly do >> >> and as for blacklist, I am the operations centre manager cant fire myselfl >> and you need oi be reminded of why blacklists are there >> >> they are there to stop trouble makers, as one example you on >> roundcube list have a habit of CC direct abuse at people, you probably >> do it everywhere too, the blacklist might not stop your trolling on >> lists but it saves people getting direct inbox abuse trash from you. >> >> if you are so worried about your other domains being rejected then >> MAYBE YOU SHOULD PUT YOUR BRAIN INTO GEAR FIRSTand STOP ABUSING >> PEOPLE, it can not be made more clear, that is understandable by eve a >> 5 yo child, but apparently not you! -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From joseba.torre at ehu.es Wed Nov 13 16:23:25 2013 From: joseba.torre at ehu.es (Joseba Torre) Date: Wed, 13 Nov 2013 15:23:25 +0100 Subject: [Dovecot] Deleted messages reappearing Message-ID: <20131113142325.GA19755@joseba.lg.ehu.es> Hi all, in the last days, probably since I upgraded to 2.2.7, I'm seeing lots of deleted messages reappearing in my folders. This is after this error in the log: Nov 13 14:55:16 buzones2 dovecot: imap-login: Login: user=, method=PLAIN, rip=source_ip, lip=dest_ip, mpid=15510, TLS, session=<2bmiUA/rZACe4wQZ> Nov 13 14:55:16 buzones2 dovecot: imap(username): Error: mdbox /users/username/mdbox/mailboxes/backups/dbox-Mails: map uidvalidity mismatch (0 vs 1384350727) Nov 13 14:55:16 buzones2 dovecot: imap(username): Disconnected: Internal error occurred. Refer to server log for more information. [2013-11-13 14:55:16] in=227 out=2745 Nov 13 14:55:16 buzones2 dovecot: imap(username): Warning: fscking index file /users/username/mdbox/storage/dovecot.map.index Nov 13 14:55:17 buzones2 dovecot: imap(username): Warning: mdbox /users/username/mdbox/storage: rebuilding indexes Nov 13 14:55:17 buzones2 dovecot: imap(username): Error: /users/username/mdbox/mailboxes/INBOX/dbox-Mails/dovecot.index reset, view is now inconsistent Nov 13 14:55:17 buzones2 dovecot: imap(username): Disconnected: IMAP session state is inconsistent, please relogin. in=383 out=4820 Nov 13 14:55:18 buzones2 dovecot: imap-login: Login: user=, method=PLAIN, rip=source_ip, lip=dest_ip, mpid=15511, TLS, session= Nov 13 14:55:19 buzones2 dovecot: imap-login: Login: user=, method=PLAIN, rip=source_ip, lip=dest_ip, mpid=15512, TLS, session= Nov 13 15:13:07 buzones2 dovecot: imap-login: Login: user=, method=PLAIN, rip=source_ip, lip=dest_ip, mpid=15538, TLS, session= Nov 13 15:13:36 buzones2 dovecot: imap(username): Disconnected: Logged out in=1791 out=119343 Nov 13 15:13:44 buzones2 dovecot: imap-login: Login: user=, method=PLAIN, rip=source_ip, lip=dest_ip, mpid=15539, TLS, session= [username at buzones2 ~]$ dovecot --version 2.2.7 The first days I was using thunderbird, and as we talked in other thread I thought it was a client issue, but now I've seen the same problem with kmail and mutt. Regards, Joseba Torre From delrio at mie.utoronto.ca Wed Nov 13 16:56:17 2013 From: delrio at mie.utoronto.ca (Oscar del Rio) Date: Wed, 13 Nov 2013 09:56:17 -0500 Subject: [Dovecot] Deleted messages reappearing In-Reply-To: <20131113142325.GA19755@joseba.lg.ehu.es> References: <20131113142325.GA19755@joseba.lg.ehu.es> Message-ID: <52839311.4000200@mie.utoronto.ca> On 11/13/13 09:23 AM, Joseba Torre wrote: > in the last days, probably since I upgraded to 2.2.7, I'm seeing lots of > deleted messages reappearing in my folders. This is after this error in > the log: You should post more details, such as what kind of storage you are using (NFS?) and your dovecot configuration. From joseba.torre at ehu.es Wed Nov 13 17:05:20 2013 From: joseba.torre at ehu.es (Joseba Torre) Date: Wed, 13 Nov 2013 16:05:20 +0100 Subject: [Dovecot] Deleted messages reappearing In-Reply-To: <52839311.4000200@mie.utoronto.ca> References: <20131113142325.GA19755@joseba.lg.ehu.es> <52839311.4000200@mie.utoronto.ca> Message-ID: <20131113150520.GA20720@joseba.lg.ehu.es> On Wed, Nov 13, 2013 at 09:56:17AM -0500, Oscar del Rio wrote: > On 11/13/13 09:23 AM, Joseba Torre wrote: > >in the last days, probably since I upgraded to 2.2.7, I'm seeing lots of > >deleted messages reappearing in my folders. This is after this error in > >the log: > > You should post more details, such as what kind of storage you are > using (NFS?) and your dovecot configuration. Yes, I'm using NFS, but this exact configuration has been working for a long time and I've never seen this error previously. That's why I think it's related to the upgrade. Anyway, here is my conf # 2.2.7: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-358.23.2.el6.x86_64 x86_64 Red Hat Enterprise Linux Server release 6.4 (Santiago) auth_cache_negative_ttl = 5 mins auth_cache_size = 10 M auth_master_user_separator = * default_client_limit = 4000 default_process_limit = 500 first_valid_uid = 200 lda_mailbox_autocreate = yes lock_method = dotlock login_trusted_networks = ip1,ip2 mail_plugins = quota managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave imapflags namespace inbox { inbox = yes list = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = separator = . type = private } passdb { args = scheme=CRAM-MD5 /etc/dovecot/master-users driver = passwd-file master = yes } passdb { args = scheme=PLAIN username_format=%u /etc/dovecot/shadow-sieve driver = passwd-file } passdb { args = scheme=CRYPT username_format=%u /etc/dovecot/shadow-orokorrak driver = passwd-file } passdb { args = scheme=PLAIN username_format=%u /etc/dovecot/shadow-incidencias driver = passwd-file } passdb { args = /etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { quota = dict:User quota::file:%h/dovecot-quota quota_rule = *:storage=1024M quota_warning = storage=90%% quota-warning 90 %u quota_warning2 = storage=80%% quota-warning 80 %u sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_extensions = +imapflags zlib_save = gz zlib_save_level = 9 } protocols = imap pop3 sieve lmtp service auth-worker { user = dovecot } service auth { client_limit = 8192 unix_listener auth-userdb { mode = 0600 user = dovecot } } service doveadm { inet_listener { port = 4444 } } service imap-login { chroot = login process_limit = 512 process_min_avail = 16 service_count = 0 user = dovecot } service imap { process_limit = 4096 } service lmtp { executable = lmtp -L inet_listener ltmp { address = buzones2 127.0.0.1 port = 24 } process_min_avail = 20 unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } service managesieve-login { user = dovecot } service pop3-login { chroot = login service_count = 1 user = dovecot } service quota-warning { executable = script /usr/local/scripts/aviso_quotas/quota_warning.sh unix_listener quota-warning { mode = 0666 user = dovecot } user = root } ssl_cert = References: <20131113142325.GA19755@joseba.lg.ehu.es> <52839311.4000200@mie.utoronto.ca> <20131113150520.GA20720@joseba.lg.ehu.es> Message-ID: <5283A089.2070604@mie.utoronto.ca> On 11/13/13 10:05 AM, Joseba Torre wrote: > On Wed, Nov 13, 2013 at 09:56:17AM -0500, Oscar del Rio wrote: >> On 11/13/13 09:23 AM, Joseba Torre wrote: >>> in the last days, probably since I upgraded to 2.2.7, I'm seeing lots of >>> deleted messages reappearing in my folders. This is after this error in >>> the log: >> You should post more details, such as what kind of storage you are >> using (NFS?) and your dovecot configuration. > Yes, I'm using NFS, but this exact configuration has been working for a > long time and I've never seen this error previously. That's why I think > it's related to the upgrade. Sometimes configuration problems only reveal themselves after upgrades to the software or the OS. > Anyway, here is my conf > > # 2.2.7: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-358.23.2.el6.x86_64 x86_64 Red Hat Enterprise Linux Server release 6.4 (Santiago) > auth_cache_negative_ttl = 5 mins > auth_cache_size = 10 M > auth_master_user_separator = * > default_client_limit = 4000 > default_process_limit = 500 > first_valid_uid = 200 > lda_mailbox_autocreate = yes > lock_method = dotlock > login_trusted_networks = ip1,ip2 > mail_plugins = quota > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave imapflags > No mail_location or index defined? (or you trimmed the post?) Don't you need "mmap_disable = yes" with NFS? http://wiki2.dovecot.org/NFS I had similar errors when deploying dovecot for the first time and didn't use the correct NFS settings listed in the above page. From marc at perkel.com Wed Nov 13 22:41:35 2013 From: marc at perkel.com (Marc Perkel) Date: Wed, 13 Nov 2013 12:41:35 -0800 Subject: [Dovecot] Dovecot login slow Message-ID: <5283E3FF.4030908@perkel.com> Can't figure out why the login is slow. I telnet to port 143 on localhost. I type: 0 login user password Takes about 10 seconds and it lets me in. I'm using MYSQL and it's a small indexed database on a fast server so it's not the mysql query that's slowing it down. At least I don't think it is. But - kind of stumped. Just wondering if there's something obvious I'm overlooking. From noel.butler at ausics.net Thu Nov 14 00:30:33 2013 From: noel.butler at ausics.net (Noel Butler) Date: Thu, 14 Nov 2013 08:30:33 +1000 Subject: [Dovecot] Dovecot 2.0.9 Quota Limit issues In-Reply-To: <52826CA7.7050008@marshallelectronics.net> References: <52826CA7.7050008@marshallelectronics.net> Message-ID: <1384381833.3786.7.camel@tardis> On Tue, 2013-11-12 at 10:00 -0800, David Johnson wrote: > Hello, > > I've tried searching for information regarding this problem but haven't > found anything. > > Currently I have a Dovecot 2.0.9 with virtual users from a SQL table. > Right now I'm only using global quota limits. Here is my quota setup: > 2.0.9 is ancient and unsupported, but if it aint broke, who cares, so.... > plugin { > quota = maildir:User quota > quota_rule = *:storage=3G > quota_rule2 = Trash:storage=+100M > quota_rule3 = Archive:storage=+1G > quota_rule4 = Archive/2013:storage=+1G > quota_rule5 = Junk:ignore Have you tried commenting out the Archive/2013 rule? This might be the conflict, its like saying OS / = 1G but /home can have 3, kinda of doesnt work :) the rest looks ok to me > According to the documentation this should allow the Archive folder to > have an additional 1G in it that is not counted toward the global 3G. > However I have users who have 2G in the Archive folder, and about 1G > elsewhere. At this point they stop receiving emails due to quota exceeded. > > doveadm quota get -u > displays this: > Quota name Type Value Limit % > User quota STORAGE 3150312 3145728 100 > User quota MESSAGE 8271 - 0 > > If I change Archive:storage=+1G to Archive:ignore then they can receive > emails again. > After the change doveadm quota get -u displays this: > > Quota name Type Value Limit % > User quota STORAGE 1266885 3145728 40 > User quota MESSAGE 8271 - 0 > > Is there something I'm missing as to why this setup isn't working? > > Thanks! > > -- > David J. -------------- next part -------------- A non-text attachment was scrubbed... Name: face-smile.png Type: image/png Size: 873 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From david.johnson at marshallelectronics.net Thu Nov 14 00:46:00 2013 From: david.johnson at marshallelectronics.net (David Johnson) Date: Wed, 13 Nov 2013 14:46:00 -0800 Subject: [Dovecot] Dovecot 2.0.9 Quota Limit issues In-Reply-To: <1384381833.3786.7.camel@tardis> References: <52826CA7.7050008@marshallelectronics.net> <1384381833.3786.7.camel@tardis> Message-ID: <52840128.5000903@marshallelectronics.net> On 11/13/2013 2:30 PM, Noel Butler wrote: > On Tue, 2013-11-12 at 10:00 -0800, David Johnson wrote: > >> Hello, >> >> I've tried searching for information regarding this problem but haven't >> found anything. >> >> Currently I have a Dovecot 2.0.9 with virtual users from a SQL table. >> Right now I'm only using global quota limits. Here is my quota setup: >> > > 2.0.9 is ancient and unsupported, but if it aint broke, who cares, > so.... > > >> plugin { >> quota = maildir:User quota >> quota_rule = *:storage=3G >> quota_rule2 = Trash:storage=+100M >> quota_rule3 = Archive:storage=+1G >> quota_rule4 = Archive/2013:storage=+1G >> quota_rule5 = Junk:ignore > > Have you tried commenting out the Archive/2013 rule? This might be the > conflict, its like saying OS / = 1G but /home can have 3, kinda of > doesnt work :) > the rest looks ok to me > > Yes, I have. In fact I started with it like that, but it doesn't seem to affect subfolders. I tested this with having just the rule: quota_rule3 = Archive:ignored Afterwards I recalculated the maildirsize and the size didn't decrease. The user in question had nothing in "Archive" but insead had it all in a subfolder of Archive called 2013(standard formatting across all users). There was about 1.5G in the 2013 folder. So from that testing it seemed as though it wasn't affecting subfolders. Is it supposed to? I couldn't find information on this one way or the other, so I had figured it only worked on the folder I specified. One thing I've noticed is that the user's email folder structure is like so: Maildir .Folder .Folder.Subfolder The Maildir folder is the inbox, and contains all emails within that. All other folders, while not displayed via imap as subfolders of inbox are in fact folders inside the Maildir filestructure wise. Could this be causing the Archive folders to count towards the Inbox folder even though they are supposed to be separate? Similarly this would also explain why subfolders aren't counted toward their parent, since in the filestructure they are all under inbox instead of inside their parent folder. This seems counter to how any help file I've found on these various sytems describes it though. Anything else I can check? -- David J. From marc at perkel.com Thu Nov 14 00:57:03 2013 From: marc at perkel.com (Marc Perkel) Date: Wed, 13 Nov 2013 14:57:03 -0800 Subject: [Dovecot] Dovecot login slow In-Reply-To: <5283E3FF.4030908@perkel.com> References: <5283E3FF.4030908@perkel.com> Message-ID: <528403BF.1070402@perkel.com> On 11/13/2013 12:41 PM, Marc Perkel wrote: > Can't figure out why the login is slow. I telnet to port 143 on > localhost. I type: > > 0 login user password > > Takes about 10 seconds and it lets me in. I'm using MYSQL and it's a > small indexed database on a fast server so it's not the mysql query > that's slowing it down. At least I don't think it is. But - kind of > stumped. Just wondering if there's something obvious I'm overlooking. > Here's my dovecot -n listing. Not using PAM # 2.2.7: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-042stab083.2 x86_64 CentOS release 6.4 (Final) ext4 auth_master_user_separator = * auth_mechanisms = login plain disable_plaintext_auth = no first_valid_uid = 12 info_log_path = /var/log/dovecot.log log_path = /var/log/dovecot.log login_greeting = Computer Tyme Dovecot ready. mail_fsync = never mail_gid = mail mail_location = maildir:/vhome/%d/home/%n:INDEX=/email/imap-cache/%d-%n mail_uid = mail passdb { args = /etc/dovecot/sql.conf driver = sql } passdb { args = /etc/dovecot/master-combined-sql.conf driver = sql master = yes pass = yes } protocols = imap pop3 service anvil { client_limit = 20000 } service auth { client_limit = 20000 unix_listener auth-client { mode = 0666 } unix_listener auth-master { mode = 0666 } } service imap-login { process_limit = 4000 process_min_avail = 30 service_count = 0 } service imap { process_limit = 4000 } service pop3-login { process_limit = 2000 process_min_avail = 20 service_count = 0 } service pop3 { process_limit = 2000 } ssl_ca = References: <5283E3FF.4030908@perkel.com> <528403BF.1070402@perkel.com> Message-ID: ssl_ca = wrote: > > On 11/13/2013 12:41 PM, Marc Perkel wrote: > >> Can't figure out why the login is slow. I telnet to port 143 on >> localhost. I type: >> >> 0 login user password >> >> Takes about 10 seconds and it lets me in. I'm using MYSQL and it's a >> small indexed database on a fast server so it's not the mysql query that's >> slowing it down. At least I don't think it is. But - kind of stumped. Just >> wondering if there's something obvious I'm overlooking. >> >> > Here's my dovecot -n listing. Not using PAM > > # 2.2.7: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-042stab083.2 x86_64 CentOS release 6.4 (Final) ext4 > auth_master_user_separator = * > auth_mechanisms = login plain > disable_plaintext_auth = no > first_valid_uid = 12 > info_log_path = /var/log/dovecot.log > log_path = /var/log/dovecot.log > login_greeting = Computer Tyme Dovecot ready. > mail_fsync = never > mail_gid = mail > mail_location = maildir:/vhome/%d/home/%n:INDEX=/email/imap-cache/%d-%n > mail_uid = mail > passdb { > args = /etc/dovecot/sql.conf > driver = sql > } > passdb { > args = /etc/dovecot/master-combined-sql.conf > driver = sql > master = yes > pass = yes > } > protocols = imap pop3 > service anvil { > client_limit = 20000 > } > service auth { > client_limit = 20000 > unix_listener auth-client { > mode = 0666 > } > unix_listener auth-master { > mode = 0666 > } > } > service imap-login { > process_limit = 4000 > process_min_avail = 30 > service_count = 0 > } > service imap { > process_limit = 4000 > } > service pop3-login { > process_limit = 2000 > process_min_avail = 20 > service_count = 0 > } > service pop3 { > process_limit = 2000 > } > ssl_ca = ssl_cert = ssl_key = verbose_proctitle = yes > protocol imap { > mail_max_userip_connections = 50 > } > protocol pop3 { > pop3_uidl_format = %v.%u > } > > From noel.butler at ausics.net Thu Nov 14 01:08:32 2013 From: noel.butler at ausics.net (Noel Butler) Date: Thu, 14 Nov 2013 09:08:32 +1000 Subject: [Dovecot] OT: not dovecot related Re: trashed In-Reply-To: References: <528347D2.4080105@thelounge.net> Message-ID: <1384384112.3786.45.camel@tardis> On Wed, 2013-11-13 at 20:49 +1000, Nick Edwards wrote: > *yawn* > you just dont get it do you, you have brought EVERYTHING upon > yourself, no one else to blame, only YOU > Please take this off list? or preferentially, stop wasting your time, I spent a couple days off list, and a colleague of mine spent a further few days explaining to him why he was getting kicked off and moderated on so many lists, and blacklisted, he just doesnt care, in his mind, its ok to abuse people for any reason, he refuses to change. As for listed in dnsbl, the same thing would happen if he was reported to spamcop or sorbs, or any other list. Listings are to punish the offenders to force them to mend their ways, it was not just because he was abusing me in private, I filtered him out, but he was reported as (and witnessed to) abusing multiple persons from multiple lists, when it was reported by Fedora list members (as not a subscriber to it my colleague spent some time on their archives, and he is an even bitter jerk over there) directly, and via CC, given his attitude of " I do no wrong ", and his threats of having multiple domains, it was decided his IP range would be listed, this would not likely affect him too much given they are in Austria, and although we do have a couple of German services using it last time I looked, most the users are Asia Pacific, and US with some in UK, meaning, it shouldnt really affect his business, but it will stop his rhetoric spewing into some personal mailboxes in those regions, shame it did not affect his business in a way, because then his employer might force him to change his attitude. Oh, and yes, he was told by myself and others how to get this listing removed - he refuses. The above is informational and not open for any discussion, on, or off-list, I refuse to comment any further on it... or any of his threads really :) > because you make a couple of helpful posts does not give you the right > to continue to abuse everyone like you repeatedly do > +1 -------------- next part -------------- A non-text attachment was scrubbed... Name: face-smile.png Type: image/png Size: 873 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From user+dovecot at localhost.localdomain.org Thu Nov 14 01:10:09 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Wed, 13 Nov 2013 23:10:09 +0000 Subject: [Dovecot] Dovecot login slow In-Reply-To: References: <5283E3FF.4030908@perkel.com> <528403BF.1070402@perkel.com> Message-ID: <528406D1.2070003@localhost.localdomain.org> On 11/13/2013 11:01 PM Muzaffer Tolga Ozses wrote: > ssl_ca = ssl_cert = ssl_key = > These lines look weird to me. Why do they have a < ? Because Marc uses Dovecot >= v2.0.0 Regards, Pascal -- The trapper recommends today: c01dcofe.1331800 at localdomain.org From marc at perkel.com Thu Nov 14 01:17:34 2013 From: marc at perkel.com (Marc Perkel) Date: Wed, 13 Nov 2013 15:17:34 -0800 Subject: [Dovecot] Dovecot login slow In-Reply-To: <528403BF.1070402@perkel.com> References: <5283E3FF.4030908@perkel.com> <528403BF.1070402@perkel.com> Message-ID: <5284088E.4000808@perkel.com> More information .... When i telnet to localhost on 143 it takes 10-15 seconds to log in. but .... When I telnet to the host name of the server it logs in instantly. Why would it be slow on localhost by fast on the server's IP address? From user+dovecot at localhost.localdomain.org Thu Nov 14 01:28:20 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Wed, 13 Nov 2013 23:28:20 +0000 Subject: [Dovecot] Dovecot login slow In-Reply-To: <5284088E.4000808@perkel.com> References: <5283E3FF.4030908@perkel.com> <528403BF.1070402@perkel.com> <5284088E.4000808@perkel.com> Message-ID: <52840B14.5050303@localhost.localdomain.org> On 11/13/2013 11:17 PM Marc Perkel wrote: > More information .... > > When i telnet to localhost on 143 it takes 10-15 seconds to log in. > > but .... > > When I telnet to the host name of the server it logs in instantly. > > Why would it be slow on localhost by fast on the server's IP address? > Sounds like a DNS lookup problem. Did you list all related ip addresses in /etc/hosts? Regards, Pascal -- The trapper recommends today: c01dcofe.1331800 at localdomain.org From h.reindl at thelounge.net Thu Nov 14 01:40:21 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 14 Nov 2013 00:40:21 +0100 Subject: [Dovecot] OT: not dovecot related Re: trashed In-Reply-To: <1384384112.3786.45.camel@tardis> References: <528347D2.4080105@thelounge.net> <1384384112.3786.45.camel@tardis> Message-ID: <52840DE5.1090905@thelounge.net> Am 14.11.2013 00:08, schrieb Noel Butler: > As for listed in dnsbl, the same thing would happen if he was reported > to spamcop or sorbs, or any other list. Listings are to punish the > offenders to force them to mend their ways no, they are for block mass mails and junk not for playing internet police because oyu disklike someone personally > it was not just because he was abusing me in private, I filtered him out which is your right > and his threats of having multiple domains, it was decided his > IP range would be listed in case of a @gmail-address you would be too cowardly to block all google ranges > when it was reported by Fedora list members (as not a subscriber to it my > colleague spent some time on their archives, and he is an even bitter > jerk over there) that must be the reason for https://www.google.com/search?q=please+discontinue+to+moderate+Haralds+posts > because then his employer might force him to change his attitude you must feel really good by misuse you pwoer as RBL admin > The above is informational and not open for any discussion, on, or > off-list, I refuse to comment any further on it... or any of his threads > really :) and you believe someone takes you really serious in case of this behavior "hey, i creep out of my hole to say sinething because a stripped quote and go back in ignore mode not looking left or right"? in which world do you live that you really think you need to protect it? yes, i know, you do ignore my posts - and that is why you better should have been quite instead speak in my direction, if you have something to say accept answers or do not say anything at all -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From spork at bway.net Thu Nov 14 01:44:41 2013 From: spork at bway.net (Charles Sprickman) Date: Wed, 13 Nov 2013 18:44:41 -0500 Subject: [Dovecot] OT: not dovecot related Re: trashed In-Reply-To: <52840DE5.1090905@thelounge.net> References: <528347D2.4080105@thelounge.net> <1384384112.3786.45.camel@tardis> <52840DE5.1090905@thelounge.net> Message-ID: <07D6598B-D044-4EAF-B5B3-FEDA28518921@bway.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 One thing I enjoy about the Postfix lists is that when Wietse steps in and tells people to STFU, they do. Ignoring Timo's request to do the same is disrespecting him and his work. Charles On Nov 13, 2013, at 6:40 PM, Reindl Harald wrote: > > Am 14.11.2013 00:08, schrieb Noel Butler: >> As for listed in dnsbl, the same thing would happen if he was reported >> to spamcop or sorbs, or any other list. Listings are to punish the >> offenders to force them to mend their ways > > no, they are for block mass mails and junk not for playing internet > police because oyu disklike someone personally > >> it was not just because he was abusing me in private, I filtered him out > > which is your right > >> and his threats of having multiple domains, it was decided his >> IP range would be listed > > in case of a @gmail-address you would be too cowardly to block all google ranges > >> when it was reported by Fedora list members (as not a subscriber to it my >> colleague spent some time on their archives, and he is an even bitter >> jerk over there) > > that must be the reason for https://www.google.com/search?q=please+discontinue+to+moderate+Haralds+posts > >> because then his employer might force him to change his attitude > > you must feel really good by misuse you pwoer as RBL admin > >> The above is informational and not open for any discussion, on, or >> off-list, I refuse to comment any further on it... or any of his threads >> really :) > > and you believe someone takes you really serious in case of this behavior > "hey, i creep out of my hole to say sinething because a stripped quote and > go back in ignore mode not looking left or right"? > > in which world do you live that you really think you need to protect it? > yes, i know, you do ignore my posts - and that is why you better should > have been quite instead speak in my direction, if you have something > to say accept answers or do not say anything at all > -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.19 (Darwin) Comment: GPGTools - http://gpgtools.org iQEcBAEBAgAGBQJShA7rAAoJEMfwH0dqLIp2IW4IAKOt/CHG+DHnvCJ+uqaoYe5d iEvkqwvec0gx44I4VlrpmyDBgUC+VmFFghjFkWvN2fNKLegKvqsE+VelqyROnAc0 7XEBgeJLI6dRC1aS2c2mlPlaIaK/evqi5wxZfmWlVBCA0UGK1/n3qJlaNsCzTi7L n36PNlOgGjMqkm6d5LcDBByQB6ma9vJo1On0cRVay6epDdHIZDUMDP7DvsM9zXch oARgbWWD51chKJ3s+4BFkZi16ly314niMqJeWFltdjZtayLcrtT5WVHD36NOVdYM jpWGqk4j3dK22atjRrHRmPYhbGavfCJL8txLrvJV9wrCvbc9q2HaoCCWx5AFpmo= =fy79 -----END PGP SIGNATURE----- From h.reindl at thelounge.net Thu Nov 14 01:47:42 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 14 Nov 2013 00:47:42 +0100 Subject: [Dovecot] OT: not dovecot related Re: trashed In-Reply-To: <07D6598B-D044-4EAF-B5B3-FEDA28518921@bway.net> References: <528347D2.4080105@thelounge.net> <1384384112.3786.45.camel@tardis> <52840DE5.1090905@thelounge.net> <07D6598B-D044-4EAF-B5B3-FEDA28518921@bway.net> Message-ID: <52840F9E.8010506@thelounge.net> and why did you not respond exactly the same to Noel Butler? Am 14.11.2013 00:44, schrieb Charles Sprickman: > One thing I enjoy about the Postfix lists is that when Wietse steps in > and tells people to STFU, they do. > > Ignoring Timo's request to do the same is disrespecting him and his work. > > Charles > > On Nov 13, 2013, at 6:40 PM, Reindl Harald wrote: > > >> Am 14.11.2013 00:08, schrieb Noel Butler: >>> As for listed in dnsbl, the same thing would happen if he was reported >>> to spamcop or sorbs, or any other list. Listings are to punish the >>> offenders to force them to mend their ways > >> no, they are for block mass mails and junk not for playing internet >> police because oyu disklike someone personally > >>> it was not just because he was abusing me in private, I filtered him out > >> which is your right > >>> and his threats of having multiple domains, it was decided his >>> IP range would be listed > >> in case of a @gmail-address you would be too cowardly to block all google ranges > >>> when it was reported by Fedora list members (as not a subscriber to it my >>> colleague spent some time on their archives, and he is an even bitter >>> jerk over there) > >> that must be the reason for https://www.google.com/search?q=please+discontinue+to+moderate+Haralds+posts > >>> because then his employer might force him to change his attitude > >> you must feel really good by misuse you pwoer as RBL admin > >>> The above is informational and not open for any discussion, on, or >>> off-list, I refuse to comment any further on it... or any of his threads >>> really :) > >> and you believe someone takes you really serious in case of this behavior >> "hey, i creep out of my hole to say sinething because a stripped quote and >> go back in ignore mode not looking left or right"? > >> in which world do you live that you really think you need to protect it? >> yes, i know, you do ignore my posts - and that is why you better should >> have been quite instead speak in my direction, if you have something >> to say accept answers or do not say anything at all -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From jtam.home at gmail.com Thu Nov 14 01:49:19 2013 From: jtam.home at gmail.com (Joseph Tam) Date: Wed, 13 Nov 2013 15:49:19 -0800 (PST) Subject: [Dovecot] Dovecot login slow In-Reply-To: References: Message-ID: > ssl_ca = ssl_cert = ssl_key = > These lines look weird to me. Why do they have a < ? Red herring; this is standard. I think it means "feed this file into stdin". On 11/13/2013 12:41 PM, Marc Perkel wrote: >>> Takes about 10 seconds and it lets me in. I'm using MYSQL and it's a >>> small indexed database on a fast server so it's not the mysql query that's >>> slowing it down. At least I don't think it is. But - kind of stumped. Just >>> wondering if there's something obvious I'm overlooking. I think maybe turning up the verbosity on logging will help. If that doesn't, try process tracing the dovecot auth process. Joseph Tam From me at junc.eu Thu Nov 14 02:00:51 2013 From: me at junc.eu (Benny Pedersen) Date: Thu, 14 Nov 2013 01:00:51 +0100 Subject: [Dovecot] Dovecot login slow In-Reply-To: <5284088E.4000808@perkel.com> References: <5283E3FF.4030908@perkel.com> <528403BF.1070402@perkel.com> <5284088E.4000808@perkel.com> Message-ID: Marc Perkel skrev den 2013-11-14 00:17: > More information .... > > When i telnet to localhost on 143 it takes 10-15 seconds to log in. > > but .... > > When I telnet to the host name of the server it logs in instantly. > > Why would it be slow on localhost by fast on the server's IP address? make localdomain dns works check /etc/hosts # incorrect example 127.0.0.1 localhost localhost.localdomain # correct example 127.0.0.1 localhost.localdomain localhost note there is also local tld depending on how centos payed attention :( and add ip / hostnames for dns entries that is not known on boot when named is not yet ready to serve, but still is static under control of you 80.162.68.54 duggi.junc.org duggi ...... more lines if you need one more :) imho this is the problem is you have dns issues that timeout, nothing beats localhost on dns, so if its not on localhost you know why it takes time remember the same for ipv6 btw and drop port 143 and change to port 993 if you are pro :=) From marc at perkel.com Thu Nov 14 02:13:04 2013 From: marc at perkel.com (Marc Perkel) Date: Wed, 13 Nov 2013 16:13:04 -0800 Subject: [Dovecot] Dovecot login slow In-Reply-To: <52840B14.5050303@localhost.localdomain.org> References: <5283E3FF.4030908@perkel.com> <528403BF.1070402@perkel.com> <5284088E.4000808@perkel.com> <52840B14.5050303@localhost.localdomain.org> Message-ID: <52841590.4040707@perkel.com> On 11/13/2013 3:28 PM, Pascal Volk wrote: > On 11/13/2013 11:17 PM Marc Perkel wrote: >> More information .... >> >> When i telnet to localhost on 143 it takes 10-15 seconds to log in. >> >> but .... >> >> When I telnet to the host name of the server it logs in instantly. >> >> Why would it be slow on localhost by fast on the server's IP address? >> > Sounds like a DNS lookup problem. Did you list all related ip addresses > in /etc/hosts? > > > Regards, > Pascal I does act like a DNS problem but why is DNS involved? It doesn't have a delay in connecting. It's the login that's slow. From me at junc.eu Thu Nov 14 02:34:17 2013 From: me at junc.eu (Benny Pedersen) Date: Thu, 14 Nov 2013 01:34:17 +0100 Subject: [Dovecot] Dovecot login slow In-Reply-To: <52841590.4040707@perkel.com> References: <5283E3FF.4030908@perkel.com> "<528403BF.1070402@perkel.com>" <5284088E.4000808@perkel.com> <52840B14.5050303@localhost.localdomain.org> <52841590.4040707@perkel.com> Message-ID: <94b981d1e30c5ffaa9c73a0505e4641c@junc.eu> Marc Perkel skrev den 2013-11-14 01:13: > I does act like a DNS problem but why is DNS involved? It doesn't have > a delay in connecting. It's the login that's slow. you use a auth that depends on fast dns ? lost now how your dovecot -n was are we sure its dns at all ?, i see the INDEX on another path then MAILDIR was, is it 2 diff harddisk drives ? is it running on shared resources ? From skdovecot at smail.inf.fh-brs.de Thu Nov 14 09:25:43 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 14 Nov 2013 08:25:43 +0100 (CET) Subject: [Dovecot] Dovecot login slow In-Reply-To: <528403BF.1070402@perkel.com> References: <5283E3FF.4030908@perkel.com> <528403BF.1070402@perkel.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 13 Nov 2013, Marc Perkel wrote: > On 11/13/2013 12:41 PM, Marc Perkel wrote: >> Can't figure out why the login is slow. I telnet to port 143 on localhost. >> I type: >> >> 0 login user password I would: + add to conf: auth_debug = yes auth_verbose = yes mail_debug = yes + tail -F /var/log/dovecot.log + telnet & login and monitor the debug lines to get to know, if the delay comes before auth. If you see userdb log entries before the delay, it is most likely not the DNS. Do you have the MTA on the same server? If so, a local caching DNS server is good as well. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUoR6+F3r2wJMiz2NAQLC7Qf9GDbL3+FH+zuVbsFmwJCCpVfB0RRsIuWI izaipGz8kynkwIlNqzw8zruTRk09LAZYU/V9DGrIC5nsum4fiW/1bpErfS2vE7F6 F9kLZzcOXoZsQyzqugFa6N4z8s/FPCFeC62yAGRzm1RpsUvf165UIdQuPNRxZjwi Kd5yTqL4gjnNC6uQsAtNHRo9FKkTn32QsmygUZkwv+jL9ZWsPoye6ypLxa7lvuY5 Oyohcz/bLMH6z8G6mxXW9o5B5bVVgf86JdDp34iM8iedejuMMWP6PcqSmNcYc1Ab XZavggfX5nBKqVshUU2quQI/ufqPUCZqecFmEd8vAgha3182T56xeg== =ZQZR -----END PGP SIGNATURE----- From nick.z.edwards at gmail.com Thu Nov 14 09:38:39 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Thu, 14 Nov 2013 17:38:39 +1000 Subject: [Dovecot] trashed In-Reply-To: <52835B04.2080203@thelounge.net> References: <528347D2.4080105@thelounge.net> <52835B04.2080203@thelounge.net> Message-ID: On 11/13/13, Reindl Harald wrote: > well, than you can't be in a important operations centre because > if so you would not be permitted to make such a stupid decision > at your own for anybody else > you're very correct, we only have about 31 thousand shared web hosts, 705 thousand DSL customers and a few thousand satellite, ISDN and dialup customers, so true, we are not that big, but you dont have to be big to protect people from your abusive crap. >> and you need oi be reminded of why blacklists are there > > blacklists are to drop message from spam-servers > WRONG Go do some homework, blacklists have since their inception, had multiple lists, varying from stopping dynamic users sending mail, spammers, fraudsters, ABUSIVE TOSSERS, open relays, to name but only some, I do not know where you got the notion they are only for blocking spammers, but you are sadly mistaken. > even a 5 yo child understands that blocking complete class C networks > because someone does not like a single person means you are not > qualified to be responsible for any production server > hello brick wall please to meet you I said hello brick wall, please to meet you helooooo brickkk walllllllll oh fine. .. well, I might as well be talking to a brick wall, because it would listen as much .. no, probably more than you do. *sigh* From joseba.torre at ehu.es Thu Nov 14 11:05:32 2013 From: joseba.torre at ehu.es (Joseba Torre) Date: Thu, 14 Nov 2013 10:05:32 +0100 Subject: [Dovecot] Deleted messages reappearing In-Reply-To: <5283A089.2070604@mie.utoronto.ca> References: <20131113142325.GA19755@joseba.lg.ehu.es> <52839311.4000200@mie.utoronto.ca> <20131113150520.GA20720@joseba.lg.ehu.es> <5283A089.2070604@mie.utoronto.ca> Message-ID: <5284925C.9000401@ehu.es> El 13/11/13 16:53, Oscar del Rio escribi?: > On 11/13/13 10:05 AM, Joseba Torre wrote: >> On Wed, Nov 13, 2013 at 09:56:17AM -0500, Oscar del Rio wrote: >>> On 11/13/13 09:23 AM, Joseba Torre wrote: >>>> in the last days, probably since I upgraded to 2.2.7, I'm seeing >>>> lots of >>>> deleted messages reappearing in my folders. This is after this error in >>>> the log: >>> You should post more details, such as what kind of storage you are >>> using (NFS?) and your dovecot configuration. >> Yes, I'm using NFS, but this exact configuration has been working for a >> long time and I've never seen this error previously. That's why I think >> it's related to the upgrade. > > Sometimes configuration problems only reveal themselves after upgrades > to the software or the OS. > >> Anyway, here is my conf >> >> # 2.2.7: /etc/dovecot/dovecot.conf >> # OS: Linux 2.6.32-358.23.2.el6.x86_64 x86_64 Red Hat Enterprise Linux >> Server release 6.4 (Santiago) >> auth_cache_negative_ttl = 5 mins >> auth_cache_size = 10 M >> auth_master_user_separator = * >> default_client_limit = 4000 >> default_process_limit = 500 >> first_valid_uid = 200 >> lda_mailbox_autocreate = yes >> lock_method = dotlock >> login_trusted_networks = ip1,ip2 >> mail_plugins = quota >> managesieve_notify_capability = mailto >> managesieve_sieve_capability = fileinto reject envelope >> encoded-character vacation subaddress comparator-i;ascii-numeric >> relational regex imap4flags copy include variables body enotify >> environment mailbox date ihave imapflags >> > > No mail_location or index defined? (or you trimmed the post?) No, this machine is the server from some users in my department but also the testing machine, and most users are using maildir while I use mdbox. After some tests, I found out that dovecot autodiscovery was the easiest solution for this. > Don't you need "mmap_disable = yes" with NFS? > http://wiki2.dovecot.org/NFS No, if only 1 server is accesing a given user mailbox, you don't need that (and this is my case because I'm using director) > > I had similar errors when deploying dovecot for the first time and > didn't use the correct NFS settings listed in the above page. > Forget this. Some days ago I changed de passdb query to allow users to connect using both the full mail address and the old identifier (which is not related to de mail address). But in my case, if I connect using my e-mail address director sends me to one server, and with my old id (that is being used by lmtp) to the other one. So I have 2 different server accessing 1 mailbox, and the problems are normal. By now, I'll go back to only accept the old id. Is there any way to tell director that old_id and joseba.torre at ehu.es are the same user (and should be directed to the same server)? My current conf for my directors is attached # 2.2.7: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-358.23.2.el6.x86_64 x86_64 Red Hat Enterprise Linux Server release 6.4 (Santiago) auth_master_user_separator = * auth_verbose = yes director_mail_servers = server1 server2 director_servers = director1 director2 director_username_hash = %n doveadm_port = 4444 lmtp_proxy = yes mail_debug = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = proxy=y nopassword=y starttls=any-cert driver = static } plugin { sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 lmtp sieve service auth { unix_listener auth-userdb { user = dovecot } } service director { fifo_listener login/proxy-notify { mode = 0666 } inet_listener { port = 3333 } unix_listener director-userdb { mode = 0600 } unix_listener login/director { mode = 0666 } } service doveadm { inet_listener { port = 4444 } } service imap-login { executable = imap-login director } service lmtp { inet_listener ltmp { address = director1 127.0.0.1 port = 24 } unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } service managesieve-login { executable = managesieve-login director vsz_limit = 128 M } service pop3-login { executable = pop3-login director } ssl_cert = < certificado_ordenado_2013.crt ssl_key = < privatekey_2013.pem syslog_facility = local1 userdb { args = allow_allusers=yes driver = static } userdb { args = /etc/dovecot/dovecot-ldap.conf.ext driver = ldap } protocol lmtp { auth_socket_path = director-userdb mail_plugins = " sieve" syslog_facility = local2 } protocol doveadm { auth_socket_path = director-userdb } From bind at enas.net Thu Nov 14 11:33:01 2013 From: bind at enas.net (Urban Loesch) Date: Thu, 14 Nov 2013 10:33:01 +0100 Subject: [Dovecot] Experience with ALTStorage on NFS mount Message-ID: <528498CD.2090308@enas.net> Hi, we are thinking about storing older mails (eg. safed before 6 months) to an alternative storage mounted via NFS from an external storage box. Some technical details - the storage will be connected via 1 gbit ethernet. Access will be allowed from different dovecot servers, but only to divided directories for each dovecot. - storage has the option to use RAID 5 or 6. Max. amount of Disks are 15. - the index files and the primary storage are just divided in two different directories and are stored local on SAS disks with RAID 10 - current mail_location config is: mdbox:/home/vmail/%d/%n:INDEX=/home/dovecotindex/%d/%n - future mail_location config shoudl look like: mdbox:/home/vmail/%d/%n:INDEX=/home/dovecotindex/%d/%n:ALT=/home/extstorage/vmail/%d/%n My question is, if someone of you have already experience in such a setup with NFS? And are there some tuning tips for NFS? We have not many experience with NFS right now. Or perhaps is there some better solution? Many thanks and regards Urban From ghilt at shadowprojects.org Thu Nov 14 13:12:44 2013 From: ghilt at shadowprojects.org (Guillaume Hilt) Date: Thu, 14 Nov 2013 12:12:44 +0100 Subject: [Dovecot] Dovecot antispam unable to call dspam since dovecot upgrade to 2.X Message-ID: <5284B02C.2010205@shadowprojects.org> Hello, Running Gentoo AMD64 2013 with postfix, mysql, dovecot and dspam, i finally upgraded to dovecot 2.X. I'm running dovecot 2.2.6, dspam 3.10.2-r1 and dovecot-antispam-2.0_pre20130429. My DSPAM configuration hasn't changed between dovecot 1.X and 2.X. When i'm moving a mail to or from the Spam folder, Igot this error in my logs : Nov 14 10:33:25 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: dspam error:7751 prefix=imap(ghilt at shadowprojects.org): Nov 14 10:33:25 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: executing /usr/bin/dspam failed: 13 (uid=1001, gid=12) Nov 14 10:33:25 srv1 dovecot: imap: Error: Nov 14 10:33:25 srv1 dovecot: imap: Error: uid 1001 is user vmail (dovecot is running under vmail) gid 12 is group mail (vmail is a member, with mail,postfix,dspam,dovecot,apache) I enabled DSPAMdebug mode and when i move the mail, i don't see anything in the logs, meaning that dspam isn't called at all. Enabling debug in dovecot doesn't give me more informations. Here's my dovecot plugins settings : plugin { #setting_name = value # Selects the specific backend to be used for spam system training antispam_backend = dspam # Specifies whether to allow appending mails to the spam folder # from the unknown source. Optional, default = NO. antispam_allow_append_to_spam = NO # Specifies whether to skip the leading "From " line of the mail # piped to the backend processor. Optional, default = NO. antispam_skip_from_line = NO # semicolon-separated list of spam folders antispam_spam = Spam # semicolon-separated list of Trash folders (default unset i.e. none) antispam_trash = Trash # semicolon-separated list of unsure folders (default unset i.e. none) #antispam_unsure = # mail signature (used with any backend requiring a signature) antispam_signature = X-DSPAM-Signature # specifies what to do if the signature header is missing. Possible # values: "move" (move the mail silently without training), "error" # (display an error stating that the signature header is missing). # Optional, default = "error". antispam_signature_missing = error # specifies the path to the dspam client binary. # Optional, default = "/usr/bin/dspam". antispam_dspam_binary = /usr/bin/dspam # list of command line arguments to the dspam binary. Must include # one "%%s" in order to be replaced with the signature value. # Optional, default = "--source=error;--signature=%%s". antispam_dspam_args = --user;%u;--deliver=;--source=error;--signature=%%s # command line argument to specify that mail should be reclassified # as SPAM. Optional, default = "--class=spam". antispam_dspam_spam = --class=spam # command line argument to specify that mail should be reclassified # as not SPAM. Optional, default = "--class=innocent". antispam_dspam_notspam = --class=innocent # specifies the mail header name to derive the classification result. # Optional, default = NONE. antispam_dspam_result_header = X-DSPAM-Result # specifies the list of classification results to avoid retraining # for. Optional, default = NONE. #antispam_dspam_result_blacklist = Virus;Blocklisted;Blacklisted } USE flags : [I] mail-filter/dovecot-antispam Available versions: (~)2.0_pre20120226 (~)2.0_pre20130429 Installed versions: 2.0_pre20130429(12:26:34 04/11/2013) Homepage: http://wiki2.dovecot.org/Plugins/Antispam/ Description: A dovecot antispam plugin supporting multiple backends [I] net-mail/dovecot Available versions: 2.0.19 2.1.9 2.1.16 (~)2.1.17 2.2.5 (~)2.2.6 {bzip2 caps cydir doc imapc ipv6 kerberos ldap lucene +maildir managesieve mbox mdbox mysql pam pop3c postgres sdbox selinux sieve solr sqlite (+)ssl static-libs suid tcpd vpopmail zlib} Installed versions: 2.2.6(12:26:15 04/11/2013)(bzip2 ipv6 maildir managesieve mysql pam sieve ssl tcpd zlib -caps -cydir -doc -imapc -kerberos -ldap -lucene -mbox -mdbox -pop3c -postgres -sdbox -selinux -solr -sqlite -static-libs -suid -vpopmail) Homepage: http://www.dovecot.org/ Description: An IMAP and POP3 server written with security primarily in mind [I] mail-filter/dspam Available versions: 3.10.2-r1 {clamav daemon debug +domain-scale +hash large-scale ldap mysql postgres small-scale sqlite static-libs syslog user-homedirs virtual-users} Installed versions: 3.10.2-r1(10:08:06 14/11/2013)(clamav daemon domain-scale mysql syslog virtual-users -debug -hash -large-scale -ldap -postgres -small-scale -sqlite -static-libs -user-homedirs) Homepage: http://dspam.sourceforge.net/ Description: A statistical-algorithmic hybrid anti-spam filter DSPAM binary is owned by dspam (chmod u+s) : -r-s--x--- 1 dspam dspam 96K 14 nov. 10:08 /usr/bin/dspam And all the necessary users are trusted by DSPAM : Trust root Trust dspam Trust apache Trust mail Trust mailnull Trust smmsp Trust daemon Trust vmail Trust dovecot Trust postfix Any idea ? Thanks, -- Guillaume Hilt From amateo at um.es Thu Nov 14 15:27:39 2013 From: amateo at um.es (Angel L. Mateo) Date: Thu, 14 Nov 2013 14:27:39 +0100 Subject: [Dovecot] Autocreation of sieve filters Message-ID: <5284CFCB.3030808@um.es> Hello, Is there any way to create a predefined sieve filters during mailbox autocreation? What I want is that my user's mailboxes are automatically created (using mailbox option in namespaces) but I want them to have a predefined sieve script. Using a postlogin script could be an idea, but I'd prefer an automatic one, because postlogin only will filter after first user login -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci?n y las Comunicaciones Aplicadas (ATICA) http://www.um.es/atica Tfo: 868887590 Fax: 868888337 From amateo at um.es Thu Nov 14 15:35:52 2013 From: amateo at um.es (Angel L. Mateo) Date: Thu, 14 Nov 2013 14:35:52 +0100 Subject: [Dovecot] Autocreation of sieve filters In-Reply-To: <5284CFCB.3030808@um.es> References: <5284CFCB.3030808@um.es> Message-ID: <5284D1B8.8000503@um.es> El 14/11/13 14:27, Angel L. Mateo escribi?: > Hello, > > Is there any way to create a predefined sieve filters during > mailbox autocreation? > > What I want is that my user's mailboxes are automatically created > (using mailbox option in namespaces) but I want them to have a > predefined sieve script. > > Using a postlogin script could be an idea, but I'd prefer an > automatic one, because postlogin only will filter after first user login > Autoanswer to myself: Use the sieve_default option of sieve plugin. -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci?n y las Comunicaciones Aplicadas (ATICA) http://www.um.es/atica Tfo: 868887590 Fax: 868888337 From rs at sys4.de Thu Nov 14 15:36:53 2013 From: rs at sys4.de (Robert Schetterer) Date: Thu, 14 Nov 2013 14:36:53 +0100 Subject: [Dovecot] Autocreation of sieve filters In-Reply-To: <5284CFCB.3030808@um.es> References: <5284CFCB.3030808@um.es> Message-ID: <5284D1F5.90702@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 14.11.2013 14:27, schrieb Angel L. Mateo: > Hello, > > Is there any way to create a predefined sieve filters during > mailbox autocreation? > > What I want is that my user's mailboxes are automatically created > (using mailbox option in namespaces) but I want them to have a > predefined sieve script. > > Using a postlogin script could be an idea, but I'd prefer an > automatic one, because postlogin only will filter after first user > login > you could use global sieve scripts http://wiki2.dovecot.org/Pigeonhole/Sieve/Configuration and / or if you use something like postfixadmin it has some scripting do execute some bash script after creation of a mailbox etc, if you want a total auto mech ( i.e your mailboxes are auto created with first mail get in ) you may use the sieve pipe extension to run external progs/scripts but perhaps you might get in a hen/egg problem then... Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJShNHvAAoJEP8jBObu0LlEGUMIAJlSAE0P1f53zqrUbib7a603 0uFTkfXE8lTsIxDiHsgpFwZeTHZBglurH/NbzDs/hREPxVR04xj0h+50mT5GO124 McwJWG1gQ1eImVZrZYQ+j9Ayw8SH5QrmLKvmNnYpAKJelNjh5/jrakJmXM2gmZJu obAtb6DeSVEQvuIBwMRNa/fzD3PjIkXcN733XL4pSOABvIZKN5JEeindMCHeLxR1 BvT4GbAV2pHiPEytJ3NF+hNOIpOma4HPjpfjObevC37n8H/bnt15DRqqx4d+7y6a 8ulQ9MgGbXtTIr+efWL+d1kg2kIRJ8GprCvEz24ViSBHsMVXu9QJWhM6QSdaGm8= =qIn5 -----END PGP SIGNATURE----- From rs at sys4.de Thu Nov 14 15:39:03 2013 From: rs at sys4.de (Robert Schetterer) Date: Thu, 14 Nov 2013 14:39:03 +0100 Subject: [Dovecot] Autocreation of sieve filters In-Reply-To: <5284D1B8.8000503@um.es> References: <5284CFCB.3030808@um.es> <5284D1B8.8000503@um.es> Message-ID: <5284D277.4070208@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 14.11.2013 14:35, schrieb Angel L. Mateo: > El 14/11/13 14:27, Angel L. Mateo escribi?: >> Hello, >> >> Is there any way to create a predefined sieve filters during >> mailbox autocreation? >> >> What I want is that my user's mailboxes are automatically >> created (using mailbox option in namespaces) but I want them to >> have a predefined sieve script. >> >> Using a postlogin script could be an idea, but I'd prefer an >> automatic one, because postlogin only will filter after first >> user login >> > Autoanswer to myself: Use the sieve_default option of sieve > plugin. yep looks fine wow , i should inform myself better *g > Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJShNJ3AAoJEP8jBObu0LlEPqcIAJ1qJ4QJ6UOsHJ4CtVptqKO7 nq9GxO52gJJiHwCzR+nEXte9kpLv2HGwR+C/EPeqrv2tK0an53V22KmOf97tj/uO MJt+1AeLwIx7BOxIY2Xfti7Z2kqAZAbB1P2GQwFjd3s252M+8DYpxt4s4U0zN4Js VWut0d2lBw4Cl9QIxPP0RYYA1MC+TrTvP/IPgys6h1LHntD7m4FTPP9HxNG9NRqv HP/xXjAVYBKe1gTnXeOFw132cG5Vf83xqycQXw7lpXUFr2iMof6vI8GJ/4zvvmEG 2YFPWdynih6JnFltr2a2m6m/HIurnvT6T5D7FPfFeSWa8P7zKOcD5g1G+Fril0g= =dqkN -----END PGP SIGNATURE----- From marc at perkel.com Thu Nov 14 06:25:03 2013 From: marc at perkel.com (Marc Perkel) Date: Wed, 13 Nov 2013 20:25:03 -0800 Subject: [Dovecot] Dovecot login slow In-Reply-To: <94b981d1e30c5ffaa9c73a0505e4641c@junc.eu> References: <5283E3FF.4030908@perkel.com> "<528403BF.1070402@perkel.com>" <5284088E.4000808@perkel.com> <52840B14.5050303@localhost.localdomain.org> <52841590.4040707@perkel.com> <94b981d1e30c5ffaa9c73a0505e4641c@junc.eu> Message-ID: <5284509F.4090507@perkel.com> On 11/13/2013 4:34 PM, Benny Pedersen wrote: > Marc Perkel skrev den 2013-11-14 01:13: > >> I does act like a DNS problem but why is DNS involved? It doesn't have >> a delay in connecting. It's the login that's slow. > > you use a auth that depends on fast dns ? > > lost now how your dovecot -n was > > are we sure its dns at all ?, i see the INDEX on another path then > MAILDIR was, is it 2 diff harddisk drives ? > > is it running on shared resources ? > My AUTH depends only on MYSQL. There's no DNS involved. At least not that I can see there should be. So why would localhost take 10-15 seconds to do the login part and coming into the servers IP address is instant. And in both cases the connection itself is instant. It's when I type in the LOGIN command that the delay occurs. # 2.2.7: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-042stab083.2 x86_64 CentOS release 6.4 (Final) ext4 auth_master_user_separator = * auth_mechanisms = login plain disable_plaintext_auth = no first_valid_uid = 12 info_log_path = /var/log/dovecot.log log_path = /var/log/dovecot.log login_greeting = Computer Tyme Dovecot ready. mail_fsync = never mail_gid = mail mail_location = maildir:/vhome/%d/home/%n:INDEX=/email/imap-cache/%d-%n mail_uid = mail passdb { args = /etc/dovecot/sql.conf driver = sql } passdb { args = /etc/dovecot/master-combined-sql.conf driver = sql master = yes pass = yes } protocols = imap pop3 service anvil { client_limit = 20000 } service auth { client_limit = 20000 unix_listener auth-client { mode = 0666 } unix_listener auth-master { mode = 0666 } } service imap-login { process_limit = 4000 process_min_avail = 30 service_count = 0 } service imap { process_limit = 4000 } service pop3-login { process_limit = 2000 process_min_avail = 20 service_count = 0 } service pop3 { process_limit = 2000 } ssl_ca = Hello: I'm loosing my mind trying to classify my outgoing messages with sieve-test (2.0.9, centos 6.4). It came to the point I think it's not even possible with a sieve script. I need to classify my outgoing messages in three folders: 1- To my department (@dept.example.com) 2- To my company (@example.com, @anyotherdept.example.com) (anyotherdept.example.com as in a way to say "any other domain that ends with 'example.com', but not 'dept.example.com'") 3- To the rest of the word (@any.other.domain) The problematic requirement is I need to make a copy in EVERY IMAP folder that applies. For instance: for an email such as ---- From: myuser at dept.example.com To: user at dept.example.com, user at example.com, user at other.domain ... ---- I need to make a copy to all folders: Dept (because of user at dept.example.com), Company (because of user at example.com) and Rest (because of user at other.domain). Rule for #1 is simple: ----- if address :matches :domain "To" "dept.example.com" { fileinto: "Dept"; } ----- Rule for #2, I don't know how to declare it: I don't know how to make a rule that matches "example.com" (or anyotherdept.example.com) and not "dept.example.com". if allof(address :matches :domain "To" "example.com", not address :matches :domain "To" "dept.example.com") { fileinto: "Company"; } ... doesn't work, because user at dept.example.com matches (address :matches :domain "To" "example.com"), but it doesn't matches (not address :matches :domain "To" "dept.example.com"). "user at example.com" matches both conditions, but sieve-test stops on the first email address with a "not matches" As for Rule #3: I don't know how to do it either, it should be the same as Rule #2, (with different parameters of course). A sieve script should be capable to do this, but it seems that I'm loosing something. Does any one knows how to do this? Kind regards Yanko PS: English is not my native language. Please forgive me any mistakes/misspellings/etc I made. From d.parthey at metaways.de Thu Nov 14 20:33:27 2013 From: d.parthey at metaways.de (Daniel Parthey) Date: Thu, 14 Nov 2013 19:33:27 +0100 Subject: [Dovecot] Experience with ALTStorage on NFS mount In-Reply-To: <528498CD.2090308@enas.net> References: <528498CD.2090308@enas.net> Message-ID: Hi Urban I would recommend you to use NFS Version 4 and director instances, especially for such content which is heavily read but seldom written. NFSv4 has way better client-side caching than older NFS versions. You will need to run idmapd on NFS server and client to map usernames between server and client and. Regards Daniel From me at junc.eu Thu Nov 14 21:32:18 2013 From: me at junc.eu (Benny Pedersen) Date: Thu, 14 Nov 2013 20:32:18 +0100 Subject: [Dovecot] Dovecot login slow In-Reply-To: <5284509F.4090507@perkel.com> References: <5283E3FF.4030908@perkel.com> "\"\\\"<528403BF.1070402@perkel.com>\\\" <5284088E.4000808@perkel.com>" <52840B14.5050303@localhost.localdomain.org>" <52841590.4040707@perkel.com> <94b981d1e30c5ffaa9c73a0505e4641c@junc.eu> <5284509F.4090507@perkel.com> Message-ID: <3befa147fdb033dac3ef65fcdda247b9@junc.eu> Marc Perkel skrev den 2013-11-14 05:25: > My AUTH depends only on MYSQL. There's no DNS involved. At least not > that I can see there should be. So why would localhost take 10-15 > seconds to do the login part and coming into the servers IP address is > instant. And in both cases the connection itself is instant. It's when > I type in the LOGIN command that the delay occurs. i cant see what in sql.conf here, never mind, but localhost is a hostname so it needs dns to find the ip, change the hostname in sql.conf to 127.0.0.1 or use socket file instaed of dns if that its, give me a hand ? From rs at sys4.de Thu Nov 14 21:43:57 2013 From: rs at sys4.de (Robert Schetterer) Date: Thu, 14 Nov 2013 20:43:57 +0100 Subject: [Dovecot] Sieve script problem (don't know if is it possible to do this) In-Reply-To: References: Message-ID: <528527FD.8080903@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 14.11.2013 19:17, schrieb Yanko Hern?ndez ?lvarez: > Hello: > > I'm loosing my mind trying to classify my outgoing messages with > sieve-test (2.0.9, centos 6.4). It came to the point I think it's > not even possible with a sieve script. > > I need to classify my outgoing messages in three folders: stop here , filter outgoing mail is not possible yet with sieve, at my current info level, but it may come in future ( but thats a different story ) but your mail client may do copy in different imap folders at send time, or your mailserver may do some kind of sort/copy with i.e bcc feature etc equal stuff was asked before on the list i think , search archive however if i dont unterstand you in the right way, and you want to sort incomming mail feel free to ask again > > 1- To my department (@dept.example.com) 2- To my company > (@example.com, @anyotherdept.example.com) (anyotherdept.example.com > as in a way to say "any other domain that ends with 'example.com', > but not 'dept.example.com'") 3- To the rest of the word > (@any.other.domain) > > The problematic requirement is I need to make a copy in EVERY IMAP > folder that applies. For instance: for an email such as ---- From: > myuser at dept.example.com To: user at dept.example.com, > user at example.com, user at other.domain ... ---- I need to make a copy > to all folders: Dept (because of user at dept.example.com), Company > (because of user at example.com) and Rest (because of > user at other.domain). > > Rule for #1 is simple: ----- if address :matches :domain "To" > "dept.example.com" { fileinto: "Dept"; } ----- > > Rule for #2, I don't know how to declare it: I don't know how to > make a rule that matches "example.com" (or > anyotherdept.example.com) and not "dept.example.com". > > if allof(address :matches :domain "To" "example.com", not address > :matches :domain "To" "dept.example.com") { fileinto: "Company"; } > ... doesn't work, because user at dept.example.com matches (address > :matches :domain "To" "example.com"), but it doesn't matches (not > address :matches :domain "To" "dept.example.com"). > > "user at example.com" matches both conditions, but sieve-test stops > on the first email address with a "not matches" > > As for Rule #3: I don't know how to do it either, it should be the > same as Rule #2, (with different parameters of course). > > A sieve script should be capable to do this, but it seems that I'm > loosing something. Does any one knows how to do this? > > Kind regards Yanko > > PS: English is not my native language. Please forgive me any > mistakes/misspellings/etc I made. > Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJShSf0AAoJEP8jBObu0LlEJtAH/127BkvFTC/00eK6j7xOnGtP NoIGbtYih/ySDMD0COklazVe+36+QWawmIkKLtUmDAYPo5TaSJw5GN40vTl3NYHl mEQpzjAlHW8kPyIvlPiZIKju6PGSzHtJXnOQovFmN2327HwvM2B+nEhccWIhDy0a NtnR3URu5iiFN1yZis2wpCBrriCmT4aFCo7DnTLnED5I4dvychbNehGYUhCi0z69 +IKSl4tplV//lVo4BsHzi/Hk+ewVSZsMgimXVOm6namS8m1l1vAGnsrWbOK4S5KN KTHpE9yrt/cBw+0Cr/ZDry3NEcQw1KxYNyq61oLFYWYPYSvCuBloll2AbSAp8ys= =AhDy -----END PGP SIGNATURE----- From tolga at ozses.net Thu Nov 14 21:53:34 2013 From: tolga at ozses.net (Muzaffer Tolga Ozses) Date: Thu, 14 Nov 2013 21:53:34 +0200 Subject: [Dovecot] Sieve script problem (don't know if is it possible to do this) In-Reply-To: References: Message-ID: Maybe you can do it with postdrop? On 14 Nov 2013 20:18, "Yanko Hern?ndez ?lvarez" wrote: > > Hello: > > I'm loosing my mind trying to classify my outgoing messages with > sieve-test (2.0.9, centos 6.4). It came to the point I think it's not > even possible with a sieve script. > > I need to classify my outgoing messages in three folders: > > 1- To my department (@dept.example.com) > 2- To my company (@example.com, @anyotherdept.example.com) > (anyotherdept.example.com as in a way to say "any other domain that > ends with 'example.com', but not 'dept.example.com'") > 3- To the rest of the word (@any.other.domain) > > The problematic requirement is I need to make a copy in EVERY IMAP > folder that applies. For instance: for an email such as > ---- > From: myuser at dept.example.com > To: user at dept.example.com, user at example.com, user at other.domain > ... > ---- > I need to make a copy to all folders: Dept (because of > user at dept.example.com), Company (because of user at example.com) and Rest > (because of user at other.domain). > > Rule for #1 is simple: > ----- > if address :matches :domain "To" "dept.example.com" { fileinto: "Dept"; } > ----- > > Rule for #2, I don't know how to declare it: I don't know how to make > a rule that matches "example.com" (or anyotherdept.example.com) and > not "dept.example.com". > > if allof(address :matches :domain "To" "example.com", not address > :matches :domain "To" "dept.example.com") { fileinto: "Company"; } > ... doesn't work, because user at dept.example.com matches (address > :matches :domain "To" "example.com"), but it doesn't matches (not > address :matches :domain "To" "dept.example.com"). > > "user at example.com" matches both conditions, but sieve-test stops on > the first email address with a "not matches" > > As for Rule #3: I don't know how to do it either, it should be the > same as Rule #2, (with different parameters of course). > > A sieve script should be capable to do this, but it seems that I'm > loosing something. Does any one knows how to do this? > > Kind regards > Yanko > > PS: English is not my native language. Please forgive me any > mistakes/misspellings/etc I made. From voytek at sbt.net.au Thu Nov 14 22:20:37 2013 From: voytek at sbt.net.au (Voytek) Date: Fri, 15 Nov 2013 07:20:37 +1100 Subject: [Dovecot] Executing a wget? or clicking on a link in inbound email? Message-ID: I use Dovecot, but all I know about Dovecot is that's it is an IMAP server, and, I know that it includes lots of other stuff that I see discussed on this list, but I know nothing about it. I have a situation that, maybe once a week, I get an html only email that contains 3 clickable links. I would like, on receipt of such email, auto click the first link (perhaps execute a wget to do so? or ?) Can something like this be done, which of the tools, what docs to look at? link is like so http://llll.domain.tld/irportal?id=a0000000006hWO4AAM0000000000KlOrcAAF111111114344594&key=f6871234567870e04803ea0cef5c4dbb&resp=1 Dovecot 2.09 Centos (apologies for blank post I've just sent) -- Sent from Kaiten Mail. Please excuse my brevity. From yhdezalvarez at gmail.com Thu Nov 14 22:25:47 2013 From: yhdezalvarez at gmail.com (=?UTF-8?Q?Yanko_Hern=C3=A1ndez_=C3=81lvarez?=) Date: Thu, 14 Nov 2013 15:25:47 -0500 Subject: [Dovecot] Sieve script problem (don't know if is it possible to do this) In-Reply-To: <528527FD.8080903@sys4.de> References: <528527FD.8080903@sys4.de> Message-ID: > Am 14.11.2013 19:17, schrieb Yanko Hern?ndez ?lvarez: >> Hello: >> >> I'm loosing my mind trying to classify my outgoing messages with >> sieve-test (2.0.9, centos 6.4). It came to the point I think it's >> not even possible with a sieve script. >> >> I need to classify my outgoing messages in three folders: > > stop here , filter outgoing mail is not possible yet with sieve, at my > current info level, but it may come in future ( but thats a different > story ) > > but your mail client may do copy in different imap folders at send > time, or your mailserver may do some kind of sort/copy with i.e bcc > feature etc Well my email only filters/classifies at receive time (IMAP check), not sending (SMTP), so I'm scr... on that front. > equal stuff was asked before on the list i think , search archive > > however if i dont unterstand you in the right way, and you want to > sort incomming mail feel free to ask again Incomming mail is a piece of cake, there is only one sender (in opposition to several recipients) so simple rules and "if" nesting is enough (pseudocode): ---- if from dept.example.com copy to dept; else if from *.example.com or example.com copy to company else copy to restoftheworld; ---- and it works, because there is only one address (the sender)... The problem appears when there are many addresses (many recipients) and the requirement to leave a copy in every folder that applies... I used to have a a very long and inefficient bash script -bash, you know- in "cron.hourly" that classified sent emails and moved them to the right folder. Now I want to do the same using sieve-test instead -faster, native code, more declarative code,...- , and get rid of the ugly bash script, but so far, without success. :-( But if you want, you can see it as incoming mail filtering problem. Just ignore the "From" address and use only the recipients addresses ("To") to do the classification and the problem stays just the same kind regards Yanko From stephan at rename-it.nl Thu Nov 14 22:30:56 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Thu, 14 Nov 2013 21:30:56 +0100 Subject: [Dovecot] Sieve script problem (don't know if is it possible to do this) In-Reply-To: References: Message-ID: <52853300.2020901@rename-it.nl> On 11/14/2013 7:17 PM, Yanko Hern?ndez ?lvarez wrote: > Hello: > > I'm loosing my mind trying to classify my outgoing messages with > sieve-test (2.0.9, centos 6.4). It came to the point I think it's not > even possible with a sieve script. Outgoing? Sieve is currently only applicable to incoming e-mail. If you managed to do something like this, I'd be interested to find out how. :) > I need to classify my outgoing messages in three folders: > > 1- To my department (@dept.example.com) > 2- To my company (@example.com, @anyotherdept.example.com) > (anyotherdept.example.com as in a way to say "any other domain that > ends with 'example.com', but not 'dept.example.com'") > 3- To the rest of the word (@any.other.domain) > > The problematic requirement is I need to make a copy in EVERY IMAP > folder that applies. For instance: for an email such as > ---- > From: myuser at dept.example.com > To: user at dept.example.com, user at example.com, user at other.domain > ... > ---- > I need to make a copy to all folders: Dept (because of > user at dept.example.com), Company (because of user at example.com) and Rest > (because of user at other.domain). > This should solve the first two: require "fileinto"; require "relational"; if address :is :domain "To" "dept.example.com" { fileinto "Dept"; } if allof ( address :value "ne" :domain "To" "dept.example.com", anyof ( address :matches :domain "To" "*.example.com", address :is :domain "To" "example.com")) { fileinto "Company"; } Unfortunately, I cannot find a way to do #3. Perhaps some extremely convolved regular expression, but I wouldn't want to go there. Basically one needs to test that at least one of the addresses in the message does not match *.example.com, but I don't see how that could be achieved. Regards, Stephan. From me at junc.eu Fri Nov 15 00:08:40 2013 From: me at junc.eu (Benny Pedersen) Date: Thu, 14 Nov 2013 23:08:40 +0100 Subject: [Dovecot] Sieve script problem (don't know if is it possible to do this) In-Reply-To: References: Message-ID: <38d576dbe04b9bf8470ebad7e8e5fcf5@junc.eu> Yanko Hern?ndez ?lvarez skrev den 2013-11-14 19:17: > I'm loosing my mind trying to classify my outgoing messages with > sieve-test (2.0.9, centos 6.4). It came to the point I think it's not > even possible with a sieve script. before you loose your hair aswell, have you consider trying roundcube on localhost ? and setup it to the problematic domain email server with imap and sieve support ? when it works you have a sieve rule that works :) From me at junc.eu Fri Nov 15 00:19:50 2013 From: me at junc.eu (Benny Pedersen) Date: Thu, 14 Nov 2013 23:19:50 +0100 Subject: [Dovecot] Dovecot antispam unable to call dspam since dovecot upgrade to 2.X In-Reply-To: <5284B02C.2010205@shadowprojects.org> References: <5284B02C.2010205@shadowprojects.org> Message-ID: <1c4c7814d320d958af5769a10022ac94@junc.eu> Guillaume Hilt skrev den 2013-11-14 12:12: > When i'm moving a mail to or from the Spam folder, Igot this error in > my logs : > Nov 14 10:33:25 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: > dspam error:7751 prefix=imap(ghilt at shadowprojects.org): googled "One More Thing" :) http://www.gentoo-wiki.info/HOWTO_Spam_Filtering_with_DSPAM_and_Postfix see the section i googled, its know problem not yet resolved :/ From trashcan at odo.in-berlin.de Fri Nov 15 01:25:29 2013 From: trashcan at odo.in-berlin.de (Michael Grimm) Date: Fri, 15 Nov 2013 00:25:29 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> Message-ID: <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> Michael Grimm wrote: > I noticed as well, that some of my addresses lead to unusual rejections never anticipated before: That had been post 2.2.7 (775b1e025939): > postfix/lmtp[1234]: 3dFbVw2NVmz6SL: to=, relay=mx1.example.com[private/dovecot-lmtp], delay=0.04, delays=0.03/0/0/0.01, dsn=4.4.2, status=undeliverable (lost connection with mx1.example.com[private/dovecot-lmtp] while sending MAIL FROM) IMHO, it had been introduced by revision 10c0aae82d0d. Back to release 2.2.7 (b5b118701aa8): | postfix/lmtp[28069]: 3dLJQG3TxWzFbH: to=, \ | relay=mx1.example.com[private/dovecot-lmtp], delay=0.02, \ | delays=0.01/0/0/0.02, dsn=2.1.5, status=deliverable (250 2.1.5 OK) FYI and regards, Michael From tss at iki.fi Fri Nov 15 01:35:07 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 15 Nov 2013 00:35:07 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> Message-ID: <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> On 15.11.2013, at 0.25, Michael Grimm wrote: > Michael Grimm wrote: > >> I noticed as well, that some of my addresses lead to unusual rejections never anticipated before: > > That had been post 2.2.7 (775b1e025939): > >> postfix/lmtp[1234]: 3dFbVw2NVmz6SL: to=, relay=mx1.example.com[private/dovecot-lmtp], delay=0.04, delays=0.03/0/0/0.01, dsn=4.4.2, status=undeliverable (lost connection with mx1.example.com[private/dovecot-lmtp] while sending MAIL FROM) > > IMHO, it had been introduced by revision 10c0aae82d0d. Hmm. What if you get the latest version and just reverse this one change? I won?t see any obvious reason why it would change this, but I guess it could be possible in less obvious ways. Is this reproduceable, i.e. are all of these Postfix checks always failing or just rarely or most of the time or ..? And was this only with the Postfix user existence check or were LMTP deliveries in general failing? From trashcan at odo.in-berlin.de Fri Nov 15 01:52:25 2013 From: trashcan at odo.in-berlin.de (Michael Grimm) Date: Fri, 15 Nov 2013 00:52:25 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> Message-ID: On 15.11.2013, at 00:35, Timo Sirainen wrote: > On 15.11.2013, at 0.25, Michael Grimm wrote: >> IMHO, it had been introduced by revision 10c0aae82d0d. > > Hmm. What if you get the latest version and just reverse this one change? How can I achieve that with hg, sorry I am not that familiar with hg. First "hg pull -u" and then? > I won?t see any obvious reason why it would change this, but I guess it could be possible in less obvious ways. Is this reproduceable, i.e. are all of these Postfix checks always failing or just rarely or most of the time or ..? During my recent testing most if not all postfix user checks failed. I can't remember how many, sorry, because I also had to clean-up my postfix configuration as well. > And was this only with the Postfix user existence check or were LMTP deliveries in general failing? It had been status=undeliverable, thus mails didn't become delivered in my case. Only after adding "warn_if_reject reject_unverified_recipient" in smtpd_recipient_restrictions they became delivered. Regards, Michael From tss at iki.fi Fri Nov 15 01:56:41 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 15 Nov 2013 00:56:41 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> Message-ID: <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> On 15.11.2013, at 0.52, Michael Grimm wrote: > On 15.11.2013, at 00:35, Timo Sirainen wrote: >> On 15.11.2013, at 0.25, Michael Grimm wrote: > >>> IMHO, it had been introduced by revision 10c0aae82d0d. >> >> Hmm. What if you get the latest version and just reverse this one change? > > How can I achieve that with hg, sorry I am not that familiar with hg. First "hg pull -u" and then? cd ?/dovecot-2.2 hg export 10c0aae82d0d > diff patch -p0 -R < diff >> And was this only with the Postfix user existence check or were LMTP deliveries in general failing? > > It had been status=undeliverable, thus mails didn't become delivered in my case. Only after adding "warn_if_reject reject_unverified_recipient" in smtpd_recipient_restrictions they became delivered. But I think there were two steps: 1) During SMTP RCPT TO, check is mail can be delivered via LMTP RCPT TO, 2) actually deliver mail via LMTP. Where 1) failed (except with warn_if_reject), but 2) succeeded? Where both were basically doing the same thing, except I suppose with some actual difference. Or were the mails really not delivered via LMTP but something else? From trashcan at odo.in-berlin.de Fri Nov 15 02:31:14 2013 From: trashcan at odo.in-berlin.de (Michael Grimm) Date: Fri, 15 Nov 2013 01:31:14 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> Message-ID: On 15.11.2013, at 00:56, Timo Sirainen wrote: > On 15.11.2013, at 0.52, Michael Grimm wrote: >> On 15.11.2013, at 00:35, Timo Sirainen wrote: >>> On 15.11.2013, at 0.25, Michael Grimm wrote: >>>> IMHO, it had been introduced by revision 10c0aae82d0d. >>> >>> Hmm. What if you get the latest version and just reverse this one change? >> >> How can I achieve that with hg, sorry I am not that familiar with hg. First "hg pull -u" and then? > > cd ?/dovecot-2.2 > hg export 10c0aae82d0d > diff > patch -p0 -R < diff Done, but I had to do answer (-->): mail> patch -p0 -R < diff Hmm... Looks like a unified diff to me... The text leading up to this was: -------------------------- |# HG changeset patch |# User Timo Sirainen |# Date 1383514035 -7200 |# Sun Nov 03 23:27:15 2013 +0200 |# Node ID 10c0aae82d0dee0b0107c2262db50d5f6984c181 |# Parent 653d5a81a22e73ff91264f7e7277b1c0206574ec |ostream: Mark stream closed before handling its callback to avoid infinite loops. |The callback could call o_stream_copy_error_from_parent(), which in turn |would try to close the same ostream again. | |diff -r 653d5a81a22e -r 10c0aae82d0d src/lib/ostream.c |--- a/src/lib/ostream.c Sun Nov 03 22:04:53 2013 +0200 |+++ b/src/lib/ostream.c Sun Nov 03 23:27:15 2013 +0200 -------------------------- --> File to patch: src/lib/ostream.c Patching file src/lib/ostream.c using Plan A... Hunk #1 succeeded at 46. done Dovecot v2.2.7 (87ff0023fe79+) starting up. And I can confirm, that again, no status=undeliverable show up. >>> And was this only with the Postfix user existence check or were LMTP deliveries in general failing? >> >> It had been status=undeliverable, thus mails didn't become delivered in my case. Only after adding "warn_if_reject reject_unverified_recipient" in smtpd_recipient_restrictions they became delivered. > > But I think there were two steps: 1) During SMTP RCPT TO, check is mail can be delivered via LMTP RCPT TO, 2) actually deliver mail via LMTP. Where 1) failed (except with warn_if_reject), but 2) succeeded? Where both were basically doing the same thing, except I suppose with some actual difference. Or were the mails really not delivered via LMTP but something else? I am not sure, if I do understand you correctly. My setup is: postfix smtpd dovecot/lmtp user authentication postfix --> amavisd amavisd/lmtp --> postfix final deliver by dovecot/lmtp Here's a log excerpt with v2.2.7 (87ff0023fe79+): postfix/smtpd[66223]: connect from example.org[10.100.100.200] postfix/smtpd[66223]: Anonymous TLS connection established from example.org[10.100.100.200]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits) Nov 15 01:14:29 example.org sendmail[66221]: STARTTLS=client, relay=[10.100.100.1], version=TLSv1/SSLv3, verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256 postfix/cleanup[66227]: 3dLKn10bdfzFNF: message-id=<3dLKn10bdfzFNF at mx2.example.com> postfix/qmgr[64303]: 3dLKn10bdfzFNF: from=, size=241, nrcpt=1 (queue active) dovecot: lmtp(66091): Connect from local dovecot: lmtp(66091): Disconnect from local: Successful quit postfix/lmtp[66228]: 3dLKn10bdfzFNF: to=, orig_to=, relay=mx2.example.com[private/dovecot-lmtp], delay=0.04, delays=0.02/0/0/0.02, dsn=2.1.5, status=deliverable (250 2.1.5 OK) postfix/qmgr[64303]: 3dLKn10bdfzFNF: removed Nov 15 01:14:32 mail.example.invalid postfix/smtpd[66223]: 3dLKn40f9wzFNG: client=example.org[10.100.100.200] Nov 15 01:14:32 mail.example.invalid postfix/cleanup[66227]: 3dLKn40f9wzFNG: message-id=<201311150014.rAF0ETps066221 at example.org> Nov 15 01:14:32 example.org sendmail[66221]: rAF0ETps066221: to=example at example.com, ctladdr=root (0/0), delay=00:00:03, xdelay=00:00:03, mailer=relay, pri=30047, relay=[10.100.100.1] [10.100.100.1], dsn=2.0.0, stat=Sent (Ok: queued as 3dLKn40f9wzFNG) Nov 15 01:14:32 mail.example.invalid postfix/qmgr[64303]: 3dLKn40f9wzFNG: from=, size=616, nrcpt=1 (queue active) Nov 15 01:14:32 mail.example.invalid postfix/smtpd[66223]: disconnect from example.org[10.100.100.200] Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) loaded policy bank "MYNETS" Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) LMTP::10024 /var/amavis/tmp/amavis-20131115T011432-66086-mM3ZSPVh: -> SIZE=616 Received: from mx2.example.com ([10.100.100.1]) by mx2.example.com (mx2.example.com [10.100.100.1]) (amavisd-new, port 10024) with LMTP for ; Fri, 15 Nov 2013 01:14:32 +0100 (CET) Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) Checking: CYYtr0l_C3qa MYNETS [10.100.100.200] -> Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) p001 1 Content-Type: text/plain, size: 3 B, name: Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) wbl: whitelisted sender Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) spam-tag, -> , No, score=x tagged_above=-999 required=6.2 WHITELISTED tests=[] autolearn=unavailable Nov 15 01:14:32 mail.example.invalid postfix/smtpd[66232]: connect from mail.example.invalid[10.100.100.1] Nov 15 01:14:32 mail.example.invalid postfix/smtpd[66232]: 3dLKn42SQHzFNR: client=mail.example.invalid[10.100.100.1], orig_queue_id=3dLKn40f9wzFNG, orig_client=example.org[10.100.100.200] Nov 15 01:14:32 mail.example.invalid postfix/cleanup[66227]: 3dLKn42SQHzFNR: message-id=<201311150014.rAF0ETps066221 at example.org> Nov 15 01:14:32 mail.example.invalid postfix/qmgr[64303]: 3dLKn42SQHzFNR: from=, size=1266, nrcpt=1 (queue active) Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) FWD from -> ,BODY=7BIT 250 2.0.0 from MTA(smtp:[10.100.100.1]:10025): 250 2.0.0 Ok: queued as 3dLKn42SQHzFNR Nov 15 01:14:32 mail.example.invalid dovecot: lmtp(66091): Connect from local Nov 15 01:14:32 mail.example.invalid dovecot: lmtp(66091, localuser): copy from : box=INBOX, uid=475527, msgid=<201311150014.rAF0ETps066221 at example.org>, flags=() Nov 15 01:14:32 mail.example.invalid dovecot: lmtp(66091, localuser): QoteB2VnhVIrAgEASjbbSg: sieve: msgid=<201311150014.rAF0ETps066221 at example.org>: stored mail into mailbox 'INBOX' Nov 15 01:14:32 mail.example.invalid postfix/lmtp[66228]: 3dLKn42SQHzFNR: to=, relay=mx2.example.com[private/dovecot-lmtp], delay=0.12, delays=0.02/0/0/0.1, dsn=2.0.0, status=sent (250 2.0.0 QoteB2VnhVIrAgEASjbbSg Saved) Nov 15 01:14:32 mail.example.invalid dovecot: lmtp(66091): Disconnect from local: Successful quit Nov 15 01:14:32 mail.example.invalid postfix/qmgr[64303]: 3dLKn42SQHzFNR: removed Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) Passed CLEAN {RelayedInternal}, MYNETS LOCAL [10.100.100.200]:40204 [10.100.100.200] -> , Queue-ID: 3dLKn40f9wzFNG, Message-ID: <201311150014.rAF0ETps066221 at example.org>, mail_id: CYYtr0l_C3qa, Hits: -, size: 608, queued_as: 3dLKn42SQHzFNR, 290 ms Nov 15 01:14:32 mail.example.invalid postfix/lmtp[66230]: 3dLKn40f9wzFNG: to=, orig_to=, relay=10.100.100.1[10.100.100.1]:10024, delay=3.4, delays=3.1/0/0/0.29, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[10.100.100.1]:10025): 250 2.0.0 Ok: queued as 3dLKn42SQHzFNR) Nov 15 01:14:32 mail.example.invalid postfix/qmgr[64303]: 3dLKn40f9wzFNG: removed HTH, Michael From marc at perkel.com Fri Nov 15 03:34:52 2013 From: marc at perkel.com (Marc Perkel) Date: Thu, 14 Nov 2013 17:34:52 -0800 Subject: [Dovecot] Dovecot login slow In-Reply-To: <3befa147fdb033dac3ef65fcdda247b9@junc.eu> References: <5283E3FF.4030908@perkel.com> "\"\\\"<528403BF.1070402@perkel.com>\\\" <5284088E.4000808@perkel.com>" <52840B14.5050303@localhost.localdomain.org>" <52841590.4040707@perkel.com> <94b981d1e30c5ffaa9c73a0505e4641c@junc.eu> <5284509F.4090507@perkel.com> <3befa147fdb033dac3ef65fcdda247b9@junc.eu> Message-ID: <52857A3C.10604@perkel.com> On 11/14/2013 11:32 AM, Benny Pedersen wrote: > Marc Perkel skrev den 2013-11-14 05:25: > >> My AUTH depends only on MYSQL. There's no DNS involved. At least not >> that I can see there should be. So why would localhost take 10-15 >> seconds to do the login part and coming into the servers IP address is >> instant. And in both cases the connection itself is instant. It's when >> I type in the LOGIN command that the delay occurs. > > i cant see what in sql.conf here, never mind, but localhost is a > hostname so it needs dns to find the ip, change the hostname in > sql.conf to 127.0.0.1 or use socket file instaed of dns > > if that its, give me a hand ? > That would be understandable if the delay were connecting, but it's not. The connection is instand. And localhost resolves instantly. The delay is after I type in the login command. That's what I don't understand. From gregs at sloop.net Fri Nov 15 03:44:47 2013 From: gregs at sloop.net (Gregory Sloop) Date: Thu, 14 Nov 2013 17:44:47 -0800 Subject: [Dovecot] Dovecot login slow In-Reply-To: <52840B14.5050303@localhost.localdomain.org> References: <5283E3FF.4030908@perkel.com> "\"\\\"<528403BF.1070402@perkel.com>\\\" <5284088E.4000808@perkel.com>" <52840B14.5050303@localhost.localdomain.org>" <52841590.4040707@perkel.com> <94b981d1e30c5ffaa9c73a0505e4641c@junc.eu> <5284509F.4090507@perkel.com> <3befa147fdb033dac3ef65fcdda247b9@junc.eu> <52857A3C.10604@perkel.com> Message-ID: <707933152.20131114174447@sloop.net> Is it perhaps a *server* dns lookup delay? I've typically seen 60s delays when a reverse lookup fails, so 20s seems odd - but when you first mentioned it, that's the little flag that waved in my head. 'course I could be totally stupid, high, or huffing glue or something - but thought I'd throw that out there. -Greg MP> On 11/14/2013 11:32 AM, Benny Pedersen wrote: >> Marc Perkel skrev den 2013-11-14 05:25: >> >>> My AUTH depends only on MYSQL. There's no DNS involved. At least not >>> that I can see there should be. So why would localhost take 10-15 >>> seconds to do the login part and coming into the servers IP address is >>> instant. And in both cases the connection itself is instant. It's when >>> I type in the LOGIN command that the delay occurs. >> >> i cant see what in sql.conf here, never mind, but localhost is a >> hostname so it needs dns to find the ip, change the hostname in >> sql.conf to 127.0.0.1 or use socket file instaed of dns >> >> if that its, give me a hand ? >> MP> That would be understandable if the delay were connecting, but it's not. MP> The connection is instand. And localhost resolves instantly. The delay MP> is after I type in the login command. That's what I don't understand. From skdovecot at smail.inf.fh-brs.de Fri Nov 15 09:09:32 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 15 Nov 2013 08:09:32 +0100 (CET) Subject: [Dovecot] Dovecot login slow In-Reply-To: <52857A3C.10604@perkel.com> References: <5283E3FF.4030908@perkel.com> "\"\\\"<528403BF.1070402@perkel.com>\\\" <5284088E.4000808@perkel.com>" <52840B14.5050303@localhost.localdomain.org>" <52841590.4040707@perkel.com> <94b981d1e30c5ffaa9c73a0505e4641c@junc.eu> <5284509F.4090507@perkel.com> <3befa147fdb033dac3ef65fcdda247b9@junc.eu> <52857A3C.10604@perkel.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 14 Nov 2013, Marc Perkel wrote: > That would be understandable if the delay were connecting, but it's not. The > connection is instand. And localhost resolves instantly. The delay is after I > type in the login command. That's what I don't understand. Did you checked the logs in parallel to connecting as I suggested in the other post? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUoXIrV3r2wJMiz2NAQKsnAgAq9FjeKDyxjchMT5Za96F0bvhCrNrRWWl kYTJT4xRZWGpV1wGQgh2tfMPbX+3CKBsxk6P7APDVSLu++eYTlnPchrh3wMWpkMY 6XSVFcXMNsRY+hVopowiMfTp/RDfAAVS0P51mQAe53sReil9R/hcnh2TQctPA7GZ gly2nVhPMMfy9ngPx4sTo3eMfyjOtH12S+93dFPEbz9KaSpTLxQaIGYcTzarO6bb HeGuSgTyNC7GbmOyzAJGxtN117qui+NdctMhof7Ewe0VrdopIP3mOW0G5sVXyrJU TyByAtNZ500JIWrYxwEzbLffcVES8+YlIqXccK0TXDd65dxFjp43eg== =H+/E -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Fri Nov 15 09:23:14 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 15 Nov 2013 08:23:14 +0100 (CET) Subject: [Dovecot] Dovecot antispam unable to call dspam since dovecot upgrade to 2.X In-Reply-To: <1c4c7814d320d958af5769a10022ac94@junc.eu> References: <5284B02C.2010205@shadowprojects.org> <1c4c7814d320d958af5769a10022ac94@junc.eu> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 14 Nov 2013, Benny Pedersen wrote: > Guillaume Hilt skrev den 2013-11-14 12:12: > >> When i'm moving a mail to or from the Spam folder, Igot this error in my >> logs : >> Nov 14 10:33:25 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >> dspam error:7751 prefix=imap(ghilt at shadowprojects.org): > > googled "One More Thing" :) > > http://www.gentoo-wiki.info/HOWTO_Spam_Filtering_with_DSPAM_and_Postfix > > see the section i googled, its know problem not yet resolved :/ Is this problem the same then that one? http://www.reddit.com/r/linuxadmin/comments/1ljdq2/dovecot_virtual_users_and_dspam/ - From the problem description: " I traced problem to the fact that dovecot seems to run dspam with uid/gid of virtual user. And dspam seem to be upset by it. " So you need the make dspam run as vmail. Do you get the error if you execute sudo -u vmail /usr/bin/dspam .... ? Then this advice from Benny's link might help: "One More Thing There are a few loose ends to tie up. Without all this it wouldn't need masking after all. mkdir /var/spool/dspam/log/ chown -R dspam:dspam /var/spool/dspam/ chmod 4511 /usr/bin/dspam Note:- you will have to do this command again if you re-emarge or update dspam" - -or- Maybe just the advice about trusting users from the reddit link: "Did you add the user to the trust list? Trust dovecot Trust vmail etc, etc. " - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUoXL4l3r2wJMiz2NAQIjxwgAkcGR2jeu2Vmkn/8zjKy6vmQC0QifwXFv AroTc8rNka8H/H8Ba2EXnkX6tEgtgmm4Zk856O6CUsy5QVxb3t7/JwAjcY3fv65y JcRJXeLQPinki2xYP6wBS0bfZHXw7iaU1cd0ogcxbnO7GHk3Va5eRdZwgmQ38TXQ oZ/1nskuDZVCaxRPN6f6m6Cofdpt5vhhte9mrd+Y0tbJpmOAhzzSPfgtbfFfdpbd e4OLM5zpZb5aY5PTV3ZhMt9UkmuiVG2uWSK8uf9jiWJ7e0FvWcgEmTBRFqymptcY U0DvcNCu00p2/raH3k4zsEck7s4bJcdF4kdIViyyqsB11w6q1yNPOQ== =MfrR -----END PGP SIGNATURE----- From me at junc.eu Fri Nov 15 09:33:07 2013 From: me at junc.eu (Benny Pedersen) Date: Fri, 15 Nov 2013 08:33:07 +0100 Subject: [Dovecot] Dovecot antispam unable to call dspam since dovecot upgrade to 2.X In-Reply-To: References: <5284B02C.2010205@shadowprojects.org> <1c4c7814d320d958af5769a10022ac94@junc.eu> Message-ID: <38f5363fad61ff852991879dd5c0f761@junc.eu> Steffen Kaiser skrev den 2013-11-15 08:23: > chmod 4511 /usr/bin/dspam this was the only thing i changed after the ebuild merge, main problem is that only root can change uid, non privileded users need to stay as same uid while executing From skdovecot at smail.inf.fh-brs.de Fri Nov 15 09:34:07 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 15 Nov 2013 08:34:07 +0100 (CET) Subject: [Dovecot] Sieve script problem (don't know if is it possible to do this) In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 14 Nov 2013, Yanko Hern?ndez ?lvarez wrote: > I'm loosing my mind trying to classify my outgoing messages with > sieve-test (2.0.9, centos 6.4). It came to the point I think it's not > even possible with a sieve script. > > I need to classify my outgoing messages in three folders: As others told already, you can filter incoming messages only, but you can make outgoing into incoming messages with BCC. You will have to have an unique way to identify your BCC'ed messages, however. E.g.: a) Add a custom header, say "X-X-Yanko", in your MUA. If possible remove that header by your MTA if the message leaves your network b) use detail (subaddressing), if your MTA allows that: user+detail@ c) use a completely different account that spools into the mail storage of your normal account d) ... > 3- To the rest of the word (@any.other.domain) Would the normal "sent" folder be OK? There you would have 1+2+3 merged. Another idea is in the reply to Stephan's post. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUoXOb13r2wJMiz2NAQJLYgf/b9IZLunFOdgX2tLH/5WZI5msUlQx41TZ 0bsykwCYSZWeGxmB1fnsFmiFLiJJ7F2xqsX2N8YwOYMmKB3iQ/a8O8c+I+3hwmGD Jk1TGmUZ6mdtBk1nOXqDbWIUXEGvH2YRqTG+yyUaDg/z6gAr/xq7OIBlvm7887CJ ciEueGV7x/SCk25K2HNFpovg65ZYjERDjeXaY51mtL/yb7Vp1FQ71Xkr6MQt3yUT 9phZKZOOTylO312/sQVz0RP/ZLethnKeisKcBWZg4LUS12sdVEzy7PXCZgUNE1OP OsFjkleykQIzXR/lio8MiBVcTWkoL0tpAUQ5ryF217b/0oT2YC6iKQ== =olis -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Fri Nov 15 09:41:46 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 15 Nov 2013 08:41:46 +0100 (CET) Subject: [Dovecot] Sieve script problem (don't know if is it possible to do this) In-Reply-To: <52853300.2020901@rename-it.nl> References: <52853300.2020901@rename-it.nl> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 14 Nov 2013, Stephan Bosch wrote: >> 1- To my department (@dept.example.com) >> 2- To my company (@example.com, @anyotherdept.example.com) >> (anyotherdept.example.com as in a way to say "any other domain that >> ends with 'example.com', but not 'dept.example.com'") >> 3- To the rest of the word (@any.other.domain) >> Hi Stephan, about #3 how about the variable extension? I never used it so far, but it should work > This should solve the first two: > > require "fileinto"; > require "relational"; require "variables"; set "done" "0"; > if address :is :domain "To" "dept.example.com" { > fileinto "Dept"; set "done" "1"; > } > > if allof ( > address :value "ne" :domain "To" "dept.example.com", > anyof ( > address :matches :domain "To" "*.example.com", > address :is :domain "To" "example.com")) { > fileinto "Company"; set "done" "1"; > } if string :is "${done}" "0" { fileinto "other"; } - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUoXQOl3r2wJMiz2NAQKk/ggAi8ywhial+WRDJxNhZKLahQnIp8Iyn6tN JN8MBqrALStkGZ6QLeRrgPhNuJ4I3vdbh8MnCtQR1ftH51NxUs/7X0zRIfmmdd3+ NWEBnSX5op4Qda48edUiSAXsZ69ggrzKXfqf98Rask8jXxBZG3HLR87AgVGXoEaL c2BmT0xWf7EXsNqGBjpSCNwwzD0LpEF7mqGIVg8N+OiLrUNc0+s7BQTNdKNXmez/ 1A1pt3zX+oyIBKivFvaZxxHwrNOYSZNk4+fLS2n612eUJ4ge0C0RTqolb8OEharW TGauhXFu4Rw2w9h1rkqO1OzL8dINzQLQbhjIwj4Lhx73fVUVVZwESA== =JwG9 -----END PGP SIGNATURE----- From ghilt at shadowprojects.org Fri Nov 15 09:57:15 2013 From: ghilt at shadowprojects.org (Guillaume Hilt) Date: Fri, 15 Nov 2013 08:57:15 +0100 Subject: [Dovecot] Dovecot antispam unable to call dspam since dovecot upgrade to 2.X In-Reply-To: References: <5284B02C.2010205@shadowprojects.org> <1c4c7814d320d958af5769a10022ac94@junc.eu> Message-ID: <5285D3DB.3030607@shadowprojects.org> Le 15/11/2013 08:23, Steffen Kaiser a ?crit : > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thu, 14 Nov 2013, Benny Pedersen wrote: > >> Guillaume Hilt skrev den 2013-11-14 12:12: >> >>> When i'm moving a mail to or from the Spam folder, Igot this error >>> in my logs : >>> Nov 14 10:33:25 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >>> dspam error:7751 prefix=imap(ghilt at shadowprojects.org): >> >> googled "One More Thing" :) >> >> http://www.gentoo-wiki.info/HOWTO_Spam_Filtering_with_DSPAM_and_Postfix >> >> see the section i googled, its know problem not yet resolved :/ > > Is this problem the same then that one? > http://www.reddit.com/r/linuxadmin/comments/1ljdq2/dovecot_virtual_users_and_dspam/ > > > - From the problem description: > " I traced problem to the fact that dovecot seems to run dspam with > uid/gid of virtual user. And dspam seem to be upset by it. " > > So you need the make dspam run as vmail. Do you get the error if you > execute > > sudo -u vmail /usr/bin/dspam .... > > ? Indeed. sudo: unable to execute /usr/bin/dspam: Permission denied > > Then this advice from Benny's link might help: > "One More Thing > > There are a few loose ends to tie up. Without all this it wouldn't > need masking after all. > > mkdir /var/spool/dspam/log/ > chown -R dspam:dspam /var/spool/dspam/ This was already good. > chmod 4511 /usr/bin/dspam And this one fixed my issue, thanks :) I'm going to fill a bug for Gentoo. > > Note:- you will have to do this command again if you re-emarge or > update dspam" > > - -or- > > Maybe just the advice about trusting users from the reddit link: > > "Did you add the user to the trust list? > > Trust dovecot Trust vmail > > etc, etc. " > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUoXL4l3r2wJMiz2NAQIjxwgAkcGR2jeu2Vmkn/8zjKy6vmQC0QifwXFv > AroTc8rNka8H/H8Ba2EXnkX6tEgtgmm4Zk856O6CUsy5QVxb3t7/JwAjcY3fv65y > JcRJXeLQPinki2xYP6wBS0bfZHXw7iaU1cd0ogcxbnO7GHk3Va5eRdZwgmQ38TXQ > oZ/1nskuDZVCaxRPN6f6m6Cofdpt5vhhte9mrd+Y0tbJpmOAhzzSPfgtbfFfdpbd > e4OLM5zpZb5aY5PTV3ZhMt9UkmuiVG2uWSK8uf9jiWJ7e0FvWcgEmTBRFqymptcY > U0DvcNCu00p2/raH3k4zsEck7s4bJcdF4kdIViyyqsB11w6q1yNPOQ== > =MfrR > -----END PGP SIGNATURE----- > From stephan at rename-it.nl Fri Nov 15 10:03:58 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Fri, 15 Nov 2013 09:03:58 +0100 Subject: [Dovecot] Sieve script problem (don't know if is it possible to do this) In-Reply-To: References: <52853300.2020901@rename-it.nl> Message-ID: <5285D56E.1020806@rename-it.nl> On 11/15/2013 8:41 AM, Steffen Kaiser wrote: > Hi Stephan, about #3 how about the variable extension? I never used it so far, but it should work Congratulations! You fell into the same trap I did when I first saw this problem. :) Consider this header: To: user at dept.example.com, user at example.com, user at other.domain > > require "fileinto"; > > require "relational"; > > require "variables"; > > set "done" "0"; > > > if address :is :domain "To" "dept.example.com" { > > fileinto "Dept"; > > set "done" "1"; > > > } The variable "done" is set to "1", due to the first address. > > if allof ( > > address :value "ne" :domain "To" "dept.example.com", > > anyof ( > > address :matches :domain "To" "*.example.com", > > address :is :domain "To" "example.com")) { > > fileinto "Company"; > > set "done" "1"; > > } The variable "done" is set to "1", due to the second address. And now that I think of it, it would also work on the combination of the first and the third, making this rule still inadequate. > if string :is "${done}" "0" { > fileinto "other"; > } Since "done" is set to "1", the message is not filed into "other". But that is wrong, due to the presence of the third address. See the core of the problem now? :) Regards, Stephan. From mailinglists at xgm.de Fri Nov 15 12:20:49 2013 From: mailinglists at xgm.de (Florian Lindner) Date: Fri, 15 Nov 2013 11:20:49 +0100 Subject: [Dovecot] Establing a GMail like workflow Message-ID: Hello! I'm about to migrate my mails from GMail back to my self hosted solution, using Dovecot imap server. I really liked gmail workflow: - (Almost) all mail goes to inbox. - Most mail is read and not important anymore, it is archived and moved to "all messages". - Inbox stays more or less clean, with only mails that are still of some interest. - Mail (except Spam) is never deleted, just archived. How can I achieve such a workflow using Dovecot and some MUA (Roundcube and probably KMail). - I can simply delete messages that I want to archive, Trash will never be purged. Problems: Some mail clients have settings like "Purge Trash at exit", so my mail is always in danger of being deleted accidently. Futhermore it does not really have the semantics of what I am actually doing. - Instead of deleting messages for archiving, move them to some Archiv folder. Since archiving is a very frequent action this involves much more cliks in the MUA than just deleting. Or some configuration change in the client. How would you do that? I'm also open to entirely different suggestions! What I want are basically these things: - Never delete legitimate mail - Use the Inbox as a workspace for mails that are still of some interest. This can also be quite old mail, time based archiving does not work. - Have some kind of mail archive. Thanks! Florian From gurubonz at gmail.com Fri Nov 15 09:22:59 2013 From: gurubonz at gmail.com (Bonz) Date: Fri, 15 Nov 2013 15:22:59 +0800 Subject: [Dovecot] removing html via dovecot/sieve Message-ID: <20131115072258.GA28171@summerhaze.dyndns.tv> is there a howto or similar for configuring dovecot as a user to strip mime. ideally i would like all html copies deleted, but graphics, etc dumped to ~/public_html and replaced with a url. i have a super crappy link so html, etc usually jams my spool. i can usually wget things however hence this desired approach. bonz. From yhdezalvarez at gmail.com Fri Nov 15 16:08:42 2013 From: yhdezalvarez at gmail.com (=?UTF-8?Q?Yanko_Hern=C3=A1ndez_=C3=81lvarez?=) Date: Fri, 15 Nov 2013 09:08:42 -0500 Subject: [Dovecot] Fwd: Sieve script problem (don't know if is it possible to do this) In-Reply-To: References: <52853300.2020901@rename-it.nl> <5285D56E.1020806@rename-it.nl> Message-ID: Ok, let simplify a little bit the problem: Forget about outgoing or incoming mail. Forget about IMAP or SMTP. You have a ton of emails in raw form (RFC-XXX, don?t remember the exact number right now) you want to classify? and you think: ?Sieve is a language made to do exactly that kind of task? If only I could use the same mechanism dovecot-lda uses! Oh, wait? ?sieve-test ?e? does exactly that!!! I could use it!!!?? but so far? no success. Now, a little more context. I want to leave a copy (a historical record) of every email (work related) I received/sent. The processing/classification doesn?t have to be in real time, it can be on ?down time/offline/later/scheduled?. Sent messages are hard, because of the several senders and the several copies on several folders. But I can work around it, with various tricks (bcc, different headers, etc.) and adjusting the processing sieve script. I can train myself ?The interest is mine after all!-, and that?s OK. But I can?t train other people to suit my needs. And received messages are JUST AS HARD. Because I want to classify them using the same rules. I also want to keep context, to record all things work related, not only what I said, but also what was said by others, using the same rules (which by the way, are many more than the restricted example I posted). Besides, I want the PC do all the work for me, not the other way around. I think ?Sieve must be capable of doing it! This is the kind of things sieve was designed for!? is a reasonable idea. But so far, no success? :-( Now, let me see all the replies in detail... (I really appreciate all the help I'm getting, thank you all very much) Yanko On 11/15/13, Stephan Bosch wrote: > On 11/15/2013 8:41 AM, Steffen Kaiser wrote: >> Hi Stephan, about #3 how about the variable extension? I never used it so >> far, but it should work > > Congratulations! You fell into the same trap I did when I first saw this > problem. :) > > Consider this header: > > To: user at dept.example.com, user at example.com, user at other.domain > > >> > require "fileinto"; >> > require "relational"; >> >> require "variables"; >> >> set "done" "0"; >> >> > if address :is :domain "To" "dept.example.com" { >> > fileinto "Dept"; >> >> set "done" "1"; >> >> > } > > The variable "done" is set to "1", due to the first address. > >> > if allof ( >> > address :value "ne" :domain "To" "dept.example.com", >> > anyof ( >> > address :matches :domain "To" "*.example.com", >> > address :is :domain "To" "example.com")) { >> > fileinto "Company"; >> >> set "done" "1"; >> > } > > The variable "done" is set to "1", due to the second address. And now > that I think of it, it would also work on the combination of the first > and the third, making this rule still inadequate. > >> if string :is "${done}" "0" { >> fileinto "other"; >> } > > Since "done" is set to "1", the message is not filed into "other". But > that is wrong, due to the presence of the third address. > > See the core of the problem now? :) > > Regards, > > Stephan. > > From yhdezalvarez at gmail.com Fri Nov 15 16:20:57 2013 From: yhdezalvarez at gmail.com (=?UTF-8?Q?Yanko_Hern=C3=A1ndez_=C3=81lvarez?=) Date: Fri, 15 Nov 2013 09:20:57 -0500 Subject: [Dovecot] Sieve script problem (don't know if is it possible to do this) In-Reply-To: <52853300.2020901@rename-it.nl> References: <52853300.2020901@rename-it.nl> Message-ID: > This should solve the first two: > > require "fileinto"; > require "relational"; > > if address :is :domain "To" "dept.example.com" { > fileinto "Dept"; > } > > if allof ( > address :value "ne" :domain "To" "dept.example.com", > anyof ( > address :matches :domain "To" "*.example.com", > address :is :domain "To" "example.com")) { > fileinto "Company"; > } It doesn't work... ---------------------------- $ cat > Test.eml From: Yanko Hdez Alvarez To: Jorge Naranjo , The Boss , Yanko Hernandez Alvarez Subject: This is a Test This is a test ^d $ cat > Test.sieve require "fileinto"; require "relational"; if address :is :domain "To" "dept.example.com" { fileinto "Dept"; } if allof ( address :value "ne" :domain "To" "dept.example.com", anyof ( address :matches :domain "To" "*.example.com", address :is :domain "To" "example.com")) { fileinto "Company"; } ^d $ sieve-test -t- -Tlevel=matching Test.sieve Test.eml ## Started executing script 'Test' 4: address test 4: starting `:is' match with `i;ascii-casemap' comparator: 4: extracting `To' headers from message 4: parsing address header value `Jorge Naranjo , The Boss , Yank...' 4: extracting `domain' part from address `otheruser at dept.example.com' 4: matching value `dept.example.com' 4: with key `dept.example.com' => 1 4: finishing match with result: matched 4: jump if result is false 4: not jumping 5: fileinto action 5: store message in mailbox `Dept' 8: address test 8: starting `:value-ne' match with `i;ascii-casemap' comparator: 8: extracting `To' headers from message 8: parsing address header value `Jorge Naranjo , The Boss , Yank...' 8: extracting `domain' part from address `otheruser at dept.example.com' 8: matching value `dept.example.com' 8: with key `dept.example.com' => 0 (8a): extracting `domain' part from address `boss at example.com' 8: matching value `example.com' (8b): with key `dept.example.com' => 1 8: finishing match with result: matched 9: jump if result is false 9: not jumping 11: address test 11: starting `:matches' match with `i;ascii-casemap' comparator: 11: extracting `To' headers from message 11: parsing address header value `Jorge Naranjo , The Boss , Yank...' (11a): extracting `domain' part from address `otheruser at dept.example.com' 11: matching value `dept.example.com' (11b): with key `*.example.com' => 1 11: finishing match with result: matched 11: jump if result is true 11: jumping to line 13 13: fileinto action 13: store message in mailbox `Company' ## Finished executing script 'Test' Performed actions: * store message in folder: Dept * store message in folder: Company Implicit keep: (none) sieve-test(root): Info: final result: success ---------------------------- the rule (address :value "ne" :domain "To" "dept.example.com") is tested against `boss at example.com' (8a) successfully (8b), but the (address :matches :domain "To" "*.example.com") is not, is instead tested against `otheruser at dept.example.com' (11a) with success (11b), but is not what we intended... ("To: Jorge Naranjo , Yanko Hernandez Alvarez " would defeat this sieve script)... From jim at packetalk.net Fri Nov 15 18:54:07 2013 From: jim at packetalk.net (Jim McNamara) Date: Fri, 15 Nov 2013 11:54:07 -0500 Subject: [Dovecot] Personal Sieve Resieving Default Sieve? Message-ID: <528651AF.7040005@packetalk.net> Hello all. In my dovecot install we have a default.sieve script which filters incoming mail based on the subdomain of our main domain. All it does is if the mail comes from A.domain.com move in to folder A in inbox, and if it comes from B.domain.com, move to folder B also in inbox. In my personal sieve script, I'd like to grab a particular email each day that the default.sieve saw coming from A.domain.com and moved it to folder A, and either copy or move it to another folder, C. My google-fu was weak while looking for second sieve passes undoing the first, so I thought it best to ask here. Thanks for your time. From itgeek31 at googlemail.com Fri Nov 15 19:52:29 2013 From: itgeek31 at googlemail.com (IT geek 31) Date: Fri, 15 Nov 2013 18:52:29 +0100 Subject: [Dovecot] Dovecot panic during replication Message-ID: I'm seeing the following errors on my Dovecot box when trying to replicate: Nov 15 18:44:46 server1 dovecot: dsync-server(mark): Panic: file mbox-lock.c: line 799 (mbox_lock): assertion failed: (lock_type == F_RDLCK || mbox->mbox_lock_type != F_RDLCK) Nov 15 18:44:46 server1 dovecot: dsync-server(mark): Fatal: master: service(doveadm): child 21571 killed with signal 6 (core not dumped - set service doveadm { drop_priv_before_exec=yes }) And on the target I see: Nov 15 17:47:02 server2 dovecot: dsync-server(mark): Error: read( server1.mdb.eu.com) failed: EOF Does anyone know what is causing this? I help to solve this before I can put it live :-( Here's my dovecot -n from server1: # 2.2.7: /usr/pkg/etc/dovecot/dovecot.conf # OS: NetBSD 5.2 cobalt auth_mechanisms = plain login doveadm_password = secret doveadm_port = 12345 listen = 192.168.1.1 mail_location = mbox:~/mail:INBOX=/var/mail/%u mail_plugins = " notify replication" passdb { driver = passwd } plugin { mail_replica = tcp:server2.mdb.eu.com } protocols = imap service aggregator { fifo_listener replication-notify-fifo { mode = 0600 user = vmail } unix_listener replication-notify { mode = 0600 user = vmail } } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } user = root } service doveadm { inet_listener { port = 12345 } } service imap-login { inet_listener imap { port = 0 } } service replicator { process_min_avail = 1 unix_listener replicator-doveadm { mode = 0600 } } ssl_cert = References: <5284B02C.2010205@shadowprojects.org> <1c4c7814d320d958af5769a10022ac94@junc.eu> <5285D3DB.3030607@shadowprojects.org> Message-ID: <7578CA0312DA4CEBA4FBAFBE840A4B96@geniepc2011> Hi all, If I remember correctly (stopped using DSPAM some time ago), you should add a trusted user to dspam.conf: Trust root ... Trust vmail Best wishes Eugene -----Original Message----- From: Guillaume Hilt Sent: Friday, November 15, 2013 11:57 AM To: dovecot at dovecot.org Subject: Re: [Dovecot] Dovecot antispam unable to call dspam since dovecot upgrade to 2.X Le 15/11/2013 08:23, Steffen Kaiser a ?crit : > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thu, 14 Nov 2013, Benny Pedersen wrote: > >> Guillaume Hilt skrev den 2013-11-14 12:12: >> >>> When i'm moving a mail to or from the Spam folder, Igot this error in my >>> logs : >>> Nov 14 10:33:25 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >>> dspam error:7751 prefix=imap(ghilt at shadowprojects.org): >> >> googled "One More Thing" :) >> >> http://www.gentoo-wiki.info/HOWTO_Spam_Filtering_with_DSPAM_and_Postfix >> >> see the section i googled, its know problem not yet resolved :/ > > Is this problem the same then that one? > http://www.reddit.com/r/linuxadmin/comments/1ljdq2/dovecot_virtual_users_and_dspam/ > > - From the problem description: > " I traced problem to the fact that dovecot seems to run dspam with > uid/gid of virtual user. And dspam seem to be upset by it. " > > So you need the make dspam run as vmail. Do you get the error if you > execute > > sudo -u vmail /usr/bin/dspam .... > > ? Indeed. sudo: unable to execute /usr/bin/dspam: Permission denied > > Then this advice from Benny's link might help: > "One More Thing > > There are a few loose ends to tie up. Without all this it wouldn't need > masking after all. > > mkdir /var/spool/dspam/log/ > chown -R dspam:dspam /var/spool/dspam/ This was already good. > chmod 4511 /usr/bin/dspam And this one fixed my issue, thanks :) I'm going to fill a bug for Gentoo. > > Note:- you will have to do this command again if you re-emarge or update > dspam" > > - -or- > > Maybe just the advice about trusting users from the reddit link: > > "Did you add the user to the trust list? > > Trust dovecot Trust vmail > > etc, etc. " > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUoXL4l3r2wJMiz2NAQIjxwgAkcGR2jeu2Vmkn/8zjKy6vmQC0QifwXFv > AroTc8rNka8H/H8Ba2EXnkX6tEgtgmm4Zk856O6CUsy5QVxb3t7/JwAjcY3fv65y > JcRJXeLQPinki2xYP6wBS0bfZHXw7iaU1cd0ogcxbnO7GHk3Va5eRdZwgmQ38TXQ > oZ/1nskuDZVCaxRPN6f6m6Cofdpt5vhhte9mrd+Y0tbJpmOAhzzSPfgtbfFfdpbd > e4OLM5zpZb5aY5PTV3ZhMt9UkmuiVG2uWSK8uf9jiWJ7e0FvWcgEmTBRFqymptcY > U0DvcNCu00p2/raH3k4zsEck7s4bJcdF4kdIViyyqsB11w6q1yNPOQ== > =MfrR > -----END PGP SIGNATURE----- > From larryrtx at gmail.com Fri Nov 15 20:35:16 2013 From: larryrtx at gmail.com (Larry Rosenman) Date: Fri, 15 Nov 2013 12:35:16 -0600 Subject: [Dovecot] PAM and user@domain login? Message-ID: Is there a way with 2.2.6 to have the system do a PAM login for user when presented with login user at domain pass from the IMAP services? I have a stupid android client that wants to use user at domain but doesn't have an option to pass just user..... Thanks for any help. -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx at gmail.com US Mail: 108 Turvey Cove, Hutto, TX 78634-5688 From larryrtx at gmail.com Fri Nov 15 20:47:12 2013 From: larryrtx at gmail.com (Larry Rosenman) Date: Fri, 15 Nov 2013 12:47:12 -0600 Subject: [Dovecot] PAM and user@domain login? In-Reply-To: <52866B34.3020903@localhost.localdomain.org> References: <52866B34.3020903@localhost.localdomain.org> Message-ID: Yes, it does. I wish the documentation on the Wiki was easier to find gems like this. Thank You! On Fri, Nov 15, 2013 at 12:43 PM, Pascal Volk < user+dovecot at localhost.localdomain.org> wrote: > On 11/15/2013 06:35 PM Larry Rosenman wrote: > > Is there a way with 2.2.6 to have the system do a PAM login for user when > > presented with > > login user at domain pass > > from the IMAP services? > > > > I have a stupid android client that wants to use user at domain but doesn't > > have an option > > to pass just user..... > > > > Thanks for any help. > > > > > > > > Does auth_username_format=%n solve your issue? > > > Regards, > Pascal > -- > The trapper recommends today: decade.1331919 at localdomain.org > -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx at gmail.com US Mail: 108 Turvey Cove, Hutto, TX 78634-5688 From dan at hart-house.com Sat Nov 16 05:19:36 2013 From: dan at hart-house.com (springy) Date: Fri, 15 Nov 2013 19:19:36 -0800 (PST) Subject: [Dovecot] Replication Setup Message-ID: <1384571976225-45415.post@n4.nabble.com> Hi, I am attempting to setup replication between two hosts running Centos 6.4 and Dovecot 2.2.5. My users are real unix users, so I am trying to run the replication as root user, so that it has the appropriate permissions to run. I have two users at present syd1 and syd2, and the two hosts are called syd1 and syd2 as well. When I start Dovecot with the settings below, nothing happens, and the two mailboxes remain un-synced. There are no errors in the log, just Dovecot starting successfully. I have attempted to run the dsync command manually from syd1: ssh -q -o StrictHostKeyChecking=no -i /home/vmail/.ssh/id_ecdsa root at syd2 doveadm dsync-server -usyd1 and I get the following in response, but this might be normal: VERSION dsync 3 1 Hhostname sync_ns_prefix sync_box sync_box_guid sync_type debug sync_visible_namespaces exclude_mailboxes send_mail_requests backup_send backup_recv lock_timeouno_mail_sync no_backup_overwrite Smailbox_guid last_uidvalidity last_common_uid last_common_modseq last_common_pvt_modseq changes_during_sync Nname existence mailbox_guid uid_validity uid_next last_renamed_or_created subscribed last_subscription_change Dhierarchy_sep mailboxes dirs unsubscribes Bmailbox_guid uid_validity uid_next messages_count first_recent_uid highest_modseq highest_pvt_modseq mailbox_lost cache_fields have_guids have_save_guids Atype key value stream deleted last_change modseq Ctype uid guid hdr_hash modseq pvt_modseq save_timestamp add_flags remove_flags final_flags keywords_reset keyword_changes Rguid uid Mguid uid pop3_uidl pop3_order received_date stream cname decision last_used . Hsyd2 The prompt hangs, when I push enter I get: dsync-remote(syd1): Error: dsync(local): Remote dsync doesn't use compatible protocol Please can someone help me diagnose? Cheers, D Here are my dovecot in outputs: syd1: # 2.2.5: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-358.23.2.el6.x86_64 x86_64 CentOS release 6.4 (Final) auth_mechanisms = plain login disable_plaintext_auth = no dsync_remote_cmd = ssh -q -o StrictHostKeyChecking=no -i /home/vmail/.ssh/id_ecdsa root@%{host} doveadm dsync-server -u%u mail_location = maildir:~/Maildir mail_plugins = " notify replication" mbox_write_locks = fcntl namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { driver = pam } plugin { mail_replica = remote:root at syd2 } protocols = imap pop3 service replicator { process_min_avail = 1 } ssl_cert = References: <527D6559.7000804@areyes.com> <5281457C.4040903@areyes.com> Message-ID: <52879075.3010806@areyes.com> So, is anyone out there actually *using* the antispam plugin with spamassassin ? What is your recipe for success ? The issue I'm seeing here appears to be the running of a perl script that does mysql access from dovecot. I'm running the exact same script from roundcube using the markasjunk2 plugin, and it works fine. The only difference is that roundcube provides a file argument for the email to learn, while dovecot pipes the email into the script. dovecot sa-learn-pipe.sh --spam < /tmp/sometmpfile roundcube sa-learn-pipe.sh --spam /tmp/someotherfile The script handles either case just fine. Testing on the cmdline works cleanly. From antispam/dovecot, it always fails on the mysql access : 27877-sa-learn Nov 16 10:05:44.887 [27879] dbg: FuzzyOcr: Connecting to: dbi:mysql:database=FuzzyOcr;mysql_socket=/var/run/mysqld/mysqld.sock 27877-sa-learn libgcc_s.so.1 must be installed for pthread_cancel to work 27877-end Something about the perl DBI interface seems to want something from the libgcc_s.so lib and can't find it, even though it's installed. But why would it work fine from the cmdline, with any userid ? And from roundcube/markasjunk2 ? On 11/11/2013 04:00 PM, Dean wrote: > On 11/11/2013 02:31 AM, Steffen Kaiser wrote: > >> On Fri, 8 Nov 2013, Dean Carpenter wrote: >> >> >>> Running /usr/bin/sa-learn directly always returns with an error code of >>> 1, and the bayes DB isn't actually updated. Running the >>> /usr/local/bin/sa-learn-pipe.sh script from the example will run >>> sa-learn successfully, but sa-learn fails partway through, right on a >>> sql DB access. I have both bayes and FuzzyOcr data stored in mysql, and >>> the error occurs on accessing either one. That is, I've tested with >>> FuzzyOcr enabled, and it fails on the db access to the FuzzyOcr DB, and >>> I've tried it with FuzzyOcr disabled. In that case, it fails on the >>> access to the bayes DB. >>> >>> The error line right there is : >>> >>> libgcc_s.so.1 must be installed for pthread_cancel to work >>> >>> Since sa-learn terminated prematurely, the bayes DB isn't updated at >>> >> all. >> >> But this is not a Dovecot problem, isn't it? Antispam calls sa-learn, >> but that program fails. >> > Exactly true. But the circumstance is particular to Dovecot, and I'm > sure that *someone* else out there is using this config (dovecot and > spamassassin). So hoping someone has seen this and gotten around it. > >> Do you have the system library libgcc_s installed as the error message >> says? >> > Yup. $ locate > libgcc_s > > /lib/x86_64-linux-gnu/libgcc_s.so.1 > /usr/lib/gcc/x86_64-linux-gnu/4.7/libgcc_s.so > > >> Search the net for that error message, see: >> https://lists.ubuntu.com/archives/foundations-bugs/2012-March/070050.html >> >> If you are on a 64bit system, maybe sa-learn is compiled 32bit only, >> then the library must be installed as 32bit version as well. >> > /usr/bin/sa-learn is a perl script, calling the various > Mail::SpamAssassin modules. No 32/64 bit there afaik. > > From me at junc.eu Sat Nov 16 21:42:17 2013 From: me at junc.eu (Benny Pedersen) Date: Sat, 16 Nov 2013 20:42:17 +0100 Subject: [Dovecot] =?utf-8?q?PAM_and_user=40domain_login=3F?= In-Reply-To: References: Message-ID: <2d3b651f43163a68996591db28594ff0@junc.eu> Larry Rosenman skrev den 2013-11-15 19:35: > I have a stupid android client that wants to use user at domain but > doesn't > have an option to pass just user..... setup realm in pam auth (dovecot part) dovecot uses always user at realm.example.org for auth login, thats why login without @ in the login fails androids is not that stupid btw :=) more help post dovecot -n From me at junc.eu Sat Nov 16 21:45:16 2013 From: me at junc.eu (Benny Pedersen) Date: Sat, 16 Nov 2013 20:45:16 +0100 Subject: [Dovecot] =?utf-8?q?PAM_and_user=40domain_login=3F?= In-Reply-To: References: <52866B34.3020903@localhost.localdomain.org> Message-ID: <2ba588f041bc4636a4af00b30218b92e@junc.eu> Larry Rosenman skrev den 2013-11-15 19:47: > Yes, it does. I wish the documentation on the Wiki was easier to find > gems > like this. >> Does auth_username_format=%n solve your issue? should only be used for pam auth, not other auth backends, problem is not dovecot but unix logins is not possible with @ :=) From larryrtx at gmail.com Sat Nov 16 22:01:48 2013 From: larryrtx at gmail.com (Larry Rosenman) Date: Sat, 16 Nov 2013 14:01:48 -0600 Subject: [Dovecot] PAM and user@domain login? In-Reply-To: <2ba588f041bc4636a4af00b30218b92e@junc.eu> References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> Message-ID: and how can I restrict it to PAM only? # doveconf -n # 2.2.6: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 10.0-BETA3 amd64 auth_mechanisms = plain login auth_username_format = %Ln disable_plaintext_auth = no lda_mailbox_autocreate = yes lmtp_save_to_detail_mailbox = yes mail_debug = yes mail_location = mbox:~/mail:INBOX=~/mail/INBOX mail_plugins = snarf fts fts_lucene stats mail_privileged_group = mail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace Snarf { hidden = yes list = no location = mbox:~/mail:INBOX=/var/mail/%u:INDEX=MEMORY prefix = ~~Snarfbox/ separator = / } namespace archive { hidden = no inbox = no list = no location = mbox:~/MAILARCHIVE prefix = "#ARCHIVE/" separator = / } namespace default { hidden = yes list = no location = prefix = ~~default/ separator = / } namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox INBOX { auto = create } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { driver = pam } plugin { fts = lucene fts_lucene = whitespace_chars=@. normalize no_snowball mbox_snarf = ~/mail/INBOX sieve = ~/.dovecot.sieve sieve_dir = ~/sieve snarf = ~~Snarfbox/INBOX stats_command_min_time = 1 mins stats_domain_min_time = 12 hours stats_ip_min_time = 12 hours stats_memory_limit = 16 M stats_refresh = 5s stats_session_min_time = 15 mins stats_track_cmds = yes stats_user_min_time = 1 hours } service auth { unix_listener auth-client { mode = 0666 } unix_listener auth-master { mode = 0666 } } service stats { chroot = empty client_limit = 0 drop_priv_before_exec = no executable = stats extra_groups = fifo_listener stats-mail { group = mode = 0666 user = } group = idle_kill = 4294967295 secs privileged_group = process_limit = 1 process_min_avail = 0 protocol = service_count = 0 type = unix_listener stats { group = mode = 0666 user = } user = $default_internal_user vsz_limit = 18446744073709551615 B } ssl_cert = wrote: > Larry Rosenman skrev den 2013-11-15 19:47: > > Yes, it does. I wish the documentation on the Wiki was easier to find >> gems >> like this. >> > > Does auth_username_format=%n solve your issue? >>> >> > should only be used for pam auth, not other auth backends, problem is not > dovecot but unix logins is not possible with @ :=) > > > -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx at gmail.com US Mail: 108 Turvey Cove, Hutto, TX 78634-5688 From me at junc.eu Sat Nov 16 23:26:31 2013 From: me at junc.eu (Benny Pedersen) Date: Sat, 16 Nov 2013 22:26:31 +0100 Subject: [Dovecot] =?utf-8?q?PAM_and_user=40domain_login=3F?= In-Reply-To: References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> Message-ID: <10d33ea49618b56b3e61ea3a981ce321@junc.eu> Larry Rosenman skrev den 2013-11-16 21:01: > and how can I restrict it to PAM only? put auth_username_format=%n into passdb pam driver container only but showed dovecot -n say you only using pam, so have this global is working aswell From larryrtx at gmail.com Sat Nov 16 23:31:25 2013 From: larryrtx at gmail.com (Larry Rosenman) Date: Sat, 16 Nov 2013 15:31:25 -0600 Subject: [Dovecot] PAM and user@domain login? In-Reply-To: <10d33ea49618b56b3e61ea3a981ce321@junc.eu> References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> <10d33ea49618b56b3e61ea3a981ce321@junc.eu> Message-ID: It doesn't seem to like it there.... # authentication to actually work. passdb { driver = pam # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=] # [cache_key=] [] #args = dovecot auth_username_format = %u } # System users (NSS, /etc/passwd, or similiar). # In many systems nowadays this uses Name Service Switch, which is # configured in /etc/nsswitch.conf. #passdb { #driver = passwd # [blocking=no] auth-system.conf.ext: 75 lines, 2210 characters. # doveconf # 2.2.6: /usr/local/etc/dovecot/dovecot.conf doveconf: Fatal: Error in configuration file /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown setting: auth_username_format doveconf: Error: managesieve-login: dump-capability process returned 89 doveconf: Fatal: Error in configuration file /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown setting: auth_username_format # On Sat, Nov 16, 2013 at 3:26 PM, Benny Pedersen wrote: > Larry Rosenman skrev den 2013-11-16 21:01: > > and how can I restrict it to PAM only? >> > > put auth_username_format=%n into passdb pam driver container only > > but showed dovecot -n say you only using pam, so have this global is > working aswell > > -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx at gmail.com US Mail: 108 Turvey Cove, Hutto, TX 78634-5688 From me at junc.eu Sat Nov 16 23:49:32 2013 From: me at junc.eu (Benny Pedersen) Date: Sat, 16 Nov 2013 22:49:32 +0100 Subject: [Dovecot] =?utf-8?q?PAM_and_user=40domain_login=3F?= In-Reply-To: References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> <10d33ea49618b56b3e61ea3a981ce321@junc.eu> Message-ID: Larry Rosenman skrev den 2013-11-16 22:31: > It doesn't seem to like it there.... Timo? but you miss to setup realm in 10-auth.conf auth_username_format=%n is so only global setting :( > > # authentication to actually work. > passdb { > driver = pam > # [session=yes] [setcred=yes] [failure_show_msg=yes] > [max_requests=] > # [cache_key=] [] > #args = dovecot > auth_username_format = %u > } > > # System users (NSS, /etc/passwd, or similiar). > # In many systems nowadays this uses Name Service Switch, which is > # configured in /etc/nsswitch.conf. > #passdb { > #driver = passwd > # [blocking=no] > auth-system.conf.ext: 75 lines, 2210 characters. > # doveconf > # 2.2.6: /usr/local/etc/dovecot/dovecot.conf > doveconf: Fatal: Error in configuration file > /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown > setting: auth_username_format > doveconf: Error: managesieve-login: dump-capability process returned 89 > doveconf: Fatal: Error in configuration file > /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown > setting: auth_username_format > # > > > > On Sat, Nov 16, 2013 at 3:26 PM, Benny Pedersen wrote: > >> Larry Rosenman skrev den 2013-11-16 21:01: >> >> and how can I restrict it to PAM only? >>> >> >> put auth_username_format=%n into passdb pam driver container only >> >> but showed dovecot -n say you only using pam, so have this global is >> working aswell >> >> -- senders that put my email into body content will deliver it to my own trashcan, so if you like to get reply, dont do it From larryrtx at gmail.com Sat Nov 16 23:53:36 2013 From: larryrtx at gmail.com (Larry Rosenman) Date: Sat, 16 Nov 2013 15:53:36 -0600 Subject: [Dovecot] PAM and user@domain login? In-Reply-To: References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> <10d33ea49618b56b3e61ea3a981ce321@junc.eu> Message-ID: fixed, but... # doveconf -n # 2.2.6: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 10.0-BETA3 amd64 auth_default_realm = lerctr.org auth_mechanisms = plain login auth_realms = lerctr.org thebighonker.lerctr.org tbh.lerctr.org auth_username_format = %Ln disable_plaintext_auth = no lda_mailbox_autocreate = yes lmtp_save_to_detail_mailbox = yes mail_debug = yes mail_location = mbox:~/mail:INBOX=~/mail/INBOX mail_plugins = snarf fts fts_lucene stats mail_privileged_group = mail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace Snarf { hidden = yes list = no location = mbox:~/mail:INBOX=/var/mail/%u:INDEX=MEMORY prefix = ~~Snarfbox/ separator = / } namespace archive { hidden = no inbox = no list = no location = mbox:~/MAILARCHIVE prefix = "#ARCHIVE/" separator = / } namespace default { hidden = yes list = no location = prefix = ~~default/ separator = / } namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox INBOX { auto = create } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { driver = pam } plugin { fts = lucene fts_lucene = whitespace_chars=@. normalize no_snowball mbox_snarf = ~/mail/INBOX sieve = ~/.dovecot.sieve sieve_dir = ~/sieve snarf = ~~Snarfbox/INBOX stats_command_min_time = 1 mins stats_domain_min_time = 12 hours stats_ip_min_time = 12 hours stats_memory_limit = 16 M stats_refresh = 5s stats_session_min_time = 15 mins stats_track_cmds = yes stats_user_min_time = 1 hours } service auth { unix_listener auth-client { mode = 0666 } unix_listener auth-master { mode = 0666 } } service stats { chroot = empty client_limit = 0 drop_priv_before_exec = no executable = stats extra_groups = fifo_listener stats-mail { group = mode = 0666 user = } group = idle_kill = 4294967295 secs privileged_group = process_limit = 1 process_min_avail = 0 protocol = service_count = 0 type = unix_listener stats { group = mode = 0666 user = } user = $default_internal_user vsz_limit = 18446744073709551615 B } ssl_cert = wrote: > Larry Rosenman skrev den 2013-11-16 22:31: > > It doesn't seem to like it there.... >> > > Timo? > > but you miss to setup realm in 10-auth.conf > > auth_username_format=%n is so only global setting :( > > > >> # authentication to actually work. >> passdb { >> driver = pam >> # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=] >> # [cache_key=] [] >> #args = dovecot >> auth_username_format = %u >> } >> >> # System users (NSS, /etc/passwd, or similiar). >> # In many systems nowadays this uses Name Service Switch, which is >> # configured in /etc/nsswitch.conf. >> #passdb { >> #driver = passwd >> # [blocking=no] >> auth-system.conf.ext: 75 lines, 2210 characters. >> # doveconf >> # 2.2.6: /usr/local/etc/dovecot/dovecot.conf >> doveconf: Fatal: Error in configuration file >> /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown >> setting: auth_username_format >> doveconf: Error: managesieve-login: dump-capability process returned 89 >> doveconf: Fatal: Error in configuration file >> /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown >> setting: auth_username_format >> # >> >> >> >> On Sat, Nov 16, 2013 at 3:26 PM, Benny Pedersen wrote: >> >> Larry Rosenman skrev den 2013-11-16 21:01: >>> >>> and how can I restrict it to PAM only? >>> >>>> >>>> >>> put auth_username_format=%n into passdb pam driver container only >>> >>> but showed dovecot -n say you only using pam, so have this global is >>> working aswell >>> >>> >>> > -- > senders that put my email into body content will deliver it to my own > trashcan, so if you like to get reply, dont do it > -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx at gmail.com US Mail: 108 Turvey Cove, Hutto, TX 78634-5688 From tss at iki.fi Sat Nov 16 23:57:20 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 16 Nov 2013 23:57:20 +0200 Subject: [Dovecot] PAM and user@domain login? In-Reply-To: References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> <10d33ea49618b56b3e61ea3a981ce321@junc.eu> Message-ID: <8C0EEC57-92D5-4723-B210-AE4C629B5984@iki.fi> On 16.11.2013, at 23.49, Benny Pedersen wrote: > Larry Rosenman skrev den 2013-11-16 22:31: >> It doesn't seem to like it there.... > > Timo? > > but you miss to setup realm in 10-auth.conf > > auth_username_format=%n is so only global setting :( That?s been in my TODO for a while, so yeah, not possible currently. I?m not sure if there might be some PAM plugin that drops out the @domain. > >> # authentication to actually work. >> passdb { >> driver = pam >> # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=] >> # [cache_key=] [] >> #args = dovecot >> auth_username_format = %u >> } >> # System users (NSS, /etc/passwd, or similiar). >> # In many systems nowadays this uses Name Service Switch, which is >> # configured in /etc/nsswitch.conf. >> #passdb { >> #driver = passwd >> # [blocking=no] >> auth-system.conf.ext: 75 lines, 2210 characters. >> # doveconf >> # 2.2.6: /usr/local/etc/dovecot/dovecot.conf >> doveconf: Fatal: Error in configuration file >> /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown >> setting: auth_username_format >> doveconf: Error: managesieve-login: dump-capability process returned 89 >> doveconf: Fatal: Error in configuration file >> /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown >> setting: auth_username_format >> # >> On Sat, Nov 16, 2013 at 3:26 PM, Benny Pedersen wrote: >>> Larry Rosenman skrev den 2013-11-16 21:01: >>> and how can I restrict it to PAM only? >>> put auth_username_format=%n into passdb pam driver container only >>> but showed dovecot -n say you only using pam, so have this global is >>> working aswell > > -- > senders that put my email into body content will deliver it to my own trashcan, so if you like to get reply, dont do it From larryrtx at gmail.com Sat Nov 16 23:59:15 2013 From: larryrtx at gmail.com (Larry Rosenman) Date: Sat, 16 Nov 2013 15:59:15 -0600 Subject: [Dovecot] PAM and user@domain login? In-Reply-To: <8C0EEC57-92D5-4723-B210-AE4C629B5984@iki.fi> References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> <10d33ea49618b56b3e61ea3a981ce321@junc.eu> <8C0EEC57-92D5-4723-B210-AE4C629B5984@iki.fi> Message-ID: I haven't seen one that I can find, Timo -- It might be a good thing to either add it, or modify your PAM calls to do it by design..... On 11/16/13, Timo Sirainen wrote: > On 16.11.2013, at 23.49, Benny Pedersen wrote: > >> Larry Rosenman skrev den 2013-11-16 22:31: >>> It doesn't seem to like it there.... >> >> Timo? >> >> but you miss to setup realm in 10-auth.conf >> >> auth_username_format=%n is so only global setting :( > > That?s been in my TODO for a while, so yeah, not possible currently. I?m not > sure if there might be some PAM plugin that drops out the @domain. > >> >>> # authentication to actually work. >>> passdb { >>> driver = pam >>> # [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=] >>> # [cache_key=] [] >>> #args = dovecot >>> auth_username_format = %u >>> } >>> # System users (NSS, /etc/passwd, or similiar). >>> # In many systems nowadays this uses Name Service Switch, which is >>> # configured in /etc/nsswitch.conf. >>> #passdb { >>> #driver = passwd >>> # [blocking=no] >>> auth-system.conf.ext: 75 lines, 2210 characters. >>> # doveconf >>> # 2.2.6: /usr/local/etc/dovecot/dovecot.conf >>> doveconf: Fatal: Error in configuration file >>> /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown >>> setting: auth_username_format >>> doveconf: Error: managesieve-login: dump-capability process returned 89 >>> doveconf: Fatal: Error in configuration file >>> /usr/local/etc/dovecot/conf.d/auth-system.conf.ext line 15: Unknown >>> setting: auth_username_format >>> # >>> On Sat, Nov 16, 2013 at 3:26 PM, Benny Pedersen wrote: >>>> Larry Rosenman skrev den 2013-11-16 21:01: >>>> and how can I restrict it to PAM only? >>>> put auth_username_format=%n into passdb pam driver container only >>>> but showed dovecot -n say you only using pam, so have this global is >>>> working aswell >> >> -- >> senders that put my email into body content will deliver it to my own >> trashcan, so if you like to get reply, dont do it > > -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx at gmail.com US Mail: 108 Turvey Cove, Hutto, TX 78634-5688 From me at junc.eu Sat Nov 16 23:59:08 2013 From: me at junc.eu (Benny Pedersen) Date: Sat, 16 Nov 2013 22:59:08 +0100 Subject: [Dovecot] =?utf-8?q?PAM_and_user=40domain_login=3F?= In-Reply-To: References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> <10d33ea49618b56b3e61ea3a981ce321@junc.eu> Message-ID: <70a6b1a39b3da1a70aa5ba8a375e80dd@junc.eu> Larry Rosenman skrev den 2013-11-16 22:53: > fixed, but... what error now ? From larryrtx at gmail.com Sun Nov 17 00:05:05 2013 From: larryrtx at gmail.com (Larry Rosenman) Date: Sat, 16 Nov 2013 16:05:05 -0600 Subject: [Dovecot] PAM and user@domain login? In-Reply-To: <70a6b1a39b3da1a70aa5ba8a375e80dd@junc.eu> References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> <10d33ea49618b56b3e61ea3a981ce321@junc.eu> <70a6b1a39b3da1a70aa5ba8a375e80dd@junc.eu> Message-ID: still what needs Timo's help with the stripping of the domain for PAM.... On 11/16/13, Benny Pedersen wrote: > Larry Rosenman skrev den 2013-11-16 22:53: >> fixed, but... > > what error now ? > > -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx at gmail.com US Mail: 108 Turvey Cove, Hutto, TX 78634-5688 From mselner at yahoo.com Sun Nov 17 00:21:13 2013 From: mselner at yahoo.com (Mike Selner @ Yahoo) Date: Sat, 16 Nov 2013 14:21:13 -0800 (PST) Subject: [Dovecot] Reset vacation lda-dupes database Message-ID: <1384640473.9770.YahooMailMobile@web125805.mail.ne1.yahoo.com> Hello, I have dovecot 2.2.6 and pignenhole 0.4.2 running on freebsd9.1. We have a mix of unix users (/home/user) and postfixadmin users (/home/vmail/domain/user). I am using dovecot managesive with afterlogic webmail which has a managesieve plugin to set the out of office message. All works fine. I have sieve_vacation_default_period set to 1d. The problem I'm trying to solve is that users set their vacation message and want to test it. So they have their colleagues send them multiple test messages and want to make sure it works. Of course only the first message gets an auto-reply. I tell them that the auto responder only sends one message per day per sender but they would like to test it with a new message etc. So I have to remove their .lda-dupes file manually so they can try again. My previous autoresponder setup (squirrelmail) used a .forward technique and removed the vacation database when they turned the responder from off to on, and this worked well for the above issue. Is there a solution for dovecot managesieve which will remove or reset the .lda-dupes file whenever a new sieve file is uploaded? Or another solution that will reset the "vacation timer" when the user turns vacation from off to on? Thank you Mike From me at junc.eu Sun Nov 17 01:17:13 2013 From: me at junc.eu (Benny Pedersen) Date: Sun, 17 Nov 2013 00:17:13 +0100 Subject: [Dovecot] =?utf-8?q?PAM_and_user=40domain_login=3F?= In-Reply-To: References: <52866B34.3020903@localhost.localdomain.org> <2ba588f041bc4636a4af00b30218b92e@junc.eu> <10d33ea49618b56b3e61ea3a981ce321@junc.eu> <70a6b1a39b3da1a70aa5ba8a375e80dd@junc.eu> Message-ID: <0674058e1603c1dd8cf644da69b1f45a@junc.eu> Larry Rosenman skrev den 2013-11-16 23:05: > still what needs Timo's help with the stripping of the domain for > PAM.... global config with auth_username_format=%n its in 10-auth.conf From km at mathcs.emory.edu Sun Nov 17 01:47:56 2013 From: km at mathcs.emory.edu (Ken Mandelberg) Date: Sat, 16 Nov 2013 18:47:56 -0500 Subject: [Dovecot] Issue with Mavericks Mail Client Message-ID: <5288042C.3040304@mathcs.emory.edu> We run a dovecot mailserver. One of the clients I use is a Mac Laptop. Recently I upgraded from Mountain Lion (10.8) to Mavericks (10.9). Under 10.8 it worked fine. On 10.9 it syncs up when I invoke the client, but after a while stops getting updates. Most of my mail clients are on Linux (thunderbird) or Android (K9) and I admit that several run against my very large INBOX simultaneously. The one of the 10.9 Mac laptop is the only one with this issue. Is there something known about the new 10.9 Mail client on the Mac that would lose sync against dovecot? From tss at iki.fi Sun Nov 17 01:55:27 2013 From: tss at iki.fi (Timo Sirainen) Date: Sun, 17 Nov 2013 01:55:27 +0200 Subject: [Dovecot] Issue with Mavericks Mail Client In-Reply-To: <5288042C.3040304@mathcs.emory.edu> References: <5288042C.3040304@mathcs.emory.edu> Message-ID: <57D16666-1F48-40AB-A513-451577B4A62B@iki.fi> On 17.11.2013, at 1.47, Ken Mandelberg wrote: > We run a dovecot mailserver. One of the clients I use is a Mac Laptop. Recently I upgraded from Mountain Lion (10.8) to Mavericks (10.9). Under 10.8 it worked fine. On 10.9 it syncs up when I invoke the client, but after a while stops getting updates. > > Most of my mail clients are on Linux (thunderbird) or Android (K9) and I admit that several run against my very large INBOX simultaneously. The one of the 10.9 Mac laptop is the only one with this issue. > > Is there something known about the new 10.9 Mail client on the Mac that would lose sync against dovecot? You didn?t mention what Dovecot version. Anyway I?ve noticed once that 10.9 Mail didn?t show some of my mails until I restarted it. Then there are several other annoying bugs.. I really shouldn?t have upgraded yet. From dieterknopf at googlemail.com Sun Nov 17 06:31:08 2013 From: dieterknopf at googlemail.com (Dieter Knopf) Date: Sun, 17 Nov 2013 05:31:08 +0100 Subject: [Dovecot] Shared Folters with LDA/Sieve Message-ID: Hello, i'm searching for a way to use Shared mailboxes with Sieve Filtering. I need global email addresses like: info at foo.tld contact at foo.tld help at foo.tld Every address with own Sieve-rules for filtering and sorting of incoming mails. Now every user needs access to this folders, but how? How should i create the "global" addresses? I already found http://wiki2.dovecot.org/SharedMailboxes/Public , but that's just a public namespace. Is there any FAQ available for this? Thank you very much Dieter From torbjorn.jansson at mbox200.swipnet.se Sun Nov 17 12:20:35 2013 From: torbjorn.jansson at mbox200.swipnet.se (Torbjorn Jansson) Date: Sun, 17 Nov 2013 11:20:35 +0100 Subject: [Dovecot] UID order vs date order Message-ID: <52889873.4090904@mbox200.swipnet.se> Hi i have recently moved a mailbox to dovecot and intend to use it via imap and i have run into a problem. when i imported the mails apparently the UID order got reversed compared to the date order, result is that some clients like on android devices download the oldest mails instead of newest. it is not so interesting to have several years old mail show up at the top of the mailbox. is there any way of convincing dovecot to renumber the mails by date order instead? i have tried to delete the dovecot-uidlist and dovecont.index* files in an unimportant folder and the only thing that happens was that all of the mails got renumbered in the wrong order again (lower numbers but still same problem) any advice? i cant be the only one that have run into this. From rs at sys4.de Sun Nov 17 12:45:54 2013 From: rs at sys4.de (Robert Schetterer) Date: Sun, 17 Nov 2013 11:45:54 +0100 Subject: [Dovecot] UID order vs date order In-Reply-To: <52889873.4090904@mbox200.swipnet.se> References: <52889873.4090904@mbox200.swipnet.se> Message-ID: <52889E62.20808@sys4.de> Am 17.11.2013 11:20, schrieb Torbjorn Jansson: > when i imported the mails how did you did this ? from what server to what version of dove, what mailbox format meanwhile read i.e for possible solutions http://wiki2.dovecot.org/Tools/Doveadm/Mailbox Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From torbjorn.jansson at mbox200.swipnet.se Sun Nov 17 13:06:32 2013 From: torbjorn.jansson at mbox200.swipnet.se (Torbjorn Jansson) Date: Sun, 17 Nov 2013 12:06:32 +0100 Subject: [Dovecot] UID order vs date order In-Reply-To: <52889E62.20808@sys4.de> References: <52889873.4090904@mbox200.swipnet.se> <52889E62.20808@sys4.de> Message-ID: <5288A338.8090302@mbox200.swipnet.se> On 2013-11-17 11:45, Robert Schetterer wrote: > Am 17.11.2013 11:20, schrieb Torbjorn Jansson: >> when i imported the mails > > how did you did this ? from what server to what version of dove, what > mailbox format > i used thunderbirds import function to import mail from outlook then copy over the folders to the imap server with thunderbird. (tbird imports to "Local Folders" and not directly to imap) dovecot is version 2.2.6 and dovecot uses maildir format for the mailbox. From rs at sys4.de Sun Nov 17 16:17:31 2013 From: rs at sys4.de (Robert Schetterer) Date: Sun, 17 Nov 2013 15:17:31 +0100 Subject: [Dovecot] UID order vs date order In-Reply-To: <5288A338.8090302@mbox200.swipnet.se> References: <52889873.4090904@mbox200.swipnet.se> <52889E62.20808@sys4.de> <5288A338.8090302@mbox200.swipnet.se> Message-ID: <5288CFFB.90202@sys4.de> Am 17.11.2013 12:06, schrieb Torbjorn Jansson: > (tbird imports to "Local Folders" and not directly to imap) beside other dovecot solving ,this perhaps is the source of the problem, you have better choosen i.e imapsync or dsync on the server , is there a chance to retry your procedure with imapsync , which might be the fastest solution. Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From achim at ag-web.biz Sun Nov 17 16:33:39 2013 From: achim at ag-web.biz (Achim Gottinger) Date: Sun, 17 Nov 2013 15:33:39 +0100 Subject: [Dovecot] Shared Folters with LDA/Sieve In-Reply-To: References: Message-ID: <5288D3C3.70300@ag-web.biz> Am 17.11.2013 05:31, schrieb Dieter Knopf: > Hello, > > i'm searching for a way to use Shared mailboxes with Sieve Filtering. > > I need global email addresses like: > info at foo.tld > contact at foo.tld > help at foo.tld > > Every address with own Sieve-rules for filtering and sorting of incoming > mails. > > Now every user needs access to this folders, but how? How should i create > the "global" addresses? > > I already found http://wiki2.dovecot.org/SharedMailboxes/Public , but > that's just a public namespace. > > Is there any FAQ available for this? > > Thank you very much > Dieter > On my setup with an Active Directory LDAP backend i used Domain Groups for such email Adresses and configured the acl's in an way that members of the groups have full access to the group's imap folders via the shared (not the public) namespace. Since each group has normal imap account sieve rules can be applied as well. Guess you can use simple useraccounts for the mail accounts and share them for all authenticated users. Should be simpler. http://wiki2.dovecot.org/SharedMailboxes/Shared achim~ From torbjorn.jansson at mbox200.swipnet.se Sun Nov 17 17:02:50 2013 From: torbjorn.jansson at mbox200.swipnet.se (Torbjorn Jansson) Date: Sun, 17 Nov 2013 16:02:50 +0100 Subject: [Dovecot] UID order vs date order In-Reply-To: <5288CFFB.90202@sys4.de> References: <52889873.4090904@mbox200.swipnet.se> <52889E62.20808@sys4.de> <5288A338.8090302@mbox200.swipnet.se> <5288CFFB.90202@sys4.de> Message-ID: <5288DA9A.8030202@mbox200.swipnet.se> On 2013-11-17 15:17, Robert Schetterer wrote: > Am 17.11.2013 12:06, schrieb Torbjorn Jansson: >> (tbird imports to "Local Folders" and not directly to imap) > > beside other dovecot solving ,this perhaps is the source of the problem, > you have better choosen i.e imapsync or dsync on the server , is there a > chance to retry your procedure with imapsync , which might be the > fastest solution. the problem is that the source mailbox was a local pst file. i suspect both of those tools are for converting between existing imap accounts and/or mbox/maildir format and not pst file. with a bit of trouble i can probably redo the import but i still don't know what i could have done differently to affect the sort order of the UID numbers. only thing i can think of now is to take the dovecot-uidlist in each folder and then renumber them by taking the first "column" and reverse it (first value and last value gets swapped and so on) probably not the right way but what other choice do i have? From km at mathcs.emory.edu Sun Nov 17 17:05:04 2013 From: km at mathcs.emory.edu (Ken Mandelberg) Date: Sun, 17 Nov 2013 10:05:04 -0500 Subject: [Dovecot] Issue with Mavericks Mail Client In-Reply-To: References: Message-ID: <5288DB20.7020204@mathcs.emory.edu> Timo Sirainen wrote > On 17.11.2013, at 1.47, Ken Mandelberg wrote: > >> >We run a dovecot mailserver. One of the clients I use is a Mac Laptop. Recently I upgraded from Mountain Lion (10.8) to Mavericks (10.9). Under 10.8 it worked fine. On 10.9 it syncs up when I invoke the client, but after a while stops getting updates. >> > >> >Most of my mail clients are on Linux (thunderbird) or Android (K9) and I admit that several run against my very large INBOX simultaneously. The one of the 10.9 Mac laptop is the only one with this issue. >> > >> >Is there something known about the new 10.9 Mail client on the Mac that would lose sync against dovecot? > You didn?t mention what Dovecot version. Anyway I?ve noticed once that 10.9 Mail didn?t show some of my mails until I restarted it. Then there are several other annoying bugs.. I really shouldn?t have upgraded yet. We are running Dovecot 2.0.12, and I already have the Mavericks Mail patch of a few days ago. Still requires a restart to get new mail. From CMarcus at Media-Brokers.com Sun Nov 17 18:45:08 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Sun, 17 Nov 2013 11:45:08 -0500 Subject: [Dovecot] Issue with Mavericks Mail Client In-Reply-To: <5288DB20.7020204@mathcs.emory.edu> References: <5288DB20.7020204@mathcs.emory.edu> Message-ID: <5288F294.9090500@Media-Brokers.com> On 2013-11-17 10:05 AM, Ken Mandelberg wrote: > We are running Dovecot 2.0.12, and I already have the Mavericks Mail > patch of a few days ago. Still requires a restart to get new mail. Reporting problems against officially unsupported versions is not very productive... Not saying it will fix this particular problem, but best would be to upgrade (at least to latest 2.1.x, best to latest 2.2.x), since the fix, when it is available, won't apply to 2.0.x... From rs at sys4.de Sun Nov 17 19:28:23 2013 From: rs at sys4.de (Robert Schetterer) Date: Sun, 17 Nov 2013 18:28:23 +0100 Subject: [Dovecot] UID order vs date order In-Reply-To: <5288DA9A.8030202@mbox200.swipnet.se> References: <52889873.4090904@mbox200.swipnet.se> <52889E62.20808@sys4.de> <5288A338.8090302@mbox200.swipnet.se> <5288CFFB.90202@sys4.de> <5288DA9A.8030202@mbox200.swipnet.se> Message-ID: <5288FCB7.2010105@sys4.de> Am 17.11.2013 16:02, schrieb Torbjorn Jansson: > the problem is that the source mailbox was a local pst file. have you tried open mailbox with imap in outlook, additional open pst file and simply copy from pst to imap, i see no reason why you have to use thunderbird for that job, however that might not solve your problem , but one source of bug chance is gone then for server side solution i only see some doveadm stuff http://wiki2.dovecot.org/Tools/Doveadm but i am too short in time, for now ,to think about more or exact advice, perhaps wait for other advice from the list Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From kremels at kreme.com Sun Nov 17 20:27:58 2013 From: kremels at kreme.com (LuKreme) Date: Sun, 17 Nov 2013 11:27:58 -0700 Subject: [Dovecot] UID order vs date order In-Reply-To: <52889873.4090904@mbox200.swipnet.se> References: <52889873.4090904@mbox200.swipnet.se> Message-ID: On 17 Nov 2013, at 03:20 , Torbjorn Jansson wrote: > Hi > > i have recently moved a mailbox to dovecot and intend to use it via imap and i have run into a problem. > > when i imported the mails apparently the UID order got reversed compared to the date order, result is that some clients like on android devices download the oldest mails instead of newest. > it is not so interesting to have several years old mail show up at the top of the mailbox. > > is there any way of convincing dovecot to renumber the mails by date order instead? Probably the easiest solution is to figure out what you did in the import to cause this and reimport the mails. Short of that, the only thing you can do (assuming you are using Maildir, right?) is to get the date out of the mail and rewrite the filename with the correct epoch timestamp. It would be great if there was a way to use doveadm to do this, but short of that you just have to fix it yourself. The good news is, with gnu date it?s pretty simple. $ date --date='2013-11-17 01:23:45 +0700' +%s 1384626225 $ gdate --date='November 17, 2013 01:23:45 +0700' +%s 1384626225 $ gdate --date='17 Nov 2013 01:23:45 +0700' +%s 1384626225 > i cant be the only one that have run into this. I had a similar problem, but I ignored it and as new mail came in, the problem went away (mostly) on its own. :/ -- A cubicle is simply a cell without a door. From rs at sys4.de Sun Nov 17 21:11:32 2013 From: rs at sys4.de (Robert Schetterer) Date: Sun, 17 Nov 2013 20:11:32 +0100 Subject: [Dovecot] UID order vs date order In-Reply-To: References: <52889873.4090904@mbox200.swipnet.se> Message-ID: <528914E4.5060109@sys4.de> Am 17.11.2013 19:27, schrieb LuKreme: > > On 17 Nov 2013, at 03:20 , Torbjorn Jansson wrote: > >> Hi >> >> i have recently moved a mailbox to dovecot and intend to use it via imap and i have run into a problem. >> >> when i imported the mails apparently the UID order got reversed compared to the date order, result is that some clients like on android devices download the oldest mails instead of newest. >> it is not so interesting to have several years old mail show up at the top of the mailbox. >> >> is there any way of convincing dovecot to renumber the mails by date order instead? > > Probably the easiest solution is to figure out what you did in the import to cause this and reimport the mails. Short of that, the only thing you can do (assuming you are using Maildir, right?) is to get the date out of the mail and rewrite the filename with the correct epoch timestamp. > > It would be great if there was a way to use doveadm to do this, but short of that you just have to fix it yourself. The good news is, with gnu date it?s pretty simple. > > $ date --date='2013-11-17 01:23:45 +0700' +%s > 1384626225 > $ gdate --date='November 17, 2013 01:23:45 +0700' +%s > 1384626225 > $ gdate --date='17 Nov 2013 01:23:45 +0700' +%s > 1384626225 > >> i cant be the only one that have run into this. > > I had a similar problem, but I ignored it and as new mail came in, the problem went away (mostly) on its own. :/ > > http://www.five-ten-sg.com/libpst/ might be an idea too Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From vizovitin at gmail.com Mon Nov 18 08:03:09 2013 From: vizovitin at gmail.com (Nicolay Vizovitin) Date: Mon, 18 Nov 2013 13:03:09 +0700 Subject: [Dovecot] I wrote CheckPassword Shell example for Dovecot Message-ID: Hello, Seeing as there are not too many Dovecot CheckPassword driver usage examples on the Internet, I wrote one using Shell script. You can see post about it here: http://devblog.plesk.com/2013/11/shell-checkpassword-authentication-in-dovecot/. The post also has a link to Mercurial repository with the example. Feel free to use the example as you see fit. You may even include it into documentation (or link to it), if you'd like. Thanks for such great software as Dovecot! -- Best regards, Nick From skdovecot at smail.inf.fh-brs.de Mon Nov 18 09:44:46 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 18 Nov 2013 08:44:46 +0100 (CET) Subject: [Dovecot] Shared Folters with LDA/Sieve In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sun, 17 Nov 2013, Dieter Knopf wrote: > I need global email addresses like: > info at foo.tld > contact at foo.tld > help at foo.tld > > Every address with own Sieve-rules for filtering and sorting of incoming > mails. > > Now every user needs access to this folders, but how? How should i create > the "global" addresses? > > I already found http://wiki2.dovecot.org/SharedMailboxes/Public , but > that's just a public namespace. > > Is there any FAQ available for this? IMHO, you should use: http://wiki2.dovecot.org/SharedMailboxes/Shared http://wiki2.dovecot.org/ACL setup those three recipient as their own accounts with Sieve filter a.s.o. Then install ACLs to share to anyone - or create a group for all users. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUonFbl3r2wJMiz2NAQLJCgf5AcAEk8UjRYai47jEqvMbQIKsyyvMrOPA 9fidoA3joBs6JzCfcXKGNtJHNwWrRA9g/kFR4KbPs6DlR0cXv4Do+ZcSRtMSGAkk TdW3Rngs0on0cH1qelbaVK+f8BqSQ/YUC+0FUg+Rk23xINve5C4TkWAzn+48zN/h qqgdet5FqchoPHUzbJxpRpXd5dRj9Kw1EjUXvVolZbmZGTRWgks9oCKuQrpSZ1VS eViLcg59J0Dn9WhvFaLk0s3ud8teIl2hRGeInTOPBloa1C5ysyYbs72mcb00bSOt GBZsbmZmSVdlhcsVaaL3KqCkAZTPzfGRNxOy9zLcHGw402yUDOq+XA== =TrwU -----END PGP SIGNATURE----- From janfrode at tanso.net Mon Nov 18 10:56:41 2013 From: janfrode at tanso.net (Jan-Frode Myklebust) Date: Mon, 18 Nov 2013 09:56:41 +0100 Subject: [Dovecot] highly available userdb In-Reply-To: References: Message-ID: <20131118085641.GE24038@mushkin.tanso.net> On Wed, Nov 13, 2013 at 01:52:09PM +1000, Nick Edwards wrote: > On 11/12/13, Jan-Frode Myklebust wrote: > > My installation is only serving 1/10 of your size, but long time ago we > > migrated off mysql for userdatabase, and over to LDAP. The MySQL data > > source had issues (not dovecot related), and didn't seem like the right > > tool for the job. > > > A database is a database, a master is a master, and a slave is a slave And some databases are better for some tasks than others. F.ex. LDAP gives dovecot free failover between servers. Handled in the ldap libraries. One could argue that you should be complaining to the MySQL developers about supporting server failover in the client library, and not to Dovecot. > our mysql has never had problem, not a single one, its why I'm so annoyed > dovecot is talking to master when it doesn't need to -jf From bind at enas.net Mon Nov 18 10:57:56 2013 From: bind at enas.net (Urban Loesch) Date: Mon, 18 Nov 2013 09:57:56 +0100 Subject: [Dovecot] Experience with ALTStorage on NFS mount In-Reply-To: References: <528498CD.2090308@enas.net> Message-ID: <5289D694.3040700@enas.net> Hi Daniel, thanks for your reply. I don't need director because all clients are proxied every time to the same backend. I will try it out asap. regards Urban Am 14.11.2013 19:33, schrieb Daniel Parthey: > Hi Urban > > I would recommend you to use NFS Version 4 and director instances, especially for such content which is heavily read but seldom written. NFSv4 has way better client-side caching than older NFS versions. You will need to run idmapd on NFS server and client to map usernames between server and client and. > > Regards > Daniel > From ihab_mishriki at hotmail.com Mon Nov 18 11:49:44 2013 From: ihab_mishriki at hotmail.com (ihab) Date: Mon, 18 Nov 2013 01:49:44 -0800 (PST) Subject: [Dovecot] why the system give the user more size than quota Message-ID: <1384768184950-45448.post@n4.nabble.com> Hello i put quota rules in the dovecot 1.2.15 the quota is per user and the system read from data base but the system give to user size more than quota any help please -- View this message in context: http://dovecot.2317879.n4.nabble.com/why-the-system-give-the-user-more-size-than-quota-tp45448.html Sent from the Dovecot mailing list archive at Nabble.com. From mailinglists at xgm.de Mon Nov 18 13:08:37 2013 From: mailinglists at xgm.de (Florian Lindner) Date: Mon, 18 Nov 2013 12:08:37 +0100 Subject: [Dovecot] Calling dovecot-lda from maildrop/shell Message-ID: <4100e686c5763d2906c8fa0f8ae72496@xgm.de> Hello, I want to make final delivery for some of my mailboxes using dovecot-lda, since I'm interested in using sieve. My usual MDA which is called from postfix is and will be maildrop. First try was to call dovecot-lda from command line: /usr/lib/dovecot/dovecot-lda -d spam at xgm.de < testmail which gave return code 75 (EX_TEMPFAIL) and logged: dovecot: auth-worker(3533): mysql(localhost): Connected to database system dovecot: imap-login: Login: user=, method=PLAIN, rip=::1, lip=::1, mpid=3535, secured, session= dovecot: imap(spam at xgm.de): Disconnected: Logged out in=91 out=830 dovecot: lda(spam at xgm.de): Error: user spam at xgm.de: Initialization failed: Namespace '': Mail storage autodetection failed with home=/home/flindner/Mail/spam dovecot: lda(spam at xgm.de): Fatal: Invalid user settings. Refer to server log for more information. My userdb/password is like that home == maildir == /home/flindner/Mail/spam (without prefixed "maildir:"). It works fine for dovecot-imap, it detects that spam is a maildir. I've also tried prefixing home and or maildir with "maildir:" or calling: HOME=maildir:~/Mail/spam /usr/lib/dovecot/dovecot-lda < testmail which gave: dovecot: lda: Error: user flindner: Relative home directory paths not supported: maildir:/home/flindner/Mail/spam dovecot: lda: Fatal: Invalid user settings. Refer to server log for more information. What is the problem with the LDA here? Thanks, Florian From user+dovecot at localhost.localdomain.org Mon Nov 18 14:40:31 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Mon, 18 Nov 2013 12:40:31 +0000 Subject: [Dovecot] Calling dovecot-lda from maildrop/shell In-Reply-To: <4100e686c5763d2906c8fa0f8ae72496@xgm.de> References: <4100e686c5763d2906c8fa0f8ae72496@xgm.de> Message-ID: <528A0ABF.70909@localhost.localdomain.org> On 11/18/2013 11:08 AM Florian Lindner wrote: > ? > First try was to call dovecot-lda from command line: > > /usr/lib/dovecot/dovecot-lda -d spam at xgm.de < testmail > > which gave return code 75 (EX_TEMPFAIL) and logged: > > dovecot: auth-worker(3533): mysql(localhost): Connected to database > system > dovecot: lda(spam at xgm.de): Error: user spam at xgm.de: Initialization > failed: Namespace '': Mail storage autodetection failed with > home=/home/flindner/Mail/spam > dovecot: lda(spam at xgm.de): Fatal: Invalid user settings. Refer to server > log for more information. > > My userdb/password is like that home == maildir == > /home/flindner/Mail/spam (without prefixed "maildir:"). It works fine > for dovecot-imap, it detects that spam is a maildir. > > I've also tried prefixing home and or maildir with "maildir:" or > calling: HOME=maildir:~/Mail/spam /usr/lib/dovecot/dovecot-lda < > testmail which gave: > > dovecot: lda: Error: user flindner: Relative home directory paths not > supported: maildir:/home/flindner/Mail/spam > dovecot: lda: Fatal: Invalid user settings. Refer to server log for more > information. > > What is the problem with the LDA here? Please provide the output from `doveconf -n` and `doveadm user flindner`. Regards, Pascal -- The trapper recommends today: decade.1332200 at localdomain.org From skdovecot at smail.inf.fh-brs.de Mon Nov 18 17:08:54 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 18 Nov 2013 16:08:54 +0100 (CET) Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: <5281457C.4040903@areyes.com> References: <527D6559.7000804@areyes.com> <5281457C.4040903@areyes.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 11 Nov 2013, Dean wrote: >> If you are on a 64bit system, maybe sa-learn is compiled 32bit only, >> then the library must be installed as 32bit version as well. > /usr/bin/sa-learn is a perl script, calling the various > Mail::SpamAssassin modules. No 32/64 bit there afaik. I have a 64bit system and use the spamassassin demon to train ham/spam without such problem. I have the 32bit lib installed: locate libgcc_s /lib/libgcc_s.so.1 /usr/lib/gcc/x86_64-linux-gnu/4.3/libgcc_s.so /usr/lib/gcc/x86_64-linux-gnu/4.3/libgcc_s_32.so /usr/lib/gcc/x86_64-linux-gnu/4.3/32/libgcc_s.so /usr/lib/gcc/x86_64-linux-gnu/4.4/libgcc_s.so /usr/lib/gcc/x86_64-linux-gnu/4.4/libgcc_s_32.so /usr/lib/gcc/x86_64-linux-gnu/4.4/32/libgcc_s.so /usr/lib32/libgcc_s.so.1 The 32bit library got onto the system via the "Suggests" of Debian's gcc package. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUoothl3r2wJMiz2NAQLeYQgAmyR8m7sMJD0pFnwHNXJtZ2+ENokgYz1h yC4B9QxIe6gqA4ITdp8hx3EGQII3JYQaci+qq0IsAnqq9YimCkVE9zTBrVc6aU19 yEJ6l+lWSgoyPdMVSF41ysfv37U8BlUfqsmE6I3Yj7Pp2SkBv3P4aAxt9n0VFm6J HZUbmjdRqhBhZvl2pDAdyUmTGzQU+v8SMknllHfsuC1OYHHGJlFbCpQBobZoEkkY KxOUfGVgIxekk1o0hA+7jPzCeaxfEjXgYkLKFzQeHin8T9fEZ4ibdRG3nLezJS45 1OwX+6qlAfjTyJShwYZ/BednXIWB9m7FvBXFgbS6L1D2onIyf/Xfvg== =spQn -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Mon Nov 18 17:10:53 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 18 Nov 2013 16:10:53 +0100 (CET) Subject: [Dovecot] why the system give the user more size than quota In-Reply-To: <1384768184950-45448.post@n4.nabble.com> References: <1384768184950-45448.post@n4.nabble.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 18 Nov 2013, ihab wrote: > i put quota rules in the dovecot 1.2.15 > the quota is per user > and the system read from data base but the system give to user size more > than quota show us your config and evidence that the quota is not enforced. BTW consider updating to the Dovecot v2 branch, because v1 is end of maintainance. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUoot/V3r2wJMiz2NAQLneAf9EtWB1wIXq6GuZ6KA/zbDQW7mEtOX98iU QEbOYkIfJ06Zx7X0xQOfBMLDCG9C3p3jTYurzH7QP6JI8A3EPREohCzWNU692I19 ClJr4y1Kz43h3jizGJOngOYTI20tpodZ0UEv3IxS9l3SmJw84GVcki51qIfsEZAW B1r4o1amDYNPryi1y7HLJAMV/l9q1c7qQNWeWZoCWURqMXdYvuNwFy90uEe45Jw6 OoTDA0KxHFyhNgPst0Wm4pFWSq6ZaJMZCZzRCHfPwi+0kWLDiknvvQ5J6G/lmubg NJ17fZFY0foIXF33W+Y/SkXZj2s59Hp/eb1e+80aIQGJybekZe58jg== =eWyc -----END PGP SIGNATURE----- From mailinglists at xgm.de Mon Nov 18 19:14:17 2013 From: mailinglists at xgm.de (Florian Lindner) Date: Mon, 18 Nov 2013 18:14:17 +0100 Subject: [Dovecot] Calling dovecot-lda from maildrop/shell In-Reply-To: <528A0ABF.70909@localhost.localdomain.org> References: <4100e686c5763d2906c8fa0f8ae72496@xgm.de> <528A0ABF.70909@localhost.localdomain.org> Message-ID: <2e38e77d216acb585f10bfaee5d7a80a@xgm.de> Am 18.11.2013 13:40, schrieb Pascal Volk: > On 11/18/2013 11:08 AM Florian Lindner wrote: >> ? >> First try was to call dovecot-lda from command line: >> >> /usr/lib/dovecot/dovecot-lda -d spam at xgm.de < testmail >> >> which gave return code 75 (EX_TEMPFAIL) and logged: >> >> dovecot: auth-worker(3533): mysql(localhost): Connected to database >> system >> dovecot: lda(spam at xgm.de): Error: user spam at xgm.de: Initialization >> failed: Namespace '': Mail storage autodetection failed with >> home=/home/flindner/Mail/spam >> dovecot: lda(spam at xgm.de): Fatal: Invalid user settings. Refer to >> server >> log for more information. >> >> My userdb/password is like that home == maildir == >> /home/flindner/Mail/spam (without prefixed "maildir:"). It works fine >> for dovecot-imap, it detects that spam is a maildir. >> >> I've also tried prefixing home and or maildir with "maildir:" or >> calling: HOME=maildir:~/Mail/spam /usr/lib/dovecot/dovecot-lda < >> testmail which gave: >> >> dovecot: lda: Error: user flindner: Relative home directory paths not >> supported: maildir:/home/flindner/Mail/spam >> dovecot: lda: Fatal: Invalid user settings. Refer to server log for >> more >> information. >> >> What is the problem with the LDA here? > > Please provide the output from `doveconf -n` and `doveadm user > flindner`. # doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.2 auth_mechanisms = plain login digest-md5 cram-md5 ntlm namespace inbox { inbox = yes location = mailbox Drafts { auto = create special_use = \Drafts } mailbox Junk { auto = create special_use = \Junk } mailbox Sent { auto = create special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Spam { special_use = \Junk } mailbox Trash { auto = create special_use = \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } protocols = imap pop3 service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } } ssl_cert = maildrop flindner -> maildrop -> maildir <- dovecot IMAP this should become: postfix @xgm.de -> maildrop flindner -> maildrop -> dovecot-lda -> maildir <- dovecot IMAP so that I can also use sieve for filtering. Regards, Florian From jsiegle at psu.edu Tue Nov 19 00:50:24 2013 From: jsiegle at psu.edu (Jonathan Siegle) Date: Mon, 18 Nov 2013 17:50:24 -0500 (EST) Subject: [Dovecot] Question about dovecot 2.2 and LIST command Message-ID: I am running dovecot 2.2 changeset 16983:d925674c4329 on AIX. We use mbox files with the "/" delimter. I have an imap protocol question. When I do: 1 list directory1/ * 1 OK List completed. Is that the correct answer? If I do 1 list "" * it shows * LIST (\Noselect \HasChildren) "/" "directory1" I forget why I think that even with the delimiter, I should see some information about it. Is this a silly test that no imap client does? Thanks, Jonathan From slusarz at curecanti.org Tue Nov 19 00:58:31 2013 From: slusarz at curecanti.org (Michael M Slusarz) Date: Mon, 18 Nov 2013 15:58:31 -0700 Subject: [Dovecot] Question about dovecot 2.2 and LIST command In-Reply-To: References: Message-ID: <20131118155831.Horde.OXHP_eyc9JfpAVT9CIcjDg5@bigworm.curecanti.org> Quoting Jonathan Siegle : > I am running dovecot 2.2 changeset 16983:d925674c4329 on AIX. We use > mbox files with the "/" delimter. I have an imap protocol question. > When I do: > > 1 list directory1/ * > 1 OK List completed. > > Is that the correct answer? Yes. See below. > If I do > 1 list "" * > > it shows > * LIST (\Noselect \HasChildren) "/" "directory1" You are asking for the list of all mailboxes under (i.e. within) the 'directory1' mailbox. According to your 2nd command, there are no visible mailboxes under "directory1". \HasChildren shouldn't normally be returned in this case. But that's a SHOULD NOT - not a MUST NOT. From RFC 3348: In many cases, however, a server may not be able to efficiently compute whether a user has access to all child mailboxes, or multiple users may be accessing the same account and simultaneously changing the mailbox hierarchy. As such a client MUST be prepared to accept the \HasChildren attribute as a hint. That is, a mailbox MAY be flagged with the \HasChildren attribute, but no child mailboxes will appear in a subsequent LIST response. michael From tlx at leuxner.net Tue Nov 19 09:35:40 2013 From: tlx at leuxner.net (Thomas Leuxner) Date: Tue, 19 Nov 2013 08:35:40 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> Message-ID: <20131119073540.GA21409@nihlus.leuxner.net> Is there more detail needed to finally solve this? The temporary fails caused by LMTP not reaching the 'RCPT TO' stage get pretty annoying in the light of backscatter hitting the server: Nov 19 08:16:09 spectre postfix/smtpd[21386]: NOQUEUE: reject: RCPT from emea01-am1-ndr.ptr.protection.outlook.com[157.56.116.99]: 450 4.1.1 : Recipient address rejected: unverified address: lost connection with spectre.leuxner.net[private/dovecot-lmtp] while sending MAIL FROM; from= to= proto=ESMTP helo= To reproduce simply add 'reject_unverified_recipient' to 'smtpd_recipient_restrictions'... -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From me at junc.eu Tue Nov 19 10:13:46 2013 From: me at junc.eu (Benny Pedersen) Date: Tue, 19 Nov 2013 09:13:46 +0100 Subject: [Dovecot] =?utf-8?q?status=3Dundeliverable_=28lost_connection_wit?= =?utf-8?q?h_mail=2Elarptreff=2Ede=5Bprivate/dovecot-lmtp=5D_while_sending?= =?utf-8?q?_MAIL_FROM=29?= In-Reply-To: <20131119073540.GA21409@nihlus.leuxner.net> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> <20131119073540.GA21409@nihlus.leuxner.net> Message-ID: <8a27edb177d8fe2ac07d101efbd00ab2@junc.eu> Thomas Leuxner skrev den 2013-11-19 08:35: > Is there more detail needed to finally solve this? The temporary fails > caused by LMTP not reaching the 'RCPT TO' stage get pretty annoying in > the light of backscatter hitting the server: > > Nov 19 08:16:09 spectre postfix/smtpd[21386]: NOQUEUE: reject: RCPT > from emea01-am1-ndr.ptr.protection.outlook.com[157.56.116.99]: 450 > 4.1.1 : Recipient > address rejected: unverified address: lost connection with > spectre.leuxner.net[private/dovecot-lmtp] while sending MAIL FROM; > from= > to= proto=ESMTP > helo= > > To reproduce simply add 'reject_unverified_recipient' to > 'smtpd_recipient_restrictions'... is dovecot knowing all alias addresses ?, with dovecot-lda its done in postfix before delivering to dovecot-lda, so if the recipient here is a valid mailbox it should work, but i think dovecot needs alias support to be used same way as postfix does when it works it would be a dream, seems we are not there yet From dovecot at webrz.net Tue Nov 19 12:30:25 2013 From: dovecot at webrz.net (Jos Chrispijn) Date: Tue, 19 Nov 2013 11:30:25 +0100 Subject: [Dovecot] Mail filters in incoming message Message-ID: <528B3DC1.3040604@webrz.net> With my iMap client, I use various mail rules to move specific email to the right mail folders. Downside of that is that is this mailclient is not online, all email is stuck in my inbox, which makes reading email by mobile phone kind of chaotic. I have seen several Pigeonhole Sieve examples, but I would like to know if there is a nub solution (I am not a programmer) to run filters when they enter my mail server (Postfix 2.10.2,1 icw Dovecot 1.2.17) or if there is a user friendly GUI available to set these filters? Perhaps Anyone interested to create such a GUI? Best regards, Jos Chrispijn --- Artificial intelligence is no match for natural stupidity From ihab_mishriki at hotmail.com Tue Nov 19 13:00:26 2013 From: ihab_mishriki at hotmail.com (ihab) Date: Tue, 19 Nov 2013 03:00:26 -0800 (PST) Subject: [Dovecot] how can i change the content of rejected message Message-ID: <1384858826008-45460.post@n4.nabble.com> i use dovecot 1.2.15 and set quota in the system and when the quota full for one user1 and other user2 sent a email to this user1 a rejected email will sent to user2 i want to change the content and the title of this email ??? Thanks in advance -- View this message in context: http://dovecot.2317879.n4.nabble.com/how-can-i-change-the-content-of-rejected-message-tp45460.html Sent from the Dovecot mailing list archive at Nabble.com. From karol.jurak at gmail.com Tue Nov 19 16:06:53 2013 From: karol.jurak at gmail.com (Karol Jurak) Date: Tue, 19 Nov 2013 15:06:53 +0100 Subject: [Dovecot] dsync-2.2.7 incorrectly synchronizes subscription status of renamed mailbox Message-ID: <1665811.zomfKVLqLF@karol-esprimo-p5925> Hi, It seems that dsync-2.2.7 doesn't correctly synchronize subscription status of a renamed mailbox. The situation is as follows. There are two servers: A and B, and a test user test_mdbox. Mailboxes (mdbox) of this user on both servers are synchronized. Specifically on both of them there is a (subscribed) Test1 mailbox. Replication plugin is disabled. I rename Test1 to Test2 on A with Thunderbird. The output of 'doveadm mailbox list', contents of subscriptions file and the output of 'doveadm dump -t mailboxlog dovecot.mailbox.log' (below) confirm that the rename succeeded on A. #2976: rename 2b84f621c0fd4ba8bd514c5c43ab9a89 (2013-11-19 14:30:35) #3000: subscribe 2b84f621c0fd4ba8bd514c5c43ab9a89 (2013-11-19 14:30:35) #3024: unsubscribe 99ea7bf70f6e69ad71659995677b43f8 (2013-11-19 14:30:35) Subsequently I run 'doveadm sync -u test_mdbox remote:B'. Nothing changes on A. On B 'doveadm mailbox list' shows that Test1 was renamed to Test2, but subscriptions file still contains Test1 and not Test2. The output of 'doveadm dump -t mailboxlog dovecot.mailbox.log' confirms that only rename was performed: #2160: rename 2b84f621c0fd4ba8bd514c5c43ab9a89 (2013-11-19 14:57:22) Only another 'doveadm sync -u test_mdbox remote:B' fixes subscriptions on B. The following records are added to dovecot.mailbox.log: #2184: unsubscribe 99ea7bf70f6e69ad71659995677b43f8 (2013-11-19 15:00:32) #2208: subscribe 2b84f621c0fd4ba8bd514c5c43ab9a89 (2013-11-19 15:00:32) -- Karol Jurak From kremels at kreme.com Tue Nov 19 16:46:35 2013 From: kremels at kreme.com (LuKreme) Date: Tue, 19 Nov 2013 07:46:35 -0700 Subject: [Dovecot] Mail filters in incoming message In-Reply-To: <528B3DC1.3040604@webrz.net> References: <528B3DC1.3040604@webrz.net> Message-ID: On Nov 19, 2013, at 3:30, Jos Chrispijn wrote: > I have seen several Pigeonhole Sieve examples, but I would like to know if there is a nub solution (I am not a programmer) to run filters when they enter my mail server (Postfix 2.10.2,1 icw Dovecot 1.2.17) or if there is a user friendly GUI available to set these filters? Perhaps Anyone interested to create such a GUI? I believe their is a plugin for thunderbird (spit) that allows you to edit the server-side sieve rules. From kremels at kreme.com Tue Nov 19 16:47:25 2013 From: kremels at kreme.com (LuKreme) Date: Tue, 19 Nov 2013 07:47:25 -0700 Subject: [Dovecot] how can i change the content of rejected message In-Reply-To: <1384858826008-45460.post@n4.nabble.com> References: <1384858826008-45460.post@n4.nabble.com> Message-ID: > On Nov 19, 2013, at 4:00, ihab wrote: > > dovecot 1.2.15 Dovecot 1.x is no longer supported, AIUI. From h.reindl at thelounge.net Tue Nov 19 16:52:38 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 19 Nov 2013 15:52:38 +0100 Subject: [Dovecot] Mail filters in incoming message In-Reply-To: References: <528B3DC1.3040604@webrz.net> Message-ID: <528B7B36.8040700@thelounge.net> Am 19.11.2013 15:46, schrieb LuKreme: > > On Nov 19, 2013, at 3:30, Jos Chrispijn wrote: >> I have seen several Pigeonhole Sieve examples, but I would like to know if there is a nub solution (I am not a programmer) to run filters when they enter my mail server (Postfix 2.10.2,1 icw Dovecot 1.2.17) or if there is a user friendly GUI available to set these filters? Perhaps Anyone interested to create such a GUI? > > I believe their is a plugin for thunderbird (spit) that allows you to edit the server-side sieve rules which does not change anything in the fact you need to know how to write sieve rules as you clearly can see on the screenshots https://addons.mozilla.org/en-us/thunderbird/addon/sieve/ it only verfies if the server would accept your script and it does not work with TB >= 24 here it's more or less impossible to write a human frriendly GUI for sieve except you restrict anything to a very limited set -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From tss at iki.fi Tue Nov 19 17:22:48 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 17:22:48 +0200 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> Message-ID: <74C9FBF4-993D-4033-BFDD-9A20EFFBCACA@iki.fi> Maybe http://hg.dovecot.org/dovecot-2.2/rev/5f946b807706 solves this also? I?m not sure why it started happening with v2.2.7 though. On 15.11.2013, at 2.31, Michael Grimm wrote: > On 15.11.2013, at 00:56, Timo Sirainen wrote: >> On 15.11.2013, at 0.52, Michael Grimm wrote: >>> On 15.11.2013, at 00:35, Timo Sirainen wrote: >>>> On 15.11.2013, at 0.25, Michael Grimm wrote: > >>>>> IMHO, it had been introduced by revision 10c0aae82d0d. >>>> >>>> Hmm. What if you get the latest version and just reverse this one change? >>> >>> How can I achieve that with hg, sorry I am not that familiar with hg. First "hg pull -u" and then? >> >> cd ?/dovecot-2.2 >> hg export 10c0aae82d0d > diff >> patch -p0 -R < diff > > Done, but I had to do answer (-->): > > mail> patch -p0 -R < diff > Hmm... Looks like a unified diff to me... > The text leading up to this was: > -------------------------- > |# HG changeset patch > |# User Timo Sirainen > |# Date 1383514035 -7200 > |# Sun Nov 03 23:27:15 2013 +0200 > |# Node ID 10c0aae82d0dee0b0107c2262db50d5f6984c181 > |# Parent 653d5a81a22e73ff91264f7e7277b1c0206574ec > |ostream: Mark stream closed before handling its callback to avoid infinite loops. > |The callback could call o_stream_copy_error_from_parent(), which in turn > |would try to close the same ostream again. > | > |diff -r 653d5a81a22e -r 10c0aae82d0d src/lib/ostream.c > |--- a/src/lib/ostream.c Sun Nov 03 22:04:53 2013 +0200 > |+++ b/src/lib/ostream.c Sun Nov 03 23:27:15 2013 +0200 > -------------------------- > --> File to patch: src/lib/ostream.c > Patching file src/lib/ostream.c using Plan A... > Hunk #1 succeeded at 46. > done > > Dovecot v2.2.7 (87ff0023fe79+) starting up. And I can confirm, that again, no status=undeliverable show up. > > >>>> And was this only with the Postfix user existence check or were LMTP deliveries in general failing? >>> >>> It had been status=undeliverable, thus mails didn't become delivered in my case. Only after adding "warn_if_reject reject_unverified_recipient" in smtpd_recipient_restrictions they became delivered. >> >> But I think there were two steps: 1) During SMTP RCPT TO, check is mail can be delivered via LMTP RCPT TO, 2) actually deliver mail via LMTP. Where 1) failed (except with warn_if_reject), but 2) succeeded? Where both were basically doing the same thing, except I suppose with some actual difference. Or were the mails really not delivered via LMTP but something else? > > I am not sure, if I do understand you correctly. My setup is: > > postfix smtpd > dovecot/lmtp user authentication > postfix --> amavisd > amavisd/lmtp --> postfix > final deliver by dovecot/lmtp > > Here's a log excerpt with v2.2.7 (87ff0023fe79+): > > postfix/smtpd[66223]: connect from example.org[10.100.100.200] > postfix/smtpd[66223]: Anonymous TLS connection established from example.org[10.100.100.200]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits) > Nov 15 01:14:29 example.org sendmail[66221]: STARTTLS=client, relay=[10.100.100.1], version=TLSv1/SSLv3, verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256 > postfix/cleanup[66227]: 3dLKn10bdfzFNF: message-id=<3dLKn10bdfzFNF at mx2.example.com> > postfix/qmgr[64303]: 3dLKn10bdfzFNF: from=, size=241, nrcpt=1 (queue active) > dovecot: lmtp(66091): Connect from local > dovecot: lmtp(66091): Disconnect from local: Successful quit > postfix/lmtp[66228]: 3dLKn10bdfzFNF: to=, orig_to=, relay=mx2.example.com[private/dovecot-lmtp], delay=0.04, delays=0.02/0/0/0.02, dsn=2.1.5, status=deliverable (250 2.1.5 OK) > postfix/qmgr[64303]: 3dLKn10bdfzFNF: removed > Nov 15 01:14:32 mail.example.invalid postfix/smtpd[66223]: 3dLKn40f9wzFNG: client=example.org[10.100.100.200] > Nov 15 01:14:32 mail.example.invalid postfix/cleanup[66227]: 3dLKn40f9wzFNG: message-id=<201311150014.rAF0ETps066221 at example.org> > Nov 15 01:14:32 example.org sendmail[66221]: rAF0ETps066221: to=example at example.com, ctladdr=root (0/0), delay=00:00:03, xdelay=00:00:03, mailer=relay, pri=30047, relay=[10.100.100.1] [10.100.100.1], dsn=2.0.0, stat=Sent (Ok: queued as 3dLKn40f9wzFNG) > Nov 15 01:14:32 mail.example.invalid postfix/qmgr[64303]: 3dLKn40f9wzFNG: from=, size=616, nrcpt=1 (queue active) > Nov 15 01:14:32 mail.example.invalid postfix/smtpd[66223]: disconnect from example.org[10.100.100.200] > Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) loaded policy bank "MYNETS" > Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) LMTP::10024 /var/amavis/tmp/amavis-20131115T011432-66086-mM3ZSPVh: -> SIZE=616 Received: from mx2.example.com ([10.100.100.1]) by mx2.example.com (mx2.example.com [10.100.100.1]) (amavisd-new, port 10024) with LMTP for ; Fri, 15 Nov 2013 01:14:32 +0100 (CET) > Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) Checking: CYYtr0l_C3qa MYNETS [10.100.100.200] -> > Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) p001 1 Content-Type: text/plain, size: 3 B, name: > Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) wbl: whitelisted sender > Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) spam-tag, -> , No, score=x tagged_above=-999 required=6.2 WHITELISTED tests=[] autolearn=unavailable > Nov 15 01:14:32 mail.example.invalid postfix/smtpd[66232]: connect from mail.example.invalid[10.100.100.1] > Nov 15 01:14:32 mail.example.invalid postfix/smtpd[66232]: 3dLKn42SQHzFNR: client=mail.example.invalid[10.100.100.1], orig_queue_id=3dLKn40f9wzFNG, orig_client=example.org[10.100.100.200] > Nov 15 01:14:32 mail.example.invalid postfix/cleanup[66227]: 3dLKn42SQHzFNR: message-id=<201311150014.rAF0ETps066221 at example.org> > Nov 15 01:14:32 mail.example.invalid postfix/qmgr[64303]: 3dLKn42SQHzFNR: from=, size=1266, nrcpt=1 (queue active) > Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) FWD from -> ,BODY=7BIT 250 2.0.0 from MTA(smtp:[10.100.100.1]:10025): 250 2.0.0 Ok: queued as 3dLKn42SQHzFNR > Nov 15 01:14:32 mail.example.invalid dovecot: lmtp(66091): Connect from local > Nov 15 01:14:32 mail.example.invalid dovecot: lmtp(66091, localuser): copy from : box=INBOX, uid=475527, msgid=<201311150014.rAF0ETps066221 at example.org>, flags=() > Nov 15 01:14:32 mail.example.invalid dovecot: lmtp(66091, localuser): QoteB2VnhVIrAgEASjbbSg: sieve: msgid=<201311150014.rAF0ETps066221 at example.org>: stored mail into mailbox 'INBOX' > Nov 15 01:14:32 mail.example.invalid postfix/lmtp[66228]: 3dLKn42SQHzFNR: to=, relay=mx2.example.com[private/dovecot-lmtp], delay=0.12, delays=0.02/0/0/0.1, dsn=2.0.0, status=sent (250 2.0.0 QoteB2VnhVIrAgEASjbbSg Saved) > Nov 15 01:14:32 mail.example.invalid dovecot: lmtp(66091): Disconnect from local: Successful quit > Nov 15 01:14:32 mail.example.invalid postfix/qmgr[64303]: 3dLKn42SQHzFNR: removed > Nov 15 01:14:32 mail.example.invalid amavis[66086]: (66086-01) Passed CLEAN {RelayedInternal}, MYNETS LOCAL [10.100.100.200]:40204 [10.100.100.200] -> , Queue-ID: 3dLKn40f9wzFNG, Message-ID: <201311150014.rAF0ETps066221 at example.org>, mail_id: CYYtr0l_C3qa, Hits: -, size: 608, queued_as: 3dLKn42SQHzFNR, 290 ms > Nov 15 01:14:32 mail.example.invalid postfix/lmtp[66230]: 3dLKn40f9wzFNG: to=, orig_to=, relay=10.100.100.1[10.100.100.1]:10024, delay=3.4, delays=3.1/0/0/0.29, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[10.100.100.1]:10025): 250 2.0.0 Ok: queued as 3dLKn42SQHzFNR) > Nov 15 01:14:32 mail.example.invalid postfix/qmgr[64303]: 3dLKn40f9wzFNG: removed > > HTH, > Michael > From me at junc.eu Tue Nov 19 17:44:22 2013 From: me at junc.eu (Benny Pedersen) Date: Tue, 19 Nov 2013 16:44:22 +0100 Subject: [Dovecot] how can i change the content of rejected message In-Reply-To: References: <1384858826008-45460.post@n4.nabble.com> Message-ID: <987b0709870a049dd1c90073726dabd1@junc.eu> LuKreme skrev den 2013-11-19 15:47: >> dovecot 1.2.15 > Dovecot 1.x is no longer supported, AIUI. it works anyway as designed remove wiki, and ebuilds or even crash the source does not prevent running servers to continue using it one more thing i like to say is that i self stay on 1.x to prevent migrations problems if there is changes in maildir user setup, i just say if, it p?ssilbe 10 mins work to upgrade to 2.x on gentoo, but there will not be a way back then here i have dovecot ebuild in my own overlay, atleast so i can rebuild from source again if needed what ever AIUI means to the OP question, no content cant be changed, it would either be an accept mail or reject it, but if you use sieve then you can configure reject msgs untested this since i use dovecot-lda, and then postfix would bounce to innocent senders, yark From user+dovecot at localhost.localdomain.org Tue Nov 19 18:00:21 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Tue, 19 Nov 2013 16:00:21 +0000 Subject: [Dovecot] Calling dovecot-lda from maildrop/shell In-Reply-To: <2e38e77d216acb585f10bfaee5d7a80a@xgm.de> References: <4100e686c5763d2906c8fa0f8ae72496@xgm.de> <528A0ABF.70909@localhost.localdomain.org> <2e38e77d216acb585f10bfaee5d7a80a@xgm.de> Message-ID: <528B8B15.9090404@localhost.localdomain.org> On 11/18/2013 05:14 PM Florian Lindner wrote: > # doveconf -n > # 2.1.7: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.2 > auth_mechanisms = plain login digest-md5 cram-md5 ntlm > ? > passdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > protocols = imap pop3 > ? > userdb { > driver = prefetch > } > userdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > > # doveadm user flindner > userdb lookup: user flindner doesn't exist > > flindner is my linux system user. There are virtual user, e.g In your log excerpt I've seen '/home/flindner/?', so I thought there could be the user flindner. > # doveadm user spam at xgm.de > userdb: spam at xgm.de > home : /home/flindner/Mail/spam > uid : 1001 > gid : 1001 > > /home/flindner/Mail/spam is the home and maildir of virtual user. That could cause several problems. For example that problem you've reported. The simplest solution would be setting "mail_location=~maildir:~/Maildir" in /etc/dovecot/conf.d/10-mail.conf. With this configuration Dovecot will use /home/flindner/Mail/spam/Maildir as mail location for user spam at xgm.de. > My mail system is built like that: > > postfix delivers all mail of a domain to maildrop using a system user > which have this domain assigned. maildrop does the final delivery. There > is no 1:1 mapping of mail adresses to maildirs. > > postfix @xgm.de -> maildrop flindner -> maildrop -> maildir <- dovecot > IMAP this should become: > > postfix @xgm.de -> maildrop flindner -> maildrop -> dovecot-lda -> > maildir <- dovecot IMAP > > so that I can also use sieve for filtering. When using Sieve it's also strongly recommended to have $home != $mail. With the settings from above you could use 'default' settings for Sieve, e.g.: # 15-lda.conf protocol lda { mail_plugins = $mail_plugins sieve } # 20-lmtp.conf protocol lmtp { mail_plugins = $mail_plugins sieve } # 90-sieve.conf plugin { recipient_delimiter = + sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } Then the file /home/flindner/Mail/spam/.dovecot.sieve would contain the Sieve rules for user spam at xgm.de. See also: http://wiki2.dovecot.org/VirtualUsers/Home Regards, Pascal -- The trapper recommends today: beeffeed.1332316 at localdomain.org From tlx at leuxner.net Tue Nov 19 18:05:50 2013 From: tlx at leuxner.net (Thomas Leuxner) Date: Tue, 19 Nov 2013 17:05:50 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <74C9FBF4-993D-4033-BFDD-9A20EFFBCACA@iki.fi> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> <74C9FBF4-993D-4033-BFDD-9A20EFFBCACA@iki.fi> Message-ID: <20131119160549.GA6899@nihlus.leuxner.net> * Timo Sirainen 2013.11.19 16:22: > Maybe http://hg.dovecot.org/dovecot-2.2/rev/5f946b807706 solves this also? I?m not sure why it started happening with v2.2.7 though. Nov 19 17:01:13 spectre postfix/qmgr[627]: 3dPBbY13b0z1s: from=, size=271, nrcpt=1 (queue active) Nov 19 17:01:13 spectre postfix/smtpd[6870]: 3dPBbY1566z1w: client=sam.dfn-cert.de[193.174.13.196] Nov 19 17:01:13 spectre postfix/lmtp[6877]: 3dPBbY13b0z1s: to=, orig_to=, relay=spectre.leuxner.net[private/dovecot-lmtp], delay=0.01, delays=0/0/0/0.01, dsn=2.1.5, status=deliverable (250 2.1.5 OK) First tests look good. Thanks for looking into this. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From hodentier at gmail.com Mon Nov 18 23:33:50 2013 From: hodentier at gmail.com (vupibi) Date: Mon, 18 Nov 2013 13:33:50 -0800 (PST) Subject: [Dovecot] Dovecot Listescape plugin problem Message-ID: <1384810430791-45454.post@n4.nabble.com> Dovecot Version: 2.0.19 I'm on Ubuntu 12.04.3 using Zentyal with Dovecot for a mail Server. What I try to setup is the possibility to use slashes ("/") in folder names inside the IMAP account. Regularly if I name a folder "foo/bar", the system creates me a folder named "bar" inside a folder named "foo". Listescape should give me the possibility but it does not work. It's not possible for me to write inside the "/etc/dovecot/dovecot.conf" because Zentyal will overwrite all changes when restarting the server. So my Configs are in "/etc/dovecot/extra.conf" and look like this: mail_plugins = listescape (i tried "mail_plugins = $mail_plugins listescape" as well, no success) namespace inbox { separator = "\\" prefix = inbox = yes hidden = no list = yes location = maildir:/var/vmail/%d/%n:LAYOUT=fs } My dovecot -n output # 2.0.19: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-55-generic x86_64 Ubuntu 12.04.3 LTS ext4 auth_gssapi_hostname = mailand.sxps.local auth_krb5_keytab = /etc/dovecot/dovecot.keytab auth_mechanisms = gssapi plain first_valid_gid = 116 first_valid_uid = 108 log_timestamp = "%Y-%m-%d %H:%M:%S " mail_gid = 116 mail_home = /var/vmail/sieve/%d/%u mail_location = maildir:/var/vmail/%$ mail_plugins = listescape mail_uid = 108 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { hidden = no inbox = yes list = yes location = maildir:/var/vmail/%d/%n:LAYOUT=fs prefix = separator = \ } passdb { args = /etc/dovecot/dovecot-ldap.conf driver = ldap } plugin { autocreate = Trash autocreate2 = Spam autocreate3 = Sent autocreate4 = Drafts autosubscribe = Trash autosubscribe2 = Spam autosubscribe3 = Sent autosubscribe4 = Drafts quota = maildir:User quota quota_rule = *:storage=0 sieve = /var/vmail/sieve/%d/%u/sieve-script sieve_global_path = /var/vmail/sieve/default.sieve sieve_storage = /var/vmail/sieve/%d/%u } protocols = pop3 imap sieve service auth { executable = /usr/lib/dovecot/auth unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { group = ebox mode = 0600 user = ebox } user = dovecot } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 } } service managesieve-login { inet_listener sieve { port = 4190 } } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 } } ssl_cert = Since google points only to wiki.dovecot.org, I changed it to now redirect all requests to wiki2. I didn?t want to originally do this to avoid breaking all old links, but maybe it?s not that bad anymore. Most links exist anyway for wiki2 too. From kremels at kreme.com Tue Nov 19 20:53:58 2013 From: kremels at kreme.com (LuKreme) Date: Tue, 19 Nov 2013 11:53:58 -0700 Subject: [Dovecot] Mail filters in incoming message In-Reply-To: <528B7B36.8040700@thelounge.net> References: <528B3DC1.3040604@webrz.net> <528B7B36.8040700@thelounge.net> Message-ID: On 19 Nov 2013, at 07:52 , Reindl Harald wrote: > which does not change anything in the fact you need to know how > to write sieve rules as you clearly can see on the screenshots > https://addons.mozilla.org/en-us/thunderbird/addon/sieve/ Well, yes, but it seemed like the OP had example scripts to get started, but more needed help enabling them. It seemed that was a possible solution. (NB: I don't use ThunderBird myself, I only know the plugin exists). > it only verfies if the server would accept your script and > it does not work with TB >= 24 here Ah, so TB has also moved to the mozilla-stupid versioning scheme? Laste version I used was 3.x -- Yeah, Nick. Nick's the kinda guy you can trust. Nick's your buddy Nick's the kinda guy you drink beers with. The kinda guy that doesn't care if you puke in his car. Nick. From kremels at kreme.com Tue Nov 19 20:56:58 2013 From: kremels at kreme.com (LuKreme) Date: Tue, 19 Nov 2013 11:56:58 -0700 Subject: [Dovecot] how can i change the content of rejected message In-Reply-To: <987b0709870a049dd1c90073726dabd1@junc.eu> References: <1384858826008-45460.post@n4.nabble.com> <987b0709870a049dd1c90073726dabd1@junc.eu> Message-ID: On 19 Nov 2013, at 08:44 , Benny Pedersen wrote: > LuKreme skrev den 2013-11-19 15:47: >>> dovecot 1.2.15 >> Dovecot 1.x is no longer supported, AIUI. > > it works anyway as designed I didn't say it was broken, I said it wasn't SUPPORTED. > what ever AIUI means As I Understand It. -- 'Tell me, sir Samuel, do you know the phrase "Quis custodiet isos custodes?"? (...) It means "Who guards the guards themselves?" (...) Who watches the Watch?' --Feet of Clay From tom at whyscream.net Tue Nov 19 21:13:15 2013 From: tom at whyscream.net (Tom Hendrikx) Date: Tue, 19 Nov 2013 20:13:15 +0100 Subject: [Dovecot] Mail filters in incoming message In-Reply-To: <528B3DC1.3040604@webrz.net> References: <528B3DC1.3040604@webrz.net> Message-ID: <528BB84B.7020709@whyscream.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 19-11-13 11:30, Jos Chrispijn wrote: > With my iMap client, I use various mail rules to move specific > email to the right mail folders. Downside of that is that is this > mailclient is not online, all email is stuck in my inbox, which > makes reading email by mobile phone kind of chaotic. > > I have seen several Pigeonhole Sieve examples, but I would like to > know if there is a nub solution (I am not a programmer) to run > filters when they enter my mail server (Postfix 2.10.2,1 icw > Dovecot 1.2.17) or if there is a user friendly GUI available to set > these filters? Perhaps Anyone interested to create such a GUI? > There are several guis implemented in webmail applications, f.i. roundcube and modoboa. I'm not aware of standalone sieve guis, but I never searched for them. The webmail stuff should work fine when you want to do simple sieve stuff, but if you want to use the awesome stuff, you'll to learn the sieve language ;) Sieve is no programming language, and quite clear about which commands do what: when you get a feel for it, you can read a script and tell directly what it does. You could just start with a gui and learn from that. I find the error messages in the Thunderbird Sieve plugin very useful when writing new rules. Regards, Tom -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJSi7hHAAoJEJPfMZ19VO/1SgQQAL9rvZWxbDLH0tACLbjRxIuZ Ogx5GqHYsAo7fsjYQS27W4e0LaPD5nZfVThTDJvSTG8YnvdbWgAktbkGGUYDxX4F va20Qjxiwkr8Ck8NmIqB/sEtrMAn54AccPleJLmYFy/umP/7vHrtItVAy3FcxjGG yKK7h/ZGOj1B6c5lNULRm+Ww1m/2BjZkHAsCScgjwKx6Pw7QKVpUmLokOftoE2AU Db4M2qmPF24rRvZk7UA4LcJQRTHiwmBOQI6dfy3qEY3bJFF/hPNgrpMJjvFxkX/N jI5Q0ZlaQI2eDgtQltW3KzxoAhxJTot/ydiaH9qWTsoczhFNb/unPJOQbHWjCz5q as1kNNQ4yBgzp7nSCArMWdS1zSXvvZGR44veePzOBzRYYX7V8gV3YDucrrwpKPJG iV7I173Or1su1IcavtNSNI/YCyKSJiEtf3/H5ADKQ/XKVwR6txyayj627rPHU1Yl SUzaMjQOrI7ObhD43HHm/MOO9evf/rS5i7/45x8DNa4EniPREBOgS4isaJOwBVQV fYSPNrsD/tcJEMsxpy8REOg2YS4jqzYj7Gk5B0Ah2y5gR5lPeqmNAK51h+oCabgM Jcz/FV1nXJSOMdaKMNjAqLiGNtIoweV7lxIKw2vad/XdWwJTdRAU963FU1VOYSI8 SkfdJLvG3RCsc9s8FZ4i =lMaz -----END PGP SIGNATURE----- From tss at iki.fi Tue Nov 19 21:47:06 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 21:47:06 +0200 Subject: [Dovecot] Question about dovecot 2.2 and LIST command In-Reply-To: References: Message-ID: On 19.11.2013, at 0.50, Jonathan Siegle wrote: > I am running dovecot 2.2 changeset 16983:d925674c4329 on AIX. We use mbox files with the "/" delimter. I have an imap protocol question. When I do: > > 1 list directory1/ * > 1 OK List completed. > > Is that the correct answer? > > If I do > 1 list "" * > > it shows > * LIST (\Noselect \HasChildren) "/" "directory1" > > I forget why I think that even with the delimiter, I should see some information about it. Is this a silly test that no imap client does? Well, something like this apparently was used by Pine (and Alpine?) with mbox format, so this is quite a special case. Looks like it got broken by commit http://hg.dovecot.org/dovecot-2.1/rev/8cdc7c13d6f2 I?m not sure if it?s really worth spending time on though.. From tss at iki.fi Tue Nov 19 21:53:02 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 21:53:02 +0200 Subject: [Dovecot] Reset vacation lda-dupes database In-Reply-To: <1384640473.9770.YahooMailMobile@web125805.mail.ne1.yahoo.com> References: <1384640473.9770.YahooMailMobile@web125805.mail.ne1.yahoo.com> Message-ID: <26406FEA-5168-40BC-8B26-71A22E8081C9@iki.fi> On 17.11.2013, at 0.21, Mike Selner @ Yahoo wrote: > Hello, I have dovecot 2.2.6 and pignenhole 0.4.2 running on freebsd9.1. We have a mix of unix users (/home/user) and postfixadmin users (/home/vmail/domain/user). > I am using dovecot managesive with afterlogic webmail which has a managesieve plugin to set the out of office message. All works fine. I have sieve_vacation_default_period set to 1d. > > The problem I'm trying to solve is that users set their vacation message and want to test it. So they have their colleagues send them multiple test messages and want to make sure it works. Of course only the first message gets an auto-reply. I tell them that the auto responder only sends one message per day per sender but they would like to test it with a new message etc. So I have to remove their .lda-dupes file manually so they can try again. > > My previous autoresponder setup (squirrelmail) used a .forward technique and removed the vacation database when they turned the responder from off to on, and this worked well for the above issue. > > Is there a solution for dovecot managesieve which will remove or reset the .lda-dupes file whenever a new sieve file is uploaded? Or another solution that will reset the "vacation timer" when the user turns vacation from off to on? They can add a different :handle parameter to get a different response, but .. as I understand it, a different vacation reason message should also trigger a separate vacation notice, but looks like Pigeonhole doesn?t currently do that. Stephan? From tss at iki.fi Tue Nov 19 21:59:35 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 21:59:35 +0200 Subject: [Dovecot] Deleted messages reappearing In-Reply-To: <5284925C.9000401@ehu.es> References: <20131113142325.GA19755@joseba.lg.ehu.es> <52839311.4000200@mie.utoronto.ca> <20131113150520.GA20720@joseba.lg.ehu.es> <5283A089.2070604@mie.utoronto.ca> <5284925C.9000401@ehu.es> Message-ID: On 14.11.2013, at 11.05, Joseba Torre wrote: > Forget this. Some days ago I changed de passdb query to allow users to connect using both the full mail address and the old identifier (which is not related to de mail address). But in my case, if I connect using my e-mail address director sends me to one server, and with my old id (that is being used by lmtp) to the other one. So I have 2 different server accessing 1 mailbox, and the problems are normal. > > By now, I'll go back to only accept the old id. > > Is there any way to tell director that old_id and joseba.torre at ehu.es are the same user (and should be directed to the same server)? If the passdb lookup changes the ID to the same one director will see only one ID. > passdb { > args = proxy=y nopassword=y starttls=any-cert > driver = static > } This wouldn?t work then. You?d need to use passdb ldap I guess. From tss at iki.fi Tue Nov 19 22:04:33 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 22:04:33 +0200 Subject: [Dovecot] Enable Rawlog from userdb in Dovecot v2.2 In-Reply-To: References: Message-ID: On 11.11.2013, at 17.08, Steffen Kaiser wrote: > how do I enable Rawlog for one person only? Not with the current code. > http://wiki2.dovecot.org/Debugging/Rawlog > > describes how to enable the postlogin script for all users. Rawlog gets active only, if the dovecot.rawlog directory exists. So far, it's working. > > However. I suspect that there is some notable overhead in this chain, so I tried to enable rawlog via userdb extra fields. > > So setup the config as: > service imap { > executable = imap > } > service postlogin { > executable = script-login -d rawlog > unix_listener postlogin { > } > } > > > In the userdb extra fields I tried: > service/imap/executable=imap postlogin service settings are handled by master process, which doesn?t know anything about userdb lookups, so this doesn?t work. From tss at iki.fi Tue Nov 19 22:07:37 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 22:07:37 +0200 Subject: [Dovecot] Problem migration from cyrus with imapc In-Reply-To: <1e175ac4736d2f2d3b3e8b79bbacc3e2@bayern-mail.de> References: <1e175ac4736d2f2d3b3e8b79bbacc3e2@bayern-mail.de> Message-ID: <934EAA43-AD4B-43F6-AEAA-33CD76690080@iki.fi> On 5.11.2013, at 15.52, claus wrote: > i have problem with namespace when i try to migrate from cyrus to dovecot with imapc. .. > after migration with: > root at dovecot-backend1:~ # dsync -o imapc_user=testbox at old.cyrus.de -o imapc_password=secret -o imapc_host=192.168.8.164 -o imapc_features=rfc822.size -o mailbox_list_index=no -Dv backup -R -u m1234567890 imapc: > > i get the folowing result: .. > * LIST (\HasChildren) "." INBOX > * LIST (\HasNoChildren) "." INBOX.INBOX.Drafts > * LIST (\HasNoChildren) "." "INBOX.INBOX.Gesendete Mails" > * LIST (\HasNoChildren) "." INBOX.INBOX.Sent > * LIST (\HasNoChildren) "." INBOX.INBOX.Trash > * LIST (\HasNoChildren) "." INBOX.INBOX.spam > * LIST (\HasChildren) "." INBOX.INBOX.test1 > * LIST (\HasNoChildren) "." INBOX.INBOX.test1.test11 > * LIST (\Noselect \HasChildren) "." INBOX.INBOX > a OK List completed. > > > Can everyone explain me where the extra "prefix INBOX" came from and how i can resolve that? imapc_list_prefix=INBOX should fix this. From tss at iki.fi Tue Nov 19 22:10:42 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 22:10:42 +0200 Subject: [Dovecot] Crash in dovecot 2.2.6 In-Reply-To: <5278AB9B.10506@wildgooses.com> References: <526F7133.9010903@wildgooses.com> <8BF929C5-1256-4E37-BAC7-B400EB80E5AA@iki.fi> <5278AB9B.10506@wildgooses.com> Message-ID: <1FD70014-98BD-482F-80F7-CF28FE2F775F@iki.fi> On 5.11.2013, at 10.26, Ed W wrote: >>> Hi, I recently upgraded from a dovecot 2.1 version to 2.2.6. I now have a single user who occasionally triggers a crash (just this one user it seems?). The user connects via LiveMail (v14.0.8117.) and IMAP. .. > Nov 5 06:08:43 mail1 dovecot: imap(user at example.com): Panic: file mail-index-transaction-export.c: line 203 (log_append_ext_hdr_update): assertion failed: (u32.offset + u32.size <= ext_hdr_size) Is this still happening? The index file seems to be somehow corrupted. Is this still happening / did you already delete it? Would be useful to look at the index (and/or make it write core dump and gdb it). From jsiegle at psu.edu Tue Nov 19 22:25:37 2013 From: jsiegle at psu.edu (Jonathan Siegle) Date: Tue, 19 Nov 2013 15:25:37 -0500 (EST) Subject: [Dovecot] Question about dovecot 2.2 and LIST command In-Reply-To: References: Message-ID: On 2013-11-19 at 21:47, Timo Sirainen wrote: > On 19.11.2013, at 0.50, Jonathan Siegle wrote: > >> I am running dovecot 2.2 changeset 16983:d925674c4329 on AIX. We use mbox files with the "/" delimter. I have an imap protocol question. When I do: >> >> 1 list directory1/ * >> 1 OK List completed. >> >> Is that the correct answer? >> >> If I do >> 1 list "" * >> >> it shows >> * LIST (\Noselect \HasChildren) "/" "directory1" >> >> I forget why I think that even with the delimiter, I should see some information about it. Is this a silly test that no imap client does? > > Well, something like this apparently was used by Pine (and Alpine?) with mbox format, so this is quite a special case. Looks like it got broken by commit http://hg.dovecot.org/dovecot-2.1/rev/8cdc7c13d6f2 > > I?m not sure if it?s really worth spending time on though.. Ok thanks. We are attempting to migrate from version 2.0 to a more recent version. I forgot to write down the reason the test was in the test plan. Version 2.1 latest revision showed this variance so I tried latest on 2.2 . I have not noticed a problem and I typically use alpine version 2.02 from Debian Wheezy. -Jonathan From tss at iki.fi Tue Nov 19 22:32:15 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 22:32:15 +0200 Subject: [Dovecot] dsync-2.2.7 incorrectly synchronizes subscription status of renamed mailbox In-Reply-To: <1665811.zomfKVLqLF@karol-esprimo-p5925> References: <1665811.zomfKVLqLF@karol-esprimo-p5925> Message-ID: <27C7A8F1-DAC2-4B2C-AC1D-DF932B57FB44@iki.fi> On 19.11.2013, at 16.06, Karol Jurak wrote: > It seems that dsync-2.2.7 doesn't correctly synchronize subscription status > of a renamed mailbox. I don?t think any of the v2.2.x dsyncs have done it correctly the first time? Looks like the fix will be a bit complex. I?ll make v2.2.8 release first.. From stephan at rename-it.nl Tue Nov 19 22:36:22 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 19 Nov 2013 21:36:22 +0100 Subject: [Dovecot] Reset vacation lda-dupes database In-Reply-To: <26406FEA-5168-40BC-8B26-71A22E8081C9@iki.fi> References: <1384640473.9770.YahooMailMobile@web125805.mail.ne1.yahoo.com> <26406FEA-5168-40BC-8B26-71A22E8081C9@iki.fi> Message-ID: <528BCBC6.6030101@rename-it.nl> On 11/19/2013 8:53 PM, Timo Sirainen wrote: > On 17.11.2013, at 0.21, Mike Selner @ Yahoo wrote: > > They can add a different :handle parameter to get a different response, but .. as I understand it, a different vacation reason message should also trigger a separate vacation notice, but looks like Pigeonhole doesn?t currently do that. Stephan? It should though. It implements the behavior recommended in the RFC (http://tools.ietf.org/html/rfc5230#section-4.2); i.e., generate a handle from the provided arguments (ignoring variables!) if none is provided explicitly. This is performed here: http://hg.rename-it.nl/dovecot-2.2-pigeonhole/file/b7434a02fc51/src/lib-sieve/plugins/vacation/cmd-vacation.c#l471 So did you test this unsuccessfully or did you have problems finding it in the sources? If it doesn't work it would obviously be a bug. The constructed handle value can be seen by dumping the Sieve script binary with sieve-dump. Regards, Stephan. From tss at iki.fi Tue Nov 19 23:00:06 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 23:00:06 +0200 Subject: [Dovecot] Reset vacation lda-dupes database In-Reply-To: <528BCBC6.6030101@rename-it.nl> References: <1384640473.9770.YahooMailMobile@web125805.mail.ne1.yahoo.com> <26406FEA-5168-40BC-8B26-71A22E8081C9@iki.fi> <528BCBC6.6030101@rename-it.nl> Message-ID: <87E2ABFC-A098-4BC8-96C0-E93FAF6969F4@iki.fi> On 19.11.2013, at 22.36, Stephan Bosch wrote: > On 11/19/2013 8:53 PM, Timo Sirainen wrote: >> On 17.11.2013, at 0.21, Mike Selner @ Yahoo wrote: >> >> They can add a different :handle parameter to get a different response, but .. as I understand it, a different vacation reason message should also trigger a separate vacation notice, but looks like Pigeonhole doesn?t currently do that. Stephan? > > It should though. It implements the behavior recommended in the RFC > (http://tools.ietf.org/html/rfc5230#section-4.2); i.e., generate a > handle from the provided arguments (ignoring variables!) if none is > provided explicitly. This is performed here: > > http://hg.rename-it.nl/dovecot-2.2-pigeonhole/file/b7434a02fc51/src/lib-sieve/plugins/vacation/cmd-vacation.c#l471 > > So did you test this unsuccessfully or did you have problems finding it > in the sources? If it doesn't work it would obviously be a bug. The > constructed handle value can be seen by dumping the Sieve script binary > with sieve-dump. Oh, I just didn?t look into the correct place in the code. I didn?t think that handle would be generated before ext_vacation_operation_execute(). So answer to Mike: Just have them change the reason string in some way. From tss at iki.fi Tue Nov 19 23:23:16 2013 From: tss at iki.fi (Timo Sirainen) Date: Tue, 19 Nov 2013 23:23:16 +0200 Subject: [Dovecot] v2.2.8 released Message-ID: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> http://dovecot.org/releases/2.2/dovecot-2.2.8.tar.gz http://dovecot.org/releases/2.2/dovecot-2.2.8.tar.gz.sig + Mail cache lookups work for the mail being saved. This improves performance by avoiding the need to parse the mail multiple times when using some plugins (e.g. mail_log). + Mail cache works for recently cached data also with in-memory indexes. + imapc: Many performance improvements, especially when working with dsync. Also added imapc_feature=fetch-headers which allows using FETCH BODY.PEEK[HEADER.FIELDS (..)] to avoid reading the entire header. + mail_location = ..:FULLDIRNAME=dbox-Mails is the same as :DIRNAME=dbox-Mails, but it will also be used for :INDEX and :CONTROL directories. (It should have worked this way from the beginning, but can't be changed anymore without breaking existing installations). - Fixed infinite loop in message parsing if message ends with "--boundary" and CR (without LF). Messages saved via SMTP/LMTP can't trigger this, because messages must end with an "LF.". A user could trigger this for him/herself though. - lmtp: Client was sometimes disconnected before all the output was sent to it. - imap_zlib plugin caused crashes during client disconnection in v2.2.7 - replicator: Database wasn't being exported to disk every 15 minutes as it should have. Instead it was being imported, causing "doveadm replicator remove" commands to not work very well. From kremels at kreme.com Wed Nov 20 00:00:01 2013 From: kremels at kreme.com (LuKreme) Date: Tue, 19 Nov 2013 15:00:01 -0700 Subject: [Dovecot] Quick question on sieve Message-ID: <17BFAF58-25F1-46BA-83DF-0FBBFC49F27A@kreme.com> I have a procmail recipe that does the majority of my heavy lifting for my mailing lists. It's pretty straightforward, but as I understand it, this isn't something sieve can do: # [ ] contains a space and a tab :0 * 9876543210^0 ^(List-Id:.*<|X-Mailing-List:[ ]*)\/[-A-z0-9_+]+ * 9876543210^0 ^(List-Post:[ ]*(
{ LISTNAME=$MATCH } > > Basically, it checks the headers for any one of the headers > > List-ID: > List-Post: > List-Owner: > Sender: owner- > X-BeenThere: > Delivered-To: > Sender:.*List > > and parses out the name of the list, writing it to the LISTNAME variable > > For the vast majority of mailing lists the message is then written to > > .$LISTNAME/ > > This means that, by default, a new mailing list is automatically sorted to its own mailbox without my doing anything at all. > > Is this something hat Sieve can do? Does it have variable assignment? Yes and yes. I'd normally translate the above Procmail recipe for you, but it is a bit hard to read because my Procmailese is a bit rusty regarding regular expressions. So I'll just work with your question. A very simple example looks as follows: require "variables"; require "fileinto"; if header :matches "list-id" "*" { set "listname" "${1}"; } fileinto "$listname"; The mailbox dot prefix is implicit (assuming it is a maildir). To fully translate your recipe, you'll probably need the regex extension (http://tools.ietf.org/html/draft-murchison-sieve-regex-08) as well. The (match) variables are documented in RFC 5229 (http://tools.ietf.org/html/rfc5229). Regards, Stephan. From kremels at kreme.com Wed Nov 20 02:14:26 2013 From: kremels at kreme.com (LuKreme) Date: Tue, 19 Nov 2013 17:14:26 -0700 Subject: [Dovecot] Quick question on sieve In-Reply-To: <528BE7E7.9010404@rename-it.nl> References: <17BFAF58-25F1-46BA-83DF-0FBBFC49F27A@kreme.com> <528BE7E7.9010404@rename-it.nl> Message-ID: <8800B130-530A-45E7-9C7F-5CCB520C414D@kreme.com> On 19 Nov 2013, at 15:36 , Stephan Bosch wrote: >> This means that, by default, a new mailing list is automatically sorted to its own mailbox without my doing anything at all. > > Yes and yes. I'd normally translate the above Procmail recipe for you, > but it is a bit hard to read because my Procmailese is a bit rusty > regarding regular expressions. So I'll just work with your question. A > very simple example looks as follows: > > require "variables"; > require "fileinto"; > > if header :matches "list-id" "*" { > set "listname" "${1}"; > } > > fileinto "$listname"; That's good to know (and the first time I've seen a sieve example with variables. Will: :matches "list-id" "*" { match the entire line after List-ID? desk set "list name" "${1}" trap the first term, or is $1 the entire match to EOL? If it's not the first word, is it possible to match the first word without installing the regex package with sieve? (I'm loath to install anything extra at this point) for example, for this list, the list-id is List-Id: Dovecot Mailing List Which is not a good name for fileinto "$listname" > To fully translate your recipe, you'll probably need the regex extension (http://tools.ietf.org/html/draft-murchison-sieve-regex-08) as well. The (match) variables are documented in RFC 5229 (http://tools.ietf.org/html/rfc5229). > Regards, Thanks! -- Transvestite: A guy who likes to eat, drink and be Mary. From alexandr.sabitov at netregistry.com.au Wed Nov 20 02:50:17 2013 From: alexandr.sabitov at netregistry.com.au (Alexandr Sabitov) Date: Wed, 20 Nov 2013 00:50:17 +0000 Subject: [Dovecot] NTLM authentication in Thunderbird vs Outlook 2010. Message-ID: <55D76B5A78B24C42B3AEC8148D487AA756FEBC23@ex-7.nro.netregistry.net> Hi List, I am using the Dovecot 2.1.12 with NTLM authentication enabled. The Dovecot is set up in cluster with directors, 60 000 connections simultaneously. I have noticed that NTLM authentication is processed differently for Thunderbird and Outlook 2010 users. It actually makes Outlook 2010 clients query LDAP more often that Thunderbird ones which is not good potentially for overall performance. Dovecot do not see a domain in NTLM Type 3 message but it does exist there. Could somebody explain please why it is happening? Tcpdump Thunderbird: 1) IP proxy.netregistry.net.19228 > dovecot-test-1.private.netregistry.net.pop3 E..3.. at .}..........)K..n#...9...P..qXT..AUTH NTLM 2) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.19228 E..,.. at .@.,....).....nK.9...#...P....W..+ 3) IP proxy.netregistry.net.19228 > dovecot-test-1.private.netregistry.net.pop3 E..V.. at .}..........)K..n#...9...P..m.n..TlRMTVNTUAABAAAAB4IIAAAAAAAAAAAAAAAAAAAAAAA= 4) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.19228 E..... at .@., at ...).....nK.9...#..:P.......+ TlRMTVNTUAACAAAAHAAcADAAAAAFAooAbuK/LV9v9xIAA AAAAAAAACQAJABMAAAAZABvAHYAZQBjAG8AdAAtAHQAZQBzAHQALQAxAAMAHABkAG8 AdgBlAGMAbwB0AC0AdABlAHMAdAAtADEAAAAAAA== 5) IP proxy.netregistry.net.19228 > dovecot-test-1.private.netregistry.net.pop3 E..&.. at .}..........)K..n#..:9...P...|...TlRMTVNTUAADAAAAGAAYAIwAAAAYABgApAAAAAAAAABAAA AAOAA4AEAAAAAUABQAeAAAAAAAAAAAAAAABQIIAG0AaQBnAHIAYQB0AGkAbwBuAC4AdAB lAHMAdABAAG4AZQB0AHcAbwByAGsALgBpAGQALgBhAHUAbQB5AHAAcgBvAGoAZQBjAHQA cwBEqdTLLSMLdQAAAAAAAAAAAAAAAAAAAADZv(...)= Base64 decoding of the last message (NTLM Type 3): NTLMSSP?.m.i.g.r.a.t.i.o.n...t.e.s.t. at .n.e.t.w.o.r.k...i.d...a.u.m.y.p.r.o.j.e.c.t.s.D-#?u.......................(....)Nh\P 6) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.19228 E..(.. at .@.,....).....nK.9...#..8P.. .'.. 7) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.19228 E..8.. at .@.,....).....nK.9...#..8P.. .c..+OK Logged in. >From logs: Nov 19 18:14:53 dovecot-test-1 dovecot: auth: Debug: ldap(migration.test at network.id.au,203.30.252.5,): pass search: base=ou=email, dc=netregistry, dc=net scope=subtree filter=(&(objectClass=nrPOPAccount)(uid=migration.test at network.id.au)) fields=uid,userPassword Nov 19 18:14:53 dovecot-test-1 dovecot: auth: Debug: ldap(migration.test at network.id.au,203.30.252.5,): result: uid=migration.test at network.id.au userPassword=Secret123 All good. Outlook 2010: 1) IP proxy.netregistry.net.47129 > dovecot-test-1.private.netregistry.net.pop3 E..3.. at .}..........)...n...Q..f9P..qOv..AUTH NTLM 2) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.47129 E..,.. at .@.P....).....n....f9...\P....W..+ 3) IP proxy.netregistry.net.47129 > dovecot-test-1.private.netregistry.net.pop3 E..b.. at .}..........)...n...\..f=P..m....TlRMTVNTUAABAAAAB4IIogAAAAAAAAAAAAAAAAAAAAAFASgKAAAADw== 4) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.47129 E..... at .@.Pe...).....n....f=....P.......+ TlRMTVNTUAACAAAAHAAcADAAAAAFAooAQlAQ6i5tIiIAAAAAAAAAACQAJA BMAAAAZABvAHYAZQBjAG8AdAAtAHQAZQBzAHQALQAxAAMAHABkAG8AdgBlAGMAbwB0AC0AdABlAHM AdAAtADEAAAAAAA== 5) IP proxy.netregistry.net.47129 > dovecot-test-1.private.netregistry.net.pop3 E..... at .}..........)...n......f.P....c..TlRMTVNTUAADAAAAGAAYAJIAAAAYABgAqgAAABoAGgBIAAAAHAAcAGIAAAAUA BQAfgAAAAAAAADCAAAABQKIAgUBKAoAAAAPbgBlAHQAdwBvAHIAawAuAGkAZAAuAGEAdQBtAGkAZwByAG EAdABpAG8AbgAuAHQAZQBzAHQATQBZAFAAUgBPAEoARQBDAFQAUwADFLugRfGh3gAAAAAAAAAAAAAAAA AAAAA(...)= Base64 decoding of the last message (NTLM Type 3): NTLMSSP.....................H....b..~.?????( ...?n.e.t.w.o.r.k...i.d...a.u.m.i.g.r.a.t.i.o.n...t.e.s.t.M.Y.P.R.O.J.E.C.T.S.??E..(....)..q?%/ 6) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.47129 E..(.. at .@.Q....).....n....f.....P.. .5.. 7) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.47129 E..E.. at .@.P....).....n....f.....P.. .p..-ERR Authentication failed. >From logs: Nov 19 18:33:24 dovecot-test-1 dovecot: auth: Debug: ldap(migration.test,203.30.252.5,): pass search: base=ou=email, dc=netregistry, dc=net scope=subtree filter=(&(objectClass=nrPOPAccount)(uid=migration.test)) fields=uid,userPassword Nov 19 18:33:24 dovecot-test-1 dovecot: auth: ldap(migration.test,203.30.252.5,): unknown user Well, WHERE is my domain in the LDAP query? :) 8) IP proxy.netregistry.net.47129 > dovecot-test-1.private.netregistry.net.pop3 E..K.. at .}..........)...n......f.P...X,..USER migration.test at network.id.au 9) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.47129 E..(.. at .@.P....).....n....f.....P.. .... 10) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.47129 E..-.. at .@.P....).....n....f.....P.. .X..+OK 11) IP proxy.netregistry.net.47129 > dovecot-test-1.private.netregistry.net.pop3 E..7.. at .}..........)...n......f.P...l;..PASS Secret123 12) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.47129 E..(.. at .@.P....).....n....f.....P.. .... 13) IP dovecot-test-1.private.netregistry.net.pop3 > proxy.netregistry.net.47129 E..8.. at .@.P....).....n....f.....P.. .c..+OK Logged in. Configuration file This is LDAP configuration on one of director servers where clients are authenticated. uris = ldap://ldap-node-2.mynetwork.net, ldap://ldap-node-3.mynetwork.net debug_level = 0 base = ou=email, dc=netregistry, dc=net user_attrs = homeDirectory=home, uidNumber=uid, gidNumber=gid, mailQuotaSize=quota_rule=*:storage=%$ user_filter = (&(objectClass=nrPOPAccount)(uid=%u)) pass_attrs = uid=user, userPassword=password, =proxy=y, =destuser=%u, =pass=Secret456 pass_filter = (&(objectClass=nrPOPAccount)(uid=%u)) default_pass_scheme = PLAIN Regards, Alexandr Sabitov System Administrator From stephan at rename-it.nl Wed Nov 20 03:13:00 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 20 Nov 2013 02:13:00 +0100 Subject: [Dovecot] Quick question on sieve In-Reply-To: <8800B130-530A-45E7-9C7F-5CCB520C414D@kreme.com> References: <17BFAF58-25F1-46BA-83DF-0FBBFC49F27A@kreme.com> <528BE7E7.9010404@rename-it.nl> <8800B130-530A-45E7-9C7F-5CCB520C414D@kreme.com> Message-ID: <528C0C9C.8060105@rename-it.nl> On 11/20/2013 1:14 AM, LuKreme wrote: > That's good to know (and the first time I've seen a sieve example with variables. > > Will: > :matches "list-id" "*" { > > match the entire line after List-ID? yes. > desk set "list name" "${1}" trap the first term, or is $1 the entire match to EOL? ${0} is the entire match afaik, ${1} is the first. > If it's not the first word, is it possible to match the first word without installing the regex package with sieve? (I'm loath to install anything extra at this point) regex is part of the main Pigeonhole distribution. A simple `require "regex";` at the top of the script is enough to enable it. > for example, for this list, the list-id is > > List-Id: Dovecot Mailing List > > Which is not a good name for fileinto "$listname" if header :matches "list-id" "*<*>*" { set "listname" "${2}"; } fileinto "${listname}"; Be careful with '.' in folder names though. For the default Maildir that is the folder separator. Regards, Stephan. From admin at truthsolo.net Wed Nov 20 05:14:40 2013 From: admin at truthsolo.net (Rob Dosogne) Date: Tue, 19 Nov 2013 21:14:40 -0600 Subject: [Dovecot] Dovecot 2.2.5: Panic: file mail-transaction-log.c: line 350 (mail_transaction_log_set_mailbox_sync_pos) Message-ID: Hello, I have been seeing an issue with Dovecot 2.2.5 (which is the current version packaged by cPanel). This is happening with any action that tries to access the mailbox index via IMAP. This log and debug information comes from a force-resync attempt, however, the same errors are logged when the user tries to open the mailbox or move a message to it. (User, domain, and IPs in log have been changed for privacy reasons). System is a CentOS 5.10 (x64) VPS under Virtuozzo 4.0, and is not OOMing or hitting any container limits. User is connecting from multiple devices on the same IP, most of which are Apple Mail & iOS. Other users with only Apple Mail & iOS devices are also experiencing the same errors. Log: Nov 19 15:55:33 host dovecot: imap-login: Login: user=, method=PLAIN, rip=1.2.3.4, lip=5.6.7.8, mpid=13887, TLS, session= Nov 19 15:55:33 host dovecot: imap: Debug: Loading modules from directory: /usr/lib64/dovecot Nov 19 15:55:33 host dovecot: imap: Debug: Module loaded: /usr/lib64/dovecot/lib01_acl_plugin.so Nov 19 15:55:33 host dovecot: imap: Debug: Module loaded: /usr/lib64/dovecot/lib10_quota_plugin.so Nov 19 15:55:33 host dovecot: imap: Debug: Module loaded: /usr/lib64/dovecot/lib11_imap_quota_plugin.so Nov 19 15:55:33 host dovecot: imap: Debug: Added userdb setting: mail=maildir:/home/username/mail/domain.com/user Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: Effective uid=504, gid=502, home=/home/username/mail/domain.com/user Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: acl: No acl_shared_dict setting - shared mailbox listing is disabled Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: Quota root: name= backend=maildir args= Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: Quota rule: root= mailbox=INBOX.Trash ignored Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: Quota grace: root= bytes=0 (10%) Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: Namespace : type=private, prefix=INBOX., sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/home/username/mail/domain.com/user Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: maildir++: root=/home/username/mail/domain.com/user, index=, indexpvt=, control=, inbox=/home/username/mail/domain.com/user, alt= Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: acl: initializing backend with data: vfile Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: acl: acl username = user at domain.com Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: acl: owner = 1 Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: acl vfile: Global ACL directory: (none) Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: Namespace : type=private, prefix=, sep=, inbox=no, hidden=yes, list=no, subscriptions=no location=fail::LAYOUT=none Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: none: root=, index=, indexpvt=, control=, inbox=, alt= Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: acl vfile: file /home/username/mail/domain.com/user/.TrainSpam/dovecot-acl not found Nov 19 15:55:33 host dovecot: imap(user at domain.com): Debug: acl vfile: file /home/username/mail/domain.com/user/.Spam/dovecot-acl not found Nov 19 15:55:35 host dovecot: imap(user at domain.com): Error: broken sync positions in index file /home/username/mail/domain.com/user/.Spam/dovecot.index Nov 19 15:55:35 host dovecot: imap(user at domain.com): Warning: fscking index file /home/username/mail/domain.com/user/.Spam/dovecot.index Nov 19 15:55:35 host dovecot: imap(user at domain.com): Error: Fixed index file /home/username/mail/domain.com/user/.Spam/dovecot.index: log_file_tail_offset 3988 -> 3868 Nov 19 15:55:35 host dovecot: imap(user at domain.com): Panic: file mail-transaction-log.c: line 350 (mail_transaction_log_set_mailbox_sync_pos): assertion failed: (file_offset >= log->head->saved_tail_offset) Nov 19 15:55:35 host dovecot: imap(user at domain.com): Error: Raw backtrace: /usr/lib64/dovecot/libdovecot.so.0 [0x2b07be142400] -> /usr/lib64/dovecot/libdovecot.so.0 [0x2b07be142456] -> /usr/lib64/dovecot/libdovecot.so.0 [0x2b07be141df3] -> /usr/lib64/dovecot/libdovecot-storage.so.0 [0x2b07bdea066b] -> /usr/lib64/dovecot/libdovecot-storage.so.0(mail_index_sync_commit+0x89) [0x2b07bde97ed9] -> /usr/lib64/dovecot/libdovecot-storage.so.0 [0x2b07bde25e4d] -> /usr/lib64/dovecot/libdovecot-storage.so.0(maildir_transaction_save_commit_pre+0x856) [0x2b07bde22186] -> /usr/lib64/dovecot/libdovecot-storage.so.0 [0x2b07bde81cc8] -> /usr/lib64/dovecot/libdovecot-storage.so.0(mail_index_transaction_commit_full+0x86) [0x2b07bde8f466] -> /usr/lib64/dovecot/libdovecot-storage.so.0(index_transaction_commit+0xa5) [0x2b07bde820a5] -> /usr/lib64/dovecot/lib10_quota_plugin.so [0x2b07bef5252b] -> /usr/lib64/dovecot/lib01_acl_plugin.so [0x2b07bed40f77] -> /usr/lib64/dovecot/libdovecot-storage.so.0(mailbox_transaction_commit_ge Nov 19 15:55:35 host dovecot: imap(user at domain.com): Fatal: master: service(imap): child 13887 killed with signal 6 (core dumped) Debug: Core was generated by `dovecot/imap'. Program terminated with signal 6, Aborted. #0 0x00002b07be3e0265 in raise () from /lib64/libc.so.6 (gdb) bt full #0 0x00002b07be3e0265 in raise () from /lib64/libc.so.6 No symbol table info available. #1 0x00002b07be3e1d10 in abort () from /lib64/libc.so.6 No symbol table info available. #2 0x00002b07be14240d in default_fatal_finish (type=, status=0) at failures.c:191 backtrace = 0x1773c798 "/usr/lib64/dovecot/libdovecot.so.0 [0x2b07be142400] -> /usr/lib64/dovecot/libdovecot.so.0 [0x2b07be142456] -> /usr/lib64/dovecot/libdovecot.so.0 [0x2b07be141df3] -> /usr/lib64/dovecot/libdovecot-stora"... #3 0x00002b07be142456 in i_internal_fatal_handler (ctx=0x7fff3c65f120, format=, args=) at failures.c:652 status = 0 #4 0x00002b07be141df3 in i_panic (format=0x363f
) at failures.c:263 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fff3c65f1f0, reg_save_area = 0x7fff3c65f130}} #5 0x00002b07bdea066b in mail_transaction_log_set_mailbox_sync_pos (log=, file_seq=, file_offset=) at mail-transaction-log.c:350 __FUNCTION__ = "mail_transaction_log_set_mailbox_sync_pos" #6 0x00002b07bde97ed9 in mail_index_sync_update_mailbox_offset (_ctx=0x1776e588) at mail-index-sync.c:751 seq = 4 offset = 3868 #7 mail_index_sync_commit (_ctx=0x1776e588) at mail-index-sync.c:795 ctx = 0x17787570 index = 0x17770cf0 next_uid = want_rotate = index_undeleted = false delete_index = false ret = #8 0x00002b07bde25e4d in maildir_sync_index_finish (ctx=0x1776e570, success=) at maildir-sync-index.c:331 mbox = 0x1776ea30 time_diff = ret = 0 #9 0x00002b07bde22186 in maildir_transaction_save_commit_pre (_ctx=0x177800e0) at maildir-save.c:1029 ctx = _t = 0x17779bc0 sync_flags = ret = 0 __FUNCTION__ = "maildir_transaction_save_commit_pre" #10 0x00002b07bde81cc8 in index_transaction_index_commit (index_trans=0x17779cb0, result_r=0x7fff3c65f470) at index-transaction.c:51 t = 0x17779bc0 pvt_sync_ctx = 0x0 ret = 0 __FUNCTION__ = "index_transaction_index_commit" #11 0x00002b07bde8f466 in mail_index_transaction_commit_full (_t=0x7fff3c65f498, result_r=0x7fff3c65f470) at mail-index-transaction.c:262 t = 0x17779cb0 index = 0x17770cf0 index_undeleted = false #12 0x00002b07bde820a5 in index_transaction_commit (t=0x17779bc0, changes_r=0x7fff3c65f5a0) at index-transaction.c:194 box = 0x1776ea30 itrans = 0x0 result = {log_file_seq = 0, log_file_offset = 0, commit_size = 0, ignored_modseq_changes = 0} ret = 0 #13 0x00002b07bef5252b in quota_mailbox_transaction_commit (ctx=0x17779bc0, changes_r=0x7fff3c65f5a0) at quota-storage.c:134 qt = 0x1777a890 #14 0x00002b07bed40f77 in acl_transaction_commit (ctx=0x17779bc0, changes_r=0x7fff3c65f5a0) at acl-mailbox.c:451 abox = 0x1776f048 ret = #15 0x00002b07bde53975 in mailbox_transaction_commit_get_changes (_t=, changes_r=0x7fff3c65f5a0) at mail-storage.c:1847 _data_stack_cur_id = 4 t = 0x17779bc0 save_count = 1 ret = __FUNCTION__ = "mailbox_transaction_commit_get_changes" #16 0x000000000040c0d3 in cmd_copy_full () No symbol table info available. #17 0x000000000040c39b in cmd_copy () No symbol table info available. #18 0x0000000000414d97 in command_exec () No symbol table info available. #19 0x0000000000413b9b in client_command_input () No symbol table info available. #20 0x0000000000413c5f in client_command_input () No symbol table info available. #21 0x0000000000413e0f in client_handle_input () No symbol table info available. #22 0x0000000000414212 in client_input () No symbol table info available. #23 0x00002b07be150f16 in io_loop_call_io (io=0x1775c450) at ioloop.c:387 ioloop = 0x17744720 t_id = 2 #24 0x00002b07be15238d in io_loop_handler_run (ioloop=) at ioloop-epoll.c:215 ctx = event = 0x17746210 list = 0x1775c4a0 io = 0x363f tv = {tv_sec = 1799, tv_usec = 999752} events_count = msecs = ret = 1 i = 0 call = false __FUNCTION__ = "io_loop_handler_run" #25 0x00002b07be150ebd in io_loop_run (ioloop=0x17744720) at ioloop.c:406 No locals. #26 0x00002b07be107223 in master_service_run (service=0x177445b0, callback=0x363f) at master-service.c:566 No locals. #27 0x000000000041d437 in main () No symbol table info available. # dovecot -n # 2.2.5: /etc/dovecot/dovecot.conf # OS: Linux 2.6.18-028stab101.1 x86_64 CentOS release 5.10 (Final) auth_cache_size = 2 k auth_mechanisms = plain login auth_username_chars = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!#$-=?^_{}~./@+%" disable_plaintext_auth = no lock_method = dotlock mail_debug = yes mailbox_idle_check_interval = 15 secs mmap_disable = yes namespace { inbox = yes location = prefix = INBOX. type = private } passdb { args = /usr/local/cpanel/bin/dovecot-wrap driver = checkpassword } plugin { acl = vfile quota = maildir quota_rule = INBOX.Trash:ignore } protocols = imap pop3 service auth { unix_listener auth-client { mode = 0666 } } service imap-login { client_limit = 500 inet_listener imap { address = * } inet_listener imaps { address = * } process_limit = 100 process_min_avail = 2 service_count = 1 vsz_limit = 64 M } service imap { process_limit = 512 vsz_limit = 256 M } service managesieve-login { client_limit = 500 process_limit = 100 process_min_avail = 2 service_count = 1 vsz_limit = 64 M } service managesieve { process_limit = 512 vsz_limit = 256 M } service pop3-login { client_limit = 500 inet_listener pop3 { address = * } inet_listener pop3s { address = * } process_limit = 100 process_min_avail = 2 service_count = 1 vsz_limit = 64 M } service pop3 { process_limit = 512 vsz_limit = 256 M } ssl_cert = -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Is it just here? When compiling dovecot-2.2-pigeonhole-0.4.2 at the stage "make check" Pigeonhole is throwing the following message and stops: Test case: ./tests/test-header.svtest: 1: Test 'Basic functionality' SUCCEEDED 2: Test 'Matching empty key' SUCCEEDED 3: Test 'Ignoring whitespace' FAILED: header test does not strip leading whitespace 4: Test 'Absent or empty header' SUCCEEDED 5: Test 'Invalid header name' SUCCEEDED 6: Test 'Folded header' SUCCEEDED I have tried to compile Pigeonhole 0.4.2 and also the latest dovecot-2-2-pigeonhole-b7434a02fc51 from the Mercurial repository but the outcome at "make test" is always the same: 3: Test 'Ignoring whitespace' FAILED: header test does not strip leading whitespace Cheers, Tamsy -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32) iQEcBAEBAgAGBQJSjC2QAAoJEKYXVM1dyOfZ9xsIAKDC7goLP3N2rr90Lf0P6gam wQFmYY3HUMIKi3FKWcCy6DQBN6Qr33QWTk/b4OY1LDMOETolZTWIEwvlix+YdI8x oRdKQXWHR9k+jd9etWkNuuk2xUnbjz353IOMZ3Yc+spuv0JyUvYhef6pfq3MLTYQ R+YW4aoNp3XstAKcknnkduNwrfRXoZoFT/YOU3VQyDUwUa6u07JhuL+onZtb0mO+ HsdD4NNY28YqHY1/eoT3YNRbgtRxyOfzxh3f17ITbquM0ZgiPJucWX7HpIiwNJFu 3gqkceDLqqAL9DKUjDapSyR2IjxJlRSGcxQckxlkGXzcaTNNWqAn7mMxSr3hEaY= =EY7D -----END PGP SIGNATURE----- -------------- next part -------------- A non-text attachment was scrubbed... Name: 0x5DC8E7D9.asc Type: application/pgp-keys Size: 1733 bytes Desc: not available URL: From a.kostyrev at serverc.ru Wed Nov 20 06:48:33 2013 From: a.kostyrev at serverc.ru (=?koi8-r?B?68/T1NnSxdcg4czFy9PBzsTSIOHMxcvTxcXXyd4=?=) Date: Wed, 20 Nov 2013 15:48:33 +1100 Subject: [Dovecot] dovecot perl sasl ejabberd Message-ID: <213B51F00051AE48A9F0E11288017717B843B3@Delta.sc.local> Good day to all! We would like to authenticate our ejabberd against Dovecot with perl there's such a script http://www.ejabberd.im/files/contributions/check_dovecot.pl.txt that script uses following perl library - http://cpansearch.perl.org/src/SASHA/Authen-SASL-Authd-0.04/lib/Authen/SASL/Authd.pm Authentication is OK, but sub user_dovecot wich queues information about a specific user doesn't work with error dovecot: auth: Error: BUG: Authentication client sent unknown handshake command: USER?1?user60 at atlas-2.ru could someone help with this ? thanks in advance! -- ? ?????????, ???????? ????????? ????????????? Linux-?????? skype: a.kostyrev From dovecot.org at choon.net Wed Nov 20 08:22:38 2013 From: dovecot.org at choon.net (Giam Teck Choon) Date: Wed, 20 Nov 2013 14:22:38 +0800 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: <528C2D90.3000805@mohtex.net> References: <528C2D90.3000805@mohtex.net> Message-ID: <528C552E.1090302@choon.net> On 11/20/2013 11:33 AM, Tamsy wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Is it just here? You mean is it just you alone or ? If you really mean just you only... no you are not alone... > > When compiling dovecot-2.2-pigeonhole-0.4.2 at the stage "make check" > Pigeonhole is throwing the following message and stops: > > Test case: ./tests/test-header.svtest: > > 1: Test 'Basic functionality' SUCCEEDED > 2: Test 'Matching empty key' SUCCEEDED > 3: Test 'Ignoring whitespace' FAILED: header test does not strip > leading whitespace > 4: Test 'Absent or empty header' SUCCEEDED > 5: Test 'Invalid header name' SUCCEEDED > 6: Test 'Folded header' SUCCEEDED > > I have tried to compile Pigeonhole 0.4.2 and also the latest > dovecot-2-2-pigeonhole-b7434a02fc51 from the Mercurial repository but > the outcome at "make test" is always the same: > > 3: Test 'Ignoring whitespace' FAILED: header test does not strip leading > whitespace Same thing happened to me as well... Test case: ./tests/test-header.svtest: 1: Test 'Basic functionality' SUCCEEDED 2: Test 'Matching empty key' SUCCEEDED 3: Test 'Ignoring whitespace' FAILED: header test does not strip leading whitespace 4: Test 'Absent or empty header' SUCCEEDED 5: Test 'Invalid header name' SUCCEEDED 6: Test 'Folded header' SUCCEEDED FAIL: 1 of 6 tests failed. make: *** [tests/test-header.svtest] Error 1 Thanks. Kindest regards, Giam Teck Choon > > Cheers, > Tamsy > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.22 (MingW32) > > iQEcBAEBAgAGBQJSjC2QAAoJEKYXVM1dyOfZ9xsIAKDC7goLP3N2rr90Lf0P6gam > wQFmYY3HUMIKi3FKWcCy6DQBN6Qr33QWTk/b4OY1LDMOETolZTWIEwvlix+YdI8x > oRdKQXWHR9k+jd9etWkNuuk2xUnbjz353IOMZ3Yc+spuv0JyUvYhef6pfq3MLTYQ > R+YW4aoNp3XstAKcknnkduNwrfRXoZoFT/YOU3VQyDUwUa6u07JhuL+onZtb0mO+ > HsdD4NNY28YqHY1/eoT3YNRbgtRxyOfzxh3f17ITbquM0ZgiPJucWX7HpIiwNJFu > 3gqkceDLqqAL9DKUjDapSyR2IjxJlRSGcxQckxlkGXzcaTNNWqAn7mMxSr3hEaY= > =EY7D > -----END PGP SIGNATURE----- > From torbjorn.jansson at mbox200.swipnet.se Wed Nov 20 08:56:15 2013 From: torbjorn.jansson at mbox200.swipnet.se (Torbjorn Jansson) Date: Wed, 20 Nov 2013 07:56:15 +0100 Subject: [Dovecot] UID order vs date order In-Reply-To: References: <52889873.4090904@mbox200.swipnet.se> Message-ID: <528C5D0F.7090409@mbox200.swipnet.se> On 2013-11-17 19:27, LuKreme wrote: > > On 17 Nov 2013, at 03:20 , Torbjorn Jansson wrote: > >> Hi >> >> i have recently moved a mailbox to dovecot and intend to use it via imap and i have run into a problem. >> >> when i imported the mails apparently the UID order got reversed compared to the date order, result is that some clients like on android devices download the oldest mails instead of newest. >> it is not so interesting to have several years old mail show up at the top of the mailbox. >> >> is there any way of convincing dovecot to renumber the mails by date order instead? > > Probably the easiest solution is to figure out what you did in the import to cause this and reimport the mails. Short of that, the only thing you can do (assuming you are using Maildir, right?) is to get the date out of the mail and rewrite the filename with the correct epoch timestamp. > > It would be great if there was a way to use doveadm to do this, but short of that you just have to fix it yourself. The good news is, with gnu date it?s pretty simple. > > $ date --date='2013-11-17 01:23:45 +0700' +%s > 1384626225 > $ gdate --date='November 17, 2013 01:23:45 +0700' +%s > 1384626225 > $ gdate --date='17 Nov 2013 01:23:45 +0700' +%s > 1384626225 > >> i cant be the only one that have run into this. > > I had a similar problem, but I ignored it and as new mail came in, the problem went away (mostly) on its own. :/ > i have fixed the problem. initially during my testing i did try the outlook import to imap folder and it worked but for some reason it aborted half way thru, probably due to some badly formed mail from many years ago so i chose not to use outlook for the conversion. but i had to use outlook anyway and what i did was to copy one folder at a time via outlook from the local pst to imap folder, some folders i lost a few mails but not many. end result is that i have a good mailbox now. to sum it up: Tbird import works, no problem with character sets but screws up the order of the mails. Outlook import works but more likely to stop on bad mails, some character set issues (a few mails ended up with ??? in the sender instead of the right name) and sort order is correct. i did run into another issue and that was with android email client, it decided to use up all 10 simultaneous connections and then displayed an error. had to increase the connection limit several times and at one point the client used 65 connections at the same time. compare this with tbird that uses only 5. but i believe this is a known issue. From rs at sys4.de Wed Nov 20 10:08:29 2013 From: rs at sys4.de (Robert Schetterer) Date: Wed, 20 Nov 2013 09:08:29 +0100 Subject: [Dovecot] UID order vs date order In-Reply-To: <528C5D0F.7090409@mbox200.swipnet.se> References: <52889873.4090904@mbox200.swipnet.se> <528C5D0F.7090409@mbox200.swipnet.se> Message-ID: <528C6DFD.6050301@sys4.de> Am 20.11.2013 07:56, schrieb Torbjorn Jansson: > On 2013-11-17 19:27, LuKreme wrote: >> >> On 17 Nov 2013, at 03:20 , Torbjorn Jansson >> wrote: >> >>> Hi >>> >>> i have recently moved a mailbox to dovecot and intend to use it via >>> imap and i have run into a problem. >>> >>> when i imported the mails apparently the UID order got reversed >>> compared to the date order, result is that some clients like on >>> android devices download the oldest mails instead of newest. >>> it is not so interesting to have several years old mail show up at >>> the top of the mailbox. >>> >>> is there any way of convincing dovecot to renumber the mails by date >>> order instead? >> >> Probably the easiest solution is to figure out what you did in the >> import to cause this and reimport the mails. Short of that, the only >> thing you can do (assuming you are using Maildir, right?) is to get >> the date out of the mail and rewrite the filename with the correct >> epoch timestamp. >> >> It would be great if there was a way to use doveadm to do this, but >> short of that you just have to fix it yourself. The good news is, with >> gnu date it?s pretty simple. >> >> $ date --date='2013-11-17 01:23:45 +0700' +%s >> 1384626225 >> $ gdate --date='November 17, 2013 01:23:45 +0700' +%s >> 1384626225 >> $ gdate --date='17 Nov 2013 01:23:45 +0700' +%s >> 1384626225 >> >>> i cant be the only one that have run into this. >> >> I had a similar problem, but I ignored it and as new mail came in, the >> problem went away (mostly) on its own. :/ >> > > i have fixed the problem. > initially during my testing i did try the outlook import to imap folder > and it worked but for some reason it aborted half way thru, probably due > to some badly formed mail from many years ago so i chose not to use > outlook for the conversion. > > but i had to use outlook anyway and what i did was to copy one folder at > a time via outlook from the local pst to imap folder, some folders i > lost a few mails but not many. > end result is that i have a good mailbox now. > > to sum it up: > > Tbird import > works, no problem with character sets but screws up the order of the mails. > > Outlook import > works but more likely to stop on bad mails, some character set issues (a > few mails ended up with ??? in the sender instead of the right name) and > sort order is correct. > > > > i did run into another issue and that was with android email client, it > decided to use up all 10 simultaneous connections and then displayed an > error. > had to increase the connection limit several times and at one point the > client used 65 connections at the same time. > compare this with tbird that uses only 5. > but i believe this is a known issue. > thx for info, so it looks like many client problems here , but none by dovecot, anyway good to know about cause migration/restore from pst file might happen in many places Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From AxelLuttgens at swing.be Wed Nov 20 10:16:25 2013 From: AxelLuttgens at swing.be (Axel Luttgens) Date: Wed, 20 Nov 2013 09:16:25 +0100 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: <528C2D90.3000805@mohtex.net> References: <528C2D90.3000805@mohtex.net> Message-ID: Le 20 nov. 2013 ? 04:33, Tamsy a ?crit : > [...] > > I have tried to compile Pigeonhole 0.4.2 and also the latest > dovecot-2-2-pigeonhole-b7434a02fc51 from the Mercurial repository but > the outcome at "make test" is always the same: > > 3: Test 'Ignoring whitespace' FAILED: header test does not strip leading > whitespace Hello Tamsy, No such failure here, with a standard compilation of 2.2.7/0.4.2 on Mac OS X 10.8.5. Could this be OS-related, related to some libraries? During the compilation, were warnings that could provide some hints emitted? Axel From dovecot-list at mohtex.net Wed Nov 20 10:29:12 2013 From: dovecot-list at mohtex.net (Tamsy) Date: Wed, 20 Nov 2013 15:29:12 +0700 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: References: <528C2D90.3000805@mohtex.net> Message-ID: <528C72D8.20906@mohtex.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Axel Luttgens wrote the following on 20.11.2013 15:16: > Le 20 nov. 2013 ? 04:33, Tamsy a ?crit : > >> [...] >> >> I have tried to compile Pigeonhole 0.4.2 and also the latest >> dovecot-2-2-pigeonhole-b7434a02fc51 from the Mercurial repository but >> the outcome at "make test" is always the same: >> >> 3: Test 'Ignoring whitespace' FAILED: header test does not strip leading >> whitespace > > Hello Tamsy, > > No such failure here, with a standard compilation of 2.2.7/0.4.2 on Mac OS X 10.8.5. > Could this be OS-related, related to some libraries? > During the compilation, were warnings that could provide some hints emitted? > > Axel > Hi Axel, Thank you for the info. Our servers are running on Ubuntu 10.04, 32bit. With Dovecot/Pigeonhole 2.2.7/0.4.2 that error when running "make check" for Pigeonhole does not happen on any of our servers. It seems to be the combo Dovecot/Pigeonhole 2.2.8/0.4.2 (and also with Mercurial b7434a02fc51). Probably some incompatibilities. Maybe Stephan can take a look at this? "Configure" and "make" for Pigeonhole is going without any errors but "make check" just stops after the following without any further message: Test case: ./tests/test-header.svtest: 1: Test 'Basic functionality' SUCCEEDED 2: Test 'Matching empty key' SUCCEEDED 3: Test 'Ignoring whitespace' FAILED: header test does not strip leading whitespace 4: Test 'Absent or empty header' SUCCEEDED 5: Test 'Invalid header name' SUCCEEDED 6: Test 'Folded header' SUCCEEDED FAIL: 1 of 6 tests failed. make: *** [tests/test-header.svtest] Error 1 "header test does not strip leading whitespace" is the only clue. Cheers, Tamsy -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32) iQEcBAEBAgAGBQJSjHLYAAoJEKYXVM1dyOfZJMEH/0L42e9kcW380BSoDblvUjMJ 4xWzbYbRikliKqF8+8QOvmcHZF5wgmsxhdNtPdvMlLnS6YDhLGcJbPf4BeY3/IIi pTehQ8h+v4qBB2lJvJfdFAZ1ZEQ6QLK11nCxg5X+u50tAOoflZbWZUdmhu7zDJ8W Kw5Ta6l2etMjEbXwKEK3w+aQh/jAd89fcPlCbOcfHsq85Y3hTT5Wtn8itCFYUOkh aVSr40R5wV93T3GpwvNxaOk5FLeSRcx/1sqzWjVrUTSTJhLLMG9RQEYDCxwpecRx af94Uw5ir5qBym4lqK48arLhH8xv4FF+2Z9Yj8tiC0YKKcTr3OowdaWKbgVd544= =Vkol -----END PGP SIGNATURE----- -------------- next part -------------- A non-text attachment was scrubbed... Name: 0x5DC8E7D9.asc Type: application/pgp-keys Size: 1733 bytes Desc: not available URL: From ihab_mishriki at hotmail.com Wed Nov 20 10:54:35 2013 From: ihab_mishriki at hotmail.com (ihab) Date: Wed, 20 Nov 2013 00:54:35 -0800 (PST) Subject: [Dovecot] how can i change the content of rejected message In-Reply-To: <987b0709870a049dd1c90073726dabd1@junc.eu> References: <1384858826008-45460.post@n4.nabble.com> <987b0709870a049dd1c90073726dabd1@junc.eu> Message-ID: <1384937675900-45497.post@n4.nabble.com> thanks but i want to change the language of it i don't want it in english -- View this message in context: http://dovecot.2317879.n4.nabble.com/how-can-i-change-the-content-of-rejected-message-tp45460p45497.html Sent from the Dovecot mailing list archive at Nabble.com. From AxelLuttgens at swing.be Wed Nov 20 11:06:52 2013 From: AxelLuttgens at swing.be (Axel Luttgens) Date: Wed, 20 Nov 2013 10:06:52 +0100 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: <528C72D8.20906@mohtex.net> References: <528C2D90.3000805@mohtex.net> <528C72D8.20906@mohtex.net> Message-ID: Le 20 nov. 2013 ? 09:29, Tamsy a ?crit : > [...] > > Our servers are running on Ubuntu 10.04, 32bit. With Dovecot/Pigeonhole > 2.2.7/0.4.2 that error when running "make check" for Pigeonhole does not > happen on any of our servers. It seems to be the combo > Dovecot/Pigeonhole 2.2.8/0.4.2 (and also with Mercurial b7434a02fc51). > Probably some incompatibilities. Maybe Stephan can take a look at this? > "Configure" and "make" for Pigeonhole is going without any errors but > "make check" just stops after the following without any further message: > > Test case: ./tests/test-header.svtest: > 1: Test 'Basic functionality' SUCCEEDED > 2: Test 'Matching empty key' SUCCEEDED > 3: Test 'Ignoring whitespace' FAILED: header test does not strip > leading whitespace > 4: Test 'Absent or empty header' SUCCEEDED > 5: Test 'Invalid header name' SUCCEEDED > 6: Test 'Folded header' SUCCEEDED > FAIL: 1 of 6 tests failed. > make: *** [tests/test-header.svtest] Error 1 > > "header test does not strip leading whitespace" is the only clue. OK, just downloaded and tried with 2.2.8. And yes, that 2.2.8/0.4.2 combo fails the same way here too... Axel From AxelLuttgens at swing.be Wed Nov 20 11:23:23 2013 From: AxelLuttgens at swing.be (Axel Luttgens) Date: Wed, 20 Nov 2013 10:23:23 +0100 Subject: [Dovecot] how can i change the content of rejected message In-Reply-To: <1384937675900-45497.post@n4.nabble.com> References: <1384858826008-45460.post@n4.nabble.com> <987b0709870a049dd1c90073726dabd1@junc.eu> <1384937675900-45497.post@n4.nabble.com> Message-ID: <758FA709-B082-4123-B9E4-2C274D4D0A52@swing.be> Le 20 nov. 2013 ? 09:54, ihab a ?crit : > thanks > but i want to change the language of it i don't want it in english Hello, You could have a look at: http://wiki1.dovecot.org/Quota/1.1 under the "Custom Quota Exceeded Message" heading. HTH, Axel From h.reindl at thelounge.net Wed Nov 20 11:29:14 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 20 Nov 2013 10:29:14 +0100 Subject: [Dovecot] how can i change the content of rejected message In-Reply-To: <1384937675900-45497.post@n4.nabble.com> References: <1384858826008-45460.post@n4.nabble.com> <987b0709870a049dd1c90073726dabd1@junc.eu> <1384937675900-45497.post@n4.nabble.com> Message-ID: <528C80EA.90105@thelounge.net> Am 20.11.2013 09:54, schrieb ihab: > but i want to change the language of it i don't want it in english do not do that, you don't look more professional because showhing what configs you be able to change if someone speaking english finally get a reject message in whatever language he won't find it helpful as well i start to laugh if some exchange server starts to bounce back in french or spain and i have no idea what it is talking about -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From professa at dementianati.com Wed Nov 20 11:37:54 2013 From: professa at dementianati.com (Professa Dementia) Date: Wed, 20 Nov 2013 01:37:54 -0800 Subject: [Dovecot] dovecot perl sasl ejabberd In-Reply-To: <213B51F00051AE48A9F0E11288017717B843B3@Delta.sc.local> References: <213B51F00051AE48A9F0E11288017717B843B3@Delta.sc.local> Message-ID: <528C82F2.5060108@dementianati.com> On 11/19/2013 8:48 PM, ???????? ????????? ?????????? wrote: > Good day to all! > > We would like to authenticate our ejabberd against Dovecot with perl > > there's such a script http://www.ejabberd.im/files/contributions/check_dovecot.pl.txt > > that script uses following perl library - http://cpansearch.perl.org/src/SASHA/Authen-SASL-Authd-0.04/lib/Authen/SASL/Authd.pm > > Authentication is OK, but sub user_dovecot wich queues information about a specific user doesn't work with error > > dovecot: auth: Error: BUG: Authentication client sent unknown handshake command: USER?1?user60 at atlas-2.ru > > could someone help with this ? > > thanks in advance! I started to look through the script to find the problem, however, it quickly became obvious that whoever wrote it knew very little about programming Perl or security. Do not use this script. It is only one page long and yet contains so many problems, bugs and security holes, that it would take much more than that to describe. It is easier just to write it correctly from scratch. - First, it does not have the warning flag turned on, which would have caught a lot of problems. - Second, it is used for data coming in over the Internet, and yet it does not run in taint mode. This allows a lot of programming mistakes to slip by and hackers can exploit this fact. - Third, the section that supposedly filters dangerous characters, does not. Best security practice says that you allow a safe set of characters and discard the rest, *not* the other way around (discarding just the "dangerous" characters, keeping the rest). What if the localized character set has a quote character that the shell recognizes, but is not in your list of banned characters? Also, it is much easier to comprehend and visualize a list of characters that are allowed, versus trying to figure out which ones aren't by elimination. Do you have the entire set of localized characters memorized and can you mentally figure which of them are left after removing a specific few? What happens in a different localization? - Fourth, clearly the author of this knows C, but does not know Perl. Perl has no switch statement. The simulated switch statement in this script is just a named block with a series of commands that have gotos escaping the block (the last statement). This is confusing and hides sneaky bugs. For instance, each command is really of the form: $op eq 'xyz' and do { ... }, last SWITCH; This is a compound statement, which often has hidden, unintended side effects. How will this be evaluated; in scalar context or list context? What are the side effects of each? What is the operator precedence of the "and" compared to the comma operator at the end? Why should you even need to worry about such things? They just lead to hard-to-find programming bugs. This statement hides an "if" statement as a fake switch statement. Just use a real if / elsif / elsif / else construct. Perl knows how to optimize such things and a genuine if / elsif cascade will execute faster than this simulated switch statement and be less confusing to understand. - Fifth, the variable "$result" is set to the barewords "true" or "false". 1) Barewords are bad and would have generated errors if the warnings flag was on, which it should have been. 2) In Perl, these are not keywords. As such, they are treated as normal strings, so in both cases you are setting the variable to a string of either "true" or false", both of which are true when evaluated in boolean context. At the end, when setting the $out variable, YOU ALWAYS RETURN TRUE!!! regardless of whether the user authenticated correctly or not. This just scratches the surface and there are a lot more problems: cuddled elses, not checking return values, not trapping errors, using negative conditionals, confusing and ambiguous use of the ternary operator, etc. Do not use this script. That is, unless you are setting up a hacking contest and inviting people to hack your system, in which case, go right ahead. For more information, get a copy of the book "Perl Best Practices". Cheers. Dem From me at junc.eu Wed Nov 20 12:26:21 2013 From: me at junc.eu (Benny Pedersen) Date: Wed, 20 Nov 2013 11:26:21 +0100 Subject: [Dovecot] how can i change the content of rejected message In-Reply-To: <1384937675900-45497.post@n4.nabble.com> References: <1384858826008-45460.post@n4.nabble.com> <987b0709870a049dd1c90073726dabd1@junc.eu> <1384937675900-45497.post@n4.nabble.com> Message-ID: <57ee93ed860995dafbd78ca877ee570b@junc.eu> ihab skrev den 2013-11-20 09:54: > but i want to change the language of it i don't want it in english why not ? From trashcan at odo.in-berlin.de Wed Nov 20 13:16:59 2013 From: trashcan at odo.in-berlin.de (Michael Grimm) Date: Wed, 20 Nov 2013 12:16:59 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <74C9FBF4-993D-4033-BFDD-9A20EFFBCACA@iki.fi> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> <74C9FBF4-993D-4033-BFDD-9A20EFFBCACA@iki.fi> Message-ID: <7363244C-EF4B-4C22-895F-B4565F990BE5@odo.in-berlin.de> Timo Sirainen wrote: > Maybe http://hg.dovecot.org/dovecot-2.2/rev/5f946b807706 solves this also? I?m not sure why it started happening with v2.2.7 though. That did the trick. No more status=undeliverable here as well. Thanks and regards, Michael From jg at softjury.de Wed Nov 20 13:44:08 2013 From: jg at softjury.de (Jan Phillip Greimann) Date: Wed, 20 Nov 2013 12:44:08 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <74C9FBF4-993D-4033-BFDD-9A20EFFBCACA@iki.fi> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> <74C9FBF4-993D-4033-BFDD-9A20EFFBCACA@iki.fi> Message-ID: <528CA088.8060807@softjury.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 19.11.2013 16:22, schrieb Timo Sirainen: > Maybe http://hg.dovecot.org/dovecot-2.2/rev/5f946b807706 solves > this also? I?m not sure why it started happening with v2.2.7 though. Hi Timo, Is this patch included in v2.2.8? I will still wait for a v2.2.8 stable-build on xi.rename-it.nl. Best regards Jan -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSjKCEAAoJENEKhqzzuxPl/moH/32ob9kzWYrpBihUGYSx9p/V Bk4z3I2FGc3Mvq2WKkZ9+82KoJ2PZAOn7Z16g0J6MLTyjVuSdluj2HZRNRVgLNaY 58cnp9BfrBDFa8ZAQ3a1L6/p4JH522NiihDO0l1q7x5sLRsBvgMPuC5GHhXPt/sQ H1gaymLQST4PBH+0xNuh3a7AWH//vCN3eGcSthj2HFg04JyOh+KUqiLO8SgggqQp QLL6cnSlNFBCVbNxdw0I3tsReDHExNXTF+PukDoZEt3lYtEPs9VbiIm3UrY6XqfA z+ELS4lcJHbBhsFCqjDLS9PmQoyDwaCImQER0lp0ZwXgsUlum4UYGJTU/LselAY= =nHaC -----END PGP SIGNATURE----- From tss at iki.fi Wed Nov 20 14:40:22 2013 From: tss at iki.fi (Timo Sirainen) Date: Wed, 20 Nov 2013 14:40:22 +0200 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: <528C2D90.3000805@mohtex.net> References: <528C2D90.3000805@mohtex.net> Message-ID: <65E21F32-0F27-440C-892C-68CF9C8FA206@iki.fi> On 20.11.2013, at 5.33, Tamsy wrote: > When compiling dovecot-2.2-pigeonhole-0.4.2 at the stage "make check" > Pigeonhole is throwing the following message and stops: > > Test case: ./tests/test-header.svtest: > > 1: Test 'Basic functionality' SUCCEEDED > 2: Test 'Matching empty key' SUCCEEDED > 3: Test 'Ignoring whitespace' FAILED: header test does not strip > leading whitespace > 4: Test 'Absent or empty header' SUCCEEDED > 5: Test 'Invalid header name' SUCCEEDED > 6: Test 'Folded header? SUCCEEDED Interestingly caused by the improved caching code. Fixed by http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 From tss at iki.fi Wed Nov 20 15:08:27 2013 From: tss at iki.fi (Timo Sirainen) Date: Wed, 20 Nov 2013 15:08:27 +0200 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: <65E21F32-0F27-440C-892C-68CF9C8FA206@iki.fi> References: <528C2D90.3000805@mohtex.net> <65E21F32-0F27-440C-892C-68CF9C8FA206@iki.fi> Message-ID: <64F6C6A5-19C4-4C28-AFFD-BA21C4CEF2C6@iki.fi> On 20.11.2013, at 14.40, Timo Sirainen wrote: > On 20.11.2013, at 5.33, Tamsy wrote: > >> When compiling dovecot-2.2-pigeonhole-0.4.2 at the stage "make check" >> Pigeonhole is throwing the following message and stops: >> >> Test case: ./tests/test-header.svtest: >> >> 1: Test 'Basic functionality' SUCCEEDED >> 2: Test 'Matching empty key' SUCCEEDED >> 3: Test 'Ignoring whitespace' FAILED: header test does not strip >> leading whitespace >> 4: Test 'Absent or empty header' SUCCEEDED >> 5: Test 'Invalid header name' SUCCEEDED >> 6: Test 'Folded header? SUCCEEDED > > Interestingly caused by the improved caching code. Fixed by http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 And http://hg.dovecot.org/dovecot-2.2/rev/4ef184875799 http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 These are very old bugs. Wonder if they?ve caused other trouble earlier. From dovecot-list at mohtex.net Wed Nov 20 15:44:44 2013 From: dovecot-list at mohtex.net (Tamsy) Date: Wed, 20 Nov 2013 20:44:44 +0700 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: <64F6C6A5-19C4-4C28-AFFD-BA21C4CEF2C6@iki.fi> References: <528C2D90.3000805@mohtex.net> <65E21F32-0F27-440C-892C-68CF9C8FA206@iki.fi> <64F6C6A5-19C4-4C28-AFFD-BA21C4CEF2C6@iki.fi> Message-ID: <528CBCCC.2020208@mohtex.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Timo Sirainen wrote the following on 20.11.2013 20:08: > On 20.11.2013, at 14.40, Timo Sirainen wrote: > >> On 20.11.2013, at 5.33, Tamsy wrote: >> >>> When compiling dovecot-2.2-pigeonhole-0.4.2 at the stage "make check" >>> Pigeonhole is throwing the following message and stops: >>> >>> Test case: ./tests/test-header.svtest: >>> >>> 1: Test 'Basic functionality' SUCCEEDED >>> 2: Test 'Matching empty key' SUCCEEDED >>> 3: Test 'Ignoring whitespace' FAILED: header test does not strip >>> leading whitespace >>> 4: Test 'Absent or empty header' SUCCEEDED >>> 5: Test 'Invalid header name' SUCCEEDED >>> 6: Test 'Folded header? SUCCEEDED >> Interestingly caused by the improved caching code. Fixed by http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 > And http://hg.dovecot.org/dovecot-2.2/rev/4ef184875799 http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 > > These are very old bugs. Wonder if they?ve caused other trouble earlier. > Hi Timo, After applying your patches to Dovecot 2.2.8: 1. http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 2. http://hg.dovecot.org/dovecot-2.2/rev/4ef184875799 3. http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 I can confirm that "make check" using latest dovecot-2-2-pigeonhole-b7434a02fc51 from the Mercurial repository is finishing without error now, all tests are succeeding. In particular "Test case: ./tests/test-header.svtest": 1: Test 'Basic functionality' SUCCEEDED 2: Test 'Matching empty key' SUCCEEDED 3: Test 'Ignoring whitespace' SUCCEEDED 4: Test 'Absent or empty header' SUCCEEDED 5: Test 'Invalid header name' SUCCEEDED 6: Test 'Folded header' SUCCEEDED PASS: 6 tests succeeded. Thank you, Tamsy -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32) iQEcBAEBAgAGBQJSjLzMAAoJEKYXVM1dyOfZzvwH/1Xl5ysdOFQel5jWMeCDtuZP a/nli5L0mZe2l16MVdUJ8lDn7tpQv13WkZV81vYTIayu/b+MTGa1OZVoQakgWUUx dF26Jc0E5/pVOM0jlJgagGjwhFjjAUGkOeKEfIi6ScGekTuvunlBfkJ+rbouAise HCRHnPgvIv+o+S8hDNTOyKz2S8/2cR/Yip8j2k6UYn9DUCR1Phs7ypugkcXhBIHG ee4vHyY0tFCprps9tN12xr+qOn7R/wTHTqw9JZZNyXVrxt3ZLOH7IApeaWeMNFDz FmwKjrDiXHK0HVJVVfjvvSZqDX5+BMFe4kDiKVqEdewex1b+tVXTCD5wSlU3pTk= =srRX -----END PGP SIGNATURE----- -------------- next part -------------- A non-text attachment was scrubbed... Name: 0x5DC8E7D9.asc Type: application/pgp-keys Size: 1733 bytes Desc: not available URL: From trashcan at odo.in-berlin.de Wed Nov 20 15:45:35 2013 From: trashcan at odo.in-berlin.de (Michael Grimm) Date: Wed, 20 Nov 2013 14:45:35 +0100 Subject: [Dovecot] status=undeliverable (lost connection with mail.larptreff.de[private/dovecot-lmtp] while sending MAIL FROM) In-Reply-To: <528CA088.8060807@softjury.de> References: <527B4702.4070100@softjury.de> <107fae43c5a79855143220e5fc0dc605@mx1.enfer-du-nord.net> <7C6F6E2C-61A9-476E-9315-648AF31B6857@odo.in-berlin.de> <36F11DC0-A5B6-4AD7-B541-D907B090E9FB@iki.fi> <0D280567-1CF9-47ED-B639-5B1B3E5C1555@iki.fi> <74C9FBF4-993D-4033-BFDD-9A20EFFBCACA@iki.fi> <528CA088.8060807@softjury.de> Message-ID: <175CF082-07E4-4D68-BAA3-42B393A75013@odo.in-berlin.de> Jan Phillip Greimann wrote: > Am 19.11.2013 16:22, schrieb Timo Sirainen: >> http://hg.dovecot.org/dovecot-2.2/rev/5f946b807706 > > Is this patch included in v2.2.8? Yes, it is. Regards, Michael From glance at acc.umu.se Wed Nov 20 16:15:49 2013 From: glance at acc.umu.se (Anton Lundin) Date: Wed, 20 Nov 2013 15:15:49 +0100 Subject: [Dovecot] Drac for dovecot 2.2 Message-ID: <20131120141549.GA15570@kennedy.acc.umu.se> Hi folks. I thought that i should publish and announce that i ported the dovecot2-drac plugin to be usable with dovecot 2.2 and Debian patched drac for IPv6. The patches can be found at: https://github.com/glance-/dovecot2-drac //Anton -- Anton Lundin From dovecot.org at choon.net Wed Nov 20 17:20:34 2013 From: dovecot.org at choon.net (Giam Teck Choon) Date: Wed, 20 Nov 2013 23:20:34 +0800 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: <528CBCCC.2020208@mohtex.net> References: <528C2D90.3000805@mohtex.net> <65E21F32-0F27-440C-892C-68CF9C8FA206@iki.fi> <64F6C6A5-19C4-4C28-AFFD-BA21C4CEF2C6@iki.fi> <528CBCCC.2020208@mohtex.net> Message-ID: <528CD342.3090303@choon.net> On 11/20/2013 09:44 PM, Tamsy wrote: > > Timo Sirainen wrote the following on 20.11.2013 20:08: >> On 20.11.2013, at 14.40, Timo Sirainen wrote: > >>> On 20.11.2013, at 5.33, Tamsy wrote: >>> >>>> When compiling dovecot-2.2-pigeonhole-0.4.2 at the stage >>>> "make check" Pigeonhole is throwing the following message and >>>> stops: >>>> >>>> Test case: ./tests/test-header.svtest: >>>> >>>> 1: Test 'Basic functionality' SUCCEEDED 2: Test 'Matching >>>> empty key' SUCCEEDED 3: Test 'Ignoring whitespace' FAILED: >>>> header test does not strip leading whitespace 4: Test 'Absent >>>> or empty header' SUCCEEDED 5: Test 'Invalid header name' >>>> SUCCEEDED 6: Test 'Folded header? SUCCEEDED >>> Interestingly caused by the improved caching code. Fixed by > http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 >> And http://hg.dovecot.org/dovecot-2.2/rev/4ef184875799 > http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 > >> These are very old bugs. Wonder if they?ve caused other trouble >> earlier. > > > Hi Timo, > > After applying your patches to Dovecot 2.2.8: 1. > http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 2. > http://hg.dovecot.org/dovecot-2.2/rev/4ef184875799 3. > http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 Same here but I also include http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 as well. Thanks! Kindest regards, Giam Teck Choon > > I can confirm that "make check" using latest > dovecot-2-2-pigeonhole-b7434a02fc51 from the Mercurial repository > is finishing without error now, all tests are succeeding. > > In particular "Test case: ./tests/test-header.svtest": > > 1: Test 'Basic functionality' SUCCEEDED 2: Test 'Matching empty > key' SUCCEEDED 3: Test 'Ignoring whitespace' SUCCEEDED 4: Test > 'Absent or empty header' SUCCEEDED 5: Test 'Invalid header name' > SUCCEEDED 6: Test 'Folded header' SUCCEEDED > > PASS: 6 tests succeeded. > > Thank you, Tamsy > From mselner at yahoo.com Wed Nov 20 21:01:25 2013 From: mselner at yahoo.com (Mike Selner @ Yahoo) Date: Wed, 20 Nov 2013 11:01:25 -0800 (PST) Subject: [Dovecot] Reset vacation lda-dupes database In-Reply-To: <87E2ABFC-A098-4BC8-96C0-E93FAF6969F4@iki.fi> References: <1384640473.9770.YahooMailMobile@web125805.mail.ne1.yahoo.com> <26406FEA-5168-40BC-8B26-71A22E8081C9@iki.fi> <528BCBC6.6030101@rename-it.nl> <87E2ABFC-A098-4BC8-96C0-E93FAF6969F4@iki.fi> Message-ID: <1384974085.42647.YahooMailNeo@web125801.mail.ne1.yahoo.com> On Tuesday, November 19, 2013 3:00 PM, Timo Sirainen wrote: On 19.11.2013, at 22.36, Stephan Bosch wrote: > > >> On 11/19/2013 8:53 PM, Timo Sirainen wrote: >>> On 17.11.2013, at 0.21, Mike Selner @ Yahoo wrote: >>> >>> They can add a different :handle parameter to get a different response, but .. as I understand it, a different vacation reason message should also trigger a separate vacation notice, but looks like Pigeonhole doesn?t currently do that. Stephan? >> >> It should though. It implements the behavior recommended in the RFC >> (http://tools.ietf.org/html/rfc5230#section-4.2); i.e., generate a >> handle from the provided arguments (ignoring variables!) if none is >> provided explicitly. This is performed here: >> >> http://hg.rename-it.nl/dovecot-2.2-pigeonhole/file/b7434a02fc51/src/lib-sieve/plugins/vacation/cmd-vacation.c#l471 >> >> So did you test this unsuccessfully or did you have problems finding it >> in the sources? If it doesn't work it would obviously be a bug. The >> constructed handle value can be seen by dumping the Sieve script binary >> with sieve-dump. > >Oh, I just didn?t look into the correct place in the code. I didn?t think that handle would be generated before ext_vacation_operation_execute(). So answer to Mike: Just have them change the reason string in some way. > >Thank you! ?That did the trick. If they change the vacation message it will send an auto- response even if it had previously responded to the same person. Mike From deano-dovecot at areyes.com Wed Nov 20 21:17:53 2013 From: deano-dovecot at areyes.com (Dean) Date: Wed, 20 Nov 2013 14:17:53 -0500 Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: References: <527D6559.7000804@areyes.com> <5281457C.4040903@areyes.com> Message-ID: <528D0AE1.6020607@areyes.com> On 11/18/2013 10:08 AM, Steffen Kaiser wrote: > On Mon, 11 Nov 2013, Dean wrote: > > >> If you are on a 64bit system, maybe sa-learn is compiled 32bit only, > >> then the library must be installed as 32bit version as well. > > /usr/bin/sa-learn is a perl script, calling the various > > Mail::SpamAssassin modules. No 32/64 bit there afaik. > > I have a 64bit system and use the spamassassin demon to train > ham/spam without such problem. I have the 32bit lib installed: > > locate libgcc_s > /lib/libgcc_s.so.1 > /usr/lib/gcc/x86_64-linux-gnu/4.3/libgcc_s.so > /usr/lib/gcc/x86_64-linux-gnu/4.3/libgcc_s_32.so > /usr/lib/gcc/x86_64-linux-gnu/4.3/32/libgcc_s.so > /usr/lib/gcc/x86_64-linux-gnu/4.4/libgcc_s.so > /usr/lib/gcc/x86_64-linux-gnu/4.4/libgcc_s_32.so > /usr/lib/gcc/x86_64-linux-gnu/4.4/32/libgcc_s.so > /usr/lib32/libgcc_s.so.1 > > The 32bit library got onto the system via the "Suggests" of Debian's > gcc package. I installed the 32bit version too. $ locate libgcc_s.so /lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/lib/gcc/x86_64-linux-gnu/4.7/libgcc_s.so /usr/lib32/libgcc_s.so.1 Still no luck. This is with FuzzyOcr enabled, fails on the mysql DB connect 12570-sa-learn Nov 20 13:39:27.817 [12572] info: FuzzyOcr: Using scan gocr-180: /usr/bin/gocr -l 180 -d 2 -i $input 12570-sa-learn Nov 20 13:39:27.817 [12572] info: FuzzyOcr: Using scan tesseract: /usr/bin/tesseract $input $output 12570-sa-learn Nov 20 13:39:27.817 [12572] dbg: FuzzyOcr: Connecting to: dbi:mysql:database=FuzzyOcr;mysql_socket=/var/run/mysqld/mysqld.sock 12570-sa-learn libgcc_s.so.1 must be installed for pthread_cancel to work 12570-end And this is with FuzzyOcr disabled, so it goes right to the Bayes DB and fails 14826-sa-learn Nov 20 13:57:38.246 [14828] dbg: bayes: learner_new self=Mail::SpamAssassin::Plugin::Bayes=HASH(0x476eae0), bayes_store_module=Mail::SpamAssassin::BayesStore::MySQL 14826-sa-learn Nov 20 13:57:38.265 [14828] dbg: bayes: using username: debian-spamd 14826-sa-learn Nov 20 13:57:38.265 [14828] dbg: bayes: learner_new: got store=Mail::SpamAssassin::BayesStore::MySQL=HASH(0x5039840) 14826-sa-learn Nov 20 13:57:38.266 [14828] dbg: plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x476eae0) implements 'learner_is_scan_available', priority 0 14826-sa-learn libgcc_s.so.1 must be installed for pthread_cancel to work 14826-end This is what is *supposed* to happen (using cmdline /usr/local/bin/sa-learn-pipe.sh --spam < /tmp/email-to-learn) 15412-sa-learn Nov 20 14:02:55.095 [15414] dbg: bayes: using username: debian-spamd 15412-sa-learn Nov 20 14:02:55.095 [15414] dbg: bayes: learner_new: got store=Mail::SpamAssassin::BayesStore::MySQL=HASH(0x3ef55f0) 15412-sa-learn Nov 20 14:02:55.095 [15414] dbg: plugin: Mail::SpamAssassin::Plugin::Bayes=HASH(0x3631ba0) implements 'learner_is_scan_available', priority 0 15412-sa-learn Nov 20 14:02:55.118 [15414] dbg: bayes: database connection established 15412-sa-learn Nov 20 14:02:55.118 [15414] dbg: bayes: found bayes db version 3 The markasjunk2 plugin for roundcube calls sa-learn-pipe.sh and it works fine. The difference is that it is called with a file parameter that contains the email to be learned, while Dovecot/antispam pipes the email into the script. Both methods work fine, as checked on the cmdline. /usr/local/bin/sa-learn-pipe.sh --spam /tmp/email-to-learn /usr/local/bin/sa-learn-pipe.sh --spam < /tmp/email-to-learn It's only when it's called from the context of Dovecot/antispam that we see the libgcc_s.so.1 error pop up, and the mysql connection apparently fail. I think that context is the key, but I don't what it is. Something about the environment is causing those mysql connections to fail. I believe it's permissions - the socket is 777, and the cmdline runs are done with a regular ID and work fine. The antispam functionality is a great feature for remote email clients like thunderbird. Just need to get it working :) Any ideas ? If anyone wants to test I can provide a small 32meg bootable ISO (Ubuntu mini.iso) that installs 13.04 and the various apps, all preconfigured - works fine for a bare machine or a VM/VPS. I can also provide the installer script that does all the installs/configuration. Run it on a bare 13.04 server/mini install and it does the rest. -- Dean Carpenter deano is at areyes dot com 94TT :) From AxelLuttgens at swing.be Thu Nov 21 00:29:29 2013 From: AxelLuttgens at swing.be (Axel Luttgens) Date: Wed, 20 Nov 2013 23:29:29 +0100 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: <528CD342.3090303@choon.net> References: <528C2D90.3000805@mohtex.net> <65E21F32-0F27-440C-892C-68CF9C8FA206@iki.fi> <64F6C6A5-19C4-4C28-AFFD-BA21C4CEF2C6@iki.fi> <528CBCCC.2020208@mohtex.net> <528CD342.3090303@choon.net> Message-ID: Le 20 nov. 2013 ? 16:20, Giam Teck Choon a ?crit : > [...] > > Same here but I also include > http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 as well. Hello Giam, Just for the sake of the archives consistency... I guess you meant: http://hg.dovecot.org/dovecot-2.2/rev/a91437fe94b6 so that the patches you have applied are: http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 http://hg.dovecot.org/dovecot-2.2/rev/a91437fe94b6 http://hg.dovecot.org/dovecot-2.2/rev/4ef184875799 http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 Or? Axel From AxelLuttgens at swing.be Thu Nov 21 00:42:25 2013 From: AxelLuttgens at swing.be (Axel Luttgens) Date: Wed, 20 Nov 2013 23:42:25 +0100 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: <64F6C6A5-19C4-4C28-AFFD-BA21C4CEF2C6@iki.fi> References: <528C2D90.3000805@mohtex.net> <65E21F32-0F27-440C-892C-68CF9C8FA206@iki.fi> <64F6C6A5-19C4-4C28-AFFD-BA21C4CEF2C6@iki.fi> Message-ID: Le 20 nov. 2013 ? 14:08, Timo Sirainen a ?crit : >> [...] >> Interestingly caused by the improved caching code. Fixed by http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 > > And http://hg.dovecot.org/dovecot-2.2/rev/4ef184875799 http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 > > These are very old bugs. Wonder if they?ve caused other trouble earlier. Hello Timo, Following Tamsy and Giam: above patches (probably the first one alone, but the other ones should be like chicken soup - you know, the one that doesn't hurt) indeed avoid that "make check" failure with PigeonHole here too. Once again, many thanks, Axel From deano-dovecot at areyes.com Thu Nov 21 01:05:25 2013 From: deano-dovecot at areyes.com (Dean) Date: Wed, 20 Nov 2013 18:05:25 -0500 Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: <528D0AE1.6020607@areyes.com> References: <527D6559.7000804@areyes.com> <5281457C.4040903@areyes.com> <528D0AE1.6020607@areyes.com> Message-ID: <528D4035.9050608@areyes.com> Darn. Thought I had found a good point about pthread_cancel. See the last post here : https://bugs.launchpad.net/ubuntu/+source/gcc-3.3/+bug/40285 Juergen Perlinger (juergen-perlinger) wrote on 2013-10-25: #30 I finally tracked it down, I think. The pthread code tries to load libgcc_s on pthread_exit(), and this dos not work when the effective user was changed -- many daemons switch from root to a restricted user, and that's one way to end up in this problem. If the library is loaded globally for the process before the user is changed, everything works. This is a problem of the 'pthread_exit()' implementation (delayed/on-demand load of libgcc_s) and/or the 'mmap()' implementation in the kernel. I've tried putting /lib/x86_64-linux-gnu/libgcc_s.so.1 into /etc/ld.so.preload, I've changed the exec line in /etc/init/dovecot to exec LD_PRELOAD=/lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/sbin/dovecot -F -c /etc/dovecot/dovecot.conf and the sa-learn line in /usr/local/bin/sa-learn-pipe.sh to LD_PRELOAD=/lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/bin/sa-learn -D --progress $* /tmp/sendmail-msg-$$.txt >> /tmp/sa-learn-pipe.$$.log 2>&1 So far to no avail. I'm going to try the spool2dir backend with incron. Cumbersome, but it should work ... On 11/20/2013 02:17 PM, Dean wrote: > On 11/18/2013 10:08 AM, Steffen Kaiser wrote: > >> On Mon, 11 Nov 2013, Dean wrote: >> >>>> If you are on a 64bit system, maybe sa-learn is compiled 32bit only, >>>> then the library must be installed as 32bit version as well. >>>> >>> /usr/bin/sa-learn is a perl script, calling the various >>> Mail::SpamAssassin modules. No 32/64 bit there afaik. >>> >> I have a 64bit system and use the spamassassin demon to train >> ham/spam without such problem. I have the 32bit lib installed: >> >> locate libgcc_s >> /lib/libgcc_s.so.1 >> /usr/lib/gcc/x86_64-linux-gnu/4.3/libgcc_s.so >> /usr/lib/gcc/x86_64-linux-gnu/4.3/libgcc_s_32.so >> /usr/lib/gcc/x86_64-linux-gnu/4.3/32/libgcc_s.so >> /usr/lib/gcc/x86_64-linux-gnu/4.4/libgcc_s.so >> /usr/lib/gcc/x86_64-linux-gnu/4.4/libgcc_s_32.so >> /usr/lib/gcc/x86_64-linux-gnu/4.4/32/libgcc_s.so >> /usr/lib32/libgcc_s.so.1 >> >> The 32bit library got onto the system via the "Suggests" of Debian's >> gcc package. >> > > I installed the 32bit version too. > > $ locate libgcc_s.so > /lib/x86_64-linux-gnu/libgcc_s.so.1 > /usr/lib/gcc/x86_64-linux-gnu/4.7/libgcc_s.so > /usr/lib32/libgcc_s.so.1 > > Still no luck. This is with FuzzyOcr enabled, fails on the mysql DB connect > > 12570-sa-learn Nov 20 13:39:27.817 [12572] info: FuzzyOcr: Using scan > gocr-180: /usr/bin/gocr -l 180 -d 2 -i $input > 12570-sa-learn Nov 20 13:39:27.817 [12572] info: FuzzyOcr: Using scan > tesseract: /usr/bin/tesseract $input $output > 12570-sa-learn Nov 20 13:39:27.817 [12572] dbg: FuzzyOcr: Connecting to: > dbi:mysql:database=FuzzyOcr;mysql_socket=/var/run/mysqld/mysqld.sock > 12570-sa-learn libgcc_s.so.1 must be installed for pthread_cancel to work > 12570-end > > And this is with FuzzyOcr disabled, so it goes right to the Bayes DB and > fails > > 14826-sa-learn Nov 20 13:57:38.246 [14828] dbg: bayes: learner_new > self=Mail::SpamAssassin::Plugin::Bayes=HASH(0x476eae0), > bayes_store_module=Mail::SpamAssassin::BayesStore::MySQL > 14826-sa-learn Nov 20 13:57:38.265 [14828] dbg: bayes: using username: > debian-spamd > 14826-sa-learn Nov 20 13:57:38.265 [14828] dbg: bayes: learner_new: got > store=Mail::SpamAssassin::BayesStore::MySQL=HASH(0x5039840) > 14826-sa-learn Nov 20 13:57:38.266 [14828] dbg: plugin: > Mail::SpamAssassin::Plugin::Bayes=HASH(0x476eae0) implements > 'learner_is_scan_available', priority 0 > 14826-sa-learn libgcc_s.so.1 must be installed for pthread_cancel to work > 14826-end > > This is what is *supposed* to happen (using cmdline > /usr/local/bin/sa-learn-pipe.sh --spam < /tmp/email-to-learn) > > 15412-sa-learn Nov 20 14:02:55.095 [15414] dbg: bayes: using username: > debian-spamd > 15412-sa-learn Nov 20 14:02:55.095 [15414] dbg: bayes: learner_new: got > store=Mail::SpamAssassin::BayesStore::MySQL=HASH(0x3ef55f0) > 15412-sa-learn Nov 20 14:02:55.095 [15414] dbg: plugin: > Mail::SpamAssassin::Plugin::Bayes=HASH(0x3631ba0) implements > 'learner_is_scan_available', priority 0 > 15412-sa-learn Nov 20 14:02:55.118 [15414] dbg: bayes: database > connection established > 15412-sa-learn Nov 20 14:02:55.118 [15414] dbg: bayes: found bayes db > version 3 > > The markasjunk2 plugin for roundcube calls sa-learn-pipe.sh and it works > fine. The difference is that it is called with a file parameter that > contains the email to be learned, while Dovecot/antispam pipes the email > into the script. Both methods work fine, as checked on the cmdline. > > /usr/local/bin/sa-learn-pipe.sh --spam /tmp/email-to-learn > /usr/local/bin/sa-learn-pipe.sh --spam < /tmp/email-to-learn > > It's only when it's called from the context of Dovecot/antispam that we > see the libgcc_s.so.1 error pop up, and the mysql connection apparently > fail. I think that context is the key, but I don't what it is. > Something about the environment is causing those mysql connections to > fail. I believe it's permissions - the socket is 777, and the cmdline > runs are done with a regular ID and work fine. > > The antispam functionality is a great feature for remote email clients > like thunderbird. Just need to get it working :) Any ideas ? > > If anyone wants to test I can provide a small 32meg bootable ISO (Ubuntu > mini.iso) that installs 13.04 and the various apps, all preconfigured - > works fine for a bare machine or a VM/VPS. I can also provide the > installer script that does all the installs/configuration. Run it on a > bare 13.04 server/mini install and it does the rest. > > -- Dean Carpenter deano is at areyes dot com 94TT :) From dovecot.org at choon.net Thu Nov 21 02:06:19 2013 From: dovecot.org at choon.net (Giam Teck Choon) Date: Thu, 21 Nov 2013 08:06:19 +0800 Subject: [Dovecot] Pigeonhole make check fails with Dovecot 2.2.8 In-Reply-To: References: <528C2D90.3000805@mohtex.net> <65E21F32-0F27-440C-892C-68CF9C8FA206@iki.fi> <64F6C6A5-19C4-4C28-AFFD-BA21C4CEF2C6@iki.fi> <528CBCCC.2020208@mohtex.net> <528CD342.3090303@choon.net> Message-ID: <528D4E7B.1020602@choon.net> On 11/21/2013 06:29 AM, Axel Luttgens wrote: > Le 20 nov. 2013 ? 16:20, Giam Teck Choon a ?crit : > >> [...] >> >> Same here but I also include >> http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 as well. > > Hello Giam, > > Just for the sake of the archives consistency... I guess you > meant: > > http://hg.dovecot.org/dovecot-2.2/rev/a91437fe94b6 > > so that the patches you have applied are: > > http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 > http://hg.dovecot.org/dovecot-2.2/rev/a91437fe94b6 > http://hg.dovecot.org/dovecot-2.2/rev/4ef184875799 > http://hg.dovecot.org/dovecot-2.2/rev/47923cfd4b56 Yes, the latest 4 commits... sorry if I am not clear ;) Thanks. Kindest regards, Giam Teck Choon > > Or? > > Axel > From doctor at doctor.nl2k.ab.ca Thu Nov 21 02:17:43 2013 From: doctor at doctor.nl2k.ab.ca (The Doctor) Date: Wed, 20 Nov 2013 17:17:43 -0700 Subject: [Dovecot] v2.2.8 released In-Reply-To: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> References: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> Message-ID: <20131121001743.GA16746@doctor.nl2k.ab.ca> On Tue, Nov 19, 2013 at 11:23:16PM +0200, Timo Sirainen wrote: > http://dovecot.org/releases/2.2/dovecot-2.2.8.tar.gz > http://dovecot.org/releases/2.2/dovecot-2.2.8.tar.gz.sig > > + Mail cache lookups work for the mail being saved. This improves > performance by avoiding the need to parse the mail multiple times > when using some plugins (e.g. mail_log). > + Mail cache works for recently cached data also with in-memory > indexes. > + imapc: Many performance improvements, especially when working with > dsync. Also added imapc_feature=fetch-headers which allows using > FETCH BODY.PEEK[HEADER.FIELDS (..)] to avoid reading the entire > header. > + mail_location = ..:FULLDIRNAME=dbox-Mails is the same as > :DIRNAME=dbox-Mails, but it will also be used for > :INDEX and :CONTROL directories. (It should have worked this way > from the beginning, but can't be changed anymore without breaking > existing installations). > - Fixed infinite loop in message parsing if message ends with > "--boundary" and CR (without LF). Messages saved via SMTP/LMTP can't > trigger this, because messages must end with an "LF.". A user could > trigger this for him/herself though. > - lmtp: Client was sometimes disconnected before all the output was > sent to it. > - imap_zlib plugin caused crashes during client disconnection in > v2.2.7 > - replicator: Database wasn't being exported to disk every 15 minutes > as it should have. Instead it was being imported, causing "doveadm > replicator remove" commands to not work very well. > An oddity occured on my od server herer. Error Code 139 occurred on installing the man1 section. -- Member - Liberal International This is doctor at nl2k.ab.ca Ici doctor at nl2k.ab.ca God,Queen and country!Never Satan President Republic!Beware AntiChrist rising! http://www.fullyfollow.me/rootnl2k Look at Psalms 14 and 53 on Atheism 23 Nov 2013 a Big day indeed From user+dovecot at localhost.localdomain.org Thu Nov 21 03:12:49 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Thu, 21 Nov 2013 01:12:49 +0000 Subject: [Dovecot] v2.2.8 released In-Reply-To: <20131121001743.GA16746@doctor.nl2k.ab.ca> References: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> <20131121001743.GA16746@doctor.nl2k.ab.ca> Message-ID: <528D5E11.3000901@localhost.localdomain.org> On 11/21/2013 12:17 AM The Doctor wrote: > An oddity occured on my od server herer. > > Error Code 139 occurred on installing the man1 section. Please would you provide more details (error message)? Which OS, what version? Regards, Pascal -- The trapper recommends today: c01dcofe.1332502 at localdomain.org From jtam.home at gmail.com Thu Nov 21 03:21:19 2013 From: jtam.home at gmail.com (Joseph Tam) Date: Wed, 20 Nov 2013 17:21:19 -0800 (PST) Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: References: Message-ID: > LD_PRELOAD=/lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/bin/sa-learn -D > --progress $* /tmp/sendmail-msg-$$.txt >> /tmp/sa-learn-pipe.$$.log 2>&1 > > So far to no avail. I'm going to try the spool2dir backend with > incron. Cumbersome, but it should work ... Maybe try rebuilding whatever is using libgcc_s.so with GCC compiler option -static-libgcc? Joseph Tam From doctor at doctor.nl2k.ab.ca Thu Nov 21 03:28:42 2013 From: doctor at doctor.nl2k.ab.ca (The Doctor) Date: Wed, 20 Nov 2013 18:28:42 -0700 Subject: [Dovecot] v2.2.8 released In-Reply-To: <528D5E11.3000901@localhost.localdomain.org> References: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> <20131121001743.GA16746@doctor.nl2k.ab.ca> <528D5E11.3000901@localhost.localdomain.org> Message-ID: <20131121012842.GA29387@doctor.nl2k.ab.ca> On Thu, Nov 21, 2013 at 01:12:49AM +0000, Pascal Volk wrote: > On 11/21/2013 12:17 AM The Doctor wrote: > > An oddity occured on my od server herer. > > > > Error Code 139 occurred on installing the man1 section. > > Please would you provide more details (error message)? Which OS, what > version? > BSD/OS 4.3.1 Error 139 > > Regards, > Pascal > -- > The trapper recommends today: c01dcofe.1332502 at localdomain.org -- Member - Liberal International This is doctor at nl2k.ab.ca Ici doctor at nl2k.ab.ca God,Queen and country!Never Satan President Republic!Beware AntiChrist rising! http://www.fullyfollow.me/rootnl2k Look at Psalms 14 and 53 on Atheism 23 Nov 2013 a Big day indeed From skdovecot at smail.inf.fh-brs.de Thu Nov 21 09:37:00 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 21 Nov 2013 08:37:00 +0100 (CET) Subject: [Dovecot] Enable Rawlog from userdb in Dovecot v2.2 In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 19 Nov 2013, Timo Sirainen wrote: >> how do I enable Rawlog for one person only? > > Not with the current code. OK, thx - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUo24HF3r2wJMiz2NAQKarQf+O8GmEmlwnVbbePQ2n1+hmLKZFrq2ztow 0OfUZDnVxpDWEwbt/lCDv4AoKk8KoohOfr4lWwUb8MCiL+om/9Zxk5O4J+TQlh4c qMxOoo3svBEReWo7mh7sSPl1lEm2Nu220xOvlZ3dcwePbPO31/8YQFemcYQTSTyi Q/uGv0O0CoYapI7MKjf6/reT4e0atK4wzmWarOmrBNk0YouUNROK1RSaoLjMY/wl zRNdX2wnaw4cY20j7VaUWa8HXpJR740UT16XBYxQeTpV0UbpbWzY30RxMe26tiM0 lRSCZ0pUmbDNBUx91s+SDQceZ3rhLaVJ5jcXvJ1P64+XtK6jcFCZZg== =y6d4 -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Thu Nov 21 09:45:06 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 21 Nov 2013 08:45:06 +0100 (CET) Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: <528D4035.9050608@areyes.com> References: <527D6559.7000804@areyes.com> <5281457C.4040903@areyes.com> <528D0AE1.6020607@areyes.com> <528D4035.9050608@areyes.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 20 Nov 2013, Dean wrote: > Date: Wed, 20 Nov 2013 18:05:25 -0500 > From: Dean > Cc: dovecot at dovecot.org > Subject: Re: [Dovecot] Problems with dovecot 2.1.7, > spamassassin 3.3.2 and antispam plugin > > Darn. Thought I had found a good point about pthread_cancel. See the > last post here : > > https://bugs.launchpad.net/ubuntu/+source/gcc-3.3/+bug/40285 > > Juergen Perlinger (juergen-perlinger) > wrote on 2013-10-25: > #30 > > > > I finally tracked it down, I think. The pthread code tries to load > libgcc_s on pthread_exit(), and this dos not work when the effective > user was changed -- many daemons switch from root to a restricted > user, and that's one way to end up in this problem. If the library > is loaded globally for the process before the user is changed, > everything works. > > This is a problem of the 'pthread_exit()' implementation > (delayed/on-demand load of libgcc_s) and/or the 'mmap()' > implementation in the kernel. > > > I've tried putting /lib/x86_64-linux-gnu/libgcc_s.so.1 into > /etc/ld.so.preload, I've changed the exec line in /etc/init/dovecot to > > exec LD_PRELOAD=/lib/x86_64-linux-gnu/libgcc_s.so.1 > /usr/sbin/dovecot -F -c /etc/dovecot/dovecot.conf > > and the sa-learn line in /usr/local/bin/sa-learn-pipe.sh to > > LD_PRELOAD=/lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/bin/sa-learn -D > --progress $* /tmp/sendmail-msg-$$.txt >> /tmp/sa-learn-pipe.$$.log 2>&1 Does sa-learn change UID? Maybe you can make sa-learn set-uid or pass a specific -u /-x . - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUo26A13r2wJMiz2NAQJ8FwgAl/i1dxQL0XqKwP+Xzwea33LfK39p4Rqw BpNw2iedsK4EhY3dkpOGb1tpcdl9PVAZK2z8WxdTqgXJWugOfmVJRMymp+1nKVYQ lMCQp9LIMAasAl9BDa9OCN6L99qNclYSEH8SNPj1PDvxpyAeshroz2GQY1R+JuEl +I7EsZsVEkrm+Zq4ET6Jjbbv6n/nWCVRGvvUi83vb4oGUcdvpyQoJ6QmhEZDV3Gc kIkB1a4PhnhYqweuyZ2s6Xo+kYjjSIOvPcNkbDG3xwX1g2re6MlNTAHNSJbk7u21 8z10IwSlDRD6H13vWvtwfQL4v1tPafJp+RF0kRb9qO3C8DwE+7d2EQ== =+ICP -----END PGP SIGNATURE----- From rs at sys4.de Thu Nov 21 09:56:39 2013 From: rs at sys4.de (Robert Schetterer) Date: Thu, 21 Nov 2013 08:56:39 +0100 Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: References: <527D6559.7000804@areyes.com> <5281457C.4040903@areyes.com> <528D0AE1.6020607@areyes.com> <528D4035.9050608@areyes.com> Message-ID: <528DBCB7.5000207@sys4.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 21.11.2013 08:45, schrieb Steffen Kaiser: > On Wed, 20 Nov 2013, Dean wrote: > >> Date: Wed, 20 Nov 2013 18:05:25 -0500 From: Dean >> Cc: dovecot at dovecot.org Subject: Re: >> [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and >> antispam plugin > >> Darn. Thought I had found a good point about pthread_cancel. >> See the last post here : > >> https://bugs.launchpad.net/ubuntu/+source/gcc-3.3/+bug/40285 > >> Juergen Perlinger (juergen-perlinger) >> wrote on >> 2013-10-25: #30 > >> > >> > > >> I finally tracked it down, I think. The pthread code tries to >> load libgcc_s on pthread_exit(), and this dos not work when the >> effective user was changed -- many daemons switch from root to a >> restricted user, and that's one way to end up in this problem. If >> the library is loaded globally for the process before the user is >> changed, everything works. > >> This is a problem of the 'pthread_exit()' implementation >> (delayed/on-demand load of libgcc_s) and/or the 'mmap()' >> implementation in the kernel. > > >> I've tried putting /lib/x86_64-linux-gnu/libgcc_s.so.1 into >> /etc/ld.so.preload, I've changed the exec line in >> /etc/init/dovecot to > >> exec LD_PRELOAD=/lib/x86_64-linux-gnu/libgcc_s.so.1 >> /usr/sbin/dovecot -F -c /etc/dovecot/dovecot.conf > >> and the sa-learn line in /usr/local/bin/sa-learn-pipe.sh to > >> LD_PRELOAD=/lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/bin/sa-learn >> -D --progress $* /tmp/sendmail-msg-$$.txt >> >> /tmp/sa-learn-pipe.$$.log 2>&1 > > Does sa-learn change UID? Maybe you can make sa-learn set-uid or > pass a specific -u /-x . > > -- Steffen Kaiser may off topic , but you may manage spam learn ham/spam for users another way too, they only need simply forward mail, i use it like that way ,since years, it also works with sieve rules. For sure you have to manage only authed users from your system are able to send to learn aliases. http://gtmp.org/doku.php/publications:sa-postfix-en for other stuff i use spamass-milter or amavis milter and clamav-milter with sanesecurity antispam signatures, i never had urgent need for the dovecot antispam plugin Best Regards MfG Robert Schetterer - -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSjbywAAoJEP8jBObu0LlEMwwH/1E1Mra8510edneAohvkc6Yj tIlGUaKIIpmddml2H5/1yql7nIMoGH389mDhJKYaMaG8qLb9tvCgdaF7s+auaJd+ fyK44BHr+8Je3CBLeeWfIfRk7QbnmbW5HkdTBoghoa6GBShfvxxYEEdDWMhN3xyq ThDbpfJSwsl0TV1x0Egz1FJ43mNzq6EPmqJdbNa+BKXb5LJUBLouFI+YQnDt48oQ q8wTOo/rd0yOYSUu+VulEAPx5rtlMKJXQxgMxRbiGqWJq+ybbvL13ah4y13bMsYi nflgllMxoFox1aFenzXMskMTeUx83FXKVJUZQo/IaO6tr+4/JGRK785w0Ky9iyM= =rYae -----END PGP SIGNATURE----- From Jost.Krieger+dovecot at rub.de Thu Nov 21 11:01:27 2013 From: Jost.Krieger+dovecot at rub.de (Jost Krieger) Date: 21 Nov 2013 10:01:27 +0100 Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: <528DBCB7.5000207@sys4.de> References: <527D6559.7000804@areyes.com> <5281457C.4040903@areyes.com> <528D0AE1.6020607@areyes.com> <528D4035.9050608@areyes.com> <528DBCB7.5000207@sys4.de> Message-ID: <20131121090127.GI47713@ruhr-uni-bochum.de> On Thu Nov 21 08:56:39 2013, Robert Schetterer wrote: > may off topic , but you may manage spam learn ham/spam for users > another way too, they only need simply forward mail, i use it like > that way ,since years, it also works with sieve rules. The problem: Users don't (at least ours). If they need a mail, they pull it out of the spam folder, and they use the "Junk" button in their client, but they can't be bothered to do more. And the antispam plugin is the only halfway effective way to automate this for all clients. Hint: We make the plugin send a mail and process it later. Yours Jost Krieger -- | Jost.Krieger+sig at ruhr-uni-bochum.de Please help stamp out spam! | | Postmaster, JAPH, resident answer machine at RUB Comp. Center | | Sincere words are not sweet, sweet words are not sincere. | | Lao Tse, Tao Te King 81 | From karol.jurak at gmail.com Thu Nov 21 11:30:16 2013 From: karol.jurak at gmail.com (Karol Jurak) Date: Thu, 21 Nov 2013 10:30:16 +0100 Subject: [Dovecot] dsync-2.2.7 incorrectly synchronizes subscription status of renamed mailbox In-Reply-To: <27C7A8F1-DAC2-4B2C-AC1D-DF932B57FB44@iki.fi> References: <1665811.zomfKVLqLF@karol-esprimo-p5925> <27C7A8F1-DAC2-4B2C-AC1D-DF932B57FB44@iki.fi> Message-ID: <2397088.Off40Y9WLK@karol-esprimo-p5925> On Tuesday 19 of November 2013 22:32:15 Timo Sirainen wrote: > On 19.11.2013, at 16.06, Karol Jurak wrote: > > It seems that dsync-2.2.7 doesn't correctly synchronize subscription > > status of a renamed mailbox. > > I don?t think any of the v2.2.x dsyncs have done it correctly the first > time? Looks like the fix will be a bit complex. I?ll make v2.2.8 release > first.. You may be right. I remember testing 2.2.2 a few months ago and the behavior was the same. -- Karol Jurak From marcin at mejor.pl Thu Nov 21 11:35:15 2013 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Thu, 21 Nov 2013 10:35:15 +0100 Subject: [Dovecot] dovecot-2.2.7: Fatal: master: service(imap): child 49545 killed with signal 11 (core dumped) In-Reply-To: <52822ECD.2070808@mejor.pl> References: <52822ECD.2070808@mejor.pl> Message-ID: <528DD3D3.7010207@mejor.pl> W dniu 12.11.2013 14:36, Marcin Miros?aw pisze: > Hi! > After upgrade I'm noticing many coredummps, below is backtrace: > $ echo "bt"|gdb .... > > #0 o_stream_zlib_flush (stream=0xc8be5b27640) at ostream-zlib.c:222 > 222 if (o_stream_zlib_send_flush(zstream) < 0) > (gdb) #0 o_stream_zlib_flush (stream=0xc8be5b27640) at ostream-zlib.c:222 > #1 0x00007a695e8f09cd in o_stream_flush > (stream=stream at entry=0xc8be5b276d0) at ostream.c:147 > #2 0x00007a695e83c06f in o_stream_zlib_close (stream=0xc8be5b27640, > close_parent=true) at ostream-zlib.c:35 > #3 0x00007a695e8f0375 in o_stream_close_full > (stream=stream at entry=0xc8be5b276d0, > close_parents=close_parents at entry=true) at ostream.c:49 > #4 0x00007a695e8f06e2 in o_stream_close > (stream=stream at entry=0xc8be5b276d0) at ostream.c:85 > #5 0x00007a695e8f1738 in o_stream_copy_error_from_parent > (_stream=_stream at entry=0xc8be5b27640) at ostream.c:434 [...] Hi! In dovecot-2.2.8 bug is fixed, I can't reproduce it. Thanks! From marcin at mejor.pl Thu Nov 21 11:41:33 2013 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Thu, 21 Nov 2013 10:41:33 +0100 Subject: [Dovecot] v2.2.8 released / service(imap): child 35198 killed with signal 6 In-Reply-To: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> References: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> Message-ID: <528DD54D.1090908@mejor.pl> W dniu 19.11.2013 22:23, Timo Sirainen pisze: > http://dovecot.org/releases/2.2/dovecot-2.2.8.tar.gz > http://dovecot.org/releases/2.2/dovecot-2.2.8.tar.gz.sig Hi again! I've found one coredump today. Below is backtrace: > echo "bt"|gdb -q /usr/libexec/dovecot/imap 'core-1385023584-8-6-!usr!libexec!dovecot!imap-35198' [2/12946] > Reading symbols from /usr/libexec/dovecot/imap...Reading symbols from /usr/lib64/debug/usr/libexec/dovecot/imap.debug...done. > done. > [New LWP 35198] > > warning: Could not load shared library symbols for linux-vdso.so.1. > Do you need "set solib-search-path" or "set sysroot"? > [Thread debugging using libthread_db enabled] > Using host libthread_db library "/lib64/libthread_db.so.1". > Core was generated by `dovecot/imap'. > Program terminated with signal 6, Aborted. > #0 0x00007228b8bccee5 in __GI_raise (sig=sig at entry=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64 > 64 return INLINE_SYSCALL (tgkill, 3, pid, selftid, sig); > (gdb) #0 0x00007228b8bccee5 in __GI_raise (sig=sig at entry=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64 > #1 0x00007228b8bce368 in __GI_abort () at abort.c:91 > #2 0x00007228b8ff8a47 in default_fatal_finish (type=, status=status at entry=0) at failures.c:192 > #3 0x00007228b8ff8a8e in i_internal_fatal_handler (ctx=0x7bbaa2e4be50, format=, args=) at failures.c:653 > #4 0x00007228b8ff9afb in i_panic (format=format at entry=0x7228b9145780 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:264 > #5 0x00007228b90b07ea in imapc_mail_fetch_callback (reply=0x7bbaa2e4bfa0, context=0x3516509d250) at imapc-mail-fetch.c:44 > #6 0x00007228b90b9ac0 in imapc_command_reply_free (reply=0x7bbaa2e4bfa0, cmd=0x351650a1ba0) at imapc-connection.c:975 > #7 imapc_command_send_more (conn=conn at entry=0x35165095650) at imapc-connection.c:1647 > #8 0x00007228b90ba1a8 in imapc_connection_cmd_send (cmd=cmd at entry=0x351650a1ba0) at imapc-connection.c:1733 > #9 0x00007228b90bc528 in imapc_command_send (cmd=cmd at entry=0x351650a1ba0, cmd_str=) at imapc-connection.c:1793 > #10 0x00007228b90b0943 in imapc_mail_fetch_flush (mbox=mbox at entry=0x35165125d00) at imapc-mail-fetch.c:388 > #11 0x00007228b90b6c7d in imapc_mailbox_run (mbox=mbox at entry=0x35165125d00) at imapc-storage.c:118 > #12 0x00007228b90b13f8 in imapc_mail_fetch (_mail=_mail at entry=0x351651342e0, fields=, headers=headers at entry=0x0) at imapc-mail-fetch.c:371 > #13 0x00007228b90af605 in imapc_mail_get_stream (_mail=0x351651342e0, get_body=false, hdr_size=0x0, body_size=0x0, stream_r=0x7bbaa2e4c160) at imapc-mail.c:249 > #14 0x00007228b90c0a5f in mail_get_hdr_stream (mail=mail at entry=0x351651342e0, hdr_size=hdr_size at entry=0x0, stream_r=stream_r at entry=0x7bbaa2e4c160) at mail.c:226 > #15 0x00007228b90f976d in index_mail_get_header_stream (_mail=0x351651342e0, headers=0x35165139090, stream_r=0x7bbaa2e4c1f0) at index-mail-headers.c:837 > #16 0x00007228b913ae12 in imap_msgpart_open_normal (result_r=0x7bbaa2e4c2c0, part_size_r=0x7bbaa2e4c210, part=0x0, msgpart=0x3516512e5f0, mail=0x351651342e0) at imap-msgpart.c:574 > #17 imap_msgpart_open (mail=mail at entry=0x351651342e0, msgpart=0x3516512e5f0, result_r=result_r at entry=0x7bbaa2e4c2c0) at imap-msgpart.c:655 > #18 0x0000035161557875 in fetch_body_msgpart (ctx=0x351650a5388, mail=0x351651342e0, body=0x351651302a0) at imap-fetch-body.c:166 > #19 0x0000035161555380 in imap_fetch_more_int (ctx=ctx at entry=0x351650a5388, cancel=false) at imap-fetch.c:504 > #20 0x0000035161556911 in imap_fetch_more (ctx=0x351650a5388, cmd=cmd at entry=0x351650a5070) at imap-fetch.c:556 > #21 0x0000035161547223 in cmd_fetch (cmd=0x351650a5070) at cmd-fetch.c:279 > #22 0x000003516155346c in command_exec (cmd=cmd at entry=0x351650a5070) at imap-commands.c:158 > #23 0x0000035161551e20 in client_command_input (cmd=0x351650a5070) at imap-client.c:780 > #24 0x0000035161551f22 in client_command_input (cmd=0x351650a5070) at imap-client.c:841 > #25 0x00000351615522e5 in client_handle_next_command (remove_io_r=, client=0x351650a4860) at imap-client.c:879 > #26 client_handle_input (client=client at entry=0x351650a4860) at imap-client.c:891 > #27 0x00000351615527ae in client_input (client=0x351650a4860) at imap-client.c:933 > #28 0x00007228b900ee37 in io_loop_call_io (io=0x35165097ce0) at ioloop.c:388 > #29 0x00007228b90102ef in io_loop_handler_run (ioloop=ioloop at entry=0x35165051e10) at ioloop-epoll.c:220 > #30 0x00007228b900e738 in io_loop_run (ioloop=0x35165051e10) at ioloop.c:412 > #31 0x00007228b8fa4957 in master_service_run (service=0x35165051ca0, callback=callback at entry=0x3516155ef50 ) at master-service.c:566 > #32 0x000003516155f604 in main (argc=1, argv=0x35165051a60) at main.c:400 > (gdb) quit # grep 35198 /var/log/dovecot.log 2013-11-21T09:45:25.069369+01:00 meteor dovecot: imap-login: Login: user=, method=CRAM-MD5, rip=83.144.yyy.xxx, lip=88.198.102.195, mpid=35198, TLS, session= 2013-11-21T09:46:24.401517+01:00 meteor dovecot: imap(marcin at mejor.pl) : Fatal: master: service(imap): child 35198 killed with signal 6 (core dumped) Regards! Marcin From mailinglists at xgm.de Thu Nov 21 13:11:18 2013 From: mailinglists at xgm.de (Florian Lindner) Date: Thu, 21 Nov 2013 12:11:18 +0100 Subject: [Dovecot] Gettings mails recently moved to a folder Message-ID: Hello, some spam training tools learn the same message over and over again. Since I want to use a daily cronjob to train messages and I do not want to have the same messages trained multiple times, I need to way to get new messages in a folder. Is there a (consolish) way to get a list of messages that were recently moved to a folder? dovecot does not modify mtime, according to RFC 3501. Thanks, Florian From user+dovecot at localhost.localdomain.org Thu Nov 21 19:28:18 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Thu, 21 Nov 2013 17:28:18 +0000 Subject: [Dovecot] Gettings mails recently moved to a folder In-Reply-To: References: Message-ID: <528E42B2.9090609@localhost.localdomain.org> On 11/21/2013 11:11 AM Florian Lindner wrote: > Hello, > > some spam training tools learn the same message over and over again. > Since I want to use a daily cronjob to train messages and I do not want > to have the same messages trained multiple times, I need to way to get > new messages in a folder. > > Is there a (consolish) way to get a list of messages that were recently > moved to a folder? dovecot does not modify mtime, according to RFC 3501. Does `doveadm search -u spam at xgm.de mailbox INBOX SAVEDSINCE 2013-11-21` list the wanted messages? For more details see doveadm-search(1) and doveadm-search-query(7). Regards, Pascal -- The trapper recommends today: cafefeed.1332518 at localdomain.org From user+dovecot at localhost.localdomain.org Thu Nov 21 20:00:12 2013 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Thu, 21 Nov 2013 18:00:12 +0000 Subject: [Dovecot] v2.2.8 released In-Reply-To: <20131121012842.GA29387@doctor.nl2k.ab.ca> References: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> <20131121001743.GA16746@doctor.nl2k.ab.ca> <528D5E11.3000901@localhost.localdomain.org> <20131121012842.GA29387@doctor.nl2k.ab.ca> Message-ID: <528E4A2C.8010809@localhost.localdomain.org> On 11/21/2013 01:28 AM The Doctor wrote: > On Thu, Nov 21, 2013 at 01:12:49AM +0000, Pascal Volk wrote: >> On 11/21/2013 12:17 AM The Doctor wrote: >>> ? >>> Error Code 139 occurred on installing the man1 section. >> >> Please would you provide more details (error message)? Which OS, what >> version? >> > > BSD/OS 4.3.1 > > Error 139 If your server has an Intel CPU, I'd say that's a segmentation fault. The install* targets in dovecot-2.2.x/doc/man/Makefile are using mkdir install. So I guess your mkdir or install binary is making some trouble. Regards, Pascal -- The trapper recommends today: cafefeed.1332518 at localdomain.org From doctor at doctor.nl2k.ab.ca Thu Nov 21 22:31:14 2013 From: doctor at doctor.nl2k.ab.ca (The Doctor) Date: Thu, 21 Nov 2013 13:31:14 -0700 Subject: [Dovecot] v2.2.8 released In-Reply-To: <528E4A2C.8010809@localhost.localdomain.org> References: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> <20131121001743.GA16746@doctor.nl2k.ab.ca> <528D5E11.3000901@localhost.localdomain.org> <20131121012842.GA29387@doctor.nl2k.ab.ca> <528E4A2C.8010809@localhost.localdomain.org> Message-ID: <20131121203114.GA23372@doctor.nl2k.ab.ca> On Thu, Nov 21, 2013 at 06:00:12PM +0000, Pascal Volk wrote: > On 11/21/2013 01:28 AM The Doctor wrote: > > On Thu, Nov 21, 2013 at 01:12:49AM +0000, Pascal Volk wrote: > >> On 11/21/2013 12:17 AM The Doctor wrote: > >>> ??? > >>> Error Code 139 occurred on installing the man1 section. > >> > >> Please would you provide more details (error message)? Which OS, what > >> version? > >> > > > > BSD/OS 4.3.1 > > > > Error 139 > > If your server has an Intel CPU, I'd say that's a segmentation fault. > The install* targets in dovecot-2.2.x/doc/man/Makefile are using mkdir > install. So I guess your mkdir or install binary is making some trouble. > Consider the directory does exist I concur. man mkdir gives MKDIR(1) BSD Reference Manual MKDIR(1) NAME mkdir - make directories SYNOPSIS mkdir [-p] [-m mode] directory_name ... DESCRIPTION Mkdir creates the directories named as operands, in the order specified, using mode a=rwx (0777) as modified by the current file mode creation mask (umask(2)). The options are as follows: -m Set the mode bits of the final created directory to the specified mode. The file mode creation mask applies to the mode. The mode argument can be in any of the formats specified to the chmod(1) command. If a symbolic mode is specified, the operation charac- ters ``+'' and ``-'' are interpreted relative to an initial mode of ``a=rwx''. -p Create intermediate directories as required. If this option is not specified, the full path prefix of each operand must already exist. Intermediate directories are created with permission bits of a=rwx (0777) as modified by the current file mode creation mask, plus write and search permission for the owner. The user must have write permission in the parent directory. Mkdir exits 0 if successful, and >0 if an error occurred. SEE ALSO rmdir(1), umask(1) STANDARDS The mkdir utility is expected to be IEEE Std1003.2 (``POSIX'') compati- ble. BUGS You can't set the sticky, setuid or setgid bits on a directory using mkdir. This behavior may change in future releases. BSDI BSD/OS December 3, 1996 1 > > Regards, > Pascal > -- > The trapper recommends today: cafefeed.1332518 at localdomain.org -- Member - Liberal International This is doctor at nl2k.ab.ca Ici doctor at nl2k.ab.ca God,Queen and country!Never Satan President Republic!Beware AntiChrist rising! http://www.fullyfollow.me/rootnl2k Look at Psalms 14 and 53 on Atheism 23 Nov 2013 a Big day indeed From daniele at grinta.net Thu Nov 21 22:40:38 2013 From: daniele at grinta.net (Daniele Nicolodi) Date: Thu, 21 Nov 2013 21:40:38 +0100 Subject: [Dovecot] v2.2.8 released In-Reply-To: <20131121203114.GA23372@doctor.nl2k.ab.ca> References: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> <20131121001743.GA16746@doctor.nl2k.ab.ca> <528D5E11.3000901@localhost.localdomain.org> <20131121012842.GA29387@doctor.nl2k.ab.ca> <528E4A2C.8010809@localhost.localdomain.org> <20131121203114.GA23372@doctor.nl2k.ab.ca> Message-ID: <528E6FC6.5030604@grinta.net> On 21/11/2013 21:31, The Doctor wrote: > On Thu, Nov 21, 2013 at 06:00:12PM +0000, Pascal Volk wrote: >> On 11/21/2013 01:28 AM The Doctor wrote: >>> On Thu, Nov 21, 2013 at 01:12:49AM +0000, Pascal Volk wrote: >>>> On 11/21/2013 12:17 AM The Doctor wrote: >>>>> ??? >>>>> Error Code 139 occurred on installing the man1 section. >>>> >>>> Please would you provide more details (error message)? Which OS, what >>>> version? >>>> >>> >>> BSD/OS 4.3.1 >>> >>> Error 139 >> >> If your server has an Intel CPU, I'd say that's a segmentation fault. >> The install* targets in dovecot-2.2.x/doc/man/Makefile are using mkdir >> install. So I guess your mkdir or install binary is making some trouble. >> > > Consider the directory does exist I concur. mkdir should not segfault anyway, at most it should exit with an error code. I suspect you have some deeper problems with your system. Cheers, Daniele From marcin at mejor.pl Fri Nov 22 00:21:14 2013 From: marcin at mejor.pl (=?ISO-8859-2?Q?Marcin_Miros=B3aw?=) Date: Thu, 21 Nov 2013 23:21:14 +0100 Subject: [Dovecot] v2.2.8 released / service(imap):child 6167 killed with signal 11 In-Reply-To: <528DD54D.1090908@mejor.pl> References: <66D0C060-387D-4460-B00C-3E939694B2A6@iki.fi> <528DD54D.1090908@mejor.pl> Message-ID: <528E875A.90106@mejor.pl> Another one coredump: > # gdb -q /usr/libexec/dovecot/imap 'core-1385046907-8-11-!usr!libexec!dovecot!imap-22603' > Reading symbols from /usr/libexec/dovecot/imap...Reading symbols from /usr/lib64/debug/usr/libexec/dovecot/imap.debug...done. > done. > [New LWP 22603] > > warning: Could not load shared library symbols for linux-vdso.so.1. > Do you need "set solib-search-path" or "set sysroot"? > b[Thread debugging using libthread_db enabled] > Using host libthread_db library "/lib64/libthread_db.so.1". > tCore was generated by `dovecot/imap'. > Program terminated with signal 11, Segmentation fault. > #0 array_count_i (array=0x501010df786488e) at array.h:140 > 140 return array->buffer->used / array->element_size; > (gdb) bt > #0 array_count_i (array=0x501010df786488e) at array.h:140 > #1 array_get_modifiable_i (count_r=, array=0x501010df786488e) at array.h:206 > #2 priorityq_remove_idx (pq=0x501010df7864886, idx=2660296736) at priorityq.c:121 > #3 0x00006e2b586ac78f in priorityq_remove (pq=, item=item at entry=0x7c69e989370) at priorityq.c:138 > #4 0x00006e2b5869b6bf in timeout_remove (_timeout=) at ioloop.c:189 > #5 0x00006e2b587455c7 in imapc_client_mailbox_close (_box=_box at entry=0x7c69e9728f8) at imapc-client.c:341 > #6 0x00006e2b58744837 in imapc_mailbox_close (box=0x7c69e972650) at imapc-storage.c:536 > #7 0x00006e2b587578d2 in mailbox_close (box=0x7c69e972650) at mail-storage.c:1184 > #8 0x00006e2b587579a7 in mailbox_free (_box=_box at entry=0x7a0f60c375d0) at mail-storage.c:1199 > #9 0x000007c69e5aecc5 in close_selected_mailbox (client=0x7c69e8f11b0) at cmd-select.c:387 > #10 close_selected_mailbox (client=0x7c69e8f11b0) at cmd-select.c:376 > #11 0x000007c69e5af3f4 in cmd_select_full (cmd=, readonly=) at cmd-select.c:431 > #12 0x000007c69e5b646c in command_exec (cmd=cmd at entry=0x7c69e8f19c0) at imap-commands.c:158 > #13 0x000007c69e5b4e20 in client_command_input (cmd=0x7c69e8f19c0) at imap-client.c:780 > #14 0x000007c69e5b4f22 in client_command_input (cmd=0x7c69e8f19c0) at imap-client.c:841 > #15 0x000007c69e5b52e5 in client_handle_next_command (remove_io_r=, client=0x7c69e8f11b0) at imap-client.c:879 > #16 client_handle_input (client=client at entry=0x7c69e8f11b0) at imap-client.c:891 > #17 0x000007c69e5b57ae in client_input (client=0x7c69e8f11b0) at imap-client.c:933 > #18 0x00006e2b5869be37 in io_loop_call_io (io=0x7c69e8e4630) at ioloop.c:388 > #19 0x00006e2b5869d2ef in io_loop_handler_run (ioloop=ioloop at entry=0x7c69e89e760) at ioloop-epoll.c:220 > #20 0x00006e2b5869b738 in io_loop_run (ioloop=0x7c69e89e760) at ioloop.c:412 > #21 0x00006e2b58631957 in master_service_run (service=0x7c69e89e5f0, callback=callback at entry=0x7c69e5c1f50 ) at master-service.c:566 > #22 0x000007c69e5c2604 in main (argc=1, argv=0x7c69e89e3b0) at main.c:400 From andrew at infinet.net Fri Nov 22 00:24:23 2013 From: andrew at infinet.net (Andrew Obertas) Date: Thu, 21 Nov 2013 14:24:23 -0800 Subject: [Dovecot] Locking down master user to certain domains through passwd-file auth Message-ID: <528E8817.6000506@infinet.net> Hello, I know it is possible to lock down a master user to only have access to certain domains through SQL login but I was wondering if the same was possible with a passwd-based system. I currently have a master-passwd file residing in the /etc/virtual/domain.com/ directories I want the master user to be able to log in to. Is there a way to tell passdb to only allow the master user login to proceed if they can auth to the master-passwd file in the same folder as the user? Alternatively, is there a better way to go about this? What I assumed would be the easy approach, where the domain from the user's e-mail is fetched, doesn't seem to work as %d fetches the master user's domain and, unless I'm doing something wrong, the login_domain variable cannot be used as this is outside Dovecot-auth. Any assistance with this would be appreciated. -- Best regards, Andrew Obertas Technical Support Representative Infinet Communications Group From gareth at acsdata.co.nz Fri Nov 22 00:35:16 2013 From: gareth at acsdata.co.nz (Gareth Palmer) Date: Fri, 22 Nov 2013 11:35:16 +1300 Subject: [Dovecot] [PATCH] lib-sql/driver-mysql.c - Add support for enabling MYSQL_OPT_SSL_VERIFY_SERVER_CERT Message-ID: <1385073316.2545.36.camel@bad-dog> Hello, The following patch adds support for enabling MYSQL_OPT_SSL_VERIFY_SERVER_CERT. It makes the mysql client library check that the commonName in the server's SSL certificate matches the host name provided to mysql_real_connect() and aborts the connection if the name doesn't match. An example connect string would look something like: connect = ... ssl-ca=/path/to/ca.cert ssl-verify-server-cert=yes By default the mysql client library does not perform this check. -------------- next part -------------- A non-text attachment was scrubbed... Name: ssl-verify-server-cert-20131106.patch Type: text/x-patch Size: 4655 bytes Desc: not available URL: From tss at iki.fi Fri Nov 22 00:42:22 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 22 Nov 2013 00:42:22 +0200 Subject: [Dovecot] [PATCH] lib-sql/driver-mysql.c - Add support for enabling MYSQL_OPT_SSL_VERIFY_SERVER_CERT In-Reply-To: <1385073316.2545.36.camel@bad-dog> References: <1385073316.2545.36.camel@bad-dog> Message-ID: On 22.11.2013, at 0.35, Gareth Palmer wrote: > The following patch adds support for enabling > MYSQL_OPT_SSL_VERIFY_SERVER_CERT. > > It makes the mysql client library check that the commonName in the > server's SSL certificate matches the host name provided to > mysql_real_connect() and aborts the connection if the name doesn't > match. > > An example connect string would look something like: > > connect = ... ssl-ca=/path/to/ca.cert ssl-verify-server-cert=yes > > By default the mysql client library does not perform this check. If someone goes through the trouble of using SSL with MySQL .. should this even be optional? I guess I shouldn?t break any v2.2 installations even accidentally, but for v2.3 I don?t really see any point of not having this enabled unconditionally. From gareth at acsdata.co.nz Fri Nov 22 01:10:09 2013 From: gareth at acsdata.co.nz (Gareth Palmer) Date: Fri, 22 Nov 2013 12:10:09 +1300 Subject: [Dovecot] [PATCH] lib-sql/driver-mysql.c - Add support for enabling MYSQL_OPT_SSL_VERIFY_SERVER_CERT In-Reply-To: References: <1385073316.2545.36.camel@bad-dog> Message-ID: <1385075409.2545.42.camel@bad-dog> On Fri, 2013-11-22 at 00:42 +0200, Timo Sirainen wrote: > On 22.11.2013, at 0.35, Gareth Palmer wrote: > > > The following patch adds support for enabling > > MYSQL_OPT_SSL_VERIFY_SERVER_CERT. > > > > It makes the mysql client library check that the commonName in the > > server's SSL certificate matches the host name provided to > > mysql_real_connect() and aborts the connection if the name doesn't > > match. > > > > An example connect string would look something like: > > > > connect = ... ssl-ca=/path/to/ca.cert ssl-verify-server-cert=yes > > > > By default the mysql client library does not perform this check. > > If someone goes through the trouble of using SSL with MySQL .. should this even be optional? I guess I shouldn?t break any v2.2 installations even accidentally, but for v2.3 I don?t really see any point of not having this enabled unconditionally. Apart from possibly breaking existing installations and that mysql client library allows it to be disabled, I can't think of a good reason why someone wouldn't enable it. From dovecot at freakout.de Fri Nov 22 08:17:15 2013 From: dovecot at freakout.de (Axel Reinhold) Date: Fri, 22 Nov 2013 07:17:15 +0100 Subject: [Dovecot] (no subject) Message-ID: <201311220617.rAM6HFe5027760@bongo.freakout.de> Subject: dovecot-2.2.8 does no more quit correctly after update to dovecot-2.2.8 monit is no more validating pop3 server due to dovecot mo more logging out correctly "+OK Logging out" is missing With 2.2.7: [root at pie ~]# telnet glen 110 Trying 188.138.31.225... Connected to glen. Escape character is '^]'. +OK Dovecot ready. <1da9.1.528e3113.qpIWrdBNJbF3qp/tA9R+sQ==@glen.ypack.de> quit +OK Logging out Connection closed by foreign host. with 2.2.8: [root at pie ~]# telnet glen 110 Trying 188.138.31.225... Connected to glen. Escape character is '^]'. +OK Dovecot ready. <1fc9.1.528e31b1.W4FN6a7gzBMYNOBoxP43OQ==@glen.ypack.de> quit Connection closed by foreign host. After quit the "+OK Logging out" is missing! New option? Or bug? Regards Axel From nick.z.edwards at gmail.com Fri Nov 22 08:20:11 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Fri, 22 Nov 2013 16:20:11 +1000 Subject: [Dovecot] 2.2.9 Message-ID: Timo (since he is the only one that maters here), In past couple of days I have seen 4 people on IRC bitten by 2.2.8 and pigeonhole bug, none of them are on this list, so like all others who want to download and build them, are unaware of the patch, so, given how wide the userbase is with pigeonhole sieve and dovecot, this would or should be considered a serious bug, so my question is Timo, is it not best to immediately push 2.2.9, or should even more server administrators become frustrated and curse waiting two more months until you have a list you think is best putting out a new release, many of them dont like the constant new releases all the time with only minor things, but with a build failure, thats a serious issue. From p at sys4.de Fri Nov 22 09:22:06 2013 From: p at sys4.de (Patrick Ben Koetter) Date: Fri, 22 Nov 2013 08:22:06 +0100 Subject: [Dovecot] [PATCH] lib-sql/driver-mysql.c - Add support for enabling MYSQL_OPT_SSL_VERIFY_SERVER_CERT In-Reply-To: References: <1385073316.2545.36.camel@bad-dog> Message-ID: <20131122072206.GB28106@sys4.de> * Timo Sirainen : > On 22.11.2013, at 0.35, Gareth Palmer wrote: > > > The following patch adds support for enabling > > MYSQL_OPT_SSL_VERIFY_SERVER_CERT. > > > > It makes the mysql client library check that the commonName in the > > server's SSL certificate matches the host name provided to > > mysql_real_connect() and aborts the connection if the name doesn't > > match. > > > > An example connect string would look something like: > > > > connect = ... ssl-ca=/path/to/ca.cert ssl-verify-server-cert=yes > > > > By default the mysql client library does not perform this check. > > If someone goes through the trouble of using SSL with MySQL .. should this > even be optional? I guess I shouldn?t break any v2.2 installations even > accidentally, but for v2.3 I don?t really see any point of not having this > enabled unconditionally. It should be optional or it will break other running systems when the update/upgrade. p at rick -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From me at junc.eu Fri Nov 22 10:28:49 2013 From: me at junc.eu (Benny Pedersen) Date: Fri, 22 Nov 2013 09:28:49 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: References: Message-ID: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> Nick Edwards skrev den 2013-11-22 07:20: > Timo (since he is the only one that maters here), so it should have being private mail ? that sayed i keep dovecot 1.x as the most recent stable version, and 2.x as the unstable development version that works for some but not all still have kernel 3.11.6 on gentoo, no problem with that, hmm :=) living on edge can be fun sometimes From reuben-dovecot at reub.net Fri Nov 22 10:37:49 2013 From: reuben-dovecot at reub.net (Reuben Farrelly) Date: Fri, 22 Nov 2013 19:37:49 +1100 Subject: [Dovecot] 2.2.9 In-Reply-To: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> Message-ID: <528F17DD.5040005@reub.net> On 22/11/2013 7:28 PM, Benny Pedersen wrote: > Nick Edwards skrev den 2013-11-22 07:20: >> Timo (since he is the only one that maters here), > > so it should have being private mail ? > > that sayed i keep dovecot 1.x as the most recent stable version, and 2.x > as the unstable development version that works for some but not all If 2.x that "unstable" can you tell us what bugs you keep running into that are stopping you upgrading? Talk is cheap. Anyone can make claims that any piece of software is full of bugs. What I'm asking is, specifically do you know of any bugs which Timo has not yet addressed, are you harbouring a big secret list of bugs that we don't know about, or are you just trolling? Reuben -------------- next part -------------- A non-text attachment was scrubbed... Name: reuben-dovecot.vcf Type: text/x-vcard Size: 4 bytes Desc: not available URL: From Ralf.Hildebrandt at charite.de Fri Nov 22 10:44:14 2013 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Fri, 22 Nov 2013 09:44:14 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: References: Message-ID: <20131122084414.GA10312@charite.de> * Nick Edwards : > Timo (since he is the only one that maters here), > > In past couple of days I have seen 4 people on IRC bitten by 2.2.8 and > pigeonhole bug, none of them are on this list, so like all others who > want to download and build them, are unaware of the patch, Which patch? -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From tlx at leuxner.net Fri Nov 22 10:52:10 2013 From: tlx at leuxner.net (Thomas Leuxner) Date: Fri, 22 Nov 2013 09:52:10 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: <20131122084414.GA10312@charite.de> References: <20131122084414.GA10312@charite.de> Message-ID: <20131122085210.GA7384@nihlus.leuxner.net> * Ralf Hildebrandt 2013.11.22 09:44: > Which patch? http://www.dovecot.org/list/dovecot/2013-November/093654.html Pigeonhole related patches. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From Ralf.Hildebrandt at charite.de Fri Nov 22 11:14:59 2013 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Fri, 22 Nov 2013 10:14:59 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: <20131122085210.GA7384@nihlus.leuxner.net> References: <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net> Message-ID: <20131122091459.GD10312@charite.de> * Thomas Leuxner : > * Ralf Hildebrandt 2013.11.22 09:44: > > > Which patch? > > http://www.dovecot.org/list/dovecot/2013-November/093654.html > > Pigeonhole related patches. Damn. Those are biting me as well :/ -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From me at junc.eu Fri Nov 22 11:33:05 2013 From: me at junc.eu (Benny Pedersen) Date: Fri, 22 Nov 2013 10:33:05 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: <528F17DD.5040005@reub.net> References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> <528F17DD.5040005@reub.net> Message-ID: <49514f0ca6918d923295ee18f3ebadbc@junc.eu> Reuben Farrelly skrev den 2013-11-22 09:37: its a free world, any one can provide a patch if wanted to fix something, but if it aint broke, dont fix it i have my silly choices, but seems from maillist here its good choices of keep 1.x still, and lucky i have a distro where its posible From tkorocz at gmail.com Fri Nov 22 12:52:48 2013 From: tkorocz at gmail.com (Tibor Korocz) Date: Fri, 22 Nov 2013 11:52:48 +0100 Subject: [Dovecot] dovecot + sieve redirect failed Message-ID: Hi Guys, I have a strange problem and I couldn't find any solution, I hope somebody could help me. I'm using postfix+dovecot+sieve combination and I tried to set up redirect. .sieve: require ["fileinto", "regex", "date", "relational", "vacation"]; redirect "xxxx at gmail.com"; keep; But I get some error in the mail.log: sieve: msgid=<1562626302.336239.1385116787283>: failed to redirect message to (refer to server log for more information) Nov 22 11:39:50 server dovecot: lda(xxx at xxxx): sieve: msgid=<1562626302.336239.1385116787283>: stored mail into mailbox 'INBOX' Nov 22 11:39:50 server dovecot: lda(xxx at xxxx): Error: sieve: execution of script /var/vmail/xxxx/.sieve failed, but implicit keep was successful (user logfile /var/vmail/xxxx/.sieve.log may reveal additional details) .sieve.log: error: msgid=<1562626302.336239.1385116787283>: failed to redirect message to (refer to server log for more information). I couldn't find any other details in the logs. Any idea what is the problem and what is the solution? Thanks, Tibi From tss at iki.fi Fri Nov 22 13:48:53 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 22 Nov 2013 13:48:53 +0200 Subject: [Dovecot] (no subject) In-Reply-To: <201311220617.rAM6HFe5027760@bongo.freakout.de> References: <201311220617.rAM6HFe5027760@bongo.freakout.de> Message-ID: <3DB7D762-D228-42B0-9510-02C0C218497F@iki.fi> On 22.11.2013, at 8.17, Axel Reinhold wrote: > Subject: dovecot-2.2.8 does no more quit correctly > > after update to dovecot-2.2.8 monit is no more validating pop3 server > due to dovecot mo more logging out correctly "+OK Logging out" is missing Oh, I guess that explains also why it was happening with LMTP. http://hg.dovecot.org/dovecot-2.2/rev/e3a87c25e0b2 fixes. From tss at iki.fi Fri Nov 22 13:52:11 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 22 Nov 2013 13:52:11 +0200 Subject: [Dovecot] [PATCH] lib-sql/driver-mysql.c - Add support for enabling MYSQL_OPT_SSL_VERIFY_SERVER_CERT In-Reply-To: <20131122072206.GB28106@sys4.de> References: <1385073316.2545.36.camel@bad-dog> <20131122072206.GB28106@sys4.de> Message-ID: On 22.11.2013, at 9.22, Patrick Ben Koetter

wrote: > * Timo Sirainen : >> On 22.11.2013, at 0.35, Gareth Palmer wrote: >> >>> The following patch adds support for enabling >>> MYSQL_OPT_SSL_VERIFY_SERVER_CERT. >>> >>> It makes the mysql client library check that the commonName in the >>> server's SSL certificate matches the host name provided to >>> mysql_real_connect() and aborts the connection if the name doesn't >>> match. >> >> If someone goes through the trouble of using SSL with MySQL .. should this >> even be optional? I guess I shouldn?t break any v2.2 installations even >> accidentally, but for v2.3 I don?t really see any point of not having this >> enabled unconditionally. > > It should be optional or it will break other running systems when the > update/upgrade. But perhaps it should break (in v2.3.0)? Otherwise it?s not really running securely anyway. At least the default should be to verify the cert. From dhill.novell at gmail.com Fri Nov 22 04:59:16 2013 From: dhill.novell at gmail.com (Don Hill) Date: Thu, 21 Nov 2013 20:59:16 -0600 Subject: [Dovecot] postfix and dovecot - no emails in new folder Message-ID: <528EC884.80207@gmail.com> Hi. I am working on setting up Dovecot v2.0.9 and postfix 2.6.6 on centos 6.4. I have postfix configured with dovecot using virtual users. Everything seems to be working with the exception of no emails being delivered to the Maildir/new folder. If I touch a file into that folder then the file gets delivered to the email client using imap. I can also send email from the client with no problems. In fact if I look at the logs postfix says the email was delivered to the mailbox. postfix/virtual[27270]: 8652F35C38A8: to=, relay=virtual, delay=0.11, delays=0.1/0.01/0/0, dsn=2.0.0, status=sent (delivered to mailbox)$ Here is my dovecot -n output *doveconf: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf** **doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:85: protocol { ssl_listen } has been replaced by service { inet_listener { address } }** **# OS: Linux 2.6.32-042stab079.6 x86_64 CentOS release 6.4 (Final) reiserfs** **auth_mechanisms = plain login** **default_login_user = vmail** **first_valid_gid = 5000** **first_valid_uid = 5000** **listen = *** **mail_access_groups = vmail** **mail_location = maildir:/var/vmail/%d/%u/Maildir** **mbox_write_locks = fcntl** **passdb {** ** args = scheme=SHA1 /etc/dovecot/passwd** ** driver = passwd-file** **}** **protocols = imap pop3** **service auth {** ** unix_listener auth-client {** ** group = postfix** ** mode = 0660** ** user = postfix** ** }** ** user = root** **}** **service imap-login {** ** inet_listener imaps {** ** address = *** ** }** ** process_min_avail = 1** ** user = vmail** **}** **service pop3-login {** ** inet_listener pop3s {** ** address = *** ** }** **}** **ssl_cert = Message-ID: <20131122131204.GA28330@spider.services.datevnet.de> On Wed, Nov 20, 2013 at 02:40:22PM +0200, Timo Sirainen wrote: > > When compiling dovecot-2.2-pigeonhole-0.4.2 at the stage "make check" > > Pigeonhole is throwing the following message and stops: > > Interestingly caused by the improved caching code. Fixed by http://hg.dovecot.org/dovecot-2.2/rev/f4eb4b5884b2 Hi all, no make it more difficult I have this story: I run a autoresponder at echo at signing-milter.org. Messages to this address are answered by sieve vacation. Messages generated by sieve are sent via smtp # doveconf submission_host submission_host = signing-milter.org:587 There my signing-milter take the plain message and apply an s/mime signature. That worked for years until I upgrades the host (spring 2013). Starting that time the signatures are invalid. I focused my bug search on /my software/ and the new openssl version (0.9.8 -> 1.0.1e) Looks like that was wrong. Yesterday I installed stock dovecot-2.2.8 and dovecot-2.2-pigeonhole-0.4.2. The signatures are valid again! But then I found, I build dovecot + pigeonhole without "make check". I did not noticed any "make check" failures till yesterday. I applied all 5 patches mentioned in http://dovecot.org/list/dovecot/2013-November/093654.html and build dovecot + pigeonhole again. Now also "make check" did not fail. But the s/mime signatures are invalid again :-( Conclusion: the patch dial with whitespaces. Signatures are very sensitive indiators for any change in a message. I could imagine, that the messages generated by sieve vacation are unexpected/invalid at some whitespaces. This invalid whitespace may be s/mime signed but modified a moment later by postfix? On the other side I apply also dkim signatures just after the s/mime signature was generated. These dkim signatures are valid all the time. Unfortunately I have no idea if that help neither how to debug this... Andreas -- Andreas Schulze Internetdienste | P252 DATEV eG 90329 N?rnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196 E-Mail info @datev.de | Internet www.datev.de Sitz: 90429 N?rnberg, Paumgartnerstr. 6-14 | Registergericht N?rnberg, GenReg Nr.70 Vorstand Prof. Dieter Kempf (Vorsitzender) Dipl.-Kfm. Wolfgang Stegmann (stellvertretender Vorsitzender) Dipl.-Kfm. Michael Leistenschneider Dipl.-Kfm. Dr. Robert Mayr J?rg Rabe v. Pappenheim Dipl.-Vw. Eckhard Schwarzer Vorsitzender des Aufsichtsrates: Reinhard Verholen From skdovecot at smail.inf.fh-brs.de Fri Nov 22 16:36:08 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 22 Nov 2013 15:36:08 +0100 (CET) Subject: [Dovecot] postfix and dovecot - no emails in new folder In-Reply-To: <528EC884.80207@gmail.com> References: <528EC884.80207@gmail.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 21 Nov 2013, Don Hill wrote: > I have postfix configured with dovecot using virtual users. Everything seems > to be working with the exception of no emails being delivered to the > Maildir/new folder. If I touch a file into that folder then the file gets > delivered to the email client using imap. > > I can also send email from the client with no problems. In fact if I look at > the logs postfix says the email was delivered to the mailbox. > > postfix/virtual[27270]: 8652F35C38A8: to=, relay=virtual, > delay=0.11, delays=0.1/0.01/0/0, dsn=2.0.0, status=sent (delivered to > mailbox)$ Are you sure, postfix delivers to the maildir of Dovecot? I would reconfigure Postfix to use Dovecot LDA or LMTP. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUo9r2V3r2wJMiz2NAQIouggAxi89bQaDsGiLOfT/DwDWEwpM6M7LjwPS koNcmgn1DAsm3OGhwn57dvrA3uvs7ot8gt25iwca/kf4XKHzKdWWnbWq3LO0oME+ EWREF6NJOs5OUXhd26sUpw09QxCITP2gg1hl34j0MwTRMdJyycl5BAg3jrK1A9Ji 5U0MhMXaKd+7P6BBbe47+PnQR4Rfy+fLdjKy1E0wSnP/xsrx/tK0FeSF9Ewf0FMJ FuFj8M5HQiixNrfjUATBnoVtvdWkjtI2ttU427Mm0ESHHkzPTdz3GlX/FWT7DZhH SsILyGgTXojcGXXP5vMluqxQmjscfMoBGrcuXpP7QlK8zNwgYZZMxA== =Dxa6 -----END PGP SIGNATURE----- From dhill.novell at gmail.com Fri Nov 22 17:56:45 2013 From: dhill.novell at gmail.com (Don Hill) Date: Fri, 22 Nov 2013 09:56:45 -0600 Subject: [Dovecot] postfix and dovecot - no emails in new folder In-Reply-To: References: <528EC884.80207@gmail.com> Message-ID: <528F7EBD.8000109@gmail.com> Yes. I am logged in as root and performing a ls -la /var/vmail/domain I see the following folder - user - This file actually contains the emails sent to the account folder - user at domain.tld - and in the Maildir folder I see the following cd into user at domain.tld/Maildir ls cur dovecot-uidlist dovecot-uidvalidity dovecot-uidvalidity.528f6c45 dovecot.index.log new tmp The cur/tmp and new folders are empty. I have tried multiple accounts with the same results. If this can't be resolved then I will take your device and try another dovecot method > Steffen Kaiser > November 22, 2013 8:36 AM > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thu, 21 Nov 2013, Don Hill wrote: > > > Are you sure, postfix delivers to the maildir of Dovecot? I would > reconfigure Postfix to use Dovecot LDA or LMTP. > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUo9r2V3r2wJMiz2NAQIouggAxi89bQaDsGiLOfT/DwDWEwpM6M7LjwPS > koNcmgn1DAsm3OGhwn57dvrA3uvs7ot8gt25iwca/kf4XKHzKdWWnbWq3LO0oME+ > EWREF6NJOs5OUXhd26sUpw09QxCITP2gg1hl34j0MwTRMdJyycl5BAg3jrK1A9Ji > 5U0MhMXaKd+7P6BBbe47+PnQR4Rfy+fLdjKy1E0wSnP/xsrx/tK0FeSF9Ewf0FMJ > FuFj8M5HQiixNrfjUATBnoVtvdWkjtI2ttU427Mm0ESHHkzPTdz3GlX/FWT7DZhH > SsILyGgTXojcGXXP5vMluqxQmjscfMoBGrcuXpP7QlK8zNwgYZZMxA== > =Dxa6 > -----END PGP SIGNATURE----- > Don Hill > November 21, 2013 8:59 PM > Hi. > > I am working on setting up Dovecot v2.0.9 and postfix 2.6.6 on > centos 6.4. I have postfix configured with dovecot using virtual > users. Everything seems to be working with the exception of no emails > being delivered to the Maildir/new folder. If I touch a file into that > folder then the file gets delivered to the email client using imap. > > I can also send email from the client with no problems. In fact if I > look at the logs postfix says the email was delivered to the mailbox. > > postfix/virtual[27270]: 8652F35C38A8: to=, > relay=virtual, delay=0.11, delays=0.1/0.01/0/0, dsn=2.0.0, status=sent > (delivered to mailbox)$ > > Here is my dovecot -n output > > *doveconf: Warning: NOTE: You can get a new clean config file with: > doveconf -n > dovecot-new.conf** > **doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:85: > protocol { ssl_listen } has been replaced by service { inet_listener { > address } }** > **# OS: Linux 2.6.32-042stab079.6 x86_64 CentOS release 6.4 (Final) > reiserfs** > **auth_mechanisms = plain login** > **default_login_user = vmail** > **first_valid_gid = 5000** > **first_valid_uid = 5000** > **listen = *** > **mail_access_groups = vmail** > **mail_location = maildir:/var/vmail/%d/%u/Maildir** > **mbox_write_locks = fcntl** > **passdb {** > ** args = scheme=SHA1 /etc/dovecot/passwd** > ** driver = passwd-file** > **}** > **protocols = imap pop3** > **service auth {** > ** unix_listener auth-client {** > ** group = postfix** > ** mode = 0660** > ** user = postfix** > ** }** > ** user = root** > **}** > **service imap-login {** > ** inet_listener imaps {** > ** address = *** > ** }** > ** process_min_avail = 1** > ** user = vmail** > **}** > **service pop3-login {** > ** inet_listener pop3s {** > ** address = *** > ** }** > **}** > **ssl_cert = **ssl_key = **userdb {** > ** args = uid=5000 gid=5000 home=/var/vmail/%d/%u allow_all_users=yes** > ** driver = static** > **}* > > > Any thoughts? -------------- next part -------------- A non-text attachment was scrubbed... Name: compose-unknown-contact.jpg Type: image/jpeg Size: 770 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: postbox-contact.jpg Type: image/jpeg Size: 1160 bytes Desc: not available URL: From nick.z.edwards at gmail.com Fri Nov 22 18:17:05 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Sat, 23 Nov 2013 02:17:05 +1000 Subject: [Dovecot] 2.2.9 In-Reply-To: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> Message-ID: On 11/22/13, Benny Pedersen wrote: > Nick Edwards skrev den 2013-11-22 07:20: >> Timo (since he is the only one that maters here), > > so it should have being private mail ? > No Timo made it clear all dovecot stuff must go by list > that sayed i keep dovecot 1.x as the most recent stable version, and 2.x > as the unstable development version that works for some but not all > what the fuck are you rambling about now? jesus christ, shut the fuck up and stop popping your dumb comments in when you have no fucking clue, this has nothing to do with 1 v 2 or some crap that your dumb arse delusional trolling mouth spills out > still have kernel 3.11.6 on gentoo, no problem with that, hmm :=) > and what the fuck does that have to do with it... christ, go take your drugs idiot and stop commenting on threads that are obvoiously above your intelligence grade > living on edge can be fun sometimes I need a drink From h.reindl at thelounge.net Fri Nov 22 18:23:32 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Fri, 22 Nov 2013 17:23:32 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> Message-ID: <528F8504.9050003@thelounge.net> Am 22.11.2013 17:17, schrieb Nick Edwards: > On 11/22/13, Benny Pedersen wrote: >> Nick Edwards skrev den 2013-11-22 07:20: >>> Timo (since he is the only one that maters here), >> >> so it should have being private mail ? > > No Timo made it clear all dovecot stuff must go by list > >> that sayed i keep dovecot 1.x as the most recent stable version, and 2.x >> as the unstable development version that works for some but not all > > what the fuck are you rambling about now? jesus christ, shut the fuck > up and stop popping your dumb comments in when you have no fucking > clue, this has nothing to do with 1 v 2 or some crap that your dumb > arse delusional trolling mouth spills out ah - now you also woke up why i classified Benny as troll and told him to shut up leading in Noel Butler only see my reponse line quoted and start again his personal fight against me and people like you enter the train with "cool blacklist, i use it too"? well, you most likely will not see this response until someone else quotes it, but more i can not do to make people realize that there is a difference between pure Trolls and people not always nice enough for everybody and his brother -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From h.reindl at thelounge.net Fri Nov 22 18:27:37 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Fri, 22 Nov 2013 17:27:37 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> Message-ID: <528F85F9.7080602@thelounge.net> Am 22.11.2013 17:17, schrieb Nick Edwards: > what the fuck are you rambling about now? jesus christ, shut the fuck > up and stop popping your dumb comments in when you have no fucking > clue, this has nothing to do with 1 v 2 or some crap that your dumb > arse delusional trolling mouth spills out > > and what the fuck does that have to do with it... christ, go take your > drugs idiot and stop commenting on threads that are obvoiously above > your intelligence grade > > I need a drink if i would post this summary to Benny the hell would freeze over while he has deserved it more than once......... i wonder why people come up with blacklists and what else to judge one is allowed to say this, one is not because personal dislikes and whatever instead grow up and take rough answers like a man -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From stephan at rename-it.nl Fri Nov 22 18:57:16 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Fri, 22 Nov 2013 17:57:16 +0100 Subject: [Dovecot] Personal Sieve Resieving Default Sieve? In-Reply-To: <528651AF.7040005@packetalk.net> References: <528651AF.7040005@packetalk.net> Message-ID: <528F8CEC.5040702@rename-it.nl> On 11/15/2013 5:54 PM, Jim McNamara wrote: > Hello all. In my dovecot install we have a default.sieve script which > filters incoming mail based on the subdomain of our main domain. All > it does is if the mail comes from A.domain.com move in to folder A in > inbox, and if it comes from B.domain.com, move to folder B also in inbox. > > In my personal sieve script, I'd like to grab a particular email each > day that the default.sieve saw coming from A.domain.com and moved it > to folder A, and either copy or move it to another folder, C. My > google-fu was weak while looking for second sieve passes undoing the > first, so I thought it best to ask here. > > Thanks for your time. You can try to build something with the sieve-filter tool. It is documented in the man page. Regards, Stephan. From stephan at rename-it.nl Fri Nov 22 19:01:31 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Fri, 22 Nov 2013 18:01:31 +0100 Subject: [Dovecot] removing html via dovecot/sieve In-Reply-To: <20131115072258.GA28171@summerhaze.dyndns.tv> References: <20131115072258.GA28171@summerhaze.dyndns.tv> Message-ID: <528F8DEB.5050003@rename-it.nl> On 11/15/2013 8:22 AM, Bonz wrote: > is there a howto or similar for configuring dovecot as a user to strip mime. > > ideally i would like all html copies deleted, > > but graphics, etc dumped to ~/public_html and replaced with a url. > > i have a super crappy link so html, etc usually jams my spool. > > i can usually wget things however hence this desired approach. Dovecot doesn't natively support something like this. You could conjure something using Sieve and the Sieve extprograms plugin. http://wiki2.dovecot.org/Pigeonhole/Sieve http://wiki2.dovecot.org/Pigeonhole/Sieve/Plugins/Extprograms However, this will only serve to couple a shell script into your delivery process. You still need to build the actual mail processing to substitute the graphics. Regards, Stephan. From stephan at rename-it.nl Fri Nov 22 19:03:26 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Fri, 22 Nov 2013 18:03:26 +0100 Subject: [Dovecot] Dict client unescaping sieve script In-Reply-To: <527D74A5.2030506@6bit.com> References: <527D74A5.2030506@6bit.com> Message-ID: <528F8E5E.7000904@rename-it.nl> On 11/9/2013 12:32 AM, Joshua Perry wrote: > I've created a dict service that listens on a unix socket and answers > queries for sieve scripts (among other things). > > As I understand it (from the source code at > http://hg.dovecot.org/dovecot-2.2/file/tip/src/lib-dict/dict-client.c), the > dict client will unescape \001n, \001t, and \0011 to line feeds, tabs, > and the \001 character respectively. > > In my service I am escaping those three characters in my response (if > I don't escape them the line-oriented nature of the protocol causes a > failure for multiline sieve scripts) but every time LDA attempts to > process a sieve script I get an error in the logs (see below) showing > sieve choking on \001 characters. > > Is there some configuration value I've missed or something? > > *dovecot log* > Nov 8 23:04:54 www dovecot: lmtp(29940, josh at redacted.com): > pxg7JxZufVL0dAAAPhZyyg: sieve: failed to compile script > dict:proxy:/var/run/dovecot-auth.sock:sieve;name=main script (view > user logfile /var/mail/vhosts/redacted.com/josh/.dovecot.sieve.log for > more information) > > *.dovecot.sieve.log* > sieve: info: started log at Nov 08 16:14:38. > main script: line 1: error: unexpected character(s) starting with 0x01. > main script: line 1: error: unexpected unknown characters found at > (the presumed) end of file. > main script: error: parse failed. This is likely a problem in Dovecot somewhere. We haven't had time to look at it so far. I'll get back on this later. Regards, Stephan. From stephan at rename-it.nl Fri Nov 22 19:17:56 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Fri, 22 Nov 2013 18:17:56 +0100 Subject: [Dovecot] dovecot + sieve redirect failed In-Reply-To: References: Message-ID: <528F91C4.8070409@rename-it.nl> On 11/22/2013 11:52 AM, Tibor Korocz wrote: > Hi Guys, > > I have a strange problem and I couldn't find any solution, I hope somebody > could help me. > I'm using postfix+dovecot+sieve combination and I tried to set up redirect. > > .sieve: > require ["fileinto", "regex", "date", "relational", "vacation"]; > redirect "xxxx at gmail.com"; > keep; > > But I get some error in the mail.log: > > sieve: msgid=<1562626302.336239.1385116787283>: failed to redirect message > to (refer to server log for more information) > Nov 22 11:39:50 server dovecot: lda(xxx at xxxx): sieve: > msgid=<1562626302.336239.1385116787283>: stored mail into mailbox 'INBOX' > Nov 22 11:39:50 server dovecot: lda(xxx at xxxx): Error: sieve: execution of > script /var/vmail/xxxx/.sieve failed, but implicit keep was successful > (user logfile /var/vmail/xxxx/.sieve.log may reveal additional details) > > .sieve.log: > > error: msgid=<1562626302.336239.1385116787283>: failed to redirect message > to (refer to server log for more information). > > I couldn't find any other details in the logs. > Any idea what is the problem and what is the solution? I would expect something in the MTA logs. By default Dovecot uses local sendmail binary to submit messages. You can try to run that and see if it works. If you've configured Dovecot to talk to an SMTP server directly, you can dump the protocol exchange. I do find it strange that Dovecot and Pigeonhole don't log any specifics about the failure. I don't see how that could happen. What is your configuration (output from `dovecot -n`) Regards, Stephan. From josh at 6bit.com Fri Nov 22 19:41:13 2013 From: josh at 6bit.com (Joshua Perry) Date: Fri, 22 Nov 2013 10:41:13 -0700 Subject: [Dovecot] Dict client unescaping sieve script In-Reply-To: <528F8E5E.7000904@rename-it.nl> References: <527D74A5.2030506@6bit.com> <528F8E5E.7000904@rename-it.nl> Message-ID: On Nov 22, 2013, at 10:03 AM, Stephan Bosch wrote: > On 11/9/2013 12:32 AM, Joshua Perry wrote: >> I've created a dict service that listens on a unix socket and answers >> queries for sieve scripts (among other things). >> >> As I understand it (from the source code at >> http://hg.dovecot.org/dovecot-2.2/file/tip/src/lib-dict/dict-client.c), the >> dict client will unescape \001n, \001t, and \0011 to line feeds, tabs, >> and the \001 character respectively. >> >> In my service I am escaping those three characters in my response (if >> I don't escape them the line-oriented nature of the protocol causes a >> failure for multiline sieve scripts) but every time LDA attempts to >> process a sieve script I get an error in the logs (see below) showing >> sieve choking on \001 characters. >> >> Is there some configuration value I've missed or something? >> >> *dovecot log* >> Nov 8 23:04:54 www dovecot: lmtp(29940, josh at redacted.com): >> pxg7JxZufVL0dAAAPhZyyg: sieve: failed to compile script >> dict:proxy:/var/run/dovecot-auth.sock:sieve;name=main script (view >> user logfile /var/mail/vhosts/redacted.com/josh/.dovecot.sieve.log for >> more information) >> >> *.dovecot.sieve.log* >> sieve: info: started log at Nov 08 16:14:38. >> main script: line 1: error: unexpected character(s) starting with 0x01. >> main script: line 1: error: unexpected unknown characters found at >> (the presumed) end of file. >> main script: error: parse failed. > > This is likely a problem in Dovecot somewhere. We haven't had time to > look at it so far. I'll get back on this later. > > Regards, > > Stephan. > Hey Stephen, Thank you for responding, I didn't update the list because I kind of figured from the non-reponse that no-one had any ideas. I actually found the problem and it was a stupid mistake on my part, I was escaping tab and carriage return and _THEN_ escaping \001... Ooops. Love Dovecot, hoping to spend more time with it in the near future, I've been playing with making a one-stop repo of all virtual-hosted data for Postfix, Prosody, Dovecot, Seive, etc. I know LDAP is meant for stuff like that, but I don't like LDAP. Josh From me at junc.eu Sat Nov 23 03:29:39 2013 From: me at junc.eu (Benny Pedersen) Date: Sat, 23 Nov 2013 02:29:39 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> Message-ID: <7421d87ccaa5a524e6ee8032b09b41d2@junc.eu> Nick Edwards skrev den 2013-11-22 17:17: > I need a drink if you can find some to drink with, all problems with dovecot will comeback tomorrow :=) i just made another sieve rule now From noel.butler at ausics.net Sat Nov 23 03:39:43 2013 From: noel.butler at ausics.net (Noel Butler) Date: Sat, 23 Nov 2013 11:39:43 +1000 Subject: [Dovecot] 2.2.9 In-Reply-To: <7421d87ccaa5a524e6ee8032b09b41d2@junc.eu> References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> <7421d87ccaa5a524e6ee8032b09b41d2@junc.eu> Message-ID: <1385170783.4058.5.camel@tardis> On Sat, 2013-11-23 at 02:29 +0100, Benny Pedersen wrote: > Nick Edwards skrev den 2013-11-22 17:17: > > > I need a drink > > if you can find some to drink with, all problems with dovecot will > comeback tomorrow :=) > > i just made another sieve rule now > > What has this to do with dovecot? Take your trolling off list please. I'm starting to regret defending you against Harald, perhaps its YOU who should be booted and not him Nicks right about one thing though, you seem to have not taken your medicated lately Benny. (although you dont blindly go around abusing people on every list, and in CC's and private, so we wont blacklist you :) ) -------------- next part -------------- A non-text attachment was scrubbed... Name: face-smile.png Type: image/png Size: 873 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From h.reindl at thelounge.net Sat Nov 23 03:43:08 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Sat, 23 Nov 2013 02:43:08 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: <7421d87ccaa5a524e6ee8032b09b41d2@junc.eu> References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> <7421d87ccaa5a524e6ee8032b09b41d2@junc.eu> Message-ID: <5290082C.4070905@thelounge.net> Am 23.11.2013 02:29, schrieb Benny Pedersen: > Nick Edwards skrev den 2013-11-22 17:17: > >> I need a drink > > if you can find some to drink with, all problems with dovecot will comeback tomorrow :=) so why are you subscribed here? you permanently attack dovecot itself on the dovecot list > i just made another sieve rule now makes you not smarter, it only shows why i told you to shut up days ago resulting in attacks of Noel and Nick because i am the bad guy would you have quoted fair maybe even Noel would have realized it was deserved because you stripped out quoting your trolling -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From noel.butler at ausics.net Sat Nov 23 03:47:37 2013 From: noel.butler at ausics.net (Noel Butler) Date: Sat, 23 Nov 2013 11:47:37 +1000 Subject: [Dovecot] 2.2.9 In-Reply-To: <20131122091459.GD10312@charite.de> References: <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net> <20131122091459.GD10312@charite.de> Message-ID: <1385171257.4058.14.camel@tardis> On Fri, 2013-11-22 at 10:14 +0100, Ralf Hildebrandt wrote: > * Thomas Leuxner : > > * Ralf Hildebrandt 2013.11.22 09:44: > > > > > Which patch? > > > > http://www.dovecot.org/list/dovecot/2013-November/093654.html > > > > Pigeonhole related patches. > > Damn. Those are biting me as well :/ > These would be found if Timo reverted back to issuing RC's before any official release, to iron out the niggly off-putting bugs, like most software does, or gets his devs and a community of official testers each with wildly different configurations and set ups, ASF have an excellent model that could be followed, bunch of devs and testers who each report on different distros and configs, why? because no single dev can imagine and test every possible configuration. it might just save dovecot's good name, I recall a lot of damage was done to that in the circles I'm in when 2.0 was released with patches nearly every few days and weeks, I know a few ISP's and businesses that went back to courier or Wu's because major bugs were getting in often, though it has been a lot better since 2.1 series, until this release that is :) -------------- next part -------------- A non-text attachment was scrubbed... Name: face-smile.png Type: image/png Size: 873 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From tss at iki.fi Sat Nov 23 04:06:48 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 23 Nov 2013 04:06:48 +0200 Subject: [Dovecot] 2.2.9 In-Reply-To: <1385170783.4058.5.camel@tardis> References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> <7421d87ccaa5a524e6ee8032b09b41d2@junc.eu> <1385170783.4058.5.camel@tardis> Message-ID: Everyone replying to this thread really should just shut up. I (and likely just about nobody else) don?t care who is more wrong or more right or a better or worse person or whatever, but any mails that have nothing to do with Dovecot don?t belong to this list. I have no interest in being some kind of a kindergarten teacher telling people how to behave, but there are about 3 of you who nowadays constantly seem to be wasting my time on thinking about it. (And as for the original question: I?ll make v2.2.9 this weekend. And as for bugs, as I already once mentioned, I?m planning on implementing significantly more comprehensive testing for Dovecot during the next year.) From rick at havokmon.com Sat Nov 23 04:49:59 2013 From: rick at havokmon.com (Rick Romero) Date: Fri, 22 Nov 2013 21:49:59 -0500 Subject: [Dovecot] 2.2.9 Message-ID: <8m4oqcxw60rioafxnblmnbyb.1385174999526@email.android.com> Thanks for providing and maintaining a great piece of software. Rick From noel.butler at ausics.net Sat Nov 23 07:16:34 2013 From: noel.butler at ausics.net (Noel Butler) Date: Sat, 23 Nov 2013 15:16:34 +1000 Subject: [Dovecot] 2.2.9 In-Reply-To: References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> <7421d87ccaa5a524e6ee8032b09b41d2@junc.eu> <1385170783.4058.5.camel@tardis> Message-ID: <1385183794.8293.14.camel@tardis> On Sat, 2013-11-23 at 04:06 +0200, Timo Sirainen In-Reply-To: <1385170783.4058.5.camel at tardis> wrote: > but there are about 3 of you who nowadays constantly seem to be wasting my time on thinking about it. > no doubt, despite my one single post to "them" in long time, but being informed that my name has been dragged into their shit fight a few times, you of course include me in this gang of 3, frankly, I've had a gutfull of your lengthy vendetta, it is after all why I rarely waste my time here and the those I've helped have mostly been via private anyway, now, my time for lists is being more rare these days, I have far more important activities to worry about in life, so it is with much pleasure I inform you that you will need to find some other poor sucker to blame for the trolls and idiots, I am removing myself from the dovecot "community" forthwith, well, in 3 minutes, enough time for this message to make it through mailman before I confirm unsub :) oh before I go, ya know, if you reigned in the regular offenders like other lists, nobody else would have needed to. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From rick at havokmon.com Sat Nov 23 07:49:02 2013 From: rick at havokmon.com (Rick Romero) Date: Sat, 23 Nov 2013 00:49:02 -0500 Subject: [Dovecot] 2.2.9 Message-ID: <43o345tt9pkwt24ampbnhkq2.1385185742685@email.android.com> Noel, I include you in the gang of three, and I only read half the posts on this list. I have no specific reason to, but it isn't a good association. A decade ago I was active on the Pegasus mail and Mercury lists, and names stood out after a while. Unfortunately on this list, the names stand out for a completely different reason - and its not positive. Just chill, everyone. You never know who's going to interview you in a year. Rick From ebroch at whitehorsetc.com Sat Nov 23 10:10:04 2013 From: ebroch at whitehorsetc.com (Eric Broch) Date: Sat, 23 Nov 2013 01:10:04 -0700 Subject: [Dovecot] 2.2.9 In-Reply-To: References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> <7421d87ccaa5a524e6ee8032b09b41d2@junc.eu> <1385170783.4058.5.camel@tardis> Message-ID: <529062DC.90408@whitehorsetc.com> On 11/22/2013 7:06 PM, Timo Sirainen wrote: > Everyone replying to this thread really should just shut up. I (and likely just about nobody else) don?t care who is more wrong or more right or a better or worse person or whatever, but any mails that have nothing to do with Dovecot don?t belong to this list. I have no interest in being some kind of a kindergarten teacher telling people how to behave, but there are about 3 of you who nowadays constantly seem to be wasting my time on thinking about it. > > (And as for the original question: I?ll make v2.2.9 this weekend. And as for bugs, as I already once mentioned, I?m planning on implementing significantly more comprehensive testing for Dovecot during the next year.) > Thanks for the great software, Timo. From srf at sanger.ac.uk Sat Nov 23 14:45:37 2013 From: srf at sanger.ac.uk (Simon Fraser) Date: Sat, 23 Nov 2013 12:45:37 +0000 Subject: [Dovecot] 2.2.9 In-Reply-To: <529062DC.90408@whitehorsetc.com> References: <87ecc4a59916f0d9a2a76666f48e6716@junc.eu> <7421d87ccaa5a524e6ee8032b09b41d2@junc.eu> <1385170783.4058.5.camel@tardis> <529062DC.90408@whitehorsetc.com> Message-ID: <20131123124537.GA9204@sanger.ac.uk> On Sat, Nov 23, 2013 at 01:10:04AM -0700, Eric Broch wrote: > On 11/22/2013 7:06 PM, Timo Sirainen wrote: > > > > (And as for the original question: I?ll make v2.2.9 this weekend. And as > > for bugs, as I already once mentioned, I?m planning on implementing > > significantly more comprehensive testing for Dovecot during the next year.) > > > Thanks for the great software, Timo. I agree. It's very good software, and I appreciate all the hard work you put in, Timo. Simon. -- The Wellcome Trust Sanger Institute is operated by Genome Research Limited, a charity registered in England with number 1021457 and a company registered in England with number 2742969, whose registered office is 215 Euston Road, London, NW1 2BE. From jtkoerting at gmail.com Sat Nov 23 19:33:42 2013 From: jtkoerting at gmail.com (Jimmy Koerting) Date: Sat, 23 Nov 2013 18:33:42 +0100 Subject: [Dovecot] quota warning by script fails Message-ID: Hello! I looked around all online resources I found, but I'm not able to find my failure. So any help would be welcome! The problem arises with an dovecot 2.2.6 on a 9.2 FreeBSD RELEASE in a jailed environment. I have the following config settings regarding quota (which works in general, but just without calling the script): /etc/dovecot/conf.d/90-quota.conf: ... plugin { quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u } service quota-warning { executable = script /usr/sbin/quota-warning.sh unix_listener quota-warning { mode = 0666 } } ... script: -rwxrwxrwx 1 root wheel 580 23 Nov 17:14 /usr/sbin/quota-warning.sh* socket: [root at testfbsd ~]# ll /var/run/dovecot/quota-warning srw-rw-rw- 1 root wheel 0 23 Nov 17:06 /var/run/dovecot/quota-warning= Calling the 'quota-warning.sh' script from the console works: Nov 23 17:00:42 testfbsd dovecot: lda(admin at testfbsd.XXXXXXXXX.net): msgid=: saved mail to INBOX But when I force dovecot to call it with sending to much mails to the server, the following log comes up (which show, that dovecot at least wants to call the script :"Debug: quota: Executing warning: quota-warning 95 admin at testfbxxxxxxxxxxxxnet" in my understanding): (no further errors or messages about non existing sockets or wrong perms etc. comes up) ==> /var/log/maillog <== Nov 23 18:19:15 testfbsd sm-mta[75486]: STARTTLS=server, relay= mail-wi0-f196.google.com [209.85.212.196], version=TLSv1/SSLv3, verify=NOT, cipher=RC4-SHA, bits=128/128 Nov 23 18:19:15 testfbsd sm-mta[75486]: rANHJEOP075486: from=< jtxxxxxxxx at gmail.com>, size=288072, class=0, nrcpts=1, msgid=, proto=ESMTP, daemon=MTA, relay=mail-wi0-f196.google.com [209.85.212.196] ==> /var/log/debug.log <== Nov 23 18:19:17 testfbsd dovecot: lda: Debug: Loading modules from directory: /usr/iports/lib/dovecot Nov 23 18:19:17 testfbsd dovecot: lda: Debug: Module loaded: /usr/iports/lib/dovecot/lib10_quota_plugin.so Nov 23 18:19:17 testfbsd dovecot: auth: Debug: master in: USER 1 admin at testfbxxxxxxxxxxxxnet service=lda Nov 23 18:19:17 testfbsd dovecot: auth: Debug: passwd-file(admin at testfbxxxxxxxxxxxxnet): lookup: user=admin at testfbxxxxxxxxxxxxnet file=/etc/mail/mailuser Nov 23 18:19:17 testfbsd dovecot: auth: Debug: userdb out: USER 1 admin at testfbxxxxxxxxxxxxnet uid=1000 gid=1000 home=/home/admin at testfbxxxxxxxxxxxxnet quota_rule=*:storage=2M Nov 23 18:19:17 testfbsd dovecot: lda: Debug: auth input: admin at testfbxxxxxxxxxxxxnet uid=1000 gid=1000 home=/home/admin at testfbxxxxxxxxxxxxnet quota_rule=*:storage=2M Nov 23 18:19:17 testfbsd dovecot: lda: Debug: Added userdb setting: plugin/quota_rule=*:storage=2M Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Effective uid=1000, gid=1000, home=/home/admin at testfbxxxxxxxxxxxxnet Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota root: name=User quota backend=maildir args= Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota rule: root=User quota mailbox=* bytes=2097152 messages=0 Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota rule: root=User quota mailbox=Trash bytes=+10485760 messages=0 Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota rule: root=User quota mailbox=Deleted Messages bytes=+10485760 messages=0 Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota warning: bytes=1992294 (95%) messages=0 reverse=no command=quota-warning 95 admin at testfbxxxxxxxxxxxxnet Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota warning: bytes=1677721 (80%) messages=0 reverse=no command=quota-warning 80 admin at testfbxxxxxxxxxxxxnet Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota warning: bytes=1048576 (50%) messages=0 reverse=no command=quota-warning 50 admin at testfbxxxxxxxxxxxxnet Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota grace: root=User quota bytes=209715 (10%) Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/home/admin at testfbxxxxxxxxxxxxnet/mail Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: maildir++: root=/home/admin at testfbxxxxxxxxxxxxnet/mail, index=, indexpvt=, control=, inbox=/home/admin at testfbxxxxxxxxxxxxnet/mail, alt= Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota root: name=User quota backend=maildir args= Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota warning: bytes=0 (95%) messages=0 reverse=no command=quota-warning 95 raw mail user Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota warning: bytes=0 (80%) messages=0 reverse=no command=quota-warning 80 raw mail user Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota warning: bytes=0 (50%) messages=0 reverse=no command=quota-warning 50 raw mail user Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Quota grace: root=User quota bytes=0 (10%) Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: none: root=, index=, indexpvt=, control=, inbox=, alt= Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Destination address: admin at testfbxxxxxxxxxxxxnet (source: user at hostname) Nov 23 18:19:18 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: Namespace : Using permissions from /home/admin at testfbxxxxxxxxxxxxnet/mail: mode=0700 gid=default Nov 23 18:19:18 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): Debug: quota: Executing warning: quota-warning 95 admin at testfbxxxxxxxxxxxxnet ==> /var/log/maillog <== Nov 23 18:19:18 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): msgid=: saved mail to INBOX Nov 23 18:19:18 testfbsd sm-mta[75487]: rANHJEOP075486: to=, delay=00:00:03, xdelay=00:00:03, mailer=local, pri=318436, dsn=2.0.0, stat=Sent So, please advice, what I miss here! Thanks a lot! Kind regards, jimmy From andreas at cymail.eu Sat Nov 23 19:44:36 2013 From: andreas at cymail.eu (Andreas Kasenides) Date: Sat, 23 Nov 2013 19:44:36 +0200 Subject: [Dovecot] 2.2.9 In-Reply-To: <1385171257.4058.14.camel@tardis> References: <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net> <20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis> Message-ID: On 23-11-2013 3:47, Noel Butler wrote: > On Fri, 2013-11-22 at 10:14 +0100, Ralf Hildebrandt wrote: > >> * Thomas Leuxner : >> > * Ralf Hildebrandt 2013.11.22 09:44: >> > >> > > Which patch? >> > >> > http://www.dovecot.org/list/dovecot/2013-November/093654.html >> > >> > Pigeonhole related patches. >> >> Damn. Those are biting me as well :/ >> > > > These would be found if Timo reverted back to issuing RC's before any > official release, to iron out the niggly off-putting bugs, like most > software does, or gets his devs and a community of official testers > each > with wildly different configurations and set ups, ASF have an excellent > model that could be followed, bunch of devs and testers who each report > on different distros and configs, why? because no single dev can > imagine > and test every possible configuration. it might just save dovecot's > good name, I recall a lot of damage was done to that in the circles I'm > in when 2.0 was released with patches nearly every few days and weeks, > I > know a few ISP's and businesses that went back to courier or Wu's > because major bugs were getting in often, though it has been a lot > better since 2.1 series, until this release that is :) I second this and offer my services for two, three different system configs from Dovecot's plain old simple config with MAILDIR to slightly more complicated configurations with proxying/LDAP/dsync/mySQL etc based on virtualization with KVM. I also propose that upon employing above strategy that Timo should come up with a release cycles (long term, short term) with announced targets. Patches should be released as patches strictly as needed, not releases, and should be announced on a low traffic list like he is already doing with releases. OR something along these lines. I know these are growing pains but essential. Email systems are CRITICAL for most of us. Andreas From dovecot at vosslamber.nl Sat Nov 23 19:56:08 2013 From: dovecot at vosslamber.nl (Luuk) Date: Sat, 23 Nov 2013 18:56:08 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: References: <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net> <20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis> Message-ID: <5290EC38.5090805@vosslamber.nl> On 23-11-2013 18:44, Andreas Kasenides wrote: > On 23-11-2013 3:47, Noel Butler wrote: >> These would be found if Timo reverted back to issuing RC's before any >> official release, to iron out the niggly off-putting bugs, like most .... > I second this and offer my services for two, three different system What is the difference between a 'RC' and a new version? One should TEST this new version ALWAYS before using it in production (it does not matter if there was a 'RC' before it...) 2 cents.... ;) From andreas at cymail.eu Sat Nov 23 20:24:48 2013 From: andreas at cymail.eu (Andreas Kasenides) Date: Sat, 23 Nov 2013 20:24:48 +0200 Subject: [Dovecot] 2.2.9 In-Reply-To: <5290EC38.5090805@vosslamber.nl> References: " <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net>" <20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis> <5290EC38.5090805@vosslamber.nl> Message-ID: On 23-11-2013 19:56, Luuk wrote: > On 23-11-2013 18:44, Andreas Kasenides wrote: >> On 23-11-2013 3:47, Noel Butler wrote: >>> These would be found if Timo reverted back to issuing RC's before any >>> official release, to iron out the niggly off-putting bugs, like most > .... > >> I second this and offer my services for two, three different system > > What is the difference between a 'RC' and a new version? > > One should TEST this new version ALWAYS before using it in production > (it does not matter if there was a 'RC' before it...) > > 2 cents.... > > ;) RC means exactly what is says Release Client :) NOT a release. So if you get bitten by it then do not come here complaining. Most software go through several RCs before issuing a normal release. Most administrators have test systems that can test RCs for basic functionality and report here of any problems to be fixed. Some though jump into a new release when one is available. An RC should at least show the red flag raised. Andreas From lstone19 at stonejongleux.com Sat Nov 23 20:26:48 2013 From: lstone19 at stonejongleux.com (Larry Stone) Date: Sat, 23 Nov 2013 12:26:48 -0600 Subject: [Dovecot] 2.2.9 In-Reply-To: References: " <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net>" <20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis> <5290EC38.5090805@vosslamber.nl> Message-ID: <82F19314-85B7-4BDC-85F7-6E6D439E3633@stonejongleux.com> On Nov 23, 2013, at 12:24 PM, Andreas Kasenides wrote: > RC means exactly what is says Release Client :) NOT a release. Release Candidate, not Client. A candidate to be the final release unless a late bug is found. -- Larry Stone lstone19 at stonejongleux.com http://www.stonejongleux.com/ -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4160 bytes Desc: not available URL: From genie at geniechka.ru Sat Nov 23 21:08:15 2013 From: genie at geniechka.ru (Eugene) Date: Sat, 23 Nov 2013 23:08:15 +0400 Subject: [Dovecot] 2.2.9 In-Reply-To: References: " <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net>"<20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis><5290EC38.5090805@vosslamber.nl> Message-ID: <09942DC9F3FA4636ABF9ABA131B2E488@geniepc2011> Hi all, In recent years I use dovecot installed from FreeBSD ports. Interestingly, I feel that they follow the dovecot releases rather well but with some lag, e.g. currently it is at 2.2.6. I don't know if that is 'by design' or caused by lack of manpower, but it works pretty well in that problems usually get fixed before the update =) (And then again, nobody says you should install a new version on the release day). Also, I am not sure RCs as such would do much good, since most of the test systems are not likely to reproduce the volume and diversity of production workloads. Best wishes Eugene -----Original Message----- From: Andreas Kasenides Sent: Saturday, November 23, 2013 10:24 PM To: dovecot at dovecot.org Subject: Re: [Dovecot] 2.2.9 On 23-11-2013 19:56, Luuk wrote: > On 23-11-2013 18:44, Andreas Kasenides wrote: >> On 23-11-2013 3:47, Noel Butler wrote: >>> These would be found if Timo reverted back to issuing RC's before any >>> official release, to iron out the niggly off-putting bugs, like most > .... > >> I second this and offer my services for two, three different system > > What is the difference between a 'RC' and a new version? > > One should TEST this new version ALWAYS before using it in production > (it does not matter if there was a 'RC' before it...) > > 2 cents.... > > ;) RC means exactly what is says Release Client :) NOT a release. So if you get bitten by it then do not come here complaining. Most software go through several RCs before issuing a normal release. Most administrators have test systems that can test RCs for basic functionality and report here of any problems to be fixed. Some though jump into a new release when one is available. An RC should at least show the red flag raised. Andreas From srf at sanger.ac.uk Sat Nov 23 21:16:15 2013 From: srf at sanger.ac.uk (srf) Date: Sat, 23 Nov 2013 19:16:15 +0000 Subject: [Dovecot] 2.2.9 In-Reply-To: <09942DC9F3FA4636ABF9ABA131B2E488@geniepc2011> References: "\"\\\"" <20131122084414.GA10312@charite.de>" "<20131122085210.GA7384@nihlus.leuxner.net>\"<20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis><5290EC38.5090805@vosslamber.nl> " <09942DC9F3FA4636ABF9ABA131B2E488@geniepc2011> Message-ID: On 2013-11-23 19:08, Eugene wrote: > Also, I am not sure RCs as such would do much good, since most of the > test systems are not likely to reproduce the volume and diversity of > production workloads. Perhaps, then, a simple 'click for thumbs up' approach on the web site, to say "I have installed this version and it is working for me." It requires more input from the user base, but for the people who wait to make sure others find the bugs first, it would give confidence that this has happened. Simon. -- The Wellcome Trust Sanger Institute is operated by Genome Research Limited, a charity registered in England with number 1021457 and a company registered in England with number 2742969, whose registered office is 215 Euston Road, London, NW1 2BE. From h.reindl at thelounge.net Sat Nov 23 21:19:32 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Sat, 23 Nov 2013 20:19:32 +0100 Subject: [Dovecot] 2.2.9 In-Reply-To: <09942DC9F3FA4636ABF9ABA131B2E488@geniepc2011> References: <20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis> <5290EC38.5090805@vosslamber.nl> <09942DC9F3FA4636ABF9ABA131B2E488@geniepc2011> Message-ID: <5290FFC4.5060503@thelounge.net> Am 23.11.2013 20:08, schrieb Eugene: > In recent years I use dovecot installed from FreeBSD ports. Interestingly, I feel that they follow the dovecot > releases rather well but with some lag, e.g. currently it is at 2.2.6. I don't know if that is 'by design' or > caused by lack of manpower, but it works pretty well in that problems usually get fixed before the update =) > (And then again, nobody says you should install a new version on the release day). > > Also, I am not sure RCs as such would do much good, since most of the test systems are not likely to reproduce the > volume and diversity of production workloads. in general RCs are doing good for several reasons * confirm bugs in whatever patches flying around are confirmed to fix * verify that there are no show-stoppers * verify that patches flying around have no obvious regressions don't know what release exactly it was, but one of the last year simply broke TLS/SSL using dovecot as proxy in front of imap/pop3 * i saw the relase announce * built the RPM * installed it on my testserver * first connection-> segfault that are basics which should not happen in any release of whatever software well, that is why you should have test-setups for them before call yourself sysadmin and you do not need the production load to verify "thats broken" that there maybe other bugs only visible under load is a different story but bugs which are catched with a trivial test should not be in a release so yes, RCs are fine because they prevent a majority of users get hit by a regeression from a random patch solving whatever border case in the CVS which may make only a few people happy and bite most others that is why every serious software is using Beta/RC/Release they give people the chance to make tests *before* the release without need to compile each day the current CVS state -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From jtkoerting at gmail.com Sun Nov 24 15:36:12 2013 From: jtkoerting at gmail.com (Jimmy Koerting) Date: Sun, 24 Nov 2013 14:36:12 +0100 Subject: [Dovecot] quota warning by script fails In-Reply-To: References: Message-ID: Wow, ok, I finally solved this on my own. I just wanted to let anyone know, if one encounters a similar situation: The point was as simple as bad: The script called a command that just hang in my environment :/ With the fixed script, everything is fine ;) kind regards, jimmy Hello! > > I looked around all online resources I found, but I'm not able to find my > failure. So any help would be welcome! > > The problem arises with an dovecot 2.2.6 on a 9.2 FreeBSD RELEASE in a > jailed environment. I have the following config settings regarding quota > (which works in general, but just without calling the script): > > /etc/dovecot/conf.d/90-quota.conf: > ... > plugin { > quota_warning = storage=95%% quota-warning 95 %u > quota_warning2 = storage=80%% quota-warning 80 %u > } > > service quota-warning { > executable = script /usr/sbin/quota-warning.sh > unix_listener quota-warning { > mode = 0666 > } > } > ... > > > script: > -rwxrwxrwx 1 root wheel 580 23 Nov 17:14 /usr/sbin/quota-warning.sh* > > > socket: > [root at testfbsd ~]# ll /var/run/dovecot/quota-warning > srw-rw-rw- 1 root wheel 0 23 Nov 17:06 /var/run/dovecot/quota-warning= > > > > Calling the 'quota-warning.sh' script from the console works: > > Nov 23 17:00:42 testfbsd dovecot: lda(admin at testfbsd.XXXXXXXXX.net): > msgid=: saved mail to INBOX > > > But when I force dovecot to call it with sending to much mails to the > server, the following log comes up (which show, that dovecot at least wants > to call the script :"Debug: quota: Executing warning: quota-warning 95 > admin at testfbxxxxxxxxxxxxnet" in my understanding): (no further errors or > messages about non existing sockets or wrong perms etc. comes up) > > > ==> /var/log/maillog <== > Nov 23 18:19:15 testfbsd sm-mta[75486]: STARTTLS=server, relay= > mail-wi0-f196.google.com [209.85.212.196], version=TLSv1/SSLv3, > verify=NOT, cipher=RC4-SHA, bits=128/128 > Nov 23 18:19:15 testfbsd sm-mta[75486]: rANHJEOP075486: from=< > jtxxxxxxxx at gmail.com>, size=288072, class=0, nrcpts=1, > msgid=, > proto=ESMTP, daemon=MTA, relay=mail-wi0-f196.google.com [209.85.212.196] > > ==> /var/log/debug.log <== > Nov 23 18:19:17 testfbsd dovecot: lda: Debug: Loading modules from > directory: /usr/iports/lib/dovecot > Nov 23 18:19:17 testfbsd dovecot: lda: Debug: Module loaded: > /usr/iports/lib/dovecot/lib10_quota_plugin.so > Nov 23 18:19:17 testfbsd dovecot: auth: Debug: master in: USER 1 > admin at testfbxxxxxxxxxxxxnet service=lda > Nov 23 18:19:17 testfbsd dovecot: auth: Debug: > passwd-file(admin at testfbxxxxxxxxxxxxnet): lookup: > user=admin at testfbxxxxxxxxxxxxnet file=/etc/mail/mailuser > Nov 23 18:19:17 testfbsd dovecot: auth: Debug: userdb out: USER 1 > admin at testfbxxxxxxxxxxxxnet uid=1000 gid=1000 > home=/home/admin at testfbxxxxxxxxxxxxnet quota_rule=*:storage=2M > Nov 23 18:19:17 testfbsd dovecot: lda: Debug: auth input: > admin at testfbxxxxxxxxxxxxnet uid=1000 gid=1000 > home=/home/admin at testfbxxxxxxxxxxxxnet quota_rule=*:storage=2M > Nov 23 18:19:17 testfbsd dovecot: lda: Debug: Added userdb setting: > plugin/quota_rule=*:storage=2M > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Effective uid=1000, gid=1000, home=/home/admin at testfbxxxxxxxxxxxxnet > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota root: name=User quota backend=maildir args= > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota rule: root=User quota mailbox=* bytes=2097152 messages=0 > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota rule: root=User quota mailbox=Trash bytes=+10485760 messages=0 > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota rule: root=User quota mailbox=Deleted Messages bytes=+10485760 > messages=0 > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota warning: bytes=1992294 (95%) messages=0 reverse=no > command=quota-warning 95 admin at testfbxxxxxxxxxxxxnet > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota warning: bytes=1677721 (80%) messages=0 reverse=no > command=quota-warning 80 admin at testfbxxxxxxxxxxxxnet > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota warning: bytes=1048576 (50%) messages=0 reverse=no > command=quota-warning 50 admin at testfbxxxxxxxxxxxxnet > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota grace: root=User quota bytes=209715 (10%) > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, > list=yes, subscriptions=yes > location=maildir:/home/admin at testfbxxxxxxxxxxxxnet/mail > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: maildir++: root=/home/admin at testfbxxxxxxxxxxxxnet/mail, index=, > indexpvt=, control=, inbox=/home/admin at testfbxxxxxxxxxxxxnet/mail, alt= > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota root: name=User quota backend=maildir args= > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota warning: bytes=0 (95%) messages=0 reverse=no > command=quota-warning 95 raw mail user > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota warning: bytes=0 (80%) messages=0 reverse=no > command=quota-warning 80 raw mail user > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota warning: bytes=0 (50%) messages=0 reverse=no > command=quota-warning 50 raw mail user > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Quota grace: root=User quota bytes=0 (10%) > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: none: root=, index=, indexpvt=, control=, inbox=, alt= > Nov 23 18:19:17 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Destination address: admin at testfbxxxxxxxxxxxxnet (source: > user at hostname) > Nov 23 18:19:18 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: Namespace : Using permissions from /home/admin at testfbxxxxxxxxxxxxnet/mail: > mode=0700 gid=default > Nov 23 18:19:18 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > Debug: quota: Executing warning: quota-warning 95 > admin at testfbxxxxxxxxxxxxnet > > ==> /var/log/maillog <== > Nov 23 18:19:18 testfbsd dovecot: lda(admin at testfbxxxxxxxxxxxxnet): > msgid=: > saved mail to INBOX > Nov 23 18:19:18 testfbsd sm-mta[75487]: rANHJEOP075486: > to=, delay=00:00:03, xdelay=00:00:03, > mailer=local, pri=318436, dsn=2.0.0, stat=Sent > > > > So, please advice, what I miss here! Thanks a lot! > > Kind regards, > jimmy > > From jann at thejh.net Sun Nov 24 08:05:45 2013 From: jann at thejh.net (Jann Horn) Date: Sun, 24 Nov 2013 07:05:45 +0100 Subject: [Dovecot] dovecot patch: do scanf correctly Message-ID: <20131124060545.GC2947@debjann.fritz.box> As far as I can tell, there are two places in which dovecot does not use scanf properly. This patch should fix that. -------------------------------------------------------------------------------- diff -r 8a3d0426f514 src/lib-dns/dns-lookup.c --- a/src/lib-dns/dns-lookup.c Sat Nov 23 23:22:09 2013 +0000 +++ b/src/lib-dns/dns-lookup.c Sun Nov 24 06:30:12 2013 +0100 @@ -102,7 +102,7 @@ } /* first line: */ if (sscanf(line, "%d %u", &result->ret, - &result->ips_count) == 0) + &result->ips_count) != 2) return -1; if (result->ret != 0) { result->error = net_gethosterror(result->ret); diff -r 8a3d0426f514 src/lib-settings/settings.c --- a/src/lib-settings/settings.c Sat Nov 23 23:22:09 2013 +0000 +++ b/src/lib-settings/settings.c Sun Nov 24 06:30:12 2013 +0100 @@ -44,7 +44,7 @@ { int num; - if (!sscanf(value, "%i", &num) || num < 0) + if (sscanf(value, "%i", &num) != 1 || num < 0) return t_strconcat("Invalid number: ", value, NULL); *result = num; return NULL; -------------------------------------------------------------------------------- Specifically, both invocations disregard that sscanf("", "%d", &num) and similar make sscanf return EOF (-1 on my system) and the first invocation also does not account for the case that the second argument is not matched. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: Digital signature URL: From gareth at acsdata.co.nz Sun Nov 24 23:55:54 2013 From: gareth at acsdata.co.nz (Gareth Palmer) Date: Mon, 25 Nov 2013 10:55:54 +1300 Subject: [Dovecot] [PATCH] lib-sql/driver-mysql.c - Add support for enabling MYSQL_OPT_SSL_VERIFY_SERVER_CERT In-Reply-To: References: <1385073316.2545.36.camel@bad-dog> <20131122072206.GB28106@sys4.de> Message-ID: <1385330154.2585.7.camel@bad-dog> On Fri, 2013-11-22 at 13:52 +0200, Timo Sirainen wrote: > On 22.11.2013, at 9.22, Patrick Ben Koetter

wrote: > > > * Timo Sirainen : > >> On 22.11.2013, at 0.35, Gareth Palmer wrote: > >> > >>> The following patch adds support for enabling > >>> MYSQL_OPT_SSL_VERIFY_SERVER_CERT. > >>> > >>> It makes the mysql client library check that the commonName in the > >>> server's SSL certificate matches the host name provided to > >>> mysql_real_connect() and aborts the connection if the name doesn't > >>> match. > >> > >> If someone goes through the trouble of using SSL with MySQL .. should this > >> even be optional? I guess I shouldn?t break any v2.2 installations even > >> accidentally, but for v2.3 I don?t really see any point of not having this > >> enabled unconditionally. > > > > It should be optional or it will break other running systems when the > > update/upgrade. > > But perhaps it should break (in v2.3.0)? Otherwise it?s not really running securely anyway. At least the default should be to verify the cert. Attached is revised patch the defaults to verifying the cert. -------------- next part -------------- A non-text attachment was scrubbed... Name: ssl-verify-server-cert-20131120.patch Type: text/x-patch Size: 4615 bytes Desc: not available URL: From tss at iki.fi Mon Nov 25 02:27:57 2013 From: tss at iki.fi (Timo Sirainen) Date: Mon, 25 Nov 2013 02:27:57 +0200 Subject: [Dovecot] v2.2.9 released Message-ID: <0B57B8E1-1802-47B9-B2BE-D6DABE2546E0@iki.fi> http://dovecot.org/releases/2.2/dovecot-2.2.9.tar.gz http://dovecot.org/releases/2.2/dovecot-2.2.9.tar.gz.sig + Full text search indexing can now be done automatically after saving/copying mails by setting plugin { fts_autoindex=yes } + replicator: Added replication_dsync_parameters setting to pass "doveadm sync" parameters (for controlling what to replicate). + Added mail-filter plugin + Added liblzma/xz support (zlib_save=xz) - v2.2.8's improved cache file handling exposed several old bugs related to fetching mail headers. - v2.2.7's iostream handling changes were causing some connections to be disconnected before flushing their output (e.g. POP3 logout message wasn't being sent) From jouko.nikula at iki.fi Mon Nov 25 04:36:39 2013 From: jouko.nikula at iki.fi (Jouko Nikula) Date: Mon, 25 Nov 2013 09:36:39 +0700 Subject: [Dovecot] Checkpassword interface for custom password check and home mounting Message-ID: Hi, I'm trying to use the checkpassword interface to do a password check and if the check succeeds I mount the user home directory (including mail) using the users login password and uid. My password check seems to work, but when I add the home directory mounting things seem to stop. Dovecot never logs the result of the password check and nothing happens until the client gets bored and tries again. I added trace to the dovecot's checkpassword-reply and I see that it's really executed, it writes the reply and returns 0 for successful authentication. My dovecot version is 2.1.7. My checkpassword is a setuid binary and the mount is a self made fuse-fs. Any ideas what happens? Are there better ways to do this? Thanks, - Jouko From jlbrown at bordo.com.au Mon Nov 25 05:45:43 2013 From: jlbrown at bordo.com.au (James Brown) Date: Mon, 25 Nov 2013 14:45:43 +1100 Subject: [Dovecot] [Dovecot-news] v2.2.9 released In-Reply-To: <0B57B8E1-1802-47B9-B2BE-D6DABE2546E0@iki.fi> References: <0B57B8E1-1802-47B9-B2BE-D6DABE2546E0@iki.fi> Message-ID: Sorry for such a basic question, but how exactly do I turn this on? I get this error: doveconf: Fatal: Error in configuration file /usr/local/etc/dovecot/dovecot.conf line 91: Garbage after '{' if I put plugin {fts_autoindex = yes} in dovecot.conf. Is this where I should put it? Is there anything else I need to enter? Thanks, James. On 25 Nov 2013, at 11:27 am, Timo Sirainen wrote: > + Full text search indexing can now be done automatically after > saving/copying mails by setting plugin { fts_autoindex=yes } -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 6614 bytes Desc: not available URL: From jonikula at gmail.com Mon Nov 25 05:50:41 2013 From: jonikula at gmail.com (Jouko Nikula) Date: Mon, 25 Nov 2013 10:50:41 +0700 Subject: [Dovecot] Checkpassword interface for custom password check and home mounting Message-ID: Hi, I'm trying to use the checkpassword interface to do a password check and if the check succeeds I mount the user home directory (including mail) using the users login password and uid. Things work well if I do the mount manually, but when I add the home directory mounting to checkpassword things seem to stop. Dovecot logs the result of the password check, but doesn't send the result to client. Here's the log: Nov 25 10:32:05 jlaptop dovecot: auth: Debug: Loading modules from directory: /usr/lib/dovecot/modules/auth Nov 25 10:32:05 jlaptop dovecot: auth: Debug: auth client connected (pid=27551) Nov 25 10:32:05 jlaptop dovecot: auth: Debug: client in: AUTH#0111#011PLAIN#011service=imap#011secured#011session=8HsMAvjrvgB/AAAB#011lip=127.0.0.1#011rip=127.0.0.1#011lport=143#011rport=39614 Nov 25 10:32:05 jlaptop dovecot: auth: Debug: client out: CONT#0111#011 Nov 25 10:32:05 jlaptop dovecot: auth: Debug: client in: CONT Nov 25 10:32:05 jlaptop dovecot: auth: Debug: checkpassword(jouko.nikula,127.0.0.1,<8HsMAvjrvgB/AAAB>): execute: /usr/sbin/gpgfusemount /usr/lib/dovecot/checkpassword-reply Nov 25 10:32:05 jlaptop dovecot: auth: Debug: checkpassword(jouko.nikula,127.0.0.1,<8HsMAvjrvgB/AAAB>): exit_status=0 My dovecot version is 2.1.7. My checkpassword is a setuid binary and the mount is a self made fuse-fs. Any ideas what happens? Are there better ways to do this? Thanks, - Jouko From hendry at dabase.com Mon Nov 25 05:57:01 2013 From: hendry at dabase.com (Kai Hendry) Date: Mon, 25 Nov 2013 11:57:01 +0800 Subject: [Dovecot] Checkpassword interface for custom password check and home mounting In-Reply-To: References: Message-ID: <20131125035700.GB3743@sg.webconverger.com> On Mon, Nov 25, 2013 at 09:36:39AM +0700, Jouko Nikula wrote: > I'm trying to use the checkpassword interface to do a password check and if > the check succeeds I mount the user home directory (including mail) using > the users login password and uid. May I ask why you mount the user directory? Couldn't it just be already mounted and you simply use the PAM interface? passdb { driver = pam } userdb { driver = passwd } From hendry at dabase.com Mon Nov 25 06:02:58 2013 From: hendry at dabase.com (Kai Hendry) Date: Mon, 25 Nov 2013 12:02:58 +0800 Subject: [Dovecot] v2.2.9 released In-Reply-To: <0B57B8E1-1802-47B9-B2BE-D6DABE2546E0@iki.fi> References: <0B57B8E1-1802-47B9-B2BE-D6DABE2546E0@iki.fi> Message-ID: <20131125040258.GC3743@sg.webconverger.com> On Mon, Nov 25, 2013 at 02:27:57AM +0200, Timo Sirainen wrote: > + Added mail-filter plugin The URL on http://master.wiki2.dovecot.org/Plugins incorrectly points to http://master.wiki2.dovecot.org/Plugins/MailLog instead of http://master.wiki2.dovecot.org/Plugins/MailFilter Be good if you had a wiki with a git interface. From gedalya at gedalya.net Mon Nov 25 06:08:45 2013 From: gedalya at gedalya.net (Gedalya) Date: Sun, 24 Nov 2013 23:08:45 -0500 Subject: [Dovecot] [Dovecot-news] v2.2.9 released In-Reply-To: References: <0B57B8E1-1802-47B9-B2BE-D6DABE2546E0@iki.fi> Message-ID: <5292CD4D.6090804@gedalya.net> Maybe you didn't load the fts plugin? Please see http://wiki2.dovecot.org/Plugins/FTS and http://wiki2.dovecot.org/Plugins/FTS/Solr Basically, plugins are loaded in the mail_plugins option, so you should have a line like: mail_plugins = fts fts_solr .. On 11/24/2013 10:45 PM, James Brown wrote: > Sorry for such a basic question, but how exactly do I turn this on? > > I get this error: > > doveconf: Fatal: Error in configuration file /usr/local/etc/dovecot/dovecot.conf line 91: Garbage after '{' > > if I put > > plugin {fts_autoindex = yes} > > in dovecot.conf. > > Is this where I should put it? > > Is there anything else I need to enter? > > Thanks, > > James. > > On 25 Nov 2013, at 11:27 am, Timo Sirainen wrote: > >> + Full text search indexing can now be done automatically after >> saving/copying mails by setting plugin { fts_autoindex=yes } > From jouko.nikula at iki.fi Mon Nov 25 06:46:20 2013 From: jouko.nikula at iki.fi (Jouko Nikula) Date: Mon, 25 Nov 2013 11:46:20 +0700 Subject: [Dovecot] Checkpassword interface for custom password check and home mounting In-Reply-To: <20131125035700.GB3743@sg.webconverger.com> References: <20131125035700.GB3743@sg.webconverger.com> Message-ID: On Mon, Nov 25, 2013 at 10:57 AM, Kai Hendry wrote: > May I ask why you mount the user directory? Couldn't it just be already > mounted and you simply use the PAM interface? First of all, sorry about the double post. Yes I believe I could use the PAM interface. It looks more suitable to this. I will look into it. Thanks for pointing me to right direction! From marc at perkel.com Mon Nov 25 07:55:20 2013 From: marc at perkel.com (Marc Perkel) Date: Sun, 24 Nov 2013 21:55:20 -0800 Subject: [Dovecot] v2.2.9 released In-Reply-To: <0B57B8E1-1802-47B9-B2BE-D6DABE2546E0@iki.fi> References: <0B57B8E1-1802-47B9-B2BE-D6DABE2546E0@iki.fi> Message-ID: <5292E648.5080107@perkel.com> Well, it's not crashing like 2.2.8 did. So far so good after 10 minutes. :) On 11/24/2013 4:27 PM, Timo Sirainen wrote: > http://dovecot.org/releases/2.2/dovecot-2.2.9.tar.gz > http://dovecot.org/releases/2.2/dovecot-2.2.9.tar.gz.sig > > + Full text search indexing can now be done automatically after > saving/copying mails by setting plugin { fts_autoindex=yes } > + replicator: Added replication_dsync_parameters setting to pass > "doveadm sync" parameters (for controlling what to replicate). > + Added mail-filter plugin > + Added liblzma/xz support (zlib_save=xz) > - v2.2.8's improved cache file handling exposed several old bugs > related to fetching mail headers. > - v2.2.7's iostream handling changes were causing some connections > to be disconnected before flushing their output (e.g. POP3 logout > message wasn't being sent) > > > > From me at junc.eu Mon Nov 25 09:42:35 2013 From: me at junc.eu (Benny Pedersen) Date: Mon, 25 Nov 2013 08:42:35 +0100 Subject: [Dovecot] v2.2.9 released In-Reply-To: <20131125040258.GC3743@sg.webconverger.com> References: <0B57B8E1-1802-47B9-B2BE-D6DABE2546E0@iki.fi> <20131125040258.GC3743@sg.webconverger.com> Message-ID: Kai Hendry skrev den 2013-11-25 05:02: > Be good if you had a wiki with a git interface. Timo is not using git, it would be more productive to make trac webpage it suppots hg as well as all other problems :) http://trac.edgewall.org/ From skdovecot at smail.inf.fh-brs.de Mon Nov 25 09:49:27 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 25 Nov 2013 08:49:27 +0100 (CET) Subject: [Dovecot] postfix and dovecot - no emails in new folder In-Reply-To: <528F7EBD.8000109@gmail.com> References: <528EC884.80207@gmail.com> <528F7EBD.8000109@gmail.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 22 Nov 2013, Don Hill wrote: > Yes. I am logged in as root and performing a ls -la /var/vmail/domain I see > the following > > folder - user - This file actually contains the emails sent to the account > > folder - user at domain.tld - and in the Maildir folder I see the following > cd into user at domain.tld/Maildir > ls > cur > dovecot-uidlist > dovecot-uidvalidity > dovecot-uidvalidity.528f6c45 > dovecot.index.log > new > tmp So postfix and Dovecot disagree about the mail storage of the accounts, either: 1) reconfigure postfix to deliver message to Maildir in /var/vmail/domain/user at domain.tld, or 2) reconfigure postfix to use Dovecot LDA or LMTP, or 3) reconfigure Dovecot to use mbox:/var/vmail/domain/user as INBOX, but /var/vmail/domain/user at domain.tld/Maildir for mail home. > >> Steffen Kaiser >> November 22, 2013 8:36 AM >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> On Thu, 21 Nov 2013, Don Hill wrote: >> >> >> Are you sure, postfix delivers to the maildir of Dovecot? I would >> reconfigure Postfix to use Dovecot LDA or LMTP. >> >> - -- Steffen Kaiser >> -----BEGIN PGP SIGNATURE----- >> Version: GnuPG v1.4.11 (GNU/Linux) >> >> iQEVAwUBUo9r2V3r2wJMiz2NAQIouggAxi89bQaDsGiLOfT/DwDWEwpM6M7LjwPS >> koNcmgn1DAsm3OGhwn57dvrA3uvs7ot8gt25iwca/kf4XKHzKdWWnbWq3LO0oME+ >> EWREF6NJOs5OUXhd26sUpw09QxCITP2gg1hl34j0MwTRMdJyycl5BAg3jrK1A9Ji >> 5U0MhMXaKd+7P6BBbe47+PnQR4Rfy+fLdjKy1E0wSnP/xsrx/tK0FeSF9Ewf0FMJ >> FuFj8M5HQiixNrfjUATBnoVtvdWkjtI2ttU427Mm0ESHHkzPTdz3GlX/FWT7DZhH >> SsILyGgTXojcGXXP5vMluqxQmjscfMoBGrcuXpP7QlK8zNwgYZZMxA== >> =Dxa6 >> -----END PGP SIGNATURE----- >> Don Hill >> November 21, 2013 8:59 PM >> Hi. >> >> I am working on setting up Dovecot v2.0.9 and postfix 2.6.6 on centos >> 6.4. I have postfix configured with dovecot using virtual users. Everything >> seems to be working with the exception of no emails being delivered to the >> Maildir/new folder. If I touch a file into that folder then the file gets >> delivered to the email client using imap. >> >> I can also send email from the client with no problems. In fact if I look >> at the logs postfix says the email was delivered to the mailbox. >> >> postfix/virtual[27270]: 8652F35C38A8: to=, relay=virtual, >> delay=0.11, delays=0.1/0.01/0/0, dsn=2.0.0, status=sent (delivered to >> mailbox)$ >> >> Here is my dovecot -n output >> >> *doveconf: Warning: NOTE: You can get a new clean config file with: >> doveconf -n > dovecot-new.conf** >> **doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:85: >> protocol { ssl_listen } has been replaced by service { inet_listener { >> address } }** >> **# OS: Linux 2.6.32-042stab079.6 x86_64 CentOS release 6.4 (Final) >> reiserfs** >> **auth_mechanisms = plain login** >> **default_login_user = vmail** >> **first_valid_gid = 5000** >> **first_valid_uid = 5000** >> **listen = *** >> **mail_access_groups = vmail** >> **mail_location = maildir:/var/vmail/%d/%u/Maildir** >> **mbox_write_locks = fcntl** >> **passdb {** >> ** args = scheme=SHA1 /etc/dovecot/passwd** >> ** driver = passwd-file** >> **}** >> **protocols = imap pop3** >> **service auth {** >> ** unix_listener auth-client {** >> ** group = postfix** >> ** mode = 0660** >> ** user = postfix** >> ** }** >> ** user = root** >> **}** >> **service imap-login {** >> ** inet_listener imaps {** >> ** address = *** >> ** }** >> ** process_min_avail = 1** >> ** user = vmail** >> **}** >> **service pop3-login {** >> ** inet_listener pop3s {** >> ** address = *** >> ** }** >> **}** >> **ssl_cert = > **ssl_key = > **userdb {** >> ** args = uid=5000 gid=5000 home=/var/vmail/%d/%u allow_all_users=yes** >> ** driver = static** >> **}* >> >> >> Any thoughts? > - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUpMBB13r2wJMiz2NAQIaWggArtX/+f+RDztDv7u/By5JCQlpsctV83LS EI69ZiYIFVbHlr8XH1ZDXF9ORbSmU2QJCcYGBwwrpam6X2SdiPD/NkQxwr5pFW01 6AwPRN7pHlJ0nFHwH6OwdP4BCezn3kHUSVdHBHBVMniOVBDou8QUCNrMiSYOHq5z 11AvrshM4fvzes08cuwZ2nJDPiZvf7vDpa7S1bFJR4fi02KBY8a41XwTkqOh8uDL J7hnpdPKmskmrZdNpjL5cacVMcLUexKLiJ6+viGx+uMcA817fm1LQ7sebg0PHm9u NHAJup15oChQvrG5qnYyH0GdW+tGXxUtOFlXApuIXtXsUh757mrvpg== =LZKd -----END PGP SIGNATURE----- From hendry at dabase.com Mon Nov 25 10:00:44 2013 From: hendry at dabase.com (Kai Hendry) Date: Mon, 25 Nov 2013 16:00:44 +0800 Subject: [Dovecot] postfix and dovecot - no emails in new folder In-Reply-To: <528EC884.80207@gmail.com> References: <528EC884.80207@gmail.com> Message-ID: <20131125080044.GA18542@sg.webconverger.com> You probably need to set dovecot as the Local Delivery Agent, like so: $ grep mailbox /etc/postfix/main.cf mailbox_command = /usr/lib/dovecot/deliver From raabe at froglogic.com Mon Nov 25 10:53:14 2013 From: raabe at froglogic.com (Frerich Raabe) Date: Mon, 25 Nov 2013 09:53:14 +0100 Subject: [Dovecot] =?utf-8?q?Zlib_plugin_-_when_does_it_make_sense=3F?= Message-ID: Hi, I run a small IMAP server for a dozen guys in the office, serving about 55GB of Maildir. I recently became aware of the Zlib plugin ( http://wiki2.dovecot.org/Plugins/Zlib ) and wondered 1. given that there is about zero CPU load on my IMAP server, is enabling the plugin a no-brainer or are there other things (except CPU load) to consider? 2. For enabling the plugin, I suppose you compress all the existing mail just once and then add 'zlib' to mail_plugins in order to have all future incoming mail saved? Any insight by people familiar with the plugin would be much appreciated - thanks! -- Frerich Raabe - raabe at froglogic.com www.froglogic.com - Multi-Platform GUI Testing From debian.roxx at gmail.com Mon Nov 25 11:19:54 2013 From: debian.roxx at gmail.com (Sylvain) Date: Mon, 25 Nov 2013 10:19:54 +0100 Subject: [Dovecot] Problem with Thunderbird and mailbox with SPECIAL-USE flag Message-ID: Hi ! I have an old Courier IMAP and in front of it, I have put a proxy cache with the great Dovecot. SOGo webmail is connected to the proxy and works great (very very more fast) but I have a problem with Thunderbird : mailbox with ? SPECIAL USE ? aren't automatically detected. To make that works, I must : - in Dovecot : define the namespace inbox : ? prefix = ? and ? separator = . ? - in Thunderbird : force in the account, the personal namespace to "INBOX." and untick ? Allow server to exceed namespace ? (sorry : personal translation :D). If I define in the namespace inbox as the dovecot wiki said : ? prefix = INBOX. ? and ? separator = . ?, TB see a sub-folder INBOX and mailbox with special use aren't automatically detected. :-( I must have forgotten a parameter in my Dovecot configuration but I don't see it.. Can you have a look please ? Here my configuration : # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.2 auth_debug_passwords = yes auth_mechanisms = plain login disable_plaintext_auth = no first_valid_uid = 100 imapc_host = xxxxxx mail_gid = imapproxy mail_home = /var/local/cache/dovecot/%1Mu/%1.1Mu/%u mail_location = imapc:~/imapc mail_uid = imapproxy namespace inbox { inbox = yes list = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = separator = . type = private } passdb { args = host=xxxxxx port=143 default_fields = userdb_imapc_user=%u userdb_imapc_password=%w driver = imap } protocols = imap ssl_cert = Hi, i would ask you a question about a particular dovecot configuration. I would like to have in INBOX folder some emails (e.g email with a header key). The same emails i would like to have into the folders, under INBOX, create by users. How can i do? Thanks Paolo From aellert at numeezy.com Mon Nov 25 13:50:02 2013 From: aellert at numeezy.com (Alexandre Ellert) Date: Mon, 25 Nov 2013 12:50:02 +0100 Subject: [Dovecot] prohibit deletion of Junk folder Message-ID: Hi, I have an issue with a sieve_before rule (the script move incoming email to Junk folder when DMARC=fail and policy is quarantine) because one of my user delete his Junk folder : dovecot: lda(myuser at domain.com): Error: sieve: execution of script /etc/dovecot/sieve_before/01-dmarc-fail.sieve failed, but implicit keep was successful: 1 Time(s) dovecot: lda(myuser at domain.com): Error: sieve: msgid=<20131124212217.5F346580D49 at anotherdomain.com>: failed to store into mailbox 'Junk': Mailbox doesn't exist: Junk: 1 Time(s) How can I do to prohibit the deletion of Junk folder by end users ? Tell me if you need 'dovecot -n' and thanks for your advices. Alexandre. From tom at whyscream.net Mon Nov 25 14:01:37 2013 From: tom at whyscream.net (Tom Hendrikx) Date: Mon, 25 Nov 2013 13:01:37 +0100 Subject: [Dovecot] prohibit deletion of Junk folder In-Reply-To: References: Message-ID: <52933C21.6090201@whyscream.net> On 11/25/2013 12:50 PM, Alexandre Ellert wrote: > Hi, > > I have an issue with a sieve_before rule (the script move incoming email to Junk folder when DMARC=fail and policy is quarantine) because one of my user delete his Junk folder : > > dovecot: lda(myuser at domain.com): Error: sieve: execution of script /etc/dovecot/sieve_before/01-dmarc-fail.sieve failed, but implicit keep was successful: 1 Time(s) > dovecot: lda(myuser at domain.com): Error: sieve: msgid=<20131124212217.5F346580D49 at anotherdomain.com>: failed to store into mailbox 'Junk': Mailbox doesn't exist: Junk: 1 Time(s) > > How can I do to prohibit the deletion of Junk folder by end users ? > Tell me if you need 'dovecot -n' and thanks for your advices. > > Alexandre. > Can't you make sieve re-create the folder when it's missing? Simply set lda_mailbox_autocreate=yes if you use dovecot lDA, and/or use 'fileinto :create "Junk";' in the sieve script. Regards, Tom -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 901 bytes Desc: OpenPGP digital signature URL: From ghilt at shadowprojects.org Mon Nov 25 14:17:22 2013 From: ghilt at shadowprojects.org (Guillaume Hilt) Date: Mon, 25 Nov 2013 13:17:22 +0100 Subject: [Dovecot] Dovecot 2.2.7/2.2.8 failing to call dspam with antispam Message-ID: <52933FD2.20209@shadowprojects.org> Hello again, I'm running Gentoo AMD64 2013 with postfix, mysql, dovecot and dspam : dovecot 2.2.8 (it was working fine with 2.2.6 after doing a chmod 4511 on dspam binary), dspam 3.10.2-r1 and dovecot-antispam-2.0_pre20130429 (recompiled after each dovecot upgrade). I've set dspam to debug, and mail_debug to yes. uid 1001 is user vmail (dovecot is running under vmail) gid 12 is group mail (vmail is a member, with mail,postfix,dspam,dovecot,apache) All the necessary users are trusted in dspam configuration. Here's my plugin settings : antispam_verbose_debug = 1 antispam_debug_target = syslog antispam_backend = dspam antispam_allow_append_to_spam = NO antispam_skip_from_line = NO antispam_spam = Spam antispam_trash = Trash antispam_signature = X-DSPAM-Signature antispam_signature_missing = error antispam_dspam_binary = /usr/bin/dspam antispam_dspam_args = --user;%u;--deliver=;--source=error;--signature=%%s antispam_dspam_spam = --class=spam antispam_dspam_notspam = --class=innocent antispam_dspam_result_header = X-DSPAM-Result When i'm moving an email to the dspam folder, Thunderbird throw me an error : Failed to call dspam (email is dropped in the Spam folder anyway, but a copy stay on my INBOX) ==> /var/log/mail/mail/log <== Nov 25 13:01:04 srv1 dovecot: imap: Debug: Loading modules from directory: /usr/lib64/dovecot Nov 25 13:01:04 srv1 dovecot: imap: Debug: Module loaded: /usr/lib64/dovecot/lib90_antispam_plugin.so Nov 25 13:01:04 srv1 dovecot: imap: Debug: Added userdb setting: plugin/maildir=shadowprojects.org/ghilt/ Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: Effective uid=1001, gid=12, home=/home/vmail/shadowprojects.org/ghilt/ Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/home/vmail/shadowprojects.org/ghilt/.maildir Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: maildir++: root=/home/vmail/shadowprojects.org/ghilt/.maildir, index=, indexpvt=, control=, inbox=/home/vmail/shadowprojects.org/ghilt/.maildir, alt= Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: Namespace : Using permissions from /home/vmail/shadowprojects.org/ghilt/.maildir: mode=0770 gid=default Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: dspam error:29764 prefix=imap(ghilt at shadowprojects.org): Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: executing /usr/bin/dspam failed: 13 (uid=1001, gid=12) Nov 25 13:01:04 srv1 dovecot: imap: Error: Nov 25 13:01:04 srv1 dovecot: imap: Error: ==> /var/log/dspam/dspam.debug <== 9976: [11/25/2013 13:12:23] DSPAM Instance Startup 9976: [11/25/2013 13:12:23] input args: /usr/bin/dspam --user ghilt at shadowprojects.org --deliver= --source=error --signature=89,52900600118151560172939 --class=spam 9976: [11/25/2013 13:12:23] pass-thru args: 9976: [11/25/2013 13:12:23] processing user ghilt at shadowprojects.org 9976: [11/25/2013 13:12:23] uid = 1001, euid = 0, gid = 12, egid = 12 9976: [11/25/2013 13:12:23] loading preferences for user ghilt at shadowprojects.org ... 9976: [11/25/2013 13:06:08] DSPAM Instance Shutdown. Exit Code: 99 9976: [11/25/2013 13:06:08] process_users() failed on error 9 If i try to call dspam like this, it works : sudo -u vmail /usr/bin/dspam --source=error --class=spam --signature=4be87a9f953248352114216 --client --user vmail Any idea ? Thanks, -- Guillaume Hilt From tom at whyscream.net Mon Nov 25 14:39:33 2013 From: tom at whyscream.net (Tom Hendrikx) Date: Mon, 25 Nov 2013 13:39:33 +0100 Subject: [Dovecot] Dovecot 2.2.7/2.2.8 failing to call dspam with antispam In-Reply-To: <52933FD2.20209@shadowprojects.org> References: <52933FD2.20209@shadowprojects.org> Message-ID: <52934505.20603@whyscream.net> On 11/25/2013 01:17 PM, Guillaume Hilt wrote: > Hello again, > > I'm running Gentoo AMD64 2013 with postfix, mysql, dovecot and dspam : > dovecot 2.2.8 (it was working fine with 2.2.6 after doing a chmod 4511 > on dspam binary), dspam 3.10.2-r1 and dovecot-antispam-2.0_pre20130429 > (recompiled after each dovecot upgrade). > > I've set dspam to debug, and mail_debug to yes. > > uid 1001 is user vmail (dovecot is running under vmail) > gid 12 is group mail (vmail is a member, with > mail,postfix,dspam,dovecot,apache) > All the necessary users are trusted in dspam configuration. > > Here's my plugin settings : > antispam_verbose_debug = 1 > antispam_debug_target = syslog > antispam_backend = dspam > antispam_allow_append_to_spam = NO > antispam_skip_from_line = NO > antispam_spam = Spam > antispam_trash = Trash > antispam_signature = X-DSPAM-Signature > antispam_signature_missing = error > antispam_dspam_binary = /usr/bin/dspam > antispam_dspam_args = --user;%u;--deliver=;--source=error;--signature=%%s Configured to use the mail recipient > antispam_dspam_spam = --class=spam > antispam_dspam_notspam = --class=innocent > antispam_dspam_result_header = X-DSPAM-Result > > When i'm moving an email to the dspam folder, Thunderbird throw me an > error : Failed to call dspam (email is dropped in the Spam folder > anyway, but a copy stay on my INBOX) > > ==> /var/log/mail/mail/log <== > Nov 25 13:01:04 srv1 dovecot: imap: Debug: Loading modules from > directory: /usr/lib64/dovecot > Nov 25 13:01:04 srv1 dovecot: imap: Debug: Module loaded: > /usr/lib64/dovecot/lib90_antispam_plugin.so > Nov 25 13:01:04 srv1 dovecot: imap: Debug: Added userdb setting: > plugin/maildir=shadowprojects.org/ghilt/ > Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: > Effective uid=1001, gid=12, home=/home/vmail/shadowprojects.org/ghilt/ > Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: > Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, > list=yes, subscriptions=yes > location=maildir:/home/vmail/shadowprojects.org/ghilt/.maildir > Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: > maildir++: root=/home/vmail/shadowprojects.org/ghilt/.maildir, index=, > indexpvt=, control=, > inbox=/home/vmail/shadowprojects.org/ghilt/.maildir, alt= > Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: > Namespace : Using permissions from > /home/vmail/shadowprojects.org/ghilt/.maildir: mode=0770 gid=default > Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: > dspam error:29764 prefix=imap(ghilt at shadowprojects.org): > Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: > executing /usr/bin/dspam failed: 13 (uid=1001, gid=12) > Nov 25 13:01:04 srv1 dovecot: imap: Error: > Nov 25 13:01:04 srv1 dovecot: imap: Error: > > ==> /var/log/dspam/dspam.debug <== > 9976: [11/25/2013 13:12:23] DSPAM Instance Startup > 9976: [11/25/2013 13:12:23] input args: /usr/bin/dspam --user > ghilt at shadowprojects.org --deliver= --source=error > --signature=89,52900600118151560172939 --class=spam Called using the mail recipient > 9976: [11/25/2013 13:12:23] pass-thru args: > 9976: [11/25/2013 13:12:23] processing user ghilt at shadowprojects.org > 9976: [11/25/2013 13:12:23] uid = 1001, euid = 0, gid = 12, egid = 12 > 9976: [11/25/2013 13:12:23] loading preferences for user > ghilt at shadowprojects.org > ... > 9976: [11/25/2013 13:06:08] DSPAM Instance Shutdown. Exit Code: 99 > 9976: [11/25/2013 13:06:08] process_users() failed on error 9 > > If i try to call dspam like this, it works : > sudo -u vmail /usr/bin/dspam --source=error --class=spam > --signature=4be87a9f953248352114216 --client --user vmail Called spam using some other user. > > Any idea ? > The user ghilt at ... is not recognized in your dspam setup. You should change the antispam config to use a static username, or make dspam accept your recipient addresses. Regards, Tom From ghilt at shadowprojects.org Mon Nov 25 14:47:01 2013 From: ghilt at shadowprojects.org (Guillaume Hilt) Date: Mon, 25 Nov 2013 13:47:01 +0100 Subject: [Dovecot] Dovecot 2.2.7/2.2.8 failing to call dspam with antispam In-Reply-To: <52934505.20603@whyscream.net> References: <52933FD2.20209@shadowprojects.org> <52934505.20603@whyscream.net> Message-ID: <529346C5.3090503@shadowprojects.org> It works, there was just a mistake in my command line : $ sudo -u vmail /usr/bin/dspam --source=error --class=spam --signature=89,52900600118151560172939 --client --user ghilt at shadowprojects.org ... 16004: [11/25/2013 13:43:46] destroying/freeing configuration 16004: [11/25/2013 13:43:46] match attribute 'Broken' with value 'returnCodes' 16004: [11/25/2013 13:43:46] find attribute 'Broken' 16004: [11/25/2013 13:43:46] -> found attribute 'Broken' with value 'returnCodes' 16004: [11/25/2013 13:43:46] -> matched attribute 'Broken' with value 'returnCodes' 16004: [11/25/2013 13:43:46] DSPAM Instance Shutdown. Exit Code: 99 16004: [11/25/2013 13:43:46] SEND: 250 2.6.0 Message accepted for delivery: SPAM 16004: [11/25/2013 13:43:46] checking trusted user list for root(0) 16004: [11/25/2013 13:43:46] SRECV: QUIT The user ghilt@ exists in mysql dspam_virtual_uids table. Guillaume Hilt Le 25/11/2013 13:39, Tom Hendrikx a ?crit : > On 11/25/2013 01:17 PM, Guillaume Hilt wrote: >> Hello again, >> >> I'm running Gentoo AMD64 2013 with postfix, mysql, dovecot and dspam : >> dovecot 2.2.8 (it was working fine with 2.2.6 after doing a chmod 4511 >> on dspam binary), dspam 3.10.2-r1 and dovecot-antispam-2.0_pre20130429 >> (recompiled after each dovecot upgrade). >> >> I've set dspam to debug, and mail_debug to yes. >> >> uid 1001 is user vmail (dovecot is running under vmail) >> gid 12 is group mail (vmail is a member, with >> mail,postfix,dspam,dovecot,apache) >> All the necessary users are trusted in dspam configuration. >> >> Here's my plugin settings : >> antispam_verbose_debug = 1 >> antispam_debug_target = syslog >> antispam_backend = dspam >> antispam_allow_append_to_spam = NO >> antispam_skip_from_line = NO >> antispam_spam = Spam >> antispam_trash = Trash >> antispam_signature = X-DSPAM-Signature >> antispam_signature_missing = error >> antispam_dspam_binary = /usr/bin/dspam >> antispam_dspam_args = --user;%u;--deliver=;--source=error;--signature=%%s > Configured to use the mail recipient > >> antispam_dspam_spam = --class=spam >> antispam_dspam_notspam = --class=innocent >> antispam_dspam_result_header = X-DSPAM-Result >> >> When i'm moving an email to the dspam folder, Thunderbird throw me an >> error : Failed to call dspam (email is dropped in the Spam folder >> anyway, but a copy stay on my INBOX) >> >> ==> /var/log/mail/mail/log <== >> Nov 25 13:01:04 srv1 dovecot: imap: Debug: Loading modules from >> directory: /usr/lib64/dovecot >> Nov 25 13:01:04 srv1 dovecot: imap: Debug: Module loaded: >> /usr/lib64/dovecot/lib90_antispam_plugin.so >> Nov 25 13:01:04 srv1 dovecot: imap: Debug: Added userdb setting: >> plugin/maildir=shadowprojects.org/ghilt/ >> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >> Effective uid=1001, gid=12, home=/home/vmail/shadowprojects.org/ghilt/ >> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >> Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, >> list=yes, subscriptions=yes >> location=maildir:/home/vmail/shadowprojects.org/ghilt/.maildir >> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >> maildir++: root=/home/vmail/shadowprojects.org/ghilt/.maildir, index=, >> indexpvt=, control=, >> inbox=/home/vmail/shadowprojects.org/ghilt/.maildir, alt= >> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >> Namespace : Using permissions from >> /home/vmail/shadowprojects.org/ghilt/.maildir: mode=0770 gid=default >> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >> dspam error:29764 prefix=imap(ghilt at shadowprojects.org): >> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >> executing /usr/bin/dspam failed: 13 (uid=1001, gid=12) >> Nov 25 13:01:04 srv1 dovecot: imap: Error: >> Nov 25 13:01:04 srv1 dovecot: imap: Error: >> >> ==> /var/log/dspam/dspam.debug <== >> 9976: [11/25/2013 13:12:23] DSPAM Instance Startup >> 9976: [11/25/2013 13:12:23] input args: /usr/bin/dspam --user >> ghilt at shadowprojects.org --deliver= --source=error >> --signature=89,52900600118151560172939 --class=spam > Called using the mail recipient > >> 9976: [11/25/2013 13:12:23] pass-thru args: >> 9976: [11/25/2013 13:12:23] processing user ghilt at shadowprojects.org >> 9976: [11/25/2013 13:12:23] uid = 1001, euid = 0, gid = 12, egid = 12 >> 9976: [11/25/2013 13:12:23] loading preferences for user >> ghilt at shadowprojects.org >> ... >> 9976: [11/25/2013 13:06:08] DSPAM Instance Shutdown. Exit Code: 99 >> 9976: [11/25/2013 13:06:08] process_users() failed on error 9 >> >> If i try to call dspam like this, it works : >> sudo -u vmail /usr/bin/dspam --source=error --class=spam >> --signature=4be87a9f953248352114216 --client --user vmail > Called spam using some other user. > >> Any idea ? >> > The user ghilt at ... is not recognized in your dspam setup. You should > change the antispam config to use a static username, or make dspam > accept your recipient addresses. > > > Regards, > Tom > From tom at whyscream.net Mon Nov 25 14:54:30 2013 From: tom at whyscream.net (Tom Hendrikx) Date: Mon, 25 Nov 2013 13:54:30 +0100 Subject: [Dovecot] Dovecot 2.2.7/2.2.8 failing to call dspam with antispam In-Reply-To: <529346C5.3090503@shadowprojects.org> References: <52933FD2.20209@shadowprojects.org> <52934505.20603@whyscream.net> <529346C5.3090503@shadowprojects.org> Message-ID: <52934886.40508@whyscream.net> On 11/25/2013 01:47 PM, Guillaume Hilt wrote: > It works, there was just a mistake in my command line : > > $ sudo -u vmail /usr/bin/dspam --source=error --class=spam > --signature=89,52900600118151560172939 --client --user > ghilt at shadowprojects.org > > ... > 16004: [11/25/2013 13:43:46] destroying/freeing configuration > 16004: [11/25/2013 13:43:46] match attribute 'Broken' with value > 'returnCodes' > 16004: [11/25/2013 13:43:46] find attribute 'Broken' > 16004: [11/25/2013 13:43:46] -> found attribute 'Broken' with value > 'returnCodes' > 16004: [11/25/2013 13:43:46] -> matched attribute 'Broken' with value > 'returnCodes' > 16004: [11/25/2013 13:43:46] DSPAM Instance Shutdown. Exit Code: 99 > 16004: [11/25/2013 13:43:46] SEND: 250 2.6.0 Message > accepted for delivery: SPAM > 16004: [11/25/2013 13:43:46] checking trusted user list for root(0) > 16004: [11/25/2013 13:43:46] SRECV: QUIT > > The user ghilt@ exists in mysql dspam_virtual_uids table. > The test is still different: dovecot config doesn't use '--client', but commandline does. Also: the debug log for dspam shows a different username as you are passing in. Anyway: DSPAM is simply returning an error which is why the antispam plugin reports failure. You're having a DSPAM config issue, not a dovecot/antispam issue. > Guillaume Hilt > > Le 25/11/2013 13:39, Tom Hendrikx a ?crit : >> On 11/25/2013 01:17 PM, Guillaume Hilt wrote: >>> Hello again, >>> >>> I'm running Gentoo AMD64 2013 with postfix, mysql, dovecot and dspam : >>> dovecot 2.2.8 (it was working fine with 2.2.6 after doing a chmod 4511 >>> on dspam binary), dspam 3.10.2-r1 and dovecot-antispam-2.0_pre20130429 >>> (recompiled after each dovecot upgrade). >>> >>> I've set dspam to debug, and mail_debug to yes. >>> >>> uid 1001 is user vmail (dovecot is running under vmail) >>> gid 12 is group mail (vmail is a member, with >>> mail,postfix,dspam,dovecot,apache) >>> All the necessary users are trusted in dspam configuration. >>> >>> Here's my plugin settings : >>> antispam_verbose_debug = 1 >>> antispam_debug_target = syslog >>> antispam_backend = dspam >>> antispam_allow_append_to_spam = NO >>> antispam_skip_from_line = NO >>> antispam_spam = Spam >>> antispam_trash = Trash >>> antispam_signature = X-DSPAM-Signature >>> antispam_signature_missing = error >>> antispam_dspam_binary = /usr/bin/dspam >>> antispam_dspam_args = >>> --user;%u;--deliver=;--source=error;--signature=%%s >> Configured to use the mail recipient >> >>> antispam_dspam_spam = --class=spam >>> antispam_dspam_notspam = --class=innocent >>> antispam_dspam_result_header = X-DSPAM-Result >>> >>> When i'm moving an email to the dspam folder, Thunderbird throw me an >>> error : Failed to call dspam (email is dropped in the Spam folder >>> anyway, but a copy stay on my INBOX) >>> >>> ==> /var/log/mail/mail/log <== >>> Nov 25 13:01:04 srv1 dovecot: imap: Debug: Loading modules from >>> directory: /usr/lib64/dovecot >>> Nov 25 13:01:04 srv1 dovecot: imap: Debug: Module loaded: >>> /usr/lib64/dovecot/lib90_antispam_plugin.so >>> Nov 25 13:01:04 srv1 dovecot: imap: Debug: Added userdb setting: >>> plugin/maildir=shadowprojects.org/ghilt/ >>> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >>> Effective uid=1001, gid=12, home=/home/vmail/shadowprojects.org/ghilt/ >>> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >>> Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, >>> list=yes, subscriptions=yes >>> location=maildir:/home/vmail/shadowprojects.org/ghilt/.maildir >>> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >>> maildir++: root=/home/vmail/shadowprojects.org/ghilt/.maildir, index=, >>> indexpvt=, control=, >>> inbox=/home/vmail/shadowprojects.org/ghilt/.maildir, alt= >>> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >>> Namespace : Using permissions from >>> /home/vmail/shadowprojects.org/ghilt/.maildir: mode=0770 gid=default >>> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >>> dspam error:29764 prefix=imap(ghilt at shadowprojects.org): >>> Nov 25 13:01:04 srv1 dovecot: imap(ghilt at shadowprojects.org): Debug: >>> executing /usr/bin/dspam failed: 13 (uid=1001, gid=12) >>> Nov 25 13:01:04 srv1 dovecot: imap: Error: >>> Nov 25 13:01:04 srv1 dovecot: imap: Error: >>> >>> ==> /var/log/dspam/dspam.debug <== >>> 9976: [11/25/2013 13:12:23] DSPAM Instance Startup >>> 9976: [11/25/2013 13:12:23] input args: /usr/bin/dspam --user >>> ghilt at shadowprojects.org --deliver= --source=error >>> --signature=89,52900600118151560172939 --class=spam >> Called using the mail recipient >> >>> 9976: [11/25/2013 13:12:23] pass-thru args: >>> 9976: [11/25/2013 13:12:23] processing user ghilt at shadowprojects.org >>> 9976: [11/25/2013 13:12:23] uid = 1001, euid = 0, gid = 12, egid = 12 >>> 9976: [11/25/2013 13:12:23] loading preferences for user >>> ghilt at shadowprojects.org >>> ... >>> 9976: [11/25/2013 13:06:08] DSPAM Instance Shutdown. Exit Code: 99 >>> 9976: [11/25/2013 13:06:08] process_users() failed on error 9 >>> >>> If i try to call dspam like this, it works : >>> sudo -u vmail /usr/bin/dspam --source=error --class=spam >>> --signature=4be87a9f953248352114216 --client --user vmail >> Called spam using some other user. >> >>> Any idea ? >>> >> The user ghilt at ... is not recognized in your dspam setup. You should >> change the antispam config to use a static username, or make dspam >> accept your recipient addresses. >> >> >> Regards, >> Tom >> > From Christian.Schmidt at chemie.uni-hamburg.de Mon Nov 25 15:02:23 2013 From: Christian.Schmidt at chemie.uni-hamburg.de (Christian Schmidt) Date: Mon, 25 Nov 2013 14:02:23 +0100 Subject: [Dovecot] postfix and dovecot - no emails in new folder In-Reply-To: <20131125080044.GA18542@sg.webconverger.com> References: <528EC884.80207@gmail.com> <20131125080044.GA18542@sg.webconverger.com> Message-ID: <52934A5F.6050507@chemie.uni-hamburg.de> 25.11.2013 09:00, Kai Hendry: > You probably need to set dovecot as the Local Delivery Agent, like so: > > $ grep mailbox /etc/postfix/main.cf > mailbox_command = /usr/lib/dovecot/deliver I would consider making postfix "talk" to dovecot using LMTP instead. Regards, Christian -- No signature available. From everton.foscarini at ufrgs.br Mon Nov 25 15:12:41 2013 From: everton.foscarini at ufrgs.br (Everton Foscarini) Date: Mon, 25 Nov 2013 11:12:41 -0200 Subject: [Dovecot] Zlib plugin - when does it make sense? In-Reply-To: References: Message-ID: <52934CC9.8070908@ufrgs.br> I have a relatively big installation here in the university, 1 mail server for 10.000 daily active accounts. I converted from maildir to mdbox + zlib in march, and these are my considerations: 1. CPU is not a problem, even delivering more than 400 messages per minute (blade HS21 with 2xQuad E5430 from 2008) 2. I used dsync to convert from maildir to mdbox, with dovecot 2.1 at the time. The biggest win is the file number reduction, from 27 million to 2 million. Em 25/11/2013 06:53, Frerich Raabe escreveu: > Hi, > > I run a small IMAP server for a dozen guys in the office, serving > about 55GB of Maildir. I recently became aware of the Zlib plugin ( > http://wiki2.dovecot.org/Plugins/Zlib ) and wondered > > 1. given that there is about zero CPU load on my IMAP server, is > enabling the plugin a no-brainer or are there other things (except CPU > load) to consider? > > 2. For enabling the plugin, I suppose you compress all the existing > mail just once and then add 'zlib' to mail_plugins in order to have > all future incoming mail saved? > > Any insight by people familiar with the plugin would be much > appreciated - thanks! > From lists at necoro.eu Mon Nov 25 15:22:01 2013 From: lists at necoro.eu (=?UTF-8?B?UmVuw6kgTmV1bWFubg==?=) Date: Mon, 25 Nov 2013 14:22:01 +0100 Subject: [Dovecot] Zlib plugin - when does it make sense? In-Reply-To: <52934CC9.8070908@ufrgs.br> References: <52934CC9.8070908@ufrgs.br> Message-ID: <52934EF9.3040601@necoro.eu> Am 25.11.2013 14:12, schrieb Everton Foscarini: > I have a relatively big installation here in the university, 1 mail > server for 10.000 daily active accounts. > > I converted from maildir to mdbox + zlib in march, and these are my > considerations: > > 1. CPU is not a problem, even delivering more than 400 messages per > minute (blade HS21 with 2xQuad E5430 from 2008) > 2. I used dsync to convert from maildir to mdbox, with dovecot 2.1 at > the time. > > The biggest win is the file number reduction, from 27 million to 2 million. But this is due to the conversion to mdbox and not the compression, isn't it? - Ren? From janfrode at tanso.net Mon Nov 25 15:35:20 2013 From: janfrode at tanso.net (Jan-Frode Myklebust) Date: Mon, 25 Nov 2013 14:35:20 +0100 Subject: [Dovecot] Zlib plugin - when does it make sense? In-Reply-To: References: Message-ID: <20131125133520.GA26739@mushkin.tanso.net> On Mon, Nov 25, 2013 at 09:53:14AM +0100, Frerich Raabe wrote: > > I run a small IMAP server for a dozen guys in the office, serving > about 55GB of Maildir. I recently became aware of the Zlib plugin ( > http://wiki2.dovecot.org/Plugins/Zlib ) and wondered > > 1. given that there is about zero CPU load on my IMAP server, is > enabling the plugin a no-brainer or are there other things (except > CPU load) to consider? Yes, it's a no-brainer. I can't remember how the cpuload was before we enabled zlib, but our cpus are running 80% idle (6 servers, mix of IBM x3550 and x346, serving 15TB mdbox, but was serving maildir with zlib a year ago). > > 2. For enabling the plugin, I suppose you compress all the existing > mail just once and then add 'zlib' to mail_plugins in order to have > all future incoming mail saved? You don't strictly need to compress existing mail. It should handle a mix of compressed and non-compressed messages in the same maildir. -jf From raabe at froglogic.com Mon Nov 25 15:47:33 2013 From: raabe at froglogic.com (Frerich Raabe) Date: Mon, 25 Nov 2013 14:47:33 +0100 Subject: [Dovecot] =?utf-8?q?Zlib_plugin_-_when_does_it_make_sense=3F?= In-Reply-To: <20131125133520.GA26739@mushkin.tanso.net> References: <20131125133520.GA26739@mushkin.tanso.net> Message-ID: <023dbd9adb6c9aed82e39b21a73c1644@roundcube.froglogic.com> On 2013-11-25 14:35, Jan-Frode Myklebust wrote: > On Mon, Nov 25, 2013 at 09:53:14AM +0100, Frerich Raabe wrote: >> >> I run a small IMAP server for a dozen guys in the office, serving >> about 55GB of Maildir. I recently became aware of the Zlib plugin ( >> http://wiki2.dovecot.org/Plugins/Zlib ) and wondered >> >> 1. given that there is about zero CPU load on my IMAP server, is >> enabling the plugin a no-brainer or are there other things (except >> CPU load) to consider? > > Yes, it's a no-brainer. I can't remember how the cpuload was before > we > enabled zlib, but our cpus are running 80% idle (6 servers, mix of > IBM > x3550 and x346, serving 15TB mdbox, but was serving maildir with zlib > a > year ago). Interesting! What zlib compression level did you use? I figure even low levels would work rather well for plain text. Now that I think about "plain text": I also have the fts_solr plugin enabled to speed up the occasional full-text search - does the indexing still work as before when the mail is compressed, i.e. is the reading of the mail centralized so that the individual plugins don't actually know or care? Or would I need to make sure I use 'zlib-aware' plugins? -- Frerich Raabe - raabe at froglogic.com www.froglogic.com - Multi-Platform GUI Testing From aellert at numeezy.com Mon Nov 25 15:42:20 2013 From: aellert at numeezy.com (Alexandre Ellert) Date: Mon, 25 Nov 2013 14:42:20 +0100 Subject: [Dovecot] prohibit deletion of Junk folder In-Reply-To: <52933C21.6090201@whyscream.net> References: <52933C21.6090201@whyscream.net> Message-ID: 'lda_mailbox_autocreate=yes' works fine without adding ':create' in sieve script. Thanks Tom. Le 25 nov. 2013 ? 13:01, Tom Hendrikx a ?crit : > On 11/25/2013 12:50 PM, Alexandre Ellert wrote: >> Hi, >> >> I have an issue with a sieve_before rule (the script move incoming email to Junk folder when DMARC=fail and policy is quarantine) because one of my user delete his Junk folder : >> >> dovecot: lda(myuser at domain.com): Error: sieve: execution of script /etc/dovecot/sieve_before/01-dmarc-fail.sieve failed, but implicit keep was successful: 1 Time(s) >> dovecot: lda(myuser at domain.com): Error: sieve: msgid=<20131124212217.5F346580D49 at anotherdomain.com>: failed to store into mailbox 'Junk': Mailbox doesn't exist: Junk: 1 Time(s) >> >> How can I do to prohibit the deletion of Junk folder by end users ? >> Tell me if you need 'dovecot -n' and thanks for your advices. >> >> Alexandre. >> > > Can't you make sieve re-create the folder when it's missing? Simply set > lda_mailbox_autocreate=yes if you use dovecot lDA, and/or use 'fileinto > :create "Junk";' in the sieve script. > > Regards, > Tom > From janfrode at tanso.net Mon Nov 25 16:06:33 2013 From: janfrode at tanso.net (Jan-Frode Myklebust) Date: Mon, 25 Nov 2013 15:06:33 +0100 Subject: [Dovecot] Zlib plugin - when does it make sense? In-Reply-To: <023dbd9adb6c9aed82e39b21a73c1644@roundcube.froglogic.com> References: <20131125133520.GA26739@mushkin.tanso.net> <023dbd9adb6c9aed82e39b21a73c1644@roundcube.froglogic.com> Message-ID: <20131125140633.GA29348@mushkin.tanso.net> On Mon, Nov 25, 2013 at 02:47:33PM +0100, Frerich Raabe wrote: > > Interesting! What zlib compression level did you use? I figure even low > levels would work rather well for plain text. plugin { zlib_save_level = 6 # 1..9 zlib_save = gz # or bz2 } > Now that I think about "plain text": I also have the fts_solr plugin > enabled to speed up the occasional full-text search - does the indexing > still work as before when the mail is compressed, i.e. is the > reading of the mail centralized so that the individual plugins don't > actually know or care? Or would I need to make sure I use > 'zlib-aware' plugins? I don't have fts (yet). -jf From dhill.novell at gmail.com Mon Nov 25 17:43:05 2013 From: dhill.novell at gmail.com (Don Hill) Date: Mon, 25 Nov 2013 09:43:05 -0600 Subject: [Dovecot] postfix and dovecot - no emails in new folder In-Reply-To: References: <528EC884.80207@gmail.com> <528F7EBD.8000109@gmail.com> Message-ID: quick note I added LDA in master.cf and everything is working fine now. Thanks. On Mon, Nov 25, 2013 at 1:49 AM, Steffen Kaiser < skdovecot at smail.inf.fh-brs.de> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Fri, 22 Nov 2013, Don Hill wrote: > > Yes. I am logged in as root and performing a ls -la /var/vmail/domain I >> see the following >> >> folder - user - This file actually contains the emails sent to the account >> >> folder - user at domain.tld - and in the Maildir folder I see the following >> cd into user at domain.tld/Maildir >> ls >> cur >> dovecot-uidlist >> dovecot-uidvalidity >> dovecot-uidvalidity.528f6c45 >> dovecot.index.log >> new >> tmp >> > > So postfix and Dovecot disagree about the mail storage of the accounts, > either: > > 1) reconfigure postfix to deliver message to Maildir in > /var/vmail/domain/user at domain.tld, or > > 2) reconfigure postfix to use Dovecot LDA or LMTP, or > > 3) reconfigure Dovecot to use mbox:/var/vmail/domain/user as INBOX, but > /var/vmail/domain/user at domain.tld/Maildir for mail home. > > >> Steffen Kaiser >>> >>> November 22, 2013 8:36 AM >>> -----BEGIN PGP SIGNED MESSAGE----- >>> Hash: SHA1 >>> >>> On Thu, 21 Nov 2013, Don Hill wrote: >>> >>> >>> Are you sure, postfix delivers to the maildir of Dovecot? I would >>> reconfigure Postfix to use Dovecot LDA or LMTP. >>> >>> - -- Steffen Kaiser >>> -----BEGIN PGP SIGNATURE----- >>> Version: GnuPG v1.4.11 (GNU/Linux) >>> >>> iQEVAwUBUo9r2V3r2wJMiz2NAQIouggAxi89bQaDsGiLOfT/DwDWEwpM6M7LjwPS >>> koNcmgn1DAsm3OGhwn57dvrA3uvs7ot8gt25iwca/kf4XKHzKdWWnbWq3LO0oME+ >>> EWREF6NJOs5OUXhd26sUpw09QxCITP2gg1hl34j0MwTRMdJyycl5BAg3jrK1A9Ji >>> 5U0MhMXaKd+7P6BBbe47+PnQR4Rfy+fLdjKy1E0wSnP/xsrx/tK0FeSF9Ewf0FMJ >>> FuFj8M5HQiixNrfjUATBnoVtvdWkjtI2ttU427Mm0ESHHkzPTdz3GlX/FWT7DZhH >>> SsILyGgTXojcGXXP5vMluqxQmjscfMoBGrcuXpP7QlK8zNwgYZZMxA== >>> =Dxa6 >>> -----END PGP SIGNATURE----- >>> Don Hill >>> >>> November 21, 2013 8:59 PM >>> Hi. >>> >>> I am working on setting up Dovecot v2.0.9 and postfix 2.6.6 on centos >>> 6.4. I have postfix configured with dovecot using virtual users. Everything >>> seems to be working with the exception of no emails being delivered to the >>> Maildir/new folder. If I touch a file into that folder then the file gets >>> delivered to the email client using imap. >>> >>> I can also send email from the client with no problems. In fact if I >>> look at the logs postfix says the email was delivered to the mailbox. >>> >>> postfix/virtual[27270]: 8652F35C38A8: to=, >>> relay=virtual, delay=0.11, delays=0.1/0.01/0/0, dsn=2.0.0, status=sent >>> (delivered to mailbox)$ >>> >>> Here is my dovecot -n output >>> >>> *doveconf: Warning: NOTE: You can get a new clean config file with: >>> doveconf -n > dovecot-new.conf** >>> **doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:85: >>> protocol { ssl_listen } has been replaced by service { inet_listener { >>> address } }** >>> **# OS: Linux 2.6.32-042stab079.6 x86_64 CentOS release 6.4 (Final) >>> reiserfs** >>> **auth_mechanisms = plain login** >>> **default_login_user = vmail** >>> **first_valid_gid = 5000** >>> **first_valid_uid = 5000** >>> **listen = *** >>> **mail_access_groups = vmail** >>> **mail_location = maildir:/var/vmail/%d/%u/Maildir** >>> **mbox_write_locks = fcntl** >>> **passdb {** >>> ** args = scheme=SHA1 /etc/dovecot/passwd** >>> ** driver = passwd-file** >>> **}** >>> **protocols = imap pop3** >>> **service auth {** >>> ** unix_listener auth-client {** >>> ** group = postfix** >>> ** mode = 0660** >>> ** user = postfix** >>> ** }** >>> ** user = root** >>> **}** >>> **service imap-login {** >>> ** inet_listener imaps {** >>> ** address = *** >>> ** }** >>> ** process_min_avail = 1** >>> ** user = vmail** >>> **}** >>> **service pop3-login {** >>> ** inet_listener pop3s {** >>> ** address = *** >>> ** }** >>> **}** >>> **ssl_cert = >> **ssl_key = >> **userdb {** >>> ** args = uid=5000 gid=5000 home=/var/vmail/%d/%u allow_all_users=yes** >>> ** driver = static** >>> **}* >>> >>> >>> Any thoughts? >>> >> >> > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUpMBB13r2wJMiz2NAQIaWggArtX/+f+RDztDv7u/By5JCQlpsctV83LS > EI69ZiYIFVbHlr8XH1ZDXF9ORbSmU2QJCcYGBwwrpam6X2SdiPD/NkQxwr5pFW01 > 6AwPRN7pHlJ0nFHwH6OwdP4BCezn3kHUSVdHBHBVMniOVBDou8QUCNrMiSYOHq5z > 11AvrshM4fvzes08cuwZ2nJDPiZvf7vDpa7S1bFJR4fi02KBY8a41XwTkqOh8uDL > J7hnpdPKmskmrZdNpjL5cacVMcLUexKLiJ6+viGx+uMcA817fm1LQ7sebg0PHm9u > NHAJup15oChQvrG5qnYyH0GdW+tGXxUtOFlXApuIXtXsUh757mrvpg== > =LZKd > -----END PGP SIGNATURE----- > From dovecot at vosslamber.nl Mon Nov 25 20:36:30 2013 From: dovecot at vosslamber.nl (Luuk) Date: Mon, 25 Nov 2013 19:36:30 +0100 Subject: [Dovecot] error while compiling dovecot 2.2.9 Message-ID: <529398AE.3030908@vosslamber.nl> while doing 'sudo make install', its complaining about the existance of ?/usr/local/lib/dovecot/auth? ..... make[3]: Entering directory `/home/luuk/source/dovecot-2.2.9/src/anvil' /usr/bin/mkdir -p '/usr/local/lib/dovecot' /bin/sh ../../libtool --mode=install /usr/bin/install -c anvil '/usr/local/lib/dovecot' libtool: install: /usr/bin/install -c .libs/anvil /usr/local/lib/dovecot/anvil make[3]: Nothing to be done for `install-data-am'. make[3]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src/anvil' make[2]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src/anvil' Making install in auth make[2]: Entering directory `/home/luuk/source/dovecot-2.2.9/src/auth' make[3]: Entering directory `/home/luuk/source/dovecot-2.2.9/src/auth' /usr/bin/mkdir -p '/usr/local/lib/dovecot' /bin/sh ../../libtool --mode=install /usr/bin/install -c auth checkpassword-reply '/usr/local/lib/dovecot' libtool: install: /usr/bin/install -c .libs/auth /usr/local/lib/dovecot/auth libtool: install: /usr/bin/install -c .libs/checkpassword-reply /usr/local/lib/dovecot/checkpassword-reply /usr/bin/mkdir -p '/usr/local/lib/dovecot/auth' /usr/bin/mkdir: cannot create directory ?/usr/local/lib/dovecot/auth?: File exists make[3]: *** [install-auth_moduleLTLIBRARIES] Error 1 make[3]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src/auth' make[2]: *** [install-am] Error 2 make[2]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src/auth' make[1]: *** [install-recursive] Error 1 make[1]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src' make: *** [install-recursive] Error 1 luuk at asus:~/source/dovecot-2.2.9> any tips on what i did wrong? From dovecot at vosslamber.nl Mon Nov 25 20:40:50 2013 From: dovecot at vosslamber.nl (Luuk) Date: Mon, 25 Nov 2013 19:40:50 +0100 Subject: [Dovecot] error while compiling dovecot 2.2.9 In-Reply-To: <529398AE.3030908@vosslamber.nl> References: <529398AE.3030908@vosslamber.nl> Message-ID: <529399B2.1080401@vosslamber.nl> On 25-11-2013 19:36, Luuk wrote: > while doing 'sudo make install', > its complaining about the existance of ?/usr/local/lib/dovecot/auth? > > ..... > make[3]: Entering directory `/home/luuk/source/dovecot-2.2.9/src/anvil' > /usr/bin/mkdir -p '/usr/local/lib/dovecot' > /bin/sh ../../libtool --mode=install /usr/bin/install -c anvil > '/usr/local/lib/dovecot' > libtool: install: /usr/bin/install -c .libs/anvil > /usr/local/lib/dovecot/anvil > make[3]: Nothing to be done for `install-data-am'. > make[3]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src/anvil' > make[2]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src/anvil' > Making install in auth > make[2]: Entering directory `/home/luuk/source/dovecot-2.2.9/src/auth' > make[3]: Entering directory `/home/luuk/source/dovecot-2.2.9/src/auth' > /usr/bin/mkdir -p '/usr/local/lib/dovecot' > /bin/sh ../../libtool --mode=install /usr/bin/install -c auth > checkpassword-reply '/usr/local/lib/dovecot' > libtool: install: /usr/bin/install -c .libs/auth > /usr/local/lib/dovecot/auth > libtool: install: /usr/bin/install -c .libs/checkpassword-reply > /usr/local/lib/dovecot/checkpassword-reply > /usr/bin/mkdir -p '/usr/local/lib/dovecot/auth' > /usr/bin/mkdir: cannot create directory ?/usr/local/lib/dovecot/auth?: > File exists > make[3]: *** [install-auth_moduleLTLIBRARIES] Error 1 > make[3]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src/auth' > make[2]: *** [install-am] Error 2 > make[2]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src/auth' > make[1]: *** [install-recursive] Error 1 > make[1]: Leaving directory `/home/luuk/source/dovecot-2.2.9/src' > make: *** [install-recursive] Error 1 > luuk at asus:~/source/dovecot-2.2.9> > > > any tips on what i did wrong? i'm able to provide more info, if only i knew what info is needed ;) it's a new install from the downloaded sources: -rw-r--r-- 1 luuk users 4540858 Nov 25 19:05 dovecot-2.2.9.tar.gz luuk at asus:~/source/dovecot-2.2.9> cat /etc/os-release NAME=openSUSE VERSION="12.3 (Dartmouth)" VERSION_ID="12.3" PRETTY_NAME="openSUSE 12.3 (Dartmouth) (i586)" ID=opensuse ANSI_COLOR="0;32" CPE_NAME="cpe:/o:opensuse:opensuse:12.3" luuk at asus:~/source/dovecot-2.2.9> From delrio at mie.utoronto.ca Mon Nov 25 20:54:24 2013 From: delrio at mie.utoronto.ca (Oscar del Rio) Date: Mon, 25 Nov 2013 13:54:24 -0500 Subject: [Dovecot] error while compiling dovecot 2.2.9 In-Reply-To: <529399B2.1080401@vosslamber.nl> References: <529398AE.3030908@vosslamber.nl> <529399B2.1080401@vosslamber.nl> Message-ID: <52939CE0.7030308@mie.utoronto.ca> On 11/25/13 01:40 PM, Luuk wrote: > On 25-11-2013 19:36, Luuk wrote: >> while doing 'sudo make install', >> its complaining about the existance of ?/usr/local/lib/dovecot/auth? >> >> ..... >> >> /usr/bin/mkdir -p '/usr/local/lib/dovecot/auth' >> /usr/bin/mkdir: cannot create directory ?/usr/local/lib/dovecot/auth?: >> File exists >> >> any tips on what i did wrong? > > i'm able to provide more info, > if only i knew what info is needed ;) ls -ld /usr/local/lib/dovecot/auth From tss at iki.fi Mon Nov 25 21:04:28 2013 From: tss at iki.fi (Timo Sirainen) Date: Mon, 25 Nov 2013 20:04:28 +0100 Subject: [Dovecot] error while compiling dovecot 2.2.9 In-Reply-To: <529398AE.3030908@vosslamber.nl> References: <529398AE.3030908@vosslamber.nl> Message-ID: <2F8A3DF5-2FB2-477F-AEC8-E28623D75598@iki.fi> On 25.11.2013, at 19.36, Luuk wrote: > while doing 'sudo make install', > its complaining about the existance of ?/usr/local/lib/dovecot/auth? Don?t use the same directory for libexecdir and moduledir. From dovecot at vosslamber.nl Mon Nov 25 21:31:22 2013 From: dovecot at vosslamber.nl (Luuk) Date: Mon, 25 Nov 2013 20:31:22 +0100 Subject: [Dovecot] error while compiling dovecot 2.2.9 In-Reply-To: <2F8A3DF5-2FB2-477F-AEC8-E28623D75598@iki.fi> References: <529398AE.3030908@vosslamber.nl> <2F8A3DF5-2FB2-477F-AEC8-E28623D75598@iki.fi> Message-ID: <5293A58A.5010401@vosslamber.nl> On 25-11-2013 20:04, Timo Sirainen wrote: > On 25.11.2013, at 19.36, Luuk wrote: > >> while doing 'sudo make install', >> its complaining about the existance of ?/usr/local/lib/dovecot/auth? > > Don?t use the same directory for libexecdir and moduledir. > luuk at asus:~/source/dovecot-2.2.9> grep -ir libexecdir config.log | # If user did not specify libexecdir, set the correct target: | if test "$libexecdir" = '${exec_prefix}/libexec' ; then | libexecdir='${exec_prefix}/lib' Configured with: ../configure --prefix=/usr --infodir=/usr/share/info --mandir=/usr/share/man --libdir=/usr/lib --libexecdir=/usr/lib --enable-languages=c,c++,objc,fortran,obj-c++,java,ada --enable-checking=release --with-gxx-include-dir=/usr/include/c++/4.7 --enable-ssp --disable-libssp --disable-libitm --disable-plugin --with-bugurl=http://bugs.opensuse.org/ --with-pkgversion='SUSE Linux' --disable-libgcj --disable-libmudflap --with-slibdir=/lib --with-system-zlib --enable-__cxa_atexit --enable-libstdcxx-allocator=new --disable-libstdcxx-pch --enable-version-specific-runtime-libs --enable-linker-build-id --program-suffix=-4.7 --enable-linux-futex --without-system-libunwind --with-arch-32=i586 --with-tune=generic --build=i586-suse-linux Configured with: ../configure --prefix=/usr --infodir=/usr/share/info --mandir=/usr/share/man --libdir=/usr/lib --libexecdir=/usr/lib --enable-languages=c,c++,objc,fortran,obj-c++,java,ada --enable-checking=release --with-gxx-include-dir=/usr/include/c++/4.7 --enable-ssp --disable-libssp --disable-libitm --disable-plugin --with-bugurl=http://bugs.opensuse.org/ --with-pkgversion='SUSE Linux' --disable-libgcj --disable-libmudflap --with-slibdir=/lib --with-system-zlib --enable-__cxa_atexit --enable-libstdcxx-allocator=new --disable-libstdcxx-pch --enable-version-specific-runtime-libs --enable-linker-build-id --program-suffix=-4.7 --enable-linux-futex --without-system-libunwind --with-arch-32=i586 --with-tune=generic --build=i586-suse-linux Configured with: ../configure --prefix=/usr --infodir=/usr/share/info --mandir=/usr/share/man --libdir=/usr/lib --libexecdir=/usr/lib --enable-languages=c,c++,objc,fortran,obj-c++,java,ada --enable-checking=release --with-gxx-include-dir=/usr/include/c++/4.7 --enable-ssp --disable-libssp --disable-libitm --disable-plugin --with-bugurl=http://bugs.opensuse.org/ --with-pkgversion='SUSE Linux' --disable-libgcj --disable-libmudflap --with-slibdir=/lib --with-system-zlib --enable-__cxa_atexit --enable-libstdcxx-allocator=new --disable-libstdcxx-pch --enable-version-specific-runtime-libs --enable-linker-build-id --program-suffix=-4.7 --enable-linux-futex --without-system-libunwind --with-arch-32=i586 --with-tune=generic --build=i586-suse-linux libexecdir='${exec_prefix}/lib' luuk at asus:~/source/dovecot-2.2.9> grep -ir moduledir config.log moduledir='${exec_prefix}/lib/dovecot' luuk at asus:~/source/dovecot-2.2.9> They seem to be different: libexecdir='${exec_prefix}/lib' moduledir='${exec_prefix}/lib/dovecot' i started with configure: ./configure --with-sql=yes --with-mysql --with-sqlite From dovecot at vosslamber.nl Mon Nov 25 21:31:27 2013 From: dovecot at vosslamber.nl (Luuk) Date: Mon, 25 Nov 2013 20:31:27 +0100 Subject: [Dovecot] error while compiling dovecot 2.2.9 In-Reply-To: <52939CE0.7030308@mie.utoronto.ca> References: <529398AE.3030908@vosslamber.nl> <529399B2.1080401@vosslamber.nl> <52939CE0.7030308@mie.utoronto.ca> Message-ID: <5293A58F.5010608@vosslamber.nl> On 25-11-2013 19:54, Oscar del Rio wrote: > On 11/25/13 01:40 PM, Luuk wrote: >> On 25-11-2013 19:36, Luuk wrote: >>> while doing 'sudo make install', >>> its complaining about the existance of ?/usr/local/lib/dovecot/auth? >>> >>> ..... >>> >>> /usr/bin/mkdir -p '/usr/local/lib/dovecot/auth' >>> /usr/bin/mkdir: cannot create directory ?/usr/local/lib/dovecot/auth?: >>> File exists >>> >>> any tips on what i did wrong? >> >> i'm able to provide more info, >> if only i knew what info is needed ;) > > ls -ld /usr/local/lib/dovecot/auth > > luuk at asus:~/source/dovecot-2.2.9> ls -ld /usr/local/lib/dovecot/auth -rwxr-xr-x 1 root root 1356716 Nov 25 19:36 /usr/local/lib/dovecot/auth luuk at asus:~/source/dovecot-2.2.9> From h.reindl at thelounge.net Mon Nov 25 21:38:02 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 25 Nov 2013 20:38:02 +0100 Subject: [Dovecot] error while compiling dovecot 2.2.9 In-Reply-To: <5293A58A.5010401@vosslamber.nl> References: <529398AE.3030908@vosslamber.nl> <2F8A3DF5-2FB2-477F-AEC8-E28623D75598@iki.fi> <5293A58A.5010401@vosslamber.nl> Message-ID: <5293A71A.6010009@thelounge.net> Am 25.11.2013 20:31, schrieb Luuk: > On 25-11-2013 20:04, Timo Sirainen wrote: >> On 25.11.2013, at 19.36, Luuk wrote: >> >>> while doing 'sudo make install', >>> its complaining about the existance of ?/usr/local/lib/dovecot/auth? >> >> Don?t use the same directory for libexecdir and moduledir. > > Configured with: ../configure --prefix=/usr i doubt that this would end in /usr/local/ at all > They seem to be different: > libexecdir='${exec_prefix}/lib' > moduledir='${exec_prefix}/lib/dovecot' normally you would have /usr/local/lib/dovecot and /usr/local/libexec/dovecot or for a x86_64 OS /usr/lib64/ like below [harry at rh:~]$ rpm -q --filesbypkg dovecot | grep dovecot/auth dovecot /usr/lib64/dovecot/auth dovecot /usr/lib64/dovecot/auth/libauthdb_imap.so dovecot /usr/lib64/dovecot/auth/libdriver_mysql.so dovecot /usr/libexec/dovecot/auth > i started with configure: > ./configure --with-sql=yes --with-mysql --with-sqlite ./configure --help -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 263 bytes Desc: OpenPGP digital signature URL: From dovecot at vosslamber.nl Mon Nov 25 22:21:35 2013 From: dovecot at vosslamber.nl (Luuk) Date: Mon, 25 Nov 2013 21:21:35 +0100 Subject: [Dovecot] error while compiling dovecot 2.2.9 In-Reply-To: <5293A71A.6010009@thelounge.net> References: <529398AE.3030908@vosslamber.nl> <2F8A3DF5-2FB2-477F-AEC8-E28623D75598@iki.fi> <5293A58A.5010401@vosslamber.nl> <5293A71A.6010009@thelounge.net> Message-ID: <5293B14F.8000500@vosslamber.nl> On 25-11-2013 20:38, Reindl Harald wrote: > > Am 25.11.2013 20:31, schrieb Luuk: >> On 25-11-2013 20:04, Timo Sirainen wrote: >>> On 25.11.2013, at 19.36, Luuk wrote: >>> >>>> while doing 'sudo make install', >>>> its complaining about the existance of ?/usr/local/lib/dovecot/auth? >>> >>> Don?t use the same directory for libexecdir and moduledir. >> >> Configured with: ../configure --prefix=/usr > > i doubt that this would end in /usr/local/ at all > >> They seem to be different: >> libexecdir='${exec_prefix}/lib' >> moduledir='${exec_prefix}/lib/dovecot' > > normally you would have /usr/local/lib/dovecot and /usr/local/libexec/dovecot > or for a x86_64 OS /usr/lib64/ like below > > [harry at rh:~]$ rpm -q --filesbypkg dovecot | grep dovecot/auth > dovecot /usr/lib64/dovecot/auth > dovecot /usr/lib64/dovecot/auth/libauthdb_imap.so > dovecot /usr/lib64/dovecot/auth/libdriver_mysql.so > dovecot /usr/libexec/dovecot/auth > >> i started with configure: >> ./configure --with-sql=yes --with-mysql --with-sqlite > > ./configure --help > > > > ok, i changed it to: ./configure --with-sql=yes --with-mysql --with-sqlite --libexecdir=/usr/local/libexec/dovecot --with-moduledir=/usr/local/lib/dovecot and now 'make install' worked. tomorrow i'll start with configuring... ;) From dhill.novell at gmail.com Tue Nov 26 04:05:02 2013 From: dhill.novell at gmail.com (Don Hill) Date: Tue, 26 Nov 2013 02:05:02 +0000 (UTC) Subject: [Dovecot] Invitation to connect on LinkedIn Message-ID: <1739851786.27586804.1385431502828.JavaMail.app@ela4-app0086.prod> LinkedIn ------------ I'd like to add you to my professional network on LinkedIn. - Don Don Hill Senior Technical Consultant at Lincoln Financial Group Greater Chicago Area Confirm that you know Don Hill: https://www.linkedin.com/e/458g9e-hogi596x-46/isd/18305189187/jxXw8l7X/?hs=false&tok=0XaXLEnNJtlm01 -- You are receiving Invitation to Connect emails. Click to unsubscribe: http://www.linkedin.com/e/458g9e-hogi596x-46/V7LnuFRIQXpYNGb2yum6IE4IQU3ZkPl/goo/dovecot%40dovecot%2Eorg/20061/I5998827361_1/?hs=false&tok=2wu4MqrgJtlm01 (c) 2012 LinkedIn Corporation. 2029 Stierlin Ct, Mountain View, CA 94043, USA. From hendry at dabase.com Tue Nov 26 05:47:23 2013 From: hendry at dabase.com (Kai Hendry) Date: Tue, 26 Nov 2013 11:47:23 +0800 Subject: [Dovecot] postfix and dovecot - no emails in new folder In-Reply-To: <52934A5F.6050507@chemie.uni-hamburg.de> References: <528EC884.80207@gmail.com> <20131125080044.GA18542@sg.webconverger.com> <52934A5F.6050507@chemie.uni-hamburg.de> Message-ID: <20131126034722.GB18542@sg.webconverger.com> On Mon, Nov 25, 2013 at 02:02:23PM +0100, Christian Schmidt wrote: > I would consider making postfix "talk" to dovecot using LMTP instead. Why LMTP over LDA? The LMTP setup seems a lot more complex and error prone. From jonikula at gmail.com Tue Nov 26 08:44:34 2013 From: jonikula at gmail.com (Jouko Nikula) Date: Tue, 26 Nov 2013 13:44:34 +0700 Subject: [Dovecot] post-logout scripting Message-ID: Hi all, I found this (http://www.dovecot.org/list/dovecot/2010-January/045717.html) describing how to do a post-logout script. But is this valid anymore? It seems I'm getting error when trying to execute imap process in post-logout script and post logout documentation does not talk about executing imap. I'm trying to umount (virtual) user home directory when user logs out. Thanks, - Jouko From nick.z.edwards at gmail.com Tue Nov 26 08:46:08 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Tue, 26 Nov 2013 16:46:08 +1000 Subject: [Dovecot] 2.2.9 In-Reply-To: <43o345tt9pkwt24ampbnhkq2.1385185742685@email.android.com> References: <43o345tt9pkwt24ampbnhkq2.1385185742685@email.android.com> Message-ID: I wonder if you have the balls to send to that him so he can see it, he did say he unsubscribed all to often I see heros like you, you're like the bitchy kid who waits for someone to walk out the room then bitch about them. On 11/23/13, Rick Romero wrote: > Noel, > > I include you in the gang of three, and I only read half the posts on this > list. I have no specific reason to, but it isn't a good association. > > A decade ago I was active on the Pegasus mail and Mercury lists, and names > stood out after a while. Unfortunately on this list, the names stand out for > a completely different reason - and its not positive. > > Just chill, everyone. You never know who's going to interview you in a > year. > > Rick From nick.z.edwards at gmail.com Tue Nov 26 08:50:12 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Tue, 26 Nov 2013 16:50:12 +1000 Subject: [Dovecot] 2.2.9 In-Reply-To: References: <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net> <20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis> Message-ID: On 11/24/13, Andreas Kasenides wrote: > On 23-11-2013 3:47, Noel Butler wrote: >> On Fri, 2013-11-22 at 10:14 +0100, Ralf Hildebrandt wrote: >> >>> * Thomas Leuxner : >>> > * Ralf Hildebrandt 2013.11.22 09:44: >>> > >>> > > Which patch? >>> > >>> > http://www.dovecot.org/list/dovecot/2013-November/093654.html >>> > >>> > Pigeonhole related patches. >>> >>> Damn. Those are biting me as well :/ >>> >> >> >> These would be found if Timo reverted back to issuing RC's before any >> official release, to iron out the niggly off-putting bugs, like most >> software does, or gets his devs and a community of official testers >> each >> with wildly different configurations and set ups, ASF have an excellent >> model that could be followed, bunch of devs and testers who each report >> on different distros and configs, why? because no single dev can >> imagine >> and test every possible configuration. it might just save dovecot's >> good name, I recall a lot of damage was done to that in the circles I'm >> in when 2.0 was released with patches nearly every few days and weeks, >> I >> know a few ISP's and businesses that went back to courier or Wu's >> because major bugs were getting in often, though it has been a lot >> better since 2.1 series, until this release that is :) > > I second this and offer my services for two, three different system > configs from Dovecot's plain old simple config with MAILDIR to slightly > more complicated > configurations with proxying/LDAP/dsync/mySQL etc based on > virtualization with KVM. > > I also propose that upon employing above strategy that Timo should come > up with a > release cycles (long term, short term) with announced targets. Patches > should be released as patches strictly as needed, not releases, and > should be announced on a low traffic list like he is already doing with > releases. OR something along these lines. > careful, or the suckups will go you next :) > I know these are growing pains but essential. Email systems are CRITICAL > for most of us. > dovecot is over 10 years, most softwares overcome these in the first couple of years > Andreas > From nick.z.edwards at gmail.com Tue Nov 26 08:52:51 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Tue, 26 Nov 2013 16:52:51 +1000 Subject: [Dovecot] 2.2.9 In-Reply-To: <5290EC38.5090805@vosslamber.nl> References: <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net> <20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis> <5290EC38.5090805@vosslamber.nl> Message-ID: On 11/24/13, Luuk wrote: > On 23-11-2013 18:44, Andreas Kasenides wrote: >> On 23-11-2013 3:47, Noel Butler wrote: >>> These would be found if Timo reverted back to issuing RC's before any >>> official release, to iron out the niggly off-putting bugs, like most > .... > >> I second this and offer my services for two, three different system > > What is the difference between a 'RC' and a new version? > > One should TEST this new version ALWAYS before using it in production > (it does not matter if there was a 'RC' before it...) > this is why most softwares have a group of people testing them, so when you "test it" you hopefully dont find any. > 2 cents.... > > ;) > > > > From nick.z.edwards at gmail.com Tue Nov 26 08:55:19 2013 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Tue, 26 Nov 2013 16:55:19 +1000 Subject: [Dovecot] 2.2.9 In-Reply-To: <09942DC9F3FA4636ABF9ABA131B2E488@geniepc2011> References: <20131122084414.GA10312@charite.de> <20131122085210.GA7384@nihlus.leuxner.net> <20131122091459.GD10312@charite.de> <1385171257.4058.14.camel@tardis> <5290EC38.5090805@vosslamber.nl> <09942DC9F3FA4636ABF9ABA131B2E488@geniepc2011> Message-ID: On 11/24/13, Eugene wrote: > Hi all, > > In recent years I use dovecot installed from FreeBSD ports. Interestingly, I > > feel that they follow the dovecot releases rather well but with some lag, > e.g. currently it is at 2.2.6. I don't know if that is 'by design' or caused > > by lack of manpower, but it works pretty well in that problems usually get > fixed before the update =) > (And then again, nobody says you should install a new version on the release > > day). > > Also, I am not sure RCs as such would do much good, since most of the test > systems are not likely to reproduce the volume and diversity of production > workloads. > you dont do any testing for software do you? :) I do for one very popular bit of software, although we can not test for every configuration, loading and stress testing is very common on all configurations we do check :) From debian.roxx at gmail.com Tue Nov 26 09:14:46 2013 From: debian.roxx at gmail.com (Sylvain) Date: Tue, 26 Nov 2013 08:14:46 +0100 Subject: [Dovecot] Problem with Thunderbird and mailbox with SPECIAL-USE flag In-Reply-To: References: Message-ID: For information, I have solved the problem with : prefix=INBOX. imapc_list_prefix=INBOX Seen on recent thread ? Problem migration from cyrus with imapc ?, thanks Timo. Sylvain 2013/11/25 Sylvain > Hi ! > > I have an old Courier IMAP and in front of it, I have put a proxy cache > with the great Dovecot. > > SOGo webmail is connected to the proxy and works great (very very more > fast) but I have a problem with Thunderbird : mailbox with ? SPECIAL USE ? > aren't automatically detected. > To make that works, I must : > - in Dovecot : define the namespace inbox : ? prefix = ? and ? separator = > . ? > - in Thunderbird : force in the account, the personal namespace to > "INBOX." and untick ? Allow server to exceed namespace ? (sorry : personal > translation :D). > > If I define in the namespace inbox as the dovecot wiki said : ? prefix = > INBOX. ? and ? separator = . ?, TB see a sub-folder INBOX and mailbox with > special use aren't automatically detected. :-( > I must have forgotten a parameter in my Dovecot configuration but I don't > see it.. Can you have a look please ? > Here my configuration : > > # 2.1.7: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.2 > auth_debug_passwords = yes > auth_mechanisms = plain login > disable_plaintext_auth = no > first_valid_uid = 100 > imapc_host = xxxxxx > mail_gid = imapproxy > mail_home = /var/local/cache/dovecot/%1Mu/%1.1Mu/%u > mail_location = imapc:~/imapc > mail_uid = imapproxy > namespace inbox { > inbox = yes > list = yes > location = > mailbox Drafts { > special_use = \Drafts > } > mailbox Junk { > special_use = \Junk > } > mailbox Sent { > special_use = \Sent > } > mailbox Trash { > special_use = \Trash > } > prefix = > separator = . > type = private > } > passdb { > args = host=xxxxxx port=143 > default_fields = userdb_imapc_user=%u userdb_imapc_password=%w > driver = imap > } > protocols = imap > ssl_cert = ssl_key = userdb { > driver = prefetch > } > > Sylvain > > From skdovecot at smail.inf.fh-brs.de Tue Nov 26 10:58:56 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 26 Nov 2013 09:58:56 +0100 (CET) Subject: [Dovecot] Dovecot 2.1.16 In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 25 Nov 2013, paolo.brocchi wrote: > I would like to have in INBOX folder some emails (e.g email with a header key). > > The same emails i would like to have into the folders, under INBOX, create by users. Could you be more verbose please, perhaps with an example. I suppose you need a Sieve script like if header XYZ ABC { fileinto ...; } ... But I possibly misunderstand you. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUpRi0V3r2wJMiz2NAQJj4ggAqu78SksjqPdJl6Dqwk4Bo5PjG+s+g736 oQPLeuIsrTjcrnaxIAiLEMaqs4hDgCsvdiFm9RgJAoWG5VbeRuAkjXJb0kPGCh7M Fg49uduUe6FDqLSfdHTKf3rTe0K29pzIuVeKLJViE24cEZeduNKVqT0PiwSmEcXH Nao+Gk9n4RGlJsBxyVl1xHyACEyaZYl2h8E7nwxbZEvyVpGyUkyjjg/qKn+y4iuT soz4ZI4I0leVwm06CsjJcvDCQou7PMZWPjYkzjs79UH7Qkvqp1REwkt8peEOma55 2IJWROC88k6bWQI1e1wVEef67uOireMNk/OvMhf1zeTgSq0kuswAWw== =wGao -----END PGP SIGNATURE----- From openmsk at gmail.com Tue Nov 26 12:00:20 2013 From: openmsk at gmail.com (John Smith) Date: Tue, 26 Nov 2013 10:00:20 +0000 Subject: [Dovecot] Replication master/master Message-ID: Hello, i need help for this error: "dovecot: replicator: Error: Invalid replicator db record:" my config http://pastebin.com/jVnvyWZM -- Best Regards, Evgeny Senior System Administrator OOO "Vaz Service Hurley" From paolo.brocchi at staff.aruba.it Tue Nov 26 15:09:25 2013 From: paolo.brocchi at staff.aruba.it (paolo.brocchi) Date: Tue, 26 Nov 2013 14:09:25 +0100 Subject: [Dovecot] Dovecot 2.1.16 In-Reply-To: References: =?iso-8859-1?q?=3CMWTD79=248B463A901EA9E842159FFE2911E286EF=40staff?= =?iso-8859-1?q?=2Earuba=2Eit=3E_=3Calpine=2EDEB=2E2=2E02=2E1311260957?= =?iso-8859-1?q?090=2E3650=40pc=2D2m63=2Einf=2Efh=2Dbonn=2Drhein=2Dsie?= =?iso-8859-1?q?g=2Ede=3E?= Message-ID: Hi,for example in INBOX i would like to have only email with header = "xxxx", but if a user create a or more folders under INBOX i woluld like to have the same email that i show into INBOX.Thanks Paolo Da: dovecot-bounces at dovecot.org A: "paolo.brocchi" paolo.brocchi at staff.aruba.it Cc: dovecot at dovecot.org Data: Tue, 26 Nov 2013 09:58:56 +0100 (CET) Oggetto: Re: [Dovecot] Dovecot 2.1.16 > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Mon, 25 Nov 2013, paolo.brocchi wrote: > > > I would like to have in INBOX folder some emails (e.g email with a header key). > > > > The same emails i would like to have into the folders, under INBOX, create by users. > > Could you be more verbose please, perhaps with an example. > > I suppose you need a Sieve script like > > if header XYZ ABC { > fileinto ...; > } > ... > > But I possibly misunderstand you. > > - -- > Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUpRi0V3r2wJMiz2NAQJj4ggAqu78SksjqPdJl6Dqwk4Bo5PjG+s+g736 > oQPLeuIsrTjcrnaxIAiLEMaqs4hDgCsvdiFm9RgJAoWG5VbeRuAkjXJb0kPGCh7M > Fg49uduUe6FDqLSfdHTKf3rTe0K29pzIuVeKLJViE24cEZeduNKVqT0PiwSmEcXH > Nao+Gk9n4RGlJsBxyVl1xHyACEyaZYl2h8E7nwxbZEvyVpGyUkyjjg/qKn+y4iuT > soz4ZI4I0leVwm06CsjJcvDCQou7PMZWPjYkzjs79UH7Qkvqp1REwkt8peEOma55 > 2IJWROC88k6bWQI1e1wVEef67uOireMNk/OvMhf1zeTgSq0kuswAWw== > =wGao > -----END PGP SIGNATURE----- From andreas at cymail.eu Tue Nov 26 16:27:14 2013 From: andreas at cymail.eu (Andreas Kasenides) Date: Tue, 26 Nov 2013 16:27:14 +0200 Subject: [Dovecot] Failute to compile of pigeonhole-0.4.2 with Dovecot 2.2.7 Message-ID: On trying to compile pigeonhole-0.4.2 on Dovecot 2.2.7 on a CentOS 6.4 machine Linux xxx.xxx 2.6.32-358.14.1.el6.x86_64 #1 SMP Tue Jul 16 23:51:20 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux with ./configure --with-dovecot=/usr/local/lib/dovecot I get the following error: ............ /bin/sh ../../libtool --tag=CC --mode=compile gcc -DHAVE_CONFIG_H -I. -I../.. -I/usr/local/include/dovecot -I../.. -I../../src/lib-sieve -std=gnu99 -g -O2 -Wall -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -fno-builtin-strftime -Wstrict-aliasing=2 -MT sieve-storage.lo -MD -MP -MF .deps/sieve-storage.Tpo -c -o sieve-storage.lo sieve-storage.c libtool: compile: gcc -DHAVE_CONFIG_H -I. -I../.. -I/usr/local/include/dovecot -I../.. -I../../src/lib-sieve -std=gnu99 -g -O2 -Wall -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -fno-builtin-strftime -Wstrict-aliasing=2 -MT sieve-storage.lo -MD -MP -MF .deps/sieve-storage.Tpo -c sieve-storage.c -fPIC -DPIC -o .libs/sieve-storage.o sieve-storage.c: In function 'sieve_storage_inbox_script_attribute_set': sieve-storage.c:702: error: 'MAILBOX_ATTRIBUTE_PREFIX_DOVECOT_PVT_SERVER' undeclared (first use in this function) sieve-storage.c:702: error: (Each undeclared identifier is reported only once sieve-storage.c:702: error: for each function it appears in.) sieve-storage.c:702: error: expected ')' before string constant sieve-storage.c:693: warning: unused parameter 'name' sieve-storage.c: In function 'sieve_storage_inbox_script_attribute_rename': sieve-storage.c:718: error: 'MAILBOX_ATTRIBUTE_PREFIX_DOVECOT_PVT_SERVER' undeclared (first use in this function) sieve-storage.c:718: error: expected ')' before string constant sieve-storage.c:720: error: expected ')' before string constant sieve-storage.c:709: warning: unused parameter 'oldname' sieve-storage.c:709: warning: unused parameter 'newname' sieve-storage.c: In function 'sieve_storage_inbox_script_attribute_unset': sieve-storage.c:738: error: 'MAILBOX_ATTRIBUTE_PREFIX_DOVECOT_PVT_SERVER' undeclared (first use in this function) sieve-storage.c:738: error: expected ')' before string constant sieve-storage.c:729: warning: unused parameter 'name' make[3]: *** [sieve-storage.lo] Error 1 make[3]: Leaving directory `/root/dovecot-2.2-pigeonhole-0.4.2/src/lib-sievestorage' make[2]: *** [all-recursive] Error 1 make[2]: Leaving directory `/root/dovecot-2.2-pigeonhole-0.4.2/src' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/root/dovecot-2.2-pigeonhole-0.4.2' make: *** [all] Error 2 Dovecot 2.2.7 compiles and runs fine. Any help appreciated. Andreas From andreas at cymail.eu Tue Nov 26 17:01:17 2013 From: andreas at cymail.eu (Andreas Kasenides) Date: Tue, 26 Nov 2013 17:01:17 +0200 Subject: [Dovecot] Dovecot software testing and release practice Message-ID: <76d33d8a0704cf720f5f54e759e8aebb@cymail.eu> Since this, it seems, was lost in, the now infamous, 2.2.9 thread I would like to resubmit the following proposal for Timo's consideration. Thanks Timo for doing an excellent job. I believe that the following will add further value to Dovecot in the long run. Thankx Andreas ============================ > On 23-11-2013 3:47, Noel Butler wrote: > > On Fri, 2013-11-22 at 10:14 +0100, Ralf Hildebrandt wrote: > * Thomas Leuxner : > * Ralf Hildebrandt 2013.11.22 > 09:44: > > Which patch? > > > http://www.dovecot.org/list/dovecot/2013-November/093654.html > Pigeonhole related patches. > Damn. Those are biting me as well :/ > > These would be found if Timo reverted back to issuing RC's before any > official release, to iron out the > niggly off-putting bugs, like most software does, or gets his devs and > a community of official > >testers>each with wildly different > configurations and set ups, ASF have an excellent model that could be > >followed, >bunch of devs and testers who each report on different distros and configs, why? because no >single dev can imagine and test every possible configuration. it might just save dovecot's good name, I >recall a lot of damage was done to that in the circles I'm in when 2.0 was released with patches nearly >every few days and weeks, I know a few ISP's and businesses that went back to courier or Wu's because >major bugs were getting in often, though it has been a lot better since 2.1 series, until this release >that is :) I second this and offer my services for two, three different system configs from Dovecot's plain old simple config with MAILDIR to slightly more complicated configurations with proxying/LDAP/dsync/mySQL etc based on virtualization with KVM. I also propose that upon employing above strategy that Timo should come up with a release cycles (long term, short term) with announced targets. Patches should be released as patches strictly as needed, not releases, and should be announced on a low traffic list like he is already doing with releases. OR something along these lines. I know these are growing pains but essential. Email systems are CRITICAL for most of us. Andreas From stephan at rename-it.nl Tue Nov 26 22:39:06 2013 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 26 Nov 2013 21:39:06 +0100 Subject: [Dovecot] Failute to compile of pigeonhole-0.4.2 with Dovecot 2.2.7 In-Reply-To: References: Message-ID: <529506EA.6010002@rename-it.nl> On 11/26/2013 3:27 PM, Andreas Kasenides wrote: > On trying to compile pigeonhole-0.4.2 on Dovecot 2.2.7 on a CentOS 6.4 > machine > Linux xxx.xxx 2.6.32-358.14.1.el6.x86_64 #1 SMP Tue Jul 16 23:51:20 > UTC 2013 x86_64 x86_64 x86_64 GNU/Linux > > with ./configure --with-dovecot=/usr/local/lib/dovecot > I get the following error: > > ............ > /bin/sh ../../libtool --tag=CC --mode=compile gcc -DHAVE_CONFIG_H > -I. -I../.. -I/usr/local/include/dovecot -I../.. > -I../../src/lib-sieve -std=gnu99 -g -O2 -Wall -W > -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith > -Wchar-subscripts -Wformat=2 -Wbad-function-cast -fno-builtin-strftime > -Wstrict-aliasing=2 -MT sieve-storage.lo -MD -MP -MF > .deps/sieve-storage.Tpo -c -o sieve-storage.lo sieve-storage.c > libtool: compile: gcc -DHAVE_CONFIG_H -I. -I../.. > -I/usr/local/include/dovecot -I../.. -I../../src/lib-sieve -std=gnu99 > -g -O2 -Wall -W -Wmissing-prototypes -Wmissing-declarations > -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast > -fno-builtin-strftime -Wstrict-aliasing=2 -MT sieve-storage.lo -MD -MP > -MF .deps/sieve-storage.Tpo -c sieve-storage.c -fPIC -DPIC -o > .libs/sieve-storage.o > sieve-storage.c: In function 'sieve_storage_inbox_script_attribute_set': > sieve-storage.c:702: error: > 'MAILBOX_ATTRIBUTE_PREFIX_DOVECOT_PVT_SERVER' undeclared (first use in > this function) > sieve-storage.c:702: error: (Each undeclared identifier is reported > only once > sieve-storage.c:702: error: for each function it appears in.) > sieve-storage.c:702: error: expected ')' before string constant > sieve-storage.c:693: warning: unused parameter 'name' > sieve-storage.c: In function > 'sieve_storage_inbox_script_attribute_rename': > sieve-storage.c:718: error: > 'MAILBOX_ATTRIBUTE_PREFIX_DOVECOT_PVT_SERVER' undeclared (first use in > this function) > sieve-storage.c:718: error: expected ')' before string constant > sieve-storage.c:720: error: expected ')' before string constant > sieve-storage.c:709: warning: unused parameter 'oldname' > sieve-storage.c:709: warning: unused parameter 'newname' > sieve-storage.c: In function > 'sieve_storage_inbox_script_attribute_unset': > sieve-storage.c:738: error: > 'MAILBOX_ATTRIBUTE_PREFIX_DOVECOT_PVT_SERVER' undeclared (first use in > this function) > sieve-storage.c:738: error: expected ')' before string constant > sieve-storage.c:729: warning: unused parameter 'name' > make[3]: *** [sieve-storage.lo] Error 1 > make[3]: Leaving directory > `/root/dovecot-2.2-pigeonhole-0.4.2/src/lib-sievestorage' > make[2]: *** [all-recursive] Error 1 > make[2]: Leaving directory `/root/dovecot-2.2-pigeonhole-0.4.2/src' > make[1]: *** [all-recursive] Error 1 > make[1]: Leaving directory `/root/dovecot-2.2-pigeonhole-0.4.2' > make: *** [all] Error 2 I tried this here and I cannot reproduce this problem. It looks as though your installed dovecot at /usr/local/lib/dovecot is older than 2.2.7. Can you verify? What happens if you point it directly at your compiled Dovecot source tree? Regards, Stephan. From alexandr.sabitov at netregistry.com.au Wed Nov 27 08:13:33 2013 From: alexandr.sabitov at netregistry.com.au (Alexandr Sabitov) Date: Wed, 27 Nov 2013 06:13:33 +0000 Subject: [Dovecot] Dovecot 2.1 Panic Message-ID: Hi, Dovecot 2.1.12 sends panic message when it tries to authenticate some users. Apparently because they use different authentication mechanisms on different email clients at the same time. For example, in debug logs this user uses CRAM-MD5, NTLM and PLAIN in account settings of his email clients. All passwords are stored in plain text (base64) in LDAP. Please advise me what I can tweak to fix this issue ? Nov 27 06:38:36 dovecot-1 auth: Error: ldap(gone at in.com.au,201.45.21.151,): Multiple password values not supported Nov 27 06:38:36 dovecot-1 auth: Panic: file passdb-ldap.c: line 95 (ldap_lookup_finish): assertion failed: (password == NULL || scheme != NULL) Nov 27 06:38:36 dovecot-1 auth: Error: ldap(gone at in.com.au,201.45.21.151,): Multiple password values not supported Nov 27 06:38:36 dovecot-1 auth: Error: Raw backtrace: /usr/local/dovecot/lib/dovecot/libdovecot.so.0(+0x485ca) [0x7f90ed51b5ca] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(+0x48616) [0x7f90ed51b616] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(i_error+0) [0x7f90ed4eeeef] -> dovecot-proxy/auth() [0x42967c] -> dovecot-proxy/auth() [0x428da1] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(io_loop_call_io+0x36) [0x7f90ed5277a6] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(io_loop_handler_run+0x9f) [0x7f90ed5287df] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(io_loop_run+0x28) [0x7f90ed527748] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(master_service_run+0x13) [0x7f90ed513123] -> dovecot-proxy/auth(main+0x376) [0x41bd26] -> /lib/libc.so.6(__libc_start_main+0xfd) [0x7f90ec2d8c8d] -> dovecot-proxy/auth() [0x40d0f9] Nov 27 06:38:36 dovecot-1 auth: Error: Raw backtrace: /usr/local/dovecot/lib/dovecot/libdovecot.so.0(+0x485ca) [0x7f90ed51b5ca] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(+0x48616) [0x7f90ed51b616] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(i_error+0) [0x7f90ed4eeeef] -> dovecot-proxy/auth() [0x42967c] -> dovecot-proxy/auth() [0x428da1] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(io_loop_call_io+0x36) [0x7f90ed5277a6] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(io_loop_handler_run+0x9f) [0x7f90ed5287df] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(io_loop_run+0x28) [0x7f90ed527748] -> /usr/local/dovecot/lib/dovecot/libdovecot.so.0(master_service_run+0x13) [0x7f90ed513123] -> dovecot- proxy/auth(main+0x376) [0x41bd26] -> /lib/libc.so.6(__libc_start_main+0xfd) [0x7f90ec2d8c8d] -> dovecot-proxy/auth() [0x40d0f9] Nov 27 06:38:36 dovecot-1 director: Error: Auth server disconnected unexpectedly Nov 27 06:38:36 dovecot-1 auth: Fatal: master: service(auth): child 26841 killed with signal 6 (core dumps disabled) This is LDAP configuration on one of director servers where clients are authenticated. uris = ldap://ldap-node-2.mynetwork.net, ldap://ldap-node-3.mynetwork.net debug_level = 0 base = ou=email, dc=netregistry, dc=net user_attrs = homeDirectory=home, uidNumber=uid, gidNumber=gid, mailQuotaSize=quota_rule=*:storage=%$ user_filter = (&(objectClass=nrPOPAccount)(uid=%u)) pass_attrs = uid=user, userPassword=password, =proxy=y, =destuser=%u, =pass=Secret456 pass_filter = (&(objectClass=nrPOPAccount)(uid=%u)) default_pass_scheme = PLAIN Regards, Alexandr Sabitov System Administrator From trentl at webinabox.net.au Wed Nov 27 08:43:45 2013 From: trentl at webinabox.net.au (Trent Lloyd) Date: Wed, 27 Nov 2013 14:43:45 +0800 Subject: [Dovecot] proxy_maybe & director incompatibility Message-ID: <7D703348-0D00-497D-9007-FED2100BDAE0@webinabox.net.au> Hi Folks, I spent quite some time yesterday understanding how proxy works along with the director. I came to the conclusion that proxy_maybe and director cannot be used together, but this isn?t a true incompatibility so much as caused by the way things are handled and the order they are processed in. The way proxy_maybe works is that it is processed by the auth provider once it gets the response from the passdb, it checks for proxy_maybe and then checks for the ?host? parameter and compares it to the local IP (this is always null at that stage, because director won?t add host until later). proxy_maybe is deleted and then if the IPs do not match (i.e. the connection should be proxied) it sets proxy. This result is returned from the auth provider and then piped into director, which adds the relevant ?host? parameter if ?proxy? is set. The problem here is that because proxy_maybe is processed before director, it is not possible to conditionally proxy when using director ? only if host is also returned from passdb. The secondary problem is that director only adds host= if proxy is set (and the auth code generally assumes proxy/proxy_maybe/proxy_always are exclusive settings) ? this logic would also need to change. You would also need some logic to add host only if host doesn?t already exist, to handle situations where proxies might come from both passdb and/or director. I am seeking to understand if there is any significant reason proxy_maybe is handled during the auth section, it would seem better to simply always set ?proxy=yes?, and then optionally have proxy_maybe passed all the way through to the connection stage and then do the local host check there. This would solve my use case, and I cannot imagine what else it would break ? but I am no expert on dovecot or other people?s use cases, so I am hoping for feedback from others on this and what else would need to be considered or why this would not work before I spent time trying to implement the change. Thanks, Trent Lloyd w: www.webinabox.net.au -------------- next part -------------- A non-text attachment was scrubbed... Name: image001.jpg Type: image/jpeg Size: 13338 bytes Desc: not available URL: From skdovecot at smail.inf.fh-brs.de Wed Nov 27 09:14:15 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 27 Nov 2013 08:14:15 +0100 (CET) Subject: [Dovecot] Dovecot 2.1.16 In-Reply-To: References: =?iso-8859-1?q?=3CMWTD79=248B463A901EA9E842159FFE2911E286EF=40staff?= =?iso-8859-1?q?=2Earuba=2Eit=3E_=3Calpine=2EDEB=2E2=2E02=2E1311260957?= =?iso-8859-1?q?090=2E3650=40pc=2D2m63=2Einf=2Efh=2Dbonn=2Drhein=2Dsie?= =?iso-8859-1?q?g=2Ede=3E?= Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 26 Nov 2013, paolo.brocchi wrote: > Hi,for example in INBOX i would like to have only email with header = > "xxxx", but if a user create a or more folders under INBOX i woluld like > to have the same email that i show into INBOX.Thanks Paolo Hmm. What about an example? 1) on delivery: you want all emails, that do _not_ have a specific header, deleted, aka not filed into any mailbox and 2) if someone has created any sub-mailboxes under the INBOX, say INBOX.folder1 and INBOX.folder2, you want to show up all these messages in your INBOX as well? > >> On Mon, 25 Nov 2013, paolo.brocchi wrote: >> >>> I would like to have in INBOX folder some emails (e.g email with a header key). >>> >>> The same emails i would like to have into the folders, under INBOX, create by users. >> >> Could you be more verbose please, perhaps with an example. >> >> I suppose you need a Sieve script like >> >> if header XYZ ABC { >> fileinto ...; >> } >> ... >> >> But I possibly misunderstand you. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUpWbyF3r2wJMiz2NAQIUYgf8DY1g1fkTIHTNbZ/K358LUYVQyl1o5KdN 4y8rZV+nuW4jD02+0+JH5WtQphcFfJB0dkLQ2J4hZGaRYNR3m897swsL+qe2Uwwm nph5KDZ+rWHaGzGqEjkngrHqb0CoJ1hs0+7ntJB2u6x9ZWorN4hDDGQ5rQpHEWYH pXxCjkKh1WMAJEhu2STfTKWS08Ac+eoHl8SolHWK3qk4+CQIHDXd5eYjm6OmfdSW jlElEaXGOy6zOyCFbkcwT7WUHxzzQ2H3FWoW7OzzXrtYyHwkOAmqVZ9YLKCECjrb 7pu3OJ3Ka3jTEmbpqUYy45d17SYYx0x4xcDM9MVG0DqG4LRkBWMFgQ== =2SAL -----END PGP SIGNATURE----- From md.benson at gmail.com Wed Nov 27 09:44:08 2013 From: md.benson at gmail.com (Google) Date: Wed, 27 Nov 2013 07:44:08 +0000 Subject: [Dovecot] Permissions problems Message-ID: <27A5C80C-74E5-4603-8547-BB972A417DF2@gmail.com> Hi, I have dovecot 2.0.20 running (its an old version, I know, it came from the stable archive at OpenCSW) with Solaris SMF integration working fine. It enables and disables okay. However, I cantt connect to it, it is allowing the connection, but spewing on permissions: Nov 24 17:34:20 proliant-1 dovecot: [ID 583609 mail.info] master: Dovecot v2.0.20 starting up Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.info] imap-login: Login: user=, method=PLAIN, rip=192.168.1.69, lip=192.168.1.72, mpid=18816 Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.info] imap-login: Login: user=, method=PLAIN, rip=192.168.1.69, lip=192.168.1.72, mpid=18818 Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.info] imap-login: Login: user=, method=PLAIN, rip=192.168.1.69, lip=192.168.1.72, mpid=18820 Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.info] imap(mark): Connection closed bytes=17/340 Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.info] imap-login: Login: user=, method=PLAIN, rip=192.168.1.69, lip=192.168.1.72, mpid=18822 Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: rename(/mpool/mail/mark/dovecot.index.log.newlock, /mpool/mail/mark/dovecot.index.log) failed: Permission denied Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: rename(/mpool/mail/mark/dovecot-uidlist.tmp, /mpool/mail/mark/dovecot-uidlist) failed: Permission denied Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: unlink(/mpool/mail/mark/dovecot-uidlist.tmp) failed: Permission denied Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: rename(/mpool/mail/mark/dovecot-uidlist.tmp, /mpool/mail/mark/dovecot-uidlist) failed: Permission denied Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: unlink(/mpool/mail/mark/dovecot-uidlist.tmp) failed: Permission denied Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: rename(/mpool/mail/mark/dovecot-uidlist.tmp, /mpool/mail/mark/dovecot-uidlist) failed: Permission denied Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: unlink(/mpool/mail/mark/dovecot-uidlist.tmp) failed: Permission denied Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: rename(/mpool/mail/mark/dovecot-uidlist.tmp, /mpool/mail/mark/dovecot-uidlist) failed: Permission denied Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: unlink(/mpool/mail/mark/dovecot-uidlist.tmp) failed: Permission denied If I actually try to copy mail to the inbox of the account it core-dumps and does, and the SMF service drops into maintenance mode which requires re-enabling. The output from doveconf -n (this is changes from the default settings I think?) is: root at proliant-1:~# doveconf -n # 2.0.20: /etc/opt/csw/dovecot/dovecot.conf # OS: SunOS 5.11 i86pc zfs auth_first_valid_uid = 101 disable_plaintext_auth = no first_valid_uid = 101 mail_location = maildir:/mpool/mail/%u passdb { driver = pam } ssl_cert = References: =?iso-8859-1?q?=3CMWTD79=248B463A901EA9E842159FFE2911E286EF=40staff?= =?iso-8859-1?q?=2Earuba=2Eit=3E_=3Calpine=2EDEB=2E2=2E02=2E1311260957?= =?iso-8859-1?q?090=2E3650=40pc=2D2m63=2Einf=2Efh=2Dbonn=2Drhein=2Dsie?= =?iso-8859-1?q?g=2Ede=3E_=3CMWVGJP=24CDA008B5CF8C31242AEC77792D6BE7D7?= =?iso-8859-1?q?=40staff=2Earuba=2Eit=3E_=3Calpine=2EDEB=2E2=2E02=2E13?= =?iso-8859-1?q?11270808280=2E3650=40pc=2D2m63=2Einf=2Efh=2Dbonn=2Drhe?= =?iso-8859-1?q?in=2Dsieg=2Ede=3E?= Message-ID: Hi,for example i have this structure:user:pippo at domain.it-->INBOX --> here a would like only mail for example from pluto at domain.itif a user create some subfolder like:--> INBOX.folder1--> INBOX.folder2......... ?in this folder i would show only the emails that i have in INBOXThanksDa: dovecot-bounces at dovecot.org A: "paolo.brocchi" paolo.brocchi at staff.aruba.it Cc: dovecot at dovecot.org Data: Wed, 27 Nov 2013 08:14:15 +0100 (CET) Oggetto: Re: [Dovecot] Dovecot 2.1.16 > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Tue, 26 Nov 2013, paolo.brocchi wrote: > > > Hi,for example in INBOX i would like to have only email with header = > > "xxxx", but if a user create a or more folders under INBOX i woluld like > > to have the same email that i show into INBOX.Thanks Paolo > > Hmm. What about an example? > > 1) on delivery: you want all emails, that do _not_ have a specific header, > deleted, aka not filed into any mailbox > > and > > 2) if someone has created any sub-mailboxes under the INBOX, say > INBOX.folder1 and INBOX.folder2, you want to show up all these messages in > your INBOX as well? > > > > >> On Mon, 25 Nov 2013, paolo.brocchi wrote: > >> > >>> I would like to have in INBOX folder some emails (e.g email with a header key). > >>> > >>> The same emails i would like to have into the folders, under INBOX, create by users. > >> > >> Could you be more verbose please, perhaps with an example. > >> > >> I suppose you need a Sieve script like > >> > >> if header XYZ ABC { > >> fileinto ...; > >> } > >> ... > >> > >> But I possibly misunderstand you. > > - -- > Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUpWbyF3r2wJMiz2NAQIUYgf8DY1g1fkTIHTNbZ/K358LUYVQyl1o5KdN > 4y8rZV+nuW4jD02+0+JH5WtQphcFfJB0dkLQ2J4hZGaRYNR3m897swsL+qe2Uwwm > nph5KDZ+rWHaGzGqEjkngrHqb0CoJ1hs0+7ntJB2u6x9ZWorN4hDDGQ5rQpHEWYH > pXxCjkKh1WMAJEhu2STfTKWS08Ac+eoHl8SolHWK3qk4+CQIHDXd5eYjm6OmfdSW > jlElEaXGOy6zOyCFbkcwT7WUHxzzQ2H3FWoW7OzzXrtYyHwkOAmqVZ9YLKCECjrb > 7pu3OJ3Ka3jTEmbpqUYy45d17SYYx0x4xcDM9MVG0DqG4LRkBWMFgQ== > =2SAL > -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Wed Nov 27 11:04:31 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 27 Nov 2013 10:04:31 +0100 (CET) Subject: [Dovecot] Permissions problems In-Reply-To: <27A5C80C-74E5-4603-8547-BB972A417DF2@gmail.com> References: <27A5C80C-74E5-4603-8547-BB972A417DF2@gmail.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 27 Nov 2013, Google wrote: > Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: > rename(/mpool/mail/mark/dovecot.index.log.newlock, > /mpool/mail/mark/dovecot.index.log) failed: Permission denied That's a filesystem problem. > The output from doveconf -n (this is changes from the default settings I > think?) is: > > root at proliant-1:~# doveconf -n > # 2.0.20: /etc/opt/csw/dovecot/dovecot.conf > # OS: SunOS 5.11 i86pc zfs > auth_first_valid_uid = 101 > disable_plaintext_auth = no > first_valid_uid = 101 > mail_location = maildir:/mpool/mail/%u > passdb { > driver = pam > } > ssl_cert = ssl_key = userdb { > driver = passwd > } > > The mail_location is in a ZFS filesystem on my RAIDz array. I couldnt think > of any other way of creating user-specific folders in the location. As the value > suggests, each user gets their own directory on the filesystem for mail. The users do have distinct home directories (from passwd) separated from the mail location? > Is this still a ?safe? way to do things or would I be better off relocating each > user?s ?home? directory to the pool somehow? > > This is what the directory currently looks like: > > mark at proliant-1:~$ ls -la /mpool/mail > total 6 > drwxrwxrwx+ 3 root root 3 2013-11-24 17:17 . > drwxr-xr-x+ 5 root root 5 2013-11-24 13:50 .. > drwxrwxrwx+ 5 mark staff 9 2013-11-24 22:20 mark > > mark at proliant-1:~$ ls -la /mpool/mail/mark/ > total 14 > drwxrwxrwx+ 5 mark staff 9 2013-11-24 22:20 . > drwxrwxrwx+ 3 root root 3 2013-11-24 17:17 .. > drwxrwxrwx+ 2 mark staff 2 2013-11-24 17:17 cur > -rwxrwxrwx+ 1 mark staff 51 2013-11-24 22:20 dovecot-uidlist.tmp > -rwxrwxrwx+ 1 mark staff 8 2013-11-24 22:20 dovecot-uidvalidity > -rwxrwxrwx+ 1 mark staff 0 2013-11-24 17:17 dovecot-uidvalidity.529234ad > -rwxrwxrwx+ 1 mark staff 40 2013-11-24 22:20 dovecot.index.log.newlock > drwxrwxrwx+ 2 mark staff 2 2013-11-24 17:17 new > drwxrwxrwx+ 2 mark staff 3 2013-11-24 17:21 tmp > > Any ideas? is it possible that two Dovecot instances try to access the same storage ? Or is there some hardening (SELinux/AppArmor) in action? Or are there some special ACLs in ZFS that prevent that rename() operation on file system level? Does the user mark has the permission at all? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUpW1n13r2wJMiz2NAQL6+wf/UdkI0kKZKwRT1+VgSxE2QJqVwrDr0GN2 IK5fljL3Hnx4PDjnofEJ6yXT7xJGTveaZ9yQahQbx0oakBBTKsEgZsNxBB+TOyjE MsYBzYbQKK+JqR7yUt3YwnJXmPrCATOhd0WKqgX4xb94X4nn3id2/l3bjqNnQUtm QPB2r+gVT2AtisB5Onzaocf7wdkPoMD1vMaW+Z9VqSBvzWzezoxoEXDbButWkrQf C1K0r+eK+IU3KxXboZ2ceu4QqlFth8GlOX9F9e2zFfRJ747qJcmEI9wxfbqCkBKs ic+A//km4mv6Y6erObBOj/jtT82jm7P0RBWBKkmKnO6Fg7AI/GIvQg== =qGop -----END PGP SIGNATURE----- From md.benson at gmail.com Wed Nov 27 11:24:27 2013 From: md.benson at gmail.com (Mark Benson) Date: Wed, 27 Nov 2013 09:24:27 +0000 Subject: [Dovecot] Permissions problems In-Reply-To: References: <27A5C80C-74E5-4603-8547-BB972A417DF2@gmail.com> Message-ID: > That's a filesystem problem. I figured as much. > The users do have distinct home directories (from passwd) separated from the mail location? Yeah, in this case /home/mark is the home folder. If necessary I can remove the mail_location directive and test using the users home dir and see if that fails (also on ZFS but in the root storage pool). > is it possible that two Dovecot instances > try to access the same storage ? Or is > there some hardening (SELinux/ > AppArmor) in action? The dovecot mail system is running on OpenSolaris (OpenIndiana to be precise) and uses Solaris's Service Management (smf) to stop and start. I am relatively sure SMF won't let 2 instances run at once. > Or are there some special ACLs in ZFS that > prevent that rename() operation on file > system level? Does the user mark has the > permission at all? Not certain. I don't think so and I certainly didn't enable anything along those lines but this is my first deployment on Solaris so I'm a little out of my depth. I'm used to Debian Linux. -- Mark From andreas at cymail.eu Wed Nov 27 17:10:11 2013 From: andreas at cymail.eu (Andreas Kasenides) Date: Wed, 27 Nov 2013 17:10:11 +0200 Subject: [Dovecot] Enabling quota Message-ID: <272a219a05f1c4453c2d9a7697e06699@cymail.eu> Hello everybody. Sorry if this has been answered before, I just could not find any info. Just point me if that is so. Can somebody please explain why there is no option --with-quota (ot may be --with-fs-quota) for the configure command? As it stands now, at least for the fs back-end the only thing that tells us that Dovecot does not do quotas is after the build/configuration we get dovecot: imap(xxdxx): Error: quotactl(Q_GETQUOTA, csfs9.cs.ucy.ac.cy:/mail) failed: No such file or directory which essentially means that during the build no quota development libraries were found and therefore fs quota will not function. This is rather confusing and the above error does not help much. Note also that "dovecot --build-options" is also silent on this. I suppose other back-ends do not have this requirement since there is no need for such devel libraries. thankx Andreas From info at w4r.nl Wed Nov 27 12:41:01 2013 From: info at w4r.nl (Roger Berger) Date: Wed, 27 Nov 2013 10:41:01 +0000 Subject: [Dovecot] sendmail to postfix-dovecot Message-ID: <3B7C2564C718F1458C2229A606C2B58636AF73BB@SBSSERVER.internetional.local> Hi, I am a newbie to postfix and dovecot so I hope you can help me. I have an old server running sendmail for many years now. On this server I have about 100 domains and 500 users. The users are named as myuser or myuser.dom. People use pop3 and imap for fetching reading their email. I've setup a new server with postfix and dovecot2 on freebsd and managed to get it all working with virtual users. However, now I found out that I overlooked something; People have to login with username at domain.tld on the new server but only use their username on the old server. This means they all have to change their login credentials, which is not an option. Is it possible to do some scripting before authentication where the username is looked up in the database and the right domain is added to the account? If I understand right it is not possible to use system and virtual users together. Thanks, Roger From me at junc.eu Wed Nov 27 17:43:40 2013 From: me at junc.eu (Benny Pedersen) Date: Wed, 27 Nov 2013 16:43:40 +0100 Subject: [Dovecot] sendmail to postfix-dovecot In-Reply-To: <3B7C2564C718F1458C2229A606C2B58636AF73BB@SBSSERVER.internetional.local> References: <3B7C2564C718F1458C2229A606C2B58636AF73BB@SBSSERVER.internetional.local> Message-ID: <6e2b2b53b3de39111f239be1010185cc@junc.eu> Roger Berger skrev den 2013-11-27 11:41: > If I understand right it is not possible to use system > and virtual users together. incorrect it is, see here http://wiki2.dovecot.org/VirtualUsers part of usernames and domains its all about dovecot auth how its configured, if you want both system and virtual users make sure system users get domain stripped in auth nned more help ?, post dovecot -n From andreas at cymail.eu Wed Nov 27 18:18:06 2013 From: andreas at cymail.eu (Andreas Kasenides) Date: Wed, 27 Nov 2013 18:18:06 +0200 Subject: [Dovecot] Failute to compile of pigeonhole-0.4.2 with Dovecot 2.2.7 In-Reply-To: <529506EA.6010002@rename-it.nl> References: <529506EA.6010002@rename-it.nl> Message-ID: On 26-11-2013 22:39, Stephan Bosch wrote: > On 11/26/2013 3:27 PM, Andreas Kasenides wrote: >> On trying to compile pigeonhole-0.4.2 on Dovecot 2.2.7 on a CentOS 6.4 >> machine >> Linux xxx.xxx 2.6.32-358.14.1.el6.x86_64 #1 SMP Tue Jul 16 23:51:20 >> UTC 2013 x86_64 x86_64 x86_64 GNU/Linux >> >> with ./configure --with-dovecot=/usr/local/lib/dovecot >> I get the following error: >> >> ............ >> /bin/sh ../../libtool --tag=CC --mode=compile gcc -DHAVE_CONFIG_H >> -I. -I../.. -I/usr/local/include/dovecot -I../.. >> -I../../src/lib-sieve -std=gnu99 -g -O2 -Wall -W >> -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith >> -Wchar-subscripts -Wformat=2 -Wbad-function-cast -fno-builtin-strftime >> -Wstrict-aliasing=2 -MT sieve-storage.lo -MD -MP -MF >> .deps/sieve-storage.Tpo -c -o sieve-storage.lo sieve-storage.c >> libtool: compile: gcc -DHAVE_CONFIG_H -I. -I../.. >> -I/usr/local/include/dovecot -I../.. -I../../src/lib-sieve -std=gnu99 >> -g -O2 -Wall -W -Wmissing-prototypes -Wmissing-declarations >> -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast >> -fno-builtin-strftime -Wstrict-aliasing=2 -MT sieve-storage.lo -MD -MP >> -MF .deps/sieve-storage.Tpo -c sieve-storage.c -fPIC -DPIC -o >> .libs/sieve-storage.o >> sieve-storage.c: In function >> 'sieve_storage_inbox_script_attribute_set': >> sieve-storage.c:702: error: >> 'MAILBOX_ATTRIBUTE_PREFIX_DOVECOT_PVT_SERVER' undeclared (first use in >> this function) >> sieve-storage.c:702: error: (Each undeclared identifier is reported >> only once >> sieve-storage.c:702: error: for each function it appears in.) >> sieve-storage.c:702: error: expected ')' before string constant >> sieve-storage.c:693: warning: unused parameter 'name' >> sieve-storage.c: In function >> 'sieve_storage_inbox_script_attribute_rename': >> sieve-storage.c:718: error: >> 'MAILBOX_ATTRIBUTE_PREFIX_DOVECOT_PVT_SERVER' undeclared (first use in >> this function) >> sieve-storage.c:718: error: expected ')' before string constant >> sieve-storage.c:720: error: expected ')' before string constant >> sieve-storage.c:709: warning: unused parameter 'oldname' >> sieve-storage.c:709: warning: unused parameter 'newname' >> sieve-storage.c: In function >> 'sieve_storage_inbox_script_attribute_unset': >> sieve-storage.c:738: error: >> 'MAILBOX_ATTRIBUTE_PREFIX_DOVECOT_PVT_SERVER' undeclared (first use in >> this function) >> sieve-storage.c:738: error: expected ')' before string constant >> sieve-storage.c:729: warning: unused parameter 'name' >> make[3]: *** [sieve-storage.lo] Error 1 >> make[3]: Leaving directory >> `/root/dovecot-2.2-pigeonhole-0.4.2/src/lib-sievestorage' >> make[2]: *** [all-recursive] Error 1 >> make[2]: Leaving directory `/root/dovecot-2.2-pigeonhole-0.4.2/src' >> make[1]: *** [all-recursive] Error 1 >> make[1]: Leaving directory `/root/dovecot-2.2-pigeonhole-0.4.2' >> make: *** [all] Error 2 > > I tried this here and I cannot reproduce this problem. It looks as > though your installed dovecot at /usr/local/lib/dovecot is older than > 2.2.7. Can you verify? What happens if you point it directly at your > compiled Dovecot source tree? > > Regards, > > Stephan. Thank you Stephan. You are right. This was a 2.2.4 Dovecot. Sorry. Upgrading solved this problem.Now on to the configuration. Andreas From skdovecot at smail.inf.fh-brs.de Wed Nov 27 18:48:49 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 27 Nov 2013 17:48:49 +0100 (CET) Subject: [Dovecot] sendmail to postfix-dovecot In-Reply-To: <6e2b2b53b3de39111f239be1010185cc@junc.eu> References: <3B7C2564C718F1458C2229A606C2B58636AF73BB@SBSSERVER.internetional.local> <6e2b2b53b3de39111f239be1010185cc@junc.eu> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 27 Nov 2013, Benny Pedersen wrote: > Roger Berger skrev den 2013-11-27 11:41: >> If I understand right it is not possible to use system >> and virtual users together. > > incorrect it is, see here http://wiki2.dovecot.org/VirtualUsers part of > usernames and domains > > its all about dovecot auth how its configured, if you want both system and > virtual users make sure system users get domain stripped in auth in addition to Benny's remark, you can also override the username, e.g. system users may auth without domain, but passdb/userdb return the user with domain. Then you can have all users as virtual user/domain. But probably using two userdb's is easier to maintain. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUpYicV3r2wJMiz2NAQLA8Af/UihRhqMl+zMA8KhaeTZNA2HXslfnwEby nYwEjaznsW07o8oJw4uEpABE+iifZbexPBlBYz9ZifDbcPjz40EyXDbMPaK1CFQs 1ScetGtKli0/jZue4kTbuXKZhzRAqU+fQDwgsyCGCtQEdzp+CdW7IDRnUltgtFQg YFcdHENNpOGPnht+vMCOlnPRLmqzasQujOALe3CWNhU/MsD1EfQC6Hw5hx8btYpd M731NdH7YT8RH2SV+FOPWO1Bixg0sqw15VJznj4390jlmVsIuNu47ABt0Ht6Kfm2 AHyi7oZz3EpRyl7RAI+dwKTd0wKP3sgmvnbdqrDdNVPUIp5cTmaHCA== =5Jpo -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Wed Nov 27 18:59:52 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 27 Nov 2013 17:59:52 +0100 (CET) Subject: [Dovecot] Enabling quota In-Reply-To: <272a219a05f1c4453c2d9a7697e06699@cymail.eu> References: <272a219a05f1c4453c2d9a7697e06699@cymail.eu> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 27 Nov 2013, Andreas Kasenides wrote: > Sorry if this has been answered before, I just could not find any info. Just > point me if that is so. > > Can somebody please explain why there is no option --with-quota (ot may be > --with-fs-quota) > for the configure command? > > As it stands now, at least for the fs back-end the only thing that tells us > that > Dovecot does not do quotas is after the build/configuration we get > > dovecot: imap(xxdxx): Error: quotactl(Q_GETQUOTA, csfs9.cs.ucy.ac.cy:/mail) > failed: No such file or directory > > which essentially means that during the build no quota development libraries > were found > and therefore fs quota will not function. This is rather confusing and the > above error does not help much. > Note also that "dovecot --build-options" is also silent on this. > I suppose other back-ends do not have this requirement since there is no need > for such devel libraries. in which development library your system needs? I thought that error message means, that the file "csfs9.cs.ucy.ac.cy:/mail" does not exist (or that there is no quota there). - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUpYlCF3r2wJMiz2NAQJiqggAiicrjYdYte8x9L6AS8YWMWagyR8Dv7SF 04EK1BQ3xGZMesFY+nMliWLjNXFbBKRzkMZhBiQ5m1cBp2MiYx25iibanJtg8vIQ oAQ1mN0Mb0aLhvY6PlHxVDJZUMznfBrLpt+Ei1wuE3FuQ7PHyMSsolky30DJc/O+ Y4KvHYVwHfLrXZe/+RbdvESZApyFuwRAIhmtACl1Wjj7/LRVeQZmG5lZ6L1kBdsL RAXsAtt1DegMMyn0YZfwdpcRPSvoSO63HgBzYwuNmQgDno0otOTAsIBWIjFpCnEh 4H4q/SXzizLse/Cp1Ag8oGP8+bmfRPZBjLOPC7ztCxoBbZ/ePNJ0Og== =EZfY -----END PGP SIGNATURE----- From skeffling at gmail.com Wed Nov 27 19:06:19 2013 From: skeffling at gmail.com (Skeffling) Date: Wed, 27 Nov 2013 17:06:19 +0000 Subject: [Dovecot] Dsync on a medium sized site Message-ID: <5296268B.2030403@gmail.com> Hello, We're looking at changing our current Dovecot setup to use dsync between 2 servers in different data centres to share the load and to provide resilience. We're quite excited about the possibilities! We receive about 100,000 emails a day, to about 10,000 mailboxes - a mix of IMAP and POP3. We'll use Dovecot Deliver via exim to put mail in to the Maildir. Has dsync been used on sites of this size? -Any tips? Do people tend to sync between 2 servers, or do some people use more than 2? I'm interested in other people's experience before setting up some test boxes. Thanks! Andrew. From andreas at cymail.eu Wed Nov 27 19:14:47 2013 From: andreas at cymail.eu (Andreas Kasenides) Date: Wed, 27 Nov 2013 19:14:47 +0200 Subject: [Dovecot] Enabling quota In-Reply-To: References: <272a219a05f1c4453c2d9a7697e06699@cymail.eu> Message-ID: <1a64324cbce0be2ee8bc08f025e3f4ca@cymail.eu> On 27-11-2013 18:59, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Wed, 27 Nov 2013, Andreas Kasenides wrote: > >> Sorry if this has been answered before, I just could not find any >> info. Just point me if that is so. >> >> Can somebody please explain why there is no option --with-quota (ot >> may be --with-fs-quota) >> for the configure command? >> >> As it stands now, at least for the fs back-end the only thing that >> tells us that >> Dovecot does not do quotas is after the build/configuration we get >> >> dovecot: imap(xxdxx): Error: quotactl(Q_GETQUOTA, >> csfsxxx.cs.ucy.ac.cy:/mail) failed: No such file or directory >> >> which essentially means that during the build no quota development >> libraries were found >> and therefore fs quota will not function. This is rather confusing and >> the above error does not help much. >> Note also that "dovecot --build-options" is also silent on this. >> I suppose other back-ends do not have this requirement since there is >> no need for such devel libraries. > > in which development library your system needs? I thought that error > message means, that the file "csfsxxx.cs.ucy.ac.cy:/mail" does not > exist > (or that there is no quota there). > > - -- Steffen Kaiser Exactly here is the confusion. I have verified that this error is not related to the actual mount but the way Dovecot has been built. Actually the existence of the development libraries. In my case on a CentOS system it needs to find the quota-devel libraries which it finds and silently builds quota support for the fs back-end. Note that nothing afterwards tells you that that has happened!! I think!!! Andreas From dovecot at vosslamber.nl Wed Nov 27 19:23:31 2013 From: dovecot at vosslamber.nl (Luuk) Date: Wed, 27 Nov 2013 18:23:31 +0100 Subject: [Dovecot] Enabling quota In-Reply-To: <1a64324cbce0be2ee8bc08f025e3f4ca@cymail.eu> References: <272a219a05f1c4453c2d9a7697e06699@cymail.eu> <1a64324cbce0be2ee8bc08f025e3f4ca@cymail.eu> Message-ID: <52962A93.20802@vosslamber.nl> On 27-11-2013 18:14, Andreas Kasenides wrote: > On 27-11-2013 18:59, Steffen Kaiser wrote: >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> On Wed, 27 Nov 2013, Andreas Kasenides wrote: >> >>> Sorry if this has been answered before, I just could not find any >>> info. Just point me if that is so. >>> >>> Can somebody please explain why there is no option --with-quota (ot >>> may be --with-fs-quota) >>> for the configure command? >>> >>> As it stands now, at least for the fs back-end the only thing that >>> tells us that >>> Dovecot does not do quotas is after the build/configuration we get >>> >>> dovecot: imap(xxdxx): Error: quotactl(Q_GETQUOTA, >>> csfsxxx.cs.ucy.ac.cy:/mail) failed: No such file or directory >>> >>> which essentially means that during the build no quota development >>> libraries were found >>> and therefore fs quota will not function. This is rather confusing >>> and the above error does not help much. >>> Note also that "dovecot --build-options" is also silent on this. >>> I suppose other back-ends do not have this requirement since there is >>> no need for such devel libraries. >> >> in which development library your system needs? I thought that error >> message means, that the file "csfsxxx.cs.ucy.ac.cy:/mail" does not exist >> (or that there is no quota there). >> >> - -- Steffen Kaiser > > Exactly here is the confusion. > I have verified that this error is not related to the actual mount but > the way Dovecot has been built. Actually the existence of the > development libraries. In my case on a CentOS system it needs to find > the quota-devel libraries which it finds and silently builds quota > support for the fs back-end. Note that nothing afterwards tells you that > that has happened!! I think!!! > > Andreas yesterday i did a built of 2.2.9, and quota seems to work... what is the output of doveconf -n ? From dovecot at w4r.nl Wed Nov 27 21:39:39 2013 From: dovecot at w4r.nl (R. Berger) Date: Wed, 27 Nov 2013 20:39:39 +0100 Subject: [Dovecot] sendmail to postfix-dovecot In-Reply-To: References: <3B7C2564C718F1458C2229A606C2B58636AF73BB@SBSSERVER.internetional.local> <6e2b2b53b3de39111f239be1010185cc@junc.eu> Message-ID: <52964A7B.3030608@w4r.nl> Steffen Kaiser schreef op 27-11-2013 17:48: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Wed, 27 Nov 2013, Benny Pedersen wrote: > >> Roger Berger skrev den 2013-11-27 11:41: >>> If I understand right it is not possible to use system >>> and virtual users together. >> >> incorrect it is, see here http://wiki2.dovecot.org/VirtualUsers part >> of usernames and domains >> >> its all about dovecot auth how its configured, if you want both >> system and virtual users make sure system users get domain stripped >> in auth > > in addition to Benny's remark, you can also override the username, > e.g. system users may auth without domain, but passdb/userdb return > the user with domain. Then you can have all users as virtual user/domain. > > But probably using two userdb's is easier to maintain. > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUpYicV3r2wJMiz2NAQLA8Af/UihRhqMl+zMA8KhaeTZNA2HXslfnwEby > nYwEjaznsW07o8oJw4uEpABE+iifZbexPBlBYz9ZifDbcPjz40EyXDbMPaK1CFQs > 1ScetGtKli0/jZue4kTbuXKZhzRAqU+fQDwgsyCGCtQEdzp+CdW7IDRnUltgtFQg > YFcdHENNpOGPnht+vMCOlnPRLmqzasQujOALe3CWNhU/MsD1EfQC6Hw5hx8btYpd > M731NdH7YT8RH2SV+FOPWO1Bixg0sqw15VJznj4390jlmVsIuNu47ABt0Ht6Kfm2 > AHyi7oZz3EpRyl7RAI+dwKTd0wKP3sgmvnbdqrDdNVPUIp5cTmaHCA== > =5Jpo > -----END PGP SIGNATURE----- Here is my dovecot -n: root at mail:/usr/local/etc/dovecot/conf.d # dovecot -n # 2.2.6: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 9.2-RELEASE amd64 auth_default_realm = mail.nedport.net auth_mechanisms = plain login auth_realms = mail.nedport.net nedport.net disable_plaintext_auth = no first_valid_gid = 500 hostname = mail.nedport.net lda_mailbox_autocreate = yes mail_gid = 5000 mail_location = maildir:~/ mail_plugins = quota expire mail_log notify mail_temp_dir = /var/tmp mail_uid = 5000 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /usr/local/etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { expire = Trash mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size quota = maildir:User quota quota_exceeded_message = Storage quota for this account has been exceeded, please try again later. quota_rule = *:storage=1G quota_rule2 = Trash:storage=+30%% quota_rule3 = Sent:storage=+30%% quota_warning = storage=90%% quota-warning 90 %u quota_warning2 = storage=75%% quota-warning 75 %u } pop3_client_workarounds = outlook-no-nuls oe-ns-eoh postmaster_address = postmaster at nedport.net sendmail_path = /usr/local/sbin/sendmail service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } } service quota-warning { executable = script /usr/local/bin/quota-warning.sh unix_listener quota-warning { user = vmail } user = vmail } ssl = no ssl_cert = Hi With dovecot 2.2.5, and dovecot-antispam built from a recent HEAD pull, when copying multiple messages to or from a Spam folder, the plugin sends multiple copies of the first message to the backend. I've tried this with the pipe and spool2dir backends. For example with the spool2dir backend, via IMAP doing A COPY 1:3 Spam yields 3 copies of message id 1 in the dir: dev:imap-8.1 rplatel at imap01:/var/run/dovecot_as_tmp$ sudo -u mail md5sum * 28ad0a215eb7ecbd3a814a8a334d85bf 00000000001385586164-rplatel at ff-dev.com-00001s 28ad0a215eb7ecbd3a814a8a334d85bf 00000000001385586164-rplatel at ff-dev.com-00002s 28ad0a215eb7ecbd3a814a8a334d85bf 00000000001385586164-rplatel at ff-dev.com-00003s I see the same behaviour with the pipe backend, the pipe program is invoked 3 times, but with the same message content. From jtam.home at gmail.com Thu Nov 28 00:51:06 2013 From: jtam.home at gmail.com (Joseph Tam) Date: Wed, 27 Nov 2013 14:51:06 -0800 (PST) Subject: [Dovecot] Permissions problems In-Reply-To: References: Message-ID: wrote: > Nov 24 17:34:27 proliant-1 dovecot: [ID 583609 mail.error] imap(mark): Error: > rename(/mpool/mail/mark/dovecot.index.log.newlock, > /mpool/mail/mark/dovecot.index.log) failed: Permission denied > ... > This is what the directory currently looks like: > > mark at proliant-1:~$ ls -la /mpool/mail > total 6 > drwxrwxrwx+ 3 root root 3 2013-11-24 17:17 . > drwxr-xr-x+ 5 root root 5 2013-11-24 13:50 .. > drwxrwxrwx+ 5 mark staff 9 2013-11-24 22:20 mark I'm think the "+" is the problem: you have, in the words of the manpage for ls, ... this character is a plus sign (+) character if a non-trivial ACL is associated with the file ... Try ls -alv /mpool/mail I don't use ACLs, so I can help you how to modify them. Joseph Tam From kuizhang at gmail.com Thu Nov 28 03:54:18 2013 From: kuizhang at gmail.com (Kui Zhang) Date: Wed, 27 Nov 2013 17:54:18 -0800 Subject: [Dovecot] imap list response has an extra field on some mailboxes. Message-ID: Hello, per rfc3501 7.2.2. LIST Response Contents: name attributes hierarchy delimiter name Dovecot: 2.1.16 /usr/lib/dovecot/imap -u user at domain.tld list "" "*" Most responses are correct. But some appears to not be. """ * LIST (\HasNoChildren) "/" {117} path/to/"part_mailbox_name" other_parts * LIST (\HasNoChildren) "/" {10} "test" box """ char after {117} appears to be \n. All affected mailboxes appears to have ' " ' in mailbox name. And the number between '{' '}' appears to be the length of the path. Anyone ran into this issues before? If so, how to fix it? Is it a bug? Other rfc I should read? Thanks Kui.Z From dovecot at dpe.lusars.net Thu Nov 28 06:17:29 2013 From: dovecot at dpe.lusars.net (David Bishop) Date: Wed, 27 Nov 2013 23:17:29 -0500 Subject: [Dovecot] Replication via sneakernet Message-ID: Is there a way to get a running transaction log from a Dovecot instance to synchronize (and I use that word very, very loosely) multiple instances that don't share a network? Why I would want to do such a thing: I have a couple way stations along a long, winding road through very hilly country, and at each of these stations, I have a few people (and many, many more at one end of the road). Which people are where varies from hour to hour (but they're all members of a known, larger, group of people with accounts). It would be helpful to get communication (however limited) along this road (and establishing direct communication, either through radio or landline, is not feasible within the budget constraints I have), and it is possible to store a complete copy of the mail spool to a small box at each station (the total mail spool over the period I care about is in the tens of megs). There are trams shuttling back and forth along this road (stopping at each station), and adding a small box (such as a weatherproofed Raspberry Pi with a wifi dongle) to transport files up and down the road is pretty simple. Doing incremental copies of the mail spool is also simple, keeping track of files that get moved or deleted is a bit harder (but still not that bad), but I have no idea how hard it is to track what messages have been seen, especially for the shared folders (which we use instead of mailing lists). I realize this is not a "normal" use of Dovecot, but given this, does anyone who knows the software (and how it keeps track of messages) better have suggestions on how to approach the problem? From tss at iki.fi Thu Nov 28 08:02:13 2013 From: tss at iki.fi (Timo Sirainen) Date: Thu, 28 Nov 2013 07:02:13 +0100 Subject: [Dovecot] Replication via sneakernet In-Reply-To: References: Message-ID: On 28.11.2013, at 5.17, David Bishop wrote: > Is there a way to get a running transaction log from a Dovecot instance to > synchronize (and I use that word very, very loosely) multiple instances > that don't share a network? dsync replication was designed in a way that would allow transferring the state over e.g. USB sticks, although it?s missing some code to make it actually possible. > There are trams shuttling back and forth along this road (stopping at each > station), and adding a small box (such as a weatherproofed Raspberry Pi > with a wifi dongle) to transport files up and down the road is pretty > simple. But if you do it this way and you can keep a full copy of the shared mail storage on your Raspberry, that would be possible already with dsync I think. dsync supports quick incremental updates by keeping track of the previous state between the servers. This state is saved in a file, so you could keep a different state for each different dsynced server. From skdovecot at smail.inf.fh-brs.de Thu Nov 28 11:08:46 2013 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 28 Nov 2013 10:08:46 +0100 (CET) Subject: [Dovecot] sendmail to postfix-dovecot In-Reply-To: <52964A7B.3030608@w4r.nl> References: <3B7C2564C718F1458C2229A606C2B58636AF73BB@SBSSERVER.internetional.local> <6e2b2b53b3de39111f239be1010185cc@junc.eu> <52964A7B.3030608@w4r.nl> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 27 Nov 2013, R. Berger wrote: > Steffen Kaiser schreef op 27-11-2013 17:48: >> On Wed, 27 Nov 2013, Benny Pedersen wrote: >> >>> Roger Berger skrev den 2013-11-27 11:41: >>>> If I understand right it is not possible to use system >>>> and virtual users together. >>> >>> incorrect it is, see here http://wiki2.dovecot.org/VirtualUsers part of >>> usernames and domains >>> >>> its all about dovecot auth how its configured, if you want both system and >>> virtual users make sure system users get domain stripped in auth >> >> in addition to Benny's remark, you can also override the username, e.g. >> system users may auth without domain, but passdb/userdb return the user >> with domain. Then you can have all users as virtual user/domain. >> >> But probably using two userdb's is easier to maintain. > > Here is my dovecot -n: > root at mail:/usr/local/etc/dovecot/conf.d # dovecot -n > # 2.2.6: /usr/local/etc/dovecot/dovecot.conf > mail_location = maildir:~/ you should not use the home directory as base for mail storage, use ~/Maildir > passdb { > args = /usr/local/etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > userdb { > driver = prefetch > } > userdb { > args = /usr/local/etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > I've been thinking about this and I want to put all system users in the > database using the provided tools from postfixadmin and then sync the mail > using imapsync. OK, then all user data are in the SQL database. > In that case domain admins can handle their own mailboxes using postfixadmin. > In that case I have all users as virtual users, but they have to be able to > login with only their username. > That means new users should login by using their complete emailaddress and > old users as username or emailaddress. > so: > old user: info at domain1.com user: info can login as info or info at domain1.com > old user: info at domain2.com user: info.ltd can login as info.ltd or > info at domain2.com > new user: info at domain3.com can login only as info at domain3.com > if the new user tries to login as info he gets a password failure > Is this possible an correct ? configure your SQL query so, that info at domain1.com and info hits the same entry and that the username is overwritten (field "user", IMHO) to info at domain1.com. Then this user can login as info at domain1.com or info with the same password, internally Dovecot handles all mail as info at domain1.com only. Do the same for all other users as appropriate. One can craft the database like so: + one table with the user data of info at domain1.com, username, password a.s.o. + one table with alias names and foreign key of user data table + the select for passdb joins both tables Search the list and wiki for such setup, e.g. http://wiki2.dovecot.org/PasswordDatabase?highlight=%28username%29 - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUpcIHl3r2wJMiz2NAQL5tgf/c130rwnZvXqNQOKiMpympmIZQhEmTMbd skSn+Bq7oLlU1nR3ao8HrdPmDlKeJYDUgU2Gr2U1Gw8z247TdFCQhLczFrm0gL+J gDUGS35sNVo6muSPlXGuTRL3J0kFDZX25Ic6APsvahk6HJGg3Z65cmYDLvi9PiyN TYysA4/zHmn0rZqzAdmeJdRF5VdW4CcDJ2ThKfbUVDgVYhRLRV1NhxK1sujkAWR8 WRTd96iB7dqNZo4SMkxQ9qhwL+HmfyWY2z2WVniqkhzUSRuc3v/StOU4/T4EaUTA wrM9TbHOWU7KU3DAmFj9TuVNP0KU2eINREainhl86IBrK5HTCY1NTQ== =0voO -----END PGP SIGNATURE----- From hendry at dabase.com Thu Nov 28 12:22:09 2013 From: hendry at dabase.com (Kai Hendry) Date: Thu, 28 Nov 2013 18:22:09 +0800 Subject: [Dovecot] Dovecot's brittle configuration syntax Message-ID: <20131128102209.GA7912@sg.webconverger.com> Hi there, Whilst trying to come up with a minimal configuration for Dovecot: http://dabase.com/blog/Minimal_Dovecot/ I noticed the configuration syntax is a bit admin unfriendly. It's easy to get an infamous Error code 89. Is there any back story to the grammar or language this configuration is in? Kind regards, From dovecot at w4r.nl Thu Nov 28 12:56:52 2013 From: dovecot at w4r.nl (Roger) Date: Thu, 28 Nov 2013 11:56:52 +0100 Subject: [Dovecot] sendmail to postfix-dovecot In-Reply-To: References: <3B7C2564C718F1458C2229A606C2B58636AF73BB@SBSSERVER.internetional.local> <6e2b2b53b3de39111f239be1010185cc@junc.eu> <52964A7B.3030608@w4r.nl> Message-ID: <000001ceec28$8bfffee0$a3fffca0$@nl> OK, My dovecot-sql.conf.ext looks like this: connect = host=127.0.0.1 port=3306 user=postfix password=blabla dbname=postfix driver = mysql default_pass_scheme = MD5-CRYPT password_query = SELECT password,CONCAT('/mail/', maildir) AS userdb_home,\ '5000' AS userdb_uid, '5000' AS userdb_gid, allow_nets,\ concat('*:bytes=', quota) AS userdb_quota_rule\ FROM mailbox WHERE username='%u' AND domain='%d' AND active=1 user_query = SELECT CONCAT('/mail/', maildir) AS home, 'maildir:~/' as mail, '5000' AS uid, '5000' AS gid,\ concat('*:bytes=', quota) AS quota_rule\ FROM mailbox WHERE username='%u' AND domain='%d' AND active=1 #iterate_query = SELECT username AS user FROM mailbox -----Oorspronkelijk bericht----- Van: dovecot-bounces at dovecot.org [mailto:dovecot-bounces at dovecot.org] Namens Steffen Kaiser Verzonden: donderdag 28 november 2013 10:09 Aan: R. Berger CC: dovecot at dovecot.org Onderwerp: Re: [Dovecot] sendmail to postfix-dovecot -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 27 Nov 2013, R. Berger wrote: > Steffen Kaiser schreef op 27-11-2013 17:48: >> On Wed, 27 Nov 2013, Benny Pedersen wrote: >> >>> Roger Berger skrev den 2013-11-27 11:41: >>>> If I understand right it is not possible to use system and virtual >>>> users together. >>> >>> incorrect it is, see here http://wiki2.dovecot.org/VirtualUsers part >>> of usernames and domains >>> >>> its all about dovecot auth how its configured, if you want both >>> system and virtual users make sure system users get domain stripped >>> in auth >> >> in addition to Benny's remark, you can also override the username, e.g. >> system users may auth without domain, but passdb/userdb return the >> user with domain. Then you can have all users as virtual user/domain. >> >> But probably using two userdb's is easier to maintain. > > Here is my dovecot -n: > root at mail:/usr/local/etc/dovecot/conf.d # dovecot -n # 2.2.6: > /usr/local/etc/dovecot/dovecot.conf > mail_location = maildir:~/ you should not use the home directory as base for mail storage, use ~/Maildir > passdb { > args = /usr/local/etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > userdb { > driver = prefetch > } > userdb { > args = /usr/local/etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > I've been thinking about this and I want to put all system users in > the database using the provided tools from postfixadmin and then sync > the mail using imapsync. OK, then all user data are in the SQL database. > In that case domain admins can handle their own mailboxes using postfixadmin. > In that case I have all users as virtual users, but they have to be > able to login with only their username. > That means new users should login by using their complete emailaddress > and old users as username or emailaddress. > so: > old user: info at domain1.com user: info can login as info or > info at domain1.com old user: info at domain2.com user: info.ltd can login > as info.ltd or info at domain2.com new user: info at domain3.com can login > only as info at domain3.com if the new user tries to login as info he > gets a password failure Is this possible an correct ? configure your SQL query so, that info at domain1.com and info hits the same entry and that the username is overwritten (field "user", IMHO) to info at domain1.com. Then this user can login as info at domain1.com or info with the same password, internally Dovecot handles all mail as info at domain1.com only. Do the same for all other users as appropriate. One can craft the database like so: + one table with the user data of info at domain1.com, username, password a.s.o. + one table with alias names and foreign key of user data table + the select for passdb joins both tables Search the list and wiki for such setup, e.g. http://wiki2.dovecot.org/PasswordDatabase?highlight=%28username%29 - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUpcIHl3r2wJMiz2NAQL5tgf/c130rwnZvXqNQOKiMpympmIZQhEmTMbd skSn+Bq7oLlU1nR3ao8HrdPmDlKeJYDUgU2Gr2U1Gw8z247TdFCQhLczFrm0gL+J gDUGS35sNVo6muSPlXGuTRL3J0kFDZX25Ic6APsvahk6HJGg3Z65cmYDLvi9PiyN TYysA4/zHmn0rZqzAdmeJdRF5VdW4CcDJ2ThKfbUVDgVYhRLRV1NhxK1sujkAWR8 WRTd96iB7dqNZo4SMkxQ9qhwL+HmfyWY2z2WVniqkhzUSRuc3v/StOU4/T4EaUTA wrM9TbHOWU7KU3DAmFj9TuVNP0KU2eINREainhl86IBrK5HTCY1NTQ== =0voO -----END PGP SIGNATURE----- OK, I have changed my mail_location. But the mysql is a bit off a hassle. If I add tables to the database, will it still work with postfixadmin? My dovecot-sql.conf.ext looks like this: connect = host=127.0.0.1 port=3306 user=postfix password=blabla dbname=postfix driver = mysql default_pass_scheme = MD5-CRYPT password_query = SELECT password,CONCAT('/mail/', maildir) AS userdb_home,\ '5000' AS userdb_uid, '5000' AS userdb_gid, allow_nets,\ concat('*:bytes=', quota) AS userdb_quota_rule\ FROM mailbox WHERE username='%u' AND domain='%d' AND active=1 user_query = SELECT CONCAT('/mail/', maildir) AS home, 'maildir:~/' as mail, '5000' AS uid, '5000' AS gid,\ concat('*:bytes=', quota) AS quota_rule\ FROM mailbox WHERE username='%u' AND domain='%d' AND active=1 #iterate_query = SELECT username AS user FROM mailbox I'll check out the wiki pages. Roger From hmoreno at gmv.com Thu Nov 28 17:38:03 2013 From: hmoreno at gmv.com (=?iso-8859-1?Q?H=E9ctor_Moreno_Blanco?=) Date: Thu, 28 Nov 2013 15:38:03 +0000 Subject: [Dovecot] shared folder - ACL Message-ID: Hello everyone, I've trying to configure shared folders in dovecot 2.1.6 without success. My configuration is: mail_plugins = quota autocreate mail_log notify acl ... plugin { ... acl_shared_dict = file:/etc/dovecot/shared-mailboxes.db ... } Protocol imap { ... mail_plugins = imap_quota imap_acl ... } When I try to set acl to a folder: a02 setacl inbox.test1 user1 lr a02 BAD Error in IMAP command SETACL: ACLs disabled. In the logs, I can see: dovecot: imap(testing_ddfr): Debug: acl: No acl setting - ACLs are disabled What am I missing? Thank you very much in advanced. Kind regards. H?ctor Moreno Blanco. P Please consider the environment before printing this e-mail. ______________________ This message including any attachments may contain confidential information, according to our Information Security Management System, and intended solely for a specific individual to whom they are addressed. Any unauthorised copy, disclosure or distribution of this message is strictly forbidden. If you have received this transmission in error, please notify the sender immediately and delete it. ______________________ Este mensaje, y en su caso, cualquier fichero anexo al mismo, puede contener informacion clasificada por su emisor como confidencial en el marco de su Sistema de Gestion de Seguridad de la Informacion siendo para uso exclusivo del destinatario, quedando prohibida su divulgacion copia o distribucion a terceros sin la autorizacion expresa del remitente. Si Vd. ha recibido este mensaje erroneamente, se ruega lo notifique al remitente y proceda a su borrado. Gracias por su colaboracion. ______________________ From dovecot at dpe.lusars.net Thu Nov 28 20:08:23 2013 From: dovecot at dpe.lusars.net (David Bishop) Date: Thu, 28 Nov 2013 13:08:23 -0500 Subject: [Dovecot] Replication via sneakernet In-Reply-To: References: Message-ID: D'oh. Replied to Timo instead of to the list. Apologies! On Thu, Nov 28, 2013 at 1:07 PM, David Bishop wrote: > On Thu, Nov 28, 2013 at 1:02 AM, Timo Sirainen wrote: > >> On 28.11.2013, at 5.17, David Bishop wrote: >> >> > There are trams shuttling back and forth along this road (stopping at >> each >> > station), and adding a small box (such as a weatherproofed Raspberry Pi >> > with a wifi dongle) to transport files up and down the road is pretty >> > simple. >> >> But if you do it this way and you can keep a full copy of the shared mail >> storage on your Raspberry, that would be possible already with dsync I >> think. dsync supports quick incremental updates by keeping track of the >> previous state between the servers. This state is saved in a file, so you >> could keep a different state for each different dsynced server. >> > > Bravo for a solution that doesn't require a code change and doesn't seem > to require directly touching the spools! :) > > Reading the man page, it looks like only mirroring for people who happen > to be checking email at a given place (as well as people who have received > mail and the shared mailboxes) seems like a pretty simple thing to do. > Hurrah! > > Thank you, this is wonderful. > > And more questions... > > If I'm running a virtual mail domain, the user/pass I give is for the > virtual mail user, correct? And, in a virtual mail setup, do I specify > "username" or "username at domain"? > > Is there a window beyond which synchronization becomes more difficult? For > instance, if messages (or metadata updates, like "I deleted this message") > get parked overnight without updating, and in the morning (9 hours later), > the trams (one at a time) pull into range of wifi, there won't be > confusion, right? > > From dovecot at w4r.nl Thu Nov 28 23:16:13 2013 From: dovecot at w4r.nl (R. Berger) Date: Thu, 28 Nov 2013 22:16:13 +0100 Subject: [Dovecot] sendmail to postfix-dovecot In-Reply-To: References: <3B7C2564C718F1458C2229A606C2B58636AF73BB@SBSSERVER.internetional.local> <6e2b2b53b3de39111f239be1010185cc@junc.eu> <52964A7B.3030608@w4r.nl> Message-ID: <5297B29D.2000903@w4r.nl> Steffen Kaiser schreef op 28-11-2013 10:08: > >> Here is my dovecot -n: >> root at mail:/usr/local/etc/dovecot/conf.d # dovecot -n >> # 2.2.6: /usr/local/etc/dovecot/dovecot.conf > >> mail_location = maildir:~/ > > you should not use the home directory as base for mail storage, use > ~/Maildir > >> passdb { >> args = /usr/local/etc/dovecot/dovecot-sql.conf.ext >> driver = sql >> } > >> userdb { >> driver = prefetch >> } >> userdb { >> args = /usr/local/etc/dovecot/dovecot-sql.conf.ext >> driver = sql >> } > > >> I've been thinking about this and I want to put all system users in >> the database using the provided tools from postfixadmin and then sync >> the mail using imapsync. > > OK, then all user data are in the SQL database. > >> In that case domain admins can handle their own mailboxes using >> postfixadmin. >> In that case I have all users as virtual users, but they have to be >> able to login with only their username. >> That means new users should login by using their complete >> emailaddress and old users as username or emailaddress. >> so: >> old user: info at domain1.com user: info can login as info or >> info at domain1.com >> old user: info at domain2.com user: info.ltd can login as info.ltd or >> info at domain2.com >> new user: info at domain3.com can login only as info at domain3.com >> if the new user tries to login as info he gets a password failure >> Is this possible an correct ? > > configure your SQL query so, that info at domain1.com and info hits the > same entry and that the username is overwritten (field "user", IMHO) > to info at domain1.com. Then this user can login as info at domain1.com or > info with the same password, internally Dovecot handles all mail as > info at domain1.com only. > > Do the same for all other users as appropriate. > > One can craft the database like so: > > + one table with the user data of info at domain1.com, username, password > a.s.o. > > + one table with alias names and foreign key of user data table > > + the select for passdb joins both tables > > Search the list and wiki for such setup, e.g. > http://wiki2.dovecot.org/PasswordDatabase?highlight=%28username%29 > > - -- Steffen Kaiser > Hmm.. I am googling around for about 4 hours now, but not getting anywhere. Can you point me in the right direction? Thanks, Roger From tss at iki.fi Fri Nov 29 01:12:16 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 29 Nov 2013 00:12:16 +0100 Subject: [Dovecot] Replication via sneakernet In-Reply-To: References: Message-ID: <3CCDCCA3-FC57-4FE4-A4F7-9383188CBBE6@iki.fi> On 28.11.2013, at 19.08, David Bishop wrote: >>>> There are trams shuttling back and forth along this road (stopping at >>> each >>>> station), and adding a small box (such as a weatherproofed Raspberry Pi >>>> with a wifi dongle) to transport files up and down the road is pretty >>>> simple. >>> >>> But if you do it this way and you can keep a full copy of the shared mail >>> storage on your Raspberry, that would be possible already with dsync I >>> think. dsync supports quick incremental updates by keeping track of the >>> previous state between the servers. This state is saved in a file, so you >>> could keep a different state for each different dsynced server. >>> >> >> Bravo for a solution that doesn't require a code change and doesn't seem >> to require directly touching the spools! :) >> >> Reading the man page, it looks like only mirroring for people who happen >> to be checking email at a given place (as well as people who have received >> mail and the shared mailboxes) seems like a pretty simple thing to do. >> Hurrah! >> >> Thank you, this is wonderful. >> >> And more questions... >> >> If I'm running a virtual mail domain, the user/pass I give is for the >> virtual mail user, correct? And, in a virtual mail setup, do I specify >> "username" or "username at domain?? Unrelated to replication and Dovecot doesn?t really care. As long as passdb/userdb works the way you want. >> Is there a window beyond which synchronization becomes more difficult? For >> instance, if messages (or metadata updates, like "I deleted this message") >> get parked overnight without updating, and in the morning (9 hours later), >> the trams (one at a time) pull into range of wifi, there won't be >> confusion, right? The dovecot.index.log is used by replicator process and IMAP CONDSTORE/QRESYNC extensions to send recently expunged messages to the sender. If there have been too many changes, all of the changes will be sent and the performance will be worse. The transaction log sizes are specified by src/lib-index/mail-transaction-log-private.h MAIL_TRANSACTION_LOG_ROTATE_MIN_SIZE MAIL_TRANSACTION_LOG_ROTATE_MAX_SIZE MAIL_TRANSACTION_LOG_ROTATE_TIME. The current defaults are thought to be mostly abuse-only workarounds and normally you shouldn?t reach them. This same tranaction log relates to replication efficiency. From jtam.home at gmail.com Fri Nov 29 03:20:38 2013 From: jtam.home at gmail.com (Joseph Tam) Date: Thu, 28 Nov 2013 17:20:38 -0800 (PST) Subject: [Dovecot] Dovecot's brittle configuration syntax In-Reply-To: References: Message-ID: Kai Hendry wrote: > Whilst trying to come up with a minimal configuration for Dovecot: > http://dabase.com/blog/Minimal_Dovecot/ I think your characterization of the complexity of dovecot configuration by simply counting configuration lines to get it working is off base. It's conceivable to have all the default values work for you and only specify those that differ from defaults (or configure your system to conform to defaults if you want to place the proverbial cart before the horse), but that doesn't make it less complex -- it just hides it. (See doveconf -a if you want to see what you're shorthanding). If you want minimal configuration fuss, you can try uw-imapd. Not a lot of knobs to twist on that thing, but you'll have to accept all its limitations as well. A well chosen set of defaults that works for most people is a good design decision, but I've seen plenty of different and oddball layouts (including the sneakernet post preceding this one) that requires a lot of flexibility, which necessarily requires a lot of configuration to express them. The sample configuration is verbose because it doubles as documentation: you can use it as a starting point and remove the parts you don't need, or start from the documentation and move forward. I agree, though, that the documentation needs an editorial overhaul -- it's a little bewildering to find what you need along with the contextual information. > I noticed the configuration syntax is a bit admin unfriendly. It's easy > to get an infamous Error code 89. > > Is there any back story to the grammar or language this configuration is > in? It appears to me to have grown organically, and maybe will need pruning some day. Joseph Tam From hendry at dabase.com Fri Nov 29 05:07:23 2013 From: hendry at dabase.com (Kai Hendry) Date: Fri, 29 Nov 2013 11:07:23 +0800 Subject: [Dovecot] Dovecot's brittle configuration syntax In-Reply-To: References: Message-ID: <20131129030723.GA26908@sg.webconverger.com> On Thu, Nov 28, 2013 at 05:20:38PM -0800, Joseph Tam wrote: > the horse), but that doesn't make it less complex -- it just hides it. > (See doveconf -a if you want to see what you're shorthanding). I'm all for hiding complexity. Though `doveconf -a` is interesting to see what I'm up against. Thanks for that > If you want minimal configuration fuss, you can try uw-imapd. Not a > lot of knobs to twist on that thing, but you'll have to accept all its > limitations as well. Thanks for the interesting link. I did find PANDA-IMAP via Wikipedia. https://github.com/jonabbey/panda-imap I don't think PANDA-IMAP can do Maildir, thread references or meet my goals really. http://dabase.com/blog/Minimal_Dovecot/ > The sample configuration is verbose because it doubles as documentation: > you can use it as a starting point and remove the parts you don't need, > or start from the documentation and move forward. I agree, though, > that the documentation needs an editorial overhaul -- it's a little > bewildering to find what you need along with the contextual information. I want to use Dovecot, though I do want to see this overhaul. I have already spent hours trying to get a sane email setup. I wouldn't mind editing the wiki if I had permission to so and ideally via a git backend. http://ikiwiki.info/ or without the Web interface http://laktek.github.io/punch/ is good. Or even my low tech wiki https://github.com/kaihendry/wordsister > It appears to me to have grown organically, and maybe will need pruning > some day. I hope it's fixed. Is there a bug tracker btw? I just see this proposal here: http://www.dovecot.org/list/dovecot/2007-January/018786.html I want to see Dovecot hopefully fit my humble use cases. :-) From CMarcus at Media-Brokers.com Fri Nov 29 17:25:39 2013 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Fri, 29 Nov 2013 10:25:39 -0500 Subject: [Dovecot] shared folder - ACL In-Reply-To: References: Message-ID: <5298B1F3.4010602@Media-Brokers.com> On 2013-11-28 10:38 AM, H?ctor Moreno Blanco wrote: > When I try to set acl to a folder: > > a02 setacl inbox.test1 user1 lr > a02 BAD Error in IMAP command SETACL: ACLs disabled. > > > In the logs, I can see: > > dovecot: imap(testing_ddfr): Debug: acl: No acl setting - ACLs are disabled > > > What am I missing? This says it is not activated, in spite of what you copy/pasted from some config file. Never rely on copy/paste from configs... *always* check doveconf -n output. This will *prove* what your active config is - and sometimes it isn't what you think it is (especially with some distros that put things in non-standard places... doveconf -n output is now necessary... -- Best regards, */Charles /* From manu at netbsd.org Fri Nov 29 18:54:07 2013 From: manu at netbsd.org (Emmanuel Dreyfus) Date: Fri, 29 Nov 2013 16:54:07 +0000 Subject: [Dovecot] BUG: Authentication client sent unknown handshake command Message-ID: <20131129165407.GA29172@homeworld.netbsd.org> Hi After upgrading the kernel, everything is fine, except dovecot authentication. I get this trange thing (data after REQUEST? changed just in case it contains anything sensitive): Nov 29 16:56:01 volanges dovecot: auth: Error: BUG: Authentication client sent unknown handshake command: REQUEST?6970356762?616?6?235264ef69dbd1665538af54d12fdaea?session_pid=453?req... Nov 29 16:56:01 volanges dovecot: imap: Error: Authentication server didn't send valid SPID as expected: MECH PLAIN plaintext Nov 29 16:56:01 volanges dovecot: imap: Error: Disconnected from auth server, aborting (client-pid=161 client-id=1) Nov 29 16:56:01 volanges dovecot: imap-login: Internal login failure (pid=161 id=1) (internal failure, 1 successful auths): user=, method=PLAIN, rip=192.0.2.251, lip=192.0.2.10, mpid=453, TLS, TLSv1 with cipher AES128-SHA (128/128 bits) Reverting to the previous kernel fixed the problem, but I have not been able to spot what the problem was. Any idea? -- Emmanuel Dreyfus manu at netbsd.org From tss at iki.fi Fri Nov 29 19:11:47 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 29 Nov 2013 19:11:47 +0200 Subject: [Dovecot] Dovecot's brittle configuration syntax In-Reply-To: <20131128102209.GA7912@sg.webconverger.com> References: <20131128102209.GA7912@sg.webconverger.com> Message-ID: <05EE50A8-E5DB-4F2B-97A5-AA1B16FE7D61@iki.fi> On 28.11.2013, at 12.22, Kai Hendry wrote: > Hi there, > > Whilst trying to come up with a minimal configuration for Dovecot: > http://dabase.com/blog/Minimal_Dovecot/ > > I noticed the configuration syntax is a bit admin unfriendly. It's easy > to get an infamous Error code 89. If Dovecot can?t parse the configuration file, it writes the error message to stderr. I?d say it?s a systemd problem if it hides the error. Perhaps Dovecot could also log the error to the mail syslog, but that won?t really help people who have configured the logging differently. (And since Dovecot can?t parse the config, it can?t read where it should log the error.) > Is there any back story to the grammar or language this configuration is > in? I guess it would be ok to allow section { key = value } in one line. I just haven?t felt the need to spend time on that. Feel free to send a patch. > I wouldn't mind editing the wiki if I had permission to so and ideally > via a git backend. http://ikiwiki.info/ or without the Web interface > http://laktek.github.io/punch/ is good. Or even my low tech wiki > https://github.com/kaihendry/wordsister Changing the wiki software now would be a huge task. Besides converting the wiki text itself, you?d also need to write man page -> wiki conversion and wiki -> .txt conversions and I think there are some other things as well. Wiki can still be changed by anyone, as it says you can get the captcha answer by email. (I started having to revert wiki spam daily and changing the captcha only helped for a few days.) > I hope it's fixed. Is there a bug tracker btw? > > I just see this proposal here: > http://www.dovecot.org/list/dovecot/2007-January/018786.html I?m planning on having a public bug tracker where issues can be tracked, but only added by some admins (to avoid the 3th problem in the link above). But this requires my workload to drop. Which it almost certainly will during the next year. From tss at iki.fi Fri Nov 29 19:15:30 2013 From: tss at iki.fi (Timo Sirainen) Date: Fri, 29 Nov 2013 19:15:30 +0200 Subject: [Dovecot] proxy_maybe & director incompatibility In-Reply-To: <7D703348-0D00-497D-9007-FED2100BDAE0@webinabox.net.au> References: <7D703348-0D00-497D-9007-FED2100BDAE0@webinabox.net.au> Message-ID: <1385745330.21664.2.camel@hurina> On Wed, 2013-11-27 at 14:43 +0800, Trent Lloyd wrote: > I am seeking to understand if there is any significant reason > proxy_maybe is handled during the auth section, it would seem better > to simply always set ?proxy=yes?, and then optionally have proxy_maybe > passed all the way through to the connection stage and then do the > local host check there. Set proxy_always=y and it'll work the way you want. I considered doing the proxy_maybe check in login processes, but there were some reasons why it wouldn't have worked well. I can't remember why exactly now, although one issue at least was that then the same check would have needed to be done also by LMTP proxy and doveadm proxy. From rplatel at tucows.com Fri Nov 29 21:46:24 2013 From: rplatel at tucows.com (Richard Platel) Date: Fri, 29 Nov 2013 14:46:24 -0500 Subject: [Dovecot] dovecot-antispam plugin problem with multiple messages In-Reply-To: <9A5EBFB5-847D-4064-924F-839AAEF0D082@tucows.com> References: <9A5EBFB5-847D-4064-924F-839AAEF0D082@tucows.com> Message-ID: <4D371539-7C89-4BAC-9074-0C07B0EB1380@tucows.com> This seems to fix the issue --- a/dovecot-antispam-plugin/src/antispam-storage-2.0.c +++ b/dovecot-antispam-plugin/src/antispam-storage-2.0.c @@ -91,15 +91,6 @@ antispam_copy(struct mail_save_context *ctx, struct mail *mai int ret; bool src_trash, dst_trash; - if (!ctx->dest_mail) { - /* always need mail */ - if (!ast->mail) - ast->mail = mail_alloc(t, MAIL_FETCH_STREAM_HEADER | - MAIL_FETCH_STREAM_BODY, - NULL); - ctx->dest_mail = ast->mail; - } - i_assert(mail->box); asbox->save_hack = FALSE; @@ -145,7 +136,7 @@ antispam_copy(struct mail_save_context *ctx, struct mail *ma else ret = asbox->cfg->backend->handle_mail( asbox->cfg, t, ast->backendctx, - ctx->dest_mail, + mail, move_to_class(asbox->movetype)); /* On Nov 27, 2013, at 4:17 PM, Richard Platel wrote: > Hi > > With dovecot 2.2.5, and dovecot-antispam built from a recent HEAD pull, when copying multiple messages to or from a Spam folder, the plugin sends multiple copies of the first message to the backend. I've tried this with the pipe and spool2dir backends. > > For example with the spool2dir backend, via IMAP doing > > A COPY 1:3 Spam > > yields 3 copies of message id 1 in the dir: > dev:imap-8.1 rplatel at imap01:/var/run/dovecot_as_tmp$ sudo -u mail md5sum * > 28ad0a215eb7ecbd3a814a8a334d85bf 00000000001385586164-rplatel at ff-dev.com-00001s > 28ad0a215eb7ecbd3a814a8a334d85bf 00000000001385586164-rplatel at ff-dev.com-00002s > 28ad0a215eb7ecbd3a814a8a334d85bf 00000000001385586164-rplatel at ff-dev.com-00003s > > I see the same behaviour with the pipe backend, the pipe program is invoked 3 times, but with the same message content. > > From tss at iki.fi Sat Nov 30 19:18:12 2013 From: tss at iki.fi (Timo Sirainen) Date: Sat, 30 Nov 2013 19:18:12 +0200 Subject: [Dovecot] Full text search improvements Message-ID: <7515F67D-13FB-451C-923D-493438246EE2@iki.fi> FTS indexing is something I hear quite often nowadays. I?ve added some hacks to make it work better for some installations, but it?s about time to think about the whole design and how it could be improved for everyone in future. Here are some of my initial thoughts. Currently Dovecot supports 3 full text search engines: Solr, CLucene and Dovecot Squat. CLucene plugin has various features built in, which should have been built in a generic way to work with all the engines (although Solr has most of those already built-in). Squat was abandoned a few years ago in favor of Solr/CLucene, but perhaps it could be brought back to life, since it looks like its index sizes could be smaller than Lucene's. Here's a list of things that should be added to generic Dovecot FTS code to improve all the backends: 1. Support for multiple languages. Use textcat while indexing to guess the language of the indexed data. (Perhaps run it separately for each paragraph to handle multi-language mails? Or at least many emails begin/end with different language than the text in the middle, e.g. "Foo Bar wrote:" is often in various languages.) Index the data using the detected language's stemming and other features. Keep track of which languages have been used in the index, and when searching stem the search words to all the used languages. Since each added language requires additional searches and there's the possibility of wrong detection, the list of allowed languages could be configurable. See also http://ntextcat.codeplex.com/ or at least change textcat to use UTF8. 2. Word stemming. This can be done for many languages with Snowball library. Solr has also implemented several other languages, perhaps its code can be somehow automatically translated to C(++) for use with Dovecot? 3. Don't index language-specific stopwords. We can get the word lists from e.g. Solr. 4. Try to detect compound words and index each part separately for languages that use them. http://wiki.apache.org/solr/LanguageAnalysis#Decompounding suggests two possible ways to do it. 5. Normalize words (e.g. drop diacritics). libicu can be used for this. 6. Drop (Unicode) characters that don't belong to the language? Or especially don't index most of the weird Unicode characters. This would avoid filling the index with unnecessary garbage. 7. Don't index non-text data? For example if there is large block of base64 data or something else that definitely doesn't look like text, it's pretty useless to index it. Then again, we do want to index all kinds of IDs that someone might want to search. This could be a bit difficult to implement well. 8. Index attachments separately, so it would be possible to search only attachments. (Should "SEARCH BODY word1 BODY word2" return matches if word1 and word2 are in different attachments?) 9. Attachments can be translated to indexable UTF-8 text already with fts_decoder setting by doing it via a conversion script. This could also support Apache Tika server directly. 10. It should be configurable which fields are indexed. Body and header would always be separately indexed. Optionally there could be also at least: attachments, From, To, Cc, Bcc and Subject. The From/To/Cc/Bcc could also be indexed together in one "addresses" field. The more fields there are, the larger the index, but better/faster search results. 11. Each indexed mail should have metadata: Mailbox GUID, mail UID and the language the mail was indexed with. For attachments there should also be the MIME part number. When matching results, drop results if returned language doesn't match the query language. Squat ----- Currently Squat index consists of a trie containing all the words and pointer to a file listing all the message UIDs that contain them. Each node in the trie has a pointer to the UIDs, so e.g. with "abc" the "a" node will contain UIDs of all mails that contain the "a" letter (e.g. 1,3-5,10). "ab" node will contain mails that have the "ab" substring. Since the "ab" is a subset of "a", the "ab" won't contain UIDs directly but instead it contains indexes to the "a" list to get a better compression (e.g. UID 3-5,10 -> 2-4 indexes in the "1,3-5,10" list). The "abc" node then similarly refers to the "ab" node's indexes. It's configurable how long words Squat will index. Also substring matching is configurable. By default both are 4 letters, so words longer than 4 letters will be split to 4 letter pieces which are indexed (e.g. "dovecot" -> "dove", "ovec", "veco", "ecot"). When searching these pieces are looked up and the results are merged. It's pretty pointless to do a search for 1-2 letter substrings. Most likely the user wants to find 1-2 letter word instead. Perhaps this is true also for 3 letters? The Squat index could be changed to only add results for the first 1-2 (or 1-3?) letters only for full words, not to word prefixes. This of course would mean that the "ab" referring to "a" UID list would no longer work for the first nodes. Substring searching likely wouldn't work very nicely for stemmed words. So Squat should probably index the full stemmed word and then also index the unstemmed word in the small 4 letter pieces. It should be possible to also disable substring searching entirely. Squat already attempts to reduce disk space by encoding the common characters with less bits than other characters. This is hardcoded for English language though. Each index compression could analyze the most common letters and dynamically use those. Perhaps different languages could even use separate Squat index files to get the most advantage of this? Although if there are a lot of languages it's a bit annoying to have many different index files. Squat currently indexes each Unicode character as one letter, so there can be quite a huge number of different 4 letter words. This substring indexing should probably be disabled for words that contain letters not used by the current language. The UID lists are not compressed very efficiently. See http://www2009.eprints.org/41/1/p401.pdf for alternatives. There is currently one Squat index per mailbox. There should be one per user. This requires adding a separate ID -> { mailbox GUID, UID, language, mime part } mapping file. Squat indexes should be updated in two parts. For old mails there are the large trie+uidlist base files in optimized format. For new mails there are small trie+uidlist files in a format where they are just appended to. When the trie or uidlist becomes large enough, it's first internally sorted/optimized, and then merged with the base files by recreating new optimized base files. This fixes the scalability problem with current large Squat indexes where with large unsorted indexes the sorting could have taken forever. Since substring searches in Squat produce only "maybe matches" UID lists, the mails still need to be opened and searched through. This step could probably also do the same language detection + stemming as is done during indexing to improve the search results. (And this feature could be enabled even if no FTS index is enabled.)