From andrew at freedomlives.net Sat Feb 1 01:58:27 2014 From: andrew at freedomlives.net (Andrew Ray) Date: Sat, 01 Feb 2014 00:58:27 +0100 Subject: [Dovecot] lmtp_save_to_detail_mailbox per address? Message-ID: <52EC38A3.3080204@freedomlives.net> Is there any way to control/disable this for certain mailboxes? For one account (that handles bounces) I need it disabled, for all the other (normal) accounts its great. -- Andrew Ray From mayuri.enggheads at gmail.com Sat Feb 1 11:20:24 2014 From: mayuri.enggheads at gmail.com (mayu) Date: Sat, 1 Feb 2014 01:20:24 -0800 (PST) Subject: [Dovecot] Postfixadmin/MySQL/Dovecot 2 and quota In-Reply-To: References: <522C687C.5000001@mygaia.org> <1391176462400-46523.post@n4.nabble.com> Message-ID: <1391246424209-46531.post@n4.nabble.com> Thanks Benny for your reply . Postfixadmin is reflecting the used quota/assigned quota . Here used quota means the message send by each user .Mysql quota2 table is storing the used quota and messages count (send msg+the welcome message from postfix admin).The message count is not adding the inbox mails coming from different user . I am trying to achieve below stmts: 1.When I enter the quota value for each mail box in postfixadmin ,that quota value should reflect in squirrel mail .With this every user is aware of its quota value . Is it possible ?? Thanks in advance !!! -- View this message in context: http://dovecot.2317879.n4.nabble.com/Postfixadmin-MySQL-Dovecot-2-and-quota-tp44217p46531.html Sent from the Dovecot mailing list archive at Nabble.com. From rs at sys4.de Sat Feb 1 11:26:17 2014 From: rs at sys4.de (Robert Schetterer) Date: Sat, 01 Feb 2014 10:26:17 +0100 Subject: [Dovecot] Postfixadmin/MySQL/Dovecot 2 and quota In-Reply-To: <1391246424209-46531.post@n4.nabble.com> References: <522C687C.5000001@mygaia.org> <1391176462400-46523.post@n4.nabble.com> <1391246424209-46531.post@n4.nabble.com> Message-ID: <52ECBDB9.2040802@sys4.de> Am 01.02.2014 10:20, schrieb mayu: > Thanks Benny for your reply . > > Postfixadmin is reflecting the used quota/assigned quota . Here used quota > means the message send by each user .Mysql quota2 table is storing the used > quota and messages count (send msg+the welcome message from postfix > admin).The message count is not adding the inbox mails coming from different > user . > > I am trying to achieve below stmts: > > 1.When I enter the quota value for each mail box in postfixadmin ,that quota > value should reflect in squirrel mail .With this every user is aware of its > quota value . Is it possible ?? > > Thanks in advance !!! > > > > > > > > > > -- > View this message in context: http://dovecot.2317879.n4.nabble.com/Postfixadmin-MySQL-Dovecot-2-and-quota-tp44217p46531.html > Sent from the Dovecot mailing list archive at Nabble.com. > from former mail to list what about use something like this in dovecot-sql.conf.ext user_query = SELECT concat('/usr/local/virtual/', maildir) AS home, \ concat('*:bytes=', mailbox.quota) AS quota_rule, \ #when saving to Trash mailbox the user gets additional 50MB "Trash:storage=+50240" AS quota_rule2, \ #when saving to Sent mailbox the user gets additional 50MB "Sent:storage=+50240" AS quota_rule3, \ #when saving to Drafts mailbox the user gets additional 50MB "Drafts:storage=+50240" AS quota_rule4, \ #when saving to Templates mailbox the user gets additional 50MB "Templates:storage=+50240" AS quota_rule5, \ #when saving to Junk mailbox the user gets additional 50MB "Junk:storage=+50240" AS quota_rule6, \ #when saving to Archives mailbox the user gets additional 50MB "Archives:storage=+50240" AS quota_rule7, \ quota rules are not needed to configured here but something like concat('*:bytes=', mailbox.quota) AS quota_rule fits with dovecot, postfixadmin, squirrelmail at my site Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From mayuri.enggheads at gmail.com Sat Feb 1 11:26:46 2014 From: mayuri.enggheads at gmail.com (mayu) Date: Sat, 1 Feb 2014 01:26:46 -0800 (PST) Subject: [Dovecot] Postfixadmin/MySQL/Dovecot 2 and quota In-Reply-To: <93A3F594-D7B4-4B2E-9EF0-7BF20F5E076B@kreme.com> References: <522C687C.5000001@mygaia.org> <1391176462400-46523.post@n4.nabble.com> <0dbd82b6f7ee75f40aeb5f8b3e3cbc18@junc.eu> <93A3F594-D7B4-4B2E-9EF0-7BF20F5E076B@kreme.com> Message-ID: <1391246806126-46532.post@n4.nabble.com> Hello LuKreme , So How can I achieve this .If I remove the quota_rule = *:storage=1G from dovecot ,SM does not show any quota related info . I have used below link to configure it . http://serverstutorial.wordpress.com/2012/12/28/postfix-mysql-postfixadmin-dovecot-roundcube-centos-5-7-updated/ -- View this message in context: http://dovecot.2317879.n4.nabble.com/Postfixadmin-MySQL-Dovecot-2-and-quota-tp44217p46532.html Sent from the Dovecot mailing list archive at Nabble.com. From rs at sys4.de Sat Feb 1 11:53:06 2014 From: rs at sys4.de (Robert Schetterer) Date: Sat, 01 Feb 2014 10:53:06 +0100 Subject: [Dovecot] Postfixadmin/MySQL/Dovecot 2 and quota In-Reply-To: <1391246806126-46532.post@n4.nabble.com> References: <522C687C.5000001@mygaia.org> <1391176462400-46523.post@n4.nabble.com> <0dbd82b6f7ee75f40aeb5f8b3e3cbc18@junc.eu> <93A3F594-D7B4-4B2E-9EF0-7BF20F5E076B@kreme.com> <1391246806126-46532.post@n4.nabble.com> Message-ID: <52ECC402.7060509@sys4.de> Am 01.02.2014 10:26, schrieb mayu: > Hello LuKreme , > > So How can I achieve this .If I remove the quota_rule = *:storage=1G from > dovecot ,SM does not show any quota related info . > > I have used below link to configure it . > > http://serverstutorial.wordpress.com/2012/12/28/postfix-mysql-postfixadmin-dovecot-roundcube-centos-5-7-updated/ you need install the squirrelmail quota plugin http://www.squirrelmail.org/plugin_view.php?id=237 > > > > -- > View this message in context: http://dovecot.2317879.n4.nabble.com/Postfixadmin-MySQL-Dovecot-2-and-quota-tp44217p46532.html > Sent from the Dovecot mailing list archive at Nabble.com. > Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From mayuri.enggheads at gmail.com Sat Feb 1 11:58:57 2014 From: mayuri.enggheads at gmail.com (mayu) Date: Sat, 1 Feb 2014 01:58:57 -0800 (PST) Subject: [Dovecot] Postfixadmin/MySQL/Dovecot 2 and quota In-Reply-To: <52ECC402.7060509@sys4.de> References: <522C687C.5000001@mygaia.org> <1391176462400-46523.post@n4.nabble.com> <0dbd82b6f7ee75f40aeb5f8b3e3cbc18@junc.eu> <93A3F594-D7B4-4B2E-9EF0-7BF20F5E076B@kreme.com> <1391246806126-46532.post@n4.nabble.com> <52ECC402.7060509@sys4.de> Message-ID: <1391248737853-46535.post@n4.nabble.com> Thanks for the reply Robert . The Check_Quota plugin is install with compatibility plugin and I have configured the config file of check_quota also . Still it is not working :( -- View this message in context: http://dovecot.2317879.n4.nabble.com/Postfixadmin-MySQL-Dovecot-2-and-quota-tp44217p46535.html Sent from the Dovecot mailing list archive at Nabble.com. From mayuri.enggheads at gmail.com Sat Feb 1 12:07:02 2014 From: mayuri.enggheads at gmail.com (mayu) Date: Sat, 1 Feb 2014 02:07:02 -0800 (PST) Subject: [Dovecot] Postfixadmin/MySQL/Dovecot 2 and quota In-Reply-To: <1391248737853-46535.post@n4.nabble.com> References: <522C687C.5000001@mygaia.org> <1391176462400-46523.post@n4.nabble.com> <0dbd82b6f7ee75f40aeb5f8b3e3cbc18@junc.eu> <93A3F594-D7B4-4B2E-9EF0-7BF20F5E076B@kreme.com> <1391246806126-46532.post@n4.nabble.com> <52ECC402.7060509@sys4.de> <1391248737853-46535.post@n4.nabble.com> Message-ID: <1391249222398-46536.post@n4.nabble.com> Check_ quota is installed properly because SM show quota related info . > If the quota_rule = *:storage=1G is added .But when its removed SM does > not show quota info from postfixadmin . -- View this message in context: http://dovecot.2317879.n4.nabble.com/Postfixadmin-MySQL-Dovecot-2-and-quota-tp44217p46536.html Sent from the Dovecot mailing list archive at Nabble.com. From rs at sys4.de Sat Feb 1 12:08:05 2014 From: rs at sys4.de (Robert Schetterer) Date: Sat, 01 Feb 2014 11:08:05 +0100 Subject: [Dovecot] Postfixadmin/MySQL/Dovecot 2 and quota In-Reply-To: <1391248737853-46535.post@n4.nabble.com> References: <522C687C.5000001@mygaia.org> <1391176462400-46523.post@n4.nabble.com> <0dbd82b6f7ee75f40aeb5f8b3e3cbc18@junc.eu> <93A3F594-D7B4-4B2E-9EF0-7BF20F5E076B@kreme.com> <1391246806126-46532.post@n4.nabble.com> <52ECC402.7060509@sys4.de> <1391248737853-46535.post@n4.nabble.com> Message-ID: <52ECC785.2020008@sys4.de> Am 01.02.2014 10:58, schrieb mayu: > Thanks for the reply Robert . > > The Check_Quota plugin is install with compatibility plugin and I have > configured the config file of check_quota also . > > Still it is not working :( > you failed in config somewhere, i have Postfixadmin/MySQL/Dovecot2/squirrelmail/quota running reread all list advices and related faqs > > > > -- > View this message in context: http://dovecot.2317879.n4.nabble.com/Postfixadmin-MySQL-Dovecot-2-and-quota-tp44217p46535.html > Sent from the Dovecot mailing list archive at Nabble.com. > Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From mayuri.enggheads at gmail.com Sat Feb 1 12:18:03 2014 From: mayuri.enggheads at gmail.com (mayu) Date: Sat, 1 Feb 2014 02:18:03 -0800 (PST) Subject: [Dovecot] Postfixadmin/MySQL/Dovecot 2 and quota In-Reply-To: <52ECC402.7060509@sys4.de> References: <522C687C.5000001@mygaia.org> <1391176462400-46523.post@n4.nabble.com> <0dbd82b6f7ee75f40aeb5f8b3e3cbc18@junc.eu> <93A3F594-D7B4-4B2E-9EF0-7BF20F5E076B@kreme.com> <1391246806126-46532.post@n4.nabble.com> <52ECC402.7060509@sys4.de> Message-ID: <1391249883604-46538.post@n4.nabble.com> The bytes col of quota2 table is in sync with squirrel(when the quota_rule = *:storage=1G is added in dovecot) so why cant the quota col of mailbox table can get sync with squirrel ? -- View this message in context: http://dovecot.2317879.n4.nabble.com/Postfixadmin-MySQL-Dovecot-2-and-quota-tp44217p46538.html Sent from the Dovecot mailing list archive at Nabble.com. From rs at sys4.de Sat Feb 1 13:16:01 2014 From: rs at sys4.de (Robert Schetterer) Date: Sat, 01 Feb 2014 12:16:01 +0100 Subject: [Dovecot] Postfixadmin/MySQL/Dovecot 2 and quota In-Reply-To: <1391249883604-46538.post@n4.nabble.com> References: <522C687C.5000001@mygaia.org> <1391176462400-46523.post@n4.nabble.com> <0dbd82b6f7ee75f40aeb5f8b3e3cbc18@junc.eu> <93A3F594-D7B4-4B2E-9EF0-7BF20F5E076B@kreme.com> <1391246806126-46532.post@n4.nabble.com> <52ECC402.7060509@sys4.de> <1391249883604-46538.post@n4.nabble.com> Message-ID: <52ECD771.5020708@sys4.de> Am 01.02.2014 11:18, schrieb mayu: > The bytes col of quota2 table is in sync with squirrel(when the quota_rule = > *:storage=1G is added in dovecot) so why cant the quota col of mailbox table > can get sync with squirrel > ? squirrel takes quota from imap, postfixadmin sets the quota for each user in mysql dict, my guess, dont configure quota static, take it out from sql ,on the fly at imap login > > > > -- > View this message in context: http://dovecot.2317879.n4.nabble.com/Postfixadmin-MySQL-Dovecot-2-and-quota-tp44217p46538.html > Sent from the Dovecot mailing list archive at Nabble.com. > Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From gedalya at gedalya.net Tue Feb 4 00:38:12 2014 From: gedalya at gedalya.net (Gedalya) Date: Mon, 03 Feb 2014 17:38:12 -0500 Subject: [Dovecot] Dovecot2 + Quota In-Reply-To: References: <9afc7ce48db7b4325fbe90ee6325977e@junc.eu> Message-ID: <52F01A54.2000001@gedalya.net> On 01/31/2014 07:16 AM, drum.lucas at gmail.com wrote: > dovecot-sql.conf: > driver = mysql > connect = host=localhost dbname=mail user=mail password=xxxxxxxxxxxx > default_pass_scheme = MD5 > > user_query = SELECT '/var/vmail/%d/%n' as home, 'maildir:/var/vmail/%d/%n' > as mail, 150 AS uid, 12 AS gid, CONCAT('dirsize:storage=', ROUND( > mailbox.quota / 1024 ) ) AS quota FROM mailbox WHERE username = '%u' AND > active = '1' > > password_query = SELECT username as user, password, '/var/vmail/%d/%n' as > userdb_home, 'maildir:/var/vmail/%d/%n' as userdb_mail, 150 as userdb_uid, > 12 as userdb_gid FROM mailbox WHERE username = '%u' AND active = '1' Your password query returns userdb_ fields, are you using driver = prefetch? http://wiki2.dovecot.org/UserDatabase says: This assumes that the passdb already returned also all the required user database information. Your password query does not return the quota size. Also as Robert said, the field name returned by the query should be quota_rule and userdb_quota_rule in the password query, and the value so formatted. From gedalya at gedalya.net Tue Feb 4 00:19:17 2014 From: gedalya at gedalya.net (Gedalya) Date: Mon, 03 Feb 2014 17:19:17 -0500 Subject: [Dovecot] POP3: Message ordering changed unexpectedly Message-ID: <52F015E5.9010804@gedalya.net> Hi, I think I'm having a problem with simultaneous pop3 connections on the same mailbox with one connection deleting a message. Jan 29 14:36:30 imap1 dovecot: pop3-login: Login: user=, method=PLAIN, rip=82.xx.xx.xx, lip=-----, pip=------, mpid=7703, secured, session=<1A+8DiHxfABSUCCH> Jan 29 14:36:30 imap1 dovecot: pop3-login: Login: user=, method=PLAIN, rip=69.xx.xx.xx, lip=-----, pip=------, mpid=7709, secured, session=<7iLADiHx7wBFdoaw> Jan 29 14:36:30 imap1 dovecot: pop3(riki at domain.com): Disconnected: Logged out top=0/0, retr=0/0, del=1/1227, size=51548362 Jan 29 14:36:33 imap1 dovecot: pop3(riki at domain.com): Error: Message ordering changed unexpectedly (msg #1: storage seq 1 -> 2) Jan 29 14:36:33 imap1 dovecot: pop3(riki at domain.com): Disconnected: POP3 UIDLs couldn't be listed top=3/2662, retr=0/0, del=0/1227, size=51548362 and again: Feb 3 12:43:16 imap1 dovecot: pop3-login: Login: user=, method=PLAIN, rip=82.xx.xx.xx, lip=-------, pip=-------, mpid=31095, secured, session= Feb 3 12:43:17 imap1 dovecot: pop3-login: Login: user=, method=PLAIN, rip=69.xx.xx.xx, lip=-------, pip=-------, mpid=31119, secured, session= Feb 3 12:43:17 imap1 dovecot: pop3(riki at domain.com): Disconnected: Logged out top=0/0, retr=1/80835, del=2/1192, size=48287015 Feb 3 12:43:18 imap1 dovecot: pop3(riki at domain.com): Error: Message ordering changed unexpectedly (msg #1: storage seq 1 -> 3) Feb 3 12:43:18 imap1 dovecot: pop3(riki at domain.com): Disconnected: POP3 UIDLs couldn't be listed top=3/2898, retr=0/0, del=0/1192, size=48287015 Running Dovecot 2.2.10+hg-6018854c8c91 Mailboxes were migrated recently using dsync with pop3 migration plugin. Is there a better way to handle this without logging an error? Am I doing something wrong? Any help is appreciated. Thanks, Gedalya # dovecot -n # 2.2.10: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.3 auth_mechanisms = plain login cram-md5 auth_verbose = yes auth_verbose_passwords = plain dict { expire = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext } disable_plaintext_auth = no imapc_features = rfc822.size fetch-headers login_greeting = Dovecot ready login_log_format_elements = user=<%u> method=%m rip=%r lip=%l pip=%{real_rip} mpid=%e %c session=<%{session}> login_trusted_networks = xx.xx.xx.2 mail_gid = vmail mail_location = /nowhere mail_plugins = quota expire listescape mail_uid = vmail managesieve_sieve_capability = fileinto envelope encoded-character subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables mailbox date ihave namespace { hidden = yes list = no location = pop3c: prefix = POP3-MIGRATION-NS/ } namespace inbox { inbox = yes location = mailbox Drafts { auto = subscribe special_use = \Drafts } mailbox Junk { auto = subscribe special_use = \Junk } mailbox Sent { auto = subscribe special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { auto = subscribe special_use = \Trash } prefix = separator = / type = private } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { antispam_backend = pipe antispam_pipe_program = /usr/bin/ssh antispam_pipe_program_args = -l;spamd;-i;/etc/dovecot/sareport.key;mx.domain.com antispam_pipe_program_notspam_arg = revoke antispam_pipe_program_spam_arg = report antispam_pipe_tmpdir = /tmp antispam_spam = Junk antispam_trash_pattern_ignorecase = trash;Deleted * expire = Trash expire2 = Trash/* expire3 = Junk expire_dict = proxy::expire pop3_migration_mailbox = POP3-MIGRATION-NS/INBOX quota = dict:user::proxy::quota quota_rule = *:storage=2G quota_rule2 = Trash:storage=+250M quota_rule3 = Junk:ignore quota_warning = storage=99%% quota-warning 99 %u quota_warning2 = storage=95%% quota-warning 95 %u sieve = ~/.dovecot.sieve sieve_before = /etc/dovecot/sieve-global/fileinto-spam.sieve sieve_dir = ~/sieve sieve_extensions = -vacation -body -reject -enotify -environment -virustest -spamtest sieve_max_actions = 32 sieve_max_redirects = 4 sieve_max_script_size = 10K sieve_quota_max_scripts = 100 sieve_quota_max_storage = 4M } pop3_no_flag_updates = yes postmaster_address = postmaster at domain.com protocols = imap pop3 lmtp sieve service auth-worker { user = $default_internal_user } service auth { client_limit = 2448 unix_listener auth-userdb { group = root mode = 0600 user = vmail } } service dict { unix_listener dict { group = root mode = 0600 user = vmail } } service imap-login { process_min_avail = 4 service_count = 0 vsz_limit = 192 M } service imap-postlogin { executable = script-login /usr/local/bin/postlogin unix_listener imap-postlogin { group = root mode = 0600 user = vmail } user = root } service imap { executable = imap imap-postlogin process_limit = 1024 vsz_limit = 128 M } service lmtp { inet_listener lmtp { address = 10.44.23.1 port = 7025 } } service managesieve-login { inet_listener sieve { port = 4190 } service_count = 0 vsz_limit = 64 M } service managesieve { process_limit = 20 } service pop3-login { process_min_avail = 4 service_count = 0 vsz_limit = 192 M } service pop3 { executable = pop3 imap-postlogin process_limit = 1024 } service quota-warning { executable = script /usr/local/bin/quota-warning unix_listener quota-warning { user = vmail } user = dovecot } ssl_cert = References: <52EC38A3.3080204@freedomlives.net> Message-ID: <0b3e9c4a-c039-4d4a-8113-63532a09b83f@email.android.com> Hi Andrew, you should consider using SIEVE. SIEVE conditions will allow you to control which mails to file into sub-mailboxes. Regards Daniel From siefke_listen at web.de Mon Feb 3 17:14:41 2014 From: siefke_listen at web.de (Silvio Siefke) Date: Mon, 3 Feb 2014 16:14:41 +0100 Subject: [Dovecot] Duplicate namespace prefix: "" Message-ID: <20140203161441.fae2f83bfe6c048c3c9bd1c6@web.de> Hello, i try to run the mail system which explain dovecot in the wiki. http://wiki2.dovecot.org/HowTo/VirtualUserFlatFilesPostfix I have that complete write in the config, only the domain and user settings i changed. But something is wrong but i not found where is the mistake. Feb 03 16:12:52 lmtp(1079, webmaster at silviosiefke.de): Error: user webmaster at silviosiefke.de: Initialization failed: namespace configuration error: Duplicate namespace prefix: "" Feb 3 16:16:14 ks3374456 postfix/qmgr[1067]: 311A324525D: from=, size=254, nrcpt=1 (queue active) Feb 3 16:16:14 ks3374456 postfix/lmtp[1308]: 311A324525D: to=, relay=ks3374456.kimsufi.com[private/dovecot-lmtp], delay=0.09, delays=0.04/0.01/0/0.04, dsn=5.1.1, status=undeliverable (host ks3374456.kimsufi.com[private/dovecot-lmtp] said: 550 5.1.1 User doesn't exist: info at silviosiefke.de (in reply to RCPT TO command)) Feb 3 16:16:14 ks3374456 postfix/qmgr[1067]: 311A324525D: removed Has someone an idea what can be wrong. Thank you for help & Nice Day Silvio From t.b.mailinglists at igeno-fat.de Sat Feb 1 22:01:15 2014 From: t.b.mailinglists at igeno-fat.de (T.B.) Date: Sat, 01 Feb 2014 21:01:15 +0100 Subject: [Dovecot] Debian Wheezy-Backports - Dovecot (1:2.2.9-1~bpo70+1) missing xz compression support? Message-ID: <52ED528B.7010804@igeno-fat.de> Hallo Everyone, since some days a new dovecot version is available in Debian "wheezy-backports": (1:2.2.9-1~bpo70+1) wheezy-backports As described in http://wiki2.dovecot.org/Plugins/Zlib and http://www.dovecot.org/doc/NEWS-2.2 "xz"-compression is available since Dovecot version 2.2.9. Today I tried to convert my mailboxes with the new xz compression. Therfore I changed my config as follows: /etc/dovecot/conf.d/10-mail.conf: # Space separated list of plugins to load for all services. Plugins specific to IMAP, LDA, etc. are added to this list in their own .conf files. mail_plugins = zlib acl fts fts_solr /etc/dovecot/conf.d/90-plugin.conf: # Enable these only if you want compression while saving: zlib_save_level = 9 # 1..9 zlib_save = xz # gz or bz2 or xy Now I tried to convert my mailboxes - but somehow, something goes wrong: root at SERVER:/# dovecot --version 2.2.9 root at SERVER:/# dsync mirror mdbox:/srv/converted_vmail/ doveadm(root): Error: zlib_save: Support not compiled in for handler: xz dsync(root): Error: zlib_save: Support not compiled in for handler: xz Where is the failure? Did the packet maintainer forget to activate xz? I can't find anything xz related in the debian package changelog: http://metadata.ftp-master.debian.org/changelogs//main/d/dovecot/dovecot_2.2.9-1~bpo70+1_changelog Should I contact the Debian packet maintainer? http://packages.qa.debian.org/d/dovecot.html Best regards T.B. From siefke_listen at web.de Mon Feb 3 19:06:43 2014 From: siefke_listen at web.de (Silvio Siefke) Date: Mon, 3 Feb 2014 18:06:43 +0100 Subject: [Dovecot] Namespace Mistake Message-ID: <20140203180643.2929d815c64bb300f42bf3d5@web.de> Hello, i try to setup the Dovecot Tutorial on http://wiki2.dovecot.org/HowTo/VirtualUserFlatFilesPostfix But when send message i become the follow error message: Feb 03 18:06:09 lmtp(8386, webmaster at silviosiefke.com): Error: user webmaster at silviosiefke.com: Initialization failed: namespace configuration error: Duplicate namespace prefix: "" Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: Effective uid=5000, gid=5000, home=/var/vmail/silviosiefke.de/webmaster Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: No acl_shared_dict setting - shared mailbox listing is disabled Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: Namespace : type=private, prefix=, sep=/, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:~/maildir Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: maildir++: root=/var/vmail/silviosiefke.de/webmaster/maildir, index=, indexpvt=, control=, inbox=/var/vmail/silviosiefke.de/webmaster/maildir, alt= Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: initializing backend with data: vfile:/var/vmail/conf.d/silviosiefke.de/acls:cache_secs=300 Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: acl username = webmaster at silviosiefke.de Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: owner = 1 Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl vfile: Global ACL directory: /var/vmail/conf.d/silviosiefke.de/acls Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: Namespace : type=public, prefix=Public/, sep=/, inbox=no, hidden=no, list=yes, subscriptions=no location=maildir:/var/vmail/public:LAYOUT=fs:INDEX=~/public Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: fs: root=/var/vmail/public, index=/var/vmail/silviosiefke.de/webmaster/public, indexpvt=, control=, inbox=, alt= Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: initializing backend with data: vfile:/var/vmail/conf.d/silviosiefke.de/acls:cache_secs=300 Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: acl username = webmaster at silviosiefke.de Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: owner = 0 Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl vfile: Global ACL directory: /var/vmail/conf.d/silviosiefke.de/acls Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: Namespace inbox: type=private, prefix=, sep=, inbox=no, hidden=no, list=yes, subscriptions=yes location=maildir:~/maildir Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: maildir++: root=/var/vmail/silviosiefke.de/webmaster/maildir, index=, indexpvt=, control=, inbox=, alt= Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: initializing backend with data: vfile:/var/vmail/conf.d/silviosiefke.de/acls:cache_secs=300 Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: acl username = webmaster at silviosiefke.de Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl: owner = 1 Feb 03 18:06:09 lmtp(8389, webmaster at silviosiefke.de): Debug: acl vfile: Global ACL directory: /var/vmail/conf.d/silviosiefke.de/acls Feb 3 18:06:09 ks3374456 postfix/lmtp[8384]: E529E2452CC: to=, relay=ks3374456.kimsufi.com[private/dovecot-lmtp], delay=350, delays=350/0.02/0.06/0.02, dsn=4.3.0, status=deferred (host ks3374456.kimsufi.com[private/dovecot-lmtp] said: 451 4.3.0 Temporary internal error (in reply to end of DATA command)) Feb 3 18:06:09 ks3374456 postfix/lmtp[8385]: 7F6A12452C5: to=, relay=ks3374456.kimsufi.com[private/dovecot-lmtp], delay=408, delays=408/0.02/0.05/0.02, dsn=4.3.0, status=deferred (host ks3374456.kimsufi.com[private/dovecot-lmtp] said: 451 4.3.0 Temporary internal error (in reply to end of DATA command)) Feb 3 18:06:23 ks3374456 postfix/smtpd[8393]: connect from mail156.grifadder.com[85.187.97.156] Feb 3 18:06:23 ks3374456 postfix/smtpd[8393]: NOQUEUE: reject: RCPT from mail156.grifadder.com[85.187.97.156]: 450 4.1.1 : Recipient address rejected: unverified address: host ks3374456.kimsufi.com[private/dovecot-lmtp] said: 550 5.1.1 User doesn't exist: info at silviosiefke.de (in reply to RCPT TO command); from= to= proto=ESMTP helo= Feb 3 18:06:23 ks3374456 postfix/smtpd[8393]: disconnect from mail156.grifadder.com[85.187.97.156] # dovecot -n # 2.2.9: /etc/dovecot/dovecot.conf # OS: Linux 3.10.23-xxxx-std-ipv6-64 x86_64 Gentoo Base System release 2.2 debug_log_path = /var/log/dovecot-debug.log info_log_path = /var/log/dovecot-info.log log_path = /var/log/dovecot.log mail_debug = yes mail_location = maildir:~/maildir mail_plugins = acl managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { hidden = no inbox = yes location = prefix = separator = / type = private } namespace { list = yes location = maildir:/var/vmail/public:LAYOUT=fs:INDEX=~/public prefix = Public/ separator = / subscriptions = no type = public } namespace inbox { location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = username_format=%u /var/vmail/auth.d/%d/passwd driver = passwd-file } plugin { acl = vfile:/var/vmail/conf.d/%d/acls:cache_secs=300 sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_global_dir = /var/vmail/conf.d/%d/sieve } protocols = imap lmtp service auth-worker { user = dovecot } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } user = dovecot } service imap-login { inet_listener imap { address = 37.187.103.194 port = 143 } inet_listener imaps { port = 0 } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0666 user = postfix } } ssl_cert = References: <20140203161441.fae2f83bfe6c048c3c9bd1c6@web.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 3 Feb 2014, Silvio Siefke wrote: > i try to run the mail system which explain dovecot in the wiki. > http://wiki2.dovecot.org/HowTo/VirtualUserFlatFilesPostfix The samples in the Wiki are 1) only snippets and 2) do not contain Duplicate namespace prefixes, please post your full doveconf -n output. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvCSa3D1/YhP6VMHAQKNQQf/VbKDv5qmDs/H6RHgC4hJ3wwviD8Vzi1C QF0MK/kxPRaoqNRZ8qzLFGOSwzAbC/AbVNPp9kA9wg1yHUR4Y1F+Lj23imo+c4q3 sv5M8HIa1WUOozMx9Io4J92xFGIyp84konhmkgDZHzQztWYUkE6K/kA/3iL5q446 vSN7onOwM8jwWsoTCGBK/JKr3dcz6haN4RKEGqGsv1SWJHJW/A2m39R1LSOyjVjW 2d8l+4XvM+lIgj4dlUrmpHuIhYL7SDJPY7YWxg3FlGJ2a2yqQ2fqvNgI7imLKnzT jRXBVOzli1Va3GGjh+7PvJAfsdFAqDbpaOUCu0J4ckAjhHHTXKvlkg== =LXZU -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Tue Feb 4 09:14:20 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 4 Feb 2014 08:14:20 +0100 (CET) Subject: [Dovecot] Namespace Mistake In-Reply-To: <20140203180643.2929d815c64bb300f42bf3d5@web.de> References: <20140203180643.2929d815c64bb300f42bf3d5@web.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 3 Feb 2014, Silvio Siefke wrote: > > Feb 03 18:06:09 lmtp(8386, webmaster at silviosiefke.com): Error: user webmaster at silviosiefke.com: Initialization failed: namespace configuration error: Duplicate namespace prefix: "" Those two namespaces should have the same name, because the prefix is the same: > namespace { > hidden = no > inbox = yes > location = > prefix = > separator = / > type = private > } > namespace inbox { > location = > mailbox Drafts { > special_use = \Drafts > } > mailbox Junk { > special_use = \Junk > } > mailbox Sent { > special_use = \Sent > } > mailbox "Sent Messages" { > special_use = \Sent > } > mailbox Trash { > special_use = \Trash > } > prefix = > } - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvCTTHD1/YhP6VMHAQIlJQgAs9odls12Rplx6v4O4ctk+uTr4VmlxqG3 EVvCqaWYMmG/9HtCEulEztbaZCrR6h5mWe8Yv2Pi07DfIgqMrkOCIRsGA0xEOg2L a3whIzM74d+kSjXZF3DVCT/gaIhbrP/HYXIZ/fLJlywK4mAgBsGN5TiXTMqoQBCM s0iYnZKzQ5B17OkLn8dcDHZApNOrpXghCr6CQE+5vUdyDStB+GpwJ0bLojxbwctk u5HhpF0MA+NoiRmv1UYAEdUtwGKcQEZJ2bxtnuaIcKmXelS3UobaOeIvXh5w8c0u 96ZTsKcPP6AWD+uBF8uSUtUA6Nx01GPMJ9ls+CpH5jemqtJ0gqRtxg== =BWmA -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Mon Feb 3 09:34:10 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 3 Feb 2014 08:34:10 +0100 (CET) Subject: [Dovecot] Dovecot 2.2.10 shared mailbox In-Reply-To: <52EBC343.1000008@medianetork.ro> References: <52EBC343.1000008@medianetork.ro> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 31 Jan 2014, Florin Portase wrote: > I've just upgraded my dovecot from version 2.1.7 to 2.2.10 and since > then I encounter errors when I'm enabling SHARED MAILBOX: which errors? > here is part of dovecot.conf: please post output of doveconf -n - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUu9GcnD1/YhP6VMHAQJ7lAgAiHm4Ft0mqLm3gj8ml+1dvPXgIpSDardG 1Xx4FLwGuSuP9i/5UekUGpGBywc8Wob8WaK6qPyNYrhMd6dk2FvHn9T0bJP013FS pAr56yFAdpqRF3x6fRf0Ra7z7bqiOjcb8P7xO+GxIhFVCavLbaJyMv3B/OkUlA6w XpP9D5sts3dRjS1deFTJ8E+LcqZIn3+t2LOPEETCB6xKwUNHKTMTNtFbTm304WYL qXkln6y7xE0CxGDCk6ZJrmgsHrOLj/eEz0iaomLj1ktqLHsvZSp8r3p3vyKtABor 9yRiBUl0En/fDF09W+bgCG4KwnLIeBgj0abkBy+DlMLq1euZC2ZhHA== =WkjP -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Mon Feb 3 09:29:21 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 3 Feb 2014 08:29:21 +0100 (CET) Subject: [Dovecot] lmtp_save_to_detail_mailbox per address? In-Reply-To: <52EC38A3.3080204@freedomlives.net> References: <52EC38A3.3080204@freedomlives.net> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sat, 1 Feb 2014, Andrew Ray wrote: > Is there any way to control/disable this for certain mailboxes? > > For one account (that handles bounces) I need it disabled, for all the other > (normal) accounts its great. Override it with UserDB Extra Fields http://wiki2.dovecot.org/UserDatabase/ExtraFields - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUu9FUXD1/YhP6VMHAQKmiwf+JuHR/Y3zu2lkBbNNNxw6pdpUc0NboSXe rmEb0/VdnQAlpD/EfGrWyIguT/jmDLMDImYbLQ9O9eVaWiqeySGxV2sKWZiH/ZMb kq8l7eZjQFUBJ6DSGqZl8j5Gy3Tij/HsnuuUWjpnVVRk0s4n4NC2RdaN6f/wAafZ JheAvI4tXGxoVmxaxqGQ8Im3wUbAbxBhIEn+LwOr8Lte4RXXHzTPcn2YX7drP9W6 dV9wCFPp27JWe7+sN4oS84vvUmOWB/E42ev5gjuy52H2suaCwbI8blM+mNMVAj54 ob3M+sveGrRl10CrRL2ZMjHwt5V9LjS0ftDiFVXZenpEpKIQ8GqHAA== =4Uqv -----END PGP SIGNATURE----- From wildfire at progsoc.org Tue Feb 4 11:16:29 2014 From: wildfire at progsoc.org (Anand Kumria) Date: Tue, 4 Feb 2014 09:16:29 +0000 Subject: [Dovecot] zlib unexpected EOF Message-ID: Hi, I am seeing occasional log entries like: Feb 4 06:20:01 mail1 dovecot: imap(user at example.com): Error: read() failed: zlib.read(): unexpected EOF at 894774 Feb 4 06:20:01 mail1 dovecot: imap(user at example.com): Disconnected in APPEND (1 msgs, 201 secs, 0/5180550 bytes) in=894774 out=643701 I've been able to correlate this to users - using Thunderbird - complaining that they have been unable to "send email". Is the problem on the Dovecot side, their side or something else? If on the Dovecot any pointers and what I should look at? Thanks, Anand From rs at sys4.de Tue Feb 4 12:15:56 2014 From: rs at sys4.de (Robert Schetterer) Date: Tue, 04 Feb 2014 11:15:56 +0100 Subject: [Dovecot] zlib unexpected EOF In-Reply-To: References: Message-ID: <52F0BDDC.7050609@sys4.de> Am 04.02.2014 10:16, schrieb Anand Kumria: > Hi, > > I am seeing occasional log entries like: > > Feb 4 06:20:01 mail1 dovecot: imap(user at example.com): Error: read( client>) failed: zlib.read(): unexpected EOF at 894774 > Feb 4 06:20:01 mail1 dovecot: imap(user at example.com): Disconnected in > APPEND (1 msgs, 201 secs, 0/5180550 bytes) in=894774 out=643701 > > I've been able to correlate this to users - using Thunderbird - complaining > that they have been unable to "send email". > > Is the problem on the Dovecot side, their side or something else? > > If on the Dovecot any pointers and what I should look at? > > Thanks, > Anand > let us see your conf Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From portase.florin at medianetork.ro Tue Feb 4 12:55:00 2014 From: portase.florin at medianetork.ro (Florin Portase) Date: Tue, 04 Feb 2014 11:55:00 +0100 Subject: [Dovecot] Dovecot 2.2.10 shared mailbox Message-ID: <52F0C704.9040909@medianetork.ro> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 During some errors with domain dovecot.org, I didn't receive any answer. So here is output of dovecot -n first_valid_uid = 420 info_log_path = /var/log/dovecot/dovecot.log lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes log_path = /var/log/dovecot/errors.log mail_plugins = " zlib expire acl" managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { inbox = no list = children location = maildir:/home/vpopmail/Public/Maildir prefix = Shared. separator = . subscriptions = yes type = shared } namespace { hidden = no inbox = yes list = yes location = mailbox Junk { auto = create special_use = \Junk } mailbox Sent { auto = subscribe special_use = \Sent } mailbox Spam { auto = subscribe special_use = \Junk } mailbox Trash { auto = subscribe special_use = \Trash } prefix = INBOX. separator = . subscriptions = yes type = private } passdb { driver = vpopmail } plugin { acl = vfile expire = INBOX.Trash expire2 = INBOX.Spam expire3 = INBOX.Junk quota = maildir quota_rule2 = INBOX.Trash:ignore quota_rule3 = INBOX.Sent:ignore sieve = ~/Maildir/sieve/dovecot.sieve sieve_after = ~/Maildir/sieve/01_vacation.sieve sieve_before = /etc/dovecot/sieve/global.sieve sieve_dir = ~/Maildir/sieve sieve_global_dir = /etc/dovecot/sieve/ sieve_quota_max_scripts = 50 zlib_save = bz2 } protocols = imap sieve pop3 service anvil { chroot = empty client_limit = 0 drop_priv_before_exec = no executable = anvil extra_groups = group = idle_kill = 4294967295 secs privileged_group = process_limit = 1 process_min_avail = 1 protocol = service_count = 0 type = anvil unix_listener anvil-auth-penalty { group = mode = 0600 user = } unix_listener anvil { group = mode = 0600 user = } user = $default_internal_user vsz_limit = 18446744073709551615 B } service auth-worker { chroot = client_limit = 1 drop_priv_before_exec = no executable = auth -w extra_groups = group = idle_kill = 0 privileged_group = process_limit = 0 process_min_avail = 0 protocol = service_count = 1 type = unix_listener auth-worker { group = mode = 0600 user = $default_internal_user } user = vsz_limit = 18446744073709551615 B } service auth { chroot = client_limit = 4096 drop_priv_before_exec = no executable = auth extra_groups = group = idle_kill = 0 privileged_group = process_limit = 1 process_min_avail = 0 protocol = service_count = 0 type = unix_listener /var/run/auth-master { group = vchkpw mode = 0660 user = vpopmail } unix_listener /var/run/private/auth { group = mode = 0666 user = } unix_listener auth-client { group = mode = 0600 user = } unix_listener auth-login { group = mode = 0600 user = $default_internal_user } unix_listener auth-master { group = mode = 0600 user = } unix_listener auth-userdb { group = mode = 0600 user = } unix_listener login/login { group = mode = 0666 user = } user = dovecot vsz_limit = 8 G } service config { chroot = client_limit = 0 drop_priv_before_exec = no executable = config extra_groups = group = idle_kill = 0 privileged_group = process_limit = 0 process_min_avail = 0 protocol = service_count = 0 type = config unix_listener config { group = mode = 0600 user = } user = vsz_limit = 18446744073709551615 B } service dict { chroot = client_limit = 1 drop_priv_before_exec = no executable = dict extra_groups = group = idle_kill = 0 privileged_group = process_limit = 0 process_min_avail = 0 protocol = service_count = 0 type = unix_listener dict { group = mode = 0666 user = } user = $default_internal_user vsz_limit = 18446744073709551615 B } service director { chroot = client_limit = 0 drop_priv_before_exec = no executable = director extra_groups = fifo_listener login/proxy-notify { group = mode = 00 user = } group = idle_kill = 4294967295 secs privileged_group = process_limit = 1 process_min_avail = 0 protocol = service_count = 0 type = unix_listener director-admin { group = mode = 0600 user = } unix_listener login/director { group = mode = 00 user = } user = $default_internal_user vsz_limit = 18446744073709551615 B } service dns_client { chroot = client_limit = 1 drop_priv_before_exec = no executable = dns-client extra_groups = group = idle_kill = 0 privileged_group = process_limit = 0 process_min_avail = 0 protocol = service_count = 0 type = unix_listener dns-client { group = mode = 0666 user = } unix_listener login/dns-client { group = mode = 0666 user = } user = $default_internal_user vsz_limit = 18446744073709551615 B } service doveadm { chroot = client_limit = 1 drop_priv_before_exec = no executable = doveadm-server extra_groups = group = idle_kill = 0 privileged_group = process_limit = 0 process_min_avail = 0 protocol = service_count = 1 type = unix_listener doveadm-server { group = mode = 0600 user = } user = vsz_limit = 18446744073709551615 B } service imap-login { chroot = login client_limit = 0 drop_priv_before_exec = no executable = imap-login extra_groups = group = idle_kill = 0 inet_listener imap { address = 0.0.0.0 port = 143 ssl = no } inet_listener imaps { address = 0.0.0.0 port = 993 ssl = yes } privileged_group = process_limit = 128 process_min_avail = 3 protocol = imap service_count = 1 type = login user = dovecot vsz_limit = 64 M } service imap { chroot = client_limit = 1 drop_priv_before_exec = no executable = imap extra_groups = group = idle_kill = 0 privileged_group = process_limit = 1024 process_min_avail = 0 protocol = imap service_count = 50 type = unix_listener login/imap { group = mode = 0666 user = } user = vsz_limit = 18446744073709551615 B } service lmtp { chroot = client_limit = 0 drop_priv_before_exec = no executable = lmtp extra_groups = group = idle_kill = 0 privileged_group = process_limit = 0 process_min_avail = 0 protocol = lmtp service_count = 0 type = unix_listener lmtp { group = mode = 0666 user = } user = vsz_limit = 0 } service log { chroot = client_limit = 0 drop_priv_before_exec = no executable = log extra_groups = group = idle_kill = 0 privileged_group = process_limit = 1 process_min_avail = 0 protocol = service_count = 0 type = log user = vsz_limit = 18446744073709551615 B } service managesieve-login { chroot = login client_limit = 0 drop_priv_before_exec = no executable = managesieve-login extra_groups = group = idle_kill = 0 inet_listener sieve { address = port = 4190 ssl = no } privileged_group = process_limit = 128 process_min_avail = 3 protocol = sieve service_count = 1 type = login user = dovecot vsz_limit = 64 M } service managesieve { chroot = client_limit = 1 drop_priv_before_exec = no executable = managesieve extra_groups = group = idle_kill = 0 privileged_group = process_limit = 0 process_min_avail = 0 protocol = sieve service_count = 1 type = unix_listener login/sieve { group = mode = 0666 user = } user = vsz_limit = 18446744073709551615 B } service pop3-login { chroot = login client_limit = 0 drop_priv_before_exec = no executable = pop3-login extra_groups = group = idle_kill = 0 inet_listener pop3 { address = 0.0.0.0 port = 110 ssl = no } inet_listener pop3s { address = 0.0.0.0 port = 995 ssl = yes } privileged_group = process_limit = 128 process_min_avail = 3 protocol = pop3 service_count = 1 type = login user = dovecot vsz_limit = 64 M } service pop3 { chroot = client_limit = 1 drop_priv_before_exec = no executable = pop3 extra_groups = group = idle_kill = 0 privileged_group = process_limit = 1024 process_min_avail = 0 protocol = pop3 service_count = 50 type = unix_listener login/pop3 { group = mode = 0666 user = } user = vsz_limit = 18446744073709551615 B } service ssl-params { chroot = client_limit = 0 drop_priv_before_exec = no executable = ssl-params extra_groups = group = idle_kill = 0 privileged_group = process_limit = 0 process_min_avail = 0 protocol = service_count = 0 type = startup unix_listener login/ssl-params { group = mode = 0666 user = } user = vsz_limit = 18446744073709551615 B } ssl_cert = References: <201401301050.54809.arekm@maven.pl> <52EA36B5.1010008@thelounge.net> Message-ID: <201402041309.16022.arekm@maven.pl> On Thursday 30 of January 2014, Steffen Kaiser wrote: > On Thu, 30 Jan 2014, Reindl Harald wrote: > > Am 30.01.2014 12:04, schrieb Arkadiusz Mi?kiewicz: > >> On Thursday 30 of January 2014, Reindl Harald wrote: > >>> Am 30.01.2014 10:50, schrieb Arkadiusz Mi?kiewicz: > >>>> mail_log_events is nice addition but how to log who exactly triggered > >>>> particular event? For example 5 users from 5 IP addresses uses single > >>>> imap user/mailbox. > >>>> > >>>> One of them deletes email and I'm logging delete related events. The > >>>> only logged thing is: > >>>> > >>>> dovecot: imap(user): delete: box=INBOX, uid=673287, > >>>> msgid=, size=1230 Here is a feature request: Add optionally (or unconditionally) logging of session id in mail_log_events. Timo, is this possible? (the same session id that appears in login log entries: dovecot: imap-login: Login: user=, method=PLAIN, rip=aaa, lip=yyy, mpid=11682, TLS, session=) So for example this would get logged: dovecot: imap(user): delete: box=INBOX, uid=673287, msgid=, size=1230, session= > @Arkadiusz, please tell us, if 10 people use the same account name and > password, how would you as a server behind the internet with a human > brain differ those 10 individuals? > > The only idea I, personally, have is the IP address: Do they connect from > different IP addresses _all_ the time? No NAT involved? Do you know who > uses which IP address _all_ the time? If so, Dovecot logs the IP address > during login and you can associate a PID with an IP address, IMHO you can > add the remote IP address to the log string. Check out the variables page > in the Wiki. > > But, frankly, _if_ you have someone, who is >>"bad" and deletes important > mail<<, you should see >>sensible reason to disallow such work style<<. > The next time you see yet another IP address and don't know the user > again. Ok, but why session id that's assigned at login cannot be logged in mail_log_events, too? Is there any technical problem with this approach? It solves the problem (yes, assume different IP addresses; won't work obviously if the address is the same) The discussion is now about changing the way service is used by people while I'm more interested in what dovecot can do or (enhancing) dovecot capabilities. -- Arkadiusz Mi?kiewicz, arekm / maven.pl From skdovecot at smail.inf.fh-brs.de Tue Feb 4 14:52:39 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 4 Feb 2014 13:52:39 +0100 (CET) Subject: [Dovecot] mail_log_events, but who exactly triggered events? [feature request] In-Reply-To: <201402041309.16022.arekm@maven.pl> References: <201401301050.54809.arekm@maven.pl> <52EA36B5.1010008@thelounge.net> <201402041309.16022.arekm@maven.pl> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 4 Feb 2014, Arkadiusz Mi?kiewicz wrote: > Date: Tue, 4 Feb 2014 13:09:15 +0100 > From: Arkadiusz Mi?kiewicz > To: dovecot at dovecot.org > Subject: Re: [Dovecot] mail_log_events, > but who exactly triggered events? [feature request] > > On Thursday 30 of January 2014, Steffen Kaiser wrote: >> On Thu, 30 Jan 2014, Reindl Harald wrote: >>> Am 30.01.2014 12:04, schrieb Arkadiusz Mi?kiewicz: >>>> On Thursday 30 of January 2014, Reindl Harald wrote: >>>>> Am 30.01.2014 10:50, schrieb Arkadiusz Mi?kiewicz: >>>>>> mail_log_events is nice addition but how to log who exactly triggered >>>>>> particular event? For example 5 users from 5 IP addresses uses single >>>>>> imap user/mailbox. >>>>>> >>>>>> One of them deletes email and I'm logging delete related events. The >>>>>> only logged thing is: >>>>>> >>>>>> dovecot: imap(user): delete: box=INBOX, uid=673287, >>>>>> msgid=, size=1230 > > Here is a feature request: > > Add optionally (or unconditionally) logging of session id in mail_log_events. > > Timo, is this possible? > > (the same session id that appears in login log entries: dovecot: imap-login: > Login: user=, method=PLAIN, rip=aaa, lip=yyy, > mpid=11682, TLS, session=) > > So for example this would get logged: > dovecot: imap(user): delete: box=INBOX, uid=673287, msgid=, > size=1230, session= did you've tried this: http://wiki2.dovecot.org/Variables there is the session variable and the mail_log_prefix setting. Should work, IMHO. > >> @Arkadiusz, please tell us, if 10 people use the same account name and >> password, how would you as a server behind the internet with a human >> brain differ those 10 individuals? >> >> The only idea I, personally, have is the IP address: Do they connect from >> different IP addresses _all_ the time? No NAT involved? Do you know who >> uses which IP address _all_ the time? If so, Dovecot logs the IP address >> during login and you can associate a PID with an IP address, IMHO you can >> add the remote IP address to the log string. Check out the variables page >> in the Wiki. >> >> But, frankly, _if_ you have someone, who is >>"bad" and deletes important >> mail<<, you should see >>sensible reason to disallow such work style<<. >> The next time you see yet another IP address and don't know the user >> again. > > Ok, but why session id that's assigned at login cannot be logged in > mail_log_events, too? Is there any technical problem with this approach? > > It solves the problem (yes, assume different IP addresses; won't work > obviously if the address is the same) > > The discussion is now about changing the way service is used by people while > I'm more interested in what dovecot can do or (enhancing) dovecot > capabilities. > > - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvDil3D1/YhP6VMHAQKYPAf/Y19YFhmfNUcOa8AckcE5u1G9b36za9MH HS2hcTjKI4k1iKHFhMS7cdKoeH0uHQaq0SWOhqH8jAssDh+YpnOTrmAdr2gJDHVi rX9JSXoD/VgkQKptoc+EEgumEnHIrdu0GNjp5Jz2kKjM0prv+GscTJuoaSMhOjr2 xL/BxW3q85HsGmSQbxbHp5mcZiBZe0WFrz0U/vAfA0LO/mUBYfNmze+BXM867asc aMEtMk9JahBUEPuNOzxqU9Qf70LlYkfV2Fw48+tpuGByG7yjkI5OXc8Flh47Z0jN 4OAHSPwVblh7LJuOM7DAlpPO8mbJOlVhMVxDisazxDwHO1oTq1rnPQ== =oGnE -----END PGP SIGNATURE----- From siefke_listen at web.de Tue Feb 4 15:28:40 2014 From: siefke_listen at web.de (Silvio Siefke) Date: Tue, 4 Feb 2014 14:28:40 +0100 Subject: [Dovecot] Duplicate namespace prefix: "" In-Reply-To: References: <20140203161441.fae2f83bfe6c048c3c9bd1c6@web.de> Message-ID: <20140204142840.c8133b3bf563d5e40a0b5c88@web.de> Hello, On Tue, 4 Feb 2014 08:10:35 +0100 (CET) Steffen Kaiser wrote: > The samples in the Wiki are 1) only snippets and 2) do not contain > Duplicate namespace prefixes, please post your full doveconf -n > output. Yes sorry i has forget and secound mail not was delivered in dovecot list. # dovecot -n # 2.2.9: /etc/dovecot/dovecot.conf # OS: Linux 3.10.23-xxxx-std-ipv6-64 x86_64 Gentoo Base System release 2.2 debug_log_path = /var/log/dovecot-debug.log info_log_path = /var/log/dovecot-info.log log_path = /var/log/dovecot.log mail_debug = yes mail_location = maildir:~/maildir mail_plugins = acl managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { hidden = no inbox = yes location = prefix = separator = / type = private } namespace { list = yes location = maildir:/var/vmail/public:LAYOUT=fs:INDEX=~/public prefix = Public/ separator = / subscriptions = no type = public } namespace inbox { location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = username_format=%u /var/vmail/auth.d/%d/passwd driver = passwd-file } plugin { acl = vfile:/var/vmail/conf.d/%d/acls:cache_secs=300 sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_global_dir = /var/vmail/conf.d/%d/sieve } protocols = imap lmtp service auth-worker { user = dovecot } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } user = dovecot } service imap-login { inet_listener imap { address = 37.187.103.194 port = 143 } inet_listener imaps { port = 0 } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0666 user = postfix } } ssl_cert = References: <201401301050.54809.arekm@maven.pl> <201402041309.16022.arekm@maven.pl> <52f0e26d.81d30e0a.1fc7.ffffa076SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: <201402041430.01207.arekm@maven.pl> On Tuesday 04 of February 2014, Steffen Kaiser wrote: > On Tue, 4 Feb 2014, Arkadiusz Mi?kiewicz wrote: > > Date: Tue, 4 Feb 2014 13:09:15 +0100 > > From: Arkadiusz Mi?kiewicz > > To: dovecot at dovecot.org > > Subject: Re: [Dovecot] mail_log_events, > > > > but who exactly triggered events? [feature request] > > > > On Thursday 30 of January 2014, Steffen Kaiser wrote: > >> On Thu, 30 Jan 2014, Reindl Harald wrote: > >>> Am 30.01.2014 12:04, schrieb Arkadiusz Mi?kiewicz: > >>>> On Thursday 30 of January 2014, Reindl Harald wrote: > >>>>> Am 30.01.2014 10:50, schrieb Arkadiusz Mi?kiewicz: > >>>>>> mail_log_events is nice addition but how to log who exactly > >>>>>> triggered particular event? For example 5 users from 5 IP addresses > >>>>>> uses single imap user/mailbox. > >>>>>> > >>>>>> One of them deletes email and I'm logging delete related events. The > >>>>>> only logged thing is: > >>>>>> > >>>>>> dovecot: imap(user): delete: box=INBOX, uid=673287, > >>>>>> msgid=, size=1230 > > > > Here is a feature request: > > > > Add optionally (or unconditionally) logging of session id in > > mail_log_events. > > > > Timo, is this possible? > > > > (the same session id that appears in login log entries: dovecot: > > imap-login: Login: user=, method=PLAIN, rip=aaa, lip=yyy, > > mpid=11682, TLS, session=) > > > > So for example this would get logged: > > dovecot: imap(user): delete: box=INBOX, uid=673287, msgid=, > > size=1230, session= > > did you've tried this: > http://wiki2.dovecot.org/Variables > there is the session variable and the mail_log_prefix setting. Should > work, IMHO. Wow, easy. Works nicely. Thanks! -- Arkadiusz Mi?kiewicz, arekm / maven.pl From siefke_listen at web.de Tue Feb 4 17:26:26 2014 From: siefke_listen at web.de (Silvio Siefke) Date: Tue, 4 Feb 2014 16:26:26 +0100 Subject: [Dovecot] Namespace Mistake In-Reply-To: References: <20140203180643.2929d815c64bb300f42bf3d5@web.de> Message-ID: <20140204162626.3ed134d3b831f88781398a89@web.de> Hello, On Tue, 4 Feb 2014 08:14:20 +0100 (CET) Steffen Kaiser wrote: > Those two namespaces should have the same name, because the prefix is > the same: Yes that's it. Thank you for help. Can i ask one question then im happy. I try to connect with email client, but nothing happen. Sylpheed say only can not build the box. I has activate the auth_debug but in the logs i find no mistake. ks3374456 log # cat dovecot-debug.log Feb 04 16:25:40 auth: Debug: Loading modules from directory: /usr/lib64/dovecot/auth Feb 04 16:25:40 auth: Debug: Read auth token secret from /var/run/dovecot/auth-token-secret.dat Feb 04 16:25:40 auth: Debug: auth client connected (pid=15214) ks3374456 log # cat dovecot-info.log Feb 04 16:22:58 master: Info: Dovecot v2.2.9 starting up (core dumps disabled) Feb 04 16:23:18 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=176.3.32.140, lip=37.187.103.194, session= Feb 04 16:25:28 master: Info: Dovecot v2.2.9 starting up (core dumps disabled) Feb 04 16:25:41 imap-login: Info: Aborted login (no auth attempts in 1 secs): user=<>, rip=176.3.32.140, lip=37.187.103.194, session= ks3374456 log # cat dovecot.log Feb 04 16:25:28 master: Warning: Killed with signal 15 (by pid=15178 uid=0 code=kill) the config: ks3374456 log # dovecot -n # 2.2.9: /etc/dovecot/dovecot.conf # OS: Linux 3.10.23-xxxx-std-ipv6-64 x86_64 Gentoo Base System release 2.2 auth_debug = yes debug_log_path = /var/log/dovecot-debug.log info_log_path = /var/log/dovecot-info.log log_path = /var/log/dovecot.log mail_debug = yes mail_location = maildir:~/maildir mail_plugins = acl managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { list = yes location = maildir:/var/vmail/public:LAYOUT=fs:INDEX=~/public prefix = Public/ separator = / subscriptions = no type = public } namespace inbox { hidden = no inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = separator = / type = private } passdb { args = username_format=%u /var/vmail/auth.d/%d/passwd driver = passwd-file } plugin { acl = vfile:/var/vmail/conf.d/%d/acls:cache_secs=300 sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_global_dir = /var/vmail/conf.d/%d/sieve } protocols = imap lmtp service auth-worker { user = dovecot } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } user = dovecot } service imap-login { inet_listener imap { address = 37.187.103.194 port = 143 } inet_listener imaps { port = 0 } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0666 user = postfix } } ssl_cert = References: <20140203180643.2929d815c64bb300f42bf3d5@web.de> <20140204162626.3ed134d3b831f88781398a89@web.de> Message-ID: <52F116EC.4010000@enas.net> Hi, if I try a telnet to your IP I get the following: telnet 37.187.103.194 143 Trying 37.187.103.194... Connected to 37.187.103.194. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS LOGINDISABLED] Dovecot ready. 1 logout * BYE Logging out 1 OK Logout completed. Connection closed by foreign host. You have "LOGINDISABLED" enabled. Which means that you can't login with plain text mechanism. See: http://archiveopteryx.org/imap/logindisabled Is Sylpheed able to use another auth mechanism rather than PLAIN or LOGIN? Perhaps you should also use TLS to encrypt the hole traffic between client and server, as it is supported by dovecot (STARTTLS). Regards Urban Am 04.02.2014 16:26, schrieb Silvio Siefke: > Hello, > > On Tue, 4 Feb 2014 08:14:20 +0100 (CET) Steffen Kaiser > wrote: > >> Those two namespaces should have the same name, because the prefix is >> the same: > > Yes that's it. Thank you for help. Can i ask one question then im happy. > > I try to connect with email client, but nothing happen. Sylpheed say > only can not build the box. I has activate the auth_debug but in the > logs i find no mistake. > > ks3374456 log # cat dovecot-debug.log > Feb 04 16:25:40 auth: Debug: Loading modules from directory: /usr/lib64/dovecot/auth > Feb 04 16:25:40 auth: Debug: Read auth token secret from /var/run/dovecot/auth-token-secret.dat > Feb 04 16:25:40 auth: Debug: auth client connected (pid=15214) > > ks3374456 log # cat dovecot-info.log > Feb 04 16:22:58 master: Info: Dovecot v2.2.9 starting up (core dumps disabled) > Feb 04 16:23:18 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=176.3.32.140, lip=37.187.103.194, session= > Feb 04 16:25:28 master: Info: Dovecot v2.2.9 starting up (core dumps disabled) > Feb 04 16:25:41 imap-login: Info: Aborted login (no auth attempts in 1 secs): user=<>, rip=176.3.32.140, lip=37.187.103.194, session= > > ks3374456 log # cat dovecot.log > Feb 04 16:25:28 master: Warning: Killed with signal 15 (by pid=15178 uid=0 code=kill) > > the config: > ks3374456 log # dovecot -n > # 2.2.9: /etc/dovecot/dovecot.conf > # OS: Linux 3.10.23-xxxx-std-ipv6-64 x86_64 Gentoo Base System release 2.2 > auth_debug = yes > debug_log_path = /var/log/dovecot-debug.log > info_log_path = /var/log/dovecot-info.log > log_path = /var/log/dovecot.log > mail_debug = yes > mail_location = maildir:~/maildir > mail_plugins = acl > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave > namespace { > list = yes > location = maildir:/var/vmail/public:LAYOUT=fs:INDEX=~/public > prefix = Public/ > separator = / > subscriptions = no > type = public > } > namespace inbox { > hidden = no > inbox = yes > location = > mailbox Drafts { > special_use = \Drafts > } > mailbox Junk { > special_use = \Junk > } > mailbox Sent { > special_use = \Sent > } > mailbox "Sent Messages" { > special_use = \Sent > } > mailbox Trash { > special_use = \Trash > } > prefix = > separator = / > type = private > } > passdb { > args = username_format=%u /var/vmail/auth.d/%d/passwd > driver = passwd-file > } > plugin { > acl = vfile:/var/vmail/conf.d/%d/acls:cache_secs=300 > sieve = ~/.dovecot.sieve > sieve_dir = ~/sieve > sieve_global_dir = /var/vmail/conf.d/%d/sieve > } > protocols = imap lmtp > service auth-worker { > user = dovecot > } > service auth { > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0660 > user = postfix > } > user = dovecot > } > service imap-login { > inet_listener imap { > address = 37.187.103.194 > port = 143 > } > inet_listener imaps { > port = 0 > } > } > service lmtp { > unix_listener /var/spool/postfix/private/dovecot-lmtp { > group = postfix > mode = 0666 > user = postfix > } > } > ssl_cert = ssl_key = userdb { > args = username_format=%u /var/vmail/auth.d/%d/passwd > driver = passwd-file > } > verbose_proctitle = yes > protocol lmtp { > mail_plugins = acl sieve > postmaster_address = webmaster at silviosiefke.com > } > protocol lda { > mail_plugins = sieve > } > protocol imap { > mail_plugins = acl imap_acl mail_log notify > } > > Thank you for help & Nice Day > Silvio > From osamu_aoki_home at nifty.com Mon Feb 3 15:50:48 2014 From: osamu_aoki_home at nifty.com (Osamu Aoki) Date: Mon, 3 Feb 2014 22:50:48 +0900 Subject: [Dovecot] Dovecot auth user lookup patch for maildrop 2.7.1 Message-ID: <20140203135048.GA22453@goofy> Hi, I just updated patch for maildrop to 2.7.1 which moved many directories to libs/. http://anonscm.debian.org/gitweb/?p=collab-maint/maildrop.git;a=blob;f=debian/patches/0010-maildrop-2.3.0-dovecotauth.patch Osamu -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 181 bytes Desc: Digital signature URL: From myleetlist at gmx.de Mon Feb 3 18:40:07 2014 From: myleetlist at gmx.de (myleetlist at gmx.de) Date: Mon, 3 Feb 2014 17:40:07 +0100 (CET) Subject: [Dovecot] Multiple ssl-certs on different ports with the same protocol Message-ID: Hi, is it possible to use multiple ssl-certs on different _ports_ with the same protocol? I know I can configure multiple certs with the "local " setting*. But how is this (or similar) possible in v2.2.10: local :100 { protocol imap { ... } } local :101 { protocol imap { ... } } This would be useful in a loadbalancing setup, you don't waste IPs and the config files on different servers stay the same. * [http://wiki2.dovecot.org/SSL/DovecotConfiguration] From marc at perkel.com Tue Feb 4 19:40:11 2014 From: marc at perkel.com (Marc Perkel) Date: Tue, 04 Feb 2014 09:40:11 -0800 Subject: [Dovecot] Applying a DNS RBL to deny authentication? Message-ID: <52F125FB.8070405@perkel.com> Hope to get some attention about this idea to reduce hacking passwords. Here is a list of about 700,000 IP addresses that are hacking passwords through SMTP AUTH http://ipadmin.junkemailfilter.com/auth-hack.txt This is a list of IP addresses that attempted to authenticate against my fake AUTH advertizing on servers with no authentication. We do front end spam filtering for thousands of domains and I decided to advertize authentication where there is none and I accept and blackhole all authenticated email to those servers. I have harvested the IP addresses in this list that is available through an RBL. It seems to me that a nice dovecot feature would be the ability to do a black list check against IP addresses connecting and deny access if listed. Thoughts? From h.reindl at thelounge.net Tue Feb 4 19:57:34 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 04 Feb 2014 18:57:34 +0100 Subject: [Dovecot] Applying a DNS RBL to deny authentication? In-Reply-To: <52F125FB.8070405@perkel.com> References: <52F125FB.8070405@perkel.com> Message-ID: <52F12A0E.1090408@thelounge.net> Am 04.02.2014 18:40, schrieb Marc Perkel: > Hope to get some attention about this idea to reduce hacking passwords. > > Here is a list of about 700,000 IP addresses that are hacking passwords through SMTP AUTH > > http://ipadmin.junkemailfilter.com/auth-hack.txt > > This is a list of IP addresses that attempted to authenticate against my fake AUTH advertizing on servers with no > authentication. We do front end spam filtering for thousands of domains and I decided to advertize authentication > where there is none and I accept and blackhole all authenticated email to those servers. I have harvested the IP > addresses in this list that is available through an RBL. > > It seems to me that a nice dovecot feature would be the ability to do a black list check against IP addresses > connecting and deny access if listed. > > Thoughts? a limit of failed auth-tries without a succesful one would be better and strip down logging after it is blocked instead having thousands of lines from fools trying a dictionary * ip blocked after XX auth tries within XX minutes * blocking of ip released (XX tries blockd) something like that but with focus in failed logins anvil_rate_time_unit = 1800s smtpd_client_connection_rate_limit = 50 smtpd_client_recipient_rate_limit = 400 smtpd_recipient_limit = 100 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From rs at sys4.de Tue Feb 4 20:33:15 2014 From: rs at sys4.de (Robert Schetterer) Date: Tue, 04 Feb 2014 19:33:15 +0100 Subject: [Dovecot] Applying a DNS RBL to deny authentication? In-Reply-To: <52F125FB.8070405@perkel.com> References: <52F125FB.8070405@perkel.com> Message-ID: <52F1326B.4030605@sys4.de> Am 04.02.2014 18:40, schrieb Marc Perkel: > Hope to get some attention about this idea to reduce hacking passwords. > > Here is a list of about 700,000 IP addresses that are hacking passwords > through SMTP AUTH > > http://ipadmin.junkemailfilter.com/auth-hack.txt > > This is a list of IP addresses that attempted to authenticate against my > fake AUTH advertizing on servers with no authentication. We do front end > spam filtering for thousands of domains and I decided to advertize > authentication where there is none and I accept and blackhole all > authenticated email to those servers. I have harvested the IP addresses > in this list that is available through an RBL. > > > It seems to me that a nice dovecot feature would be the ability to do a > black list check against IP addresses connecting and deny access if listed. http://wiki2.dovecot.org/Authentication/RestrictAccess but you could add them in a firewall too > > Thoughts? > > i think you know the problems of rbls very well, in case of imap/pop a false postive may high support extremly, also think of nat users i prefer more dynamic and flexibel solutions, like fail2ban etc so your honeypot ips are fine , but shouldnt be widly used/match for everybody needs perhaps it might be better ,use them in a more "score" or monitoring / alarming system combined with other data Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From kevin at my.walr.us Tue Feb 4 21:23:32 2014 From: kevin at my.walr.us (KT Walrus) Date: Tue, 4 Feb 2014 14:23:32 -0500 Subject: [Dovecot] BLF-CRYPT passwords Message-ID: <7A58E87E-960F-4E3C-B2CB-6823CCC1C2E4@my.walr.us> I?m using the Dovecot Enterprise Edition on Centos 6.5, but Blowfish password hashes don?t seem to work. What can I do to enable Blowfish hashes for passwords? Maybe I don?t have my installation configured properly? Note that I really want to use the existing Blowfish hashes in my MySQL database for Dovecot Authentication. The hashes are generated by PHP crypt() that has Blowfish support built-in. I looked at PHP?s sources, and PHP uses crypt_blowfish.c from http://www.openwall.com/crypt/. This code is in the public domain and could easily be used by Dovecot to support Blowfish passwords on all platforms (if Dovecot doesn?t already support Blowfish on all platforms). Kevin From patrickdk at patrickdk.com Tue Feb 4 21:51:02 2014 From: patrickdk at patrickdk.com (Patrick Domack) Date: Tue, 04 Feb 2014 14:51:02 -0500 Subject: [Dovecot] BLF-CRYPT passwords In-Reply-To: <7A58E87E-960F-4E3C-B2CB-6823CCC1C2E4@my.walr.us> References: <7A58E87E-960F-4E3C-B2CB-6823CCC1C2E4@my.walr.us> Message-ID: <20140204145102.Horde.mDLJI9xITpPhNXgkExkw8Q2@mail.patrickdk.com> If they where generated using crypt, why not tell dovecot to use crypt also? Quoting KT Walrus : > I?m using the Dovecot Enterprise Edition on Centos 6.5, but Blowfish > password hashes don?t seem to work. What can I do to enable > Blowfish hashes for passwords? Maybe I don?t have my installation > configured properly? > > Note that I really want to use the existing Blowfish hashes in my > MySQL database for Dovecot Authentication. The hashes are generated > by PHP crypt() that has Blowfish support built-in. I looked at > PHP?s sources, and PHP uses crypt_blowfish.c from > http://www.openwall.com/crypt/. This code is in the public domain > and could easily be used by Dovecot to support Blowfish passwords on > all platforms (if Dovecot doesn?t already support Blowfish on all > platforms). > > Kevin From tss at iki.fi Wed Feb 5 00:13:52 2014 From: tss at iki.fi (Timo Sirainen) Date: Tue, 4 Feb 2014 17:13:52 -0500 Subject: [Dovecot] Status Message-ID: So, just some quick notes: - dovecot.org server was down a couple of days again, need to find time to move it to a VM.. - my tss at iki.fi emails were also broken for some hours at least and it was bouncing back all mails to it during the time - I fixed some bugs reported by people, but I did it in airplane so couldn't reply back with links to the fixes in hg repo. I'll probably do that tomorrow. But you can already check if your reported bug has been fixed in http://hg.dovecot.org/dovecot-2.2 - I'm planning on going through Dovecot list's mails this week and make v2.2.11 release - although it looks like I've a flu, so lets see how far I can get.. - hopefully by the beginning of March I'll have more time again From tss at iki.fi Wed Feb 5 00:14:01 2014 From: tss at iki.fi (Timo Sirainen) Date: Tue, 4 Feb 2014 17:14:01 -0500 Subject: [Dovecot] dsync backup; compressed to uncompressed In-Reply-To: References: Message-ID: <9A9D2C9D-4C07-4DD0-90E7-29281DB4DEDE@iki.fi> On 29.1.2014, at 15.30, Michael Smith (DF) wrote: > Ok, I think I found an answer. I don't know if it's the right one... > > I duplicated my dovecot.conf to backup.conf. I then removed this part from plugin {} > zlib_save = gz > zlib_save_level = 9 > > I then add "-c backup.conf" to my dsync command. This appears to allow dsync to read the compressed mdbox accounts, but when it writes the backup in maildir format, everything is uncompressed. Or you could just use doveadm -o plugin/zlib_save= to override the setting. From jtam.home at gmail.com Wed Feb 5 02:02:23 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Tue, 4 Feb 2014 16:02:23 -0800 (PST) Subject: [Dovecot] Dovecot 2.2.10 shared mailbox In-Reply-To: References: Message-ID: Florin Portase writes: > type of error: COREDUMP > Feb 04 11:49:59 imap(portase.florin at medianetork.ro): Fatal: master: > service(imap): child 23391 killed with signal 11 (core dumped) > > Disabling of shared mailbox results in correct functioning of dovecot. > To mention again: dovecot version previous to 2.2 was working OK. Debugging of this sort usually requires submitting a core dump traceback http://dovecot.org/bugreport.html This might be a known issue (check the Dovecot archives). Joseph Tam From stephan at rename-it.nl Wed Feb 5 02:21:43 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 05 Feb 2014 01:21:43 +0100 Subject: [Dovecot] mime support for pigeonhole In-Reply-To: <52EA9EE6.40905@googlemail.com> References: <52EA9EE6.40905@googlemail.com> Message-ID: <52F18417.1090608@rename-it.nl> Hi, On 1/30/2014 7:50 PM, Tim Dickson wrote: > is there any chance of rfc5703 (mime support/extension) being added to > pigeonhole? There are plans for that, but there is no concrete timeline. > I am trying to filter mail with .exe and .zip attachments, to no success. > > I can't use body because that doesn't include the mime headers, so the > only way I can see is to use mime (aka rfc5703) > I am using dovecot 2.1.8 with pigeonhole 0.3.3 (and am about to use > dovecot 2.2.9 with pigeonhole 0.4.2 on another server) > If I'm just missing the point, or there is already support, please > point me in the right direction. You only need to test for the existence of certain attachments: require "body"; require "relational"; require "fileinto"; if body :count "gt" :content "application/x-zip-compressed" "0" { fileinto "Zip"; } else { fileinto "NoZip"; } This tests whether there are more than zero message parts with content-type "application/x-zip-compressed". Regards, Stephan. From kremels at kreme.com Wed Feb 5 05:47:02 2014 From: kremels at kreme.com (LuKreme) Date: Tue, 4 Feb 2014 20:47:02 -0700 Subject: [Dovecot] Applying a DNS RBL to deny authentication? In-Reply-To: <52F125FB.8070405@perkel.com> References: <52F125FB.8070405@perkel.com> Message-ID: <556247B9-71D9-4B0A-AABD-FDDAA371FB93@kreme.com> On 04 Feb 2014, at 10:40 , Marc Perkel wrote: > It seems to me that a nice dovecot feature would be the ability to do a black list check against IP addresses connecting and deny access if listed. > > Thoughts? Use the right tool. Fail2ban (or denyssh) do this sort of limiting quite well. One of them even has a feature that allows you to sync bad IPs with other people (denyssh, I think). Also, postfix will check an RBL, so if you simply put in your check in master.cf for your submission port, there?s no reason for dovecot to try to redo something others already do. Something like this in postfix submission inet n - n - - smtpd -o smtpd_tls_security_level=encrypt -o reject_rbl_client = myrbl.local -o smtpd_sasl_auth_enable=yes -o smtpd_sasl_type=dovecot -o smtpd_sasl_security_options=noanonymous -o smtpd_sasl_path=private/auth -o smtpd_client_restrictions=permit_sasl_authenticated,reject -o smtpd_data_restrictions= -o smtpd_relay_restrictions=permit_sasl_authenticated,reject_unauth_destination,reject -o smtpd_helo_restrictions= -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject_unauth_destination,reject -o syslog_name=submit-tls YMMV -- I have seen the truth and it makes no sense. From kremels at kreme.com Wed Feb 5 05:50:37 2014 From: kremels at kreme.com (LuKreme) Date: Tue, 4 Feb 2014 20:50:37 -0700 Subject: [Dovecot] mime support for pigeonhole In-Reply-To: <52EA9EE6.40905@googlemail.com> References: <52EA9EE6.40905@googlemail.com> Message-ID: On 30 Jan 2014, at 11:50 , Tim Dickson wrote: > I am trying to filter mail with .exe and .zip attachments, to no success. Are you using postfix with dovecot? $ cat mime_headers.pcre /^\s*Content-(Disposition|Type).*name\s*=\s*"?(.*\.(ade|adp|bas|bat|chm|cmd|com|cpl|crt|dll|exe|hlp|hta|inf|ins|isp|js|jse|lnk|mdb|mde|mdt|mdw|msc|msi|msp|mst|nws|ops|pcd|pif|prf|reg|scf|scr\??|sct|shb|shs|shm|swf|vb[esx]?|vxd|wsc|wsf|wsh))(\?=)?"?\s*(;|$)/x REJECT Attachment name "$2" may not end with ".$3? $ grep mime main.cf mime_header_checks = pcre:$config_directory/mime_headers.pcre -- "Conservatives want live babies so they can raise them to be dead soldiers" ~Carlin From portase.florin at medianetork.ro Wed Feb 5 10:55:18 2014 From: portase.florin at medianetork.ro (Florin Portase) Date: Wed, 05 Feb 2014 09:55:18 +0100 Subject: [Dovecot] Dovecot 2.2.10 shared mailbox Message-ID: <52F1FC76.3090407@medianetork.ro> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Well, after some debugging I've decided to do some more changes: namespace { type = public prefix = Shared. separator = . list = children location = maildir:/home/vpopmail/Public/Maildir subscriptions = yes inbox = no } So, WORKING againg!! Question is: is namespace = shared deprecated ???????? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJS8fx2AAoJECEzxtLP+204oAIIAMnElUi3izL/ytiDROGjVJl4 RdWkKb+2x55ANfNbB+tbMaG5CmCUi0qfS0Z6K2pKke/UxnR4RAWVZGxZ7ESl0MIs LtHKt1uv/pnoR4htO+QhloYIBzbs9Cpf8Nu7sWaxOsWl6Y7m3p9FqNvLBFYrzVsM Yx/G85GCyAlPHtpBuCtbNtLsuc4Oeh+cXbYMAu3+YiTcU9VB3Dhw21ViI3PgglYV Ffz/J+xtkvvNlcvmxX4Aqspv1LHK76nvBnYN/pDDHAgJNyGl0pOqo9HjVKZAlFZP Rg25EpuoaMZhHIMB2R5EAIHQddzBOqQc2OrWognvmB+7e+8qUtQMjpougamPg8w= =Y/hd -----END PGP SIGNATURE----- From freebsd-isp at chef-ingenieur.de Wed Feb 5 10:59:13 2014 From: freebsd-isp at chef-ingenieur.de (Thomas Krause) Date: Wed, 5 Feb 2014 09:59:13 +0100 Subject: [Dovecot] personal sieve script not included Message-ID: <2e13405bba5ade842083ee24668b25d6.squirrel@mail.webmatic.de> Hello, I'm using dovecot 2.2.10 and roundcube (with managesieve enabled). Sieve filtering works well, as long the rule is written into ~/.dovecot.sieve (which is a link to ~/sieve/managesieve.sieve) When adding a new filter set (in roundcube) the script is written to ~/sieve/newfilterset.sieve. This script will not be executed. How can I solve this? I set sieve_dir = ~/sieve This should work, except I misunderstand the doc. # ls -l ./sieve total 6 -rw------- 1 vmail mail 105 Feb 5 09:24 managesieve.sieve -rw------- 1 vmail mail 113 Feb 4 16:30 test.sieve drwx------ 2 vmail mail 512 Feb 5 09:24 tmp Regards, Thomas. From dickson.tim at googlemail.com Wed Feb 5 12:08:36 2014 From: dickson.tim at googlemail.com (Tim Dickson) Date: Wed, 05 Feb 2014 10:08:36 +0000 Subject: [Dovecot] mime support for pigeonhole In-Reply-To: <52F18417.1090608@rename-it.nl> References: <52EA9EE6.40905@googlemail.com> <52F18417.1090608@rename-it.nl> Message-ID: <52F20DA4.30801@googlemail.com> On 05/02/2014 00:21, Stephan Bosch wrote: > Hi, > > On 1/30/2014 7:50 PM, Tim Dickson wrote: >> is there any chance of rfc5703 (mime support/extension) being added to >> pigeonhole? > There are plans for that, but there is no concrete timeline. hopefully soon :-) >> I am trying to filter mail with .exe and .zip attachments, to no success. >> >> I can't use body because that doesn't include the mime headers, so the >> only way I can see is to use mime (aka rfc5703) >> I am using dovecot 2.1.8 with pigeonhole 0.3.3 (and am about to use >> dovecot 2.2.9 with pigeonhole 0.4.2 on another server) >> If I'm just missing the point, or there is already support, please >> point me in the right direction. > You only need to test for the existence of certain attachments: > > require "body"; > require "relational"; > require "fileinto"; > > if body :count "gt" :content "application/x-zip-compressed" "0" { > fileinto "Zip"; > } else { > fileinto "NoZip"; > } > > This tests whether there are more than zero message parts with > content-type "application/x-zip-compressed". > > Regards, > > Stephan. > > many thanks for the reply. I did previously try body :raw :contains ["application/x-zip-compressed","application/x-silverlight"], which catches zip and scr files, but, does nothing for exe files (or pif ones). both of which share types with other file types. The ideal would be to scan the "filename" part of the attachment header. The line below does that roughly by brute force. body :raw :regex ["filename=.*\.exe","filename=.*\.pif","filename=.*\.scr","filename=.*\.zip"] This would let me test for other sorts of attachment easily as well. Unless the :content test included filename, which rfc5173 doesn't seem to mention, :content does not let me identify exe as distinct from bin, class, dll, dmg,dms, lhs,lza .. etc. as they all have the same content type. It also doesn't help with pif files (which I didn't mention earlier, but are also common for malware) and which have a content type of text/plain with base64 encoding, which is odd for what amounts to a binary with executable capability. hopefully, the :mime support will come soon :-) regards, Tim From hendry at dabase.com Wed Feb 5 12:32:33 2014 From: hendry at dabase.com (Kai Hendry) Date: Wed, 5 Feb 2014 18:32:33 +0800 Subject: [Dovecot] imap2json In-Reply-To: <20131214162336.GA3324@sg.webconverger.com> References: <20131214162336.GA3324@sg.webconverger.com> Message-ID: <20140205103233.GA8157@sg.webconverger.com> Hi guys, I have a very alpha Web demo archive running at http://imap2json.dabase.com/ I could do with lots of help: * Just testing it and filing bugs * Ideas how to de-mime / decode emails to utf8 text (not keen on HTML email) * CSS / design * Reformatting emails, so the width is the same to some degree * Collapse cruft/noise from emails like footers / top posts * Summarising emails * Search Thanks! From anant.saraswat at techblue.co.uk Wed Feb 5 14:50:11 2014 From: anant.saraswat at techblue.co.uk (Anant Saraswat) Date: Wed, 05 Feb 2014 12:50:11 +0000 Subject: [Dovecot] How to archive mails on different server Message-ID: <52F23383.3060306@techblue.co.uk> Hi Guys, I want to make some new changes to my exim mail server So if any user archive his/her mail they will save on any other server not on Exim server , and whenever user want to search for any old mail he will go to archive folder and can search it from there.... So basically i want to setup a diffrent server for archiving and want to connect it to my Exim server. So whevever user archive his/her mail it will autometically save to diffrent server. So is it possible using any plugin , or something else . I am using Roundcube,Exim 4.72, Dovecot(LMTP). Regards, Anant Saraswat From freebsd-isp at chef-ingenieur.de Wed Feb 5 14:52:46 2014 From: freebsd-isp at chef-ingenieur.de (Thomas Krause) Date: Wed, 5 Feb 2014 13:52:46 +0100 Subject: [Dovecot] personal sieve script not included In-Reply-To: <2e13405bba5ade842083ee24668b25d6.squirrel@mail.webmatic.de> References: <2e13405bba5ade842083ee24668b25d6.squirrel@mail.webmatic.de> Message-ID: <2780b3393d6b33abe5b128cb25adf659.squirrel@mail.webmatic.de> In the meantime I found, that the .dovecot.svbin is not generated, when I add or modify a filter. I can only force building of .dovecot.svbin by deleting of .dovecot.svbin. Is that a bug? Regards, Thomas. > Hello, > I'm using dovecot 2.2.10 and roundcube (with managesieve enabled). > Sieve filtering works well, as long the rule is written > into ~/.dovecot.sieve (which is a link to ~/sieve/managesieve.sieve) > When adding a new filter set (in roundcube) the script is > written to ~/sieve/newfilterset.sieve. This script will not be > executed. How can I solve this? > > I set > sieve_dir = ~/sieve > This should work, except I misunderstand the doc. > > # ls -l ./sieve > total 6 > -rw------- 1 vmail mail 105 Feb 5 09:24 managesieve.sieve > -rw------- 1 vmail mail 113 Feb 4 16:30 test.sieve > drwx------ 2 vmail mail 512 Feb 5 09:24 tmp > > Regards, > Thomas. > > From rs at sys4.de Wed Feb 5 15:09:53 2014 From: rs at sys4.de (Robert Schetterer) Date: Wed, 05 Feb 2014 14:09:53 +0100 Subject: [Dovecot] How to archive mails on different server In-Reply-To: <52F23383.3060306@techblue.co.uk> References: <52F23383.3060306@techblue.co.uk> Message-ID: <52F23821.4000504@sys4.de> Am 05.02.2014 13:50, schrieb Anant Saraswat: > Hi Guys, > > I want to make some new changes to my exim mail server So if any user > archive his/her mail they will save on any other server not on Exim > server , and whenever user want to search for any old mail he will go to > archive folder and can search it from there.... So basically i want to > setup a diffrent server for archiving and want to connect it to my Exim > server. So whevever user archive his/her mail it will autometically save > to diffrent server. > > So is it possible using any plugin , or something else . I am using > Roundcube,Exim 4.72, Dovecot(LMTP). > > Regards, > Anant Saraswat perhaps use some always bc feature with exim, and mount mailstore from different server ( via internal network etc ) and use acl with shared namespace for a archive account etc like orig account: user.name at domain.de archive account: archive.user.name at archive.domain.de but to be honest such solution "smells" complicated not sure what else is possible with exim, wait for other/better solution example from the list perhaps look ( sorry only german ) , for archive ideas with postfix http://sys4.de/de/blog/2013/02/07/mailarchiv-mit-dovecot-und-postfix-sortiert-nach-datum-mailadressen-und-ein-ausgehend-unterordnern/ or perhaps you might look stuff with alternate storage http://wiki2.dovecot.org/MailboxFormat/dbox Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From me at junc.eu Wed Feb 5 15:51:39 2014 From: me at junc.eu (Benny Pedersen) Date: Wed, 05 Feb 2014 14:51:39 +0100 Subject: [Dovecot] mime support for pigeonhole In-Reply-To: <52F20DA4.30801@googlemail.com> References: <52EA9EE6.40905@googlemail.com> <52F18417.1090608@rename-it.nl> <52F20DA4.30801@googlemail.com> Message-ID: <83e3011eedb0f3d77cbc0b99349a4abe@junc.eu> On 2014-02-05 11:08, Tim Dickson wrote: > hopefully, the :mime support will come soon :-) until that happends, why not add foxhole 3dr party signatures to clamav ? http://sanesecurity.com/foxhole-databases/ From t.b.mailinglists at igeno-fat.de Wed Feb 5 16:35:10 2014 From: t.b.mailinglists at igeno-fat.de (T.B.) Date: Wed, 05 Feb 2014 15:35:10 +0100 Subject: [Dovecot] Debian Wheezy-Backports - Dovecot (1:2.2.9-1~bpo70+1) missing xz compression support? In-Reply-To: <52ED528B.7010804@igeno-fat.de> References: <52ED528B.7010804@igeno-fat.de> Message-ID: <52F24C1E.8040907@igeno-fat.de> Hi, just an update on the missing xz-compression support in the Debian Wheezy Backports Dovecot packet 2.2.9. Please have a look at the mail from the Debian Dovecot-package maintainer: regards T.B. -------- Original-Nachricht -------- Betreff: Re: Debian Wheezy-Backports - Dovecot (1:2.2.9-1~bpo70+1) missing xz compression support? Datum: Wed, 5 Feb 2014 01:15:14 -0500 (EST) Von: Jaldhar H. Vyas On Tue, 4 Feb 2014, Jaldhar H. Vyas wrote: > [I'm passing on your report to the developer who did the backport.] > Actually it turns out this is a problem in the package itself not just the backport. It will be fixed in the next version. -- Jaldhar H. Vyas From rs at sys4.de Wed Feb 5 16:47:30 2014 From: rs at sys4.de (Robert Schetterer) Date: Wed, 05 Feb 2014 15:47:30 +0100 Subject: [Dovecot] Debian Wheezy-Backports - Dovecot (1:2.2.9-1~bpo70+1) missing xz compression support? In-Reply-To: <52F24C1E.8040907@igeno-fat.de> References: <52ED528B.7010804@igeno-fat.de> <52F24C1E.8040907@igeno-fat.de> Message-ID: <52F24F02.5040503@sys4.de> Am 05.02.2014 15:35, schrieb T.B.: > Hi, > > just an update on the missing xz-compression support in the Debian > Wheezy Backports Dovecot packet 2.2.9. > Please have a look at the mail from the Debian Dovecot-package maintainer: > > regards > T.B. meanwhile perhaps http://wiki2.dovecot.org/PrebuiltBinaries#Automatically_Built_Packages http://xi.rename-it.nl/debian/pool/testing-auto/dovecot-2.2/ > > -------- Original-Nachricht -------- > Betreff: Re: Debian Wheezy-Backports - Dovecot (1:2.2.9-1~bpo70+1) > missing xz compression support? > Datum: Wed, 5 Feb 2014 01:15:14 -0500 (EST) > Von: Jaldhar H. Vyas > > > > On Tue, 4 Feb 2014, Jaldhar H. Vyas wrote: > >> [I'm passing on your report to the developer who did the backport.] >> > > Actually it turns out this is a problem in the package itself not just the > backport. It will be fixed in the next version. > Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From stephan at rename-it.nl Wed Feb 5 17:48:31 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 05 Feb 2014 16:48:31 +0100 Subject: [Dovecot] personal sieve script not included In-Reply-To: <2780b3393d6b33abe5b128cb25adf659.squirrel@mail.webmatic.de> References: <2e13405bba5ade842083ee24668b25d6.squirrel@mail.webmatic.de> <2780b3393d6b33abe5b128cb25adf659.squirrel@mail.webmatic.de> Message-ID: <52F25D4F.4070905@rename-it.nl> On 2/5/2014 1:52 PM, Thomas Krause wrote: > In the meantime I found, that the .dovecot.svbin is not > generated, when I add or modify a filter. I can only force > building of .dovecot.svbin by deleting of .dovecot.svbin. > > Is that a bug? Could you show your configuration? That is the output from: dovecot -n Regards, Stephan. From rgelfand2 at gmail.com Wed Feb 5 18:49:28 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Wed, 5 Feb 2014 11:49:28 -0500 Subject: [Dovecot] Mail location security Message-ID: I am not sure I understood this issue correctly... When using maildir with ie ldap. Suppose ldap attribute settings say gid 8 and uid 999, Those are the permissions for every email address. If so, someone who has access to one email user on the server, has access to all. If this is so, is using mailbox instead of maildir resolve this problem? Thanks in advance From freebsd-isp at chef-ingenieur.de Wed Feb 5 20:17:46 2014 From: freebsd-isp at chef-ingenieur.de (Thomas Krause) Date: Wed, 05 Feb 2014 19:17:46 +0100 Subject: [Dovecot] personal sieve script not included In-Reply-To: <52F25D4F.4070905@rename-it.nl> References: <2e13405bba5ade842083ee24668b25d6.squirrel@mail.webmatic.de> <2780b3393d6b33abe5b128cb25adf659.squirrel@mail.webmatic.de> <52F25D4F.4070905@rename-it.nl> Message-ID: <52F2804A.9070609@chef-ingenieur.de> Am 05.02.2014 16:48, schrieb Stephan Bosch: > On 2/5/2014 1:52 PM, Thomas Krause wrote: >> In the meantime I found, that the .dovecot.svbin is not >> generated, when I add or modify a filter. I can only force >> building of .dovecot.svbin by deleting of .dovecot.svbin. >> >> Is that a bug? > Could you show your configuration? That is the output from: > > dovecot -n > > Regards, > > Stephan. > # 2.2.10: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 8.4-RELEASE-p4 amd64 auth_cache_negative_ttl = 0 auth_cache_size = 10 M auth_mechanisms = plain login auth_verbose = yes dict { expire = mysql:/usr/local/etc/dovecot/dovecot-dict-expire.conf.ext quota = mysql:/usr/local/etc/dovecot/dovecot-dict-sql.conf.ext } disable_plaintext_auth = no first_valid_uid = 101 last_valid_uid = 101 login_log_format_elements = user=<%u> method=%m rip=%r lip=%l mpid=%e %c %k mail_fsync = never mail_gid = mail mail_plugins = " quota expire zlib" mail_privileged_group = mail mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave passdb { args = /usr/local/etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { expire = Trash expire2 = Trash/* expire3 = Spam expire_dict = proxy::expire quota = dict:User quota::proxy::quota quota_rule = *:storage=20M:messages=1000 quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_max_script_size = 1M zlib_save = gz zlib_save_level = 6 } protocols = imap pop3 lmtp sieve service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 } unix_listener auth-userdb { group = mail mode = 0640 user = vmail } } service dict { unix_listener dict { group = mail mode = 0660 user = vmail } } service imap-login { process_min_avail = 4 service_count = 0 vsz_limit = 256 M } service managesieve-login { inet_listener sieve { port = 4190 } } service quota-warning { executable = script /usr/local/bin/quota-warning.sh unix_listener quota-warning { user = vmail } user = dovecot } ssl_cert = I'm following a tutorial[1] on how to configure dovecot and the tutorial says to insert the following configuration options into the dovecot.conf file: disable_plaintext_auth = no mail_privileged_group = mail mail_location = mbox:~/mail:INBOX=/var/mail/%u userdb { driver = passwd } This seems to have worked for a lot of others using this tutorial but not for me. When I try to start dovecot, I am told that the section at userdb is an unknown section type. I've spent the last few hours on Google searching this out and I've gotten conflicting answers that don't make sense. Is this the proper way to use the userdb directive? For information, I've also tried userdb{ driver = passwd-file } and that didn't work either. So I'm assuming that perhaps userdb is deprecated somehow but I don't know what to replace it with. Can someone point me in the right direction? Many Thanks! CypherPunk [1] https://www.digitalocean.com/community/articles/how-to-set-up-a-postfix-e-mail-server-with-dovecot From phil at philfixit.info Thu Feb 6 08:37:37 2014 From: phil at philfixit.info (Phil) Date: Thu, 06 Feb 2014 17:37:37 +1100 Subject: [Dovecot] dovecot -n FATAL Message-ID: <52F32DB1.8050804@philfixit.info> Hi List, Im new to postfix-dovecot and im mystified by the following results in ubuntu 10.04lts :~$ dovecot -n # 1.2.9: /etc/dovecot/dovecot.conf Error: ssl_key_file: Can't use /etc/ssl/private/ssl-mail.key: Permission denied Fatal: Invalid configuration in /etc/dovecot/dovecot.conf ~$ sudo ls -dl /etc/ssl/private/ssl-mail.key lrwxrwxrwx 1 root root 38 2013-11-27 08:35 /etc/ssl/private/ssl-mail.key -> /etc/ssl/private/ssl-cert-snakeoil.key Why is dovecot happily delivering mail to local accounts ( thats all i use atm) without being able to access the ssl key, and how can i fix this problem so i can run dovecot -n successfully. i have tried 'chown dovecot' etc but there was no change in dovecot -n output. Any and all help is appreciated. Phil From skdovecot at smail.inf.fh-brs.de Thu Feb 6 09:10:54 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 6 Feb 2014 08:10:54 +0100 (CET) Subject: [Dovecot] userdb section not recognized in dovecot.conf. Help? In-Reply-To: <52F2C905.7070206@bitmessage.ch> References: <52F2C905.7070206@bitmessage.ch> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 5 Feb 2014, CypherPunk wrote: > disable_plaintext_auth = no > mail_privileged_group = mail > mail_location = mbox:~/mail:INBOX=/var/mail/%u > userdb { > driver = passwd > } this is not your full config, right? Please show us your full one: doveconf -n - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvM1fnD1/YhP6VMHAQLYSwf+KLkv4N9sgFHbApI5XBhyreExkhxI90T0 0NqmxSpAAox8U/z268jrW4bFVwda6q+7xV+95Tv6JArWtVtxOo7BPZ+FLDBr5Lym IF0wABIXdHKUNOjkA6yvboHRzkQMbaWFUvHpNQ14e5ijaJZjeEi5SnycUvypI6oT u4tei51UYo8iYJVCQpicZ0P5GEPq9rxnXgJ1fjzDAa1Bt3HCJZf8XBYhj1wfs/JL DUQCBdL7cNIN8goPYI/19RXRmxlJFNYpAzJkx1gbRWzWSTjGq4pQXLNXWMdnlfab K+449W2JN1FE3e2nANFD/jSvOmQMxsAlVFHVXtsqSee3cc/975EoXw== =pnTA -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Thu Feb 6 09:23:58 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 6 Feb 2014 08:23:58 +0100 (CET) Subject: [Dovecot] dovecot -n FATAL In-Reply-To: <52F32DB1.8050804@philfixit.info> References: <52F32DB1.8050804@philfixit.info> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 6 Feb 2014, Phil wrote: > Im new to postfix-dovecot and Unix/Linux, too? > and im mystified by the following results in ubuntu > 10.04lts > > :~$ dovecot -n > # 1.2.9: /etc/dovecot/dovecot.conf > Error: ssl_key_file: Can't use /etc/ssl/private/ssl-mail.key: Permission > denied > Fatal: Invalid configuration in /etc/dovecot/dovecot.conf > > ~$ sudo ls -dl /etc/ssl/private/ssl-mail.key > lrwxrwxrwx 1 root root 38 2013-11-27 08:35 /etc/ssl/private/ssl-mail.key -> > /etc/ssl/private/ssl-cert-snakeoil.key You show us the symbolic link, which has all Unix permissions usually. The interessting file is the final target, e.g. /etc/ssl/private/ssl-cert-snakeoil.key if that is no symlink as well, and the permissions of all directories to it. For instance, Debian uses the perms for the private dir: drwx--x--- 2 root ssl-cert 4096 Jul 4 2012 /etc/ssl/private/ I think it looks the same on your Ubuntu machine. So add the Dovecot user to group ssl-cert to let it enter the directory at all. The Snakeoil key is usually group-readable for ssl-cert, too. So no change of permissions necessary there as well. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvM4j3D1/YhP6VMHAQI+Lwf+Omv0MmhRC1Cu/bddxt1rbubrlWEV1s9u PjqHWj09scGsdZnPASq6ZpTr2LrQXOoGDFrZou3D8vQ1tz3urXBB+jcXJKCJVKQb Ig8bt/IXXDRhMj2PANGkRMGg/y2kD/xnokqUv49ixrLTwoTh4JtE9p4AQY+CDuYD bJJnyuMVHIsTPQ/VupTM7wneGlJ6HoDMF66JtyOeL1Y9X9YObhOvxSOPONfIhkKW bDtYsuFi7nFdNUNObnYUXgxgihwwtzFVP0B/wRfM7j8G6cPNVA3jJ231rh8YfI/v I1qIowj0/IeQPE7h+CuFB4a5+iqL8dT+vaoPxUbKROv44KFsrOlH5g== =jr4s -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Thu Feb 6 09:29:37 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 6 Feb 2014 08:29:37 +0100 (CET) Subject: [Dovecot] Mail location security In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 5 Feb 2014, Roman Gelfand wrote: > I am not sure I understood this issue correctly... When using maildir > with ie ldap. Suppose ldap attribute settings say gid 8 and uid 999, > Those are the permissions for every email address. If so, someone who > has access to one email user on the server, has access to all. If > this is so, is using mailbox instead of maildir resolve this problem? If all users have the same uid and gid, there is no difference which mail storage format you use, as long as the security is concerned. You need to make sure, that no user may accidently or purposefully gain access to another user? files. Actually, using the same ids will help you, if you want to _purposefully_ share files to another user ;-) So: Do not let your users telnet, ftp, ssh, or whatever to your host, but restrict any access to IMAP, POP3, ManageSieve and other protocols, where you control which files they have access to. Please understand: The uid/gid stuff applies to the plain Unix file permissions, no more no less. No IMAP ACLs, ... . - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvM54XD1/YhP6VMHAQI4FAf/etsweHGV7+km/ARF+LvZiYT4pIjFg7rF KuKfWLH5SMdm4k1MxA6sZ6Yl9QLX1FUl/np7VT1bFNxvDBQy1DJsT3+Sid5a69/i 3SVPAUbQnliMBlqOIltpV8qgDQJg9UGdSBbcVUj1yV2Y0muwo+jW357gspg+CFGA bT/wbYKT/hqzS05X43dT4tzr6EjS6/lsPOX/XBSL1raCc5pSI/1OT+aGobs0ybMg SmlSkUjF1IsbHQ5oKz48AV4sdA/gGsdLgZxlsQOMfEFkJWoqMFqw3mxCU+wxzdo3 BnQOACDpVwP+bciucxmbDdhqAkzVe6TDqt9RYJfxfbBSs4S+59DY8A== =Dgct -----END PGP SIGNATURE----- From phil at philfixit.info Thu Feb 6 10:29:55 2014 From: phil at philfixit.info (Phil) Date: Thu, 06 Feb 2014 19:29:55 +1100 Subject: [Dovecot] dovecot -n FATAL In-Reply-To: References: <52F32DB1.8050804@philfixit.info> Message-ID: <52F34803.8050003@philfixit.info> On 6/02/2014 6:23 PM, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thu, 6 Feb 2014, Phil wrote: > >> Im new to postfix-dovecot > > and Unix/Linux, too? > Technically yes! Less than 2 years experience running a live server . . . >> and im mystified by the following results >> in ubuntu 10.04lts >> >> :~$ dovecot -n >> # 1.2.9: /etc/dovecot/dovecot.conf >> Error: ssl_key_file: Can't use /etc/ssl/private/ssl-mail.key: >> Permission denied >> Fatal: Invalid configuration in /etc/dovecot/dovecot.conf >> >> ~$ sudo ls -dl /etc/ssl/private/ssl-mail.key >> lrwxrwxrwx 1 root root 38 2013-11-27 08:35 >> /etc/ssl/private/ssl-mail.key -> /etc/ssl/private/ssl-cert-snakeoil.key > > You show us the symbolic link, which has all Unix permissions usually. > The interessting file is the final target, e.g. > /etc/ssl/private/ssl-cert-snakeoil.key if that is no symlink as well, > and the permissions of all directories to it. > > For instance, Debian uses the perms for the private dir: > > drwx--x--- 2 root ssl-cert 4096 Jul 4 2012 /etc/ssl/private/ > > I think it looks the same on your Ubuntu machine. So add > the Dovecot user to group ssl-cert to let it enter the directory > at all. The Snakeoil key is usually group-readable for ssl-cert, too. > So no change of permissions necessary there as well. I did this and my perms look like thus now: total 8 -rw------- 1 root dovecot 887 2013-11-25 11:33 dovecot.pem -rw-r----- 1 dovecot ssl-cert 887 2013-11-17 12:27 ssl-cert-snakeoil.key lrwxrwxrwx 1 root root 38 2013-11-27 08:35 ssl-mail.key -> /etc/ssl/priv ate/ssl-cert-snakeoil.key and dovecot -n is the same, as i said before its delivering mail ok i would ike to fix this and hopefully understand it a bit better. Thanks. > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- From tom at whyscream.net Thu Feb 6 10:33:53 2014 From: tom at whyscream.net (Tom Hendrikx) Date: Thu, 06 Feb 2014 09:33:53 +0100 Subject: [Dovecot] dovecot -n FATAL In-Reply-To: <52F34803.8050003@philfixit.info> References: <52F32DB1.8050804@philfixit.info> <52F34803.8050003@philfixit.info> Message-ID: <52F348F1.9010406@whyscream.net> On 02/06/2014 09:29 AM, Phil wrote: > On 6/02/2014 6:23 PM, Steffen Kaiser wrote: >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> On Thu, 6 Feb 2014, Phil wrote: >> >>> Im new to postfix-dovecot >> >> and Unix/Linux, too? >> > Technically yes! Less than 2 years experience running a live server . . . > >>> and im mystified by the following results >>> in ubuntu 10.04lts >>> >>> :~$ dovecot -n >>> # 1.2.9: /etc/dovecot/dovecot.conf >>> Error: ssl_key_file: Can't use /etc/ssl/private/ssl-mail.key: >>> Permission denied >>> Fatal: Invalid configuration in /etc/dovecot/dovecot.conf looks like a non-root prompt ... >>> >>> ~$ sudo ls -dl /etc/ssl/private/ssl-mail.key >>> lrwxrwxrwx 1 root root 38 2013-11-27 08:35 >>> /etc/ssl/private/ssl-mail.key -> /etc/ssl/private/ssl-cert-snakeoil.key using sudo here, so yes... Since doveconf reads the ssl cert, the user that runs doveconf needs access to the file too. Try again as root (or using sudo)... Regards, Tom -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 901 bytes Desc: OpenPGP digital signature URL: From skdovecot at smail.inf.fh-brs.de Thu Feb 6 10:36:56 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 6 Feb 2014 09:36:56 +0100 (CET) Subject: [Dovecot] dovecot -n FATAL In-Reply-To: <52F34803.8050003@philfixit.info> References: <52F32DB1.8050804@philfixit.info> <52F34803.8050003@philfixit.info> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 6 Feb 2014, Phil wrote: >>> :~$ dovecot -n which user do you use to invoke doveconf? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvNJqHD1/YhP6VMHAQJ3Lgf+Ps600Auk/E1MTAoZGSVv/npV90Z66g4J 6tGlZ2Afa8KuxAANNrE/jqdKX+7y0iJnpzbhURnM28e6/aqeao5CA76EqBmvg+Mx fiMmYewA2l6lPqArRU4iFDs16H9wK4ZQNEuBgQUOentOS7O6FSlWfxrdpYGn0lQk 3nmBhjUOZobJhrs6NB8vxtBc1e+t2bxJdMlvzCQV39IUsplQ89EPf9j7VthLVsVy SXAIimJJ/AsaAG6m0Qvbm5FTnPrlAWlpwsy8AyyfAjmpZxOleprNdTV1iEjQsRL5 ismx4mEluOo4BuMSlHavoSMo1ngGlWRGMHqsjkR05JHDOAQACzWuvg== =I/Cq -----END PGP SIGNATURE----- From phil at philfixit.info Thu Feb 6 10:37:39 2014 From: phil at philfixit.info (Phil) Date: Thu, 06 Feb 2014 19:37:39 +1100 Subject: [Dovecot] dovecot -n FATAL In-Reply-To: <52F348F1.9010406@whyscream.net> References: <52F32DB1.8050804@philfixit.info> <52F34803.8050003@philfixit.info> <52F348F1.9010406@whyscream.net> Message-ID: <52F349D3.3050306@philfixit.info> On 6/02/2014 7:33 PM, Tom Hendrikx wrote: > On 02/06/2014 09:29 AM, Phil wrote: >> On 6/02/2014 6:23 PM, Steffen Kaiser wrote: >>> -----BEGIN PGP SIGNED MESSAGE----- >>> Hash: SHA1 >>> >>> On Thu, 6 Feb 2014, Phil wrote: >>> >>>> Im new to postfix-dovecot >>> and Unix/Linux, too? >>> >> Technically yes! Less than 2 years experience running a live server . . . >> >>>> and im mystified by the following results >>>> in ubuntu 10.04lts >>>> >>>> :~$ dovecot -n >>>> # 1.2.9: /etc/dovecot/dovecot.conf >>>> Error: ssl_key_file: Can't use /etc/ssl/private/ssl-mail.key: >>>> Permission denied >>>> Fatal: Invalid configuration in /etc/dovecot/dovecot.conf > looks like a non-root prompt ... Well spotted Tom and many thanks i can pass the command successfully. And apologies for the noob error . . . > >>>> ~$ sudo ls -dl /etc/ssl/private/ssl-mail.key >>>> lrwxrwxrwx 1 root root 38 2013-11-27 08:35 >>>> /etc/ssl/private/ssl-mail.key -> /etc/ssl/private/ssl-cert-snakeoil.key > using sudo here, so yes... > > Since doveconf reads the ssl cert, the user that runs doveconf needs > access to the file too. Try again as root (or using sudo)... > > Regards, > Tom > From phil at philfixit.info Thu Feb 6 10:40:44 2014 From: phil at philfixit.info (Phil) Date: Thu, 06 Feb 2014 19:40:44 +1100 Subject: [Dovecot] dovecot -n FATAL In-Reply-To: References: <52F32DB1.8050804@philfixit.info> <52F34803.8050003@philfixit.info> Message-ID: <52F34A8C.8060505@philfixit.info> On 6/02/2014 7:36 PM, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thu, 6 Feb 2014, Phil wrote: > >>>> :~$ dovecot -n > > which user do you use to invoke doveconf? From now on root :-) Thanks for your help Steffen. > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUvNJqHD1/YhP6VMHAQJ3Lgf+Ps600Auk/E1MTAoZGSVv/npV90Z66g4J > 6tGlZ2Afa8KuxAANNrE/jqdKX+7y0iJnpzbhURnM28e6/aqeao5CA76EqBmvg+Mx > fiMmYewA2l6lPqArRU4iFDs16H9wK4ZQNEuBgQUOentOS7O6FSlWfxrdpYGn0lQk > 3nmBhjUOZobJhrs6NB8vxtBc1e+t2bxJdMlvzCQV39IUsplQ89EPf9j7VthLVsVy > SXAIimJJ/AsaAG6m0Qvbm5FTnPrlAWlpwsy8AyyfAjmpZxOleprNdTV1iEjQsRL5 > ismx4mEluOo4BuMSlHavoSMo1ngGlWRGMHqsjkR05JHDOAQACzWuvg== > =I/Cq > -----END PGP SIGNATURE----- From alessio at skye.it Thu Feb 6 10:42:04 2014 From: alessio at skye.it (Alessio Cecchi) Date: Thu, 06 Feb 2014 09:42:04 +0100 Subject: [Dovecot] Status In-Reply-To: References: Message-ID: <52F34ADC.4060202@skye.it> Il 04/02/2014 23:13, Timo Sirainen ha scritto: > So, just some quick notes: > > - dovecot.org server was down a couple of days again, need to find time to move it to a VM.. > - my tss at iki.fi emails were also broken for some hours at least and it was bouncing back all mails to it during the time > - I fixed some bugs reported by people, but I did it in airplane so couldn't reply back with links to the fixes in hg repo. I'll probably do that tomorrow. But you can already check if your reported bug has been fixed in http://hg.dovecot.org/dovecot-2.2 > - I'm planning on going through Dovecot list's mails this week and make v2.2.11 release > - although it looks like I've a flu, so lets see how far I can get.. > - hopefully by the beginning of March I'll have more time again > Hello Timo, everyone here we hope you'll get better soon, perhaps at FOSDEM you had to put a wool sweater :-) I have a suggestion/feature request for Dovecot. Several administrator find useful to have the last login date/IP/protocol for their users, this is useful for help desk. In Dovecot we can have this features via "Post-login scripting" but it would be nice to have her as a native option. An idea would be to implement it via dict with Redis or SQL backend (like quota). Do you think it would be possible? Thanks -- Alessio Cecchi is: @ ILS -> http://www.linux.it/~alessice/ on LinkedIn -> http://www.linkedin.com/in/alessice Assistenza Sistemi GNU/Linux -> http://www.cecchi.biz Cloud Email Hosting -> http://www.qboxmail.com @ PLUG -> ex-Presidente, adesso senatore a vita, http://www.prato.linux.it From dickson.tim at googlemail.com Thu Feb 6 11:41:33 2014 From: dickson.tim at googlemail.com (Tim Dickson) Date: Thu, 06 Feb 2014 09:41:33 +0000 Subject: [Dovecot] mime support for pigeonhole In-Reply-To: References: <52EA9EE6.40905@googlemail.com> Message-ID: <52F358CD.4040507@googlemail.com> On 05/02/2014 03:50, LuKreme wrote: > On 30 Jan 2014, at 11:50 , Tim Dickson wrote: > >> I am trying to filter mail with .exe and .zip attachments, to no success. > Are you using postfix with dovecot? I am, (standard slackware) but I will be moving to dovecot-lda so that I can use sieve and imap with maildirs instead of mbox. > $ cat mime_headers.pcre > /^\s*Content-(Disposition|Type).*name\s*=\s*"?(.*\.(ade|adp|bas|bat|chm|cmd|com|cpl|crt|dll|exe|hlp|hta|inf|ins|isp|js|jse|lnk|mdb|mde|mdt|mdw|msc|msi|msp|mst|nws|ops|pcd|pif|prf|reg|scf|scr\??|sct|shb|shs|shm|swf|vb[esx]?|vxd|wsc|wsf|wsh))(\?=)?"?\s*(;|$)/x REJECT Attachment name "$2" may not end with ".$3? > $ grep mime main.cf > mime_header_checks = pcre:$config_directory/mime_headers.pcre > > > Very useful blocking filter, many thanks. Does it generate backscatter.? I have come across a number of spam emails which have more than one address in the from field. Would this filter send the spam to those addresses by way of a mail bounce.? The main reason for the filtering is because our broadband data allowance was maxed out due to spam, malware spam and backscatter. I am having to move my mail server functionality off-site and filter it on a vps running slackware, dovecot and pigeonhole, before collecting it per mailbox via my internal server. From rs at sys4.de Thu Feb 6 12:06:51 2014 From: rs at sys4.de (Robert Schetterer) Date: Thu, 06 Feb 2014 11:06:51 +0100 Subject: [Dovecot] mime support for pigeonhole In-Reply-To: <52F358CD.4040507@googlemail.com> References: <52EA9EE6.40905@googlemail.com> <52F358CD.4040507@googlemail.com> Message-ID: <52F35EBB.4030105@sys4.de> Am 06.02.2014 10:41, schrieb Tim Dickson: > On 05/02/2014 03:50, LuKreme wrote: >> On 30 Jan 2014, at 11:50 , Tim Dickson >> wrote: >> >>> I am trying to filter mail with .exe and .zip attachments, to no >>> success. >> Are you using postfix with dovecot? > I am, (standard slackware) but I will be moving to dovecot-lda so that I > can use sieve and imap with maildirs instead of mbox. >> $ cat mime_headers.pcre >> /^\s*Content-(Disposition|Type).*name\s*=\s*"?(.*\.(ade|adp|bas|bat|chm|cmd|com|cpl|crt|dll|exe|hlp|hta|inf|ins|isp|js|jse|lnk|mdb|mde|mdt|mdw|msc|msi|msp|mst|nws|ops|pcd|pif|prf|reg|scf|scr\??|sct|shb|shs|shm|swf|vb[esx]?|vxd|wsc|wsf|wsh))(\?=)?"?\s*(;|$)/x >> REJECT Attachment name "$2" may not end with ".$3? >> $ grep mime main.cf >> mime_header_checks = pcre:$config_directory/mime_headers.pcre >> >> >> > Very useful blocking filter, many thanks. > Does it generate backscatter.? No , should reject at smtp income data stage, but look http://www.postfix.org/header_checks.5.html for more info > I have come across a number of spam emails which have more than one > address in the from field. Would this filter send the spam to those > addresses by way of a mail bounce.? not sure if i understand... if it rejects at income smtp data stage, recipients are not a matter of interest > > The main reason for the filtering is because our broadband data > allowance was maxed out due to spam, malware spam and backscatter. I am > having to move my mail server functionality off-site and filter it on a > vps running slackware, dovecot and pigeonhole, before collecting it per > mailbox via my internal server. you should integrate clamav with sanesecurity antispam, and spamassassin and/or amavis, take the questions to the amamvis postfix list, questions fot filter sieve tagged mails go to dovecot list or have a look at http://wiki2.dovecot.org/Pigeonhole/Sieve/Examples Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From skdovecot at smail.inf.fh-brs.de Thu Feb 6 12:20:12 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 6 Feb 2014 11:20:12 +0100 (CET) Subject: [Dovecot] mime support for pigeonhole In-Reply-To: <52F35EBB.4030105@sys4.de> References: <52EA9EE6.40905@googlemail.com> <52F358CD.4040507@googlemail.com> <52F35EBB.4030105@sys4.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 6 Feb 2014, Robert Schetterer wrote: > Am 06.02.2014 10:41, schrieb Tim Dickson: >> Very useful blocking filter, many thanks. >> Does it generate backscatter.? > > No , should reject at smtp income data stage, but look ^^ I would say "must" in order to avoid backscatter. As soon as you've accepted the message, you must generate a bounce. > http://www.postfix.org/header_checks.5.html > for more info > >> I have come across a number of spam emails which have more than one >> address in the from field. Would this filter send the spam to those If you reject at SMTP transmission time, no bounce is generated at all, but a negative SMTP reply code. >> addresses by way of a mail bounce.? The "From" header of a message is not consulted, when the bounce message is generated. Bounces are sent to the envelope sender, either passed by the MTA or taken from the Return-Path header. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvNh3XD1/YhP6VMHAQKBwwf/YJZJJcn16InR5jjeAcSI6yEedQM2Ko41 Fqud6W0IjZEiVNeQ3wjs6UdZMbLzXmLRjKeyfAuXqlXVIHeT+6YkEhQEJECYB4kk RqAIG4jfyqSKfT8mKvQGntDSOEzTv/U4EvZTUGkNZTciLdHsl9NMDlCAih1GTCZw ZXbm5EFuo8+nGgoyMkUPtetKVFsECQEQIfJUkpF/pH+btX86O6sy2FikA7otLNDz OL8nYWQwhK2dynb08ygzEdTsLarvSSH3OU/l0wOb55gY7nHtXQ69G1BO7JVrtrjx 7jqz8ZhzFkdyPsqis/rAbVEPfVp0RsZYsFmY10xnx+8VEU7s3Ngdvw== =Eiql -----END PGP SIGNATURE----- From portase.florin at medianetork.ro Thu Feb 6 14:25:41 2014 From: portase.florin at medianetork.ro (Florin Portase) Date: Thu, 06 Feb 2014 13:25:41 +0100 Subject: [Dovecot] qmail dovecot lda Message-ID: <52F37F45.5020207@medianetork.ro> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SETUP: qmail + dovecot 2.2.10 + pigeonhole 0.4.2 I have a user who's quota is at 98% so theoretically when this user is receiving any mails qmail shout send a rejection message like user is overquota /vpopmail/domains/medianetork.ro/.qmail-default #| /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox | DTLINE=${DTLINE/$USER-} /var/qmail/bin/preline -f /usr/libexec/dovecot/dovecot-lda -d $EXT@$USER -a $EXT@$USER If I let enabled only this line | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox everything is working OK 1st test: from yahoo mail - - send an _attachment of 2mb ( way over quota ) and the response: @4000000052f370fd3381b504 info msg 3793: bytes 4268 from <<>@medianetork.ro> qp 19703 uid 420 @4000000052f370fd3381b8ec starting delivery 6: msg 3793 to remote pflorin1 at yahoo.com @4000000052f370fd3381b8ec status: local 0/10 remote 1/120 @4000000052f371011135ec04 delivery 6: success: 66.196.118.33_accepted_message./Remote_host_said:_250_ok_dirdel/ @4000000052f371011135f3d4 status: local 0/10 remote 0/120 2nd test: from lotus domino - - send an _attachment of 2mb ( way over quota ) @4000000052f34f832bc8fa0c info msg 3774: bytes 3444 from <<>@medianetork.ro> qp 13708 uid 420 @4000000052f34f832bc8fa0c starting delivery 2: msg 3774 to remote pflorin1 at fr.ibm.com @4000000052f34f832bc8fdf4 status: local 0/10 remote 1/120 @4000000052f34f84346185e4 delivery 2: failure: Connected_to_195.75.94.105_but_sender_was_rejected./Remote_host_said:_501_Syntax_error_in_parameters_or_arguments:_(-132)/ Also gmail complains about Syntax error -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJS839EAAoJECEzxtLP+204PG8H/3+melSRQ9zWlqaY77rnxIIV 7fV3c6DFvwWeBr7MJx7MAtWRljzyS8dMLkNrfqvZlhWBRljinV3P8iX8m+ZT6wKG 42H5BLCRPhXccppFvYwTL22CNFO0+ZKdhogFFrr3bBxdoir3xW+rG9dUDw+uvQZw y2R6zUp4o33nBKq44mfvIOV8/kwDiVdxN+p/pbs/QFsvtFJh+NI39F9mxWFMkTAk leQjjSrKSw/yKBXjWRT4Gu35XrqylbUHo8n9EzS6jP47OE2DAHMhfKI8/0qCHcNK R3NiWu7xvW8GX66zhF3LUZN5ojAxniZ+AvJ+q016BQi7EWMeNcR7a/o8bavSaMg= =kcDs -----END PGP SIGNATURE----- From h.reindl at thelounge.net Thu Feb 6 14:43:46 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 06 Feb 2014 13:43:46 +0100 Subject: [Dovecot] dovecot -n FATAL In-Reply-To: <52F34803.8050003@philfixit.info> References: <52F32DB1.8050804@philfixit.info> <52F34803.8050003@philfixit.info> Message-ID: <52F38382.3070502@thelounge.net> Am 06.02.2014 09:29, schrieb Phil: > On 6/02/2014 6:23 PM, Steffen Kaiser wrote: >> You show us the symbolic link, which has all Unix permissions usually. The interessting file is the final target, >> e.g. /etc/ssl/private/ssl-cert-snakeoil.key if that is no symlink as well, and the permissions of all directories >> to it. >> >> For instance, Debian uses the perms for the private dir: >> >> drwx--x--- 2 root ssl-cert 4096 Jul 4 2012 /etc/ssl/private/ >> >> I think it looks the same on your Ubuntu machine. So add >> the Dovecot user to group ssl-cert to let it enter the directory >> at all. The Snakeoil key is usually group-readable for ssl-cert, too. >> So no change of permissions necessary there as well. > > I did this and my perms look like thus now: > > total 8 > -rw------- 1 root dovecot 887 2013-11-25 11:33 dovecot.pem > -rw-r----- 1 dovecot ssl-cert 887 2013-11-17 12:27 ssl-cert-snakeoil.key > lrwxrwxrwx 1 root root 38 2013-11-27 08:35 ssl-mail.key -> /etc/ssl/priv ate/ssl-cert-snakeoil.key for the sake of correctness: * the server process owning config files is generally bad * ssl-certs are opened with root permissions at startup * that is why chmod 0400 and owner/group root are the recommended perms for certificates * the same for Apache httpd and Postfix * only Apache Trafficserver opens certs as ats-user (fow now) the only thing where permissions could be relevant at all in context of ssl-certificates is if someone removes the execture permissions from one of the parents folders -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From alessio at skye.it Thu Feb 6 15:04:12 2014 From: alessio at skye.it (Alessio Cecchi) Date: Thu, 06 Feb 2014 14:04:12 +0100 Subject: [Dovecot] qmail dovecot lda In-Reply-To: <52F37F45.5020207@medianetork.ro> References: <52F37F45.5020207@medianetork.ro> Message-ID: <52F3884C.7020702@skye.it> Il 06/02/2014 13:25, Florin Portase ha scritto: > SETUP: > > qmail + dovecot 2.2.10 + pigeonhole 0.4.2 > > I have a user who's quota is at 98% so theoretically when this user is > receiving any mails qmail shout send a rejection message like user is > overquota > > /vpopmail/domains/medianetork.ro/.qmail-default > > #| /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox > | DTLINE=${DTLINE/$USER-} /var/qmail/bin/preline -f > /usr/libexec/dovecot/dovecot-lda -d $EXT@$USER -a $EXT@$USER > > If I let enabled only this line > | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox > everything is working OK > > 1st test: from yahoo mail > - - send an _attachment of 2mb ( way over quota ) > > and the response: > @4000000052f370fd3381b504 info msg 3793: bytes 4268 from > <<>@medianetork.ro> qp 19703 uid 420 > @4000000052f370fd3381b8ec starting delivery 6: msg 3793 to remote > pflorin1 at yahoo.com > @4000000052f370fd3381b8ec status: local 0/10 remote 1/120 > @4000000052f371011135ec04 delivery 6: success: > 66.196.118.33_accepted_message./Remote_host_said:_250_ok_dirdel/ > @4000000052f371011135f3d4 status: local 0/10 remote 0/120 > > 2nd test: from lotus domino > - - send an _attachment of 2mb ( way over quota ) > > @4000000052f34f832bc8fa0c info msg 3774: bytes 3444 from > <<>@medianetork.ro> qp 13708 uid 420 > @4000000052f34f832bc8fa0c starting delivery 2: msg 3774 to remote > pflorin1 at fr.ibm.com > @4000000052f34f832bc8fdf4 status: local 0/10 remote 1/120 > @4000000052f34f84346185e4 delivery 2: failure: > Connected_to_195.75.94.105_but_sender_was_rejected./Remote_host_said:_501_Syntax_error_in_parameters_or_arguments:_(-132)/ > > > Also gmail complains about Syntax error Qmail send the over quota messagge only if is vdelivermail to finaly delivery the email in the user's mailbox. If the finally delivery is made by dovecot LDA should be it to sent a bounce with over quota messagge. In 15-lda.conf try to add submission_host = localhost Let me know if works. -- Alessio Cecchi is: @ ILS -> http://www.linux.it/~alessice/ on LinkedIn -> http://www.linkedin.com/in/alessice Assistenza Sistemi GNU/Linux -> http://www.cecchi.biz Cloud Email Hosting -> http://www.qboxmail.com @ PLUG -> ex-Presidente, adesso senatore a vita, http://www.prato.linux.it From phillip.odam at nitorgroup.com Thu Feb 6 15:44:51 2014 From: phillip.odam at nitorgroup.com (Phillip Odam) Date: Thu, 06 Feb 2014 08:44:51 -0500 Subject: [Dovecot] LMTP troubles Message-ID: <52F391D3.5030404@nitorgroup.com> Background: Dovecot: v 2.0.9 OS: AWS Linux (derived from CentOS) At this stage I've avoided upgrading to a newer version of Dovecot as version 2.0.9 is what AWS Linux provides and I'd like to be able to run a regular AWS Linux installation if I can. As opposed to pulling newer versions of dovecot from other repositories or building from source, since the odds are this issue is not a bug in dovecot. I've just tried setting up the LMTP service and eventually uncovered that that the greeting the server responds with straight after connecting isn't being returned. This must be a configuration mistake on my behalf but I just haven't been able to figure it out yet. I haven't had LMTP configured for awhile but I'm sure I've had it all in place and don't recall any issue like this. I've followed the detail here http://wiki2.dovecot.org/LMTP, in particular # add lmtp to protocols, otherwise its listeners are ignored protocols = imap pop3 lmtp service lmtp { inet_listener lmtp { address = 192.168.0.24 127.0.0.1 ::1 port = 24 } unix_listener lmtp { #mode = 0666 } } What's also interesting, using telnet my first attempt to connect results in the server closing the connection immediately and then a second attempt to connect results in an established connection but no response from the server so that then the LMTP client knows it's all good to begin issuing commands. I have no idea about the architecture of dovecot and the LMTP service but it's as if dovecot has successfully bound to the port allocated for LMTP* but the the LMTP service has either not started or dovecot doesn't know which service to pass the connection on to. * - dovecot has definitely bound to the port (localhost:24) as netstat clearly shows this. I've tried enabling debug logging per the details here http://wiki2.dovecot.org/Logging and checked that I'm looking at all the logs I need to be using doveadm log find but not seeing any information that helps. At the moment I know I'm light on necessary detail for anyone to help but I thought I'd try in case anyone has seen this before and is able to tell me I've missed X and Y. I'm planning on setting up a clean environment to sort this issue out and if needed will follow up here with more detail and the final solution/s. Thanks Phillip From mtrainer at westnet.com.au Thu Feb 6 16:01:21 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Thu, 06 Feb 2014 22:01:21 +0800 Subject: [Dovecot] Trying to get Dovecot Director Proxying working Message-ID: <52F395B1.5000307@westnet.com.au> Hi All, Firstly, thanks for all the really helpful responses to my previous questions "Architecture for large Dovecot cluster" and "Sizing MTA servers". I am now trying to get a Dovecot director proxy working with a single backend mail server. When I try to connect to the dovecot proxy on the pop3 and imap ports I get connection refused. I want the authentication to be on the backend mail server initially. I am not sure if I am missing something? More info below... Thanks Murray # doveadm director status mail server ip vhosts users 27.54.95.41 100 0 # doveadm director map doveadm(root): Error: userdb list: Disconnected unexpectedly doveadm(root): Error: user listing failed user mail server ip expire time # doveadm fetch -A user ALL doveadm(root): Error: userdb list: Disconnected unexpectedly doveadm: Error: Failed to iterate through some users # doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.1 auth_cache_size = 32 M auth_cache_ttl = 2 hours auth_debug = yes auth_verbose = yes base_dir = /var/run/dovecot/ director_mail_servers = 27.54.95.41 director_servers = 27.54.95.37 disable_plaintext_auth = no mail_debug = yes passdb { args = nopassword=y proxy=y driver = static } service auth { unix_listener auth-userdb { mode = 0666 user = dovecot } } service director { fifo_listener login/proxy-notify { mode = 0666 } inet_listener { port = 9090 } unix_listener director-userdb { mode = 0600 } unix_listener login/director { mode = 0666 } } service imap-login { executable = imap-login director } service ipc { unix_listener ipc { user = dovecot } } service pop3-login { executable = pop3-login director } ssl_cert = Hi, I'm currently developing a scrambler plugin which should be used to store the mails encrypted on the disk. It uses a special ostream for encryption and an istream for decryption. The idea is, that if a mail arrives via LMTP it goes through the ostream and is written encrypted to disk. If an mail is accessed via IMAP, the istream is used to decrypt the data from disk. That all works fine, but if I add the zlib plugin it all gets mixed up. For some reason, the lmtp process tries to read something from disk using the chain of istreams. That behaviour is a little bit bizzare to me, because my understanding is, that the zlib plugin at this point should only write (compressed) data to disk. Why is the istream used here? And what is read? If I remove zlib from the configuration again, it all works as expected. The dovecot version is 2.1.17. Best regards, Philipp From tss at iki.fi Fri Feb 7 15:04:00 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 10:04:00 -0500 Subject: [Dovecot] dovecot.org moved In-Reply-To: References: <306540DD-01C7-45B2-BDAD-24C3CD56D54B@iki.fi> Message-ID: <955000E7-96E9-4C72-AD8C-FFB0F3F30BE1@iki.fi> On 7.2.2014, at 10.02, Timo Sirainen wrote: > On 7.2.2014, at 9.58, Timo Sirainen wrote: > >> Looks like the old server doesn't stay up much at all anymore. And since it's kind of difficult currently to get access to the server I just restored everything from the previous night's backups. Latest mailing list subscribes/unsubscribes may need to be done again. Also I think there are some old configurations (and other things) still somewhere.. I'll change these as found and maybe I'll get access to the old server some day soon and can check again what differences there are. > > Archives weren't updating due to permission error .. Lets try again.. nope. From phil at philfixit.info Thu Feb 6 21:05:17 2014 From: phil at philfixit.info (Phil) Date: Fri, 07 Feb 2014 08:05:17 +1100 Subject: [Dovecot] dovecot -n FATAL In-Reply-To: <52F38382.3070502@thelounge.net> References: <52F32DB1.8050804@philfixit.info> <52F34803.8050003@philfixit.info> <52F38382.3070502@thelounge.net> Message-ID: <52F3F90D.7070003@philfixit.info> on 6/02/2014 11:43 PM, Reindl Harald wrote: > Am 06.02.2014 09:29, schrieb Phil: >> On 6/02/2014 6:23 PM, Steffen Kaiser wrote: >>> You show us the symbolic link, which has all Unix permissions usually. The interessting file is the final target, >>> e.g. /etc/ssl/private/ssl-cert-snakeoil.key if that is no symlink as well, and the permissions of all directories >>> to it. >>> >>> For instance, Debian uses the perms for the private dir: >>> >>> drwx--x--- 2 root ssl-cert 4096 Jul 4 2012 /etc/ssl/private/ >>> >>> I think it looks the same on your Ubuntu machine. So add >>> the Dovecot user to group ssl-cert to let it enter the directory >>> at all. The Snakeoil key is usually group-readable for ssl-cert, too. >>> So no change of permissions necessary there as well. >> I did this and my perms look like thus now: >> >> total 8 >> -rw------- 1 root dovecot 887 2013-11-25 11:33 dovecot.pem >> -rw-r----- 1 dovecot ssl-cert 887 2013-11-17 12:27 ssl-cert-snakeoil.key >> lrwxrwxrwx 1 root root 38 2013-11-27 08:35 ssl-mail.key -> /etc/ssl/priv ate/ssl-cert-snakeoil.key > for the sake of correctness: > > * the server process owning config files is generally bad > * ssl-certs are opened with root permissions at startup > * that is why chmod 0400 and owner/group root are the recommended perms for certificates > * the same for Apache httpd and Postfix > * only Apache Trafficserver opens certs as ats-user (fow now) > > the only thing where permissions could be relevant at all in context of > ssl-certificates is if someone removes the execture permissions from one > of the parents folders > Thanks Reindl, My setup is very default according to the documantation available online. I am self taught off the net and sometimes struggle with issues as there is nobody around to ask, after reading your reply i removed dovecot from the group ssl-cert, and everything is fine, my mistake was not passing the dovecot -n command with root priveleges, again i sincerely apologise for my noobish mistake. Phil From jcblanco at fi.upm.es Fri Feb 7 17:13:18 2014 From: jcblanco at fi.upm.es (Juan C. Blanco) Date: Fri, 07 Feb 2014 18:13:18 +0100 Subject: [Dovecot] Problem rebuilding Centos 5/6 pigeonhole RPM from mercurial version Message-ID: <52F5142E.7@fi.upm.es> Hi Stephan, I'm traying to rebuild the RH (Centos) EL5 and EL6 RPM with the last mercurial pigeonhole 0.4.2 version, but I'm having problems with the build. I think that I've isolated the problem outside rpmbuild context. I've downloaded dovecot and pigeonhole mercurial versions and built dovecot with the commands: dovecot-2.2.10$ ./autogen.sh dovecot-2.2.10$ ./configure INSTALL_DATA="install -c -p -m644" --enable-header-install --disable-static --with-nss --with-shadow --with-pam --with-gssapi=plugin --with-ldap=plugin --with-sql=plugin --with-mysql --with-zlib --with-sql-drivers --with-libcap --with-db --with-ssl=openssl --with-ssldir=/etc/pki/dovecot --with-notify=inotify --with-solr --with-docs dovecot-2.2.10$ make dovecot-2.2.10$ make install DESTDIR=/var/tmp/dovecot after that, building pigeonhole with the commands pigeonhole-0.4.2$ ./autogen.sh pigeonhole-0.4.2$ ./configure INSTALL_DATA="install -c -p -m644" --build=x86_64-redhat-linux-gnu --host=x86_64-redhat-linux-gnu --target=x86_64-redhat-linux-gnu --program-prefix= --prefix=/usr --exec-prefix=/usr --bindir=/usr/bin --sbindir=/usr/sbin --sysconfdir=/etc --datadir=/usr/share --includedir=/usr/include --libdir=/usr/lib64 --libexecdir=/usr/libexec --localstatedir=/var --sharedstatedir=/usr/com --mandir=/usr/share/man --infodir=/usr/share/info --with-dovecot=/var/tmp/dovecot --with-managesieve=yes pigeonhole-0.4.2$ make pigeonhole-0.4.2$ make install DESTDIR=/var/tmp/dovecot works fine, but if I install pigeonhole in a different path, i.e. pigeonhole-0.4.2$ make install DESTDIR=/var/tmp/pigeonhole I get the following error make[4]: Entering directory `/home/jc/pigeonhole-0.4.2/src/lib-sieve' make[4]: Nothing to be done for `install-exec-am'. test -z "/usr/lib64/dovecot" || mkdir -p -- "/var/tmp/pigeonhole/usr/lib64/dovecot" /bin/sh ../../libtool --mode=install /usr/bin/install -c 'libdovecot-sieve.la' '/var/tmp/pigeonhole/usr/lib64/dovecot/libdovecot-sieve.la' libtool: install: warning: relinking `libdovecot-sieve.la' (cd /home/jc/pigeonhole-0.4.2/src/lib-sieve; /bin/sh ../../libtool --tag=CC --mode=relink gcc -std=gnu99 -g -O2 -Wall -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -fno-builtin-strftime -Wstrict-aliasing=2 -I/usr/kerberos/include -o libdovecot-sieve.la -rpath /usr/lib64/dovecot sieve-settings.lo sieve-message.lo sieve-smtp.lo sieve-lexer.lo sieve-script.lo sieve-script-file.lo sieve-script-dict.lo sieve-ast.lo sieve-binary.lo sieve-binary-file.lo sieve-binary-code.lo sieve-binary-debug.lo sieve-parser.lo sieve-address.lo sieve-validator.lo sieve-generator.lo sieve-interpreter.lo sieve-runtime-trace.lo sieve-code-dumper.lo sieve-binary-dumper.lo sieve-result.lo sieve-error.lo sieve-objects.lo sieve-stringlist.lo sieve-comparators.lo sieve-match-types.lo sieve-address-parts.lo sieve-match.lo sieve-commands.lo sieve-code.lo sieve-actions.lo sieve-extensions.lo sieve-plugins.lo cmp-i-octet.lo cmp-i-ascii-casemap.lo mcht-is.lo mcht-contains.lo mcht-matches.lo tst-truefalse.lo tst-not.lo tst-anyof.lo tst-allof.lo tst-address.lo tst-header.lo tst-exists.lo tst-size.lo cmd-require.lo cmd-stop.lo cmd-if.lo cmd-keep.lo cmd-redirect.lo cmd-discard.lo ext-fileinto.lo ext-reject.lo ext-envelope.lo ext-encoded-character.lo sieve.lo ../../src/lib-sieve/plugins/vacation/libsieve_ext_vacation.la ../../src/lib-sieve/plugins/subaddress/libsieve_ext_subaddress.la ../../src/lib-sieve/plugins/comparator-i-ascii-numeric/libsieve_ext_comparator-i-ascii-numeric.la ../../src/lib-sieve/plugins/relational/libsieve_ext_relational.la ../../src/lib-sieve/plugins/regex/libsieve_ext_regex.la ../../src/lib-sieve/plugins/copy/libsieve_ext_copy.la ../../src/lib-sieve/plugins/imap4flags/libsieve_ext_imap4flags.la ../../src/lib-sieve/plugins/include/libsieve_ext_include.la ../../src/lib-sieve/plugins/body/libsieve_ext_body.la ../../src/lib-sieve/plugins/variables/libsieve_ext_variables.la ../../src/lib-sieve/plugins/enotify/libsieve_ext_enotify.la ../../src/lib-sieve/plugins/notify/libsieve_ext_notify.la ../../src/lib-sieve/plugins/environment/libsieve_ext_environment.la ../../src/lib-sieve/plugins/mailbox/libsieve_ext_mailbox.la ../../src/lib-sieve/plugins/date/libsieve_ext_date.la ../../src/lib-sieve/plugins/spamvirustest/libsieve_ext_spamvirustest.la ../../src/lib-sieve/plugins/ihave/libsieve_ext_ihave.la ../../src/lib-sieve/plugins/editheader/libsieve_ext_editheader.la ../../src/lib-sieve/plugins/vnd.dovecot/debug/libsieve_ext_debug.la ../../src/lib-sieve/plugins/vnd.dovecot/duplicate/libsieve_ext_duplicate.la ../../src/lib-sieve/util/libsieve_util.la /home/jc/dovecot-2.2.10/src/lib-lda/libdovecot-lda.la /home/jc/dovecot-2.2.10/src/lib-storage/libdovecot-storage.la /home/jc/dovecot-2.2.10/src/lib-imap-storage/libimap-storage.la /home/jc/dovecot-2.2.10/src/lib-dovecot/libdovecot.la -export-dynamic -ldl -lrt -inst-prefix-dir /var/tmp/pigeonhole) gcc -shared .libs/sieve-settings.o .libs/sieve-message.o .libs/sieve-smtp.o .libs/sieve-lexer.o .libs/sieve-script.o .libs/sieve-script-file.o .libs/sieve-script-dict.o .libs/sieve-ast.o .libs/sieve-binary.o .libs/sieve-binary-file.o .libs/sieve-binary-code.o .libs/sieve-binary-debug.o .libs/sieve-parser.o .libs/sieve-address.o .libs/sieve-validator.o .libs/sieve-generator.o .libs/sieve-interpreter.o .libs/sieve-runtime-trace.o .libs/sieve-code-dumper.o .libs/sieve-binary-dumper.o .libs/sieve-result.o .libs/sieve-error.o .libs/sieve-objects.o .libs/sieve-stringlist.o .libs/sieve-comparators.o .libs/sieve-match-types.o .libs/sieve-address-parts.o .libs/sieve-match.o .libs/sieve-commands.o .libs/sieve-code.o .libs/sieve-actions.o .libs/sieve-extensions.o .libs/sieve-plugins.o .libs/cmp-i-octet.o .libs/cmp-i-ascii-casemap.o .libs/mcht-is.o .libs/mcht-contains.o .libs/mcht-matches.o .libs/tst-truefalse.o .libs/tst-not.o .libs/tst-anyof.o .libs/tst-allof.o .libs/tst-address.o .libs/tst-header.o .libs/tst-exists.o .libs/tst-size.o .libs/cmd-require.o .libs/cmd-stop.o .libs/cmd-if.o .libs/cmd-keep.o .libs/cmd-redirect.o .libs/cmd-discard.o .libs/ext-fileinto.o .libs/ext-reject.o .libs/ext-envelope.o .libs/ext-encoded-character.o .libs/sieve.o -Wl,--whole-archive ../../src/lib-sieve/plugins/vacation/.libs/libsieve_ext_vacation.a ../../src/lib-sieve/plugins/subaddress/.libs/libsieve_ext_subaddress.a ../../src/lib-sieve/plugins/comparator-i-ascii-numeric/.libs/libsieve_ext_comparator-i-ascii-numeric.a ../../src/lib-sieve/plugins/relational/.libs/libsieve_ext_relational.a ../../src/lib-sieve/plugins/regex/.libs/libsieve_ext_regex.a ../../src/lib-sieve/plugins/copy/.libs/libsieve_ext_copy.a ../../src/lib-sieve/plugins/imap4flags/.libs/libsieve_ext_imap4flags.a ../../src/lib-sieve/plugins/include/.libs/libsieve_ext_include.a ../../src/lib-sieve/plugins/body/.libs/libsieve_ext_body.a ../../src/lib-sieve/plugins/variables/.libs/libsieve_ext_variables.a ../../src/lib-sieve/plugins/enotify/.libs/libsieve_ext_enotify.a ../../src/lib-sieve/plugins/notify/.libs/libsieve_ext_notify.a ../../src/lib-sieve/plugins/environment/.libs/libsieve_ext_environment.a ../../src/lib-sieve/plugins/mailbox/.libs/libsieve_ext_mailbox.a ../../src/lib-sieve/plugins/date/.libs/libsieve_ext_date.a ../../src/lib-sieve/plugins/spamvirustest/.libs/libsieve_ext_spamvirustest.a ../../src/lib-sieve/plugins/ihave/.libs/libsieve_ext_ihave.a ../../src/lib-sieve/plugins/editheader/.libs/libsieve_ext_editheader.a ../../src/lib-sieve/plugins/vnd.dovecot/debug/.libs/libsieve_ext_debug.a ../../src/lib-sieve/plugins/vnd.dovecot/duplicate/.libs/libsieve_ext_duplicate.a ../../src/lib-sieve/util/.libs/libsieve_util.a /home/jc/dovecot-2.2.10/src/lib-imap-storage/.libs/libimap-storage.a -Wl,--no-whole-archive -Wl,--rpath -Wl,/usr/lib64/dovecot -L/home/jc/dovecot-2.2.10/src/lib-storage/.libs -L/home/jc/dovecot-2.2.10/src/lib-dovecot/.libs -L/var/tmp/pigeonhole/usr/lib64/dovecot -L/usr/lib64/dovecot -ldovecot-lda -ldovecot-storage -ldovecot -ldl -lrt -Wl,-soname -Wl,libdovecot-sieve.so.0 -o .libs/libdovecot-sieve.so.0.0.0 /usr/bin/ld: cannot find -ldovecot-lda collect2: ld returned 1 exit status libtool: install: error: relink `libdovecot-sieve.la' with the above command before installing it make[4]: *** [install-dovecot_pkglibLTLIBRARIES] Error 1 make[4]: Leaving directory `/home/jc/pigeonhole-0.4.2/src/lib-sieve' make[3]: *** [install-am] Error 2 make[3]: Leaving directory `/home/jc/pigeonhole-0.4.2/src/lib-sieve' make[2]: *** [install-recursive] Error 1 make[2]: Leaving directory `/home/jc/pigeonhole-0.4.2/src/lib-sieve' make[1]: *** [install-recursive] Error 1 make[1]: Leaving directory `/home/jc/pigeonhole-0.4.2/src' Note that in the link command there are library paths for -L/home/jc/dovecot-2.2.10/src/lib-storage/.libs -L/home/jc/dovecot-2.2.10/src/lib-dovecot/.libs while there is not an equivalent one for the libdovecot-lda -Lhome/jc/dovecot-2.2.10/src/lib-lda/.libs Perhaps some problem with libtool is not generating the right library paths? In the first case, since dovecot and pigeonhole where installed in the same path, the library was found in the installation path -L/var/tmp/pigeonhole/usr/lib64/dovecot but in the second case (the normal if building two separate rpm) the pigeonhole installation path does not contains the dovecot libaries. I'm not a developper and am not familiar enough with libtool, so I'm not able to determine the reason of the error since the DEPENDENCIES and LIBADD definitions in src/lib-sieve/Makefile.am seems to be correct ibdovecot_sieve_la_DEPENDENCIES = \ $(plugins) \ $(top_builddir)/src/lib-sieve/util/libsieve_util.la \ $(LIBDOVECOT_LDA_DEPS) \ $(LIBDOVECOT_STORAGE_DEPS) \ $(LIBDOVECOT_DEPS) libdovecot_sieve_la_LIBADD = \ $(plugins) \ $(top_builddir)/src/lib-sieve/util/libsieve_util.la \ $(LIBDOVECOT_LDA) \ $(LIBDOVECOT_STORAGE) \ $(LIBDOVECOT) I apologize for the long message, hope you can help on this. Regards Juan C. Blanco-- +----------------------------------------------------------------+ | Juan C. Blanco | | | | Centro de Calculo | | | Facultad de Informatica U.P.M. | E-mail: jcblanco at fi.upm.es | | Campus de Montegancedo | | | Boadilla del Monte | Tel.: (+34) 91 336 7466 | | 28660 MADRID (Spain) | Fax : (+34) 91 336 6913 | +----------------------------------------------------------------+ From portase.florin at medianetork.ro Fri Feb 7 17:27:17 2014 From: portase.florin at medianetork.ro (Florin, Portase) Date: Fri, 07 Feb 2014 18:27:17 +0100 Subject: [Dovecot] qmail dovecot lda Message-ID: <52F51775.4040403@medianetork.ro> (no report template found) -------------- next part -------------- An embedded message was scrubbed... From: "Florin, Portase" Subject: qmail dovecot lda Date: Fri, 07 Feb 2014 18:27:17 +0100 Size: 1229 URL: From matthias.lay at securepoint.de Fri Feb 7 10:26:13 2014 From: matthias.lay at securepoint.de (matthias lay) Date: Fri, 07 Feb 2014 11:26:13 +0100 Subject: [Dovecot] lda+ldap multiple users Message-ID: <52F4B4C5.30705@securepoint.de> Hi list and timo, I use dovecot lda with ldap to do a email => user lookup. I experienced that if a Mailaddress matches several users the delivery is aborted. ---------------- dovecot: auth: Error: ldap(christian.test at securepoint.de): LDAP search returned multiple entries dovecot: auth: ldap(christian.test at securepoint.de): unknown user dovecot: lda: Error: user christian.test at securepoint.de: Auth USER lookup failed ----------------- now my question, is there a way to have a mail like that delivered to all users that matches the lookup? havent found anything in the docs. thx in advance Matze From csklein at gmail.com Fri Feb 7 18:44:05 2014 From: csklein at gmail.com (=?ISO-8859-1?Q?C=E1ssio_Klein?=) Date: Fri, 7 Feb 2014 16:44:05 -0200 Subject: [Dovecot] Director centralized authentication Message-ID: Hello everybody, Is it possible to authenticate both passdb and userdb in the director cluster and send passdb information (like home, mail_location,...) to the backend servers? I am using the lastest dovecot version. Thanks in advance! From alex.hha at gmail.com Fri Feb 7 19:34:55 2014 From: alex.hha at gmail.com (Alex Domoradov) Date: Fri, 7 Feb 2014 21:34:55 +0200 Subject: [Dovecot] Segmentation fault Message-ID: Hello, I have encountered with strange issue. When I uncomment the following line auth_verbose_passwords = yes in the /etc/dovecot/conf.d/10-logging.conf I get the following errors # dovecot -a # 2.2.10: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) ext4 # NOTE: Send doveconf -n output instead when asking for help. Segmentation fault (core dumped) # doveconf -n # 2.2.10: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) ext4 Segmentation fault (core dumped) # dovecot -F -c /etc/dovecot/dovecot.conf doveconf: Fatal: Error in configuration file /etc/dovecot/dovecot.conf: (null) All other options in the file works fine # cat /etc/dovecot/conf.d/10-logging.conf | grep -v ^# | grep -v ^$ log_path = syslog syslog_facility = mail auth_verbose = yes auth_debug = yes auth_debug_passwords = yes mail_debug = yes verbose_ssl = yes # uname -r 2.6.32-431.3.1.el6.x86_64 # cat /etc/redhat-release CentOS release 6.5 (Final) # dovecot --version 2.2.10 Any advice would be highly appreciated From ghast123 at gmail.com Fri Feb 7 19:53:15 2014 From: ghast123 at gmail.com (Jani Hast) Date: Fri, 07 Feb 2014 21:53:15 +0200 Subject: [Dovecot] Dovecot 2.2.10 crash / infinite loop bug Message-ID: <52F539AB.9000008@gmail.com> Hello, I though this bug should be reported, although there is workaround already made and in use. Dovecot 2.2.10 crashes into out of memory error when there is defined system users (userdb+passdb) and own virtual users (userdb+passdb). Removing either one solves the issue and Dovecot is working as it should. When memory leak (I replaced pw_init and gr_init with the version that is found from 2.1.17) is fixed from lib/ipwd.c source, the auth worker gets to infinite loop and authentication timeouts(timeout was increased, but worker does not end what ever it's doing). This far I got chance to debug this before other passdb was removed due lack of time. Here's logs, configs and backtrace: Feb 1 07:39:19 openbsd dovecot: auth-worker(30906): Fatal: pool_system_realloc(268435456): Out of memory Feb 1 07:39:19 openbsd dovecot: auth: Error: auth worker: Aborted request: Worker process died unexpectedly Feb 1 07:39:19 openbsd dovecot: auth-worker(30906): Fatal: master: service(auth-worker): child 30906 returned error 83 (Out of memory (service auth-worker { vsz_limit=256 MB }, you may need to increase it) - set CORE_OUTOFMEM=1 environment to get core dump) Feb 1 07:39:19 openbsd dovecot: auth: Error: static(email at localhost): passdb doesn't support lookups, can't verify user's existence Feb 1 07:39:19 openbsd dovecot: lda: Error: user email at localhost: Auth USER lookup failed Feb 1 07:39:19 openbsd dovecot: lda: Fatal: Internal error occurred. Refer to server log for more information. Feb 1 07:39:19 openbsd postfix/pipe[17487]: 5DBAE5F289: to=, relay=dovecot, delay=37607, delays=37606/0.02/0/0.67, dsn=4.3.0, status=deferred (temporary failure) # 2.2.10: /etc/dovecot/dovecot.conf # OS: OpenBSD 5.5 i386 ffs auth_debug = yes auth_verbose = yes first_valid_uid = 1000 imap_client_workarounds = delay-newmail tb-extra-mailbox-sep tb-lsub-flags mail_debug = yes mail_location = maildir:/var/vmail/mydomain/%n mbox_write_locks = fcntl mmap_disable = yes namespace inbox { inbox = yes location = mailbox Spam { auto = subscribe } prefix = } passdb { driver = bsdauth } passdb { args = scheme=CRYPT username_format=%u /etc/dovecot/users driver = passwd-file } pop3_client_workarounds = outlook-no-nuls oe-ns-eoh protocols = imap lmtp service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 } } ssl_cert = :2 No locals. #1 0x02285e36 in raise (s=6) at /usr/src/lib/libc/gen/raise.c:39 No locals. #2 0x02285d5c in abort () at /usr/src/lib/libc/stdlib/abort.c:70 p = (struct atexit *) 0x7fc2c000 mask = 4294967263 cleanup_called = 1 #3 0x0245dcd4 in default_fatal_finish (type=Variable "type" is not available. ) at failures.c:193 backtrace = Variable "backtrace" is not available. (gdb) bt #0 0x0221be9d in kill () at :2 #1 0x02285e36 in raise (s=6) at /usr/src/lib/libc/gen/raise.c:39 #2 0x02285d5c in abort () at /usr/src/lib/libc/stdlib/abort.c:70 #3 0x0245dcd4 in default_fatal_finish (type=Variable "type" is not available. ) at failures.c:193 #4 0x0245dd4d in i_internal_fatal_handler (ctx=0xcfbec0f4, format=0x22406990 "pool_system_realloc(%lu): Out of memory", args=0xcfbec118 "") at failures.c:657 #5 0x0245cee3 in i_fatal_status (status=Could not find the frame base for "i_fatal_status". ) at failures.c:295 #6 0x02475543 in pool_system_realloc (pool=Could not find the frame base for "pool_system_realloc". ) at mempool-system.c:120 #7 0x02464c47 in i_realloc (mem=0x86122000, old_size=134217728, new_size=268435456) at imem.c:14 #8 0x0246505c in pw_init () at ipwd.c:23 #9 0x024651f7 in i_getpwnam (name=0x76941140"email at localhost", pwd_r=0xcfbec1cc) at ipwd.c:51 #10 0x164eef8e in bsdauth_verify_plain (request=0x76941020, password=0x78a183a2 "testi", callback=0x164e0320 ) at passdb-bsdauth.c:26 #11 0x164e0bf4 in auth_worker_input (client=0x7b386460) at auth-worker-client.c:205 #12 0x0246f9c2 in io_loop_call_io (io=0x7d1ae8c0) at ioloop.c:388 #13 0x02470e97 in io_loop_handler_run (ioloop=0x7d1ae3c0) at ioloop-kqueue.c:151 #14 0x0246f928 in io_loop_run (ioloop=0x7d1ae3c0) at ioloop.c:412 #15 0x0241609d in master_service_run (service=0x7e433d00, callback=0x164e66a0 ) at master-service.c:566 #16 0x164e6cc8 in main (argc=Cannot access memory at address 0x0 ) at main.c:393 Current language: auto; currently asm Sincerelly, Jani Hast From tss at iki.fi Fri Feb 7 20:04:59 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:04:59 -0500 Subject: [Dovecot] POP3: Message ordering changed unexpectedly In-Reply-To: <52F015E5.9010804@gedalya.net> References: <52F015E5.9010804@gedalya.net> Message-ID: <189A3825-76B2-41FB-A962-97B6B3FB3D5C@iki.fi> On 3.2.2014, at 17.19, Gedalya wrote: > I think I'm having a problem with simultaneous pop3 connections on the same mailbox with one connection deleting a message. .. > Jan 29 14:36:33 imap1 dovecot: pop3(riki at domain.com): Error: Message ordering changed unexpectedly (msg #1: storage seq 1 -> 2) > Jan 29 14:36:33 imap1 dovecot: pop3(riki at domain.com): Disconnected: POP3 UIDLs couldn't be listed top=3/2662, retr=0/0, del=0/1227, size=51548362 > > Running Dovecot 2.2.10+hg-6018854c8c91 > Mailboxes were migrated recently using dsync with pop3 migration plugin. What mailbox format is this with? I can only reproduce this by forcibly making sure that pop3.order field doesn't go into dovecot.index.cache field. Anyway .. this should help: http://hg.dovecot.org/dovecot-2.2/rev/59decc957b39 So also add something like "uidls=%u" to your pop3_logout_format. This will use up a little bit more memory by storing all the UIDLs in memory. The %u output can sometimes be used to debug why POP3 clients are redownloading messages. From tss at iki.fi Fri Feb 7 20:07:06 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:07:06 -0500 Subject: [Dovecot] possible quota bug ? In-Reply-To: <52eac45a9cc88_4ee222883073570@a4-weasel3.mail> References: 52d6c12d677f0_6aff11311301288@a4-weasel5.tmail <52eac45a9cc88_4ee222883073570@a4-weasel3.mail> Message-ID: <56C204D0-CDE1-4CD2-A96F-BBAC792DD952@iki.fi> On 30.1.2014, at 16.30, fernando.figaro at uol.com.br wrote: > I was researching deeper this issue, activated debug logs and when I move a message from one folder to another the message size is different > > Jan 30 18:48:07 imap(xxx at xxx): Info: copy from INBOX: box=INBOX.Sent, uid=17, msgid=<5520ed0fedee4e3386d08c98d249ad31 at lab.imap>, size=1048 > Jan 30 18:48:07 imap(xxx at xxx): Info: expunge: box=INBOX, uid=3, msgid=<5520ed0fedee4e3386d08c98d249ad31 at lab.imap>, size=1898 > > This is exactly the sizes I see in the maildirsize. But I think these values should be equals. Yes, they should be equal. I don't know why they wouldn't be. Do your Maildir filenames contain the S=1898 (i.e. the uncompressed size)? Are you delivering mails via Dovecot LDA/LMTP? > > 1073741824S > 2136 1 > 1048 1 > -1898 -1 > > Att > Fernando > > > De: fernando.figaro at uol.com.br > Enviada: Quarta-feira, 15 de Janeiro de 2014 15:11 > Para: dovecot at dovecot.org > Assunto: [Dovecot] possible quota bug ? > > Hi, > > I'm using dovecot 2.2.5 with quota (maildir backend), zlib and expunge plugins. > > When I list maildirsize file, I get: > > 1073741824S > 17952 16 > > If I receive a new message (example: 1204 bytes compressed and 2524 bytes plain text), the quota file is write correctly (2524 1 entry). When I move the message to trash folder (or between user custom folders) the file have wrong entries: > > 1073741824S > 17952 16 > 2524 1 > 1204 1 (this is the size of the compressed message) > -2524 -1 > > I coudn't find any relation with the config settings causing this problem and checked the changelog since 2.2.5. Had someone had this same problem? > > Thanks, > Fernando > From tss at iki.fi Fri Feb 7 20:07:47 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:07:47 -0500 Subject: [Dovecot] Dsync Errors In-Reply-To: <52EA7886.2040908@globalchangemusic.org> References: <52E28C13.4030207@globalchangemusic.org> <52E3ACDD.6000607@Media-Brokers.com> <52EA7886.2040908@globalchangemusic.org> Message-ID: <55867332-84FE-4E18-A29D-5AFB1A96346D@iki.fi> On 30.1.2014, at 11.06, Asai wrote: > Maybe this error sheds some light on it: > > Panic: file dsync-brain-mailbox-tree-sync.c: line 111 (dsync_brain_mailbox_tree_sync_change): assertion failed: (brain->no_backup_overwrite) Fixed by http://hg.dovecot.org/dovecot-2.2/rev/fbc8fe46dfce From tss at iki.fi Fri Feb 7 20:15:38 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:15:38 -0500 Subject: [Dovecot] Is replication broken? In-Reply-To: References: Message-ID: <4B4FC8A7-1A76-4271-87A8-E857D74309C0@iki.fi> On 30.1.2014, at 8.31, IT geek 31 wrote: > Jan 30 13:25:16 Server2 dovecot: dsync-server(MailUser1): Panic: file > mbox-lock.c: line 799 (mbox_lock): assertion failed: (lock_type == F_RDLCK > || mbox->mbox_lock_type != F_RDLCK) mbox format + dsync replication apparently doesn't work because of lock ordering issues. Might not be easy to fix, or in any case it's pretty low priority for me for now. From gedalya at gedalya.net Fri Feb 7 20:16:04 2014 From: gedalya at gedalya.net (Gedalya) Date: Fri, 07 Feb 2014 15:16:04 -0500 Subject: [Dovecot] POP3: Message ordering changed unexpectedly In-Reply-To: <189A3825-76B2-41FB-A962-97B6B3FB3D5C@iki.fi> References: <52F015E5.9010804@gedalya.net> <189A3825-76B2-41FB-A962-97B6B3FB3D5C@iki.fi> Message-ID: <52F53F04.2050008@gedalya.net> On 02/07/2014 03:04 PM, Timo Sirainen wrote: > On 3.2.2014, at 17.19, Gedalya wrote: > >> I think I'm having a problem with simultaneous pop3 connections on the same mailbox with one connection deleting a message. > .. >> Jan 29 14:36:33 imap1 dovecot: pop3(riki at domain.com): Error: Message ordering changed unexpectedly (msg #1: storage seq 1 -> 2) >> Jan 29 14:36:33 imap1 dovecot: pop3(riki at domain.com): Disconnected: POP3 UIDLs couldn't be listed top=3/2662, retr=0/0, del=0/1227, size=51548362 >> >> Running Dovecot 2.2.10+hg-6018854c8c91 >> Mailboxes were migrated recently using dsync with pop3 migration plugin. > What mailbox format is this with? I can only reproduce this by forcibly making sure that pop3.order field doesn't go into dovecot.index.cache field. Anyway .. this should help: http://hg.dovecot.org/dovecot-2.2/rev/59decc957b39 Ah sorry, yes. All mailboxes are maildir. Forgot to include the SQL configs. I guess I can send you the uidlist. This is happening when she is deleting a message that is still from the old server, i.e. a migrated message, which has the O field set in dovecot-uidlist. Presumably it would stop happening when the last of those is gone. I'll read through that commit now.. > > So also add something like "uidls=%u" to your pop3_logout_format. This will use up a little bit more memory by storing all the UIDLs in memory. The %u output can sometimes be used to debug why POP3 clients are redownloading messages. > Your commit message says: "..can be completely avoided by using either pop3_lock_session=yes or adding %u to pop3_logout_format." If I understand you correctly, this is a setting for formatting the entry in the log file, and by using %u I'm forced to save the UIDLs in memory and as a side effect I circumvent the problem of colliding with another simultaneous pop3 client? So using %u would not help troubleshoot the problem but actually fix it? From tss at iki.fi Fri Feb 7 20:20:30 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:20:30 -0500 Subject: [Dovecot] POP3: Message ordering changed unexpectedly In-Reply-To: <52F53F04.2050008@gedalya.net> References: <52F015E5.9010804@gedalya.net> <189A3825-76B2-41FB-A962-97B6B3FB3D5C@iki.fi> <52F53F04.2050008@gedalya.net> Message-ID: <87F377E6-AC1F-4782-BD48-73456AD20482@iki.fi> On 7.2.2014, at 15.16, Gedalya wrote: >> So also add something like "uidls=%u" to your pop3_logout_format. This will use up a little bit more memory by storing all the UIDLs in memory. The %u output can sometimes be used to debug why POP3 clients are redownloading messages. >> > Your commit message says: "..can be completely avoided by using either pop3_lock_session=yes or adding %u to pop3_logout_format." > If I understand you correctly, this is a setting for formatting the entry in the log file, and by using %u I'm forced to save the UIDLs in memory > and as a side effect I circumvent the problem of colliding with another simultaneous pop3 client? So using %u would not help troubleshoot the problem but actually fix it? Yeah, as a side effect of %u it'll also fix your problem entirely. I first thought about adding a new setting but then I realized this can be used without adding any settings. From tss at iki.fi Fri Feb 7 20:22:35 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:22:35 -0500 Subject: [Dovecot] Segmentation fault In-Reply-To: References: Message-ID: On 7.2.2014, at 14.34, Alex Domoradov wrote: > I have encountered with strange issue. When I uncomment the following line > > auth_verbose_passwords = yes > > in the /etc/dovecot/conf.d/10-logging.conf I get the following errors > > # dovecot -a > # 2.2.10: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) ext4 > # NOTE: Send doveconf -n output instead when asking for help. > Segmentation fault (core dumped) > > # doveconf -n > # 2.2.10: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) ext4 > Segmentation fault (core dumped) gdb backtrace would be helpful: gdb --args doveconf -n run bt full I guess it's related to auth_verbose_passwords setting, but I can't immediately see why it would crash there. From gedalya at gedalya.net Fri Feb 7 20:23:02 2014 From: gedalya at gedalya.net (Gedalya) Date: Fri, 07 Feb 2014 15:23:02 -0500 Subject: [Dovecot] POP3: Message ordering changed unexpectedly In-Reply-To: <87F377E6-AC1F-4782-BD48-73456AD20482@iki.fi> References: <52F015E5.9010804@gedalya.net> <189A3825-76B2-41FB-A962-97B6B3FB3D5C@iki.fi> <52F53F04.2050008@gedalya.net> <87F377E6-AC1F-4782-BD48-73456AD20482@iki.fi> Message-ID: <52F540A6.8030708@gedalya.net> On 02/07/2014 03:20 PM, Timo Sirainen wrote: > On 7.2.2014, at 15.16, Gedalya wrote: > >>> So also add something like "uidls=%u" to your pop3_logout_format. This will use up a little bit more memory by storing all the UIDLs in memory. The %u output can sometimes be used to debug why POP3 clients are redownloading messages. >>> >> Your commit message says: "..can be completely avoided by using either pop3_lock_session=yes or adding %u to pop3_logout_format." >> If I understand you correctly, this is a setting for formatting the entry in the log file, and by using %u I'm forced to save the UIDLs in memory >> and as a side effect I circumvent the problem of colliding with another simultaneous pop3 client? So using %u would not help troubleshoot the problem but actually fix it? > Yeah, as a side effect of %u it'll also fix your problem entirely. I first thought about adding a new setting but then I realized this can be used without adding any settings. > Cool ;-) Thank you!!! Much appreciated. From tss at iki.fi Fri Feb 7 20:23:04 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:23:04 -0500 Subject: [Dovecot] Multiple ssl-certs on different ports with the same protocol In-Reply-To: References: Message-ID: <5D9D0871-D3DF-465C-BF99-135CA766E818@iki.fi> On 3.2.2014, at 11.40, myleetlist at gmx.de wrote: > is it possible to use multiple ssl-certs on different _ports_ with the same protocol? No. From tss at iki.fi Fri Feb 7 20:25:15 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:25:15 -0500 Subject: [Dovecot] Auth socket can't listen using ssl In-Reply-To: References: <1390830415.6121.7.camel@anthony.lan.enovance.com> <20140127120804.32a3f6c5@mydesk> <1390901535.4500.2.camel@anthony.lan.enovance.com> Message-ID: <6D041894-D5DE-4D7C-A5EC-EF647B857DC4@iki.fi> On 28.1.2014, at 5.28, Steffen Kaiser wrote: >> Le Monday 27 January 2014 ? 12:08 -0500, Steve Litt a ?crit : >>> I read in some docs somewhere that Dovecot automatically >>> trusts anything on localhost. If you're telnetting into it from the same >>> physical computer that hosts the port, try telnetting into it from a >>> different physical computer with a different IP address and see if you >>> can still telnet in. >> >> I've tried from localhost and another computer. In both tries, the >> connection is made without ssl. > > Hmm, maybe "internal" sockets do not utilize SSL at all? Just IMAP/POP/ManageSieve? Pretty much, yeah. I guess some day the code should be changed so everything supports it automatically. Currently if SSL auth socket is wanted it would require adding something like 30 lines of code I think (if anyone wants to try, doveadm's code should be helpful in seeing how it's done). From tss at iki.fi Fri Feb 7 20:37:44 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:37:44 -0500 Subject: [Dovecot] New global ACL mailbox pattern feature in HG In-Reply-To: <20140130102315.GA21185@nihlus.leuxner.net> References: <20140128072932.GA27627@nihlus.leuxner.net> <20140130102315.GA21185@nihlus.leuxner.net> Message-ID: On 30.1.2014, at 5.23, Thomas Leuxner wrote: > * Thomas Leuxner 2014.01.28 08:29: > >> $ cat global-acl >> INBOX owner lrwstiekxap >> Public* group=PublicMailboxAdmins lrwsik > > Following up on this, there seems to be an issue with separators. Mailbox creation crashes, while it used to work fine with the same configuration w/o the 'global-acl' file. Interestingly enough same syntax works for the public namespace (e.g. "mailbox create -u tlx at leuxner.net Public/Test" ): > > $ doveadm acl get -u tlx at leuxner.net INBOX > ID Global Rights > owner admin create delete expunge insert lookup post read write write-deleted write-seen > > $ doveadm mailbox create -u tlx at leuxner.net "Shops/Test" > doveadm(tlx at leuxner.net): Panic: file acl-global-file.c: line 163 (acl_global_file_find_rights): assertion failed: (file->last_refresh_time != 0) Fixed: http://hg.dovecot.org/dovecot-2.2/rev/c69ca1f5bc34 Also I was thinking that maybe it could support a syntax like: Public,Public/* owner lrw Or with more weirder mailbox names use quoting: "foo,bar baz",another owner lrw From tss at iki.fi Fri Feb 7 20:45:11 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:45:11 -0500 Subject: [Dovecot] RFC 5267 Contexts for IMAP4 PARTIAL results In-Reply-To: <1390319084586.4619.622@webmail8> References: <1390319084586.4619.622@webmail8> Message-ID: On 21.1.2014, at 10.44, Anders Th?gersen wrote: > I am looking at PARTIAL responses using a dovecot version 2.2.5 and am running > into an inconsistency with the RFC which I would like to ask about. Looks like the code was buggy. This should fix: http://hg.dovecot.org/dovecot-2.2/rev/c329508e4fec From tss at iki.fi Fri Feb 7 20:54:46 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 7 Feb 2014 15:54:46 -0500 Subject: [Dovecot] Segmentation fault In-Reply-To: References: Message-ID: <0D4799D0-13D4-4A77-A386-994E946C516C@iki.fi> On 7.2.2014, at 15.22, Timo Sirainen wrote: >> auth_verbose_passwords = yes >> > I guess it's related to auth_verbose_passwords setting, but I can't immediately see why it would crash there. Oh, first I thought there were two settings related to this :) Anyway, the reason is simple: "yes" isn't a valid value here. Either use "plain" or "sha1". Although I suppose "yes" could be an alias for "plain" to make people's life easier. So: http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb http://hg.dovecot.org/dovecot-2.2/rev/27ac53f11f1f From alex.hha at gmail.com Fri Feb 7 21:42:13 2014 From: alex.hha at gmail.com (Alex Domoradov) Date: Fri, 7 Feb 2014 23:42:13 +0200 Subject: [Dovecot] Segmentation fault In-Reply-To: <0D4799D0-13D4-4A77-A386-994E946C516C@iki.fi> References: <0D4799D0-13D4-4A77-A386-994E946C516C@iki.fi> Message-ID: Sorry, it was my fault. With "plain" value all works fine. Thanks for the help On Fri, Feb 7, 2014 at 10:54 PM, Timo Sirainen wrote: > On 7.2.2014, at 15.22, Timo Sirainen wrote: > >>> auth_verbose_passwords = yes >>> >> I guess it's related to auth_verbose_passwords setting, but I can't immediately see why it would crash there. > > Oh, first I thought there were two settings related to this :) Anyway, the reason is simple: "yes" isn't a valid value here. Either use "plain" or "sha1". Although I suppose "yes" could be an alias for "plain" to make people's life easier. So: > > http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb > http://hg.dovecot.org/dovecot-2.2/rev/27ac53f11f1f > From h.reindl at thelounge.net Fri Feb 7 21:44:28 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Fri, 07 Feb 2014 22:44:28 +0100 Subject: [Dovecot] Segmentation fault In-Reply-To: References: <0D4799D0-13D4-4A77-A386-994E946C516C@iki.fi> Message-ID: <52F553BC.3050907@thelounge.net> no - a typo in a config does not qualify a segfault at all Am 07.02.2014 22:42, schrieb Alex Domoradov: > Sorry, it was my fault. With "plain" value all works fine. > > Thanks for the help > > On Fri, Feb 7, 2014 at 10:54 PM, Timo Sirainen wrote: >> On 7.2.2014, at 15.22, Timo Sirainen wrote: >> >>>> auth_verbose_passwords = yes >>>> >>> I guess it's related to auth_verbose_passwords setting, but I can't immediately see why it would crash there. >> >> Oh, first I thought there were two settings related to this :) Anyway, the reason is simple: "yes" isn't a valid value here. Either use "plain" or "sha1". Although I suppose "yes" could be an alias for "plain" to make people's life easier. So: >> >> http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb >> http://hg.dovecot.org/dovecot-2.2/rev/27ac53f11f1f -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From asai at globalchangemusic.org Fri Feb 7 22:10:33 2014 From: asai at globalchangemusic.org (Asai) Date: Fri, 07 Feb 2014 15:10:33 -0700 Subject: [Dovecot] Dsync Errors In-Reply-To: <55867332-84FE-4E18-A29D-5AFB1A96346D@iki.fi> References: <52E28C13.4030207@globalchangemusic.org> <52E3ACDD.6000607@Media-Brokers.com> <52EA7886.2040908@globalchangemusic.org> <55867332-84FE-4E18-A29D-5AFB1A96346D@iki.fi> Message-ID: <52F559D9.6090202@globalchangemusic.org> Timo, you're amazing. Thank you. --Asai On 2/7/14 1:07 PM, Timo Sirainen wrote: > On 30.1.2014, at 11.06, Asai wrote: > >> Maybe this error sheds some light on it: >> >> Panic: file dsync-brain-mailbox-tree-sync.c: line 111 (dsync_brain_mailbox_tree_sync_change): assertion failed: (brain->no_backup_overwrite) > Fixed by http://hg.dovecot.org/dovecot-2.2/rev/fbc8fe46dfce From tlx at leuxner.net Fri Feb 7 22:21:50 2014 From: tlx at leuxner.net (Thomas Leuxner) Date: Fri, 7 Feb 2014 23:21:50 +0100 Subject: [Dovecot] New global ACL mailbox pattern feature in HG In-Reply-To: References: <20140128072932.GA27627@nihlus.leuxner.net> <20140130102315.GA21185@nihlus.leuxner.net> Message-ID: <20140207222150.GA14954@nihlus.leuxner.net> * Timo Sirainen 2014.02.07 21:37: > > $ doveadm mailbox create -u tlx at leuxner.net "Shops/Test" > > doveadm(tlx at leuxner.net): Panic: file acl-global-file.c: line 163 (acl_global_file_find_rights): assertion failed: (file->last_refresh_time != 0) > > Fixed: http://hg.dovecot.org/dovecot-2.2/rev/c69ca1f5bc34 Crash is gone. Thanks. Public/* group=PublicMailboxAdmins lrwsik yields an error (Public/ Namespace) while 'Public*' works: $ doveadm mailbox create -u tlx at leuxner.net "Public/Test" $ doveadm(tlx at leuxner.net): Error: Can't create mailbox Public/Test: Permission denied > Also I was thinking that maybe it could support a syntax like: > > Public,Public/* owner lrw +1 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From alex.hha at gmail.com Sat Feb 8 13:15:03 2014 From: alex.hha at gmail.com (Alex Domoradov) Date: Sat, 8 Feb 2014 15:15:03 +0200 Subject: [Dovecot] Segmentation fault In-Reply-To: <52F553BC.3050907@thelounge.net> References: <0D4799D0-13D4-4A77-A386-994E946C516C@iki.fi> <52F553BC.3050907@thelounge.net> Message-ID: # gdb --args doveconf -n GNU gdb (GDB) Red Hat Enterprise Linux (7.2-60.el6_4.1) Copyright (C) 2010 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-redhat-linux-gnu". For bug reporting instructions, please see: ... Reading symbols from /usr/bin/doveconf...(no debugging symbols found)...done. (gdb) run Starting program: /usr/bin/doveconf -n [Thread debugging using libthread_db enabled] # 2.2.10: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) Program received signal SIGSEGV, Segmentation fault. 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 Missing separate debuginfos, use: debuginfo-install dovecot-2.2.10-1.el6.x86_64 (gdb) bt full #0 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 No symbol table info available. #1 0x00007ffff7b9665d in p_strdup (pool=0x6adac0, str=0x288
) at strfuncs.c:41 mem = len = #2 0x000000000040528f in config_request_get_strings () No symbol table info available. #3 0x000000000040c3ce in config_export_finish () No symbol table info available. #4 0x00000000004054d4 in config_dump_human_output () No symbol table info available. #5 0x0000000000405dff in config_dump_human () No symbol table info available. #6 0x0000000000406bcf in main () No symbol table info available. I have tried to install debug packages but without success # debuginfo-install dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo for main pkg: 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package bzip2-libs-1.0.5-7.el6_0.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package libcap-2.16-5.5.el6.x86_64 Could not find debuginfo pkg for dependency package libcom_err-1.41.12-18.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package openssl-1.0.1e-16.el6_5.4.x86_64 Could not find debuginfo pkg for dependency package openssl-1.0.1e-16.el6_5.4.x86_64 Could not find debuginfo pkg for dependency package openssl-1.0.1e-16.el6_5.4.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package 1:dovecot-2.2.10-1.el6.x86_64 Could not find debuginfo pkg for dependency package expat-2.0.1-11.el6_2.x86_64 Could not find debuginfo pkg for dependency package krb5-libs-1.10.3-10.el6_4.6.x86_64 Could not find debuginfo pkg for dependency package krb5-libs-1.10.3-10.el6_4.6.x86_64 Could not find debuginfo pkg for dependency package krb5-libs-1.10.3-10.el6_4.6.x86_64 Could not find debuginfo pkg for dependency package krb5-libs-1.10.3-10.el6_4.6.x86_64 Could not find debuginfo pkg for dependency package krb5-libs-1.10.3-10.el6_4.6.x86_64 Could not find debuginfo pkg for dependency package openldap-2.4.23-34.el6_5.1.x86_64 Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 Could not find debuginfo pkg for dependency package sqlite-3.6.20-1.el6.x86_64 Could not find debuginfo pkg for dependency package openssl-1.0.1e-16.el6_5.4.x86_64 Could not find debuginfo pkg for dependency package openssl-1.0.1e-16.el6_5.4.x86_64 Could not find debuginfo pkg for dependency package zlib-1.2.3-29.el6.x86_64 No debuginfo packages available to install On Fri, Feb 7, 2014 at 11:44 PM, Reindl Harald wrote: > no - a typo in a config does not qualify a segfault at all > > Am 07.02.2014 22:42, schrieb Alex Domoradov: >> Sorry, it was my fault. With "plain" value all works fine. >> >> Thanks for the help >> >> On Fri, Feb 7, 2014 at 10:54 PM, Timo Sirainen wrote: >>> On 7.2.2014, at 15.22, Timo Sirainen wrote: >>> >>>>> auth_verbose_passwords = yes >>>>> >>>> I guess it's related to auth_verbose_passwords setting, but I can't immediately see why it would crash there. >>> >>> Oh, first I thought there were two settings related to this :) Anyway, the reason is simple: "yes" isn't a valid value here. Either use "plain" or "sha1". Although I suppose "yes" could be an alias for "plain" to make people's life easier. So: >>> >>> http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb >>> http://hg.dovecot.org/dovecot-2.2/rev/27ac53f11f1f > From alex.hha at gmail.com Sat Feb 8 14:09:51 2014 From: alex.hha at gmail.com (Alex Domoradov) Date: Sat, 8 Feb 2014 16:09:51 +0200 Subject: [Dovecot] Segmentation fault In-Reply-To: References: <0D4799D0-13D4-4A77-A386-994E946C516C@iki.fi> <52F553BC.3050907@thelounge.net> Message-ID: I have installed debug packages excluding sqlite and dovecot and tried one more time # echo "/var/core/%p" > /proc/sys/kernel/core_pattern # doveconf -n # 2.2.10: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) Segmentation fault (core dumped) # gdb /usr/bin/doveconf /var/core/23290 GNU gdb (GDB) Red Hat Enterprise Linux (7.2-60.el6_4.1) Copyright (C) 2010 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-redhat-linux-gnu". For bug reporting instructions, please see: ... Reading symbols from /usr/bin/doveconf...(no debugging symbols found)...done. [New Thread 23290] Reading symbols from /usr/lib64/dovecot/libdovecot.so.0...done. Loaded symbols for /usr/lib64/dovecot/libdovecot.so.0 Reading symbols from /lib64/libc-2.12.so...Reading symbols from /usr/lib/debug/lib64/libc-2.12.so.debug...done. done. Loaded symbols for /lib64/libc-2.12.so Reading symbols from /lib64/libdl-2.12.so...Reading symbols from /usr/lib/debug/lib64/libdl-2.12.so.debug...done. done. Loaded symbols for /lib64/libdl-2.12.so Reading symbols from /lib64/librt-2.12.so...Reading symbols from /usr/lib/debug/lib64/librt-2.12.so.debug...done. done. Loaded symbols for /lib64/librt-2.12.so Reading symbols from /lib64/ld-2.12.so...Reading symbols from /usr/lib/debug/lib64/ld-2.12.so.debug...done. done. Loaded symbols for /lib64/ld-2.12.so Reading symbols from /lib64/libpthread-2.12.so...Reading symbols from /usr/lib/debug/lib64/libpthread-2.12.so.debug...done. [Thread debugging using libthread_db enabled] done. Loaded symbols for /lib64/libpthread-2.12.so Reading symbols from /lib64/libnss_files-2.12.so...Reading symbols from /usr/lib/debug/lib64/libnss_files-2.12.so.debug...done. done. Loaded symbols for /lib64/libnss_files-2.12.so Core was generated by `doveconf -n'. Program terminated with signal 11, Segmentation fault. #0 __strlen_sse2 () at ../sysdeps/x86_64/strlen.S:32 32 movdqu (%rdi), %xmm1 Missing separate debuginfos, use: debuginfo-install dovecot-2.2.10-1.el6.x86_64 (gdb) bt full #0 __strlen_sse2 () at ../sysdeps/x86_64/strlen.S:32 No locals. #1 0x00007f139828e65d in p_strdup (pool=0x10afab0, str=0x288
) at strfuncs.c:41 mem = len = #2 0x000000000040528f in config_request_get_strings () No symbol table info available. #3 0x000000000040c3ce in config_export_finish () No symbol table info available. #4 0x00000000004054d4 in config_dump_human_output () No symbol table info available. #5 0x0000000000405dff in config_dump_human () No symbol table info available. #6 0x0000000000406bcf in main () No symbol table info available. Is it possible to build debuginfo for the dovecot package? On Sat, Feb 8, 2014 at 3:15 PM, Alex Domoradov wrote: > # gdb --args doveconf -n > GNU gdb (GDB) Red Hat Enterprise Linux (7.2-60.el6_4.1) > Copyright (C) 2010 Free Software Foundation, Inc. > License GPLv3+: GNU GPL version 3 or later > This is free software: you are free to change and redistribute it. > There is NO WARRANTY, to the extent permitted by law. Type "show copying" > and "show warranty" for details. > This GDB was configured as "x86_64-redhat-linux-gnu". > For bug reporting instructions, please see: > ... > Reading symbols from /usr/bin/doveconf...(no debugging symbols found)...done. > (gdb) run > Starting program: /usr/bin/doveconf -n > [Thread debugging using libthread_db enabled] > # 2.2.10: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) > > Program received signal SIGSEGV, Segmentation fault. > 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 > Missing separate debuginfos, use: debuginfo-install dovecot-2.2.10-1.el6.x86_64 > (gdb) bt full > #0 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 > No symbol table info available. > #1 0x00007ffff7b9665d in p_strdup (pool=0x6adac0, str=0x288
0x288 out of bounds>) at strfuncs.c:41 > mem = > len = > #2 0x000000000040528f in config_request_get_strings () > No symbol table info available. > #3 0x000000000040c3ce in config_export_finish () > No symbol table info available. > #4 0x00000000004054d4 in config_dump_human_output () > No symbol table info available. > #5 0x0000000000405dff in config_dump_human () > No symbol table info available. > #6 0x0000000000406bcf in main () > No symbol table info available. > > I have tried to install debug packages but without success > > # debuginfo-install dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo for main pkg: 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > bzip2-libs-1.0.5-7.el6_0.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package libcap-2.16-5.5.el6.x86_64 > Could not find debuginfo pkg for dependency package > libcom_err-1.41.12-18.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package > openssl-1.0.1e-16.el6_5.4.x86_64 > Could not find debuginfo pkg for dependency package > openssl-1.0.1e-16.el6_5.4.x86_64 > Could not find debuginfo pkg for dependency package > openssl-1.0.1e-16.el6_5.4.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > 1:dovecot-2.2.10-1.el6.x86_64 > Could not find debuginfo pkg for dependency package expat-2.0.1-11.el6_2.x86_64 > Could not find debuginfo pkg for dependency package > krb5-libs-1.10.3-10.el6_4.6.x86_64 > Could not find debuginfo pkg for dependency package > krb5-libs-1.10.3-10.el6_4.6.x86_64 > Could not find debuginfo pkg for dependency package > krb5-libs-1.10.3-10.el6_4.6.x86_64 > Could not find debuginfo pkg for dependency package > krb5-libs-1.10.3-10.el6_4.6.x86_64 > Could not find debuginfo pkg for dependency package > krb5-libs-1.10.3-10.el6_4.6.x86_64 > Could not find debuginfo pkg for dependency package > openldap-2.4.23-34.el6_5.1.x86_64 > Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 > Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 > Could not find debuginfo pkg for dependency package sqlite-3.6.20-1.el6.x86_64 > Could not find debuginfo pkg for dependency package > openssl-1.0.1e-16.el6_5.4.x86_64 > Could not find debuginfo pkg for dependency package > openssl-1.0.1e-16.el6_5.4.x86_64 > Could not find debuginfo pkg for dependency package zlib-1.2.3-29.el6.x86_64 > No debuginfo packages available to install > > On Fri, Feb 7, 2014 at 11:44 PM, Reindl Harald wrote: >> no - a typo in a config does not qualify a segfault at all >> >> Am 07.02.2014 22:42, schrieb Alex Domoradov: >>> Sorry, it was my fault. With "plain" value all works fine. >>> >>> Thanks for the help >>> >>> On Fri, Feb 7, 2014 at 10:54 PM, Timo Sirainen wrote: >>>> On 7.2.2014, at 15.22, Timo Sirainen wrote: >>>> >>>>>> auth_verbose_passwords = yes >>>>>> >>>>> I guess it's related to auth_verbose_passwords setting, but I can't immediately see why it would crash there. >>>> >>>> Oh, first I thought there were two settings related to this :) Anyway, the reason is simple: "yes" isn't a valid value here. Either use "plain" or "sha1". Although I suppose "yes" could be an alias for "plain" to make people's life easier. So: >>>> >>>> http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb >>>> http://hg.dovecot.org/dovecot-2.2/rev/27ac53f11f1f >> From portase.florin at medianetork.ro Sat Feb 8 17:33:59 2014 From: portase.florin at medianetork.ro (Florin, Portase) Date: Sat, 08 Feb 2014 18:33:59 +0100 Subject: [Dovecot] qmail dovecot lda Message-ID: <52F66A87.60905@medianetork.ro> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Yes, submission_host was the issue. Problem is, I've got an empty value for submission_host. Everything works normally now. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (MingW32) iQEcBAEBAgAGBQJS9mqHAAoJEF9FGnYkDg1zlzAIAIuw4/FXeB1A22EK20Q9amjS cF0uymi2vVywRgOOFvHCUwmAdMTZ5GosjaYof6GmavNLc7aYHVmAdJq0vP1zPuWA Z+H+tdUJDZefQAtvCh05+ig6hPYfsiI96/sxz5gwtaDgj11sZE95+8HorYzQx0RB /+JsyUakZ6lwWRldRIuGmSYNRCe+Un8fuIvYL7dR1KkmtfPl34vF1A4Bft89EJ8P qmS+tUKl67t9lW24rBWg9W92lnViuaG6bVwENxE0TN4BRJlBcQXGuK/8ImhekizR WDGRf950zbBlVwhWtuqQMrIzb4cqEKKetjY+lkRb6GfPwNFjhJLprY4h7CBP1Uo= =GqDG -----END PGP SIGNATURE----- From apm at one.com Sun Feb 9 08:36:04 2014 From: apm at one.com (Peter Mogensen) Date: Sun, 09 Feb 2014 09:36:04 +0100 Subject: [Dovecot] master user and ACL's Message-ID: <52F73DF4.9000408@one.com> Hi, Quick question...I read in the docs that: "Master user is still subject to ACLs just like any other user, which means that by default the master user has no access to any mailboxes of the user." ... and that the standard workaround is to return master_user=%u from the userdb. But why is the master_user authn-id used in the ACLs and not the authz-id (requested-login-user) ? Isn't the whole point of SASL authz-id semantics to have authorization resolved based on the authz-id? /Peter From gilles.chauvin at univ-rouen.fr Sun Feb 9 09:42:53 2014 From: gilles.chauvin at univ-rouen.fr (Gilles Chauvin) Date: Sun, 09 Feb 2014 10:42:53 +0100 Subject: [Dovecot] =?utf-8?q?Dsync_crash_=28v2=2E2=2E10=2C_sdbox+sis_?= =?utf-8?b?4oaSIG1ib3gp?= Message-ID: <52F74D9D.90906@univ-rouen.fr> Hi, I'm trying to use dsync to convert sdbox + sis mailboxes to mbox (mbox is chosen here to "re-attach" the attachments to their original place) # dsync -Dv -u $LOGIN -o "mail_location=sdbox:/zfspool/clone_srv_mail/$LOGIN" -o "mail_attachment_dir=/zfspool/clone_srv_attachments" backup "mbox:/zfspool/restore/$LOGIN/mbox:DIRNAME=mBoX-MeSsAgEs:INDEX=/zfspool/restore/$LOGIN/indexes:CONTROL=/zfspool/restore/$LOGIN/control" For 5 users out of a sample of 24, here is what's happening: dsync(user1): Error: read(/zfspool/clone_srv_attachments/cb/0a/cb0aad465a4ff95bf6fa6ece0fba94b43e8892cf-19dc51309fc2f3527e31000044c1c7e7-b55eb9176ca1b350e565000094b229f9-30810[base64:19 b/l]) failed: Stream is larger than expected (163244 > 163243, eof=1) dsync(user1): Error: copy: i_stream_read() failed: Invalid argument dsync(user1): Panic: file mail-index-transaction-update.c: line 19 (mail_index_transaction_lookup): assertion failed: (seq >= t->first_new_seq && seq <= t->last_new_seq) dsync(user1): Error: Raw backtrace: /usr/local/lib/dovecot/libdovecot.so.0(+0x6889a) [0x7f58a95a189a] -> /usr/local/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x32) [0x7f58a95a19a2] -> /usr/local/lib/dovecot/libdovecot.so.0(i_error+0) [0x7f58a955b1cf] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc0287) [0x7f58a98ca287] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc3145) [0x7f58a98cd145] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_decision_state_update+0xb6) [0x7f58a98bcb06] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_lookup_headers+0x91) [0x7f58a98be5e1] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xa0ac3) [0x7f58a98aaac3] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_get_first_header+0x4a) [0x7f58a98ab04a] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c021) [0x7f58a98a6021] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c151) [0x7f58a98a6151] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_close+0xf5) [0x7f58a98a6295] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_save_cancel+0x48) [0x7f58a98867c8] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_storage_copy+0x92) [0x7f58a9880e32] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_copy+0x5f) [0x7f58a9886c2f] -> dsync() [0x42f750] -> dsync(dsync_brain_sync_mails+0x459) [0x42e9c9] -> dsync(dsync_brain_run+0x2a1) [0x42ac51] -> dsync() [0x42876f] -> dsync() [0x411c97] -> dsync(doveadm_mail_try_run+0x238) [0x4120a8] -> dsync(main+0x3d1) [0x41aaa1] -> /lib64/libc.so.6(__libc_start_main+0xfd) [0x7f58a91c3d1d] -> dsync() [0x411419] dsync(user2): Error: read(/zfspool/clone_srv_attachments/ad/0c/ad0cef35cc6f0b2dae2197c4ff2b61a2bd58070d-9e8345192ccbf352c210000044c1c7e7-6efa5f2e522db350ed3d000094b229f9-15470[base64:18 b/l]) failed: Stream is larger than expected (194476 > 194475, eof=1) dsync(user2): Error: copy: i_stream_read() failed: Invalid argument dsync(user2): Panic: file mail-index-transaction-update.c: line 19 (mail_index_transaction_lookup): assertion failed: (seq >= t->first_new_seq && seq <= t->last_new_seq) dsync(user2): Error: Raw backtrace: /usr/local/lib/dovecot/libdovecot.so.0(+0x6889a) [0x7f2e2248d89a] -> /usr/local/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x32) [0x7f2e2248d9a2] -> /usr/local/lib/dovecot/libdovecot.so.0(i_error+0) [0x7f2e224471cf] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc0287) [0x7f2e227b6287] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc3145) [0x7f2e227b9145] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_decision_state_update+0xb6) [0x7f2e227a8b06] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_lookup_headers+0x91) [0x7f2e227aa5e1] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xa0ac3) [0x7f2e22796ac3] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_get_first_header+0x4a) [0x7f2e2279704a] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c021) [0x7f2e22792021] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c151) [0x7f2e22792151] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_close+0xf5) [0x7f2e22792295] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_save_cancel+0x48) [0x7f2e227727c8] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_storage_copy+0x92) [0x7f2e2276ce32] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_copy+0x5f) [0x7f2e22772c2f] -> dsync() [0x42f750] -> dsync(dsync_brain_sync_mails+0x459) [0x42e9c9] -> dsync(dsync_brain_run+0x2a1) [0x42ac51] -> dsync() [0x42876f] -> dsync() [0x411c97] -> dsync(doveadm_mail_try_run+0x238) [0x4120a8] -> dsync(main+0x3d1) [0x41aaa1] -> /lib64/libc.so.6(__libc_start_main+0xfd) [0x7f2e220afd1d] -> dsync() [0x411419] dsync(user3): Error: read(/zfspool/clone_srv_attachments/23/8a/238a781b53bb4d1b1bee989a5ff38636b616d5c5-41ba47152912f4522c6f000044c1c7e7-f3b06c2f5aa1b350d565000094b229f9-38650[base64:19 b/l]) failed: Stream is larger than expected (33191 > 33190, eof=1) dsync(user3): Error: copy: i_stream_read() failed: Invalid argument dsync(user3): Panic: file mail-index-transaction-update.c: line 19 (mail_index_transaction_lookup): assertion failed: (seq >= t->first_new_seq && seq <= t->last_new_seq) dsync(user3): Error: Raw backtrace: /usr/local/lib/dovecot/libdovecot.so.0(+0x6889a) [0x7f88d4bde89a] -> /usr/local/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x32) [0x7f88d4bde9a2] -> /usr/local/lib/dovecot/libdovecot.so.0(i_error+0) [0x7f88d4b981cf] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc0287) [0x7f88d4f07287] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc3145) [0x7f88d4f0a145] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_decision_state_update+0xb6) [0x7f88d4ef9b06] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_lookup_headers+0x91) [0x7f88d4efb5e1] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xa0ac3) [0x7f88d4ee7ac3] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_get_first_header+0x4a) [0x7f88d4ee804a] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c021) [0x7f88d4ee3021] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c151) [0x7f88d4ee3151] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_close+0xf5) [0x7f88d4ee3295] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_save_cancel+0x48) [0x7f88d4ec37c8] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_storage_copy+0x92) [0x7f88d4ebde32] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_copy+0x5f) [0x7f88d4ec3c2f] -> dsync() [0x42f750] -> dsync(dsync_brain_sync_mails+0x459) [0x42e9c9] -> dsync(dsync_brain_run+0x2a1) [0x42ac51] -> dsync() [0x42876f] -> dsync() [0x411c97] -> dsync(doveadm_mail_try_run+0x238) [0x4120a8] -> dsync(main+0x3d1) [0x41aaa1] -> /lib64/libc.so.6(__libc_start_main+0xfd) [0x7f88d4800d1d] -> dsync() [0x411419] dsync(user4): Error: read(/zfspool/clone_srv_attachments/11/fa/11fa090f48879e8514a07040a837b5544364e091-d5dd321af54ff452790f000044c1c7e7-98da7910e38db350b75a000094b229f9-50167[base64:19 b/l]) failed: Stream is larger than expected (56522 > 56521, eof=1) dsync(user4): Error: copy: i_stream_read() failed: Invalid argument dsync(user4): Panic: file mail-index-transaction-update.c: line 19 (mail_index_transaction_lookup): assertion failed: (seq >= t->first_new_seq && seq <= t->last_new_seq) dsync(user4): Error: Raw backtrace: /usr/local/lib/dovecot/libdovecot.so.0(+0x6889a) [0x7f416564a89a] -> /usr/local/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x32) [0x7f416564a9a2] -> /usr/local/lib/dovecot/libdovecot.so.0(i_error+0) [0x7f41656041cf] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc0287) [0x7f4165973287] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc3145) [0x7f4165976145] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_decision_state_update+0xb6) [0x7f4165965b06] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_lookup_headers+0x91) [0x7f41659675e1] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xa0ac3) [0x7f4165953ac3] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_get_first_header+0x4a) [0x7f416595404a] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c021) [0x7f416594f021] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c151) [0x7f416594f151] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_close+0xf5) [0x7f416594f295] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_save_cancel+0x48) [0x7f416592f7c8] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_storage_copy+0x92) [0x7f4165929e32] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_copy+0x5f) [0x7f416592fc2f] -> dsync() [0x42f750] -> dsync(dsync_brain_sync_mails+0x459) [0x42e9c9] -> dsync(dsync_brain_run+0x2a1) [0x42ac51] -> dsync() [0x42876f] -> dsync() [0x411c97] -> dsync(doveadm_mail_try_run+0x238) [0x4120a8] -> dsync(main+0x3d1) [0x41aaa1] -> /lib64/libc.so.6(__libc_start_main+0xfd) [0x7f416526cd1d] -> dsync() [0x411419] dsync(user5): Error: read(/zfspool/clone_srv_attachments/77/aa/77aa90d73107cc35fd0305c22a84eb00e793c935-a0d2ef302a20f552de5a000044c1c7e7-2accb7218264b350a423000094b229f9-11713[base64:19 b/l]) failed: Stream is larger than expected (43663 > 43662, eof=1) dsync(user5): Error: copy: i_stream_read() failed: Invalid argument dsync(user5): Panic: file mail-index-transaction-update.c: line 19 (mail_index_transaction_lookup): assertion failed: (seq >= t->first_new_seq && seq <= t->last_new_seq) dsync(user5): Error: Raw backtrace: /usr/local/lib/dovecot/libdovecot.so.0(+0x6889a) [0x7f2ab375489a] -> /usr/local/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x32) [0x7f2ab37549a2] -> /usr/local/lib/dovecot/libdovecot.so.0(i_error+0) [0x7f2ab370e1cf] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc0287) [0x7f2ab3a7d287] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xc3145) [0x7f2ab3a80145] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_decision_state_update+0xb6) [0x7f2ab3a6fb06] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_cache_lookup_headers+0x91) [0x7f2ab3a715e1] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0xa0ac3) [0x7f2ab3a5dac3] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_get_first_header+0x4a) [0x7f2ab3a5e04a] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c021) [0x7f2ab3a59021] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(+0x9c151) [0x7f2ab3a59151] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(index_mail_close+0xf5) [0x7f2ab3a59295] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_save_cancel+0x48) [0x7f2ab3a397c8] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_storage_copy+0x92) [0x7f2ab3a33e32] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_copy+0x5f) [0x7f2ab3a39c2f] -> dsync() [0x42f750] -> dsync(dsync_brain_sync_mails+0x459) [0x42e9c9] -> dsync(dsync_brain_run+0x2a1) [0x42ac51] -> dsync() [0x42876f] -> dsync() [0x411c97] -> dsync(doveadm_mail_try_run+0x238) [0x4120a8] -> dsync(main+0x3d1) [0x41aaa1] -> /lib64/libc.so.6(__libc_start_main+0xfd) [0x7f2ab3376d1d] -> dsync() [0x411419] Regards, Gilles. From fernando.figaro at uol.com.br Sun Feb 9 17:32:48 2014 From: fernando.figaro at uol.com.br (fernando.figaro at uol.com.br) Date: Sun, 09 Feb 2014 15:32:48 -0200 Subject: [Dovecot] possible quota bug ? In-Reply-To: 56C204D0-CDE1-4CD2-A96F-BBAC792DD952@iki.fi References: 52d6c12d677f0_6aff11311301288@a4-weasel5.tmail <52eac45a9cc88_4ee222883073570@a4-weasel3.mail>56C204D0-CDE1-4CD2-A96F-BBAC792DD952@iki.fi Message-ID: <52f7bbc019275_69938ee20342597c@a4-weasel7.mail> Hi Timo, I'm posting more info about this issue: Sent a message from gmail, delivered via lmtp/lda/sieve -rw------- 1 vmail vmail 1187 Feb 9 15:14 1391966051.M730051P32575.LAB-STO-V-01,S=2392,W=2440 The message was compressed (gz) Maildirsize: 1073741824S 51505 31 2392 1 Move message from INBOX to TRASH Feb 9 15:15:45 LAB-LMB-V-01 dovecot: imap(xxx): copy from INBOX: box=INBOX.Trash, uid=27, msgid=, size=1187 Feb 9 15:15:45 LAB-LMB-V-01 dovecot: imap(xxx): expunge: box=INBOX, uid=32, msgid=, size=2392 Maildirsize: 1073741824S 51505 31 2392 1 1187 1 -2392 -1 ? De: tss at iki.fi Enviada: Sexta-feira, 7 de Fevereiro de 2014 15:07 Para: dovecot at dovecot.org Assunto: [Dovecot] possible quota bug ? On 30.1.2014, at 16.30, fernando.figaro at uol.com.br wrote: > I was researching deeper this issue, activated debug logs and when I move a message from one folder to another the message size is different > > Jan 30 18:48:07 imap(xxx at xxx): Info: copy from INBOX: box=INBOX.Sent, uid=17, msgid=<5520ed0fedee4e3386d08c98d249ad31 at lab.imap>, size=1048 > Jan 30 18:48:07 imap(xxx at xxx): Info: expunge: box=INBOX, uid=3, msgid=<5520ed0fedee4e3386d08c98d249ad31 at lab.imap>, size=1898 > > This is exactly the sizes I see in the maildirsize. But I think these values should be equals. Yes, they should be equal. I don't know why they wouldn't be. Do your Maildir filenames contain the S=1898 (i.e. the uncompressed size)? Are you delivering mails via Dovecot LDA/LMTP? > > 1073741824S > 2136 1 > 1048 1 > -1898 -1 > > Att > Fernando > > > De: fernando.figaro at uol.com.br > Enviada: Quarta-feira, 15 de Janeiro de 2014 15:11 > Para: dovecot at dovecot.org > Assunto: [Dovecot] possible quota bug ? > > Hi, > > I'm using dovecot 2.2.5 with quota (maildir backend), zlib and expunge plugins. > > When I list maildirsize file, I get: > > 1073741824S > 17952 16 > > If I receive a new message (example: 1204 bytes compressed and 2524 bytes plain text), the quota file is write correctly (2524 1 entry). When I move the message to trash folder (or between user custom folders) the file have wrong entries: > > 1073741824S > 17952 16 > 2524 1 > 1204 1 (this is the size of the compressed message) > -2524 -1 > > I coudn't find any relation with the config settings causing this problem and checked the changelog since 2.2.5. Had someone had this same problem? > > Thanks, > Fernando > From tss at iki.fi Sun Feb 9 23:25:06 2014 From: tss at iki.fi (Timo Sirainen) Date: Sun, 9 Feb 2014 18:25:06 -0500 Subject: [Dovecot] New global ACL mailbox pattern feature in HG In-Reply-To: <20140207222150.GA14954@nihlus.leuxner.net> References: <20140128072932.GA27627@nihlus.leuxner.net> <20140130102315.GA21185@nihlus.leuxner.net> <20140207222150.GA14954@nihlus.leuxner.net> Message-ID: On 7.2.2014, at 17.21, Thomas Leuxner wrote: > * Timo Sirainen 2014.02.07 21:37: > >>> $ doveadm mailbox create -u tlx at leuxner.net "Shops/Test" >>> doveadm(tlx at leuxner.net): Panic: file acl-global-file.c: line 163 (acl_global_file_find_rights): assertion failed: (file->last_refresh_time != 0) >> >> Fixed: http://hg.dovecot.org/dovecot-2.2/rev/c69ca1f5bc34 > > Crash is gone. Thanks. > > Public/* group=PublicMailboxAdmins lrwsik > > yields an error (Public/ Namespace) while 'Public*' works: > $ doveadm mailbox create -u tlx at leuxner.net "Public/Test" > $ doveadm(tlx at leuxner.net): Error: Can't create mailbox Public/Test: Permission denied I think that's correct behavior? The "k" right needs to be for the parent "Public", while Public/* only matches its children. From craig.dovecot at noboost.org Mon Feb 10 00:25:35 2014 From: craig.dovecot at noboost.org (craig.dovecot at noboost.org) Date: Mon, 10 Feb 2014 11:25:35 +1100 Subject: [Dovecot] Sieve - Not showing new emails in Thunderbird? Message-ID: <20140210002535.GA28278@noboost.org> Hi, Issue: Sieve works perfectly and does deliver the mail to the correct mail directories. However Thunderbird doesn't detect the new email, until the user clicks on the folder and then all of a sudden it shows the newly detected emails. Perhaps this is a task for the Thunderbird forums? (Thunderbird 24.2.0) Server Side: * CentOS release 6.3 (Final) * dovecot-2.0.9-7.el6.x86_64 * dovecot-pigeonhole-2.0.9-7.el6.x86_64 * postfix-2.6.6-2.2.el6_1.x86_64 * Server Sieve Settings: mail_location = maildir:~/Maildir plugin { sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_vacation_default_period = 10d sieve_vacation_max_period = 30d sieve_vacation_min_period = 1h } * Client App: - Thunderbird 24.2.0 * Userlevel config; File: ~/.dovecot.sieve require "fileinto"; if address :is "to" "sysadmin at example.com" { fileinto "sysadmin"; } elsif address :is "to" "root@" { fileinto "sysadmin"; } elsif address :is "from" "root@" { fileinto "sysadmin"; } cya Craig From skdovecot at smail.inf.fh-brs.de Mon Feb 10 06:12:32 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 10 Feb 2014 07:12:32 +0100 (CET) Subject: [Dovecot] Sieve - Not showing new emails in Thunderbird? In-Reply-To: <20140210002535.GA28278@noboost.org> References: <20140210002535.GA28278@noboost.org> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 10 Feb 2014, craig.dovecot at noboost.org wrote: > mail directories. However Thunderbird doesn't detect the new email, > until the user clicks on the folder and then all of a sudden it shows > the newly detected emails. Perhaps this is a task for the Thunderbird Is Thunderbird configured to detect changes in those folders? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvht0HD1/YhP6VMHAQLrDAf+OML7afu7LXzTZoLET6dN7k4T2cSw7kYz dykSVuE5rbLOmr+LkYMmTad2aXUY4orPeRI6181TVnWAFAhVImpjgQdpKI0hQwjj ge6tjIQq3p+DWq8c3l1mO+tBOK2VU8e/CQ1OfvK8FmWlj5DQCZj3PxspZ7a/O1u/ YegxWzzcxjj7LjKX5vsKHpCm68degk/jTNTD46AMubb63m+1MZQcCrZeNnu23//h BcciTNBN7UDXGyFzqNUyJqOzR57xeOZ+2JkFdQY+MviBaWEyb7c2m6vXdbh3to3q jNX76EyDEZL7aBSzzNb933o5+G9ED7yBNWgn4fqsg5p/jLMi10pO7g== =KQCA -----END PGP SIGNATURE----- From tlx at leuxner.net Mon Feb 10 07:51:52 2014 From: tlx at leuxner.net (Thomas Leuxner) Date: Mon, 10 Feb 2014 08:51:52 +0100 Subject: [Dovecot] New global ACL mailbox pattern feature in HG In-Reply-To: References: <20140128072932.GA27627@nihlus.leuxner.net> <20140130102315.GA21185@nihlus.leuxner.net> <20140207222150.GA14954@nihlus.leuxner.net> Message-ID: <20140210075152.GA6923@nihlus.leuxner.net> * Timo Sirainen 2014.02.10 00:25: > > Public/* group=PublicMailboxAdmins lrwsik > > > > yields an error (Public/ Namespace) while 'Public*' works: > > $ doveadm mailbox create -u tlx at leuxner.net "Public/Test" > > $ doveadm(tlx at leuxner.net): Error: Can't create mailbox Public/Test: Permission denied > > I think that's correct behavior? The "k" right needs to be for the parent "Public", while Public/* only matches its children. I see. Wouldn't "Public" also let's say undesirably apply to mailboxes in the user context then, e.g. someone creates a "Public" folder in his INBOX? I'm asking as I only want to apply the ACL to a namespace. Regards Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From frank at frank.uvena.de Mon Feb 10 09:14:30 2014 From: frank at frank.uvena.de (Frank Lanitz) Date: Mon, 10 Feb 2014 10:14:30 +0100 Subject: [Dovecot] Looking for HowTo Postifx, Dovecot and PostgreSQL Message-ID: <20140210101430.87187001e1671d6a3c5ffe53@frank.uvena.de> Hi folks, I know it's a bit a n00bish question, but I'm a little confused about this many different ways on setting up dovecot with postfix and using a PostgreSQL backend for virtual hosts. I've found this one quiet helpful: http://wiki2.dovecot.org/HowTo/DovecotPostgresql even it seems to be little outdated for recent versions of dovecot (the auth part of dovecot.conf). Also its lagging some inforamtions I wasn't able to find on my own (e.g. how to set password for a imap account). Can somebody give me a hint for a up-2-date howto for some noob as I am? Cheers, Frank -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From ffiore at babel.it Mon Feb 10 10:39:39 2014 From: ffiore at babel.it (Francesco Fiore) Date: Mon, 10 Feb 2014 11:39:39 +0100 Subject: [Dovecot] Segmentation fault in libdovecot-storage.so Message-ID: <52F8AC6B.3030300@babel.it> Hi, I obtain continuosly segmentation fault of processes pop3 and imap, with version 2.2.10. This is the error for the pop3 process (but for imap is is the same): 2014-02-10 11:06:22 pop3(xxxxxxx at yyyyyyyy.zz): Fatal: master: service(pop3): child 23804 killed with signal 11 (core dumped) This is the kernel log: Feb 10 11:06:22 pecpop5 kernel: pop3[23804]: segfault at 7fa42a3f4070 ip 00007fa41ff849cd sp 00007fff78dedfa0 error 4 in libdovecot-storage.so.0.0.0[7fa41fefa000+d9000] ------------------------------------------------------- # /opt/dovecot-2.2.10/sbin/dovecot --version 2.2.10 ------------------------------------------------------- # cat /etc/redhat-release CentOS release 6.4 (Final) ------------------------------------------------------- # uname -r 2.6.32-358.23.2.el6.x86_64 ------------------------------------------------------- Filesystem: NFS ------------------------------------------------------- # /opt/dovecot-2.2.10/sbin/dovecot -n # 2.2.10: /opt/dovecot-2.2.10/etc/dovecot/dovecot.conf # OS: Linux 2.6.32-358.23.2.el6.x86_64 x86_64 CentOS release 6.4 (Final) auth_debug = yes auth_master_user_separator = * auth_username_format = default_vsz_limit = 512 M disable_plaintext_auth = no dotlock_use_excl = no first_valid_gid = 101 first_valid_uid = 102 imap_id_send = import_environment = TZ info_log_path = /var/log/dovecot.log log_path = /var/log/dovecot.log log_timestamp = "%Y-%m-%d %H:%M:%S " mail_fsync = always mail_gid = 101 mail_location = maildir:%h/Maildir mail_max_userip_connections = 50 mail_nfs_index = yes mail_nfs_storage = yes mail_plugins = quota expire fts fts_lucene mail_log notify mail_uid = 102 maildir_broken_filename_sizes = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave mbox_write_locks = fcntl mmap_disable = yes namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = INBOX. separator = . subscriptions = yes type = private } passdb { args = /opt/dovecot-2.2.10/etc/dovecot/passwd.masterusers driver = passwd-file master = yes } passdb { args = /opt/dovecot-2.2.10/etc/dovecot/dovecot-ldap.conf driver = ldap } passdb { args = /opt/dovecot-2.2.10/etc/dovecot/dovecot-ldap-multiuser.conf driver = ldap master = yes } plugin { fts = lucene fts_lucene = mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size quota = maildir quota_rule2 = INBOX.Trash:storage=+100M } protocols = imap pop3 service anvil { client_limit = 3000 } service auth { client_limit = 4096 unix_listener auth-userdb { mode = 0600 } } service imap-login { inet_listener imap { address = 10.11.47.49 port = 143 } inet_listener imaps { address = 10.11.47.49 port = 993 ssl = yes } process_limit = 2500 process_min_avail = 5 } service imap { drop_priv_before_exec = yes process_limit = 2500 process_min_avail = 5 } service managesieve-login { inet_listener sieve { port = 4190 } process_min_avail = 0 service_count = 1 vsz_limit = 64 M } service managesieve { drop_priv_before_exec = yes process_limit = 1024 } service pop3-login { inet_listener pop3 { address = 10.11.47.49 port = 110 } inet_listener pop3s { address = 10.11.47.49 port = 995 ssl = yes } process_limit = 300 process_min_avail = 5 } service pop3 { drop_priv_before_exec = yes process_limit = 300 process_min_avail = 5 } ssl_cert = decisions = 0x7f35307ed04c
p = 0x7f35337ed04c
names = end = 0x7f355e7ed040
orig_key = 0x7f35155e8715 "I\211\303L\213L$0L\213D$(H\213|$ H\213t$\030H\213T$\020H\213L$\bH\213\004$H\203\304HA\377\343ffffff.\017\037\204" fidx = new_fields_count = dec = max_drop_time = 1388530800 offset = 64 i = #1 0x00007f351537c664 in mail_cache_open_and_verify (cache=0xf16740) at mail-cache.c:497 ret = 1 #2 0x00007f351537fe4c in mail_cache_field_exists (view=0xf16110, seq=, field=) at mail-cache-lookup.c:345 data = __FUNCTION__ = "mail_cache_field_exists" #3 0x00007f351537ff64 in mail_cache_lookup_field (view=0xf16110, dest_buf=0x7fff96c80030, seq=52, field_idx=0) at mail-cache-lookup.c:413 field_def = iter = {view = 0x7f3500000001, remap_counter = 0, seq = 0, rec = 0x1, pos = 355448944, rec_size = 32565, offset = 2048, trans_next_idx = 0, stop = 0, failed = 0, memory_appends_checked = 0, disk_appends_checked = 0} field = {field_idx = 15818688, size = 0, data = 0x0, offset = 52} ret = #4 0x00007f3515367999 in index_mail_cache_lookup_field (mail=0xf21910, buf=, field_idx=) at index-mail.c:68 ret = -1765278176 #5 0x00007f35153685c5 in index_mail_get_fixed_field (mail=0xf21910, field=, data=, data_size=4) at index-mail.c:130 field_idx = 0 buf = {data = 0xf21b14, used = 0, priv = {0xf21b14, 0x0, 0x4, 0x0, 0x0}} __FUNCTION__ = "index_mail_get_fixed_field" #6 0x00007f3515368843 in index_mail_update_access_parts (mail=0xf21910) at index-mail.c:1385 _mail = 0xf21910 data = 0xf21a80 cache_fields = 0xf164a0 cache_view = 0xf16110 hdr = input = 0x7f35150a0227 #7 0x00007f3515368a56 in index_mail_set_seq (_mail=0xf21910, seq=52, saving=) at index-mail.c:1521 mail = 0xf21910 #8 0x00007f351536e72b in search_more_with_mail (ctx=0xf1f620, mail_r=0x7fff96c80190) at index-search.c:1507 _ctx = 0xf1f620 box = 0xf12030 cost2 = match = ret = -1 imail = 0xf21910 cost1 = 0 #9 search_more_with_prefetching (ctx=0xf1f620, mail_r=0x7fff96c80190) at index-search.c:1579 _data_stack_cur_id = 4 ret = mail = 0xf21910 mails = ---Type to continue, or q to quit--- #10 search_more (ctx=0xf1f620, mail_r=0x7fff96c80190) at index-search.c:1650 imail = ret = -1765278176 #11 0x00007f351536ee28 in index_storage_search_next_nonblock (_ctx=0xf1f620, mail_r=0xf0f9a8, tryagain_r=0x7fff96c801ff) at index-search.c:1674 ctx = 0xf1f620 mail = mailp = seq = ret = #12 0x00007f3515348507 in mailbox_search_next_nonblock (ctx=0xf1f620, mail_r=0xf0f9a8, tryagain_r=) at mail-storage.c:1787 box = #13 0x00007f3515348566 in mailbox_search_next (ctx=0xf1f620, mail_r=0xf0f9a8) at mail-storage.c:1773 tryagain = false #14 0x0000000000418a0e in imap_fetch_more_int (ctx=0xf0f948, cancel=false) at imap-fetch.c:479 state = 0xf0f998 client = 0xf0efb0 handlers = 0xf0fc78 count = 5 ret = __FUNCTION__ = "imap_fetch_more_int" #15 0x0000000000418b61 in imap_fetch_more (ctx=0xf0f948, cmd=0xf0f810) at imap-fetch.c:556 ret = __FUNCTION__ = "imap_fetch_more" #16 0x000000000040d75d in cmd_fetch (cmd=0xf0f810) at cmd-fetch.c:284 client = 0xf0efb0 ctx = 0xf0f948 args = 0xefaa38 next_arg = list_arg = 0x0 search_args = 0x0 qresync_args = {qresync_sample_seqset = 0xf0f7f0, qresync_sample_uidset = 0x7f35150ae158} messageset = 0xefaba0 "52:84" send_vanished = ret = #17 0x0000000000416fbd in command_exec (cmd=0xf0f810) at imap-commands.c:158 hook = 0xef80f0 ret = #18 0x00000000004160e0 in client_command_input (cmd=0xf0f810) at imap-client.c:780 client = 0xf0efb0 command = __FUNCTION__ = "client_command_input" #19 0x00000000004161cd in client_command_input (cmd=0xf0f810) at imap-client.c:841 client = 0xf0efb0 command = __FUNCTION__ = "client_command_input" #20 0x000000000041644d in client_handle_next_command (client=0xf0efb0) at imap-client.c:879 No locals. #21 client_handle_input (client=0xf0efb0) at imap-client.c:891 _data_stack_cur_id = 3 ret = false remove_io = false handled_commands = false __FUNCTION__ = "client_handle_input" #22 0x00000000004167bf in client_input (client=0xf0efb0) at imap-client.c:933 cmd = output = 0xf08100 ---Type to continue, or q to quit--- bytes = 77 __FUNCTION__ = "client_input" #23 0x00007f351509b336 in io_loop_call_io (io=0xf081d0) at ioloop.c:388 ioloop = 0xef7720 t_id = 2 #24 0x00007f351509c3a7 in io_loop_handler_run (ioloop=) at ioloop-epoll.c:220 ctx = 0xef83d0 events = event = 0xef9230 list = 0xef9e00 io = tv = {tv_sec = 1799, tv_usec = 999407} msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #25 0x00007f351509b2a8 in io_loop_run (ioloop=0xef7720) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #26 0x00007f3515049f73 in master_service_run (service=0xef75b0, callback=) at master-service.c:566 No locals. #27 0x000000000041fd07 in main (argc=1, argv=0xef7390) at main.c:400 set_roots = {0x427c60, 0x0} login_set = {auth_socket_path = 0xeef060 "\210\360", , postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x41ff00 , failure_callback = 0x41fea0 , request_auth_token = 1} service_flags = storage_service_flags = username = c = Thanks Francesco -- Documento senza titolo *Francesco Fiore* System Engineer Babel - una business unit di Par-Tec S.p.A. *T:* 06.9826.9600 *M:* 338.756.9180 *F:* 06.9826.9680 P.zza S.Benedetto da Norcia, 33 - 00040 Pomezia (Roma) ------------------------------------------------------------------------ CONFIDENZIALE: Questo messaggio ed i suoi allegati sono di carattere confidenziale per i destinatari in indirizzo. E' vietato l'inoltro non autorizzato a destinatari diversi da quelli indicati nel messaggio originale. Se ricevuto per errore, l'uso del contenuto ? proibito; si prega di comunicarlo al mittente e cancellarlo immediatamente. -------------- next part -------------- A non-text attachment was scrubbed... Name: logo.gif Type: image/gif Size: 1983 bytes Desc: not available URL: From madduck at madduck.net Mon Feb 10 10:47:47 2014 From: madduck at madduck.net (martin f krafft) Date: Mon, 10 Feb 2014 11:47:47 +0100 Subject: [Dovecot] Looking for HowTo Postifx, Dovecot and PostgreSQL In-Reply-To: <20140210101430.87187001e1671d6a3c5ffe53@frank.uvena.de> References: <20140210101430.87187001e1671d6a3c5ffe53@frank.uvena.de> Message-ID: <20140210104747.GA9875@albatross.lehel.madduck.net> also sprach Frank Lanitz [2014-02-10 10:14 +0100]: > I know it's a bit a n00bish question, but I'm a little confused about > this many different ways on setting up dovecot with postfix and using a > PostgreSQL backend for virtual hosts. I've found this one quiet helpful: > http://wiki2.dovecot.org/HowTo/DovecotPostgresql > even it seems to be little outdated for recent versions of dovecot (the > auth part of dovecot.conf). Also its lagging some inforamtions I wasn't > able to find on my own (e.g. how to set password for a imap account). I suggest to have a look at http://vmm.localdomain.org/index.html -- martin | http://madduck.net/ | http://two.sentenc.es/ "if I can't dance, i don't want to be part of your revolution." - emma goldman spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1107 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From frank at frank.uvena.de Mon Feb 10 10:56:39 2014 From: frank at frank.uvena.de (Frank Lanitz) Date: Mon, 10 Feb 2014 11:56:39 +0100 Subject: [Dovecot] Looking for HowTo Postifx, Dovecot and PostgreSQL In-Reply-To: <20140210104747.GA9875@albatross.lehel.madduck.net> References: <20140210101430.87187001e1671d6a3c5ffe53@frank.uvena.de> <20140210104747.GA9875@albatross.lehel.madduck.net> Message-ID: <20140210115639.f0617a331dc4b6fdcd0728cd@frank.uvena.de> On Mon, 10 Feb 2014 11:47:47 +0100 martin f krafft wrote: > also sprach Frank Lanitz [2014-02-10 10:14 > +0100]: > > I know it's a bit a n00bish question, but I'm a little confused > > about this many different ways on setting up dovecot with postfix > > and using a PostgreSQL backend for virtual hosts. I've found this > > one quiet helpful: http://wiki2.dovecot.org/HowTo/DovecotPostgresql > > even it seems to be little outdated for recent versions of dovecot > > (the auth part of dovecot.conf). Also its lagging some inforamtions > > I wasn't able to find on my own (e.g. how to set password for a > > imap account). > > I suggest to have a look at http://vmm.localdomain.org/index.html Looks nice -- any experince using it with tine20 later? -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From ffiore at babel.it Mon Feb 10 10:58:33 2014 From: ffiore at babel.it (Francesco Fiore) Date: Mon, 10 Feb 2014 11:58:33 +0100 Subject: [Dovecot] Segmentation fault in libdovecot-storage.so Message-ID: <52F8B0D9.4010308@babel.it> Hi, I obtain continuosly segmentation fault of processes pop3 and imap, with version 2.2.10. This is the error for the pop3 process (but for imap is is the same): 2014-02-10 11:06:22 pop3(xxxxxxx at yyyyyyyy.zz): Fatal: master: service(pop3): child 23804 killed with signal 11 (core dumped) This is the kernel log: Feb 10 11:06:22 pecpop5 kernel: pop3[23804]: segfault at 7fa42a3f4070 ip 00007fa41ff849cd sp 00007fff78dedfa0 error 4 in libdovecot-storage.so.0.0.0[7fa41fefa000+d9000] ------------------------------------------------------- # /opt/dovecot-2.2.10/sbin/dovecot --version 2.2.10 ------------------------------------------------------- # cat /etc/redhat-release CentOS release 6.4 (Final) ------------------------------------------------------- # uname -r 2.6.32-358.23.2.el6.x86_64 ------------------------------------------------------- Filesystem: NFS ------------------------------------------------------- # /opt/dovecot-2.2.10/sbin/dovecot -n # 2.2.10: /opt/dovecot-2.2.10/etc/dovecot/dovecot.conf # OS: Linux 2.6.32-358.23.2.el6.x86_64 x86_64 CentOS release 6.4 (Final) auth_debug = yes auth_master_user_separator = * auth_username_format = default_vsz_limit = 512 M disable_plaintext_auth = no dotlock_use_excl = no first_valid_gid = 101 first_valid_uid = 102 imap_id_send = import_environment = TZ info_log_path = /var/log/dovecot.log log_path = /var/log/dovecot.log log_timestamp = "%Y-%m-%d %H:%M:%S " mail_fsync = always mail_gid = 101 mail_location = maildir:%h/Maildir mail_max_userip_connections = 50 mail_nfs_index = yes mail_nfs_storage = yes mail_plugins = quota expire fts fts_lucene mail_log notify mail_uid = 102 maildir_broken_filename_sizes = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave mbox_write_locks = fcntl mmap_disable = yes namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = INBOX. separator = . subscriptions = yes type = private } passdb { args = /opt/dovecot-2.2.10/etc/dovecot/passwd.masterusers driver = passwd-file master = yes } passdb { args = /opt/dovecot-2.2.10/etc/dovecot/dovecot-ldap.conf driver = ldap } passdb { args = /opt/dovecot-2.2.10/etc/dovecot/dovecot-ldap-multiuser.conf driver = ldap master = yes } plugin { fts = lucene fts_lucene = mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size quota = maildir quota_rule2 = INBOX.Trash:storage=+100M } protocols = imap pop3 service anvil { client_limit = 3000 } service auth { client_limit = 4096 unix_listener auth-userdb { mode = 0600 } } service imap-login { inet_listener imap { address = 10.11.47.49 port = 143 } inet_listener imaps { address = 10.11.47.49 port = 993 ssl = yes } process_limit = 2500 process_min_avail = 5 } service imap { drop_priv_before_exec = yes process_limit = 2500 process_min_avail = 5 } service managesieve-login { inet_listener sieve { port = 4190 } process_min_avail = 0 service_count = 1 vsz_limit = 64 M } service managesieve { drop_priv_before_exec = yes process_limit = 1024 } service pop3-login { inet_listener pop3 { address = 10.11.47.49 port = 110 } inet_listener pop3s { address = 10.11.47.49 port = 995 ssl = yes } process_limit = 300 process_min_avail = 5 } service pop3 { drop_priv_before_exec = yes process_limit = 300 process_min_avail = 5 } ssl_cert = decisions = 0x7f35307ed04c
p = 0x7f35337ed04c
names = end = 0x7f355e7ed040
orig_key = 0x7f35155e8715 "I\211\303L\213L$0L\213D$(H\213|$ H\213t$\030H\213T$\020H\213L$\bH\213\004$H\203\304HA\377\343ffffff.\017\037\204" fidx = new_fields_count = dec = max_drop_time = 1388530800 offset = 64 i = #1 0x00007f351537c664 in mail_cache_open_and_verify (cache=0xf16740) at mail-cache.c:497 ret = 1 #2 0x00007f351537fe4c in mail_cache_field_exists (view=0xf16110, seq=, field=) at mail-cache-lookup.c:345 data = __FUNCTION__ = "mail_cache_field_exists" #3 0x00007f351537ff64 in mail_cache_lookup_field (view=0xf16110, dest_buf=0x7fff96c80030, seq=52, field_idx=0) at mail-cache-lookup.c:413 field_def = iter = {view = 0x7f3500000001, remap_counter = 0, seq = 0, rec = 0x1, pos = 355448944, rec_size = 32565, offset = 2048, trans_next_idx = 0, stop = 0, failed = 0, memory_appends_checked = 0, disk_appends_checked = 0} field = {field_idx = 15818688, size = 0, data = 0x0, offset = 52} ret = #4 0x00007f3515367999 in index_mail_cache_lookup_field (mail=0xf21910, buf=, field_idx=) at index-mail.c:68 ret = -1765278176 #5 0x00007f35153685c5 in index_mail_get_fixed_field (mail=0xf21910, field=, data=, data_size=4) at index-mail.c:130 field_idx = 0 buf = {data = 0xf21b14, used = 0, priv = {0xf21b14, 0x0, 0x4, 0x0, 0x0}} __FUNCTION__ = "index_mail_get_fixed_field" #6 0x00007f3515368843 in index_mail_update_access_parts (mail=0xf21910) at index-mail.c:1385 _mail = 0xf21910 data = 0xf21a80 cache_fields = 0xf164a0 cache_view = 0xf16110 hdr = input = 0x7f35150a0227 #7 0x00007f3515368a56 in index_mail_set_seq (_mail=0xf21910, seq=52, saving=) at index-mail.c:1521 mail = 0xf21910 #8 0x00007f351536e72b in search_more_with_mail (ctx=0xf1f620, mail_r=0x7fff96c80190) at index-search.c:1507 _ctx = 0xf1f620 box = 0xf12030 cost2 = match = ret = -1 imail = 0xf21910 cost1 = 0 #9 search_more_with_prefetching (ctx=0xf1f620, mail_r=0x7fff96c80190) at index-search.c:1579 _data_stack_cur_id = 4 ret = mail = 0xf21910 mails = ---Type to continue, or q to quit--- #10 search_more (ctx=0xf1f620, mail_r=0x7fff96c80190) at index-search.c:1650 imail = ret = -1765278176 #11 0x00007f351536ee28 in index_storage_search_next_nonblock (_ctx=0xf1f620, mail_r=0xf0f9a8, tryagain_r=0x7fff96c801ff) at index-search.c:1674 ctx = 0xf1f620 mail = mailp = seq = ret = #12 0x00007f3515348507 in mailbox_search_next_nonblock (ctx=0xf1f620, mail_r=0xf0f9a8, tryagain_r=) at mail-storage.c:1787 box = #13 0x00007f3515348566 in mailbox_search_next (ctx=0xf1f620, mail_r=0xf0f9a8) at mail-storage.c:1773 tryagain = false #14 0x0000000000418a0e in imap_fetch_more_int (ctx=0xf0f948, cancel=false) at imap-fetch.c:479 state = 0xf0f998 client = 0xf0efb0 handlers = 0xf0fc78 count = 5 ret = __FUNCTION__ = "imap_fetch_more_int" #15 0x0000000000418b61 in imap_fetch_more (ctx=0xf0f948, cmd=0xf0f810) at imap-fetch.c:556 ret = __FUNCTION__ = "imap_fetch_more" #16 0x000000000040d75d in cmd_fetch (cmd=0xf0f810) at cmd-fetch.c:284 client = 0xf0efb0 ctx = 0xf0f948 args = 0xefaa38 next_arg = list_arg = 0x0 search_args = 0x0 qresync_args = {qresync_sample_seqset = 0xf0f7f0, qresync_sample_uidset = 0x7f35150ae158} messageset = 0xefaba0 "52:84" send_vanished = ret = #17 0x0000000000416fbd in command_exec (cmd=0xf0f810) at imap-commands.c:158 hook = 0xef80f0 ret = #18 0x00000000004160e0 in client_command_input (cmd=0xf0f810) at imap-client.c:780 client = 0xf0efb0 command = __FUNCTION__ = "client_command_input" #19 0x00000000004161cd in client_command_input (cmd=0xf0f810) at imap-client.c:841 client = 0xf0efb0 command = __FUNCTION__ = "client_command_input" #20 0x000000000041644d in client_handle_next_command (client=0xf0efb0) at imap-client.c:879 No locals. #21 client_handle_input (client=0xf0efb0) at imap-client.c:891 _data_stack_cur_id = 3 ret = false remove_io = false handled_commands = false __FUNCTION__ = "client_handle_input" #22 0x00000000004167bf in client_input (client=0xf0efb0) at imap-client.c:933 cmd = output = 0xf08100 ---Type to continue, or q to quit--- bytes = 77 __FUNCTION__ = "client_input" #23 0x00007f351509b336 in io_loop_call_io (io=0xf081d0) at ioloop.c:388 ioloop = 0xef7720 t_id = 2 #24 0x00007f351509c3a7 in io_loop_handler_run (ioloop=) at ioloop-epoll.c:220 ctx = 0xef83d0 events = event = 0xef9230 list = 0xef9e00 io = tv = {tv_sec = 1799, tv_usec = 999407} msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #25 0x00007f351509b2a8 in io_loop_run (ioloop=0xef7720) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #26 0x00007f3515049f73 in master_service_run (service=0xef75b0, callback=) at master-service.c:566 No locals. #27 0x000000000041fd07 in main (argc=1, argv=0xef7390) at main.c:400 set_roots = {0x427c60, 0x0} login_set = {auth_socket_path = 0xeef060 "\210\360", , postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x41ff00 , failure_callback = 0x41fea0 , request_auth_token = 1} service_flags = storage_service_flags = username = c = Thanks Francesco From alex.hha at gmail.com Mon Feb 10 10:58:41 2014 From: alex.hha at gmail.com (Alex Domoradov) Date: Mon, 10 Feb 2014 12:58:41 +0200 Subject: [Dovecot] Segmentation fault In-Reply-To: References: <0D4799D0-13D4-4A77-A386-994E946C516C@iki.fi> <52F553BC.3050907@thelounge.net> Message-ID: Any update? On Sat, Feb 8, 2014 at 4:09 PM, Alex Domoradov wrote: > I have installed debug packages excluding sqlite and dovecot and tried > one more time > > # echo "/var/core/%p" > /proc/sys/kernel/core_pattern > # doveconf -n > # 2.2.10: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) > Segmentation fault (core dumped) > > # gdb /usr/bin/doveconf /var/core/23290 > GNU gdb (GDB) Red Hat Enterprise Linux (7.2-60.el6_4.1) > Copyright (C) 2010 Free Software Foundation, Inc. > License GPLv3+: GNU GPL version 3 or later > This is free software: you are free to change and redistribute it. > There is NO WARRANTY, to the extent permitted by law. Type "show copying" > and "show warranty" for details. > This GDB was configured as "x86_64-redhat-linux-gnu". > For bug reporting instructions, please see: > ... > Reading symbols from /usr/bin/doveconf...(no debugging symbols found)...done. > [New Thread 23290] > Reading symbols from /usr/lib64/dovecot/libdovecot.so.0...done. > Loaded symbols for /usr/lib64/dovecot/libdovecot.so.0 > Reading symbols from /lib64/libc-2.12.so...Reading symbols from > /usr/lib/debug/lib64/libc-2.12.so.debug...done. > done. > Loaded symbols for /lib64/libc-2.12.so > Reading symbols from /lib64/libdl-2.12.so...Reading symbols from > /usr/lib/debug/lib64/libdl-2.12.so.debug...done. > done. > Loaded symbols for /lib64/libdl-2.12.so > Reading symbols from /lib64/librt-2.12.so...Reading symbols from > /usr/lib/debug/lib64/librt-2.12.so.debug...done. > done. > Loaded symbols for /lib64/librt-2.12.so > Reading symbols from /lib64/ld-2.12.so...Reading symbols from > /usr/lib/debug/lib64/ld-2.12.so.debug...done. > done. > Loaded symbols for /lib64/ld-2.12.so > Reading symbols from /lib64/libpthread-2.12.so...Reading symbols from > /usr/lib/debug/lib64/libpthread-2.12.so.debug...done. > [Thread debugging using libthread_db enabled] > done. > Loaded symbols for /lib64/libpthread-2.12.so > Reading symbols from /lib64/libnss_files-2.12.so...Reading symbols > from /usr/lib/debug/lib64/libnss_files-2.12.so.debug...done. > done. > Loaded symbols for /lib64/libnss_files-2.12.so > Core was generated by `doveconf -n'. > Program terminated with signal 11, Segmentation fault. > #0 __strlen_sse2 () at ../sysdeps/x86_64/strlen.S:32 > 32 movdqu (%rdi), %xmm1 > Missing separate debuginfos, use: debuginfo-install dovecot-2.2.10-1.el6.x86_64 > (gdb) bt full > #0 __strlen_sse2 () at ../sysdeps/x86_64/strlen.S:32 > No locals. > #1 0x00007f139828e65d in p_strdup (pool=0x10afab0, str=0x288
0x288 out of bounds>) at strfuncs.c:41 > mem = > len = > #2 0x000000000040528f in config_request_get_strings () > No symbol table info available. > #3 0x000000000040c3ce in config_export_finish () > No symbol table info available. > #4 0x00000000004054d4 in config_dump_human_output () > No symbol table info available. > #5 0x0000000000405dff in config_dump_human () > No symbol table info available. > #6 0x0000000000406bcf in main () > No symbol table info available. > > Is it possible to build debuginfo for the dovecot package? > > On Sat, Feb 8, 2014 at 3:15 PM, Alex Domoradov wrote: >> # gdb --args doveconf -n >> GNU gdb (GDB) Red Hat Enterprise Linux (7.2-60.el6_4.1) >> Copyright (C) 2010 Free Software Foundation, Inc. >> License GPLv3+: GNU GPL version 3 or later >> This is free software: you are free to change and redistribute it. >> There is NO WARRANTY, to the extent permitted by law. Type "show copying" >> and "show warranty" for details. >> This GDB was configured as "x86_64-redhat-linux-gnu". >> For bug reporting instructions, please see: >> ... >> Reading symbols from /usr/bin/doveconf...(no debugging symbols found)...done. >> (gdb) run >> Starting program: /usr/bin/doveconf -n >> [Thread debugging using libthread_db enabled] >> # 2.2.10: /etc/dovecot/dovecot.conf >> # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) >> >> Program received signal SIGSEGV, Segmentation fault. >> 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 >> Missing separate debuginfos, use: debuginfo-install dovecot-2.2.10-1.el6.x86_64 >> (gdb) bt full >> #0 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 >> No symbol table info available. >> #1 0x00007ffff7b9665d in p_strdup (pool=0x6adac0, str=0x288
> 0x288 out of bounds>) at strfuncs.c:41 >> mem = >> len = >> #2 0x000000000040528f in config_request_get_strings () >> No symbol table info available. >> #3 0x000000000040c3ce in config_export_finish () >> No symbol table info available. >> #4 0x00000000004054d4 in config_dump_human_output () >> No symbol table info available. >> #5 0x0000000000405dff in config_dump_human () >> No symbol table info available. >> #6 0x0000000000406bcf in main () >> No symbol table info available. >> >> I have tried to install debug packages but without success >> >> # debuginfo-install dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo for main pkg: 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> bzip2-libs-1.0.5-7.el6_0.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package libcap-2.16-5.5.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> libcom_err-1.41.12-18.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> openssl-1.0.1e-16.el6_5.4.x86_64 >> Could not find debuginfo pkg for dependency package >> openssl-1.0.1e-16.el6_5.4.x86_64 >> Could not find debuginfo pkg for dependency package >> openssl-1.0.1e-16.el6_5.4.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> 1:dovecot-2.2.10-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package expat-2.0.1-11.el6_2.x86_64 >> Could not find debuginfo pkg for dependency package >> krb5-libs-1.10.3-10.el6_4.6.x86_64 >> Could not find debuginfo pkg for dependency package >> krb5-libs-1.10.3-10.el6_4.6.x86_64 >> Could not find debuginfo pkg for dependency package >> krb5-libs-1.10.3-10.el6_4.6.x86_64 >> Could not find debuginfo pkg for dependency package >> krb5-libs-1.10.3-10.el6_4.6.x86_64 >> Could not find debuginfo pkg for dependency package >> krb5-libs-1.10.3-10.el6_4.6.x86_64 >> Could not find debuginfo pkg for dependency package >> openldap-2.4.23-34.el6_5.1.x86_64 >> Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 >> Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >> Could not find debuginfo pkg for dependency package sqlite-3.6.20-1.el6.x86_64 >> Could not find debuginfo pkg for dependency package >> openssl-1.0.1e-16.el6_5.4.x86_64 >> Could not find debuginfo pkg for dependency package >> openssl-1.0.1e-16.el6_5.4.x86_64 >> Could not find debuginfo pkg for dependency package zlib-1.2.3-29.el6.x86_64 >> No debuginfo packages available to install >> >> On Fri, Feb 7, 2014 at 11:44 PM, Reindl Harald wrote: >>> no - a typo in a config does not qualify a segfault at all >>> >>> Am 07.02.2014 22:42, schrieb Alex Domoradov: >>>> Sorry, it was my fault. With "plain" value all works fine. >>>> >>>> Thanks for the help >>>> >>>> On Fri, Feb 7, 2014 at 10:54 PM, Timo Sirainen wrote: >>>>> On 7.2.2014, at 15.22, Timo Sirainen wrote: >>>>> >>>>>>> auth_verbose_passwords = yes >>>>>>> >>>>>> I guess it's related to auth_verbose_passwords setting, but I can't immediately see why it would crash there. >>>>> >>>>> Oh, first I thought there were two settings related to this :) Anyway, the reason is simple: "yes" isn't a valid value here. Either use "plain" or "sha1". Although I suppose "yes" could be an alias for "plain" to make people's life easier. So: >>>>> >>>>> http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb >>>>> http://hg.dovecot.org/dovecot-2.2/rev/27ac53f11f1f >>> From madduck at madduck.net Mon Feb 10 11:07:46 2014 From: madduck at madduck.net (martin f. krafft) Date: Mon, 10 Feb 2014 12:07:46 +0100 Subject: [Dovecot] Looking for HowTo Postifx, Dovecot and PostgreSQL In-Reply-To: <20140210115639.f0617a331dc4b6fdcd0728cd@frank.uvena.de> References: <20140210101430.87187001e1671d6a3c5ffe53@frank.uvena.de> <20140210104747.GA9875@albatross.lehel.madduck.net> <20140210115639.f0617a331dc4b6fdcd0728cd@frank.uvena.de> Message-ID: <20140210110746.GA11544@albatross.lehel.madduck.net> also sprach Frank Lanitz [2014-02-10 11:56 +0100]: > Looks nice -- any experince using it with tine20 later? I have no idea what tine20 is and the website only contains buzzwords, sorry. vmm is pretty flexible how the underlying data representation in pgsql, so you can probably tweak anything. -- martin | http://madduck.net/ | http://two.sentenc.es/ "out of the crooked timber of humanity, no straight thing was ever made." -- imanuel kant spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1107 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From frank at frank.uvena.de Mon Feb 10 13:08:06 2014 From: frank at frank.uvena.de (Frank Lanitz) Date: Mon, 10 Feb 2014 14:08:06 +0100 Subject: [Dovecot] Looking for HowTo Postifx, Dovecot and PostgreSQL In-Reply-To: <20140210110746.GA11544@albatross.lehel.madduck.net> References: <20140210101430.87187001e1671d6a3c5ffe53@frank.uvena.de> <20140210104747.GA9875@albatross.lehel.madduck.net> <20140210115639.f0617a331dc4b6fdcd0728cd@frank.uvena.de> <20140210110746.GA11544@albatross.lehel.madduck.net> Message-ID: <20140210140806.d03a4a10b17c2ef67af692e7@frank.uvena.de> On Mon, 10 Feb 2014 12:07:46 +0100 "martin f. krafft" wrote: > also sprach Frank Lanitz [2014-02-10 11:56 > +0100]: > > Looks nice -- any experince using it with tine20 later? > > I have no idea what tine20 is and the website only contains > buzzwords, sorry. > > vmm is pretty flexible how the underlying data representation in > pgsql, so you can probably tweak anything. Got it up and running and really looks nice. *top* Solved a lot of issues I had with other things. Cheers, Frank -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From crohmann at netcologne.de Mon Feb 10 13:31:37 2014 From: crohmann at netcologne.de (Christian Rohmann) Date: Mon, 10 Feb 2014 14:31:37 +0100 Subject: [Dovecot] Status In-Reply-To: References: Message-ID: <52F8D4B9.9040307@netcologne.de> Hey Timo, hope you are not fully knocked out by the flu? On 04.02.2014 23:13, Timo Sirainen wrote: > - I'm planning on going through Dovecot list's mails this week and make v2.2.11 release Since you sometimes ask for bugs or improvements to take into an upcoming release ... may I nag you again with this idea of self healing the file names / size of zlib compressed maildir files for version >= 2.2.11? Thread title is: "[Dovecot] Size detection/replair does not work with zlib" Regards Christian From skdovecot at smail.inf.fh-brs.de Mon Feb 10 15:42:30 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 10 Feb 2014 16:42:30 +0100 (CET) Subject: [Dovecot] Feature request about Info: Internal login failure (pid=2296 id=17278) (internal failure, 1 successful auths) Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, since some time I'm plagued by internal login failures. With v2.2.10 I got the some additional error, that I should raise the process_limit for the imap service, then I got the hint to raise vsz_limit for the lmtp and imap serverices. These hints are very helpful and are some sort of unique feature of Dovecot - descriptive error messages. Now I have upgraded a Webfrontend behind imapproxy -> Dovecot and get this during a phase in the day, several of messages go to large internal mailing lists and lots of users are connecting/disconnecting via IMAP, POP,& Web: imap: Error: Disconnected from auth server, aborting (client-pid=2296 client-id=17278) imap-login: Info: Internal login failure (pid=2296 id=17278) (internal failure, 1 successful auths) .... . doveadm and to query the userdb [I have some processes that use Dovecot UserDB to query user data, which do not cache its information], & login into IMAP fail as well. Even connecting to the auth-userdb socket reveals no reaction - usually the VERSION prompts immediately. I now suppose that the deault auth_worker_max_count=30 is the culprit, because I query LDAP for passdb and userdb and client_count, but client_limit=0. Would it be possible to add a warning to all limits "that max out"? Or, if such "generic error" occurs, could Dovecot be enabled to dump a list of which limit is used up to which level? Or something like that. Also, I'm surprised to find that the "Internal login failure" is at "Info" level only. Also note: It is very possible that the problem is caused by a client that goes havoc. ====== Just to no trigger the "post your config" reply I give now and then myself: # 2.2.10 (5432b55a2b87): /usr/local/dovecot-2.2.10/etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-amd64 x86_64 Debian 6.0.8 auth_cache_size = 10 M auth_debug = yes auth_mechanisms = plain login auth_verbose = yes base_dir = /var/run/dovecot2.2/ default_vsz_limit = 512 M deliver_log_format = msgid=%m: %$ %p/%w "%f" "%s" dict { acl = pgsql:/usr/local/dovecot-2.2.10/etc/dovecot/dovecot-dict-sql.conf.ext quota = pgsql:/usr/local/dovecot-2.2.10/etc/dovecot/dovecot-dict-sql.conf.ext } instance_name = dovecot2.2 lda_mailbox_autocreate = yes lmtp_save_to_detail_mailbox = yes log_path = /var/log/dovecot/dovecot2.2.log log_timestamp = "%F %H:%M:%S " mail_debug = yes mail_gid = vmail mail_log_prefix = "%Us(%u) [%p]: " mail_max_userip_connections = 0 mail_plugins = " quota notify mail_log zlib acl" mail_shared_explicit_inbox = yes mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave imapflags namespace { list = children location = maildir:%%h/Maildir:INDEX=~/Maildir/shared/%%u prefix = users.%%u. separator = . type = shared } namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /usr/local/dovecot-2.2.10/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { acl = vfile acl_shared_dict = proxy::acl antispam_allow_append_to_spam = yes antispam_backend = spool2dir antispam_spam = SPAM+ReportAsSPAM antispam_spool2dir_notspam = /tmp/spamspool/%%020lu-%%05lu-%u-H antispam_spool2dir_spam = /tmp/spamspool/%%020lu-%%05lu-%u-S antispam_trash = trash;TRASH;Trash;spam;SPAM;Spam;junk;JUNK;Junk;Deleted Items;Deleted Messages;Gel&APY-schte Elemente;Gel&APY-schte Objekte;Junk E-mail;Junk-E-Mail;INBOX.Trash;INBOX.TRASH;INBOX.trash mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size vsize from subject quota = dict:User quota::proxy::quota quota_rule = *:storage=300MB quota_rule2 = Trash:storage=+30M recipient_delimiter = + sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_extensions = +imapflags sieve_max_actions = 0 sieve_quota_max_storage = 3M } protocols = imap pop3 lmtp sieve quota_full_tempfail = yes service auth { unix_listener auth-client { mode = 0766 } unix_listener auth-userdb { mode = 0766 user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = vmail } } service doveadm { unix_listener doveadm-server { mode = 0666 } } service imap-login { process_min_avail = 4 service_count = 0 vsz_limit = 768 M } service imap { process_limit = 10000 vsz_limit = 768 M } service lmtp { vsz_limit = 768 M } service managesieve-login { inet_listener sieve { port = 4190 } inet_listener sieve_deprecated { port = 2000 } } service pop3-login { process_min_avail = 5 service_count = 0 vsz_limit = 512 M } ssl_ca = References: <52F8D4B9.9040307@netcologne.de> Message-ID: <3902A0F9-8EBA-465A-B114-75703BE94FC3@iki.fi> On 10.2.2014, at 7.31, Christian Rohmann wrote: > Hey Timo, > > hope you are not fully knocked out by the flu? I'm all good now, but traveling once again which makes things more difficult. Although I really should make the v2.2.11 release now even if I haven't read through all the mails.. Maybe the airplane will have wifi, lets see. :) > On 04.02.2014 23:13, Timo Sirainen wrote: >> - I'm planning on going through Dovecot list's mails this week and make v2.2.11 release > > Since you sometimes ask for bugs or improvements to take into an > upcoming release ... may I nag you again with this idea of self healing > the file names / size of zlib compressed maildir files for version >= > 2.2.11? That's quite a lot of work for fixing something that shouldn't really be happening in the first place. I think those problems only happen once immediately after enabling zlib plugin and for some reason having the wrong (or missing) S=sizes in maildir filenames? Running http://dovecot.org/tools/maildir-size-fix.pl for all users once should fix that. So I don't really see this worth spending time on. From tss at iki.fi Mon Feb 10 15:44:26 2014 From: tss at iki.fi (Timo Sirainen) Date: Mon, 10 Feb 2014 09:44:26 -0600 Subject: [Dovecot] Segmentation fault In-Reply-To: References: <0D4799D0-13D4-4A77-A386-994E946C516C@iki.fi> <52F553BC.3050907@thelounge.net> Message-ID: Did you try with a) http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb patch which should fix the crash and/or b) Changing auth_verbose_passwords=plain (because "yes" isn't a valid value) On 10.2.2014, at 4.58, Alex Domoradov wrote: > Any update? > > On Sat, Feb 8, 2014 at 4:09 PM, Alex Domoradov wrote: >> I have installed debug packages excluding sqlite and dovecot and tried >> one more time >> >> # echo "/var/core/%p" > /proc/sys/kernel/core_pattern >> # doveconf -n >> # 2.2.10: /etc/dovecot/dovecot.conf >> # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) >> Segmentation fault (core dumped) >> >> # gdb /usr/bin/doveconf /var/core/23290 >> GNU gdb (GDB) Red Hat Enterprise Linux (7.2-60.el6_4.1) >> Copyright (C) 2010 Free Software Foundation, Inc. >> License GPLv3+: GNU GPL version 3 or later >> This is free software: you are free to change and redistribute it. >> There is NO WARRANTY, to the extent permitted by law. Type "show copying" >> and "show warranty" for details. >> This GDB was configured as "x86_64-redhat-linux-gnu". >> For bug reporting instructions, please see: >> ... >> Reading symbols from /usr/bin/doveconf...(no debugging symbols found)...done. >> [New Thread 23290] >> Reading symbols from /usr/lib64/dovecot/libdovecot.so.0...done. >> Loaded symbols for /usr/lib64/dovecot/libdovecot.so.0 >> Reading symbols from /lib64/libc-2.12.so...Reading symbols from >> /usr/lib/debug/lib64/libc-2.12.so.debug...done. >> done. >> Loaded symbols for /lib64/libc-2.12.so >> Reading symbols from /lib64/libdl-2.12.so...Reading symbols from >> /usr/lib/debug/lib64/libdl-2.12.so.debug...done. >> done. >> Loaded symbols for /lib64/libdl-2.12.so >> Reading symbols from /lib64/librt-2.12.so...Reading symbols from >> /usr/lib/debug/lib64/librt-2.12.so.debug...done. >> done. >> Loaded symbols for /lib64/librt-2.12.so >> Reading symbols from /lib64/ld-2.12.so...Reading symbols from >> /usr/lib/debug/lib64/ld-2.12.so.debug...done. >> done. >> Loaded symbols for /lib64/ld-2.12.so >> Reading symbols from /lib64/libpthread-2.12.so...Reading symbols from >> /usr/lib/debug/lib64/libpthread-2.12.so.debug...done. >> [Thread debugging using libthread_db enabled] >> done. >> Loaded symbols for /lib64/libpthread-2.12.so >> Reading symbols from /lib64/libnss_files-2.12.so...Reading symbols >> from /usr/lib/debug/lib64/libnss_files-2.12.so.debug...done. >> done. >> Loaded symbols for /lib64/libnss_files-2.12.so >> Core was generated by `doveconf -n'. >> Program terminated with signal 11, Segmentation fault. >> #0 __strlen_sse2 () at ../sysdeps/x86_64/strlen.S:32 >> 32 movdqu (%rdi), %xmm1 >> Missing separate debuginfos, use: debuginfo-install dovecot-2.2.10-1.el6.x86_64 >> (gdb) bt full >> #0 __strlen_sse2 () at ../sysdeps/x86_64/strlen.S:32 >> No locals. >> #1 0x00007f139828e65d in p_strdup (pool=0x10afab0, str=0x288
> 0x288 out of bounds>) at strfuncs.c:41 >> mem = >> len = >> #2 0x000000000040528f in config_request_get_strings () >> No symbol table info available. >> #3 0x000000000040c3ce in config_export_finish () >> No symbol table info available. >> #4 0x00000000004054d4 in config_dump_human_output () >> No symbol table info available. >> #5 0x0000000000405dff in config_dump_human () >> No symbol table info available. >> #6 0x0000000000406bcf in main () >> No symbol table info available. >> >> Is it possible to build debuginfo for the dovecot package? >> >> On Sat, Feb 8, 2014 at 3:15 PM, Alex Domoradov wrote: >>> # gdb --args doveconf -n >>> GNU gdb (GDB) Red Hat Enterprise Linux (7.2-60.el6_4.1) >>> Copyright (C) 2010 Free Software Foundation, Inc. >>> License GPLv3+: GNU GPL version 3 or later >>> This is free software: you are free to change and redistribute it. >>> There is NO WARRANTY, to the extent permitted by law. Type "show copying" >>> and "show warranty" for details. >>> This GDB was configured as "x86_64-redhat-linux-gnu". >>> For bug reporting instructions, please see: >>> ... >>> Reading symbols from /usr/bin/doveconf...(no debugging symbols found)...done. >>> (gdb) run >>> Starting program: /usr/bin/doveconf -n >>> [Thread debugging using libthread_db enabled] >>> # 2.2.10: /etc/dovecot/dovecot.conf >>> # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) >>> >>> Program received signal SIGSEGV, Segmentation fault. >>> 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 >>> Missing separate debuginfos, use: debuginfo-install dovecot-2.2.10-1.el6.x86_64 >>> (gdb) bt full >>> #0 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 >>> No symbol table info available. >>> #1 0x00007ffff7b9665d in p_strdup (pool=0x6adac0, str=0x288
>> 0x288 out of bounds>) at strfuncs.c:41 >>> mem = >>> len = >>> #2 0x000000000040528f in config_request_get_strings () >>> No symbol table info available. >>> #3 0x000000000040c3ce in config_export_finish () >>> No symbol table info available. >>> #4 0x00000000004054d4 in config_dump_human_output () >>> No symbol table info available. >>> #5 0x0000000000405dff in config_dump_human () >>> No symbol table info available. >>> #6 0x0000000000406bcf in main () >>> No symbol table info available. >>> >>> I have tried to install debug packages but without success >>> >>> # debuginfo-install dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo for main pkg: 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> bzip2-libs-1.0.5-7.el6_0.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package libcap-2.16-5.5.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> libcom_err-1.41.12-18.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> openssl-1.0.1e-16.el6_5.4.x86_64 >>> Could not find debuginfo pkg for dependency package >>> openssl-1.0.1e-16.el6_5.4.x86_64 >>> Could not find debuginfo pkg for dependency package >>> openssl-1.0.1e-16.el6_5.4.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> 1:dovecot-2.2.10-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package expat-2.0.1-11.el6_2.x86_64 >>> Could not find debuginfo pkg for dependency package >>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> openldap-2.4.23-34.el6_5.1.x86_64 >>> Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 >>> Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>> Could not find debuginfo pkg for dependency package sqlite-3.6.20-1.el6.x86_64 >>> Could not find debuginfo pkg for dependency package >>> openssl-1.0.1e-16.el6_5.4.x86_64 >>> Could not find debuginfo pkg for dependency package >>> openssl-1.0.1e-16.el6_5.4.x86_64 >>> Could not find debuginfo pkg for dependency package zlib-1.2.3-29.el6.x86_64 >>> No debuginfo packages available to install >>> >>> On Fri, Feb 7, 2014 at 11:44 PM, Reindl Harald wrote: >>>> no - a typo in a config does not qualify a segfault at all >>>> >>>> Am 07.02.2014 22:42, schrieb Alex Domoradov: >>>>> Sorry, it was my fault. With "plain" value all works fine. >>>>> >>>>> Thanks for the help >>>>> >>>>> On Fri, Feb 7, 2014 at 10:54 PM, Timo Sirainen wrote: >>>>>> On 7.2.2014, at 15.22, Timo Sirainen wrote: >>>>>> >>>>>>>> auth_verbose_passwords = yes >>>>>>>> >>>>>>> I guess it's related to auth_verbose_passwords setting, but I can't immediately see why it would crash there. >>>>>> >>>>>> Oh, first I thought there were two settings related to this :) Anyway, the reason is simple: "yes" isn't a valid value here. Either use "plain" or "sha1". Although I suppose "yes" could be an alias for "plain" to make people's life easier. So: >>>>>> >>>>>> http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb >>>>>> http://hg.dovecot.org/dovecot-2.2/rev/27ac53f11f1f >>>> From develop at adeiaconsulting.it Mon Feb 10 16:48:26 2014 From: develop at adeiaconsulting.it (develop) Date: Mon, 10 Feb 2014 16:48:26 +0000 Subject: [Dovecot] shared folders Message-ID: Hi, I can't access a shared folder , when I try to debug doveadm acl debug -u john.doe shared/ a_shared_mail /inbox I receive this message: doveadm acl debug -u john.doe shared/a_shared_mail/inbox doveadm(john.doe): Error: stat(/home/a_shared_mail/Maildir/.inbox) failed: Permission denied doveadm(john.doe): Error: stat(/home/a_shared_mail/Maildir/.inbox) failed: Permission denied doveadm(john.doe): Error: stat(/home/a_shared_mail/Maildir/.inbox/tmp) failed: Permission denied (euid=1003(john.doe) egid=1004(john.doe) missing +x perm: /home/a_shared_mail/Maildir, dir owned by 1006:1007 mode=0700) doveadm(john.doe): Error: Can't open mailbox shared/a_shared_mail/inbox:Internal error occurred. Refer to server log for more information. [2014-02-10 17:30:42] unfortunately I don't see anything useful in my logs: Feb 10 17:27:59 ip-xx-xx-xxx-xx dovecot: master: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) Feb 10 17:27:59 ip-xx-xx-xxx-xx dovecot: log: Warning: Killed with signal 15 (by pid=1 uid=0 code=kill) Feb 10 17:27:59 ip-xx-xx-xxx-xx dovecot: master: Dovecot v2.0.19 starting up (core dumps disabled) Feb 10 17:30:23 ip-xx-xx-xxx-xx dovecot: auth: Debug: Loading modules from directory: /usr/lib/dovecot/modules/auth Feb 10 17:30:23 ip-xx-xx-xxx-xx dovecot: auth: Debug: Module loaded: /usr/lib/dovecot/modules/auth/libdriver_mysql.so Feb 10 17:30:23 ip-xx-xx-xxx-xx dovecot: auth: Debug: auth client connected (pid=3398) Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: auth: Debug: client in: AUTH#0111#011PLAIN#011service=imap#011secured#011lip=127.0.0.1#011rip=127.0.0.1#011lport=143#011rport=40438#011resp=AHRlY2huaWNzADFMd01Hek0wZjdIVzc3dWZaaWhBWUdlSTJIWmQ5cEdi Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: auth-worker: Debug: Loading modules from directory: /usr/lib/dovecot/modules/auth Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: auth-worker: Debug: Module loaded: /usr/lib/dovecot/modules/auth/libdriver_mysql.so Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: auth-worker: Debug: pam(a_shared_mail,127.0.0.1): lookup service=dovecot Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: auth-worker: Debug: pam(a_shared_mail,127.0.0.1): #1/1 style=1 msg=Password: Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: auth: Debug: client out: OK#0111#011user=a_shared_mail Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: auth: Debug: master in: REQUEST#0113071934465#0113398#0111#011530aafc2ed51a8ee026b48c2bfa924d3 Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: auth: Debug: passwd(a_shared_mail,127.0.0.1): lookup Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: auth: Debug: master out: USER#0113071934465#011a_shared_mail#011system_groups_user=a_shared_mail#011uid=1006#011gid=1007#011home=/home/a_shared_mail Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap-login: Login: user=, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=3401, secured Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap: Debug: Loading modules from directory: /usr/lib/dovecot/modules Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap: Debug: Module loaded: /usr/lib/dovecot/modules/lib01_acl_plugin.so Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap: Debug: Module loaded: /usr/lib/dovecot/modules/lib02_imap_acl_plugin.so Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: Effective uid=1006, gid=1007, home=/home/a_shared_mail Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: Namespace : type=private, prefix=, sep=/, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/home/a_shared_mail/Maildir Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: maildir++: root=/home/a_shared_mail/Maildir, index=, control=, inbox=/home/a_shared_mail/Maildir, alt= Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl: initializing backend with data: vfile Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl: acl username = a_shared_mail Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl: owner = 1 Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl vfile: Global ACL directory: (none) Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: Namespace : type=shared, prefix=shared/%u/, sep=/, inbox=no, hidden=no, list=children, subscriptions=yes location=maildir:%h/Maildir:INDEX=/home/a_shared_mail/Maildir/shared/%u Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: shared: root=/var/run/dovecot, index=, control=, inbox=, alt= Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl: initializing backend with data: vfile Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl: acl username = a_shared_mail Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl: owner = 0 Feb 10 17:30:28 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl vfile: Global ACL directory: (none) Feb 10 17:30:33 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl vfile: reading file /home/a_shared_mail/Maildir/dovecot-acl Feb 10 17:30:33 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Debug: acl vfile: reading file /home/a_shared_mail/Maildir/dovecot-acl Feb 10 17:30:37 ip-xx-xx-xxx-xx dovecot: imap(a_shared_mail): Connection closed bytes=45/324 Feb 10 17:30:42 ip-xx-xx-xxx-xx dovecot: auth: Debug: master in: USER#0111#011john.doe#011service=doveadm Feb 10 17:30:42 ip-xx-xx-xxx-xx dovecot: auth: Debug: passwd(john.doe): lookup Feb 10 17:30:42 ip-xx-xx-xxx-xx dovecot: auth: Debug: master out: USER#0111#011john.doe#011system_groups_user=john.doe#011uid=1003#011gid=1004#011home=/home/john.doe Feb 10 17:30:42 ip-xx-xx-xxx-xx dovecot: auth: Debug: master in: USER#0112#011a_shared_mail#011service=lib-storage Feb 10 17:30:42 ip-xx-xx-xxx-xx dovecot: auth: Debug: passwd(a_shared_mail): lookup Feb 10 17:30:42 ip-xx-xx-xxx-xx dovecot: auth: Debug: master out: USER#0112#011a_shared_mail#011system_groups_user=a_shared_mail#011uid=1006#011gid=1007#011home=/home/a_shared_mail my dovecot -n is this: # 2.0.19: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-58-virtual x86_64 Ubuntu 12.04.4 LTS ext4 auth_debug = yes auth_debug_passwords = yes auth_verbose = yes disable_plaintext_auth = no hostname = remote.xxxx.xx mail_debug = yes mail_location = maildir:/home/%u/Maildir mail_plugins = acl managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { inbox = yes location = prefix = separator = / type = private } namespace { list = children location = maildir:%%h/Maildir:INDEX=%h/Maildir/shared/%%u prefix = shared/%%u/ separator = / subscriptions = yes type = shared } passdb { driver = pam } plugin { acl = vfile acl_shared_dict = file:/var/lib/dovecot/shared-mailboxes sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } postmaster_address = xxx at xx.xx protocols = " imap sieve pop3 sieve" service dict { unix_listener dict { group = mail mode = 0660 user = vmail } } service managesieve-login { inet_listener sieve { port = 4190 } } ssl_cert = References: <0D4799D0-13D4-4A77-A386-994E946C516C@iki.fi> <52F553BC.3050907@thelounge.net> Message-ID: Yes, I have tried with "plain" value and it works fine. But is it normal that not valid value cause segmentation fault at all? On Mon, Feb 10, 2014 at 5:44 PM, Timo Sirainen wrote: > Did you try with > > a) http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb patch which should fix the crash > > and/or > > b) Changing auth_verbose_passwords=plain (because "yes" isn't a valid value) > > On 10.2.2014, at 4.58, Alex Domoradov wrote: > >> Any update? >> >> On Sat, Feb 8, 2014 at 4:09 PM, Alex Domoradov wrote: >>> I have installed debug packages excluding sqlite and dovecot and tried >>> one more time >>> >>> # echo "/var/core/%p" > /proc/sys/kernel/core_pattern >>> # doveconf -n >>> # 2.2.10: /etc/dovecot/dovecot.conf >>> # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) >>> Segmentation fault (core dumped) >>> >>> # gdb /usr/bin/doveconf /var/core/23290 >>> GNU gdb (GDB) Red Hat Enterprise Linux (7.2-60.el6_4.1) >>> Copyright (C) 2010 Free Software Foundation, Inc. >>> License GPLv3+: GNU GPL version 3 or later >>> This is free software: you are free to change and redistribute it. >>> There is NO WARRANTY, to the extent permitted by law. Type "show copying" >>> and "show warranty" for details. >>> This GDB was configured as "x86_64-redhat-linux-gnu". >>> For bug reporting instructions, please see: >>> ... >>> Reading symbols from /usr/bin/doveconf...(no debugging symbols found)...done. >>> [New Thread 23290] >>> Reading symbols from /usr/lib64/dovecot/libdovecot.so.0...done. >>> Loaded symbols for /usr/lib64/dovecot/libdovecot.so.0 >>> Reading symbols from /lib64/libc-2.12.so...Reading symbols from >>> /usr/lib/debug/lib64/libc-2.12.so.debug...done. >>> done. >>> Loaded symbols for /lib64/libc-2.12.so >>> Reading symbols from /lib64/libdl-2.12.so...Reading symbols from >>> /usr/lib/debug/lib64/libdl-2.12.so.debug...done. >>> done. >>> Loaded symbols for /lib64/libdl-2.12.so >>> Reading symbols from /lib64/librt-2.12.so...Reading symbols from >>> /usr/lib/debug/lib64/librt-2.12.so.debug...done. >>> done. >>> Loaded symbols for /lib64/librt-2.12.so >>> Reading symbols from /lib64/ld-2.12.so...Reading symbols from >>> /usr/lib/debug/lib64/ld-2.12.so.debug...done. >>> done. >>> Loaded symbols for /lib64/ld-2.12.so >>> Reading symbols from /lib64/libpthread-2.12.so...Reading symbols from >>> /usr/lib/debug/lib64/libpthread-2.12.so.debug...done. >>> [Thread debugging using libthread_db enabled] >>> done. >>> Loaded symbols for /lib64/libpthread-2.12.so >>> Reading symbols from /lib64/libnss_files-2.12.so...Reading symbols >>> from /usr/lib/debug/lib64/libnss_files-2.12.so.debug...done. >>> done. >>> Loaded symbols for /lib64/libnss_files-2.12.so >>> Core was generated by `doveconf -n'. >>> Program terminated with signal 11, Segmentation fault. >>> #0 __strlen_sse2 () at ../sysdeps/x86_64/strlen.S:32 >>> 32 movdqu (%rdi), %xmm1 >>> Missing separate debuginfos, use: debuginfo-install dovecot-2.2.10-1.el6.x86_64 >>> (gdb) bt full >>> #0 __strlen_sse2 () at ../sysdeps/x86_64/strlen.S:32 >>> No locals. >>> #1 0x00007f139828e65d in p_strdup (pool=0x10afab0, str=0x288
>> 0x288 out of bounds>) at strfuncs.c:41 >>> mem = >>> len = >>> #2 0x000000000040528f in config_request_get_strings () >>> No symbol table info available. >>> #3 0x000000000040c3ce in config_export_finish () >>> No symbol table info available. >>> #4 0x00000000004054d4 in config_dump_human_output () >>> No symbol table info available. >>> #5 0x0000000000405dff in config_dump_human () >>> No symbol table info available. >>> #6 0x0000000000406bcf in main () >>> No symbol table info available. >>> >>> Is it possible to build debuginfo for the dovecot package? >>> >>> On Sat, Feb 8, 2014 at 3:15 PM, Alex Domoradov wrote: >>>> # gdb --args doveconf -n >>>> GNU gdb (GDB) Red Hat Enterprise Linux (7.2-60.el6_4.1) >>>> Copyright (C) 2010 Free Software Foundation, Inc. >>>> License GPLv3+: GNU GPL version 3 or later >>>> This is free software: you are free to change and redistribute it. >>>> There is NO WARRANTY, to the extent permitted by law. Type "show copying" >>>> and "show warranty" for details. >>>> This GDB was configured as "x86_64-redhat-linux-gnu". >>>> For bug reporting instructions, please see: >>>> ... >>>> Reading symbols from /usr/bin/doveconf...(no debugging symbols found)...done. >>>> (gdb) run >>>> Starting program: /usr/bin/doveconf -n >>>> [Thread debugging using libthread_db enabled] >>>> # 2.2.10: /etc/dovecot/dovecot.conf >>>> # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) >>>> >>>> Program received signal SIGSEGV, Segmentation fault. >>>> 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 >>>> Missing separate debuginfos, use: debuginfo-install dovecot-2.2.10-1.el6.x86_64 >>>> (gdb) bt full >>>> #0 0x00007ffff77f9451 in __strlen_sse2 () from /lib64/libc.so.6 >>>> No symbol table info available. >>>> #1 0x00007ffff7b9665d in p_strdup (pool=0x6adac0, str=0x288
>>> 0x288 out of bounds>) at strfuncs.c:41 >>>> mem = >>>> len = >>>> #2 0x000000000040528f in config_request_get_strings () >>>> No symbol table info available. >>>> #3 0x000000000040c3ce in config_export_finish () >>>> No symbol table info available. >>>> #4 0x00000000004054d4 in config_dump_human_output () >>>> No symbol table info available. >>>> #5 0x0000000000405dff in config_dump_human () >>>> No symbol table info available. >>>> #6 0x0000000000406bcf in main () >>>> No symbol table info available. >>>> >>>> I have tried to install debug packages but without success >>>> >>>> # debuginfo-install dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo for main pkg: 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> bzip2-libs-1.0.5-7.el6_0.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package libcap-2.16-5.5.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> libcom_err-1.41.12-18.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> openssl-1.0.1e-16.el6_5.4.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> openssl-1.0.1e-16.el6_5.4.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> openssl-1.0.1e-16.el6_5.4.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> 1:dovecot-2.2.10-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package expat-2.0.1-11.el6_2.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> krb5-libs-1.10.3-10.el6_4.6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> openldap-2.4.23-34.el6_5.1.x86_64 >>>> Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package pam-1.1.1-17.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package glibc-2.12-1.132.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package sqlite-3.6.20-1.el6.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> openssl-1.0.1e-16.el6_5.4.x86_64 >>>> Could not find debuginfo pkg for dependency package >>>> openssl-1.0.1e-16.el6_5.4.x86_64 >>>> Could not find debuginfo pkg for dependency package zlib-1.2.3-29.el6.x86_64 >>>> No debuginfo packages available to install >>>> >>>> On Fri, Feb 7, 2014 at 11:44 PM, Reindl Harald wrote: >>>>> no - a typo in a config does not qualify a segfault at all >>>>> >>>>> Am 07.02.2014 22:42, schrieb Alex Domoradov: >>>>>> Sorry, it was my fault. With "plain" value all works fine. >>>>>> >>>>>> Thanks for the help >>>>>> >>>>>> On Fri, Feb 7, 2014 at 10:54 PM, Timo Sirainen wrote: >>>>>>> On 7.2.2014, at 15.22, Timo Sirainen wrote: >>>>>>> >>>>>>>>> auth_verbose_passwords = yes >>>>>>>>> >>>>>>>> I guess it's related to auth_verbose_passwords setting, but I can't immediately see why it would crash there. >>>>>>> >>>>>>> Oh, first I thought there were two settings related to this :) Anyway, the reason is simple: "yes" isn't a valid value here. Either use "plain" or "sha1". Although I suppose "yes" could be an alias for "plain" to make people's life easier. So: >>>>>>> >>>>>>> http://hg.dovecot.org/dovecot-2.2/rev/afd3cfcf1bcb >>>>>>> http://hg.dovecot.org/dovecot-2.2/rev/27ac53f11f1f >>>>> > From dave.mehler at gmail.com Mon Feb 10 20:43:43 2014 From: dave.mehler at gmail.com (David Mehler) Date: Mon, 10 Feb 2014 15:43:43 -0500 Subject: [Dovecot] can not see public mailbox Message-ID: Hello, I'm running Dovecot2 and trying to set up public mailboxes. I've got a virtual user system set up with postfix and using MySQL authentication. I'm wanting to create several public mailboxes for shared messages. I've followed the wiki and have the public folder created. I've got a folder /home/vmail/public/public1 public1 being the maildir of the public mailbox. I can see in my folder list of my webmail client the root public folder but I can't change in to it and I can not see the public1 public mailbox. I'm using one user vmail set up for this setup, permissions on the public1 folder allow the vmail user to read and execute. In public1 I have a file dovecot-acl which has the user attempting to access the public folder with the flags l and r. Below is my config with doveconf -n. I'd appreciate any suggestions. Thanks. Dave. # 2.1.16: /etc/dovecot/dovecot.conf # OS: Linux 3.12.6-x86-linode55 i686 Fedora release 17 (Beefy Miracle) ext3 dict { quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext } first_valid_gid = 5000 first_valid_uid = 5000 hostname = xxx last_valid_gid = 5000 last_valid_uid = 5000 lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes listen = * mail_gid = vmail mail_home = /home/vmail/%d/%n/home mail_location = maildir:/home/vmail/%d/%n:LAYOUT=fs mail_plugins = " acl quota zlib" mail_uid = vmail maildir_very_dirty_syncs = yes namespace { list = yes location = maildir:/home/vmail/public:LAYOUT=fs prefix = Public/ separator = / subscriptions = yes type = public } namespace inbox { hidden = no inbox = yes list = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = separator = / subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { acl = vfile autocreate = Spam autosubscribe = Spam quota = dict:User quota::proxy::quota quota_rule = *:storage=1G quota_rule2 = Trash:storage=+100M quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u } postmaster_address = postmaster at xxx protocols = imap service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-userdb { mode = 0600 user = vmail } } service dict { unix_listener dict { mode = 0600 user = vmail } } service imap-login { inet_listener imap { address = 127.0.0.1 ::1 } inet_listener imaps { address = xxx xxx ssl = yes } } service quota-warning { executable = script /usr/local/bin/quota-warning.sh user = vmail } ssl_cert = Hi I am just learning to setup dovecot as part of a project to move my home mail serving from a large and complex linux computer which is acting as internet router/nat gateway to the internet (this leaving me exposed without internet connection when it goes down) to a raspberry pi - which will be port-forwarded to, when I turn my internet cable modem back into a router/modem. I have chosen to try and do this with a Postfix/Dovecot combination with some key user information coming from an sqlite database. Postfix will use Dovecot for authentication (where needed) and use its lmtp service for local delivery. I have so far got Dovecot working fine for the basic stuff, including using rsync to copy each of my users entire maildir from the old machine to the new to prove that it can be accessed. but I have one last specific piece of functionality I want to achieve that the old system does (and has been doing) for at least 5 years (that is what is still online - I think I have "archived" some older stuff). The existing environment uses a Exim4/Cyrus IMAP combination and with Exim I have managed to develop the rules so that all outgoing mail from my internal clients is copied into a subdirectory of their sent mail folder. The format of the folder is Sent.yyyy.mm where yyyy and mm are computed on the fly from todays date. (the .separator defining a subfolder in the hierarchy) I now have several years of saved messages in my existing system. Postfix has nowhere near the flexibility of Exim to develop rules like that, but I think I could potentially use an sql query on my user database to set up a sender_bcc_map that addressed the result to +Sent.. (or maybe+Sent// and then send that to dovecot. I have then to decide how to handle it. The problem I am facing is I can find no documentation about what lmtp_save_to_detail_mailbox actually causes lmtp to actually do. Searching the wiki refers to it only in the LMTP page. How should the detail of the address be formatted to specify a subdirectory - can it be specified even? Should I be using it? I have seen comments in the past about people recommending using sieve for this sort of thing. and indeed it might be better if I could figure it out, in that 1) I could then send to something more simple like +saveoutgoing and use the "date" extension of sieve to generate the split. 2) Users could ultimately decide what to do them selves with this tag (and I could define a global "after_sieve" to throw it away. Unfortunately my reading of the fileinto extension is that the destination can only be a literal string and not a "computed" value based on the date. UNLESS anyone knows different? I would welcome any advice anyone could give me Thanks Alan Chandler From craig.dovecot at noboost.org Mon Feb 10 23:01:16 2014 From: craig.dovecot at noboost.org (craig.dovecot at noboost.org) Date: Tue, 11 Feb 2014 10:01:16 +1100 Subject: [Dovecot] Sieve - Not showing new emails in Thunderbird? In-Reply-To: References: <20140210002535.GA28278@noboost.org> Message-ID: <20140210230116.GA27980@noboost.org> On Mon, Feb 10, 2014 at 07:12:32AM +0100, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Mon, 10 Feb 2014, craig.dovecot at noboost.org wrote: > > >mail directories. However Thunderbird doesn't detect the new email, > >until the user clicks on the folder and then all of a sudden it shows > >the newly detected emails. Perhaps this is a task for the Thunderbird > > Is Thunderbird configured to detect changes in those folders? Brilliant thanks! I love it when it's a simple answer. cya Craig From dave.mehler at gmail.com Tue Feb 11 01:14:23 2014 From: dave.mehler at gmail.com (David Mehler) Date: Mon, 10 Feb 2014 20:14:23 -0500 Subject: [Dovecot] Fedora Rpm of Dovecot Antispam plugin Message-ID: Hello, Quick question, does anyone have a fedora 17 rpm or a rel src.rpm that can be rebuilt, of the dovecot antispam plugin? Thanks. Dave. From ebroch at whitehorsetc.com Tue Feb 11 02:19:13 2014 From: ebroch at whitehorsetc.com (Eric Broch) Date: Mon, 10 Feb 2014 19:19:13 -0700 Subject: [Dovecot] plain test passwords Message-ID: <52F988A1.7060504@whitehorsetc.com> Is it possible to enable plaintext passwords on dovecot? From dovecot-list at mohtex.net Tue Feb 11 03:02:07 2014 From: dovecot-list at mohtex.net (Tamsy) Date: Tue, 11 Feb 2014 10:02:07 +0700 Subject: [Dovecot] plain test passwords In-Reply-To: <52F988A1.7060504@whitehorsetc.com> References: <52F988A1.7060504@whitehorsetc.com> Message-ID: <52F992AF.5000905@mohtex.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Eric Broch wrote the following on 11.02.2014 09:19: > Is it possible to enable plaintext passwords on dovecot? A simple look at the Wiki will answer your question: http://wiki2.dovecot.org/Authentication/Mechanisms -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32) iQEcBAEBAgAGBQJS+ZKuAAoJEKYXVM1dyOfZQ1UIAJxqQB+ydWsp+8dMr26LqyyB xAPmq1wOsSG/HURaATP3HHhEAx9MKm9GkXq+psy6vOUWArloLy4P4+yZ3zcNVvix PMT4q1DY6UL4GGF3S8AHSfWhR2fV6qoEg8bRFtVCdazhuIrzSogAgAk3SK3p9bKP VT4gr7aY/pNaT+lupbXrH4C9gs2cHbnlnVX/WVOJu//Hp576hzOWMWE+UyVxCjv6 aN5BAvC718p/314vMZSuq1PAlP8OnGSgg75It/MzBs8YEXydz7jKJiu6S8fsJ1VR ZHdI6RivMjxcDor1MXTSJRtyUP6Z+121rIVzU/sG+KBNKEqFvsRm0PhXmFqZQIA= =X93l -----END PGP SIGNATURE----- -------------- next part -------------- A non-text attachment was scrubbed... Name: 0x5DC8E7D9.asc Type: application/pgp-keys Size: 1733 bytes Desc: not available URL: From trever at middleearth.sapphiresunday.org Tue Feb 11 03:53:58 2014 From: trever at middleearth.sapphiresunday.org (Trever L. Adams) Date: Mon, 10 Feb 2014 20:53:58 -0700 Subject: [Dovecot] Fedora Rpm of Dovecot Antispam plugin In-Reply-To: References: Message-ID: <52F99ED6.9010207@middleearth.sapphiresunday.org> On 02/10/2014 06:14 PM, David Mehler wrote: > Hello, > > Quick question, does anyone have a fedora 17 rpm or a rel src.rpm that > can be rebuilt, of the dovecot antispam plugin? > > Thanks. > Dave. > Hello Dave, I can provide you with a SPEC file if that is what you are after. I do not publish my RPM/SRPM for various reasons, but I am happy to share the SPEC. I used it from before 17 and am using it with Fedora 20 now. Trever -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 884 bytes Desc: OpenPGP digital signature URL: From berni at birkenwald.de Tue Feb 11 07:34:29 2014 From: berni at birkenwald.de (Bernhard Schmidt) Date: Tue, 11 Feb 2014 07:34:29 +0000 (UTC) Subject: [Dovecot] lmtp_rcpt_check_quota not working Message-ID: Hi, Dovecot 2.2.9 (Debian package from backports) does not seem to respect lmtp_rcpt_check_quota # 2.2.9: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 deliver_log_format = from=<%e>, size=%p, message-id=<%m>, status=%$ disable_plaintext_auth = no lmtp_rcpt_check_quota = yes mail_debug = yes mail_gid = mstore mail_location = maildir:~/Maildir:INDEX=/var/cache/dovecot/index/%-1.1u/%u mail_plugins = quota mail_uid = mstore managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave mmap_disable = yes namespace inbox { inbox = yes location = mailbox Drafts { auto = subscribe special_use = \Drafts } mailbox Junk { auto = subscribe special_use = \Junk } mailbox Sent { auto = subscribe special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { auto = subscribe special_use = \Trash } prefix = INBOX. separator = . type = private } passdb { args = /etc/dovecot/dovecot-ldap.conf driver = ldap } plugin { quota = maildir quota_rule = ?:storage=512M quota_rule2 = INBOX.Trash:ignore quota_status_nouser = DUNNO quota_status_overquota = 452 4.2.2 Mailbox is full quota_status_success = DUNNO quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=85%% quota-warning 85 %u sieve = ~/currently-active-script.sieve sieve_dir = ~/sieve } pop3_uidl_format = %08Xv%08Xu protocols = imap lmtp sieve pop3 quota_full_tempfail = yes service anvil { client_limit = 3000 unix_listener anvil { group = sudo mode = 0660 } } service auth { client_limit = 3000 unix_listener auth-userdb { group = mstore mode = 0660 user = mstore } } service imap-login { client_limit = 1024 inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } process_limit = 2500 process_min_avail = 4 service_count = 0 } service lmtp { inet_listener lmtp { address = xxx port = 24 } } service managesieve-login { inet_listener sieve { port = 2000 } service_count = 1 } service managesieve { process_limit = 1024 } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } service quota-status { client_limit = 5 executable = quota-status -p postfix inet_listener { address = xxx port = 12340 } } service quota-warning { executable = script /etc/dovecot/quotawarnmsg.sh unix_listener quota-warning { user = mstore } user = mstore } ssl_cert = Quota exceeded (mailbox for user is full) (in reply to end of DATA command)) I haven't seen any commits regarding to this in 2.2.10 or tip. Regards, Bernhard From skdovecot at smail.inf.fh-brs.de Tue Feb 11 07:41:35 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 11 Feb 2014 08:41:35 +0100 (CET) Subject: [Dovecot] Undertanding what the lmtp_save_to_detail_mailbox actually does In-Reply-To: <52F94A76.8030501@chandlerfamily.org.uk> References: <52F94A76.8030501@chandlerfamily.org.uk> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 10 Feb 2014, Alan Chandler wrote: > The problem I am facing is I can find no documentation about what > lmtp_save_to_detail_mailbox actually causes lmtp to actually do. Searching > the wiki refers to it only in the LMTP page. > > How should the detail of the address be formatted to specify a subdirectory - > can it be specified even? Should I be using it? +Sent at ... +users..SentNow at ... +Archive.2013-01 at ... I think, you must use mUTF7 for non-ASCII characters, you cannot use spaces and @ and many other characters impose problems. Also, which hierarchie separator you need to use, depends a little, just try with dots and the configured separator. Also, for testing I advice to enable lda_mailbox_autocreate, in order to see when you did wrong and can try another spelling. > Unfortunately my reading of the fileinto extension is that the destination > can only be a literal string and not a "computed" value based on the date. that's not the problem with the variables extension. See http://wiki2.dovecot.org/Pigeonhole/Sieve/Examples and search for fileinto "users/${name}"; - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvnUL3D1/YhP6VMHAQLoSQf/a1w1WILx/7e0uvabPlv5OhuQR2Hjmgnc wVDU4B495OVj7gCSLiV+UK4KmpGHWwB5CcNuoL5tE0XmV9mYwCQxhTw5X8evY7cw 39dbY92tCyCE+pxl1SG14oZ9En/9Ul99NIKGN9iionyzq+xrBzUQu/xnhRJaHRC+ axXfVi5fGnEZ7Xu0umXSF3JpmqZTdmp/FSSk209etvNMavBTCebm3MGmFr6c03YD uDiqwEj7aRR9vG7jls3nYiDi7+S+cJNvl0n5fTLA+RvDaxHdvkzIlJq4bUxEnJXJ WJlqsztWkP1WdsHTfM03z7ZSopv/11e4DBNttjPODrD/ravqtNdjfQ== =WvWW -----END PGP SIGNATURE----- From alan at chandlerfamily.org.uk Tue Feb 11 08:01:21 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Tue, 11 Feb 2014 08:01:21 +0000 Subject: [Dovecot] Undertanding what the lmtp_save_to_detail_mailbox actually does In-Reply-To: References: <52F94A76.8030501@chandlerfamily.org.uk> Message-ID: <52F9D8D1.2060800@chandlerfamily.org.uk> On 11/02/14 07:41, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Mon, 10 Feb 2014, Alan Chandler wrote: > >> The problem I am facing is I can find no documentation about what >> lmtp_save_to_detail_mailbox actually causes lmtp to actually do. >> Searching the wiki refers to it only in the LMTP page. >> >> How should the detail of the address be formatted to specify a >> subdirectory - can it be specified even? Should I be using it? > > +Sent at ... > +users..SentNow at ... > +Archive.2013-01 at ... > > I think, you must use mUTF7 for non-ASCII characters, you cannot use > spaces and @ and many other characters impose problems. Also, which > hierarchie separator you need to use, depends a little, just try with > dots and the configured separator. > > Also, for testing I advice to enable lda_mailbox_autocreate, in order > to see when you did wrong and can try another spelling. Thanks - just what I needed to know. I was about to set up an experiement, but I have to get postfix setup first (as a vehicle for delivering mail to lmtp) and there are aspects of that that I haven't got nailed yet. > >> Unfortunately my reading of the fileinto extension is that the >> destination can only be a literal string and not a "computed" value >> based on the date. > > that's not the problem with the variables extension. See > http://wiki2.dovecot.org/Pigeonhole/Sieve/Examples > and search for > > fileinto "users/${name}"; > Brilliant - even better. I had searched for quite some time looking for that and hadn't found it. Thanks Alan Chandler From ath at b-one.net Tue Feb 11 10:39:43 2014 From: ath at b-one.net (Anders Th=?iso-8859-1?Q?=F8?=gersen) Date: Tue, 11 Feb 2014 10:39:43 GMT Subject: [Dovecot] RFC 5267 Contexts for IMAP4 PARTIAL results In-Reply-To: Message-ID: <1392115183408.1472.300@webmail8> Great, thanks! Den 7. feb. 2014, Timo Sirainen skrev: > On 21.1.2014, at 10.44, Anders Th?gersen <> wrote: > > > > I am looking at PARTIAL responses using a dovecot version 2.2.5 and am running > > into an inconsistency with the RFC which I would like to ask about. > > > > Looks like the code was buggy. This should fix: > > > From fvl at mail.ru Tue Feb 11 11:13:23 2014 From: fvl at mail.ru (=?UTF-8?B?0KTQsNC00LXQtdCyINCS0LjRgtCw0LvQuNC5INCb0YzQstC+0LLQuNGH?=) Date: Tue, 11 Feb 2014 15:13:23 +0400 Subject: [Dovecot] =?utf-8?q?Some_LDA_questions!?= Message-ID: <1392117203.882954481@f341.i.mail.ru> Hi there! I have been setuped exim and dovecot. Exim uses dovecot-lda to deliver mails to mailbox. Some configurations of exim: dovecot_virtual_delivery: ? driver = pipe ? command = /usr/libexec/dovecot/dovecot-lda -d $local_part@$domain -f $sender_address ? message_prefix = ? message_suffix = ? delivery_date_add ? envelope_to_add ? return_path_add ? log_output ? user = vmail ? group = vmail ? #mode = 0660 ? temp_errors = 64 : 69 : 70: 71 : 72 : 73 : 74 : 75 : 78 dovecot does mysql lookups of users, passwords. All works, but in headers of example message: Return-path: <"vitalyf at bbb.com"@host.aaa.com> Envelope-to: vitalyf at bbb.com Delivery-date: Tue, 11 Feb 2014 03:59:17 -0600 Received: from xxx.net ([11.22.33.44] helo=[192.168.1.77]) ?by host.aaa.com with esmtpsa (TLS1.0:ECDHE_RSA_AES_128_CBC_SHA1:128) ?(Exim 4.82) ?(envelope-from <"vitalyf at bbb.com"@host.aaa.com>) ?id 1WDA7Y-0007GS-VR ?for vitalyf at bbb.com; Tue, 11 Feb 2014 03:59:17 -0600 Message-ID: <52F9F468.9030001 at bbb.com> Date: Tue, 11 Feb 2014 16:59:04 +0700 From: =?UTF-8?B?0KTQsNC00LXQtdCyINCS0LjRgtCw0LvQuNC5INCb0YzQstC+0LLQuNGH?= ? User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.3.0 MIME-Version: 1.0 To: vitalyf at bbb.com Subject: adfasdf Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Sender: "vitalyf at bbb.com"@host.aaa.com Test headers host.aaa.com is a hostname that run dovecot and exim. bbb.com is a virtual domain located in mysql db. I do not want to show host.aaa.com in headers. How can i disable this so headers looks like this: Return-path: Which configuration i need to show you? From hodentier at gmail.com Tue Feb 11 13:46:10 2014 From: hodentier at gmail.com (vupibi) Date: Tue, 11 Feb 2014 05:46:10 -0800 (PST) Subject: [Dovecot] Public folder doesn't work Message-ID: <1392126370095-46671.post@n4.nabble.com> Hey, I have some issues with dovecot, because the public folder won't show up in Mail accounts. Dovecot is installed via zentyal 3.3. I tried several settings, but I dont get it running. What I tried is adding this to my dovecot.conf file # User's private mail location mail_location = maildir:~/Maildir # When creating any namespaces, you must also have a private namespace: namespace { type = private separator = / prefix = #location defaults to mail_location. inbox = yes } namespace { type = public separator = / prefix = Public/ location = maildir:/var/vmail/public subscriptions = no } But nothing happened. I tried it with # Umask for shared folders umask = 0007 with subscriptions = yes tried creating the folder first like this touch /var/vmail/public/dovecot-shared chown -R ebox /var/vmail/public find /var/vmail/public -type d -print0 | xargs -0 chmod 2770 find /var/vmail/public -type f -print0 | xargs -0 chmod 660 But i had no success. Any Ideas how to get it running? Here is my dovecot -n output # 2.0.19: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-58-generic x86_64 Ubuntu 12.04.4 LTS ext4 auth_gssapi_hostname = mailand.sxps.int auth_krb5_keytab = /etc/dovecot/dovecot.keytab auth_mechanisms = gssapi plain first_valid_gid = 116 first_valid_uid = 108 log_timestamp = "%Y-%m-%d %H:%M:%S " mail_gid = 116 mail_home = /var/vmail/sieve/%d/%u mail_location = maildir:/var/vmail/%$ mail_uid = 108 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave passdb { args = /etc/dovecot/dovecot-ldap.conf driver = ldap } plugin { autocreate = Trash autocreate2 = Spam autocreate3 = Sent autocreate4 = Drafts autosubscribe = Trash autosubscribe2 = Spam autosubscribe3 = Sent autosubscribe4 = Drafts quota = maildir:User quota quota_rule = *:storage=0 sieve = /var/vmail/sieve/%d/%u/sieve-script sieve_dir = /var/vmail/sieve/%d/%u sieve_global_path = /var/vmail/sieve/default.sieve sieve_storage = /var/vmail/sieve/%d/%u } protocols = imap sieve service auth { executable = /usr/lib/dovecot/auth unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { group = ebox mode = 0600 user = ebox } user = dovecot } service imap-login { inet_listener imap { address = * port = 143 } inet_listener imaps { address = * port = 993 } } service managesieve-login { inet_listener sieve { port = 4190 } } ssl_cert = Hello, I am trying to setup dovecot sync between 2 servers and come up with this error: Fatal: All your namespaces have a location setting. It should be empty (default mail_location) in the namespace to be converted. i am stuck with this as i cannot find any resolution on the web, here are my config details: doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 disable_plaintext_auth = no dsync_remote_cmd = ssh -l%{login} %{host} doveadm dsync-server -u%u mail_plugins = " notify replication" mail_privileged_group = mail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave passdb { args = /etc/dovecot/dovecot-sql.conf driver = sql } plugin { autocreate = Trash autocreate2 = Sent autosubscribe = Trash autosubscribe2 = Sent mail_replica = remote:vmail at some-mx2.com } protocols = imap lmtp sieve service aggregator { fifo_listener replication-notify-fifo { user = vmail } unix_listener replication-notify { user = vmail } } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0600 user = postfix } } service managesieve-login { inet_listener sieve { port = 4190 } } service replicator { process_min_avail = 1 unix_listener replicator-doveadm { mode = 0600 } } ssl = required ssl_cert = From philippbruell at gmail.com Tue Feb 11 17:27:59 2014 From: philippbruell at gmail.com (=?ISO-8859-1?Q?Philipp_Br=FCll?=) Date: Tue, 11 Feb 2014 18:27:59 +0100 Subject: [Dovecot] Order of istream and ostream chains Message-ID: <52FA5D9F.5030301@gmail.com> Hi, I'm creating a scrambler plugin, that adds an istream and an ostream to the stream-chain for the mail input/output. It works well until the zlib plugin is added to the configuration. The scrambler should run before the zlib and encrypt the mail before it's compressed. Since, the plugin is named lib18_scrambler_... (and the other lib20_zlib....), that works well when a mail is received. When a mail is read via IMAP, the plugins should handle the mail in the reverse order. So first, the zlib should decompress it and afterwards the scrambler should decrypt it. But it seems, that they work the other way around. The scrambler istream gets compressed data as input. It's hooked in the chain of istream as the following... static int scrambler_istream_opened(struct mail *_mail, struct istream **stream) { struct mail_private *mail = (struct mail_private *)_mail; union mail_module_context *mmail = SCRAMBLER_MAIL_CONTEXT(mail); struct istream *input, *inputs[2]; input = *stream; *stream = scrambler_istream_create(input); i_stream_unref(&input); return mmail->super.istream_opened(_mail, stream); } static void scrambler_mail_allocated(struct mail *_mail) { struct mail_private *mail = (struct mail_private *)_mail; struct mail_vfuncs *v = mail->vlast; union mail_module_context *mmail; mmail = p_new(mail->pool, union mail_module_context, 1); mmail->super = *v; mail->vlast = &mmail->super; v->istream_opened = scrambler_istream_opened; MODULE_CONTEXT_SET_SELF(mail, scrambler_mail_module, mmail); } How can I reverse the order of istreams? Should I use another hook or vfuns? I'm stuck in the problem for a while now, so any help would be very welcome. Best regards, Philipp -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4261 bytes Desc: S/MIME Cryptographic Signature URL: From tss at iki.fi Tue Feb 11 20:32:06 2014 From: tss at iki.fi (Timo Sirainen) Date: Wed, 12 Feb 2014 05:32:06 +0900 Subject: [Dovecot] Order of istream and ostream chains In-Reply-To: <52FA5D9F.5030301@gmail.com> References: <52FA5D9F.5030301@gmail.com> Message-ID: On 12.2.2014, at 2.27, Philipp Br?ll wrote: > I'm creating a scrambler plugin, that adds an istream and an ostream to the stream-chain for the mail input/output. It works well until the zlib plugin is added to the configuration. The scrambler should run before the zlib and encrypt the mail before it's compressed. Since, the plugin is named lib18_scrambler_... (and the other lib20_zlib....), that works well when a mail is received. > > When a mail is read via IMAP, the plugins should handle the mail in the reverse order. So first, the zlib should decompress it and afterwards the scrambler should decrypt it. > > But it seems, that they work the other way around. The scrambler istream gets compressed data as input. It's hooked in the chain of istream as the following... In your previous mail you mentioned you're using v2.1.17. Have you tried with v2.2.10? I think this is already fixed (at least I've successfully used zlib + mail encryption plugin). From stephan at rename-it.nl Tue Feb 11 20:39:20 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 11 Feb 2014 21:39:20 +0100 Subject: [Dovecot] personal sieve script not included In-Reply-To: <2e13405bba5ade842083ee24668b25d6.squirrel@mail.webmatic.de> References: <2e13405bba5ade842083ee24668b25d6.squirrel@mail.webmatic.de> Message-ID: <52FA8A78.1020002@rename-it.nl> On 2/5/2014 9:59 AM, Thomas Krause wrote: > Hello, > I'm using dovecot 2.2.10 and roundcube (with managesieve enabled). > Sieve filtering works well, as long the rule is written > into ~/.dovecot.sieve (which is a link to ~/sieve/managesieve.sieve) > When adding a new filter set (in roundcube) the script is > written to ~/sieve/newfilterset.sieve. This script will not be > executed. How can I solve this? > > I set > sieve_dir = ~/sieve > This should work, except I misunderstand the doc. I see no obvious problems in your configuration. Do the logs say anything interesting (set mail_debug=yes)? Your symptoms suggest that Roundcube is not activating the uploaded script for some reason. That is when the symbolic link is updated. You could sniff the protocol exchange between Roundcube and Dovecot on port 4190 (without TLS obviously). Roundcube should issue the SETACTIVE command. Regards, Stephan. From zbyszek at onefellow.com Tue Feb 11 20:46:19 2014 From: zbyszek at onefellow.com (=?utf-8?Q?Zbyszek_=C5=BB=C3=B3=C5=82kiewski?=) Date: Tue, 11 Feb 2014 21:46:19 +0100 Subject: [Dovecot] Fatal: All your namespaces have a location setting. In-Reply-To: References: Message-ID: ok i have solved that by adding: mail_location = maildir:/home/mailboxes/maildir/%n/Maildir seems like error gone. __ Zbyszek ???kiewski On 11 Feb 2014, at 15:16, Zbyszek ???kiewski wrote: > Hello, > > I am trying to setup dovecot sync between 2 servers and come up with this error: > > Fatal: All your namespaces have a location setting. It should be empty (default mail_location) in the namespace to be converted. > > i am stuck with this as i cannot find any resolution on the web, here are my config details: > > doveconf -n > # 2.1.7: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 > disable_plaintext_auth = no > dsync_remote_cmd = ssh -l%{login} %{host} doveadm dsync-server -u%u > mail_plugins = " notify replication" > mail_privileged_group = mail > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave > passdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > plugin { > autocreate = Trash > autocreate2 = Sent > autosubscribe = Trash > autosubscribe2 = Sent > mail_replica = remote:vmail at some-mx2.com > } > protocols = imap lmtp sieve > service aggregator { > fifo_listener replication-notify-fifo { > user = vmail > } > unix_listener replication-notify { > user = vmail > } > } > service auth { > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0660 > user = postfix > } > } > service lmtp { > unix_listener /var/spool/postfix/private/dovecot-lmtp { > group = postfix > mode = 0600 > user = postfix > } > } > service managesieve-login { > inet_listener sieve { > port = 4190 > } > } > service replicator { > process_min_avail = 1 > unix_listener replicator-doveadm { > mode = 0600 > } > } > ssl = required > ssl_cert = ssl_key = userdb { > driver = prefetch > } > userdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > protocol imap { > mail_plugins = " autocreate" > } > protocol lmtp { > hostname = some-mx.com > mail_plugins = sieve > postmaster_address = postmaster at some-mx.com > } > > > cat dovecot-sql.conf > driver = pgsql > connect = host=/var/run/postgresql/ dbname=mail user=mailreader > default_pass_scheme = SHA512 > password_query = SELECT email as user, password, '/home/mailboxes/maildir/'||maildir as userdb_home, 500 as userdb_uid, 500 as userdb_gid FROM users WHERE email = '%u' > user_query = SELECT '/home/mailboxes/maildir/'||maildir as home, 500 as uid, 500 as gid FROM users WHERE email = '%u'; > > > Any help will be appreciated! > > thanks, > > __ > Zbyszek > -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4891 bytes Desc: not available URL: From stephan at rename-it.nl Tue Feb 11 21:04:20 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 11 Feb 2014 22:04:20 +0100 Subject: [Dovecot] Sieve is not getting the propper RCPT from the LMTP daemon In-Reply-To: <52B988D6.50209@klondike.es> References: <52B988D6.50209@klondike.es> Message-ID: <52FA9054.9030301@rename-it.nl> On 12/24/2013 2:15 PM, klondike wrote: > The relevant lines for the test e-mail I sent are these: > sieve: info: started log at Dec 24 13:37:23. > main script: line 9: info: DEBUG: envelope to `klondike (at) gentoo.org'. > main script: line 10: info: DEBUG: envelope from `klondike (at) gentoo.org'. > info: msgid=<52B97FF7.6050109 at gentoo.org>: stored mail into mailbox 'INBOX'. A similar issue was mentioned and solved a little later on the mailing list, so that is why I forgot about this one. That involved Sendmail though: http://www.dovecot.org/list/dovecot/2014-January/094385.html So, did you manage to solve this yourself? If not: - What is your config: dovecot -n - Do you have an example message? - Can you capture the LMTP protocol exchange between Postfix and Dovecot somehow? Regards, Stephan. From stephan at rename-it.nl Tue Feb 11 21:07:48 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 11 Feb 2014 22:07:48 +0100 Subject: [Dovecot] Problem rebuilding Centos 5/6 pigeonhole RPM from mercurial version In-Reply-To: <52F5142E.7@fi.upm.es> References: <52F5142E.7@fi.upm.es> Message-ID: <52FA9124.40208@rename-it.nl> On 2/7/2014 6:13 PM, Juan C. Blanco wrote: > works fine, but if I install pigeonhole in a different path, i.e. > > pigeonhole-0.4.2$ make install DESTDIR=/var/tmp/pigeonhole > Ok, so what are you trying to achieve by installing in a different destination? I wouldn't call myself a libtool/autotools wizard and I am pretty much as puzzled by this behavior as you are. Obviously, I have never tried this before myself, and I am wondering why anyone would want to. :) Regards, Stephan. From philippbruell at gmail.com Tue Feb 11 22:53:43 2014 From: philippbruell at gmail.com (=?ISO-8859-1?Q?Philipp_Br=FCll?=) Date: Tue, 11 Feb 2014 23:53:43 +0100 Subject: [Dovecot] Order of istream and ostream chains In-Reply-To: References: <52FA5D9F.5030301@gmail.com> Message-ID: <52FAA9F7.50600@gmail.com> On 11/02/14 21:32, Timo Sirainen wrote: > On 12.2.2014, at 2.27, Philipp Br?ll wrote: > >> I'm creating a scrambler plugin, that adds an istream and an ostream to the stream-chain for the mail input/output. It works well until the zlib plugin is added to the configuration. The scrambler should run before the zlib and encrypt the mail before it's compressed. Since, the plugin is named lib18_scrambler_... (and the other lib20_zlib....), that works well when a mail is received. >> >> When a mail is read via IMAP, the plugins should handle the mail in the reverse order. So first, the zlib should decompress it and afterwards the scrambler should decrypt it. >> >> But it seems, that they work the other way around. The scrambler istream gets compressed data as input. It's hooked in the chain of istream as the following... > > In your previous mail you mentioned you're using v2.1.17. Have you tried with v2.2.10? I think this is already fixed (at least I've successfully used zlib + mail encryption plugin). > Thanks for the fast reply. Yes, I'm using v2.1.17. If this is a bug in 2.1, is there a workaround existing? I'm already pushing the admin to upgrade to 2.2, but I don't know is this is happening soon ;-) Kind regards, Philipp -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4261 bytes Desc: S/MIME Cryptographic Signature URL: From zbyszek at onefellow.com Tue Feb 11 22:56:48 2014 From: zbyszek at onefellow.com (=?utf-8?Q?Zbyszek_=C5=BB=C3=B3=C5=82kiewski?=) Date: Tue, 11 Feb 2014 23:56:48 +0100 Subject: [Dovecot] Fatal: All your namespaces have a location setting. In-Reply-To: References: Message-ID: Hello again, i am making progress, and now my servers synchronise correctly but? only inbox (cur) is synced. Folders are not synchronised (although creation and deletion of folders is replicated). Any idea? __ Zbyszek ???kiewski On 11 Feb 2014, at 21:46, Zbyszek ???kiewski wrote: > ok i have solved that by adding: > > mail_location = maildir:/home/mailboxes/maildir/%n/Maildir > > seems like error gone. > > __ > Zbyszek ???kiewski > > On 11 Feb 2014, at 15:16, Zbyszek ???kiewski wrote: > >> Hello, >> >> I am trying to setup dovecot sync between 2 servers and come up with this error: >> >> Fatal: All your namespaces have a location setting. It should be empty (default mail_location) in the namespace to be converted. >> >> i am stuck with this as i cannot find any resolution on the web, here are my config details: >> >> doveconf -n >> # 2.1.7: /etc/dovecot/dovecot.conf >> # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 >> disable_plaintext_auth = no >> dsync_remote_cmd = ssh -l%{login} %{host} doveadm dsync-server -u%u >> mail_plugins = " notify replication" >> mail_privileged_group = mail >> managesieve_notify_capability = mailto >> managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave >> passdb { >> args = /etc/dovecot/dovecot-sql.conf >> driver = sql >> } >> plugin { >> autocreate = Trash >> autocreate2 = Sent >> autosubscribe = Trash >> autosubscribe2 = Sent >> mail_replica = remote:vmail at some-mx2.com >> } >> protocols = imap lmtp sieve >> service aggregator { >> fifo_listener replication-notify-fifo { >> user = vmail >> } >> unix_listener replication-notify { >> user = vmail >> } >> } >> service auth { >> unix_listener /var/spool/postfix/private/auth { >> group = postfix >> mode = 0660 >> user = postfix >> } >> } >> service lmtp { >> unix_listener /var/spool/postfix/private/dovecot-lmtp { >> group = postfix >> mode = 0600 >> user = postfix >> } >> } >> service managesieve-login { >> inet_listener sieve { >> port = 4190 >> } >> } >> service replicator { >> process_min_avail = 1 >> unix_listener replicator-doveadm { >> mode = 0600 >> } >> } >> ssl = required >> ssl_cert = > ssl_key = > userdb { >> driver = prefetch >> } >> userdb { >> args = /etc/dovecot/dovecot-sql.conf >> driver = sql >> } >> protocol imap { >> mail_plugins = " autocreate" >> } >> protocol lmtp { >> hostname = some-mx.com >> mail_plugins = sieve >> postmaster_address = postmaster at some-mx.com >> } >> >> >> cat dovecot-sql.conf >> driver = pgsql >> connect = host=/var/run/postgresql/ dbname=mail user=mailreader >> default_pass_scheme = SHA512 >> password_query = SELECT email as user, password, '/home/mailboxes/maildir/'||maildir as userdb_home, 500 as userdb_uid, 500 as userdb_gid FROM users WHERE email = '%u' >> user_query = SELECT '/home/mailboxes/maildir/'||maildir as home, 500 as uid, 500 as gid FROM users WHERE email = '%u'; >> >> >> Any help will be appreciated! >> >> thanks, >> >> __ >> Zbyszek >> > -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4891 bytes Desc: not available URL: From tss at iki.fi Tue Feb 11 23:41:19 2014 From: tss at iki.fi (Timo Sirainen) Date: Wed, 12 Feb 2014 08:41:19 +0900 Subject: [Dovecot] v2.2.11 released Message-ID: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz.sig I haven't had time to read through the Dovecot mailing list yet, so there are likely some reported bugs that haven't been fixed yet. I'll try to get to them next week in San Francisco. (Probably can't get much done this week in Tokyo.) In the mean time here's v2.2.11 with some new features. + acl plugin: Added an alternative global ACL file that can contain mailbox patterns. See http://wiki2.dovecot.org/ACL for details. + imap proxy: Added proxy_nopipelining passdb setting to work around other IMAP servers' bugs (MS Exchange 2013 especially). + Added %{auth_user}, %{auth_username} and %{auth_domain} variables. See http://wiki2.dovecot.org/Variables for details. + Added support for LZ4 compression. + stats: Track also wall clock time for commands. + pop3_migration plugin improvements to try harder to match the UIDLs correctly. - imap: SEARCH/SORT PARTIAL reponses may have been too large. - doveadm backup: Fixed assert-crash when syncing mailbox deletion. From mtrainer at westnet.com.au Wed Feb 12 01:25:24 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Wed, 12 Feb 2014 09:25:24 +0800 Subject: [Dovecot] Getting Director Proxy Working Message-ID: Hi All, I can't get directory proxying of pop3 and imap working.? The director stuff appears to be OK - see below.?? The ldap authentication is working on the backend mail server.? I just get connection refused when I telnet to the proxy on the pop3 and imap ports.? Nothing appears to be running on the pop3 and imap ports despite the lines in the config below.? I am not sure what to do from here as nothing is showing up in the logs. ? Some assistance would be greatly appreciated. Thanks Murray # doveadm director status mail server ip vhosts????????????????????????????????????????????????????????????????????????????????????????????????????????? users x.x.x.x ????? 100????????????????????????????????????????????????????????????????????????????????????????????????????????????? 0 # doveadm director map user??????????????????????????????????????????????????????????????????????????????????????????????????????? mail server ip expire time # doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.1 auth_cache_size = 32 M auth_cache_ttl = 2 hours auth_debug = yes auth_mechanisms = plain login auth_verbose = yes base_dir = /var/run/dovecot/ director_mail_servers = x.x.x.x director_servers = y.y.y.y disable_plaintext_auth = no mail_debug = yes passdb { ? args = nopassword=y proxy=y ? driver = static } service director { ? fifo_listener login/proxy-notify { ??? mode = 0666 ??? user = $default_login_user ? } ? inet_listener { ??? port = 9090 ? } ? unix_listener director-userdb { ??? mode = 0600 ? } ? unix_listener login/director { ??? mode = 0666 ? } } service imap-login { ? executable = imap-login director ? inet_listener imap { ??? port = 143 ? } } service pop3-login { ? executable = pop3-login director ? inet_listener pop3 { ??? port = 110 ? } } ssl_cert = From gedalya at gedalya.net Wed Feb 12 02:25:38 2014 From: gedalya at gedalya.net (Gedalya) Date: Tue, 11 Feb 2014 21:25:38 -0500 Subject: [Dovecot] v2.2.11 released In-Reply-To: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> Message-ID: <52FADBA2.1020206@gedalya.net> On 02/11/2014 06:41 PM, Timo Sirainen wrote: > http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz > http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz.sig > > I haven't had time to read through the Dovecot mailing list yet, so there are likely some reported bugs that haven't been fixed yet. I'll try to get to them next week in San Francisco. (Probably can't get much done this week in Tokyo.) In the mean time here's v2.2.11 with some new features. > > + acl plugin: Added an alternative global ACL file that can contain > mailbox patterns. See http://wiki2.dovecot.org/ACL for details. > + imap proxy: Added proxy_nopipelining passdb setting to work around > other IMAP servers' bugs (MS Exchange 2013 especially). > + Added %{auth_user}, %{auth_username} and %{auth_domain} variables. > See http://wiki2.dovecot.org/Variables for details. > + Added support for LZ4 compression. > + stats: Track also wall clock time for commands. > + pop3_migration plugin improvements to try harder to match the UIDLs > correctly. > - imap: SEARCH/SORT PARTIAL reponses may have been too large. > - doveadm backup: Fixed assert-crash when syncing mailbox deletion. Built and installed, working fine! Thanks! From mtrainer at westnet.com.au Wed Feb 12 04:51:00 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Wed, 12 Feb 2014 12:51:00 +0800 Subject: [Dovecot] Getting Director Proxy Working In-Reply-To: Message-ID: ? ----- Original Message ----- From: "Murray Trainer" To: Cc: Sent:Wed, 12 Feb 2014 09:25:24 +0800 Subject:[Dovecot] Getting Director Proxy Working Hi All, I can't get directory proxying of pop3 and imap working.? The director stuff appears to be OK - see below.?? The ldap authentication is working on the backend mail server.? I just get connection refused when I telnet to the proxy on the pop3 and imap ports.? Nothing appears to be running on the pop3 and imap ports despite the lines in the config below.? I am not sure what to do from here as nothing is showing up in the logs. ? Some assistance would be greatly appreciated. Thanks Murray # doveadm director status mail server ip vhosts????????????????????????????????????????????????????????????????????????????????????????????????????????? users x.x.x.x ????? 100????????????????????????????????????????????????????????????????????????????????????????????????????????????? 0 # doveadm director map user??????????????????????????????????????????????????????????????????????????????????????????????????????? mail server ip expire time # doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.1 auth_cache_size = 32 M auth_cache_ttl = 2 hours auth_debug = yes auth_mechanisms = plain login auth_verbose = yes base_dir = /var/run/dovecot/ director_mail_servers = x.x.x.x director_servers = y.y.y.y disable_plaintext_auth = no mail_debug = yes passdb { ? args = nopassword=y proxy=y ? driver = static } service director { ? fifo_listener login/proxy-notify { ??? mode = 0666 ??? user = $default_login_user ? } ? inet_listener { ??? port = 9090 ? } ? unix_listener director-userdb { ??? mode = 0600 ? } ? unix_listener login/director { ??? mode = 0666 ? } } service imap-login { ? executable = imap-login director ? inet_listener imap { ??? port = 143 ? } } service pop3-login { ? executable = pop3-login director ? inet_listener pop3 { ??? port = 110 ? } } ssl_cert = Sorry, full dovecot config below: # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.1 auth_cache_size = 32 M auth_cache_ttl = 2 hours auth_debug = yes auth_mechanisms = plain login auth_verbose = yes base_dir = /var/run/dovecot/ director_mail_servers = x.x.x.x director_servers = y.y.y.y disable_plaintext_auth = no mail_debug = yes passdb { ? args = nopassword=y proxy=y ? driver = static } service director { ? fifo_listener login/proxy-notify { ??? mode = 0666 ??? user = $default_login_user ? } ? inet_listener { ??? port = 9090 ? } ? unix_listener director-userdb { ??? mode = 0600 ? } ? unix_listener login/director { ??? mode = 0666 ? } } service imap-login { ? executable = imap-login director ? inet_listener imap { ??? port = 143 ? } } service pop3-login { ? executable = pop3-login director ? inet_listener pop3 { ??? port = 110 ? } } ssl_cert = From gcr+dovecot at tharned.org Wed Feb 12 05:12:45 2014 From: gcr+dovecot at tharned.org (Greg Rivers) Date: Tue, 11 Feb 2014 23:12:45 -0600 (CST) Subject: [Dovecot] Sieve is not getting the propper RCPT from the LMTP daemon In-Reply-To: <52FA9054.9030301@rename-it.nl> References: <52B988D6.50209@klondike.es> <52FA9054.9030301@rename-it.nl> Message-ID: On Tue, 11 Feb 2014, Stephan Bosch wrote: > On 12/24/2013 2:15 PM, klondike wrote: >> The relevant lines for the test e-mail I sent are these: >> sieve: info: started log at Dec 24 13:37:23. >> main script: line 9: info: DEBUG: envelope to `klondike (at) gentoo.org'. >> main script: line 10: info: DEBUG: envelope from `klondike (at) gentoo.org'. >> info: msgid=<52B97FF7.6050109 at gentoo.org>: stored mail into mailbox 'INBOX'. > > A similar issue was mentioned and solved a little later on the mailing > list, so that is why I forgot about this one. That involved Sendmail though: > > http://www.dovecot.org/list/dovecot/2014-January/094385.html > If you read further down that thread, you'll see that both Miquel van Smoorenburg and Steffen Kaiser pointed out that this solution only works in the case where there is one and only one recipient. So it's not a general solution. Because of that, I am using dovecot LDA instead of LMTP until I can write a custom sendmail ruleset to pass +detail to LMTP. Here's my sendmail LDA configuration ($h contains the detail part of the ID): FEATURE(`local_procmail', `/usr/local/libexec/dovecot/dovecot-lda', `dovecot-lda -a $u+$h -d $u') -- Greg From Ralf.Hildebrandt at charite.de Wed Feb 12 09:05:17 2014 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Wed, 12 Feb 2014 10:05:17 +0100 Subject: [Dovecot] v2.2.11 released In-Reply-To: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> Message-ID: <20140212090517.GB28332@charite.de> * Timo Sirainen : > http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz > http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz.sig > > I haven't had time to read through the Dovecot mailing list yet, so there are likely some reported bugs that haven't been fixed yet. I'll try to get to them next week in San Francisco. (Probably can't get much done this week in Tokyo.) In the mean time here's v2.2.11 with some new features. > > + acl plugin: Added an alternative global ACL file that can contain > mailbox patterns. See http://wiki2.dovecot.org/ACL for details. > + imap proxy: Added proxy_nopipelining passdb setting to work around > other IMAP servers' bugs (MS Exchange 2013 especially). > + Added %{auth_user}, %{auth_username} and %{auth_domain} variables. > See http://wiki2.dovecot.org/Variables for details. > + Added support for LZ4 compression. > + stats: Track also wall clock time for commands. > + pop3_migration plugin improvements to try harder to match the UIDLs > correctly. > - imap: SEARCH/SORT PARTIAL reponses may have been too large. > - doveadm backup: Fixed assert-crash when syncing mailbox deletion. pop3 keeps crashing with a sigsegv in that version. Gotta go back. Feb 12 10:02:52 postamt dovecot: pop3(mhippler) LJZ31jHyygAKK4EU: Fatal: master: service(pop3): child 14635 killed with signal 11 (core dumped) Feb 12 10:02:54 postamt dovecot: pop3(fem-qm-sfb) HlCP1jHyGgCNKtkP: Fatal: master: service(pop3): child 14692 killed with signal 11 (core dumped) -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From blevi.linux at gmail.com Wed Feb 12 09:14:07 2014 From: blevi.linux at gmail.com (Birta Levente) Date: Wed, 12 Feb 2014 11:14:07 +0200 Subject: [Dovecot] v2.2.11 released In-Reply-To: <20140212090517.GB28332@charite.de> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> <20140212090517.GB28332@charite.de> Message-ID: <52FB3B5F.6060601@gmail.com> On 12/02/2014 11:05, Ralf Hildebrandt wrote: > * Timo Sirainen : >> http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz >> http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz.sig >> >> I haven't had time to read through the Dovecot mailing list yet, so there are likely some reported bugs that haven't been fixed yet. I'll try to get to them next week in San Francisco. (Probably can't get much done this week in Tokyo.) In the mean time here's v2.2.11 with some new features. >> >> + acl plugin: Added an alternative global ACL file that can contain >> mailbox patterns. See http://wiki2.dovecot.org/ACL for details. >> + imap proxy: Added proxy_nopipelining passdb setting to work around >> other IMAP servers' bugs (MS Exchange 2013 especially). >> + Added %{auth_user}, %{auth_username} and %{auth_domain} variables. >> See http://wiki2.dovecot.org/Variables for details. >> + Added support for LZ4 compression. >> + stats: Track also wall clock time for commands. >> + pop3_migration plugin improvements to try harder to match the UIDLs >> correctly. >> - imap: SEARCH/SORT PARTIAL reponses may have been too large. >> - doveadm backup: Fixed assert-crash when syncing mailbox deletion. > > pop3 keeps crashing with a sigsegv in that version. Gotta go back. > > Feb 12 10:02:52 postamt dovecot: pop3(mhippler) LJZ31jHyygAKK4EU: > Fatal: master: service(pop3): child 14635 killed with signal 11 (core > dumped) > > Feb 12 10:02:54 postamt dovecot: pop3(fem-qm-sfb) HlCP1jHyGgCNKtkP: > Fatal: master: service(pop3): child 14692 killed with signal 11 (core > dumped) > > Here too -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 553 bytes Desc: OpenPGP digital signature URL: From Ralf.Hildebrandt at charite.de Wed Feb 12 09:25:21 2014 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Wed, 12 Feb 2014 10:25:21 +0100 Subject: [Dovecot] Crash in pop3 with recent dovecot, backtrace Message-ID: <20140212092521.GD28332@charite.de> Core was generated by `dovecot/pop3'. Program terminated with signal 11, Segmentation fault. #0 0x0804eb6a in client_update_mails (client=client at entry=0x8afd7a8) at pop3-commands.c:256 256 seq_range_array_add(&deleted_msgs, client->msgnum_to_seq_map[msgnum]); #0 0x0804eb6a in client_update_mails (client=client at entry=0x8afd7a8) at pop3-commands.c:256 search_args = ctx = mail = 0xb762d797 deleted_msgs = {arr = {buffer = 0x8ade098, element_size = 8}, v = 0x8ade098, v_modifiable = 0x8ade098} seen_msgs = {arr = {buffer = 0xb7671224, element_size = 3076604219}, v = 0xb7671224, v_modifiable = 0xb7671224} msgnum = bit = 1 #1 0x0804ee80 in cmd_quit (client=0x8afd7a8, args=) at pop3-commands.c:289 No locals. #2 client_command_execute (client=client at entry=0x8afd7a8, name=, name at entry=0x8b3e194 "QUIT", args=args at entry=0x804f839 "") at pop3-commands.c:920 No locals. #3 0x0804d5f1 in client_handle_input (client=0x8afd7a8) at pop3-client.c:739 _data_stack_cur_id = 3 line = 0x8b3e194 "QUIT" args = ret = #4 0xb7618d44 in io_loop_call_io (io=0x8afca88) at ioloop.c:388 ioloop = 0x8ae6498 t_id = 2 #5 0xb7619e0e in io_loop_handler_run (ioloop=ioloop at entry=0x8ae6498) at ioloop-epoll.c:220 ctx = 0x8ae7180 events = 0x0 event = 0x8ae71c0 list = 0x8ae7aa8 io = tv = {tv_sec = 9, tv_usec = 999871} events_count = 0 msecs = ret = 1 i = j = call = __FUNCTION__ = "io_loop_handler_run" #6 0xb76187d8 in io_loop_run (ioloop=0x8ae6498) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #7 0xb75bdd7e in master_service_run (service=0x8ae63c0, callback=callback at entry=0x804b940 ) at master-service.c:566 No locals. #8 0x0804bd05 in main (argc=1, argv=0x8ae61e0) at main.c:277 set_roots = {0x80504c0, 0x0} login_set = { auth_socket_path = 0x8ade048 "/usr/local/dovecot-2.2/var/run/dovecot/auth-master", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x804b800 , failure_callback = 0x804b7c0 , request_auth_token = 0} service_flags = storage_service_flags = username = 0x0 c = -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From Ralf.Hildebrandt at charite.de Wed Feb 12 09:26:26 2014 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Wed, 12 Feb 2014 10:26:26 +0100 Subject: [Dovecot] Crash in recent dovecot, different line (with Backtrace:dovecot/pop3) Message-ID: <20140212092626.GE28332@charite.de> Reading symbols from /usr/local/dovecot-2.2/libexec/dovecot/pop3...done. [New LWP 17294] [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/i386-linux-gnu/i686/cmov/libthread_db.so.1". Core was generated by `dovecot/pop3'. Program terminated with signal 11, Segmentation fault. #0 0x0804eb6a in client_update_mails (client=client at entry=0x82017a0) at pop3-commands.c:256 256 ret = FALSE; #0 0x0804eb6a in client_update_mails (client=client at entry=0x82017a0) at pop3-commands.c:256 search_args = ctx = mail = 0xb759a797 deleted_msgs = {arr = {buffer = 0x81e2098, element_size = 8}, v = 0x81e2098, v_modifiable = 0x81e2098} seen_msgs = {arr = {buffer = 0xb75de224, element_size = 3076002107}, v = 0xb75de224, v_modifiable = 0xb75de224} msgnum = bit = 1 #1 0x0804ee80 in cmd_quit (client=0x82017a0, args=) at pop3-commands.c:289 No locals. #2 client_command_execute (client=client at entry=0x82017a0, name=, name at entry=0x823e08c "QUIT", args=args at entry=0x804f839 "") at pop3-commands.c:920 No locals. #3 0x0804d5f1 in client_handle_input (client=0x82017a0) at pop3-client.c:739 _data_stack_cur_id = 3 line = 0x823e08c "QUIT" args = ret = #4 0xb7585d44 in io_loop_call_io (io=0x8200a80) at ioloop.c:388 ioloop = 0x81ea490 t_id = 2 #5 0xb7586e0e in io_loop_handler_run (ioloop=ioloop at entry=0x81ea490) at ioloop-epoll.c:220 ctx = 0x81eb178 events = 0x0 event = 0x81eb1b8 list = 0x81ebaa0 io = tv = {tv_sec = 9, tv_usec = 999652} events_count = 0 msecs = ret = 1 i = j = call = __FUNCTION__ = "io_loop_handler_run" #6 0xb75857d8 in io_loop_run (ioloop=0x81ea490) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #7 0xb752ad7e in master_service_run (service=0x81ea3b8, callback=callback at entry=0x804b940 ) at master-service.c:566 No locals. #8 0x0804bd05 in main (argc=1, argv=0x81ea1e0) at main.c:277 set_roots = {0x80504c0, 0x0} login_set = { auth_socket_path = 0x81e2048 "/usr/local/dovecot-2.2/var/run/dovecot/auth-master", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x804b800 , failure_callback = 0x804b7c0 , request_auth_token = 0} service_flags = storage_service_flags = username = 0x0 c = -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From Ralf.Hildebrandt at charite.de Wed Feb 12 09:28:49 2014 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Wed, 12 Feb 2014 10:28:49 +0100 Subject: [Dovecot] v2.2.11 released In-Reply-To: <52FB3B5F.6060601@gmail.com> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> <20140212090517.GB28332@charite.de> <52FB3B5F.6060601@gmail.com> Message-ID: <20140212092849.GF28332@charite.de> * Birta Levente : > > pop3 keeps crashing with a sigsegv in that version. Gotta go back. > > > > Feb 12 10:02:52 postamt dovecot: pop3(mhippler) LJZ31jHyygAKK4EU: > > Fatal: master: service(pop3): child 14635 killed with signal 11 (core > > dumped) > > > > Feb 12 10:02:54 postamt dovecot: pop3(fem-qm-sfb) HlCP1jHyGgCNKtkP: > > Fatal: master: service(pop3): child 14692 killed with signal 11 (core > > dumped) > > > > > > Here too I provided two backtraces. -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From jcblanco at fi.upm.es Wed Feb 12 09:33:48 2014 From: jcblanco at fi.upm.es (Juan C. Blanco) Date: Wed, 12 Feb 2014 10:33:48 +0100 Subject: [Dovecot] Problem rebuilding Centos 5/6 pigeonhole RPM from mercurial version In-Reply-To: <52FA9124.40208@rename-it.nl> References: <52F5142E.7@fi.upm.es> <52FA9124.40208@rename-it.nl> Message-ID: <52FB3FFC.9020501@fi.upm.es> On 11/02/2014 22:07, Stephan Bosch wrote: > On 2/7/2014 6:13 PM, Juan C. Blanco wrote: >> works fine, but if I install pigeonhole in a different path, i.e. >> >> pigeonhole-0.4.2$ make install DESTDIR=/var/tmp/pigeonhole >> > > Ok, so what are you trying to achieve by installing in a different > destination? I wouldn't call myself a libtool/autotools wizard and I am > pretty much as puzzled by this behavior as you are. Obviously, I have > never tried this before myself, and I am wondering why anyone would want > to. :) Thanks Stephan, I don't want this by a specific reason, I have two differente packages, derived from de atrpms ones, one for dovecot and the other one for pigeonhole; the problem arises when trying to rebuild de pigeonhole rpm, in the context of rpmbuild the installation root is a temporary directory that only contains the files needed by this rpm, then does not contains any of the dovecot files. I've done some debug tests with libtool and seems that the problem is with libtool itself, while processing lib-sieve libtool does not include de real paths of any of the ".la" libraries on which it depends, the paths for libdovecot-storage and libdovecot are included while processing this dependencies in the case of libdovecot-lda.la it depends on both. The rpmbuild is done on a system without dovecot or pigeonhole installed, I think that the obvious workaround is to build dovecot rpm and then install dovecot and dovecot-devel before rebuilding pigeonhole. Thanks for your time. Juan C. Blanco > > Regards, > > Stephan. > -- +----------------------------------------------------------------+ | Juan C. Blanco | | | | Centro de Calculo | | | Facultad de Informatica U.P.M. | E-mail: jcblanco at fi.upm.es | | Campus de Montegancedo | | | Boadilla del Monte | Tel.: (+34) 91 336 7466 | | 28660 MADRID (Spain) | Fax : (+34) 91 336 6913 | +----------------------------------------------------------------+ From freebsd-isp at chef-ingenieur.de Wed Feb 12 09:54:18 2014 From: freebsd-isp at chef-ingenieur.de (freebsd-isp at chef-ingenieur.de) Date: Wed, 12 Feb 2014 10:54:18 +0100 Subject: [Dovecot] personal sieve script not included In-Reply-To: <52FA8A78.1020002@rename-it.nl> References: <2e13405bba5ade842083ee24668b25d6.squirrel@mail.webmatic.de> <52FA8A78.1020002@rename-it.nl> Message-ID: <46200d8c66247135baccafa85ba393a1@chef-ingenieur.de> On 11.02.2014 21:39, Stephan Bosch wrote: > On 2/5/2014 9:59 AM, Thomas Krause wrote: >> Hello, >> I'm using dovecot 2.2.10 and roundcube (with managesieve enabled). >> Sieve filtering works well, as long the rule is written >> into ~/.dovecot.sieve (which is a link to ~/sieve/managesieve.sieve) >> When adding a new filter set (in roundcube) the script is >> written to ~/sieve/newfilterset.sieve. This script will not be >> executed. How can I solve this? >> >> I set >> sieve_dir = ~/sieve >> This should work, except I misunderstand the doc. > > I see no obvious problems in your configuration. Do the logs say > anything interesting (set mail_debug=yes)? Your symptoms suggest that > Roundcube is not activating the uploaded script for some reason. That > is > when the symbolic link is updated. > > You could sniff the protocol exchange between Roundcube and Dovecot on > port 4190 (without TLS obviously). Roundcube should issue the SETACTIVE > command. Hi Stephan, it's working now - but I don't now why (I havn't changed anything). When I send a mail to the mailbox, the .dovecot.svbin is created, when new files in ~/sieve I enabled debugging in Roundcube. I cannot see SETACTIVE: [12-Feb-2014 10:33:39 +0100]: S: "IMPLEMENTATION" "Dovecot Pigeonhole" [12-Feb-2014 10:33:39 +0100]: S: "SIEVE" "fileinto reject envelope encoded-character vacation subaddress comparator-i ;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave" [12-Feb-2014 10:33:39 +0100]: S: "NOTIFY" "mailto" [12-Feb-2014 10:33:39 +0100]: S: "SASL" "PLAIN LOGIN" [12-Feb-2014 10:33:39 +0100]: S: "STARTTLS" [12-Feb-2014 10:33:39 +0100]: S: "VERSION" "1.0" [12-Feb-2014 10:33:39 +0100]: S: OK "Capability completed." [12-Feb-2014 10:33:39 +0100]: C: AUTHENTICATE "PLAIN" "***" [12-Feb-2014 10:33:39 +0100]: S: OK "Logged in." [12-Feb-2014 10:33:39 +0100]: C: LISTSCRIPTS [12-Feb-2014 10:33:39 +0100]: S: "managesieve" ACTIVE [12-Feb-2014 10:33:39 +0100]: S: "home" [12-Feb-2014 10:33:39 +0100]: S: OK "Listscripts completed." [12-Feb-2014 10:33:39 +0100]: C: GETSCRIPT "managesieve" [12-Feb-2014 10:33:39 +0100]: S: {118} [12-Feb-2014 10:33:39 +0100]: S: require ["fileinto"]; # rule:[myfilter5] if header :contains "Subject" "filtertest101" { fileinto "INBOX.spezial"; } [12-Feb-2014 10:33:39 +0100]: S: OK "Getscript completed." [12-Feb-2014 10:33:39 +0100]: C: PUTSCRIPT "managesieve" {208+} require ["fileinto"]; # rule:[myfilter5] if header :contains "Subject" "filtertest101" { fileinto "INBOX.spezial"; } # rule:[myfilter2] if header :contains "Subject" "testxxx" { fileinto "INBOX.spezial"; } [12-Feb-2014 10:33:39 +0100]: S: OK "PUTSCRIPT completed." [12-Feb-2014 10:33:39 +0100]: C: LOGOUT Regards, Thomas. From blevi.linux at gmail.com Wed Feb 12 10:21:09 2014 From: blevi.linux at gmail.com (Birta Levente) Date: Wed, 12 Feb 2014 12:21:09 +0200 Subject: [Dovecot] Crash in recent dovecot, different line (with Backtrace:dovecot/pop3) In-Reply-To: <20140212092626.GE28332@charite.de> References: <20140212092626.GE28332@charite.de> Message-ID: <52FB4B15.2040300@gmail.com> On 12/02/2014 11:26, Ralf Hildebrandt wrote: > Sorry, I didn't do this before. Hope is ok. Here is mine: Reading symbols from /usr/libexec/dovecot/pop3...Reading symbols from /usr/lib/debug/usr/libexec/dovecot/pop3.debug...done. done. [New Thread 19189] Missing separate debuginfo for Try: yum --disablerepo='*' --enablerepo='*-debug*' install /usr/lib/debug/.build-id/8a/367167daa883546ca1ffeda543ce1ce919519b Reading symbols from /usr/lib64/dovecot/libdovecot-storage.so.0.0.0...Reading symbols from /usr/lib/debug/usr/lib64/dovecot/libdovecot-storage.so.0.0.0.debug...done. done. Loaded symbols for /usr/lib64/dovecot/libdovecot-storage.so.0.0.0 Reading symbols from /usr/lib64/dovecot/libdovecot.so.0.0.0...Reading symbols from /usr/lib/debug/usr/lib64/dovecot/libdovecot.so.0.0.0.debug...done. done. Loaded symbols for /usr/lib64/dovecot/libdovecot.so.0.0.0 Reading symbols from /lib64/libc-2.12.so...Reading symbols from /usr/lib/debug/lib64/libc-2.12.so.debug...done. done. Loaded symbols for /lib64/libc-2.12.so Reading symbols from /lib64/librt-2.12.so...Reading symbols from /usr/lib/debug/lib64/librt-2.12.so.debug...done. done. Loaded symbols for /lib64/librt-2.12.so Reading symbols from /lib64/libdl-2.12.so...Reading symbols from /usr/lib/debug/lib64/libdl-2.12.so.debug...done. done. Loaded symbols for /lib64/libdl-2.12.so Reading symbols from /lib64/ld-2.12.so...Reading symbols from /usr/lib/debug/lib64/ld-2.12.so.debug...done. done. Loaded symbols for /lib64/ld-2.12.so Reading symbols from /lib64/libpthread-2.12.so...Reading symbols from /usr/lib/debug/lib64/libpthread-2.12.so.debug...done. [Thread debugging using libthread_db enabled] done. Loaded symbols for /lib64/libpthread-2.12.so Core was generated by `dovecot/pop3'. Program terminated with signal 11, Segmentation fault. #0 client_update_mails (client=0x157b2b0) at pop3-commands.c:264 264 seq_range_array_add(&seen_msgs, client->msgnum_to_seq_map[msgnum]); (gdb) bt full #0 client_update_mails (client=0x157b2b0) at pop3-commands.c:264 search_args = ctx = mail = 0x156a66a deleted_msgs = {arr = {buffer = 0x155f090, element_size = 8}, v = 0x155f090, v_modifiable = 0x155f090} seen_msgs = {arr = {buffer = 0x155f120, element_size = 8}, v = 0x155f120, v_modifiable = 0x155f120} msgnum = bit = 2 #1 0x00000000004079af in cmd_quit (client=0x157b2b0, name=, args=0x408340 "") at pop3-commands.c:289 No locals. #2 client_command_execute (client=0x157b2b0, name=, args=0x408340 "") at pop3-commands.c:920 No locals. #3 0x0000000000405300 in client_handle_input (client=0x157b2b0) at pop3-client.c:739 _data_stack_cur_id = 3 line = 0x156a66a "QUIT" args = ret = #4 0x00007f1cc2c67d56 in io_loop_call_io (io=0x157bbc0) at ioloop.c:388 ioloop = 0x1567740 t_id = 2 #5 0x00007f1cc2c68e27 in io_loop_handler_run (ioloop=) at ioloop-epoll.c:220 ctx = 0x1567aa0 events = event = 0x1568900 list = 0x15694d0 io = tv = {tv_sec = 9, tv_usec = 999595} msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #6 0x00007f1cc2c67cc8 in io_loop_run (ioloop=0x1567740) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #7 0x00007f1cc2c16023 in master_service_run (service=0x15675d0, callback=) at master-service.c:566 No locals. #8 0x00000000004046bb in main (argc=1, argv=0x1567390) at main.c:277 set_roots = {0x408fa0, 0x0} login_set = {auth_socket_path = 0x155f050 "/var/run/dovecot/auth-master", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x4047f0 , failure_callback = 0x404310 , request_auth_token = 0} service_flags = storage_service_flags = username = c = -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 553 bytes Desc: OpenPGP digital signature URL: From philippbruell at gmail.com Wed Feb 12 10:46:38 2014 From: philippbruell at gmail.com (=?ISO-8859-1?Q?Philipp_Br=FCll?=) Date: Wed, 12 Feb 2014 11:46:38 +0100 Subject: [Dovecot] Order of istream and ostream chains In-Reply-To: References: <52FA5D9F.5030301@gmail.com> Message-ID: <52FB510E.4040607@gmail.com> On 11/02/14 21:32, Timo Sirainen wrote: > On 12.2.2014, at 2.27, Philipp Br?ll wrote: > >> I'm creating a scrambler plugin, that adds an istream and an ostream to the stream-chain for the mail input/output. It works well until the zlib plugin is added to the configuration. The scrambler should run before the zlib and encrypt the mail before it's compressed. Since, the plugin is named lib18_scrambler_... (and the other lib20_zlib....), that works well when a mail is received. >> >> When a mail is read via IMAP, the plugins should handle the mail in the reverse order. So first, the zlib should decompress it and afterwards the scrambler should decrypt it. >> >> But it seems, that they work the other way around. The scrambler istream gets compressed data as input. It's hooked in the chain of istream as the following... > > In your previous mail you mentioned you're using v2.1.17. Have you tried with v2.2.10? I think this is already fixed (at least I've successfully used zlib + mail encryption plugin). > I just tried version 2.2.11, but the problem seems still to exists. As soon as the zlib is activated, the scrambler receives 0x1f, 0x8b, 0x08, ... which is exactly the gz header. The mail doesn't seem to get decompressed before it's passed to the scrambler. I assume that the order of istreams is messed up. I've checked already the istreams of the mail_filter and zlib plugins, but can't find any differences to my implementation. Do you know any other example code, where I can see how ostreams/istreams are chained in the correct order? Best regards, Philipp -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4261 bytes Desc: S/MIME Cryptographic Signature URL: From h.reindl at thelounge.net Wed Feb 12 11:17:42 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 12 Feb 2014 12:17:42 +0100 Subject: [Dovecot] [Dovecot-news] v2.2.11 released In-Reply-To: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> Message-ID: <52FB5856.1040202@thelounge.net> Am 12.02.2014 00:41, schrieb Timo Sirainen: > + imap proxy: Added proxy_nopipelining passdb setting to work around > other IMAP servers' bugs (MS Exchange 2013 especially). is there some documentation? -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From hodentier at gmail.com Wed Feb 12 12:05:56 2014 From: hodentier at gmail.com (vupibi) Date: Wed, 12 Feb 2014 04:05:56 -0800 (PST) Subject: [Dovecot] No Access to public folder Message-ID: <1392206756148-46696.post@n4.nabble.com> Hello, I have some Issues with Dovecots public folder. I only see the folder in users Mailbox but I cannot subscribe it or copy mails in it. My public file structure (folder: "/var/vmail/public/") looks like this: -rw-rw-rw- 1 ebox ebox 0 Feb 12 01:21 dovecot-acl-list drwxrwsrwx 2 ebox ebox 4096 Feb 12 00:31 test (Wierd thing is that "dovecot-acl-list" is empty, why?) content of "test" public folder is: -rw-r--r-- 1 root ebox 10 Feb 12 01:21 dovecot-acl I can see the folder in my mail accounts but I dont have access to it. I activated ACL and the log sais the plugin is loaded successfully Feb 12 12:54:19 mailand dovecot: imap: Debug: Module loaded: /usr/lib/dovecot/modules/lib02_imap_acl_plugin.so Feb 12 12:54:19 mailand dovecot: imap: Debug: Module loaded: /usr/lib/dovecot/modules/lib01_acl_plugin.so And the dovecot-acl file is loaded too Feb 12 12:54:19 mailand dovecot: imap(test at sxps.eu): Debug: acl vfile: reading file /var/vmail/public/test/dovecot-acl content of "/var/vmail/public/test/dovecot-acl" file is: anyone lr So i think everything is set up the right way but i'm still not able to access the public mal folder. Any suggestions? My Dovecot -n output # 2.0.19: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-58-generic x86_64 Ubuntu 12.04.4 LTS auth_gssapi_hostname = mailand.sxps.int auth_krb5_keytab = /etc/dovecot/dovecot.keytab auth_mechanisms = gssapi plain first_valid_gid = 116 first_valid_uid = 108 log_timestamp = "%Y-%m-%d %H:%M:%S " mail_debug = yes mail_gid = 116 mail_home = /var/vmail/sieve/%d/%u mail_location = maildir:~/Maildir:LAYOUT=fs mail_uid = 108 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { inbox = yes location = prefix = separator = / type = private } namespace { hidden = no inbox = no list = yes location = maildir:/var/vmail/public:LAYOUT=fs prefix = public/ separator = / subscriptions = no type = public } passdb { args = /etc/dovecot/dovecot-ldap.conf driver = ldap } plugin { acl = vfile autocreate = Trash autocreate2 = Spam autocreate3 = Sent autocreate4 = Drafts autosubscribe = Trash autosubscribe2 = Spam autosubscribe3 = Sent autosubscribe4 = Drafts listescape_char = \ quota = maildir:User quota quota_rule = *:storage=0 sieve = /var/vmail/sieve/%d/%u/sieve-script sieve_dir = /var/vmail/sieve/%d/%u sieve_global_path = /var/vmail/sieve/default.sieve sieve_storage = /var/vmail/sieve/%d/%u } protocols = imap sieve service auth { executable = /usr/lib/dovecot/auth unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { group = ebox mode = 0600 user = ebox } user = dovecot } service imap-login { inet_listener imap { address = * port = 143 } inet_listener imaps { address = * port = 993 } } service managesieve-login { inet_listener sieve { port = 4190 } } ssl_cert = Hello, since V 2.2.11 I get that error with pop3. With imap everything is fine. Feb 12 13:06:40 server2 dovecot: pop3-login: Login: user=, method=PLAIN, rip=84.183.42.55, lip=195.137.213.14, mpid=20972, TLS, TLSv1 with cipher AES128-SHA (128/128 bits) Feb 12 13:06:41 server2 dovecot: pop3(user): Fatal: master: service(pop3): child 20972 killed with signal 11 (core dumps disabled) Upgrade/Bugfix is coming? -- Mit freundlichen Gr??en, with kind regards, Jim Knuth --------- Lebensk?nstler leben von der Zeit, die andere nicht haben.(Michael Douglas) From dovecot at freakout.de Wed Feb 12 12:19:18 2014 From: dovecot at freakout.de (Axel Reinhold) Date: Wed, 12 Feb 2014 13:19:18 +0100 Subject: [Dovecot] (no subject) Message-ID: <201402121219.s1CCJIx6021934@bongo.freakout.de> Subject: dovecot-2.2.11 crash on quit after update to dovecot-2.2.11 pop3 crashes at QUIT after successful deliver: [axel at bongo axel]$ gdb opt/dovecot-2.2.11-1/sbin/dovecot core.13590 warning: core file may not match specified executable file. Core was generated by `dovecot/pop3 p3postlogin'. Program terminated with signal 11, Segmentation fault. #0 0x0804e601 in main () (gdb) bt #0 0x0804e601 in main () #1 0xbfec7ff0 in ?? () #2 0x0804e7dc in main () #3 0x08050038 in service_anvil_global_deinit () #4 0x0804da9d in get_gid () #5 0x0804dc6c in main () #6 0xb7e2de37 in ?? () #7 0xb7e2f477 in ?? () #8 0xb7e2df24 in ?? () #9 0xb7dc2fbd in ?? () #10 0x0804bf13 in __register_frame_info_bases () #11 0xb7c55ebc in ?? () (gdb) q last part of conversation: pop* [20053] 140212130153 debug8: SMTP< 250 2.1.5 axel... Recipient ok pop* [20053] 140212130153 debug8: SMTP> DATA pop* [20053] 140212130153 debug8: SMTP< 354 Enter mail, end with "." on a line by itself pop* [20053] 140212130153 debug8: SMTP> . pop* [20053] 140212130153 debug8: SMTP< 250 2.0.0 s1CC1rGZ020100 Message accepted for delivery pop* [20053] 140212130153 debug8: SMTP> QUIT pop* [20053] 140212130153 debug8: SMTP< 221 2.0.0 bongo.freakout.de closing connection pop* [20053] 140212130153 debug6: SMTP sent to axel Id:2.0.0 s1CC1rGZ020100 pop* [20053] 140212130153 debug8: POP3> DELE 8 pop* [20053] 140212130153 debug8: POP3< +OK Marked to be deleted. pop* [20053] 140212130153 debug6: POP3 delete 8 pop* [20053] 140212130153 debug8: POP3> QUIT pop* [20053] 140212130153 debug8: POP3< #CRASH pop* [20053] 140212130153 error : POP3 no quit pop* [20053] 140212130153 debug5: POP3 logout Regards Axel From h.reindl at thelounge.net Wed Feb 12 12:26:32 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 12 Feb 2014 13:26:32 +0100 Subject: [Dovecot] one 2.2.11 POP3 thread is enough Message-ID: <52FB6878.8020403@thelounge.net> why are people starting now every minute a new thread about the same problem already reported as reply of the release announce? -------- Original-Nachricht -------- Betreff: Re: [Dovecot] v2.2.11 released Datum: Wed, 12 Feb 2014 10:05:17 +0100 Von: Ralf Hildebrandt Antwort an: dovecot at dovecot.org An: Dovecot Mailing List * Timo Sirainen : > http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz > http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz.sig > > I haven't had time to read through the Dovecot mailing list yet, so there are likely some reported bugs that haven't been fixed yet. I'll try to get to them next week in San Francisco. (Probably can't get much done this week in Tokyo.) In the mean time here's v2.2.11 with some new features. > > + acl plugin: Added an alternative global ACL file that can contain > mailbox patterns. See http://wiki2.dovecot.org/ACL for details. > + imap proxy: Added proxy_nopipelining passdb setting to work around > other IMAP servers' bugs (MS Exchange 2013 especially). > + Added %{auth_user}, %{auth_username} and %{auth_domain} variables. > See http://wiki2.dovecot.org/Variables for details. > + Added support for LZ4 compression. > + stats: Track also wall clock time for commands. > + pop3_migration plugin improvements to try harder to match the UIDLs > correctly. > - imap: SEARCH/SORT PARTIAL reponses may have been too large. > - doveadm backup: Fixed assert-crash when syncing mailbox deletion. pop3 keeps crashing with a sigsegv in that version. Gotta go back. Feb 12 10:02:52 postamt dovecot: pop3(mhippler) LJZ31jHyygAKK4EU: Fatal: master: service(pop3): child 14635 killed with signal 11 (core dumped) Feb 12 10:02:54 postamt dovecot: pop3(fem-qm-sfb) HlCP1jHyGgCNKtkP: Fatal: master: service(pop3): child 14692 killed with signal 11 (core dumped) -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From alan.schmitt at polytechnique.org Wed Feb 12 13:03:48 2014 From: alan.schmitt at polytechnique.org (Alan Schmitt) Date: Wed, 12 Feb 2014 14:03:48 +0100 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup Message-ID: Hello, To easily access my mail both offline on my computer and on my phone, I am synchronizing a local copy on my computer using offlineimap. As the spam filtering options provided on the server are not sufficient, I am now looking into client-side spam filtering. My current setup is as follows. Mail is synchronized using offlineimap, and delivered to a local dovecot server: --8<---------------cut here---------------start------------->8--- [Repository LocalIMAP] type = IMAP preauthtunnel = /usr/local/Cellar/dovecot/2.2.10/libexec/dovecot/imap -c ~/.dovecotzimbra.rc --8<---------------cut here---------------end--------------->8--- The configuration of the local server is simply: --8<---------------cut here---------------start------------->8--- protocols = imap mail_location = maildir:~/.Maildir/zimbra:INBOX=~/.Maildir/zimbra/.INBOX --8<---------------cut here---------------end--------------->8--- I then read my mail using gnus, and index it using notmuch. A suggestion I've been considering is use the pigeonhole sieve extprograms plugin (http://wiki2.dovecot.org/Pigeonhole/Sieve/Plugins/Extprograms) to call the spam filter (I've been looking at dspam at the moment). However, I could not find how to configure the use of sieves in the context of offlineimap. Hence my questions: Is it possible to use dovecot sieves in such a setting? Is there a howto that explains how to do it? Should I try to do things in a different way? (I'm ready to change my setup, as long as I can keep an offline copy of my email in sync with a server copy.) Thanks a lot for any suggestion, Alan PS: I used to use SpamSieve (http://c-command.com/spamsieve/) on a Mac Mini that was running continuously as a spam filter drone. This machine has been retired and I'm basically looking for leaner ways to do a similar thing. From rrosenfeld at netcologne.de Wed Feb 12 13:12:16 2014 From: rrosenfeld at netcologne.de (Roland Rosenfeld) Date: Wed, 12 Feb 2014 14:12:16 +0100 Subject: [Dovecot] Status In-Reply-To: <3902A0F9-8EBA-465A-B114-75703BE94FC3@iki.fi> References: <52F8D4B9.9040307@netcologne.de> <3902A0F9-8EBA-465A-B114-75703BE94FC3@iki.fi> Message-ID: <20140212131216.GA1911@sys-241.netcologne.de> On Mon, 10 Feb 2014, Timo Sirainen wrote: > > may I nag you again with this idea of self healing the file names > > / size of zlib compressed maildir files for version >= 2.2.11? > That's quite a lot of work for fixing something that shouldn't > really be happening in the first place. I think those problems only > happen once immediately after enabling zlib plugin and for some > reason having the wrong (or missing) S=sizes in maildir filenames? As far as I can reproduce my problems, this usually happens, if you have a cluster of servers with mail_plugins=zlib enabled, forgot to enable zlib of one of the servers and enable zlib_save. The zlib enabled servers write compressed mails to disk with correct S-Value. If you access these compressed mails via the server without zlib plugin, this server will rename the mails to a corrupt S-value, which implies that none of the zlib enabled servers can read the mails any more nor repair them. Yes, I know, that this a layer 8 problem, but I would sleep better when I'd know that dovecot can repair this issue for me be fixing the S-value automatically. > Running http://dovecot.org/tools/maildir-size-fix.pl for all users > once should fix that. So I don't really see this worth spending time > on. This may work on a private site, but not on a big cluster. There a missing zlib plugin will faster break your mailboxes than your script can find the broken boxes... Tschoeeee Roland -- Roland Rosenfeld - Teamverantwortlicher Content Delivery - NED - Technik NETCOLOGNE Gesellschaft f?r Telekommunikation mbH Am Coloneum 9 50829 K?ln Tel.: +49 221 2222-373 Fax: +49 221 2222-7373 Gesch?ftsf?hrer: Jost Hermanns, Mario Wilhelm Vorsitzender des Aufsichtsrates: Dr. Andreas Cerbe HRB 25580, AG K?ln From h.reindl at thelounge.net Wed Feb 12 13:22:32 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 12 Feb 2014 14:22:32 +0100 Subject: [Dovecot] Status In-Reply-To: <20140212131216.GA1911@sys-241.netcologne.de> References: <52F8D4B9.9040307@netcologne.de> <3902A0F9-8EBA-465A-B114-75703BE94FC3@iki.fi> <20140212131216.GA1911@sys-241.netcologne.de> Message-ID: <52FB7598.2040409@thelounge.net> Am 12.02.2014 14:12, schrieb Roland Rosenfeld: > As far as I can reproduce my problems, this usually happens, if you > have a cluster of servers with mail_plugins=zlib enabled, forgot to > enable zlib of one of the servers and enable zlib_save. > > The zlib enabled servers write compressed mails to disk with correct > S-Value > > If you access these compressed mails via the server without zlib > plugin, this server will rename the mails to a corrupt S-value, which > implies that none of the zlib enabled servers can read the mails any > more nor repair them the real problem is having such meta-infos in a *filename* that's broken by design -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From teemu.huovila at dovecot.fi Wed Feb 12 14:01:57 2014 From: teemu.huovila at dovecot.fi (Teemu Huovila) Date: Wed, 12 Feb 2014 16:01:57 +0200 Subject: [Dovecot] v2.2.11 released In-Reply-To: <20140212090517.GB28332@charite.de> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> <20140212090517.GB28332@charite.de> Message-ID: <52FB7ED5.4030908@dovecot.fi> On 02/12/2014 11:05 AM, Ralf Hildebrandt wrote: > pop3 keeps crashing with a sigsegv in that version. Gotta go back. > > Feb 12 10:02:52 postamt dovecot: pop3(mhippler) LJZ31jHyygAKK4EU: > Fatal: master: service(pop3): child 14635 killed with signal 11 (core > dumped) > > Feb 12 10:02:54 postamt dovecot: pop3(fem-qm-sfb) HlCP1jHyGgCNKtkP: > Fatal: master: service(pop3): child 14692 killed with signal 11 (core > dumped) Hello Please find attached a patch that addresses this problem. Apply on top of 2.2.11 sources with hg import . br, Teemu Huovila -------------- next part -------------- A non-text attachment was scrubbed... Name: pop3-msgnum.patch Type: text/x-diff Size: 1967 bytes Desc: not available URL: From avinash.s at yukthi.com Wed Feb 12 14:27:04 2014 From: avinash.s at yukthi.com (Avinash Sultanpur) Date: Wed, 12 Feb 2014 19:57:04 +0530 Subject: [Dovecot] v2.2.11 released In-Reply-To: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> Message-ID: <20140212142703.GI32422@sultanpur.org> On Wed, Feb 12, 2014 at 08:41:19AM +0900, Timo Sirainen wrote: > http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz > http://dovecot.org/releases/2.2/dovecot-2.2.11.tar.gz.sig > > I haven't had time to read through the Dovecot mailing list yet, so there are likely some reported bugs that haven't been fixed yet. I'll try to get to them next week in San Francisco. (Probably can't get much done this week in Tokyo.) In the mean time here's v2.2.11 with some new features. > > + acl plugin: Added an alternative global ACL file that can contain > mailbox patterns. See http://wiki2.dovecot.org/ACL for details. The page is empty. From skdovecot at smail.inf.fh-brs.de Wed Feb 12 16:12:54 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 12 Feb 2014 17:12:54 +0100 (CET) Subject: [Dovecot] Feature Request "doveadm who" for all sockets or limits In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 10 Feb 2014, Steffen Kaiser wrote: > > imap: Error: Disconnected from auth server, aborting (client-pid=2296 > client-id=17278) > imap-login: Info: Internal login failure (pid=2296 id=17278) (internal > failure, 1 successful auths) .... . for the archive: I have found the client causing this error. Some in-house program connected to auth-userdb, but did not closed the connection, rather it opened another connection to query the next user. Most of the time, the number of users was small, so nothing bad happened. But now and then up to 3000 users are to query. That broke the system. However, my feature request remains: Please add some way to query the current useage / fill of the limits. Maybe something like "doveadm who" for all sockets of Dovecot. Kind regards, - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvudhnD1/YhP6VMHAQID8gf/RP8Xmkd8SL22hUgTUojSEiyCyR29n/tt 0hjAEubtuMoTVPfGCz6hFyNOLqNowmJYiLsQarFyBX/peXm6yiGLMe4GJoa6N4Np m0+bRUrBhh+IaQzw+PPfzVAeybQOFGtQ3xi/TXnM0qkoFrryZtLPaeqZeA0xMsDU ObvINE2E+BHrTbBR/MCTuukpsmDSvORA7ixcIbXk//d5Q9+Mn/s7GIjQlHCAoC2U 2ER8H0Oe/VwDCBEUhJ0PFXMBSp2NEP9qU+R9hWtKG7uAfDCgN+rU+2Vlzi1ediWi marcQJziO0MlOetrn+Vpqc7I4w0QNV1r9OImsvt6Ox/5d2iqVn8asA== =ixQh -----END PGP SIGNATURE----- From luciano at vespaperitivo.it Wed Feb 12 16:25:18 2014 From: luciano at vespaperitivo.it (Luciano Mannucci) Date: Wed, 12 Feb 2014 17:25:18 +0100 Subject: [Dovecot] v2.2.11 released In-Reply-To: <52FB7ED5.4030908@dovecot.fi> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> <20140212090517.GB28332@charite.de> <52FB7ED5.4030908@dovecot.fi> Message-ID: <20140212162527.09B5A23384@talvi.dovecot.org> On Wed, 12 Feb 2014 16:01:57 +0200 Teemu Huovila wrote: > Please find attached a patch that addresses this problem. Apply on top of > 2.2.11 sources with hg import . > > br, > Teemu Huovila Thanks 4 the patch! Seems to work 4 me. (I applied it using "patch command, I don't have mercurial installed) Cheers, Luciano. -- /"\ /Via A. Salaino, 7 - 20144 Milano (Italy) \ / ASCII RIBBON CAMPAIGN / PHONE : +39 2 485781 FAX: +39 2 48578250 X AGAINST HTML MAIL / E-MAIL: posthamster at sublink.sublink.ORG / \ AND POSTINGS / WWW: http://www.lesassaie.IT/ From tss at iki.fi Wed Feb 12 16:43:45 2014 From: tss at iki.fi (Timo Sirainen) Date: Thu, 13 Feb 2014 01:43:45 +0900 Subject: [Dovecot] Status In-Reply-To: <52FB7598.2040409@thelounge.net> References: <52F8D4B9.9040307@netcologne.de> <3902A0F9-8EBA-465A-B114-75703BE94FC3@iki.fi> <20140212131216.GA1911@sys-241.netcologne.de> <52FB7598.2040409@thelounge.net> Message-ID: <7A326C0A-0D6B-4489-9521-BBB2A51788BA@iki.fi> On 12.2.2014, at 22.22, Reindl Harald wrote: > Am 12.02.2014 14:12, schrieb Roland Rosenfeld: >> As far as I can reproduce my problems, this usually happens, if you >> have a cluster of servers with mail_plugins=zlib enabled, forgot to >> enable zlib of one of the servers and enable zlib_save. >> >> The zlib enabled servers write compressed mails to disk with correct >> S-Value >> >> If you access these compressed mails via the server without zlib >> plugin, this server will rename the mails to a corrupt S-value, which >> implies that none of the zlib enabled servers can read the mails any >> more nor repair them > > the real problem is having such meta-infos in a *filename* > that's broken by design There isn't really any better way to do it with Maildir. This isn't a problem with dbox since the size is in dbox metadata. I guess Dovecot could once again work around it by reading and uncompressing the whole mail when calculating the size, but then instead of getting errors people would just get horrible performance.. From kremels at kreme.com Wed Feb 12 16:56:39 2014 From: kremels at kreme.com (LuKreme) Date: Wed, 12 Feb 2014 09:56:39 -0700 Subject: [Dovecot] Feature Request "doveadm who" for all sockets or limits In-Reply-To: References: Message-ID: <965A5DC3-4D2C-47E4-B525-94551E4EC378@kreme.com> On 12 Feb 2014, at 09:12 , Steffen Kaiser wrote: > Some in-house program connected to auth-userdb, but did not closed the connection, Is there a way to set a timeout on the open socket? Is it a socket? Would lsof show the connections? (assuming your kernel is compatible with lsof, mine is not so I can't check). > Please add some way to query the current useage / fill of the limits. Maybe something like "doveadm who" for all sockets of Dovecot. That does seem like a useful feature to have. -- "Part of the inhumanity of the computer is that, once it is competently programmed and working smoothly, it is completely honest." - Isaac Asimov From kremels at kreme.com Wed Feb 12 17:16:38 2014 From: kremels at kreme.com (LuKreme) Date: Wed, 12 Feb 2014 10:16:38 -0700 Subject: [Dovecot] Panic on one specific user Message-ID: dovecot: imap(john at example.com): Error: /usr/local/virtual/john at example.com/dovecot.index: modseq_hdr.log_offset too large dovecot: imap(john at example.com): Error: /usr/local/virtual/john at example.com/dovecot.index: modseq_hdr.log_offset too large dovecot: imap(john at example.com): Panic: file mail-transaction-log-file.c: line 1148 (mail_transaction_log_file_get_highest_modseq_at): assertion failed: (offset <= file->sync_offset) dovecot: imap(john at example.com): Fatal: master: service(imap): child 88284 killed with signal 6 (core not dumped - set service imap { drop_priv_before_exec=yes }) and also: dovecot: lda(john at southgaylord.com): Error: /usr/local/virtual/john at southgaylord.com/dovecot.index: modseq_hdr.log_offset too large dovecot: lda(john at southgaylord.com): Error: /usr/local/virtual/john at southgaylord.com/dovecot.index: modseq_hdr.log_offset too large dovecot: lda(john at southgaylord.com): Panic: file mail-transaction-log-file.c: line 1148 (mail_transaction_log_file_get_highest_modseq_at): assertion failed: (offset <= file->sync_offset) (this block does not generate a fatal error) It doesn't appear to be affecting the user's ability to check mail (or at least no complaints about that). The only instances of "LDA" in my logs are this error. The user is a virtual user in MySQL like all the other virtual, including other users on the domain who do not show this problem. I think I may have posted about this before (last month?), but I haven't found a solution. $ dovecot -n # 2.2.9: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 9.1-RELEASE i386 auth_mechanisms = PLAIN LOGIN disable_plaintext_auth = no first_valid_uid = 89 login_log_format_elements = user=<%u> %r %m %c mail_location = maildir:~/Maildir mail_max_userip_connections = 90 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { auto = subscribe special_use = \Junk } mailbox NotJunk { auto = subscribe } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { driver = pam } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } protocols = imap sieve service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 } } service imap-login { inet_listener imaps { port = 993 ssl = yes } } ssl_cert = References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> <20140212090517.GB28332@charite.de> <52FB7ED5.4030908@dovecot.fi> Message-ID: <52FBC1D9.10406@gedalya.net> On 02/12/2014 09:01 AM, Teemu Huovila wrote: > On 02/12/2014 11:05 AM, Ralf Hildebrandt wrote: >> pop3 keeps crashing with a sigsegv in that version. Gotta go back. >> >> Feb 12 10:02:52 postamt dovecot: pop3(mhippler) LJZ31jHyygAKK4EU: >> Fatal: master: service(pop3): child 14635 killed with signal 11 (core >> dumped) >> >> Feb 12 10:02:54 postamt dovecot: pop3(fem-qm-sfb) HlCP1jHyGgCNKtkP: >> Fatal: master: service(pop3): child 14692 killed with signal 11 (core >> dumped) > Hello > > Please find attached a patch that addresses this problem. Apply on top of 2.2.11 sources with hg import . > > br, > Teemu Huovila > Thanks, I had to revert too, despite my earlier comment. Going to try this next. From user+dovecot at localhost.localdomain.org Wed Feb 12 19:40:20 2014 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Wed, 12 Feb 2014 19:40:20 +0000 Subject: [Dovecot] v2.2.11 released In-Reply-To: <20140212142703.GI32422@sultanpur.org> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> <20140212142703.GI32422@sultanpur.org> Message-ID: <52FBCE24.1010407@localhost.localdomain.org> On 02/12/2014 02:27 PM Avinash Sultanpur wrote: > On Wed, Feb 12, 2014 at 08:41:19AM +0900, Timo Sirainen wrote: >> ? >> mailbox patterns. See http://wiki2.dovecot.org/ACL for details. > > The page is empty. Wow, that looks like the result of a horrible sync error. But you can also use the master: http://master.wiki2.dovecot.org/ACL Regards, Pascal -- The trapper recommends today: cafefeed.1404300 at localdomain.org From kremels at kreme.com Wed Feb 12 19:53:50 2014 From: kremels at kreme.com (LuKreme) Date: Wed, 12 Feb 2014 12:53:50 -0700 Subject: [Dovecot] Panic on one specific user In-Reply-To: References: Message-ID: On 12 Feb 2014, at 10:16 , LuKreme wrote: > It doesn't appear to be affecting the user's ability to check mail (or at least no complaints about that). He can check mail, he cannot RECEIVE mail. -- Forget the Joneses. I can't keep up with The Simpsons. From hodentier at gmail.com Wed Feb 12 22:08:33 2014 From: hodentier at gmail.com (vupibi) Date: Wed, 12 Feb 2014 14:08:33 -0800 (PST) Subject: [Dovecot] can not see public mailbox In-Reply-To: References: Message-ID: <1392242913852-46713.post@n4.nabble.com> Just an idea, but unix separates between Capital letters and letters, perhaps you could change this: location = maildir:/home/vmail/public:LAYOUT=fs prefix = Public/ separator = / subscriptions = yes type = public into this location = maildir:/home/vmail/public:LAYOUT=fs prefix = public/ separator = / subscriptions = yes type = public -- View this message in context: http://dovecot.2317879.n4.nabble.com/can-not-see-public-mailbox-tp46659p46713.html Sent from the Dovecot mailing list archive at Nabble.com. From tom at whyscream.net Wed Feb 12 22:13:51 2014 From: tom at whyscream.net (Tom Hendrikx) Date: Wed, 12 Feb 2014 23:13:51 +0100 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup In-Reply-To: References: Message-ID: <52FBF21F.905@whyscream.net> On 12-02-14 14:03, Alan Schmitt wrote: > Hello, > > To easily access my mail both offline on my computer and on my > phone, I am synchronizing a local copy on my computer using > offlineimap. As the spam filtering options provided on the server > are not sufficient, I am now looking into client-side spam > filtering. > > My current setup is as follows. Mail is synchronized using > offlineimap, and delivered to a local dovecot server: > > --8<---------------cut here---------------start------------->8--- > [Repository LocalIMAP] type = IMAP preauthtunnel = > /usr/local/Cellar/dovecot/2.2.10/libexec/dovecot/imap -c > ~/.dovecotzimbra.rc --8<---------------cut > here---------------end--------------->8--- > > The configuration of the local server is simply: > > --8<---------------cut here---------------start------------->8--- > protocols = imap mail_location = > maildir:~/.Maildir/zimbra:INBOX=~/.Maildir/zimbra/.INBOX > --8<---------------cut here---------------end--------------->8--- > > I then read my mail using gnus, and index it using notmuch. > > A suggestion I've been considering is use the pigeonhole sieve > extprograms plugin > (http://wiki2.dovecot.org/Pigeonhole/Sieve/Plugins/Extprograms) to > call the spam filter (I've been looking at dspam at the moment). > However, I could not find how to configure the use of sieves in the > context of offlineimap. Hence my questions: > > Is it possible to use dovecot sieves in such a setting? Is there a > howto that explains how to do it? You could simply enable sieve in the dovecot environment. The offlineimap + dovecot setup you have running already can be left mostly intact: it has nothing to do with offlineimap. You could just setup sieve per the dovecot wiki guidelines, and then create a sieve script that uses the ext_programs plugin to call dspam (or any other filter that adds headers and is able to print the message including those added headers to stdout). I'm not sure if it's necessary to do the delivery to dovecot using Dovecot's deliver LDA, or that you can keep using the '...libexec/dovecot/imap' binary for that in order to have sieve support. Maybe someone else can fill that in. Regards, Tom From d.stoye at cms.hu-berlin.de Wed Feb 12 07:34:36 2014 From: d.stoye at cms.hu-berlin.de (Daniel Stoye) Date: Wed, 12 Feb 2014 08:34:36 +0100 Subject: [Dovecot] Exclude Users from replication/sync Message-ID: <52FB240C.70504@cms.hu-berlin.de> Hi All, i'm searching for a way to exclude certain users from dovecots replication mechanism. I can't use the first_valid_uid setting, because the uid of my pam (ldap) users und my system users are mixed up. So, is there a way to limit my users i currently have in my userdb or somehow exclude specific uids from replication? Thanks, Daniel From kremels at kreme.com Thu Feb 13 01:22:19 2014 From: kremels at kreme.com (LuKreme) Date: Wed, 12 Feb 2014 18:22:19 -0700 Subject: [Dovecot] Panic on one specific user In-Reply-To: References: Message-ID: <67DC7DFE-75F0-4C89-B0C2-D60C8BAF6E37@kreme.com> On 12 Feb 2014, at 12:53 , LuKreme wrote: > On 12 Feb 2014, at 10:16 , LuKreme wrote: >> It doesn't appear to be affecting the user's ability to check mail (or at least no complaints about that). > > He can check mail, he cannot RECEIVE mail. I completely reinstalled dovecot, was still getting the same errors, still only on that user. I went into the user's mailspool and find . -name "dovecot*" -delete All is right with the world. -- 'You know me,' said Rincewind. 'Just when I'm getting a grip on something Fate comes along and jumps on my fingers.' --Interesting Times From tss at iki.fi Thu Feb 13 03:23:51 2014 From: tss at iki.fi (Timo Sirainen) Date: Thu, 13 Feb 2014 12:23:51 +0900 Subject: [Dovecot] Exclude Users from replication/sync In-Reply-To: <52FB240C.70504@cms.hu-berlin.de> References: <52FB240C.70504@cms.hu-berlin.de> Message-ID: On 12.2.2014, at 16.34, Daniel Stoye wrote: > i'm searching for a way to exclude certain users from dovecots > replication mechanism. > > I can't use the first_valid_uid setting, because the uid of my pam > (ldap) users und my system users are mixed up. > > So, is there a way to limit my users i currently have in my userdb > or somehow exclude specific uids from replication? Which userdb do you use? For example with SQL you could change the iterate_query not to return all users for replicator. From 14dovecotml at robotz.com Thu Feb 13 03:34:04 2014 From: 14dovecotml at robotz.com (Derek Winterstien) Date: Wed, 12 Feb 2014 21:34:04 -0600 Subject: [Dovecot] Hybrid of linux user accounts and virtual user accounts configuration Message-ID: <20140213033408.2C0C42337A@talvi.dovecot.org> So some system users have their email forward to Maildir in their /home/user directory (virtual_alias_maps) for their domain . This I have working! And the rest are non-system users, ie virtual users listed in a plain text file and their MailDir will be in /home/vmial/domain.com/user/ The virtual user part is working 100% with postfix and dovecot accepting mail for each virtual alias and system account holders popping in to retrieve their mail. The second part is working 50%. I have email for virtual users going into /home/vmail/domain.com where they are supposed to go. Now, I am very confused on how to configure dovecot to allow folks without system accounts to login and retrieve their email. I have been going through one guide after another. When I start changing things I break the first working part, the system accounts being able to get their mail. Changes to dovecot.conf to get the second working negatively impact the first. Also, a lot of documentation is out of date, which further complicates matters. Postfix/Dovecot: Postfix version: 2.6.6 Dovecot version: 2.0.9 From tss at iki.fi Thu Feb 13 03:37:30 2014 From: tss at iki.fi (Timo Sirainen) Date: Thu, 13 Feb 2014 12:37:30 +0900 Subject: [Dovecot] can not see public mailbox In-Reply-To: References: Message-ID: On 11.2.2014, at 5.43, David Mehler wrote: > I'm running Dovecot2 and trying to set up public mailboxes. I've got a > virtual user system set up with postfix and using MySQL > authentication. I'm wanting to create several public mailboxes for > shared messages. I've followed the wiki and have the public folder > created. I've got a folder /home/vmail/public/public1 public1 being > the maildir of the public mailbox. > > I can see in my folder list of my webmail client the root public > folder but I can't change in to it and I can not see the public1 > public mailbox. You can use "doveadm acl debug" command to try to figure out why a user can't see a shared mailbox. For example: doveadm acl debug -u user at domain Public/foo > # 2.1.16: /etc/dovecot/dovecot.conf I don't remember how good the acl debug command is in v2.1, it's at least a bit better in v2.2. From tss at iki.fi Thu Feb 13 03:40:46 2014 From: tss at iki.fi (Timo Sirainen) Date: Thu, 13 Feb 2014 12:40:46 +0900 Subject: [Dovecot] master user and ACL's In-Reply-To: <52F73DF4.9000408@one.com> References: <52F73DF4.9000408@one.com> Message-ID: On 9.2.2014, at 17.36, Peter Mogensen wrote: > Quick question...I read in the docs that: > "Master user is still subject to ACLs just like any other user, which means that by default the master user has no access to any mailboxes of the user." > ... and that the standard workaround is to return master_user=%u from the userdb. > > But why is the master_user authn-id used in the ACLs and not the authz-id (requested-login-user) ? > > Isn't the whole point of SASL authz-id semantics to have authorization resolved based on the authz-id? Some people are using master user logins to do other types of things, such as allowing voicemail software to access only the Voicemail folder of everyone. Or spam software access only to the Spam folder. Or an alternative read-only username+password for all users that can access the same user's mails only read-only. From alan.schmitt at polytechnique.org Thu Feb 13 07:22:38 2014 From: alan.schmitt at polytechnique.org (Alan Schmitt) Date: Thu, 13 Feb 2014 08:22:38 +0100 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup In-Reply-To: <52FBF21F.905@whyscream.net> (Tom Hendrikx's message of "Wed, 12 Feb 2014 23:13:51 +0100") References: <52FBF21F.905@whyscream.net> Message-ID: Hello Tom, Tom Hendrikx writes: > You could simply enable sieve in the dovecot environment. The > offlineimap + dovecot setup you have running already can be left > mostly intact: it has nothing to do with offlineimap. > > You could just setup sieve per the dovecot wiki guidelines, and then > create a sieve script that uses the ext_programs plugin to call dspam > (or any other filter that adds headers and is able to print the > message including those added headers to stdout). Thank you for the suggestion. This is indeed what I'm trying to do. > I'm not sure if it's necessary to do the delivery to dovecot using > Dovecot's deliver LDA, or that you can keep using the > '...libexec/dovecot/imap' binary for that in order to have sieve > support. Maybe someone else can fill that in. This is the crux of my question, I guess. Right now I don't deliver any mail, but use offlineimap to keep a local imap server (dovecot) in sync with a remote one. So my questions are: 1. Can I use dovecot's sieves if I don't deliver mail? 2. If not, how can I hook up offlineimap and dovecot so that mail is delivered instead of synchronized? Thanks, Alan From apm at one.com Thu Feb 13 07:37:38 2014 From: apm at one.com (Peter Mogensen) Date: Thu, 13 Feb 2014 08:37:38 +0100 Subject: [Dovecot] master user and ACL's In-Reply-To: References: <52F73DF4.9000408@one.com> Message-ID: <52FC7642.8010402@one.com> On 2014-02-13 04:40, Timo Sirainen wrote: > On 9.2.2014, at 17.36, Peter Mogensen wrote: >> But why is the master_user authn-id used in the ACLs and not the authz-id (requested-login-user) ? >> >> Isn't the whole point of SASL authz-id semantics to have authorization resolved based on the authz-id? > > Some people are using master user logins to do other types of things, such as allowing voicemail software to access only the Voicemail folder of everyone. Or spam software access only to the Spam folder. But wouldn't the correct way for these use cases be to share the individual folders with the voicemail/spam user ACL needed - not to log in as the user. > Or an alternative read-only username+password for all users that can access the same user's mails only read-only. > This one is more tricky, since it mixes authentication and authorization more. ... which always needs thinking in a protocol as IMAP where the resource accessed is tied to the user (as opposed to HTTP). Intuitively, if I would set this up, I would probably try with having 2 userdb entries pointing to the same mail_location, but with different acl_groups userdb fields. ... or something to that effect. In other words ... not determine it based on authentication-ID, but based on authorization-ID. My own use-case is to have 1 authentication-ID being able to access several userdb accounts. - with the same credentials. Based on checking whether the give SASL authz-id is OK for that user. But from then on, just be that user. Is specifying master_user=%u the official way to switch between these behaviours of which SASL id ACLs are checked against or is there an enhancement of the dovecot functionality to consider to handle SASL authz-id/authn-id in a more general way? /Peter From AxelLuttgens at swing.be Thu Feb 13 08:22:11 2014 From: AxelLuttgens at swing.be (Axel Luttgens) Date: Thu, 13 Feb 2014 09:22:11 +0100 Subject: [Dovecot] lmtp_rcpt_check_quota not working In-Reply-To: References: Message-ID: <7DE209CE-2F9D-404C-8215-A705ACCC84A0@swing.be> Le 11 f?vr. 2014 ? 08:34, Bernhard Schmidt a ?crit : > [...] > so Dovecot should reject in RCPT TO phase, but according to the logs of the > upstream Postfix it does so after END-OF-DATA > > (host xxx[2001:xxx] said: 452 4.2.2 > Quota exceeded (mailbox for user is > full) (in reply to end of DATA command)) > [...] Hello Bernhard, Could you exercise your quota-status service with variations of: # telnet xxx 12340 Trying xxx... Connected to xxx. Escape character is '^]'. recipient=john.doe at example.com size=1000000 action=OK ^] and see whether the replies are the expected one? If yes, this would point to some error in Postfix' configuration. If not, well... could be you are facing the same kind of problem I'm having here (never managed to have the service reply anything else than "OK" or "REJECT Unknown user"...) HTH, Axel From d.stoye at cms.hu-berlin.de Thu Feb 13 08:24:40 2014 From: d.stoye at cms.hu-berlin.de (Daniel Stoye) Date: Thu, 13 Feb 2014 09:24:40 +0100 Subject: [Dovecot] Exclude Users from replication/sync In-Reply-To: References: <52FB240C.70504@cms.hu-berlin.de> Message-ID: <52FC8148.2050900@cms.hu-berlin.de> I'm using PAM with padl_pam as a backend to get the users from an ldap server. userdb { driver = passwd args = blocking=yes uid=XXX gid=XXX } passdb { driver = pam args = failure_show_msg=yes dovecot } Thanks, Daniel On 02/13/2014 04:23 AM, Timo Sirainen wrote: > On 12.2.2014, at 16.34, Daniel Stoye wrote: > >> i'm searching for a way to exclude certain users from dovecots >> replication mechanism. >> >> I can't use the first_valid_uid setting, because the uid of my pam >> (ldap) users und my system users are mixed up. >> >> So, is there a way to limit my users i currently have in my userdb >> or somehow exclude specific uids from replication? > > Which userdb do you use? For example with SQL you could change the iterate_query not to return all users for replicator. > From ffiore at babel.it Thu Feb 13 09:35:06 2014 From: ffiore at babel.it (Francesco Fiore) Date: Thu, 13 Feb 2014 10:35:06 +0100 Subject: [Dovecot] Segmentation fault in libdovecot-storage.so In-Reply-To: <52F8B0D9.4010308@babel.it> References: <52F8B0D9.4010308@babel.it> Message-ID: <52FC91CA.9070601@babel.it> Hi all! Is there any news for this problem? How can I be of help? Currently this issue is very critical for me. I get about 10-15 segfault per minute... Thanks Francesco On 10/02/2014 11:58, Francesco Fiore wrote: > Hi, > I obtain continuosly segmentation fault of processes pop3 and imap, with > version 2.2.10. > This is the error for the pop3 process (but for imap is is the same): > > 2014-02-10 11:06:22 pop3(xxxxxxx at yyyyyyyy.zz): Fatal: master: > service(pop3): child 23804 killed with signal 11 (core dumped) > > This is the kernel log: > > Feb 10 11:06:22 pecpop5 kernel: pop3[23804]: segfault at 7fa42a3f4070 ip > 00007fa41ff849cd sp 00007fff78dedfa0 error 4 in > libdovecot-storage.so.0.0.0[7fa41fefa000+d9000] > > ------------------------------------------------------- > # /opt/dovecot-2.2.10/sbin/dovecot --version > 2.2.10 > ------------------------------------------------------- > # cat /etc/redhat-release > CentOS release 6.4 (Final) > ------------------------------------------------------- > # uname -r > 2.6.32-358.23.2.el6.x86_64 > ------------------------------------------------------- > Filesystem: NFS > ------------------------------------------------------- > # /opt/dovecot-2.2.10/sbin/dovecot -n > # 2.2.10: /opt/dovecot-2.2.10/etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-358.23.2.el6.x86_64 x86_64 CentOS release 6.4 (Final) > auth_debug = yes > auth_master_user_separator = * > auth_username_format = > default_vsz_limit = 512 M > disable_plaintext_auth = no > dotlock_use_excl = no > first_valid_gid = 101 > first_valid_uid = 102 > imap_id_send = > import_environment = TZ > info_log_path = /var/log/dovecot.log > log_path = /var/log/dovecot.log > log_timestamp = "%Y-%m-%d %H:%M:%S " > mail_fsync = always > mail_gid = 101 > mail_location = maildir:%h/Maildir > mail_max_userip_connections = 50 > mail_nfs_index = yes > mail_nfs_storage = yes > mail_plugins = quota expire fts fts_lucene mail_log notify > mail_uid = 102 > maildir_broken_filename_sizes = yes > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include variables body enotify > environment mailbox date ihave > mbox_write_locks = fcntl > mmap_disable = yes > namespace inbox { > inbox = yes > location = > mailbox Drafts { > special_use = \Drafts > } > mailbox Junk { > special_use = \Junk > } > mailbox Sent { > special_use = \Sent > } > mailbox "Sent Messages" { > special_use = \Sent > } > mailbox Trash { > special_use = \Trash > } > prefix = INBOX. > separator = . > subscriptions = yes > type = private > } > passdb { > args = /opt/dovecot-2.2.10/etc/dovecot/passwd.masterusers > driver = passwd-file > master = yes > } > passdb { > args = /opt/dovecot-2.2.10/etc/dovecot/dovecot-ldap.conf > driver = ldap > } > passdb { > args = /opt/dovecot-2.2.10/etc/dovecot/dovecot-ldap-multiuser.conf > driver = ldap > master = yes > } > plugin { > fts = lucene > fts_lucene = > mail_log_events = delete undelete expunge copy mailbox_delete > mailbox_rename > mail_log_fields = uid box msgid size > quota = maildir > quota_rule2 = INBOX.Trash:storage=+100M > } > protocols = imap pop3 > service anvil { > client_limit = 3000 > } > service auth { > client_limit = 4096 > unix_listener auth-userdb { > mode = 0600 > } > } > service imap-login { > inet_listener imap { > address = 10.11.47.49 > port = 143 > } > inet_listener imaps { > address = 10.11.47.49 > port = 993 > ssl = yes > } > process_limit = 2500 > process_min_avail = 5 > } > service imap { > drop_priv_before_exec = yes > process_limit = 2500 > process_min_avail = 5 > } > service managesieve-login { > inet_listener sieve { > port = 4190 > } > process_min_avail = 0 > service_count = 1 > vsz_limit = 64 M > } > service managesieve { > drop_priv_before_exec = yes > process_limit = 1024 > } > service pop3-login { > inet_listener pop3 { > address = 10.11.47.49 > port = 110 > } > inet_listener pop3s { > address = 10.11.47.49 > port = 995 > ssl = yes > } > process_limit = 300 > process_min_avail = 5 > } > service pop3 { > drop_priv_before_exec = yes > process_limit = 300 > process_min_avail = 5 > } > ssl_cert = ssl_key = userdb { > args = /opt/dovecot-2.2.10/etc/dovecot/dovecot-ldap.conf > driver = ldap > } > protocol lmtp { > mail_plugins = quota expire fts fts_lucene mail_log notify sieve > } > protocol lda { > mail_plugins = quota expire fts fts_lucene mail_log notify sieve > } > protocol imap { > mail_plugins = quota imap_quota mail_log notify > } > protocol pop3 { > mail_plugins = quota mail_log notify > pop3_uidl_format = UID%u-%v > } > > ------------------------------------------------------- > (gdb) bt full > #0 0x00007f351537e9cd in mail_cache_header_fields_read (cache=0xf16740) > at mail-cache-fields.c:369 > field_hdr = 0x7f35157ed040 > field = {name = 0x0, idx = 0, type = > MAIL_CACHE_FIELD_FIXED_SIZE, field_size = 0, decision = > MAIL_CACHE_DECISION_NO, last_used = 0} > last_used = 0x7f35157ed04c > sizes = 0x7f35217ed04c > types = 0x7f352d7ed04c
> decisions = 0x7f35307ed04c
bounds> > p = 0x7f35337ed04c
> names = > end = 0x7f355e7ed040
> orig_key = 0x7f35155e8715 "I\211\303L\213L$0L\213D$(H\213|$ > H\213t$\030H\213T$\020H\213L$\bH\213\004$H\203\304HA\377\343ffffff.\017\037\204" > > fidx = > new_fields_count = > dec = > max_drop_time = 1388530800 > offset = 64 > i = > #1 0x00007f351537c664 in mail_cache_open_and_verify (cache=0xf16740) at > mail-cache.c:497 > ret = 1 > #2 0x00007f351537fe4c in mail_cache_field_exists (view=0xf16110, > seq=, field=) at > mail-cache-lookup.c:345 > data = > __FUNCTION__ = "mail_cache_field_exists" > #3 0x00007f351537ff64 in mail_cache_lookup_field (view=0xf16110, > dest_buf=0x7fff96c80030, seq=52, field_idx=0) at mail-cache-lookup.c:413 > field_def = > iter = {view = 0x7f3500000001, remap_counter = 0, seq = 0, rec > = 0x1, pos = 355448944, rec_size = 32565, offset = 2048, trans_next_idx > = 0, stop = 0, failed = 0, > memory_appends_checked = 0, disk_appends_checked = 0} > field = {field_idx = 15818688, size = 0, data = 0x0, offset = > 52} > ret = > #4 0x00007f3515367999 in index_mail_cache_lookup_field (mail=0xf21910, > buf=, field_idx=) at > index-mail.c:68 > ret = -1765278176 > #5 0x00007f35153685c5 in index_mail_get_fixed_field (mail=0xf21910, > field=, data=, data_size=4) at > index-mail.c:130 > field_idx = 0 > buf = {data = 0xf21b14, used = 0, priv = {0xf21b14, 0x0, 0x4, > 0x0, 0x0}} > __FUNCTION__ = "index_mail_get_fixed_field" > #6 0x00007f3515368843 in index_mail_update_access_parts (mail=0xf21910) > at index-mail.c:1385 > _mail = 0xf21910 > data = 0xf21a80 > cache_fields = 0xf164a0 > cache_view = 0xf16110 > hdr = > input = 0x7f35150a0227 > #7 0x00007f3515368a56 in index_mail_set_seq (_mail=0xf21910, seq=52, > saving=) at index-mail.c:1521 > mail = 0xf21910 > #8 0x00007f351536e72b in search_more_with_mail (ctx=0xf1f620, > mail_r=0x7fff96c80190) at index-search.c:1507 > _ctx = 0xf1f620 > box = 0xf12030 > cost2 = > match = > ret = -1 > imail = 0xf21910 > cost1 = 0 > #9 search_more_with_prefetching (ctx=0xf1f620, mail_r=0x7fff96c80190) > at index-search.c:1579 > _data_stack_cur_id = 4 > ret = > mail = 0xf21910 > mails = > ---Type to continue, or q to quit--- > #10 search_more (ctx=0xf1f620, mail_r=0x7fff96c80190) at > index-search.c:1650 > imail = > ret = -1765278176 > #11 0x00007f351536ee28 in index_storage_search_next_nonblock > (_ctx=0xf1f620, mail_r=0xf0f9a8, tryagain_r=0x7fff96c801ff) at > index-search.c:1674 > ctx = 0xf1f620 > mail = > mailp = > seq = > ret = > #12 0x00007f3515348507 in mailbox_search_next_nonblock (ctx=0xf1f620, > mail_r=0xf0f9a8, tryagain_r=) at mail-storage.c:1787 > box = > #13 0x00007f3515348566 in mailbox_search_next (ctx=0xf1f620, > mail_r=0xf0f9a8) at mail-storage.c:1773 > tryagain = false > #14 0x0000000000418a0e in imap_fetch_more_int (ctx=0xf0f948, > cancel=false) at imap-fetch.c:479 > state = 0xf0f998 > client = 0xf0efb0 > handlers = 0xf0fc78 > count = 5 > ret = > __FUNCTION__ = "imap_fetch_more_int" > #15 0x0000000000418b61 in imap_fetch_more (ctx=0xf0f948, cmd=0xf0f810) > at imap-fetch.c:556 > ret = > __FUNCTION__ = "imap_fetch_more" > #16 0x000000000040d75d in cmd_fetch (cmd=0xf0f810) at cmd-fetch.c:284 > client = 0xf0efb0 > ctx = 0xf0f948 > args = 0xefaa38 > next_arg = > list_arg = 0x0 > search_args = 0x0 > qresync_args = {qresync_sample_seqset = 0xf0f7f0, > qresync_sample_uidset = 0x7f35150ae158} > messageset = 0xefaba0 "52:84" > send_vanished = > ret = > #17 0x0000000000416fbd in command_exec (cmd=0xf0f810) at > imap-commands.c:158 > hook = 0xef80f0 > ret = > #18 0x00000000004160e0 in client_command_input (cmd=0xf0f810) at > imap-client.c:780 > client = 0xf0efb0 > command = > __FUNCTION__ = "client_command_input" > #19 0x00000000004161cd in client_command_input (cmd=0xf0f810) at > imap-client.c:841 > client = 0xf0efb0 > command = > __FUNCTION__ = "client_command_input" > #20 0x000000000041644d in client_handle_next_command (client=0xf0efb0) > at imap-client.c:879 > No locals. > #21 client_handle_input (client=0xf0efb0) at imap-client.c:891 > _data_stack_cur_id = 3 > ret = false > remove_io = false > handled_commands = false > __FUNCTION__ = "client_handle_input" > #22 0x00000000004167bf in client_input (client=0xf0efb0) at > imap-client.c:933 > cmd = > output = 0xf08100 > ---Type to continue, or q to quit--- > bytes = 77 > __FUNCTION__ = "client_input" > #23 0x00007f351509b336 in io_loop_call_io (io=0xf081d0) at ioloop.c:388 > ioloop = 0xef7720 > t_id = 2 > #24 0x00007f351509c3a7 in io_loop_handler_run (ioloop= out>) at ioloop-epoll.c:220 > ctx = 0xef83d0 > events = > event = 0xef9230 > list = 0xef9e00 > io = > tv = {tv_sec = 1799, tv_usec = 999407} > msecs = > ret = 1 > i = > call = > __FUNCTION__ = "io_loop_handler_run" > #25 0x00007f351509b2a8 in io_loop_run (ioloop=0xef7720) at ioloop.c:412 > __FUNCTION__ = "io_loop_run" > #26 0x00007f3515049f73 in master_service_run (service=0xef75b0, > callback=) at master-service.c:566 > No locals. > #27 0x000000000041fd07 in main (argc=1, argv=0xef7390) at main.c:400 > set_roots = {0x427c60, 0x0} > login_set = {auth_socket_path = 0xeef060 "\210\360", > , postlogin_socket_path = 0x0, > postlogin_timeout_secs = 60, > callback = 0x41ff00 , > failure_callback = 0x41fea0 , request_auth_token > = 1} > service_flags = > storage_service_flags = > username = > c = > > Thanks > Francesco From berni at birkenwald.de Thu Feb 13 09:47:59 2014 From: berni at birkenwald.de (Bernhard Schmidt) Date: Thu, 13 Feb 2014 09:47:59 +0000 (UTC) Subject: [Dovecot] lmtp_rcpt_check_quota not working References: <7DE209CE-2F9D-404C-8215-A705ACCC84A0@swing.be> Message-ID: Axel Luttgens wrote: Hi Axel, > Le 11 f?vr. 2014 ? 08:34, Bernhard Schmidt a ?crit : > >> [...] >> so Dovecot should reject in RCPT TO phase, but according to the logs of the >> upstream Postfix it does so after END-OF-DATA >> >> (host xxx[2001:xxx] said: 452 4.2.2 >> Quota exceeded (mailbox for user is >> full) (in reply to end of DATA command)) >> [...] > > Hello Bernhard, > > Could you exercise your quota-status service with variations of: > > # telnet xxx 12340 > Trying xxx... > Connected to xxx. > Escape character is '^]'. > recipient=john.doe at example.com > size=1000000 > > action=OK > > ^] > > and see whether the replies are the expected one? > > If yes, this would point to some error in Postfix' configuration. > > If not, well... could be you are facing the same kind of problem I'm > having here (never managed to have the service reply anything else > than "OK" or "REJECT Unknown user"...) quota-status works absolutely fine, our frontend MXes defer mails for mailboxes over quota. But when we try to send a mail to the mailbox nevertheless through LMTP (i.e. because it was generated on a server that doesn't check quota-status), it is deferred in LMTP in the END-OF-DATA phase, not in RCPT TO as expected. Bernhard From Ralf.Hildebrandt at charite.de Thu Feb 13 10:06:28 2014 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Thu, 13 Feb 2014 11:06:28 +0100 Subject: [Dovecot] v2.2.11 released In-Reply-To: <52FB7ED5.4030908@dovecot.fi> References: <2683233D-98FF-4F2A-9BCC-44078B5C373E@iki.fi> <20140212090517.GB28332@charite.de> <52FB7ED5.4030908@dovecot.fi> Message-ID: <20140213100628.GC2471@charite.de> * Teemu Huovila : > Please find attached a patch that addresses this problem. Apply on top of 2.2.11 sources with hg import . Working like a charm! -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From mtrainer at westnet.com.au Thu Feb 13 10:13:56 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Thu, 13 Feb 2014 18:13:56 +0800 Subject: [Dovecot] Getting Director Proxy Working In-Reply-To: References: Message-ID: Finally got it working. I eventually realized I needed to install dovecot-pop3d and dovecot-imapd for it to work :-) Murray -------- Original Message -------- From: Murray Trainer Sent: 12 February 2014 12:51:00 PM AWST To: dovecot at dovecot.org Subject: Re: [Dovecot] Getting Director Proxy Working ? ----- Original Message ----- From: "Murray Trainer" To: Cc: Sent:Wed, 12 Feb 2014 09:25:24 +0800 Subject:[Dovecot] Getting Director Proxy Working Hi All, I can't get directory proxying of pop3 and imap working.? The director stuff appears to be OK - see below.?? The ldap authentication is working on the backend mail server.? I just get connection refused when I telnet to the proxy on the pop3 and imap ports.? Nothing appears to be running on the pop3 and imap ports despite the lines in the config below.? I am not sure what to do from here as nothing is showing up in the logs. ? Some assistance would be greatly appreciated. Thanks Murray # doveadm director status mail server ip vhosts????????????????????????????????????????????????????????????????????????????????????????????????????????? users x.x.x.x ????? 100????????????????????????????????????????????????????????????????????????????????????????????????????????????? 0 # doveadm director map user??????????????????????????????????????????????????????????????????????????????????????????????????????? mail server ip expire time # doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.1 auth_cache_size = 32 M auth_cache_ttl = 2 hours auth_debug = yes auth_mechanisms = plain login auth_verbose = yes base_dir = /var/run/dovecot/ director_mail_servers = x.x.x.x director_servers = y.y.y.y disable_plaintext_auth = no mail_debug = yes passdb { ? args = nopassword=y proxy=y ? driver = static } service director { ? fifo_listener login/proxy-notify { ??? mode = 0666 ??? user = $default_login_user ? } ? inet_listener { ??? port = 9090 ? } ? unix_listener director-userdb { ??? mode = 0600 ? } ? unix_listener login/director { ??? mode = 0666 ? } } service imap-login { ? executable = imap-login director ? inet_listener imap { ??? port = 143 ? } } service pop3-login { ? executable = pop3-login director ? inet_listener pop3 { ??? port = 110 ? } } ssl_cert = Sorry, full dovecot config below: # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.1 auth_cache_size = 32 M auth_cache_ttl = 2 hours auth_debug = yes auth_mechanisms = plain login auth_verbose = yes base_dir = /var/run/dovecot/ director_mail_servers = x.x.x.x director_servers = y.y.y.y disable_plaintext_auth = no mail_debug = yes passdb { ? args = nopassword=y proxy=y ? driver = static } service director { ? fifo_listener login/proxy-notify { ??? mode = 0666 ??? user = $default_login_user ? } ? inet_listener { ??? port = 9090 ? } ? unix_listener director-userdb { ??? mode = 0600 ? } ? unix_listener login/director { ??? mode = 0666 ? } } service imap-login { ? executable = imap-login director ? inet_listener imap { ??? port = 143 ? } } service pop3-login { ? executable = pop3-login director ? inet_listener pop3 { ??? port = 110 ? } } ssl_cert = -- Sent from my Android phone with K-9 Mail. Please excuse my brevity. From skdovecot at smail.inf.fh-brs.de Thu Feb 13 10:29:47 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 13 Feb 2014 11:29:47 +0100 (CET) Subject: [Dovecot] Hybrid of linux user accounts and virtual user accounts configuration In-Reply-To: <20140213033408.2C0C42337A@talvi.dovecot.org> References: <20140213033408.2C0C42337A@talvi.dovecot.org> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 12 Feb 2014, Derek Winterstien wrote: > The virtual user part is working 100% with postfix and dovecot accepting mail > for each virtual alias and system account holders popping in to retrieve > their mail. So that probably means that you've added an userdb for the virtual users. We don't know without doveconf -n output. > The second part is working 50%. I have email for virtual users going into > /home/vmail/domain.com?? where they are supposed to go. Now, I am very > confused on how to configure dovecot to allow folks without system accounts > to login and retrieve their email. I have been going through one guide after > another. When I start changing things I break the first working part, the > system accounts being able to get their mail. Changes to dovecot.conf to get > the second working negatively impact the first. Add yet another passdb section behind the already existing one, as you've did with the userdb for the virtual users. This doc is not out-of-date: http://wiki2.dovecot.org/Authentication/MultipleDatabases - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvyem3D1/YhP6VMHAQIPYAf7BFfI89/heEhgl/N1tsn9KCPdfBPAXnLR JKpCNGHPZqxro1dW5knoGtoeRIsG1AIV9jj8wFjcK59LmJBpPg79iPhDM0beU+Uf cOJ3phKjgLkQkbX0TnwOBcFYbCkzalNcmXO2egef5Bvh1RHtejj0JSM7Dzu5b+FR OV91RI3UFPa0FZFPcSgE6sqxOXRo70uNTdAVKF+0sFGuNHmtK4OfgvWFzPRdDeRT u/c9fzjODHH8PEJAvo7jABt6xqkGul1QcLn/FaDQbILFY2YBisger7AcswTcQlbU +8qzuPwx29spjlr5Iwjz8TjtXks0vbyhlkSn+YwbYS8hlF/2Xg8L3Q== =Lhvh -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Thu Feb 13 10:31:51 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 13 Feb 2014 11:31:51 +0100 (CET) Subject: [Dovecot] Segmentation fault in libdovecot-storage.so In-Reply-To: <52FC91CA.9070601@babel.it> References: <52F8B0D9.4010308@babel.it> <52FC91CA.9070601@babel.it> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 13 Feb 2014, Francesco Fiore wrote: > Is there any news for this problem? read the other threads about the issue and find the patch in the 2.2.11 thread. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvyfF3D1/YhP6VMHAQIeDQf7BTMO9RzoL21mS06n56j1nRT2HbSYNsXx IZ1AWRK2D0ZrZcaHUwadrOaENqeeU4gBJNj633ZXrvpzObyO++rS3fycD3i0gw+V LSaa1IaAwb8fBfYkE8Nx997SJPS2fhd0f50ks8+Qf9k3yRal+MCOkBIIm+Wz4+lM 0BoYrInmpIP8qCZ27Dm2u1/Z6Apla8ZxlFEUdaiL4ryVFYN1GlfuYEVTuaBn1n5T By8VLPtKWRuujQ+eyx6ZTQzF6EqDvqbgJhGwRI2OQZnLgNoxI0PByOrhzhsGcYbq akooWof0XBAI3NYhhve18uj5+xy5vOUjXM1JKoqKhcQVR2NRY+mrNg== =FIv/ -----END PGP SIGNATURE----- From mtrainer at westnet.com.au Thu Feb 13 10:40:42 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Thu, 13 Feb 2014 18:40:42 +0800 Subject: [Dovecot] Hybrid of linux user accounts and virtual user accounts configuration In-Reply-To: <20140213033408.2C0C42337A@talvi.dovecot.org> References: <20140213033408.2C0C42337A@talvi.dovecot.org> Message-ID: <26b65b99-9292-46db-b131-9ca07ae2c3b4@email.android.com> Hi Derek, I have done this in reverse order. I used a short howto with users in LDAP. It uses an an LDAP schema called iredmail.schema that lets me create virtual domains and mail users that aren't posix users. I have my posix users under ou=users and my virtual users under ou=domains. Haven't setup mail delivery yet but the lda will need some sort of setuid access to write mail to the user folders. Hope this helps ... Murray On 13 February 2014 11:34:04 AM AWST, Derek Winterstien <14dovecotml at robotz.com> wrote: >So some system users have their email forward to >Maildir in their /home/user directory >(virtual_alias_maps) for their domain >. This I >have working! And the rest are non-system users, >ie virtual users listed in a plain text file and >their MailDir will be in /home/vmial/domain.com/user/ > >The virtual user part is working 100% with >postfix and dovecot accepting mail for each >virtual alias and system account holders popping in to retrieve their >mail. > >The second part is working 50%. I have email for >virtual users going into >/home/vmail/domain.com > > where they are supposed >to go. Now, I am very confused on how to >configure dovecot to allow folks without system >accounts to login and retrieve their email. I >have been going through one guide after >another. When I start changing things I break >the first working part, the system accounts being >able to get their mail. Changes to dovecot.conf >to get the second working negatively impact the first. > >Also, a lot of documentation is out of date, which further complicates >matters. > >Postfix/Dovecot: >Postfix version: 2.6.6 >Dovecot version: 2.0.9 -- Sent from my Android phone with K-9 Mail. Please excuse my brevity. From rorru at babel.it Thu Feb 13 12:05:03 2014 From: rorru at babel.it (Ramon) Date: Thu, 13 Feb 2014 13:05:03 +0100 Subject: [Dovecot] Segmentation fault in libdovecot-storage.so In-Reply-To: References: <52F8B0D9.4010308@babel.it> <52FC91CA.9070601@babel.it> Message-ID: <52FCB4EF.2000009@babel.it> Hi Steffen, we tried the patch you suggested, but it does not resolve the issue, in addition it involves pop3 only, and we are experimenting segfaults on both pop3 and imap. We found more information about the problem: deleting the index file, and letting the process recreate it, the problem does not appear anymore using the related account. It seems to be a corruption problem not detected when accessing cache, all core dumps we analyzed trace the problem to the same procedure: mail_cache_header_fields_read (for (p = names; p != end && *p != '\0'; p++) ; gets an out of bound access). Regards. Ramon Il 13/02/2014 11:31, Steffen Kaiser ha scritto: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thu, 13 Feb 2014, Francesco Fiore wrote: > >> Is there any news for this problem? > > read the other threads about the issue and find the patch in the > 2.2.11 thread. > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUvyfF3D1/YhP6VMHAQIeDQf7BTMO9RzoL21mS06n56j1nRT2HbSYNsXx > IZ1AWRK2D0ZrZcaHUwadrOaENqeeU4gBJNj633ZXrvpzObyO++rS3fycD3i0gw+V > LSaa1IaAwb8fBfYkE8Nx997SJPS2fhd0f50ks8+Qf9k3yRal+MCOkBIIm+Wz4+lM > 0BoYrInmpIP8qCZ27Dm2u1/Z6Apla8ZxlFEUdaiL4ryVFYN1GlfuYEVTuaBn1n5T > By8VLPtKWRuujQ+eyx6ZTQzF6EqDvqbgJhGwRI2OQZnLgNoxI0PByOrhzhsGcYbq > akooWof0XBAI3NYhhve18uj5+xy5vOUjXM1JKoqKhcQVR2NRY+mrNg== > =FIv/ > -----END PGP SIGNATURE----- From dalevizo at otenet.gr Thu Feb 13 13:52:30 2014 From: dalevizo at otenet.gr (Dimos Alevizos) Date: Thu, 13 Feb 2014 15:52:30 +0200 Subject: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' In-Reply-To: References: <51C1AB7B.9030404@otenet.gr> <4EAAD8C1-A99F-4D66-9FB6-32E634E4A8A5@iki.fi> <20130624104131.GB9999@otenet.gr> <51CA967E.1000701@otenet.gr> <625F4988-B777-4DB0-84FF-E5ED6A5EFD14@iki.fi> <5270E2AE.6020900@otenet.gr> Message-ID: <52FCCE1E.10301@otenet.gr> At last, I was finally able to find time and run a backtrace, I've attached the file. If you don't remember (and hey, you can blame you after all this time) the problem is only with a couple (~10) of users among the hundreds of thousands currently using the service. Please let me know if I should provide any other info, logs or whatever. Dimos Alevizos -------- Original Message -------- Subject: Re: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' From: Timo Sirainen To: Dimos Alevizos CC: Dimitris Paouris , Dovecot Mailing List Date: 02/11/2013 01:16 ?? > Well, if that patch didn?t work, then the problem is elsewhere. There aren?t many other good possibilities left though.. How about adding this patch, it should be even safer than the previous one: > > http://hg.dovecot.org/dovecot-2.2/rev/d3062d066593 > > On 30.10.2013, at 12.42, Dimos Alevizos wrote: > >> I'm afraid it doesn't seem to be working. >> I've compiled a patched 2.2.6 dovecot with the patch you sent and installed it in a production server (had to be 2.2.6 cause we've upgraded all the rest since I begun this thread months ago) and although we still have mbox corruptions (rarely as before) the server isn't crashing : >> >> Oct 30 11:15:19 pop04 dovecot: pop3-login: Login: user=, method=PLAIN, rip=85.72.232.35, lip=83.235.66.43, mpid=24419, secured, session=<+0ywxfHpIQBVSOgj> >> Oct 30 11:15:20 pop04 dovecot: pop3(artower at otenet.gr): Disconnected: Logged out top=0/0, retr=0/0, del=0/1336, size=471029518 >> Oct 30 11:19:12 pop04 dovecot: lmtp(2863, artower at otenet.gr): r7U3KnyhcFIvCwAAckDtvw: msgid=: size=17823 saved mail to INBOX >> Oct 30 11:33:12 pop04 dovecot: pop3-login: Login: user=, method=PLAIN, rip=85.72.224.94, lip=83.235.66.43, mpid=600, secured, session= >> Oct 30 11:33:12 pop04 dovecot: pop3(artower at otenet.gr): Error: Syncing INBOX failed: Mailbox isn't a valid mbox file >> Oct 30 11:33:12 pop04 dovecot: pop3(artower at otenet.gr): Error: Couldn't init INBOX: Mailbox isn't a valid mbox file >> Oct 30 11:33:12 pop04 dovecot: pop3(artower at otenet.gr): Mailbox init failed top=0/0, retr=0/0, del=0/0, size=0 >> Oct 30 11:33:33 pop04 dovecot: lmtp(16314, artower at otenet.gr): Au4vIMqucFK6PwAAckDtvw: msgid=<004401ced552$bb5ecd70$321c6850$@planet.nl>: size=7975817 save failed to INBOX: Mailbox isn't a valid mbox file >> >> Perhaps the patch is only valid for 2.1.16 and needs to be modified for 2.2.6 ? >> >> Thank you for your time >> Dimos Alevizos >> >> >> -------- Original Message -------- >> Subject: Re: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' >> From: Timo Sirainen >> To: Dimos Alevizos >> CC: dovecot at dovecot.org, Dimitris Paouris >> Date: 26/06/2013 06:59 ?? >> >>> It crashes one specific IMAP/POP3 session, so others are unaffected. The potential problems: >>> >>> * It might cause the user's mbox to become crashing constantly. so first crash -> client reconnects -> client attempts the same operation -> crash again. Then again, this might not happen, it depends. >>> >>> * The mbox file would probably become slightly more corrupted than normally, because it doesn't finish moving data around. No data should get actually lost, but some parts could become duplicated (e.g. some headers or even mails, possibly causing UID renumbering = redownloading). >>> >>> So not ideal in production, but shouldn't be too bad either, especially if you just wait for the first crash and then immediately switch to the old unpatched version. >>> >>> On 26.6.2013, at 10.21, Dimos Alevizos wrote: >>> >>>> Hi, >>>> >>>> I haven't had the time to compile it yet, but a question just occurred. >>>> Given that it's so rare and we can't reproduce it on a dev server, how safe is this to use on a production server ? >>>> When you say "crash" you mean the whole dovecot server or that specific client's child ? >>>> >>>> D. >>>> >>>> -------- Original Message -------- >>>> Subject: Re: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' >>>> From: dalevizo >>>> To: Timo Sirainen >>>> CC: dovecot at dovecot.org, Dimitris Paouris >>>> Date: 24/06/2013 01:41 ?? >>>> >>>>> Thanx I'll try the patch as soon as possible and I'll let you know. >>>>> It is indeed very rare. We're only seeing 4-5 corruptions in about 13 >>>>> million logins per day. >>>>> I've been trying to convince our design team that we should move to >>>>> maildir, but the truth is that it's quite a change, and we're way too >>>>> busy to deal with everything else AND a migration from mbox to maildir. >>>>> >>>>> D. >>>>> >>>>> On Mon 24/06/2013 13:16, Timo Sirainen wrote: >>>>>> On 19.6.2013, at 16.00, Dimos Alevizos wrote: >>>>>> >>>>>>> we're having some problems with our dovecot setup. >>>>>>> I've seen similar problems in the mailing list some years ago but alas wasn't able to find a solution. >>>>>>> >>>>>>> Our setup is as follows : >>>>>>> An MX farm (postfix) sends mails via LMTP to a director farm (dovecot 2.1.12) which proxies pop3/imap/lmtp traffic to a dovecot farm (dovecot 2.1.16). >>>>>>> All mailboxes and indexes are on NFS and all servers are Centos. >>>>>>> >>>>>>> The problem is that at times we see mailboxes (all of them are in mbox format) beginning with FFrom or FrFrom and of course dovecot says it's not a valid mbox file. >>>>>> >>>>>> This is quite an old bug, but it happens rarely enough that I haven't been able to reproduce and fix it. Actually people hadn't complained about it for a long time now, so I had assumed it had somehow gotten fixed already. >>>>>> >>>>>> With the attached debug patch it should crash instead of (completely) corrupting the mbox file. Debugging the resulting core file with gdb could be useful in figuring this out. >>>>>> >>>>>> Although I wouldn't recommend mbox format for any big installation anyway.. >>>>>> >>>>> >>>>> >>>>>> >>>>>> >>>>> >>>> >>> >> > -------------- next part -------------- Feb 13 15:41:08 pop06 dovecot: imap-login: Login: user=, method=PLAIN, rip=195.170.0.170, lip=83.235.66.45, mpid=8157, session= Feb 13 15:41:09 pop06 dovecot: imap(someuser at somedomain): Panic: file mbox-sync.c: line 655 (mbox_sync_handle_header): assertion failed: (mail_ctx->mail.from_offset + move_diff != 1 && mail_ctx->mail.from_offset + move_diff != 2) Feb 13 15:41:09 pop06 dovecot: imap(someuser at somedomain): Error: Raw backtrace: /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf551923fa] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf55192466] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf55191583] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0 [0x2adf54e7e9a7] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0(mbox_sync+0x620) [0x2adf54e7f160] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0(mbox_storage_sync_init+0x83) [0x2adf54e80093] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0(mailbox_sync_init+0x31) [0x2adf54e99da1] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0(mailbox_sync+0x27) [0x2adf54e9abc7] -> dovecot/imap [someuser at somedomain 195.170.0.170 SELECT](cmd_select_full+0x219) [0x4111c9] -> dovecot/imap [someuser at somedomain 195.170.0.170 SELECT](cmd_select+0xb) [0x411afb] -> dovecot/imap [someuser at somedomain 195.170.0.170 SELECT](command_exec+0x37) [0x4165e7] -> dovecot/imap [d Feb 13 15:41:09 pop06 dovecot: imap(someuser at somedomain): Fatal: master: service(imap): child 8157 killed with signal 6 (core dumped) root at pop06:someuser $ gdb /opt/dovecot-2.2.9/libexec/imap core.8157 GNU gdb (GDB) CentOS (7.0.1-45.el5.centos) Copyright (C) 2009 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-redhat-linux-gnu". For bug reporting instructions, please see: ... Reading symbols from /opt/dovecot-2.2.9/libexec/imap...done. [New Thread 8157] Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0...done. Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0 Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0...done. Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 Reading symbols from /lib64/libc.so.6...(no debugging symbols found)...done. Loaded symbols for /lib64/libc.so.6 Reading symbols from /lib64/librt.so.1...(no debugging symbols found)...done. Loaded symbols for /lib64/librt.so.1 Reading symbols from /lib64/libdl.so.2...(no debugging symbols found)...done. Loaded symbols for /lib64/libdl.so.2 Reading symbols from /lib64/ld-linux-x86-64.so.2...(no debugging symbols found)...done. Loaded symbols for /lib64/ld-linux-x86-64.so.2 Reading symbols from /lib64/libpthread.so.0...(no debugging symbols found)...done. [Thread debugging using libthread_db enabled] Loaded symbols for /lib64/libpthread.so.0 Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib10_quota_plugin.so...done. Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib10_quota_plugin.so Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib11_imap_quota_plugin.so...done. Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib11_imap_quota_plugin.so Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib15_notify_plugin.so...done. Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib15_notify_plugin.so Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib20_fts_plugin.so...done. Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib20_fts_plugin.so Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib21_fts_solr_plugin.so...done. Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib21_fts_solr_plugin.so Reading symbols from /lib64/libexpat.so.0...(no debugging symbols found)...done. Loaded symbols for /lib64/libexpat.so.0 Reading symbols from /lib64/libgcc_s.so.1...(no debugging symbols found)...done. Loaded symbols for /lib64/libgcc_s.so.1 warning: no loadable sections found in added symbol-file system-supplied DSO at 0x7fff49dfd000 Core was generated by `dovecot/imap [someuser at somed'. Program terminated with signal 6, Aborted. #0 0x0000003efe030265 in raise () from /lib64/libc.so.6 (gdb) bt full #0 0x0000003efe030265 in raise () from /lib64/libc.so.6 No symbol table info available. #1 0x0000003efe031d10 in abort () from /lib64/libc.so.6 No symbol table info available. #2 0x00002adf5519241e in default_fatal_finish (type=, status=0) at failures.c:192 backtrace = 0x14d90370 "/opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf551923fa] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf55192466] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf55191583] ->"... #3 0x00002adf55192466 in i_internal_fatal_handler (ctx=0x7fff49d91340, format=, args=) at failures.c:653 status = 0 #4 0x00002adf55191583 in i_panic (format=0x1fdd
) at failures.c:264 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fff49d91410, reg_save_area = 0x7fff49d91350}} #5 0x00002adf54e7e9a7 in mbox_sync_handle_header (sync_ctx=0x7fff49d935e0, mail_ctx=0x7fff49d937d0, partial=true) at mbox-sync.c:654 orig_from_offset = 14200194 move_diff = -14200194 ret = __FUNCTION__ = "mbox_sync_handle_header" #6 mbox_sync_loop (sync_ctx=0x7fff49d935e0, mail_ctx=0x7fff49d937d0, partial=true) at mbox-sync.c:1138 rec = 0x14dc0d20 uid = messages_count = 302 offset = 14200194 ret = expunged = false skipped_mails = false uids_broken = false #7 0x00002adf54e7f160 in mbox_sync_int (mbox=0x14db5b30, flags=MBOX_SYNC_UNDIRTY) at mbox-sync.c:1619 index_sync_ctx = 0x14dd3710 sync_view = 0x14dd3780 ret = delay_writes = true readonly = false trans = 0x14dbf420 sync_ctx = {mbox = 0x14db5b30, flags = MBOX_SYNC_UNDIRTY, input = 0x14dd4fe8, file_input = 0x14dd4e18, write_fd = 15, orig_mtime = 1392290551, orig_atime = 1391079897, orig_size = 29081201, last_stat = {st_dev = 25, st_ino = 30254297, st_nlink = 1, st_mode = 33152, st_uid = 1904649, st_gid = 550, pad0 = 0, st_rdev = 0, st_size = 29081201, st_blksize = 32768, st_blocks = 56920, st_atim = {tv_sec = 1391079897, tv_nsec = 0}, st_mtim = {tv_sec = 1392290551, tv_nsec = 0}, st_ctim = {tv_sec = 1392290551, tv_nsec = 961280000}, __unused = {0, 0, 0}}, index_sync_ctx = 0x14dd3710, sync_view = 0x14dd3780, t = 0x14dbf420, reset_hdr = {major_version = 0 '\000', minor_version = 0 '\000', base_header_size = 0, header_size = 0, record_size = 0, compat_flags = 0 '\000', unused = "\000\000", indexid = 0, flags = 0, uid_validity = 0, next_uid = 0, messages_count = 0, unused_old_recent_messages_count = 0, seen_messages_count = 0, deleted_messages_count = 0, first_recent_uid = 0, first_unseen_uid_lowwater = 0, first_deleted_uid_lowwater = 0, log_file_seq = 0, log_file_tail_offset = 0, log_file_head_offset = 0, unused_old_sync_size = 0, unused_old_sync_stamp = 0, day_stamp = 0, day_first_uid = {0, 0, 0, 0, 0, 0, 0, 0}}, hdr = 0x14dbf090, header = 0x14dcb070, from_line = 0x14dcd100, base_uid_validity = 1387910574, base_uid_last = 439, base_uid_last_offset = 0, mails = {arr = {buffer = 0x14dcb0b0, element_size = 64}, v = 0x14dcb0b0, v_modifiable = 0x14dcb0b0}, sync_changes = 0x14dcb0f0, mail_keyword_pool = 0x14dbf780, saved_keywords_pool = 0x14de7480, prev_msg_uid = 242, next_uid = 440, idx_next_uid = 440, seq = 105, idx_seq = 105, need_space_seq = 0, last_nonrecent_uid = 0, expunged_space = 14200194, space_diff = 0, dest_first_mail = 1, first_mail_crlf_expunged = 0, keep_recent = 0, readonly = 0, delay_writes = 1, renumber_uids = 0, moved_offsets = 0, ext_modified = 0, index_reset = 0, errors = 0} sync_flags = changed = __FUNCTION__ = "mbox_sync_int" #8 mbox_sync (mbox=0x14db5b30, flags=MBOX_SYNC_UNDIRTY) at mbox-sync.c:2000 lock_id = 3 ret = __FUNCTION__ = "mbox_sync" #9 0x00002adf54e80093 in mbox_storage_sync_init (box=0x14db5b30, flags=65) at mbox-sync.c:2049 mbox = 0x1fdd mbox_sync_flags = 8157 ret = 0 #10 0x00002adf54e99da1 in mailbox_sync_init (box=0x14db5b30, flags=65) at mail-storage.c:1668 _data_stack_cur_id = 4 ctx = #11 0x00002adf54e9abc7 in mailbox_sync (box=0x1fdd, flags=8157) at mail-storage.c:1716 ctx = 0x14d99110 status = {sync_delayed_expunges = 0} #12 0x00000000004111c9 in select_open (cmd=0x14db3310, readonly=false) at cmd-select.c:313 No locals. #13 cmd_select_full (cmd=0x14db3310, readonly=false) at cmd-select.c:439 client = 0x14db2b00 ctx = 0x14db3408 args = 0x14d9ba98 list_args = 0x101010101010101 mailbox = 0x14d902b8 "INBOX" error = ret = __FUNCTION__ = "cmd_select_full" ---Type to continue, or q to quit--- #14 0x0000000000411afb in cmd_select (cmd=0x1fdd) at cmd-select.c:448 No locals. #15 0x00000000004165e7 in command_exec (cmd=0x14db3310) at imap-commands.c:158 hook = 0x14d99110 ret = #16 0x00000000004153db in client_command_input (cmd=0x1fdd) at imap-client.c:780 client = 0x14db2b00 command = __FUNCTION__ = "client_command_input" #17 0x0000000000415495 in client_command_input (cmd=0x14db3310) at imap-client.c:841 client = 0x14db2b00 command = 0x6 __FUNCTION__ = "client_command_input" #18 0x000000000041564f in client_handle_next_command (client=0x14db2b00) at imap-client.c:879 No locals. #19 client_handle_input (client=0x14db2b00) at imap-client.c:891 _data_stack_cur_id = 3 remove_io = handled_commands = false __FUNCTION__ = "client_handle_input" #20 0x0000000000415a52 in client_input (client=0x14db2b00) at imap-client.c:933 cmd = output = 0x14db0c00 bytes = 19 __FUNCTION__ = "client_input" #21 0x00002adf551a1676 in io_loop_call_io (io=0x14db0cd0) at ioloop.c:388 ioloop = 0x14d98740 t_id = 2 #22 0x00002adf551a2c7d in io_loop_handler_run (ioloop=) at ioloop-epoll.c:220 ctx = event = 0x14d9a250 list = 0x14db0d20 io = 0x1fdd tv = {tv_sec = 3, tv_usec = 790044} events_count = msecs = ret = 1 i = 0 call = false __FUNCTION__ = "io_loop_handler_run" #23 0x00002adf551a15f8 in io_loop_run (ioloop=0x14d98740) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #24 0x00002adf551528d3 in master_service_run (service=0x14d985d0, callback=0x1fdd) at master-service.c:566 No locals. #25 0x000000000041ef07 in main (argc=2, argv=0x14d98390) at main.c:400 login_set = {auth_socket_path = 0x14d90060 "\210", postlogin_socket_path = 0x14d900b8 "", postlogin_timeout_secs = 60, callback = 0x41f100 , failure_callback = 0x41f0a0 , request_auth_token = 1} service_flags = storage_service_flags = MAIL_STORAGE_SERVICE_FLAG_DISALLOW_ROOT username = 0x0 c = set_roots = {0x426b20, 0x0} (gdb) From skdovecot at smail.inf.fh-brs.de Thu Feb 13 14:57:39 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 13 Feb 2014 15:57:39 +0100 (CET) Subject: [Dovecot] Hybrid of linux user accounts and virtual user accounts configuration In-Reply-To: <26b65b99-9292-46db-b131-9ca07ae2c3b4@email.android.com> References: <20140213033408.2C0C42337A@talvi.dovecot.org> <26b65b99-9292-46db-b131-9ca07ae2c3b4@email.android.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 13 Feb 2014, Murray Trainer wrote: > Haven't setup mail delivery yet but the lda will need some sort of > setuid access to write mail to the user folders. That's one reason I switched to LMTP at last. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUvzdY3D1/YhP6VMHAQLU2Qf/fG7jf1pu64axgR45wm3n5LUc46Wa8IK3 vEfJMlwD9/ri/gCnFZVmV+nEmYMUKAowLfQbIPFY4aFbhjLfHA16B6FTZplpni7+ XppI2JYLHeRZVcE7inc9lxIv1OFyCo1bFE7yw3eTRffLPwA980IxCsNG3u6xlUvt zJmBsfYTvsMHjppxKDWP8f6Mnq0ST3K7ZJMIi3KTixOBDTSX1uIB/0i7LDSuBTqf mvEm9XXrKurF6nJLrnGxLesJDYHFT1eOYTte1FNE0GUpFrhu12XaVOP8XF2TlEMe zkNfKXYfgRgRClOeOfylw2WeJajoGIL9IrHiBw/G2bOlUDpa7qaSFQ== =+wUY -----END PGP SIGNATURE----- From rgelfand2 at gmail.com Thu Feb 13 15:26:41 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Thu, 13 Feb 2014 10:26:41 -0500 Subject: [Dovecot] Storage Quotas Message-ID: My dovecot server storage scheme is Maildir. Is there no default mail box size quota? If yes, where do you set it? Thanks in advance From rs at sys4.de Thu Feb 13 15:30:15 2014 From: rs at sys4.de (Robert Schetterer) Date: Thu, 13 Feb 2014 16:30:15 +0100 Subject: [Dovecot] Storage Quotas In-Reply-To: References: Message-ID: <52FCE507.6070501@sys4.de> Am 13.02.2014 16:26, schrieb Roman Gelfand: > My dovecot server storage scheme is Maildir. Is there no default mail > box size quota? If yes, where do you set it? > > Thanks in advance > http://wiki2.dovecot.org/Quota Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From rgelfand2 at gmail.com Thu Feb 13 15:31:18 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Thu, 13 Feb 2014 10:31:18 -0500 Subject: [Dovecot] Mailbox storage maintenance tools Message-ID: My storage scheme is Maildir. Could someone point me to tools for maintaining or identifying problems problems with mail store. Also, description of common problems and how to resolve/prevent them. Thanks in advance From rs at sys4.de Thu Feb 13 15:40:40 2014 From: rs at sys4.de (Robert Schetterer) Date: Thu, 13 Feb 2014 16:40:40 +0100 Subject: [Dovecot] Mailbox storage maintenance tools In-Reply-To: References: Message-ID: <52FCE778.5050709@sys4.de> Am 13.02.2014 16:31, schrieb Roman Gelfand: > My storage scheme is Maildir. Could someone point me to tools for > maintaining or identifying problems problems with mail store. Also, > description of common problems and how to resolve/prevent them. > > Thanks in advance > there is no problem with maildir, its a mailbox format, you might get problems with your storage devices etc, but thats another story, search list archives may help perhaps read http://wiki2.dovecot.org/MailboxFormat/Maildir Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From dkh at member.fsf.org Thu Feb 13 15:52:54 2014 From: dkh at member.fsf.org (Damon Haley) Date: Thu, 13 Feb 2014 08:52:54 -0700 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup In-Reply-To: (Alan Schmitt's message of "Thu, 13 Feb 2014 08:22:38 +0100") References: <52FBF21F.905@whyscream.net> Message-ID: >>>>> Alan Schmitt writes: > This is the crux of my question, I guess. Right now I don't deliver any > mail, but use offlineimap to keep a local imap server (dovecot) in sync with > a remote one. So my questions are: 1. Can I use dovecot's sieves if I don't > deliver mail? 2. If not, how can I hook up offlineimap and dovecot so that > mail is delivered instead of synchronized? Alan, you can use sieve with dovecot in an offline imap setup. All you have to do is compile sieve into dovecot: wget http://pigeonhole.dovecot.org/releases/2.2/dovecot-2.2-pigeonhole-0.4.2.tar.gz untar it cd /usr/local/src/dovecot-2.2-pigeonhole-0.4.2/ ./configure --prefix=/usr/local/Cellar/pigeonhole/0.4.0 --with-dovecot=/usr/local/opt/dovecot/lib/dovecot make && make install I did this on a Macbook with dovecot installed from hombrew. Whenever imap process is launched by my mail client it automatically sorts my INBOX based on sieve rules. I can also do this manually: sieve-filter -e -W -v -C -u $USER ~/Messages/dovecot.sieve 'INBOX' Hope that is of some help. Damon From 14dovecotml at robotz.com Thu Feb 13 17:29:30 2014 From: 14dovecotml at robotz.com (Derek Winterstien) Date: Thu, 13 Feb 2014 11:29:30 -0600 Subject: [Dovecot] Hybrid of linux user accounts and virtual user accounts configuration In-Reply-To: References: <20140213033408.2C0C42337A@talvi.dovecot.org> <26b65b99-9292-46db-b131-9ca07ae2c3b4@email.android.com> Message-ID: <20140213172932.007D223394@talvi.dovecot.org> Murry ? my mail delivery is working fine. The first message even automatically creates the Maildir structure like it should, all permissions correct. Steffen Kaiser ? I will place the output of dovecot ?n at the bottom of this message. I've configured checkpassword which should be a script that comes with dovecot. However, I cant find it in my install . Which I thought was standard. Not sure where to go get it from either. See this error from the log: dovecot: auth: Fatal: execv(/usr/bin/checkpassword) failed: No such file or directory dovecot: auth: Error: checkpassword(foo,127.0.0.1): Child 29179 exited with status 84 And the pop client sees: -ERR [IN-USE] Temporary authentication failure. Isn't it a script rather than a binary? Is it what should be using to read my simple virtual user flat text file? dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-xxx.xxx.i686 i686 CentOS release 6.4 (Final) auth_failure_delay = 10 secs auth_mechanisms = plain login auth_verbose = yes default_process_limit = 50 disable_plaintext_auth = no listen = * login_greeting = Greetings! mail_location = maildir:~/Maildir mbox_write_locks = fcntl passdb { driver = pam } passdb { args = /usr/bin/checkpassword driver = checkpassword } service auth { unix_listener auth-userdb { group = postfix user = postfix } } ssl_cert = References: <52FB7ED5.4030908@dovecot.fi> Message-ID: <52FD0CA0.9020609@msapiro.net> Teemu Huovila wrote: > Please find attached a patch that addresses this problem. Apply on top of 2.2.11 sources with hg import . Thanks for the patch. I had encountered the pop3 segfault issue immediately after upgrade to 2.2.11 and reverted to 2.2.10. I have installed the patch and been running the patched 2.2.11 with no problems. As noted in another post, the patch can be applied without hg via patch -p1 < /path/to/patch in the dovecot unpack directory followed by the normal 'make', 'sudo make install' -- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan From h.reindl at thelounge.net Thu Feb 13 18:28:45 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 13 Feb 2014 19:28:45 +0100 Subject: [Dovecot] v2.2.11 released In-Reply-To: <52FD0CA0.9020609@msapiro.net> References: <52FB7ED5.4030908@dovecot.fi> <52FD0CA0.9020609@msapiro.net> Message-ID: <52FD0EDD.4060408@thelounge.net> Am 13.02.2014 19:19, schrieb Mark Sapiro: > Teemu Huovila wrote: >> Please find attached a patch that addresses this problem. Apply on top of 2.2.11 sources with hg import >> . > > Thanks for the patch. I had encountered the pop3 segfault issue immediately after upgrade to 2.2.11 and reverted to > 2.2.10. I have installed the patch and been running the patched 2.2.11 with no problems. > > As noted in another post, the patch can be applied without hg via > > patch -p1 < /path/to/patch > > in the dovecot unpack directory followed by the normal 'make', 'sudo make install' but why is there no a 2.2.11.1 or 2.2.12 already it's a bad attitude offer a known broken release on top of http://www.dovecot.org/download.html below the headline "Stable releases" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From rs at sys4.de Thu Feb 13 18:40:54 2014 From: rs at sys4.de (Robert Schetterer) Date: Thu, 13 Feb 2014 19:40:54 +0100 Subject: [Dovecot] v2.2.11 released In-Reply-To: <52FD0EDD.4060408@thelounge.net> References: <52FB7ED5.4030908@dovecot.fi> <52FD0CA0.9020609@msapiro.net> <52FD0EDD.4060408@thelounge.net> Message-ID: <52FD11B6.70009@sys4.de> Am 13.02.2014 19:28, schrieb Reindl Harald: > > > Am 13.02.2014 19:19, schrieb Mark Sapiro: >> Teemu Huovila wrote: >>> Please find attached a patch that addresses this problem. Apply on top of 2.2.11 sources with hg import >>> . >> >> Thanks for the patch. I had encountered the pop3 segfault issue immediately after upgrade to 2.2.11 and reverted to >> 2.2.10. I have installed the patch and been running the patched 2.2.11 with no problems. >> >> As noted in another post, the patch can be applied without hg via >> >> patch -p1 < /path/to/patch >> >> in the dovecot unpack directory followed by the normal 'make', 'sudo make install' > > but why is there no a 2.2.11.1 or 2.2.12 already > it's a bad attitude offer a known broken release > on top of http://www.dovecot.org/download.html > below the headline "Stable releases" > Hi, i am not with you, there are tons of software with bugs released as stable ,out in the web, but however youre right in this special case it might be better to have a a tmp warning on the download site perhaps with link to http://hg.dovecot.org/dovecot-2.2/ http://hg.dovecot.org/dovecot-2.2/rev/d20059f7d3a1 Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From h.reindl at thelounge.net Thu Feb 13 18:50:29 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 13 Feb 2014 19:50:29 +0100 Subject: [Dovecot] v2.2.11 released In-Reply-To: <52FD11B6.70009@sys4.de> References: <52FB7ED5.4030908@dovecot.fi> <52FD0CA0.9020609@msapiro.net> <52FD0EDD.4060408@thelounge.net> <52FD11B6.70009@sys4.de> Message-ID: <52FD13F5.5010007@thelounge.net> Am 13.02.2014 19:40, schrieb Robert Schetterer: > Am 13.02.2014 19:28, schrieb Reindl Harald: >> >> Am 13.02.2014 19:19, schrieb Mark Sapiro: >>> Teemu Huovila wrote: >>>> Please find attached a patch that addresses this problem. Apply on top of 2.2.11 sources with hg import >>>> . >>> >>> Thanks for the patch. I had encountered the pop3 segfault issue immediately after upgrade to 2.2.11 and reverted to >>> 2.2.10. I have installed the patch and been running the patched 2.2.11 with no problems. >>> >>> As noted in another post, the patch can be applied without hg via >>> >>> patch -p1 < /path/to/patch >>> >>> in the dovecot unpack directory followed by the normal 'make', 'sudo make install' >> >> but why is there no a 2.2.11.1 or 2.2.12 already >> it's a bad attitude offer a known broken release >> on top of http://www.dovecot.org/download.html >> below the headline "Stable releases" >> > > Hi, > > i am not with you, there are tons of software with bugs released as > stable, out in the web different story > but however youre right in this special case i am only talking about that case where the last recent release shortly after it was announced is by multiple users declared as broken for one of two main services it offers even remove 2.2.11 and only offer 2.2.10 on the official page would be better and prevent people not following that list to get into trouble that said while it does not affect me - pop3-proxy works stable > it might be better to have a a tmp warning on the download site perhaps > with link to > > http://hg.dovecot.org/dovecot-2.2/ > http://hg.dovecot.org/dovecot-2.2/rev/d20059f7d3a1 exactly what i mean -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From 14dovecotml at robotz.com Thu Feb 13 19:05:01 2014 From: 14dovecotml at robotz.com (Derek Winterstien) Date: Thu, 13 Feb 2014 13:05:01 -0600 Subject: [Dovecot] Hybrid of linux user accounts and virtual user accounts configuration In-Reply-To: <20140213033408.2C0C42337A@talvi.dovecot.org> References: <20140213033408.2C0C42337A@talvi.dovecot.org> Message-ID: <20140213190503.3ABDB23392@talvi.dovecot.org> Hello again. I have my virtual users working now. Postfix delivers mail, and dovecot retrieves it for pop and imap users in the virtual user database. Just one more thing though, it is understood that dovecot is going to ask pam to check first for a unix account, which will fail, then dovecot tries the virtual user text file, and succeeds when the user is located. However, the pam error generated in the secure log is ugly. auth: pam_succeed_if(dovecot:auth): error retrieving information about user foo I would like to suppress this error, only when dovecot succeeds from the virtual user text file. However, still report the pam error when no valid user exists in either. Is this possible? From pch at myzel.net Thu Feb 13 20:15:56 2014 From: pch at myzel.net (Peter Chiochetti) Date: Thu, 13 Feb 2014 21:15:56 +0100 Subject: [Dovecot] FTS question Message-ID: <52FD27FC.4010605@myzel.net> Please advise: Can I override the user parameter in solr indexing and searching? To understand, why I wish for that, please consider my setup: # Mail is fetched from a remote imap server # dovecot LDA stores into Maildir as system user # Several virtual users exist in a static userdb # They all share the system users Maildir # everybody can see, move, delete etc. all the mails # dovecot mail_log plugin is used for audit So it is like all/only shared folders, isn't it? A cheap groupware, maybe? This works exceptionally well (2.0 and 2.2.11 as of now). The problem: When e-mails are indexed by solr, the uid of the virtual user is passed on, and only this user will later find that mail in a server side body search. I tried and made "user" an ignored field in solr schema, but then nothing will ever be found, because it is dropped when indexing, but will be asked for in searching. So far, what I learned in a day. Maybe someone can help? Thank You in advance -- peter From tss at iki.fi Thu Feb 13 21:47:52 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 14 Feb 2014 06:47:52 +0900 Subject: [Dovecot] v2.2.12 released Message-ID: http://dovecot.org/releases/2.2/dovecot-2.2.12.tar.gz http://dovecot.org/releases/2.2/dovecot-2.2.12.tar.gz.sig POP3 server code changes rarely, so I haven't spent time adding automated testing for it. So of course now that it changed in v2.1.11 there was a bug that caused it to crash most of the time (except for the test case I was using while developing it). This release fixes it, no other changes. From pch at myzel.net Thu Feb 13 22:36:30 2014 From: pch at myzel.net (Peter Chiochetti) Date: Thu, 13 Feb 2014 23:36:30 +0100 Subject: [Dovecot] FTS question In-Reply-To: <52FD27FC.4010605@myzel.net> References: <52FD27FC.4010605@myzel.net> Message-ID: <52FD48EE.5080003@myzel.net> Am 2014-02-13 21:15, schrieb PCh: > Please advise: > > Can I override the user parameter in solr indexing and searching? > > To understand, why I wish for that, please consider my setup: > > # Mail is fetched from a remote imap server > # dovecot LDA stores into Maildir as system user > > # Several virtual users exist in a static userdb > # They all share the system users Maildir > > # everybody can see, move, delete etc. all the mails > # dovecot mail_log plugin is used for audit > > So it is like all/only shared folders, isn't it? A cheap groupware, > maybe? This works exceptionally well (2.0 and 2.2.11 as of now). > > The problem: When e-mails are indexed by solr, the uid of the virtual > user is passed on, and only this user will later find that mail in a > server side body search. > > I tried and made "user" an ignored field in solr schema, but then > nothing will ever be found, because it is dropped when indexing, but > will be asked for in searching. > > So far, what I learned in a day. Maybe someone can help? > > Thank You in advance > What I can think of now: # proxy solr and cut off the +user part of the fq parameter # this will still index any message multiple times due to different ids # and will return a single message multiple times (if indexed so) What I wish for: an extra field in passdb "solr_user". I guess, I will not get that, if not compiling from source? What else can I wish for? -- peter From alan at chandlerfamily.org.uk Thu Feb 13 22:43:45 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Thu, 13 Feb 2014 22:43:45 +0000 Subject: [Dovecot] sqlite queries for master user Message-ID: <52FD4AA1.4090205@chandlerfamily.org.uk> Hi I am trying to achieve the following functionality "usera" can't login because his account is set non active. there is a deny query that checks this. a master user ("masteruser") should be able login using "usera*masteruser" syntax to this disabled account I just tried it with auth_debug set on, but the deny query is being run for usera, presumably because my master definition is passdb { driver = sql master = yes args = /etc/dovecot/sqlite-master.conf # Unless you're using PAM, you probably still want the destination user to # be looked up from passdb that it really exists. pass=yes does that. pass = yes } with pass=yes, and that causes usera to be validated through both the deny and accept phase of authorisation. In the password_query defined in sqlite-master.conf I user '%u' to locate my master user. Is there any variable I could use to (in that query) to also check that "usera" exists? I could then remove the pass = yes, both to avoid two more queries and to avoid the trap that this account is locked out. Alternatively some other parameter in the passdb segment above to tell the other login to miss the deny stage. From alan at chandlerfamily.org.uk Thu Feb 13 23:18:59 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Thu, 13 Feb 2014 23:18:59 +0000 Subject: [Dovecot] sqlite queries for master user In-Reply-To: <52FD4AA1.4090205@chandlerfamily.org.uk> References: <52FD4AA1.4090205@chandlerfamily.org.uk> Message-ID: <52FD52E3.4020902@chandlerfamily.org.uk> On 13/02/14 22:43, Alan Chandler wrote: > Hi > > I am trying to achieve the following functionality > > "usera" can't login because his account is set non active. there is a > deny query that checks this. > > a master user ("masteruser") should be able login using > "usera*masteruser" syntax to this disabled account > > I just tried it with auth_debug set on, but the deny query is being > run for usera, presumably because my master definition is > > passdb { > driver = sql > master = yes > args = /etc/dovecot/sqlite-master.conf > > # Unless you're using PAM, you probably still want the destination > user to > # be looked up from passdb that it really exists. pass=yes does that. > pass = yes > } > > with pass=yes, and that causes usera to be validated through both the > deny and accept phase of authorisation. > > > In the password_query defined in sqlite-master.conf I user '%u' to > locate my master user. Is there any variable I could use to (in that > query) to also check that "usera" exists? I could then remove the pass > = yes, both to avoid two more queries and to avoid the trap that this > account is locked out. > To answer my own question - I found the variable in the wiki in the end %{login_user} At first it didn't work even then, because it was still trying to find stuff from the userdb, but when I added a userdb_uid (which was all it was looking for) it worked a treat. To be more specific - my normal query to look up users is SELECT m.name AS user, u.password AS password, u.uid+10000 AS userdb_uid \ FROM mailaccount m INNER JOIN user u ON m.username = u.username \ WHERE m.name = '%u' (I have a common user who could have several mail accounts = they will be all in the virtual uid of the user, not his account.) I took the master stanza above and removed the pass=yes and changed the master query to be SELECT u.password AS password,l.uid+10000 as userdb_uid FROM user u \ INNER JOIN capability c ON u.username = c.username \ ,mailaccount m JOIN user l ON m.username =l.username \ WHERE c.role = 'masteruser' and u.username = '%u' AND m.name = '%{login_user}' and this seemed to work nicely. Alan Chandler From tss at iki.fi Fri Feb 14 02:17:33 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 14 Feb 2014 11:17:33 +0900 Subject: [Dovecot] Dovecot 2.2.10 crash / infinite loop bug In-Reply-To: <52F539AB.9000008@gmail.com> References: <52F539AB.9000008@gmail.com> Message-ID: <0ABD475B-D6C5-425E-9D78-110221C7F956@iki.fi> On 8.2.2014, at 4.53, Jani Hast wrote: > Hello, > > I though this bug should be reported, although there is workaround already made and in use. > > Dovecot 2.2.10 crashes into out of memory error when there is defined system users (userdb+passdb) and own virtual users (userdb+passdb). Removing either one solves the issue and Dovecot is working as it should. I can't think of why that would make a difference. > When memory leak (I replaced pw_init and gr_init with the version that is found from 2.1.17) is fixed from lib/ipwd.c source, I don't see any bugs or memory leaks in ipwd.c. Sounds like it could be an OpenBSD bug. > the auth worker gets to infinite loop and authentication timeouts(timeout was increased, but worker does not end what ever it's doing). Would be useful to know where it's looping (gdb -p , bt, n, n, n, n, n, ...). > passdb { > driver = bsdauth > } I don't have any BSDs installed, so can't easily test this. From brad at comstyle.com Fri Feb 14 02:18:00 2014 From: brad at comstyle.com (Brad Smith) Date: Thu, 13 Feb 2014 21:18:00 -0500 Subject: [Dovecot] v2.2.12 released In-Reply-To: References: Message-ID: <52FD7CD8.1090107@comstyle.com> On 13/02/14 4:47 PM, Timo Sirainen wrote: > http://dovecot.org/releases/2.2/dovecot-2.2.12.tar.gz > http://dovecot.org/releases/2.2/dovecot-2.2.12.tar.gz.sig > > POP3 server code changes rarely, so I haven't spent time adding automated > testing for it. So of course now that it changed in v2.1.11 there was a bug > that caused it to crash most of the time (except for the test case I was > using while developing it). This release fixes it, no other changes. Someone added a bogus filename to the Wiki and the install is broken with .11 or newer.. /bin/sh ./sed.sh . /var/dovecot /etc/dovecot /usr/local/libexec/dovecot < dovecot.1.in > dovecot.1 /bin/sh ./sed.sh . /var/dovecot /etc/dovecot /usr/local/libexec/dovecot < dovecot-lda.1.in > dovecot-lda.1 /bin/sh ./sed.sh . /var/dovecot /etc/dovecot /usr/local/libexec/dovecot < dsync.1.in > dsync.1 Making all in wiki make: don't know how to make 2b (prerequisite of: HowTo.Virtual(2b)) Stop in doc/wiki -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. From netwiz at crc.id.au Fri Feb 14 04:20:46 2014 From: netwiz at crc.id.au (Steven Haigh) Date: Fri, 14 Feb 2014 15:20:46 +1100 Subject: [Dovecot] Cached message size larger than expected Message-ID: <52FD999E.7000205@crc.id.au> Hi guys, I recently turned on IMAP zlib compression for Maildir and noticed that I've started getting these errors in the maillog. Error: Cached message size larger than expected (1627 > 1548) Error: Maildir filename has wrong S value, renamed the file from /home/crc.id.au/netwiz/.System Generated.Cron Jobs/cur/1392224150.M52270P1073.mail.crc.id.au,S=1627:2,S,Z to /home/crc. id.au/netwiz/.System Generated.Cron Jobs/cur/1392224150.M52270P1073.mail.crc.id.au,S=1627:2,S,Z Error: Corrupted index cache file /home/crc.id.au/netwiz/.System Generated.Cron Jobs/dovecot.index.cache: Broken physical size for mail UID 10916 Error: read(zlib(/home/crc.id.au/netwiz/.System Generated.Cron Jobs/cur/1392224150.M52270P1073.mail.crc.id.au,S=1627:2,S,Z)) failed: Invalid argument Disconnected: Internal error occurred. Refer to server log for more information. [2014-02-14 15:08:20] For these emails, I can no longer retrieve the contents of those messages in my mail client. I noticed a thread similar to this for Dovecot 2.1.3 (or so) - however I'm getting the same on 2.2.12. Has there been any solutions for this? -- Steven Haigh Email: netwiz at crc.id.au Web: https://www.crc.id.au Phone: (03) 9001 6090 - 0412 935 897 Fax: (03) 8338 0299 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: OpenPGP digital signature URL: From netwiz at crc.id.au Fri Feb 14 04:32:57 2014 From: netwiz at crc.id.au (Steven Haigh) Date: Fri, 14 Feb 2014 15:32:57 +1100 Subject: [Dovecot] Cached message size larger than expected In-Reply-To: <52FD999E.7000205@crc.id.au> References: <52FD999E.7000205@crc.id.au> Message-ID: <52FD9C79.7030100@crc.id.au> On 14/02/14 15:20, Steven Haigh wrote: > Hi guys, > > I recently turned on IMAP zlib compression for Maildir and noticed that > I've started getting these errors in the maillog. > > Error: Cached message size larger than expected (1627 > 1548) > Error: Maildir filename has wrong S value, renamed the file from > /home/crc.id.au/netwiz/.System Generated.Cron > Jobs/cur/1392224150.M52270P1073.mail.crc.id.au,S=1627:2,S,Z to /home/crc. > id.au/netwiz/.System Generated.Cron > Jobs/cur/1392224150.M52270P1073.mail.crc.id.au,S=1627:2,S,Z > Error: Corrupted index cache file /home/crc.id.au/netwiz/.System > Generated.Cron Jobs/dovecot.index.cache: Broken physical size for mail > UID 10916 > Error: read(zlib(/home/crc.id.au/netwiz/.System Generated.Cron > Jobs/cur/1392224150.M52270P1073.mail.crc.id.au,S=1627:2,S,Z)) failed: > Invalid argument > Disconnected: Internal error occurred. Refer to server log for more > information. [2014-02-14 15:08:20] > > For these emails, I can no longer retrieve the contents of those > messages in my mail client. > > I noticed a thread similar to this for Dovecot 2.1.3 (or so) - however > I'm getting the same on 2.2.12. > > Has there been any solutions for this? Looking further into this, it seems like the file has been compressed twice: # file 1392222687.M581212P24455.mail.crc.id.au\,S\=2165\:2\,S\,Z 1392222687.M581212P24455.mail.crc.id.au,S=2165:2,S,Z: gzip compressed data, was "1392222687.M581212P24455.mail.c", from Unix, last modified: Thu Feb 13 03:31:27 2014, max compression # gzip -l 1392222687.M581212P24455.mail.crc.id.au\,S\=2165\:2\,S\,Z compressed uncompressed ratio uncompressed_name 2165 2084 0.1% 1392222687.M581212P24455.mail.crc.id.au,S=2165:2,S,Z If I use the following, I get the actual body of the email content. # gunzip -c 1392222687.M581212P24455.mail.crc.id.au\,S\=2165\:2\,S\,Z | gunzip -c This doesn't seem right for mail that has been sent, or moved from the inbox to the trash folder... Is it possible that when the mail is moved between folders, it is somehow compressed a second time? -- Steven Haigh Email: netwiz at crc.id.au Web: https://www.crc.id.au Phone: (03) 9001 6090 - 0412 935 897 Fax: (03) 8338 0299 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: OpenPGP digital signature URL: From tss at iki.fi Fri Feb 14 04:34:18 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 14 Feb 2014 13:34:18 +0900 Subject: [Dovecot] v2.2.12 released In-Reply-To: <52FD7CD8.1090107@comstyle.com> References: <52FD7CD8.1090107@comstyle.com> Message-ID: On 14.2.2014, at 11.18, Brad Smith wrote: > On 13/02/14 4:47 PM, Timo Sirainen wrote: >> http://dovecot.org/releases/2.2/dovecot-2.2.12.tar.gz >> http://dovecot.org/releases/2.2/dovecot-2.2.12.tar.gz.sig >> >> POP3 server code changes rarely, so I haven't spent time adding automated > > testing for it. So of course now that it changed in v2.1.11 there was a bug > > that caused it to crash most of the time (except for the test case I was > > using while developing it). This release fixes it, no other changes. > > Someone added a bogus filename to the Wiki and the install is broken > with .11 or newer.. > > /bin/sh ./sed.sh . /var/dovecot /etc/dovecot /usr/local/libexec/dovecot < dovecot.1.in > dovecot.1 > /bin/sh ./sed.sh . /var/dovecot /etc/dovecot /usr/local/libexec/dovecot < dovecot-lda.1.in > dovecot-lda.1 > /bin/sh ./sed.sh . /var/dovecot /etc/dovecot /usr/local/libexec/dovecot < dsync.1.in > dsync.1 > Making all in wiki > make: don't know how to make 2b (prerequisite of: HowTo.Virtual(2b)) > Stop in doc/wiki Will be fixed in next version (the file shouldn't have even existed but did now due to the dovecot.org move). It works with GNU make though. From tss at iki.fi Fri Feb 14 04:39:12 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 14 Feb 2014 13:39:12 +0900 Subject: [Dovecot] Cached message size larger than expected In-Reply-To: <52FD9C79.7030100@crc.id.au> References: <52FD999E.7000205@crc.id.au> <52FD9C79.7030100@crc.id.au> Message-ID: <53B0CC43-7640-4FE7-BA16-A71A3A0926B9@iki.fi> On 14.2.2014, at 13.32, Steven Haigh wrote: > Looking further into this, it seems like the file has been compressed twice: > > This doesn't seem right for mail that has been sent, or moved from the > inbox to the trash folder... > > Is it possible that when the mail is moved between folders, it is > somehow compressed a second time? Can you reproduce this by copying/moving a mail? I can't. What's your doveconf -n output? From tss at iki.fi Fri Feb 14 04:43:28 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 14 Feb 2014 13:43:28 +0900 Subject: [Dovecot] FTS question In-Reply-To: <52FD27FC.4010605@myzel.net> References: <52FD27FC.4010605@myzel.net> Message-ID: <5B9C7235-8B5A-40B0-86B1-030C320D01F6@iki.fi> On 14.2.2014, at 5.15, Peter Chiochetti wrote: > Can I override the user parameter in solr indexing and searching? No, and I think that would the wrong solution for this, because it would have to be repeated for everything in Dovecot that uses username as part of the mailbox identifier. > To understand, why I wish for that, please consider my setup: > > # Mail is fetched from a remote imap server > # dovecot LDA stores into Maildir as system user > > # Several virtual users exist in a static userdb > # They all share the system users Maildir > > # everybody can see, move, delete etc. all the mails > # dovecot mail_log plugin is used for audit Change the user to be the same for all the users. Use the new %{auth_user} variable in v2.2.11+ for logging the unchanged username in login_log_format_elements and mail_log_prefix instead of using %u. From netwiz at crc.id.au Fri Feb 14 04:49:45 2014 From: netwiz at crc.id.au (Steven Haigh) Date: Fri, 14 Feb 2014 15:49:45 +1100 Subject: [Dovecot] Cached message size larger than expected In-Reply-To: <53B0CC43-7640-4FE7-BA16-A71A3A0926B9@iki.fi> References: <52FD999E.7000205@crc.id.au> <52FD9C79.7030100@crc.id.au> <53B0CC43-7640-4FE7-BA16-A71A3A0926B9@iki.fi> Message-ID: <52FDA069.9040107@crc.id.au> On 14/02/14 15:39, Timo Sirainen wrote: > On 14.2.2014, at 13.32, Steven Haigh wrote: > >> Looking further into this, it seems like the file has been compressed twice: >> >> This doesn't seem right for mail that has been sent, or moved from the >> inbox to the trash folder... >> >> Is it possible that when the mail is moved between folders, it is >> somehow compressed a second time? > > Can you reproduce this by copying/moving a mail? I can't. What's your doveconf -n output? I'm digging a bit futher... I can't get the trash folder to update at all now via thunderbird - I'm trying to get a common method - but can't quite figure it out. Config attached. I'm wondering... After I enabled compression on store, I ran a script that went through and compressed files with gzip and compressed existing content - also attached. It seemed to make sense while reading through the script, so I'm not quite sure if its something I missed either... -- Steven Haigh Email: netwiz at crc.id.au Web: https://www.crc.id.au Phone: (03) 9001 6090 - 0412 935 897 Fax: (03) 8338 0299 -------------- next part -------------- # 2.2.12: /etc/dovecot/dovecot.conf # OS: Linux 3.12.10-1.el6xen.x86_64 x86_64 Scientific Linux release 6.5 (Carbon) ext4 auth_cache_negative_ttl = 2 hours auth_cache_size = 10 M auth_cache_ttl = 2 hours auth_mechanisms = plain login lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes login_log_format_elements = user=<%u> method=%m rip=%r lip=%l mpid=%e %c mail_gid = 5000 mail_location = maildir:/home/%d/%n/ mail_plugins = zlib quota mail_uid = 5000 mailbox_idle_check_interval = 5 secs managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave editheader mbox_write_locks = fcntl namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = separator = . type = private } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { quota = maildir:Filesystem Quota quota_rule = *:bytes=2G quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u sieve = /home/%d/%n/dovecot.sieve sieve_dir = /home/%d/%n/sieve sieve_editheader_max_header_size = 1k sieve_editheader_protected = X-Verified sieve_extensions = +editheader sieve_max_actions = 64 sieve_max_redirects = 25 zlib_save = gz zlib_save_level = 9 } protocols = imap lmtp sieve service auth { unix_listener /var/spool/postfix/private/auth { group = vmail mode = 0660 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = dovecot } } service managesieve-login { executable = managesieve-login -D inet_listener sieve { port = 4190 } } ssl_ca = in the filename. # # Compress the mails to tmp/ # # Update the compressed files' mtimes to be the same as they were in the original files (e.g. touch command) # # Run maildirlock . It writes PID to stdout, save it. # # is path to the directory containing Maildir's dovecot-uidlist (the control directory, if it's separate) # # specifies how long to wait for the lock before failing. # # If maildirlock grabbed the lock successfully (exit code 0) you can continue. # For each mail you compressed: # # Verify that it still exists where you last saw it. # If it doesn't exist, delete the compressed file. Its flags may have been changed or it may have been expunged. This happens rarely, so just let the next run handle it. # # If the file does exist, rename() (mv) the compressed file over the original file. # # Dovecot can now read the file, but to avoid compressing it again on the next run, you'll probably want to rename it again to include e.g. a "Z" flag in the file name to mark that it was compressed (e.g. 1223212411.M907959P17184.host,S=3271:2,SZ). Remember that the Maildir specifications require that the flags are sorted by their ASCII value, although Dovecot itself doesn't care about that. # # Unlock the maildir by sending a TERM signal to the maildirlock process (killing the PID it wrote to stdout). ## ## ## store=/home/ compress=gzip #compress=bzip2 find "$store" -type d -name "cur" | while read maildir; do tmpdir=$(cd "$maildir/../tmp" &>/dev/null && pwd) || exit 1 find=$(find "$maildir" -type f -name "*,S=*" ! -name "*,*:2,*,*Z*" -printf "%f\n") if [ -z "$find" ]; then continue fi echo "$find" | while read filename; do srcfile="$maildir/$filename" tmpfile="$tmpdir/$filename" $compress --best --stdout "$srcfile" > "$tmpfile" && # Copy over some things chown --reference="$srcfile" "$tmpfile" && chmod --reference="$srcfile" "$tmpfile" && touch --reference="$srcfile" "$tmpfile" done # Should really check dovecot-uidlist is in $maildir/.. if lock=$(/usr/libexec/dovecot/maildirlock "$maildir/.." 10); then # The directory is locked now echo "Processing $maildir/..." echo "$find" | while read filename; do srcfile="$maildir/$filename" tmpfile="$tmpdir/$filename" $compress --best --stdout "$srcfile" > "$tmpfile" && # Copy over some things chown --reference="$srcfile" "$tmpfile" && chmod --reference="$srcfile" "$tmpfile" && touch --reference="$srcfile" "$tmpfile" done # Should really check dovecot-uidlist is in $maildir/.. if lock=$(/usr/libexec/dovecot/maildirlock "$maildir/.." 10); then # The directory is locked now echo "Processing $maildir/..." echo "$find" | while read filename; do flags=$(echo $filename | awk -F:2, '{print $2}') if echo $flags | grep ','; then newname=$filename"Z" else newname=$filename",Z" fi srcfile=$maildir/$filename tmpfile=$tmpdir/$filename dstfile=$maildir/$newname if [ -f "$srcfile" ] && [ -f "$tmpfile" ]; then #echo "$srcfile -> $dstfile" mv "$tmpfile" "$srcfile" && mv "$srcfile" "$dstfile" else rm -f "$tmpfile" fi done kill $lock else echo "Failed to lock: $maildir" >&2 echo "$find" | while read filename; do rm -f "$tmpdir/$filename" done fi done -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: OpenPGP digital signature URL: From tss at iki.fi Fri Feb 14 04:49:47 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 14 Feb 2014 13:49:47 +0900 Subject: [Dovecot] master user and ACL's In-Reply-To: <52FC7642.8010402@one.com> References: <52F73DF4.9000408@one.com> <52FC7642.8010402@one.com> Message-ID: <7113564B-93E1-41C0-ACBA-71334A9FA54E@iki.fi> On 13.2.2014, at 16.37, Peter Mogensen wrote: > On 2014-02-13 04:40, Timo Sirainen wrote: >> On 9.2.2014, at 17.36, Peter Mogensen wrote: >>> But why is the master_user authn-id used in the ACLs and not the authz-id (requested-login-user) ? >>> >>> Isn't the whole point of SASL authz-id semantics to have authorization resolved based on the authz-id? >> >> Some people are using master user logins to do other types of things, such as allowing voicemail software to access only the Voicemail folder of everyone. Or spam software access only to the Spam folder. > > But wouldn't the correct way for these use cases be to share the individual folders with the voicemail/spam user ACL needed - not to log in as the user. Very inefficient when there are millions of users. >> Or an alternative read-only username+password for all users that can access the same user's mails only read-only. >> > > This one is more tricky, since it mixes authentication and authorization more. ... which always needs thinking in a protocol as IMAP where the resource accessed is tied to the user (as opposed to HTTP). > > Intuitively, if I would set this up, I would probably try with having 2 userdb entries pointing to the same mail_location, but with different acl_groups userdb fields. > ... or something to that effect. > In other words ... not determine it based on authentication-ID, but based on authorization-ID. acl_user userdb field might be useful I guess. > My own use-case is to have 1 authentication-ID being able to access several userdb accounts. - with the same credentials. Based on checking whether the give SASL authz-id is OK for that user. But from then on, just be that user. > > Is specifying master_user=%u the official way to switch between these behaviours of which SASL id ACLs are checked against or is there an enhancement of the dovecot functionality to consider to handle SASL authz-id/authn-id in a more general way? Sounds like you don't want the master user to be special in any way now or in future. In that case setting master_user=%u would do exactly that now and always. (There might be some other features besides ACLs that could work differently for master user logins in future.) From tss at iki.fi Fri Feb 14 04:52:06 2014 From: tss at iki.fi (Timo Sirainen) Date: Fri, 14 Feb 2014 13:52:06 +0900 Subject: [Dovecot] Exclude Users from replication/sync In-Reply-To: <52FC8148.2050900@cms.hu-berlin.de> References: <52FB240C.70504@cms.hu-berlin.de> <52FC8148.2050900@cms.hu-berlin.de> Message-ID: <8DD4C901-C33C-495B-BD5A-3980AEBF0F1C@iki.fi> There's no good way to do this with passwd userdb. It would have to be some kind of a new exclude list of users, which is a rather annoying special feature to implement. On 13.2.2014, at 17.24, Daniel Stoye wrote: > I'm using PAM with padl_pam as a backend to get the users from an ldap > server. > > userdb { > driver = passwd > args = blocking=yes uid=XXX gid=XXX > } > > passdb { > driver = pam > args = failure_show_msg=yes dovecot > } > > Thanks, > Daniel > > On 02/13/2014 04:23 AM, Timo Sirainen wrote: >> On 12.2.2014, at 16.34, Daniel Stoye wrote: >> >>> i'm searching for a way to exclude certain users from dovecots >>> replication mechanism. >>> >>> I can't use the first_valid_uid setting, because the uid of my pam >>> (ldap) users und my system users are mixed up. >>> >>> So, is there a way to limit my users i currently have in my userdb >>> or somehow exclude specific uids from replication? >> >> Which userdb do you use? For example with SQL you could change the iterate_query not to return all users for replicator. >> From netwiz at crc.id.au Fri Feb 14 05:37:43 2014 From: netwiz at crc.id.au (Steven Haigh) Date: Fri, 14 Feb 2014 16:37:43 +1100 Subject: [Dovecot] Cached message size larger than expected In-Reply-To: <52FDA069.9040107@crc.id.au> References: <52FD999E.7000205@crc.id.au> <52FD9C79.7030100@crc.id.au> <53B0CC43-7640-4FE7-BA16-A71A3A0926B9@iki.fi> <52FDA069.9040107@crc.id.au> Message-ID: <52FDABA7.7070301@crc.id.au> On 14/02/14 15:49, Steven Haigh wrote: > On 14/02/14 15:39, Timo Sirainen wrote: >> On 14.2.2014, at 13.32, Steven Haigh wrote: >> >>> Looking further into this, it seems like the file has been compressed twice: >>> >>> This doesn't seem right for mail that has been sent, or moved from the >>> inbox to the trash folder... >>> >>> Is it possible that when the mail is moved between folders, it is >>> somehow compressed a second time? >> >> Can you reproduce this by copying/moving a mail? I can't. What's your doveconf -n output? > > I'm digging a bit futher... I can't get the trash folder to update at > all now via thunderbird - I'm trying to get a common method - but can't > quite figure it out. > > Config attached. > > I'm wondering... After I enabled compression on store, I ran a script > that went through and compressed files with gzip and compressed existing > content - also attached. > > It seemed to make sense while reading through the script, so I'm not > quite sure if its something I missed either... I *think* I may have gotten to the bottom of this... I believe that the locking in the script didn't work - then while the compression script was running, dovecot delivered mail into that mailbox. This was then compressed a second time by the compression script. Narrowing down to the specific emails and times that the messages causing problems were processed by Dovecot - these were all done when the script file was being run. As such, this is certainly not a dovecot problem and I apologise for the noise on the list :) -- Steven Haigh Email: netwiz at crc.id.au Web: https://www.crc.id.au Phone: (03) 9001 6090 - 0412 935 897 Fax: (03) 8338 0299 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: OpenPGP digital signature URL: From skdovecot at smail.inf.fh-brs.de Fri Feb 14 07:27:14 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 08:27:14 +0100 (CET) Subject: [Dovecot] lda+ldap multiple users In-Reply-To: <52F4B4C5.30705@securepoint.de> References: <52F4B4C5.30705@securepoint.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 7 Feb 2014, matthias lay wrote: > I experienced that if a Mailaddress matches several users the delivery is > aborted. > > ---------------- > dovecot: auth: Error: ldap(christian.test at securepoint.de): LDAP search > returned multiple entries > dovecot: auth: ldap(christian.test at securepoint.de): unknown user > dovecot: lda: Error: user christian.test at securepoint.de: Auth USER lookup > failed > ----------------- > > now my question, is there a way to have a mail like that delivered to all > users that matches the lookup? > havent found anything in the docs. This is a job of your MTA. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv3FUnD1/YhP6VMHAQKvnQgAhSLwMXAd7iX2wKU3mQDHtEtRK0764xx4 zVOJboQb5S4ZTx8EGeLv5eE8jyv0IHtUR8i7rcmy3Pk2qfqntJT2omnQMUJWT2Yz o3eWnAxMhDAXegLAulEYv7ndQHRkzCviDt/KWwx7AKyFM6rBKhwvDPg0LUOFfVaB /hLsYD4OG21LAkZ7GdquyGNrSAhDHrYNVRXirhzLnJQ/UadRsdv/gJb5FMsMH0Sx hR4tM5t8Enuu69d0mVt14wRbVEIccLTQR+8GvNWRbVXZjnmRvCr+8OlnU87JIbp0 hhMXlbnoQbtHWOPjU/IveqIPgYj6tp4nibJ+2OtfbdywWXfw64Olog== =AV6P -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Fri Feb 14 07:32:36 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 08:32:36 +0100 (CET) Subject: [Dovecot] Some LDA questions! In-Reply-To: <1392117203.882954481@f341.i.mail.ru> References: <1392117203.882954481@f341.i.mail.ru> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 11 Feb 2014, ?????? ??????? ??????? wrote: > Return-path: <"vitalyf at bbb.com"@host.aaa.com> > Envelope-to: vitalyf at bbb.com > Delivery-date: Tue, 11 Feb 2014 03:59:17 -0600 > Received: from xxx.net ([11.22.33.44] helo=[192.168.1.77]) > ?by host.aaa.com with esmtpsa (TLS1.0:ECDHE_RSA_AES_128_CBC_SHA1:128) > ?(Exim 4.82) > ?(envelope-from <"vitalyf at bbb.com"@host.aaa.com>) if I read this line, the wrong email address seems to be introduced by exim. > ?id 1WDA7Y-0007GS-VR > ?for vitalyf at bbb.com; Tue, 11 Feb 2014 03:59:17 -0600 > Message-ID: <52F9F468.9030001 at bbb.com> > Date: Tue, 11 Feb 2014 16:59:04 +0700 > From: =?UTF-8?B?0KTQsNC00LXQtdCyINCS0LjRgtCw0LvQuNC5INCb0YzQstC+0LLQuNGH?= > ? > User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.3.0 > MIME-Version: 1.0 > To: vitalyf at bbb.com > Subject: adfasdf > Content-Type: text/plain; charset=UTF-8; format=flowed > Content-Transfer-Encoding: 7bit > Sender: "vitalyf at bbb.com"@host.aaa.com > Test headers > host.aaa.com is a hostname that run dovecot and exim. > bbb.com is a virtual domain located in mysql db. > I do not want to show host.aaa.com in headers. How can i disable this so headers looks like this: > Return-path: > Which configuration i need to show you? If my above state is true, you'd better ask in an exim forum. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv3GlHD1/YhP6VMHAQJeTAf9HqCGo5ZjCOHv9cj9iO4PteZNKvURz88j N07L2uGewyOnQsk7+oItaIei0AHlFWXqB3rD6dziekXxGJJWRuqLLAGOnqCBnVui YRoHLpKrb+Ho+XZOhDR+mW26rBHHaHXk74nOSJb2Q/aeH8bmbMH/UO9x5uPIjqp8 SKELVFImMBvCcrPn9HpaszgTsNqIPMcMP6bD3tBUXcsLnQZ2uCdq7ro+2WxPX/X2 quiw4Pz1hjeL/LpZ+P9Mki+9aoYzl5XXf/OywcLLL8xkaN1d6sybefxrYvw2FWsK Eyc+GAgDA+96TyIjs8H6qaTBZSrA+4xqIm5NBX7T8g7NcA3dPkTuow== =rTzc -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Fri Feb 14 07:36:10 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 08:36:10 +0100 (CET) Subject: [Dovecot] Public folder doesn't work In-Reply-To: <1392126370095-46671.post@n4.nabble.com> References: <1392126370095-46671.post@n4.nabble.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 11 Feb 2014, vupibi wrote: > I tried several settings, but I dont get it running. I don't see any namespace configuration in your doveconf output. Do you change the correct files and did you reloaded Dovecot? > > What I tried is adding this to my dovecot.conf file > > # User's private mail location > mail_location = maildir:~/Maildir > > # When creating any namespaces, you must also have a private namespace: > namespace { > type = private > separator = / > prefix = > #location defaults to mail_location. > inbox = yes > } > > namespace { > type = public > separator = / > prefix = Public/ > location = maildir:/var/vmail/public > subscriptions = no > } > > But nothing happened. I tried it with > > # Umask for shared folders > umask = 0007 > > with > > subscriptions = yes > > tried creating the folder first like this > > touch /var/vmail/public/dovecot-shared > chown -R ebox /var/vmail/public > find /var/vmail/public -type d -print0 | xargs -0 chmod 2770 > find /var/vmail/public -type f -print0 | xargs -0 chmod 660 > > But i had no success. Any Ideas how to get it running? > > Here is my dovecot -n output > > # 2.0.19: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-58-generic x86_64 Ubuntu 12.04.4 LTS ext4 > auth_gssapi_hostname = mailand.sxps.int > auth_krb5_keytab = /etc/dovecot/dovecot.keytab > auth_mechanisms = gssapi plain > first_valid_gid = 116 > first_valid_uid = 108 > log_timestamp = "%Y-%m-%d %H:%M:%S " > mail_gid = 116 > mail_home = /var/vmail/sieve/%d/%u > mail_location = maildir:/var/vmail/%$ > mail_uid = 108 > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character > vacation subaddress comparator-i;ascii-numeric relational regex imap4flags > copy include variables body enotify environment mailbox date ihave > passdb { > args = /etc/dovecot/dovecot-ldap.conf > driver = ldap > } > plugin { > autocreate = Trash > autocreate2 = Spam > autocreate3 = Sent > autocreate4 = Drafts > autosubscribe = Trash > autosubscribe2 = Spam > autosubscribe3 = Sent > autosubscribe4 = Drafts > quota = maildir:User quota > quota_rule = *:storage=0 > sieve = /var/vmail/sieve/%d/%u/sieve-script > sieve_dir = /var/vmail/sieve/%d/%u > sieve_global_path = /var/vmail/sieve/default.sieve > sieve_storage = /var/vmail/sieve/%d/%u > } > protocols = imap sieve > service auth { > executable = /usr/lib/dovecot/auth > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0660 > user = postfix > } > unix_listener auth-master { > group = ebox > mode = 0600 > user = ebox > } > user = dovecot > } > service imap-login { > inet_listener imap { > address = * > port = 143 > } > inet_listener imaps { > address = * > port = 993 > } > } > service managesieve-login { > inet_listener sieve { > port = 4190 > } > } > ssl_cert = ssl_key = userdb { > args = /etc/dovecot/dovecot-ldap.conf > driver = ldap > } > protocol imap { > mail_plugins = quota imap_quota autocreate > } > protocol lda { > auth_socket_path = /var/run/dovecot/auth-master > mail_plugins = sieve quota > postmaster_address = admin at XX.eu > } > Modify message > > > > > -- > View this message in context: http://dovecot.2317879.n4.nabble.com/Public-folder-doesn-t-work-tp46671.html > Sent from the Dovecot mailing list archive at Nabble.com. > - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv3HanD1/YhP6VMHAQIB3QgAtoFAEFnvioa+tGSxTMYFktOiGXauBZjw rv5qR+DzYE+iF7YYXwnGAovBBu4WhaBEyOiglXLVp0Wk3kXSOYk9SKWGTS6A8eDE tUYR33aia4IMJWfNSVsWDD4+J0Z2Yy33kbw37NYavPtX3ZQL+Mfx07LO/CTMrzOJ WiaMyRyGN0Y9AmVhDE64iQWn8zlYQwv0/iHACQSPvZIzg7UVRcw6XN+CU7itSYPt 8X1xmt8MggcetSZuwTvVNp7/3s/Pgnj5RhyDfrpW+cKL/ZzN5AafrBVwB4d9N50y OYZDqAG5vS38obre+6ZRj9h18nQF7n0Y8CWkaUgCmw4PHLQk3xGpWA== =72RI -----END PGP SIGNATURE----- From apm at one.com Fri Feb 14 07:38:00 2014 From: apm at one.com (Peter Mogensen) Date: Fri, 14 Feb 2014 08:38:00 +0100 Subject: [Dovecot] master user and ACL's In-Reply-To: <7113564B-93E1-41C0-ACBA-71334A9FA54E@iki.fi> References: <52F73DF4.9000408@one.com> <52FC7642.8010402@one.com> <7113564B-93E1-41C0-ACBA-71334A9FA54E@iki.fi> Message-ID: <52FDC7D8.2000304@one.com> On 2014-02-14 05:49, Timo Sirainen wrote: > > Sounds like you don't want the master user to be special in any way now or in future. In that case setting master_user=%u would do exactly that now and always. (There might be some other features besides ACLs that could work differently for master user logins in future.) > It's not that can't think of the need for a "master user", but I think of SASL authz-id in more general terms. - not a something only used for "master users". And actually... the GSSAPI mech in Dovecot already works that way. The authz-id is looked up in the passdb and the authn-id (the principal) is matched against the "k5principals" (*) extra-field - not against the master user database. A more general way would be to generalize the whole "userok()" check into a plugable step between passdb lookup and userdb lookup, which tested whether the SASL authz-id request was ok - (and maybe if it was ok because it was a master user, or just because local authorization allowed that) /Peter *: Btw... "k5principals" is miss-written in the wiki docs as "k5credentials". But haven't been able to change it. From skdovecot at smail.inf.fh-brs.de Fri Feb 14 07:45:38 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 08:45:38 +0100 (CET) Subject: [Dovecot] Sieve is not getting the propper RCPT from the LMTP daemon In-Reply-To: References: <52B988D6.50209@klondike.es> <52FA9054.9030301@rename-it.nl> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 11 Feb 2014, Greg Rivers wrote: > On Tue, 11 Feb 2014, Stephan Bosch wrote: > >> On 12/24/2013 2:15 PM, klondike wrote: >>> The relevant lines for the test e-mail I sent are these: >>> sieve: info: started log at Dec 24 13:37:23. >>> main script: line 9: info: DEBUG: envelope to `klondike (at) gentoo.org'. >>> main script: line 10: info: DEBUG: envelope from `klondike (at) >>> gentoo.org'. >>> info: msgid=<52B97FF7.6050109 at gentoo.org>: stored mail into mailbox >>> 'INBOX'. >> >> A similar issue was mentioned and solved a little later on the mailing >> list, so that is why I forgot about this one. That involved Sendmail >> though: >> >> http://www.dovecot.org/list/dovecot/2014-January/094385.html >> > > If you read further down that thread, you'll see that both Miquel van > Smoorenburg and Steffen Kaiser pointed out that this solution only works in > the case where there is one and only one recipient. So it's not a general > solution. That is true, if you want to fetch the envelope recipient from "Recieved" headers. > Because of that, I am using dovecot LDA instead of LMTP until I can write a > custom sendmail ruleset to pass +detail to LMTP. Here's my sendmail LDA > configuration ($h contains the detail part of the ID): > > FEATURE(`local_procmail', `/usr/local/libexec/dovecot/dovecot-lda', > `dovecot-lda -a $u+$h -d $u') LMTP in sendmail has the problem, that you need to accept "user+detail" as local recipient, in order to be passed to the local mailer. I did this with a socket map, because I use one anyway. Also, if getpwnam() is not working, you loose the .forward feature. Therefore I patched a Dovecot mailbox backend, similiar to the already existing LDAP mailbox backend, into sendmail. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv3JonD1/YhP6VMHAQI7/ggAm4BjnZUBGgA6f2hvIHhGQqxR6CLsxrtr r+JQRHR0EQPpkf6z/zPorMdQ7H2zK3gtA+rQk4nxQYPNRSMoOQEXtj/QTJ7sKP3o tNQLOPMNuKgWkkcSLHiE9f9zcX2uKY9OJ6qoFe0gxV9xsvsSHoXuJx4hymIInqY7 LqTKxA/CUrOHi6BwF0DeAUVYC6JYMnvPFAwVLDIr096KudvgMXzj+GpHaEx1uB9F 6qyiShx4ci/cLJ1lPk4xaEqmhIAI9E612jxcYZzTWYkt00F67nOt8FPTCJus7EGs iMxR/DpBkdGhBXqIKQhBXashsT+LYUI8DhJD5VcTVVOnthbRQZZ8qw== =hh7s -----END PGP SIGNATURE----- From alan.schmitt at polytechnique.org Fri Feb 14 08:12:04 2014 From: alan.schmitt at polytechnique.org (Alan Schmitt) Date: Fri, 14 Feb 2014 09:12:04 +0100 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup In-Reply-To: (Damon Haley's message of "Thu, 13 Feb 2014 08:52:54 -0700") References: <52FBF21F.905@whyscream.net> Message-ID: Hello Damon, "Damon Haley" writes: >>>>>> Alan Schmitt writes: > >> This is the crux of my question, I guess. Right now I don't deliver any >> mail, but use offlineimap to keep a local imap server (dovecot) in sync with >> a remote one. So my questions are: 1. Can I use dovecot's sieves if I don't >> deliver mail? 2. If not, how can I hook up offlineimap and dovecot so that >> mail is delivered instead of synchronized? > > Alan, you can use sieve with dovecot in an offline imap setup. > > All you have to do is compile sieve into dovecot: > > wget http://pigeonhole.dovecot.org/releases/2.2/dovecot-2.2-pigeonhole-0.4.2.tar.gz > > untar it > > cd /usr/local/src/dovecot-2.2-pigeonhole-0.4.2/ > > ./configure --prefix=/usr/local/Cellar/pigeonhole/0.4.0 --with-dovecot=/usr/local/opt/dovecot/lib/dovecot > make && make install > > I did this on a Macbook with dovecot installed from hombrew. > > Whenever imap process is launched by my mail client it automatically sorts my > INBOX based on sieve rules. > > I can also do this manually: > > sieve-filter -e -W -v -C -u $USER ~/Messages/dovecot.sieve 'INBOX' > > Hope that is of some help. This is most helpful, thanks a lot! Alan From skdovecot at smail.inf.fh-brs.de Fri Feb 14 08:15:51 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 09:15:51 +0100 (CET) Subject: [Dovecot] No Access to public folder In-Reply-To: <1392206756148-46696.post@n4.nabble.com> References: <1392206756148-46696.post@n4.nabble.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 12 Feb 2014, vupibi wrote: > I have some Issues with Dovecots public folder. > I only see the folder in users Mailbox but I cannot subscribe it or copy > mails in it. In another thread Timo said: "You can use "doveadm acl debug" command to try to figure out why a user can't see a shared mailbox. For example: doveadm acl debug -u user at domain Public/foo" That's one start. Another is: doveadm mailbox list -u user it should list all shared mailboxes, too. doveadm search -u user mailbox public/\* subject .... > My public file structure (folder: "/var/vmail/public/") looks like this: > > -rw-rw-rw- 1 ebox ebox 0 Feb 12 01:21 dovecot-acl-list > drwxrwsrwx 2 ebox ebox 4096 Feb 12 00:31 test > > (Wierd thing is that "dovecot-acl-list" is empty, why?) Because of "anyone", that is configured without the list file. However, as I understand the "public" namespace, no ACLs are required. > I can see the folder in my mail accounts but I dont have access to it. You mean you see "public/test", but don't see anything within, if you enter the mailbox? Or do you get an error, if you try to enter it? Are you sure, the structure is correct? Try to setup an account with mail_location = maildir:/var/vmail/public:LAYOUT=fs and verify it works at all. Maybe, make a 100% copy of that directory before: cp -a /var/vmail/public /var/vmail/testuser - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv3Qt3D1/YhP6VMHAQK+gQf+OwpIk2ljglxXJ2xCinJFEmVTVd8oIm+O EibMM0xwLCx9a4WJ+UNc5cCGVG9GAGlBRifnE2yngE3y3gpAMDCGtpNDLSalTTWf NIBXqwQUfWAG1otuM6OwyU/PJAAkC6o8jHuV0/dkACnarlFMQLRFmGG31JTRAmqQ SX8Almxg9rCcsWxxKh9UvffHUSoPZPwZ7dGxiO5Z+SExF5MqAetAFhdTwyk+Uf6P LY/t0rWgYWiE34ZqabvyVAr/uRCFg0yiHeoHmNstMHXYz3j2MBCsfJeAbhsBJT0H PKEqOJQNQxuvpnT/fRgykQoqZU5WgjQkr8ttxUc9Q46K0qpCF12NJQ== =QUpC -----END PGP SIGNATURE----- From crohmann at netcologne.de Fri Feb 14 08:15:12 2014 From: crohmann at netcologne.de (Christian Rohmann) Date: Fri, 14 Feb 2014 09:15:12 +0100 (CET) Subject: [Dovecot] Status In-Reply-To: <20140212131216.GA1911@sys-241.netcologne.de> References: <52F8D4B9.9040307@netcologne.de> <3902A0F9-8EBA-465A-B114-75703BE94FC3@iki.fi> <20140212131216.GA1911@sys-241.netcologne.de> Message-ID: <348527872.85574.1392365712292.open-xchange@cc-app2.netcologne.de> Hey Timo, > Roland Rosenfeld hat am 12. Februar 2014 um 14:12 > geschrieben: > On Mon, 10 Feb 2014, Timo Sirainen wrote: > > That's quite a lot of work for fixing something that shouldn't > > really be happening in the first place. I think those problems only > > happen once immediately after enabling zlib plugin and for some > > reason having the wrong (or missing) S=sizes in maildir filenames? Is it really? As far as I understood Rolands original post regarding this issue, all the (meta) data is there. Dovecot does recognize a compressed (Maildir++) file without any tags or meta info in the file name already today. And it more importantly knows the uncompressed size the message has. The only thing that is broken or more accurately put, that could be improved on, is Dovecots ability to use the uncompressed size as S=Value instead of always relying on the file size when setting / fixing the file name. So in my naive mind this boils down to determining the S-Value the Maildir++ file name is given from the "uncompressed" size variable instead of the size the file has on disk. You could also only branch to this "mode" of a compressed file is recognized. I wildly guess that this is the strategy you need to apply to (m)dbox anyways. To find and index how big each message within a dbox-file really is. > Yes, I know, that this a layer 8 problem, but I would sleep better > when I'd know that dovecot can repair this issue for me be fixing the > S-value automatically. As you can probably read between the lines: Once you became to know and simply love the "Dovecot simply fixes problems with a mailbox or its indexes automagically"-paradigm, you miss it on the first case this is not so ... I might add another use case or nice ability Dovecot has: One can just copy / merge messages on a file by file basis and Dovecot will take care of renaming the files to the Maildir++ format. This does not work anymore if the files are compressed. But provided Dovecot could set the actual size of a compressed file this would again work just fine. Thanks Christian From skdovecot at smail.inf.fh-brs.de Fri Feb 14 08:23:51 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 09:23:51 +0100 (CET) Subject: [Dovecot] Feature Request "doveadm who" for all sockets or limits In-Reply-To: <965A5DC3-4D2C-47E4-B525-94551E4EC378@kreme.com> References: <965A5DC3-4D2C-47E4-B525-94551E4EC378@kreme.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 12 Feb 2014, LuKreme wrote: > On 12 Feb 2014, at 09:12 , Steffen Kaiser wrote: >> Some in-house program connected to auth-userdb, but did not closed the connection, > > Is there a way to set a timeout on the open socket? Is it a socket? > > Would lsof show the connections? (assuming your kernel is compatible with lsof, mine is not so I can't check). I my case, it's an Unix socket: /var/run/dovecot/auth-userdb lsof shows them as hex numbers - without end point. That way I found problematic program, because I had the chance to look, when the problem popped up. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv3Sl3D1/YhP6VMHAQK7TQf+Lx5iE9VEfqcQ5iqzKmp1ZP2nmbZURK26 559JIzmlWWiVXYcR4aCeCv2YXJLTaIyuTBmKjaPeOq8xnfmuoXnIb+t+5pkwScp1 jUaSkKD0fhTXxOCdwchbH9aDbTmcDsZi+ZHsaW367WgDD9ZRuRGlPQ6P4bZb6hv1 Z17wrIducYgHw+DCmpMGBDIWQg7EPaVE+RZWp8FatppeYSsaRtk2J+dJzgvQZ8AR MpPUjiXgGgF4uLyHfwALNCN+12W9zez1koSf6LOuB+Sgkgil2ha1ScSWeFgCkyGt btD08DO8dMK7COALVjhiPXDviPYhaJ57gP2GTAvGpVl0xgXHHi3Bjg== =K2vC -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Fri Feb 14 08:30:05 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 09:30:05 +0100 (CET) Subject: [Dovecot] Hybrid of linux user accounts and virtual user accounts configuration In-Reply-To: <20140213190503.3ABDB23392@talvi.dovecot.org> References: <20140213033408.2C0C42337A@talvi.dovecot.org> <20140213190503.3ABDB23392@talvi.dovecot.org> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 13 Feb 2014, Derek Winterstien wrote: > and dovecot retrieves it for pop and imap users in the virtual user database. > Just one more thing though, it is understood that dovecot is going to ask pam > to check first for a unix account, which will fail, then dovecot tries the > virtual user text file, and succeeds when the user is located. However, the > pam error generated in the secure log is ugly. > > auth: pam_succeed_if(dovecot:auth): error retrieving information about user > foo > > I would like to suppress this error, only when dovecot succeeds from the > virtual user text file. However, still report the pam error when no valid > user exists in either. Is this possible? change the order of passdb {} sections. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv3UDXD1/YhP6VMHAQK3uQf+N/Px+8tpuu4KX7kv/ND45h75zCN0/2Vq 28eAdKFeSAsKI0Swq6hWFjoK9+oDB8mGo2sXtsIZwHT54V2cTGcZqxZfptBTvJSF URE9kO7togLgwnzKrnwIfmFHwZkFb/vvphHWYe+/E5v8m8J6rsoGrRCB2+mk47H8 rmvYd2zd7CJmOsesRqOqEhzktDBATrYjJsJnkZ9ILW487M7Br6yZA62w0QqzkL59 nvhYcrP0SQlqr6DBDnv6zrp7Z1v6BgwP5Tsidt/Qi21sTO3W9tFcSbtJ7C6u+cP9 fa/mODX3SD9WJRY23rd7b4awdCQdEjJn7RyL0hKiG4cOH7Xn7PLNOg== =pmmi -----END PGP SIGNATURE----- From Daniel-128 at gmx.de Fri Feb 14 09:37:57 2014 From: Daniel-128 at gmx.de (Daniel Thielemann) Date: Fri, 14 Feb 2014 10:37:57 +0100 Subject: [Dovecot] Problem to setup replication In-Reply-To: References: Message-ID: Has somebody an idea OR a working howto / guide to setup dovecot replication? Thanks > Gesendet: Dienstag, 28. Januar 2014 um 13:02 Uhr > Von: "Daniel Thielemann" > An: dovecot at dovecot.org > Betreff: [Dovecot] Problem to setup replication > > Hi, > > i tried to setup replication since some days but I'am stuck now. > > > > My conf: > > # 2.2.10: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-431.3.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) > dsync_remote_cmd = ssh -l%{login} %{host} /usr/bin/doveadm dsync-server -u%u -l%{lock_timeout} -n%{namespace} > log_path = /var/log/dovecot > mail_gid = 5000 > mail_home = /var/vmail/%d/%n > mail_location = maildir:~/Maildir > mail_plugins = " notify replication" > mail_uid = 5000 > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave > mbox_write_locks = fcntl > namespace inbox { > inbox = yes > location = > mailbox Drafts { > special_use = \Drafts > } > mailbox Junk { > special_use = \Junk > } > mailbox Sent { > special_use = \Sent > } > mailbox "Sent Messages" { > special_use = \Sent > } > mailbox Trash { > special_use = \Trash > } > prefix = > } > passdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > plugin { > mail_replica = remote:vmail at server1.domain.dom > replication_full_sync_interval = 1 hours > sieve = ~/.dovecot.sieve > sieve_dir = ~/sieve > } > protocols = imap sieve > service aggregator { > fifo_listener replication-notify-fifo { > user = vmail > } > unix_listener replication-notify { > user = vmail > } > } > service auth { > unix_listener /var/spool/postfix/private/auth { > mode = 0666 > user = postfix > } > unix_listener auth-master { > mode = 0600 > user = vmail > } > unix_listener auth-userdb { > group = vmail > mode = 0600 > user = vmail > } > } > service managesieve-login { > inet_listener sieve_deprecated { > port = 2000 > } > } > service replicator { > process_min_avail = 1 > unix_listener replicator-doveadm { > mode = 0600 > user = vmail > } > } > ssl = required > ssl_cert = ssl_key = userdb { > driver = prefetch > } > userdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > protocol lda { > auth_socket_path = /var/run/dovecot/auth-master > log_path = /var/log/protocol-lda.log > mail_plugins = sieve > postmaster_address = postmaster at domain.dom > } > > ----------------- > > sql-conf: > > driver = mysql > connect = host=127.0.0.1 dbname=xxx user=mailuser password=xxx > default_pass_scheme = SSHA512 > > password_query = SELECT email as user, password FROM virtual_users WHERE email='%u'; > > user_query = SELECT email as user FROM virtual_users WHERE email ='%u'; > > iterate_query = SELECT email as user FROM virtual_users WHERE email='%u'; > > ------------------ > > > The config on the other node is similar, except the mail_replica settings. The weird thing is, that my logs are completly empty. I see only the dovecot startup messages and nothing else. I don't understand why the replication never starts by itself or why there are no errors or anything else in the log. I already read the dovecot replication howto in the official documentation, but IMO I've setup everything already like in the docs. > > > > ----------------- > > I've already tried to replicate my mailboxes using dsync, but if I run the dsync command I get only this output: > > > bash-4.1$ ssh vmail at server1.domain.dom /usr/bin/doveadm dsync-server -u john at domain.dom > VERSION dsync 3 2 > Hhostname sync_ns_prefix sync_box sync_box_guid sync_type debug sync_visible_namespaces exclude_mailboxes send_mail_requests backup_send backup_recv lock_timeout no_mail_sync no_backup_overwrite purge_remote > Smailbox_guid last_uidvalidity last_common_uid last_common_modseq last_common_pvt_modseq changes_during_sync > Nname existence mailbox_guid uid_validity uid_next last_renamed_or_created subscribed last_subscription_change > Dhierarchy_sep mailboxes dirs unsubscribes > Bmailbox_guid uid_validity uid_next messages_count first_recent_uid highest_modseq highest_pvt_modseq mailbox_lost cache_fields have_guids have_save_guids have_only_guid128 > Atype key value stream deleted last_change modseq > Ctype uid guid hdr_hash modseq pvt_modseq save_timestamp add_flags remove_flags final_flags keywords_reset keyword_changes > Rguid uid > Mguid uid pop3_uidl pop3_order received_date stream > cname decision last_used > . > Hserver1.domain.dom > dsync-remote(john at domain.dom): Error: dsync(local): I/O has stalled, no activity for 600 seconds > dsync-remote(john at domain.dom): Error: Timeout during state=slave_recv_handshake > > > > Any help would be appreciated, because I've really no other ideas anymore. > > > Thanks in advance > > > PS: Excuse my english, I'am german :D > From matthias.lay at securepoint.de Fri Feb 14 09:49:09 2014 From: matthias.lay at securepoint.de (matthias lay) Date: Fri, 14 Feb 2014 10:49:09 +0100 Subject: [Dovecot] lda+ldap multiple users In-Reply-To: References: <52F4B4C5.30705@securepoint.de> Message-ID: <52FDE695.2020409@securepoint.de> On 02/14/2014 08:27 AM, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Fri, 7 Feb 2014, matthias lay wrote: > >> I experienced that if a Mailaddress matches several users the >> delivery is aborted. >> >> ---------------- >> dovecot: auth: Error: ldap(christian.test at securepoint.de): LDAP >> search returned multiple entries >> dovecot: auth: ldap(christian.test at securepoint.de): unknown user >> dovecot: lda: Error: user christian.test at securepoint.de: Auth USER >> lookup failed >> ----------------- >> >> now my question, is there a way to have a mail like that delivered to >> all users that matches the lookup? >> havent found anything in the docs. > > This is a job of your MTA. Hi Steffen, MTA is qmail and doesnt know anything about users. dovecot uses usernames for mailboxes. lets say /var/mail/userA/Maildir /var/mail/userB/Maildir both users have mailaddr XY at example.com mapped in Active Directory. Now when mails arrive lda is called like dovecot-lda -d XY at example.com -m INBOX and theres my problem. From alan.schmitt at polytechnique.org Fri Feb 14 10:22:37 2014 From: alan.schmitt at polytechnique.org (Alan Schmitt) Date: Fri, 14 Feb 2014 11:22:37 +0100 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup In-Reply-To: (Damon Haley's message of "Thu, 13 Feb 2014 08:52:54 -0700") References: <52FBF21F.905@whyscream.net> Message-ID: Hello Damon, "Damon Haley" writes: > Alan, you can use sieve with dovecot in an offline imap setup. > > All you have to do is compile sieve into dovecot: > > wget http://pigeonhole.dovecot.org/releases/2.2/dovecot-2.2-pigeonhole-0.4.2.tar.gz > > untar it > > cd /usr/local/src/dovecot-2.2-pigeonhole-0.4.2/ > > ./configure --prefix=/usr/local/Cellar/pigeonhole/0.4.0 --with-dovecot=/usr/local/opt/dovecot/lib/dovecot > make && make install > > I did this on a Macbook with dovecot installed from hombrew. > > Whenever imap process is launched by my mail client it automatically sorts my > INBOX based on sieve rules. I gave this a try, following the documentation from http://wiki2.dovecot.org/Pigeonhole/Sieve/Configuration Unfortunately I have an error: ,---- | Establishing connection to tunnel:/usr/local/Cellar/dovecot/2.2.10/libexec/dovecot/imap -c ~/.dovecotzimbra.rc | Error: Can't load plugin sieve_plugin: Plugin is intended to be used only by binaries: lda lmtp (we're imap) | Fatal: Couldn't load required plugins `---- This is the configuration file I tried: --8<---------------cut here---------------start------------->8--- protocols = imap mail_location = maildir:~/.Maildir/zimbra:INBOX=~/.Maildir/zimbra/.INBOX mail_plugins = $mail_plugins sieve plugin { sieve = ~/.dovecot.sieve sieve_dir = ~/.sieve } --8<---------------cut here---------------end--------------->8--- The documentation says that one can only use the plugin with lda or lmtp. How do you use it with imap? Thanks, Alan From skdovecot at smail.inf.fh-brs.de Fri Feb 14 11:07:00 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 12:07:00 +0100 (CET) Subject: [Dovecot] lda+ldap multiple users In-Reply-To: <52FDE695.2020409@securepoint.de> References: <52F4B4C5.30705@securepoint.de> <52FDE695.2020409@securepoint.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 14 Feb 2014, matthias lay wrote: > On 02/14/2014 08:27 AM, Steffen Kaiser wrote: >> On Fri, 7 Feb 2014, matthias lay wrote: >> >>> I experienced that if a Mailaddress matches several users the delivery is >>> aborted. >>> >>> ---------------- >>> dovecot: auth: Error: ldap(christian.test at securepoint.de): LDAP search >>> returned multiple entries >>> dovecot: auth: ldap(christian.test at securepoint.de): unknown user >>> dovecot: lda: Error: user christian.test at securepoint.de: Auth USER lookup >>> failed >>> ----------------- >>> >>> now my question, is there a way to have a mail like that delivered to all >>> users that matches the lookup? >>> havent found anything in the docs. >> >> This is a job of your MTA. > > MTA is qmail and doesnt know anything about users. dovecot uses usernames for > mailboxes. lets say > > /var/mail/userA/Maildir > /var/mail/userB/Maildir > > both users have mailaddr XY at example.com mapped in Active Directory. Now when > mails arrive lda is called like > > dovecot-lda -d XY at example.com -m INBOX > > and theres my problem. You have implicitly created mail aliases for your users. qmail has to resolve this alias "XY" into the users A and B. You could wrap your call to the Dovecot LDA by a script resolving the aliases somehow, e.g.: #!/bin/bash tmpf=/tmp/split.$$.tmp # save the message in case we have multiple recipients cat - >$tmpf ldapsearch "mailtarget=$1" samaccountname | \ awk '$1 == "sAMAccountName:" { print $2 } ' | \ while read uid; do dovecot-lda -d "$uid" ..... < $tmpf rc=$? if test $rc -gt 0; then rm -f $tmpf exit $rc fi done rm -f $tmpf adjust ldap query and attribute names and call to MDA. This is not really nice, because you cannot handle individual problems, e.g. what shall happen if delivery to userB fails? Shall userA get the message, shall delivery to userA succeeded, but to retried to userB? Currently the first error is returned to qmail and probably one user gets the same message again and again, because of a problem of another user's mailbox. You could return $rc at the very end, then qmail gets the success status of the delivery attemp to the last user. I wouldn't do such stuff in a non-private environment. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv341HD1/YhP6VMHAQJ+Kgf5ARPwP6QhGJrHfbNhjc901i8eZzmSxRc6 UrmRnc/Z3n2MwepzG4JLaJkI8EYBD2VczKjhOXgZ4uzJEqyGkZeZestqabbs/vCy ki+FWcL5fnkxQSLEOHdUiop/A+BgWeD8fzOecWTqx4xextwDvbY2Se74Wk1lwBz3 bM2oJtU08hcU7DO+z3E4Au/0HagHddroW7SnCm+HYFcnV8m+laSB77ocgBUNu/a2 tCHe4YUWBOqWIbCiP2LhSfJLiL+OrawZBMGt/JfEfD8SnwBMlBONda0wlUD5MZvs U/+EKzPJvJn4/Y2k8yWPQjiTiuWzBqT0WlEttbovj9AtiFCu9Dgf2w== =TKbr -----END PGP SIGNATURE----- From gilles.chauvin at univ-rouen.fr Fri Feb 14 13:21:30 2014 From: gilles.chauvin at univ-rouen.fr (Gilles Chauvin) Date: Fri, 14 Feb 2014 14:21:30 +0100 Subject: [Dovecot] Dsync Panic In-Reply-To: <52E3A30B.9020409@univ-rouen.fr> References: <52E3A30B.9020409@univ-rouen.fr> Message-ID: <52FE185A.1050301@univ-rouen.fr> Hi, Here is another dsync Panic while using: $ dsync -Dvf -u user -R backup ssh root at server.domain.tld dsync -u user Dovecot 2.2.11 is running on both sides: dsync-local(user): Debug: brain M: in state=master_recv_handshake dsync-local(user): Debug: brain M: out state=master_recv_handshake changed=0 dsync-local(user): Debug: brain M: in state=master_recv_handshake dsync-local(user): Debug: brain M: out state=send_mailbox_tree changed=1 dsync-local(user): Debug: brain M: in state=send_mailbox_tree dsync-local(user): Debug: brain M: out state=send_mailbox_tree_deletes changed=1 dsync-local(user): Debug: brain M: in state=send_mailbox_tree_deletes dsync-local(user): Debug: brain M: out state=recv_mailbox_tree changed=1 dsync-local(user): Debug: brain M: in state=recv_mailbox_tree dsync-local(user): Debug: brain M: out state=recv_mailbox_tree changed=0 dsync-local(user): Debug: brain M: in state=recv_mailbox_tree dsync-local(user): Debug: brain M: out state=recv_mailbox_tree_deletes changed=1 dsync-local(user): Debug: brain M: in state=recv_mailbox_tree_deletes dsync-local(user): Debug: brain M: out state=recv_mailbox_tree_deletes changed=0 dsync-remote(user): Panic: file dsync-mailbox-tree-sync.c: line 401 (sync_rename_node_to_temp): assertion failed: (ctx->sync_type != DSYNC_MAILBOX_TREES_SYNC_TYPE_PRESERVE_LOCAL) dsync-remote(user): Error: Raw backtrace: /usr/local/lib/dovecot/libdovecot.so.0(+0x68aea) [0x7f616d58aaea] -> /usr/local/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x32) [0x7f616d58abf2] -> /usr/local/lib/dovecot/libdovecot.so.0(i_error+0) [0x7f616d54423f] -> dsyn() [0x437c06] -> dsyn() [0x438122] -> dsyn() [0x438494] -> dsyn() [0x43821c] -> dsyn(dsync_mailbox_trees_sync_init+0xe6) [0x439766] -> dsyn(dsync_brain_recv_mailbox_tree_deletes+0x102) [0x42d602] -> dsyn(dsync_brain_run+0x2e6) [0x42afb6] -> dsyn() [0x42b910] -> dsyn() [0x43db50] -> /usr/local/lib/dovecot/libdovecot.so.0(io_loop_call_io+0x36) [0x7f616d59a666] -> /usr/local/lib/dovecot/libdovecot.so.0(io_loop_handler_run+0xa7) [0x7f616d59b6d7] -> /usr/local/lib/dovecot/libdovecot.so.0(io_loop_run+0x38) [0x7f616d59a5d8] -> dsyn() [0x4282f4] -> dsyn() [0x411ca7] -> dsyn(doveadm_mail_try_run+0x238) [0x4120b8] -> dsyn(main+0x3d1) [0x41aaf1] -> /lib64/libc.so.6(__libc_start_main+0xfd) [0x7f616d1acd1d] -> dsyn() [0x411429] dsync-local(user): Debug: brain M: in state=recv_mailbox_tree_deletes dsync-local(user): Error: read(server.domain.tld) failed: EOF dsync-local(user): Debug: brain M: out state=recv_mailbox_tree_deletes changed=0 dsync-local(user): Error: Remote command returned error 25 Regards, Gilles. From pch at myzel.net Fri Feb 14 14:07:12 2014 From: pch at myzel.net (Peter Chiochetti) Date: Fri, 14 Feb 2014 15:07:12 +0100 Subject: [Dovecot] FTS question In-Reply-To: <5B9C7235-8B5A-40B0-86B1-030C320D01F6@iki.fi> References: <52FD27FC.4010605@myzel.net> <5B9C7235-8B5A-40B0-86B1-030C320D01F6@iki.fi> Message-ID: <52FE2310.7080909@myzel.net> Am 2014-02-14 05:43, schrieb Timo Sirainen: > On 14.2.2014, at 5.15, Peter Chiochetti wrote: > >> Can I override the user parameter in solr indexing and searching? > > No, and I think that would the wrong solution for this, because it would have to be repeated for everything in Dovecot that uses username as part of the mailbox identifier. > > Change the user to be the same for all the users. Use the new %{auth_user} variable in v2.2.11+ for logging the unchanged username in login_log_format_elements and mail_log_prefix instead of using %u. > Thank You very much Timo, exactly what I was wishing for! It took me some time to translate your short script into config, but now it works, so instead of a blog post somewhere, here we go, probably no other changes from the default config: > # There is one system user "crew" where mail comes in. > # There are several virtual users, that work with this > # mail: move, reply, delete, etc. Think of groupware. > # Anybody can do anything, but may have to justify? > > # sample line from passwd file > # Name:{PLAIN}password > passdb { > driver = passwd-file > args = /etc/dovecot/passwd > } > > # On authentication, users are switched to "crew" > userdb { > driver = static > args = uid=crew gid=crew home=/home/crew user=crew > } > > mail_plugins = $mail_plugins fts fts_solr mail_log notify > > plugin { > # Search > fts = solr > fts_solr = url=http://sage.bst.lan:8983/solr/ > fts_autoindex = yes > > # Audit > mail_log_prefix = %{auth_user} > mail_log_events = save copy delete undelete expunge mailbox_create mailbox_rename mailbox_delete > mail_log_fields = uid box msgid from subject > } I have turned off PAM in conf.d/10-auth.conf to avoid waiting for a small timeout. This setup only works for a single system user, another userdb driver should make it coexist with more system users though. I think its nice if a body search also looks at the subject, so in solr schema write : -- peter From rgelfand2 at gmail.com Fri Feb 14 14:28:18 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Fri, 14 Feb 2014 09:28:18 -0500 Subject: [Dovecot] Maildir format Message-ID: I see where the mail box meta data is kept. But don't the actual emails. I was under the impression the impression the email was kept, on the server, as .eml. Thanks in advance From skdovecot at smail.inf.fh-brs.de Fri Feb 14 14:41:58 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 15:41:58 +0100 (CET) Subject: [Dovecot] Maildir format In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 14 Feb 2014, Roman Gelfand wrote: > I see where the mail box meta data is kept. But don't the actual > emails. I was under the impression the impression the email was kept, > on the server, as .eml. http://wiki2.dovecot.org/MailboxFormat/Maildir - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv4rNnD1/YhP6VMHAQJzRAgA0yz7cZ0tFAgzluubKN7jK0ha3bOXcd5A ue2aOVWfVz52eHUjgBDY5E4/s37WWe022WKNS1LAEcwbTC/xo7VdGYA472oQdxMm QWfOvEPdxF8nSY4GIeAe5YiYyszXhQE4i6bC/ouBh0v0OKu6T6VIdd9YYowMW43r fmpg23xHV/MY7Tk36ac41fZhDYvg0u0uMr7mJyKkf17kuRIBZ0G34AVBodbWml0/ MN9oLSfIsriOq5zqZw5gkSg1GMsCHneNreKnRcnW5iVGXyYWWu9FoEUwTxUcrf9I vJI7JA+ut38YN8iO7pFzOvoJ0z4UPeIckp9/7zs8lkjjh5orhQAVcA== =9fx8 -----END PGP SIGNATURE----- From rgelfand2 at gmail.com Fri Feb 14 14:58:20 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Fri, 14 Feb 2014 09:58:20 -0500 Subject: [Dovecot] Mailbox Viewer Message-ID: Is web or windows client which allows for viewing contents of all mailboxes without having to login with their id? Thanks in advance From gedalya at gedalya.net Fri Feb 14 15:04:43 2014 From: gedalya at gedalya.net (Gedalya) Date: Fri, 14 Feb 2014 10:04:43 -0500 Subject: [Dovecot] Mailbox Viewer In-Reply-To: References: Message-ID: <52FE308B.5070807@gedalya.net> On 02/14/2014 09:58 AM, Roman Gelfand wrote: > Is web or windows client which allows for viewing contents of all > mailboxes without having to login with their id? > > Thanks in advance You could focus on the server rather than the client. http://wiki2.dovecot.org/Authentication/MasterUsers There really could be more ways to do it than are listed on that page. Your path forward would depend firstly on your current user database setup. Of if you use e.g. maildir and you want to access it directly using something other than dovecot then you may try but it wouldn't be the best idea. From rgelfand2 at gmail.com Fri Feb 14 15:30:29 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Fri, 14 Feb 2014 10:30:29 -0500 Subject: [Dovecot] Maildir format In-Reply-To: <52fe2b1f.4650c20a.26be.4d49SMTPIN_ADDED_BROKEN@mx.google.com> References: <52fe2b1f.4650c20a.26be.4d49SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: I am not sure where I went wrong here. The wiki says... By default Dovecot uses Maildir++ directory layout for organizing mailbox directories. This means that all the folders are directly inside ~/Maildir directory: ~/Maildir/new, ~/Maildir/cur and ~/Maildir/tmp directories contain the messages for INBOX. The tmp directory is used during delivery, new messages arrive in new and read shall be moved to cur by the clients. ~/Maildir/.folder/ is a mailbox folder ~/Maildir/.folder.subfolder/ is a subfolder of a folder (ie. "folder/subfolder") You can also optionally use the "fs" layout by appending :LAYOUT=fs to mail_location. This makes the folder structure look like: ~/Maildir/new, ~/Maildir/cur and ~/Maildir/tmp directories contain the messages for INBOX, just like with Maildir++. ~/Maildir/folder/ is a mailbox folder ~/Maildir/folder/subfolder/ is a subfolder of a folder Here is my folders. Though there are emails in the inbox, I am not seeing anything in new/ or cur/ folders. root at mbx:/etc/dovecot# ls -la /vmail/domain.tld/j.doe/Maildir/ drwx------ 5 999 mail 4096 Feb 14 10:06 . drwx------ 3 999 mail 4096 Feb 12 19:53 .. drwx------ 2 999 mail 4096 Feb 14 10:02 cur -rw------- 1 999 mail 17408 Feb 14 10:02 dovecot.index.cache -rw------- 1 999 mail 2896 Feb 14 10:06 dovecot.index.log -rw------- 1 999 mail 51 Feb 14 10:06 dovecot-uidlist -rw------- 1 999 mail 8 Feb 12 19:53 dovecot-uidvalidity -r--r--r-- 1 999 mail 0 Feb 12 19:53 dovecot-uidvalidity.52fc176c drwx------ 2 999 mail 4096 Feb 14 10:02 new drwx------ 2 999 mail 4096 Feb 14 09:59 tmp root at mbx:/etc/dovecot# ls -la /vmail/domain.tld/j.joe/Maildir/new total 8 drwx------ 2 999 mail 4096 Feb 14 10:02 . drwx------ 5 999 mail 4096 Feb 14 10:06 .. root at mbx:/etc/dovecot# ls -la /vmail/domain.tld/j.joe/Maildir/cur total 8 drwx------ 2 999 mail 4096 Feb 14 10:02 . drwx------ 5 999 mail 4096 Feb 14 10:06 .. On Fri, Feb 14, 2014 at 9:41 AM, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Fri, 14 Feb 2014, Roman Gelfand wrote: > >> I see where the mail box meta data is kept. But don't the actual >> emails. I was under the impression the impression the email was kept, >> on the server, as .eml. > > > http://wiki2.dovecot.org/MailboxFormat/Maildir > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUv4rNnD1/YhP6VMHAQJzRAgA0yz7cZ0tFAgzluubKN7jK0ha3bOXcd5A > ue2aOVWfVz52eHUjgBDY5E4/s37WWe022WKNS1LAEcwbTC/xo7VdGYA472oQdxMm > QWfOvEPdxF8nSY4GIeAe5YiYyszXhQE4i6bC/ouBh0v0OKu6T6VIdd9YYowMW43r > fmpg23xHV/MY7Tk36ac41fZhDYvg0u0uMr7mJyKkf17kuRIBZ0G34AVBodbWml0/ > MN9oLSfIsriOq5zqZw5gkSg1GMsCHneNreKnRcnW5iVGXyYWWu9FoEUwTxUcrf9I > vJI7JA+ut38YN8iO7pFzOvoJ0z4UPeIckp9/7zs8lkjjh5orhQAVcA== > =9fx8 > -----END PGP SIGNATURE----- From gedalya at gedalya.net Fri Feb 14 15:48:41 2014 From: gedalya at gedalya.net (Gedalya) Date: Fri, 14 Feb 2014 10:48:41 -0500 Subject: [Dovecot] Maildir format In-Reply-To: References: <52fe2b1f.4650c20a.26be.4d49SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: <52FE3AD9.3040309@gedalya.net> On 02/14/2014 10:30 AM, Roman Gelfand wrote: > Here is my folders. Though there are emails in the inbox, I am not > seeing anything in new/ or cur/ folders. Then there are no emails in your mailbox. If you do see emails in the mailbox then it is some place other than what you are looking at. It's pretty simple. I can't speculate much beyond this, but if your mailbox is in maildir format and cur and new are empty then you have no mail there, that is for certain. From rgelfand2 at gmail.com Fri Feb 14 16:09:58 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Fri, 14 Feb 2014 11:09:58 -0500 Subject: [Dovecot] LDAP Integration Message-ID: My ldap config. Would this store incoming email in maildir format? If so, can it be overriden? If so, where (possible place)? hosts = 192.168.0.12:389 ldap_version = 3 auth_bind = yes dn = llookup at domain.local dnpass = password base = OU=People,DC=domain,DC=local scope = subtree deref = never user_filter = (&(Mail=%u)(objectClass=person)(!(userAccountControl=514))) pass_filter = (&(Mail=%u)(objectClass=person)(!(userAccountControl=514))) pass_attrs = userPassword=password default_pass_scheme = CRYPT user_attrs = =uid=999,=gid=8,=home=/vmail/%Ld/%Ln/Maildir/,=mail=maildir:/vmail/%Ld/%Ln/Maildir/ From rgelfand2 at gmail.com Fri Feb 14 16:15:07 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Fri, 14 Feb 2014 11:15:07 -0500 Subject: [Dovecot] LDAP Integration In-Reply-To: References: Message-ID: I think I got the answer to this from previous post. I needed to be master user to see their email. On Fri, Feb 14, 2014 at 11:09 AM, Roman Gelfand wrote: > My ldap config. Would this store incoming email in maildir format? > If so, can it be overriden? If so, where (possible place)? > > hosts = 192.168.0.12:389 > ldap_version = 3 > auth_bind = yes > dn = llookup at domain.local > dnpass = password > base = OU=People,DC=domain,DC=local > scope = subtree > deref = never > user_filter = (&(Mail=%u)(objectClass=person)(!(userAccountControl=514))) > pass_filter = (&(Mail=%u)(objectClass=person)(!(userAccountControl=514))) > pass_attrs = userPassword=password > default_pass_scheme = CRYPT > user_attrs = > =uid=999,=gid=8,=home=/vmail/%Ld/%Ln/Maildir/,=mail=maildir:/vmail/%Ld/%Ln/Maildir/ From skdovecot at smail.inf.fh-brs.de Fri Feb 14 16:32:16 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 14 Feb 2014 17:32:16 +0100 (CET) Subject: [Dovecot] LDAP Integration In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 14 Feb 2014, Roman Gelfand wrote: > user_attrs = > =uid=999,=gid=8,=home=/vmail/%Ld/%Ln/Maildir/,=mail=maildir:/vmail/%Ld/%Ln/Maildir/ Never use the Maildir directory as home, use =home=/vmail/%Ld/%Ln/ or =home=/vmail/%Ld/%Ln/home/ or something like that - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUv5FEHD1/YhP6VMHAQJNLQf/SrxflCu+82HjyqSo17CiKNxdahFSIq1V BZ0AUqs3x9FZEAU/9hRj/090q82jxNkdPRiAUmj0i4UZR7wznBmeNEjxDbYeKGrs UtOd8AhmlBAWoaTnpcIJd7Bnn5v/mJd+JN8AldidUnOJK4nqMxT22whOcYC6mFQY IfLUp16hrg3LjqOmq/Yo7rtLZYkQkBLEbRkiNHjMWO99C/5kXQyvb599e6Fxl8nQ htOIa5Jj9uS+CX2fk4ojrm84K6y14cifdfyxM6AtTqBUSHSyb5tLLeKLkw48ED9f ksebXbT6sO7qBM78sHsKbGFHVeK7gUQf0T+e4apz9TmwbH1mMJvniw== =Q3KB -----END PGP SIGNATURE----- From rgelfand2 at gmail.com Fri Feb 14 16:54:39 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Fri, 14 Feb 2014 11:54:39 -0500 Subject: [Dovecot] LDAP Integration In-Reply-To: <52fe44f3.06ac0e0a.7f60.fffffbecSMTPIN_ADDED_BROKEN@mx.google.com> References: <52fe44f3.06ac0e0a.7f60.fffffbecSMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: Would there be any adverse side effects if I change, just this config item, now as I have 20 users created and receiving already? On Fri, Feb 14, 2014 at 11:32 AM, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Fri, 14 Feb 2014, Roman Gelfand wrote: > >> user_attrs = >> >> =uid=999,=gid=8,=home=/vmail/%Ld/%Ln/Maildir/,=mail=maildir:/vmail/%Ld/%Ln/Maildir/ > > > Never use the Maildir directory as home, use =home=/vmail/%Ld/%Ln/ or > =home=/vmail/%Ld/%Ln/home/ > > or something like that > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUv5FEHD1/YhP6VMHAQJNLQf/SrxflCu+82HjyqSo17CiKNxdahFSIq1V > BZ0AUqs3x9FZEAU/9hRj/090q82jxNkdPRiAUmj0i4UZR7wznBmeNEjxDbYeKGrs > UtOd8AhmlBAWoaTnpcIJd7Bnn5v/mJd+JN8AldidUnOJK4nqMxT22whOcYC6mFQY > IfLUp16hrg3LjqOmq/Yo7rtLZYkQkBLEbRkiNHjMWO99C/5kXQyvb599e6Fxl8nQ > htOIa5Jj9uS+CX2fk4ojrm84K6y14cifdfyxM6AtTqBUSHSyb5tLLeKLkw48ED9f > ksebXbT6sO7qBM78sHsKbGFHVeK7gUQf0T+e4apz9TmwbH1mMJvniw== > =Q3KB > -----END PGP SIGNATURE----- From gedalya at gedalya.net Fri Feb 14 17:06:50 2014 From: gedalya at gedalya.net (Gedalya) Date: Fri, 14 Feb 2014 12:06:50 -0500 Subject: [Dovecot] LDAP Integration In-Reply-To: References: <52fe44f3.06ac0e0a.7f60.fffffbecSMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: <52FE4D2A.4030902@gedalya.net> Possibly not. If you haven't stored anything at any locations relative to the home then this setting has had no effect until now, and you're changing it towards the future. One thing you often store relative to ~ is ~/sieve If you did store things there already then just move them to the new location, if you automate it it should take a few seconds, during which dovecot should be down for simplicity On 02/14/2014 11:54 AM, Roman Gelfand wrote: > Would there be any adverse side effects if I change, just this config > item, now as I have 20 users created and receiving already? > > On Fri, Feb 14, 2014 at 11:32 AM, Steffen Kaiser > wrote: >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> On Fri, 14 Feb 2014, Roman Gelfand wrote: >> >>> user_attrs = >>> >>> =uid=999,=gid=8,=home=/vmail/%Ld/%Ln/Maildir/,=mail=maildir:/vmail/%Ld/%Ln/Maildir/ >> >> Never use the Maildir directory as home, use =home=/vmail/%Ld/%Ln/ or >> =home=/vmail/%Ld/%Ln/home/ >> >> or something like that >> >> - -- Steffen Kaiser >> -----BEGIN PGP SIGNATURE----- >> Version: GnuPG v1.4.11 (GNU/Linux) >> >> iQEVAwUBUv5FEHD1/YhP6VMHAQJNLQf/SrxflCu+82HjyqSo17CiKNxdahFSIq1V >> BZ0AUqs3x9FZEAU/9hRj/090q82jxNkdPRiAUmj0i4UZR7wznBmeNEjxDbYeKGrs >> UtOd8AhmlBAWoaTnpcIJd7Bnn5v/mJd+JN8AldidUnOJK4nqMxT22whOcYC6mFQY >> IfLUp16hrg3LjqOmq/Yo7rtLZYkQkBLEbRkiNHjMWO99C/5kXQyvb599e6Fxl8nQ >> htOIa5Jj9uS+CX2fk4ojrm84K6y14cifdfyxM6AtTqBUSHSyb5tLLeKLkw48ED9f >> ksebXbT6sO7qBM78sHsKbGFHVeK7gUQf0T+e4apz9TmwbH1mMJvniw== >> =Q3KB >> -----END PGP SIGNATURE----- From neleo at gmx.net Fri Feb 14 17:22:04 2014 From: neleo at gmx.net (Leo) Date: Fri, 14 Feb 2014 18:22:04 +0100 Subject: [Dovecot] Crash in pop3 with recent dovecot, backtrace Message-ID: <52FE50BC.8010808@gmx.net> Hi, I have the same crashes in pop3 with the recent dovecot release 2.2.11 on Fedora 16 x86_64. The log file shows: dovecot: pop3(username at example.com): Fatal: master: service(pop3): child 26735 killed with signal 11 (core dumped) New mails will be successfully fetched by the client but all the dovecot files in the users maildir (dovecot.index.log, dovecot.index.cache, ...) are not being updated anymore. Here is my backtrace: -----> start backtrace <----- Reading symbols from /usr/local/libexec/dovecot/pop3...done. [New LWP 26735] [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib64/libthread_db.so.1". Core was generated by `dovecot/pop3'. Program terminated with signal 11, Segmentation fault. #0 client_update_mails (client=0x2388560) at pop3-commands.c:256 256 seq_range_array_add(&deleted_msgs, client->msgnum_to_seq_map[msgnum]); (gdb) bt full #0 client_update_mails (client=0x2388560) at pop3-commands.c:256 search_args = ctx = mail = 0x7fb36483ac5d deleted_msgs = {arr = {buffer = 0x236c088, element_size = 8}, v = 0x236c088, v_modifiable = 0x236c088} seen_msgs = {arr = {buffer = 0x237765a, element_size = 140408462221679}, v = 0x237765a, v_modifiable = 0x237765a} msgnum = bit = 1 #1 0x0000000000407800 in cmd_quit (args=, client=0x2388560) at pop3-commands.c:289 No locals. #2 client_command_execute (client=0x2388560, name=, args=0x408200 "") at pop3-commands.c:920 No locals. #3 0x0000000000405fb8 in client_handle_input (client=0x2388560) at pop3-client.c:739 _data_stack_cur_id = 3 line = 0x237765a "QUIT" args = ret = #4 0x00007fb364828e06 in io_loop_call_io (io=0x2388d10) at ioloop.c:388 ioloop = 0x2374730 t_id = 2 #5 0x00007fb364829c9f in io_loop_handler_run (ioloop=) at ioloop-epoll.c:220 ctx = 0x2374a90 events = 0x0 event = 0x23758f0 list = 0x23764c0 io = tv = {tv_sec = 9, tv_usec = 999836} events_count = msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #6 0x00007fb364828918 in io_loop_run (ioloop=0x2374730) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #7 0x00007fb3647d7533 in master_service_run (service=0x23745c0, callback=) at master-service.c:566 No locals. #8 0x00000000004041f7 in main (argc=1, argv=0x2374390) at main.c:277 set_roots = {0x408e60, 0x0} login_set = {auth_socket_path = 0x236c048 "/run/dovecot/auth-master", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x4045e0 , failure_callback = 0x404590 , request_auth_token = 0} service_flags = storage_service_flags = username = c = (gdb) -----> end backtrace <----- Kind regards, Leo From rs at sys4.de Fri Feb 14 17:49:17 2014 From: rs at sys4.de (Robert Schetterer) Date: Fri, 14 Feb 2014 18:49:17 +0100 Subject: [Dovecot] Crash in pop3 with recent dovecot, backtrace In-Reply-To: <52FE50BC.8010808@gmx.net> References: <52FE50BC.8010808@gmx.net> Message-ID: <52FE571D.40308@sys4.de> Am 14.02.2014 18:22, schrieb Leo: > I have the same crashes in pop3 with the recent dovecot release 2.2.11 go vers 2.2.12 Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From bob at computerisms.ca Fri Feb 14 18:36:57 2014 From: bob at computerisms.ca (Bob Miller) Date: Fri, 14 Feb 2014 10:36:57 -0800 Subject: [Dovecot] lda+ldap multiple users In-Reply-To: References: <52F4B4C5.30705@securepoint.de> <52FDE695.2020409@securepoint.de> Message-ID: <1392403017.16710.57.camel@worklian> Hi, Integrating qmail and active directory pretty much requires you to use qmail-ldap. without it you need to much bubblegum and band aids for it to be suitable for a (publicly accessible) production environment. And I can't see how you wouldn't eventually run into problems without each user having a unique email address. In a pure qmail environment, I might work around the problem by giving each user a unique mailaddress, then create a user XY and use a .qmail file to override the LDA defaultdelivery and have it forward to the various users, and not deliver to its own maildir. But you still miss important features like validrcptto and smtpauth if qmail can't talk to AD. But with qmail-ldap for sure you can set up multiple users with the same alias and it works. ie the users are configured with userPrincipal as mail address with an alias of XY at domain.com, then mails sent to XY at domain.com will deliver to all users. I documented my sandbox qmail-ldap/dovecot system here, maybe it is useful to you: http://cocnm.computerisms.ca/index.php/Install_Qmail-ldap,_Dovecot,_and_Related_Email_Services -- Computerisms Bob Miller 867-334-7117 / 867-633-3760 http://computerisms.ca On Fri, 2014-02-14 at 12:07 +0100, Steffen Kaiser wrote: > On Fri, 14 Feb 2014, matthias lay wrote: > > > On 02/14/2014 08:27 AM, Steffen Kaiser wrote: > >> On Fri, 7 Feb 2014, matthias lay wrote: > >> > >>> I experienced that if a Mailaddress matches several users the delivery is > >>> aborted. > >>> > >>> ---------------- > >>> dovecot: auth: Error: ldap(christian.test at securepoint.de): LDAP search > >>> returned multiple entries > >>> dovecot: auth: ldap(christian.test at securepoint.de): unknown user > >>> dovecot: lda: Error: user christian.test at securepoint.de: Auth USER lookup > >>> failed > >>> ----------------- > >>> > >>> now my question, is there a way to have a mail like that delivered to all > >>> users that matches the lookup? > >>> havent found anything in the docs. > >> > >> This is a job of your MTA. > > > > MTA is qmail and doesnt know anything about users. dovecot uses usernames for > > mailboxes. lets say > > > > /var/mail/userA/Maildir > > /var/mail/userB/Maildir > > > > both users have mailaddr XY at example.com mapped in Active Directory. Now when > > mails arrive lda is called like > > > > dovecot-lda -d XY at example.com -m INBOX > > > > and theres my problem. > > You have implicitly created mail aliases for your users. qmail has to > resolve this alias "XY" into the users A and B. > > You could wrap your call to the Dovecot LDA by a script resolving the > aliases somehow, e.g.: > > #!/bin/bash > > tmpf=/tmp/split.$$.tmp > # save the message in case we have multiple recipients > cat - >$tmpf > ldapsearch "mailtarget=$1" samaccountname | \ > awk '$1 == "sAMAccountName:" { print $2 } ' | \ > while read uid; do > dovecot-lda -d "$uid" ..... < $tmpf > rc=$? > if test $rc -gt 0; then > rm -f $tmpf > exit $rc > fi > done > rm -f $tmpf > > adjust ldap query and attribute names and call to MDA. > > This is not really nice, because you cannot handle individual problems, > e.g. what shall happen if delivery to userB fails? Shall userA get the > message, shall delivery to userA succeeded, but to retried to userB? > Currently the first error is returned to qmail and probably one user gets > the same message again and again, because of a problem of another user's > mailbox. You could return $rc at the very end, then qmail gets the success > status of the delivery attemp to the last user. > > I wouldn't do such stuff in a non-private environment. > From Ralf.Hildebrandt at charite.de Fri Feb 14 19:39:51 2014 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Fri, 14 Feb 2014 20:39:51 +0100 Subject: [Dovecot] Isolated crash in dovecot/imap (with backtrace) Message-ID: <20140214193951.GI24735@charite.de> Log: Feb 14 20:31:56 postamt dovecot: imap(lumo) m0Yg1mLyKABXuzxs: Panic: file imap-fetch.c: line 554 (imap_fetch_more): assertion failed: (ctx->client->output_cmd_lock == NULL || ctx->client->output_cmd_lock == cmd) Feb 14 20:31:56 postamt dovecot: imap(lumo) m0Yg1mLyKABXuzxs: Error: Raw backtrace: /usr/local/dovecot-2.2/lib/dovecot/libdovecot.so.0(+0x68fee) [0xb75ccfee] -> /usr/local/dovecot-2.2/lib/dovecot/libdovecot.so.0(+0x69071) [0xb75cd071] -> /usr/local/dovecot-2.2/lib/dovecot/libdovecot.so.0(i_fatal+0) [0xb75cda9c] -> dovecot/imap [lumo 87.187.60.108 UID FETCH UID FETCH UID FETCH UID FETCH]() [0x8060ad4] -> dovecot/imap [lumo 87.187.60.108 UID FETCH UID FETCH UID FETCH UID FETCH](cmd_fetch+0x318) [0x8054078] -> dovecot/imap [lumo 87.187.60.108 UID FETCH UID FETCH UID FETCH UID FETCH](command_exec+0x32) [0x805e2e2] -> dovecot/imap [lumo 87.187.60.108 UID FETCH UID FETCH UID FETCH UID FETCH]() [0x805d2c7] -> dovecot/imap [lumo 87.187.60.108 UID FETCH UID FETCH UID FETCH UID FETCH]() [0x805d409] -> dovecot/imap [lumo 87.187.60.108 UID FETCH UID FETCH UID FETCH UID FETCH](client_handle_input+0x115) [0x805d645] -> dovecot/imap [lumo 87.187.60.108 UID FETCH UID FETCH UID FETCH UID FETCH](client_input+0x72) [0x805d9f2] -> Feb 14 20:31:56 postamt dovecot: imap(lumo) m0Yg1mLyKABXuzxs: Fatal: master: service(imap): child 23971 killed with signal 6 (core dumped) Backtrace: Reading symbols from /usr/local/dovecot-2.2/libexec/dovecot/imap...done. [New LWP 23971] [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/i386-linux-gnu/i686/cmov/libthread_db.so.1". Core was generated by `dovecot/imap'. Program terminated with signal 6, Aborted. #0 0xb775e424 in __kernel_vsyscall () #0 0xb775e424 in __kernel_vsyscall () No symbol table info available. #1 0xb741b941 in *__GI_raise (sig=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64 resultvar = pid = -1219162124 selftid = 23971 #2 0xb741ed72 in *__GI_abort () at abort.c:92 act = {__sigaction_handler = {sa_handler = 0xbfe67364, sa_sigaction = 0xbfe67364}, sa_mask = {__val = {3077998178, 3219551060, 3075884392, 3219551048, 3078081124, 0, 3075825056, 1, 0, 1, 3077954592, 142179296, 1594, 3076296067, 3, 142209064, 1, 128, 0, 3219551120, 3219551048, 3219551060, 3219551068, 3077954592, 0, 3076305535, 142179264, 3075920260, 3076310429, 3076751908, 1594, 3076751908}}, sa_flags = 0, sa_restorer = 0xb75cca17 } sigs = {__val = {32, 0 }} #3 0xb75ccfde in default_fatal_finish (type=, status=status at entry=0) at failures.c:193 backtrace = 0x87973b0 "/usr/local/dovecot-2.2/lib/dovecot/libdovecot.so.0(+0x68fee) [0xb75ccfee] -> /usr/local/dovecot-2.2/lib/dovecot/libdovecot.so.0(+0x69071) [0xb75cd071] -> /usr/local/dovecot-2.2/lib/dovecot/libdovecot."... #4 0xb75cd071 in i_internal_fatal_handler (ctx=0xbfe67434, format=0x806f714 "file %s: line %d (%s): assertion failed: (%s)", args=0xbfe67454 "\207\320\006\b*\002") at failures.c:657 status = 0 #5 0xb75cda9c in i_panic ( format=format at entry=0x806f714 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:267 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = 0xbfe67454 "\207\320\006\b*\002" #6 0x08060ad4 in imap_fetch_more (ctx=0x87fdd20, cmd=cmd at entry=0x87fdc28) at imap-fetch.c:553 ret = __FUNCTION__ = "imap_fetch_more" #7 0x08054078 in cmd_fetch (cmd=0x87fdc28) at cmd-fetch.c:284 client = ctx = 0x87fdd20 args = 0x87ba650 next_arg = list_arg = 0xb7638224 search_args = 0x0 qresync_args = {qresync_sample_seqset = 0x0, qresync_sample_uidset = 0xb7638224} messageset = 0x87ba710 "38703" send_vanished = ret = #8 0x0805e2e2 in command_exec (cmd=cmd at entry=0x87fdc28) at imap-commands.c:158 hook = 0x879f9a8 ret = #9 0x0805d2c7 in client_command_input (cmd=0x87fdc28) at imap-client.c:780 client = 0x87b7408 command = __FUNCTION__ = "client_command_input" #10 0x0805d409 in client_command_input (cmd=0x87fdc28) at imap-client.c:841 client = 0x87b7408 command = __FUNCTION__ = "client_command_input" #11 0x0805d645 in client_handle_next_command (remove_io_r=, client=0x87b7408) at imap-client.c:879 No locals. #12 client_handle_input (client=client at entry=0x87b7408) at imap-client.c:891 _data_stack_cur_id = 3 ret = 2 remove_io = false handled_commands = false __FUNCTION__ = "client_handle_input" #13 0x0805d9f2 in client_input (client=0x87b7408) at imap-client.c:933 cmd = output = 0x87b7d40 bytes = 198 __FUNCTION__ = "client_input" #14 0xb75dfd44 in io_loop_call_io (io=0x87db478) at ioloop.c:388 ioloop = 0x879f498 t_id = 2 #15 0xb75e0e0e in io_loop_handler_run (ioloop=ioloop at entry=0x879f498) at ioloop-epoll.c:220 ctx = 0x87a0618 events = 0x0 event = 0x87a0658 list = 0x87a0f40 io = tv = {tv_sec = 299, tv_usec = 976127} events_count = 0 msecs = ret = 1 i = j = call = __FUNCTION__ = "io_loop_handler_run" #16 0xb75df7d8 in io_loop_run (ioloop=0x879f498) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #17 0xb7584d7e in master_service_run (service=0x879f3c0, callback=callback at entry=0x80674f0 ) at master-service.c:566 No locals. #18 0x08067a00 in main (argc=1, argv=0x879f1e0) at main.c:400 set_roots = {0x8070080, 0x0} login_set = {auth_socket_path = 0x8797048 "\003", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x8067310 , failure_callback = 0x8067490 , request_auth_token = 1} service_flags = storage_service_flags = username = c = -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From h.reindl at thelounge.net Fri Feb 14 20:38:20 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Fri, 14 Feb 2014 21:38:20 +0100 Subject: [Dovecot] Crash in pop3 with recent dovecot, backtrace In-Reply-To: <52FE50BC.8010808@gmx.net> References: <52FE50BC.8010808@gmx.net> Message-ID: <52FE7EBC.7010808@thelounge.net> Am 14.02.2014 18:22, schrieb Leo: > I have the same crashes in pop3 with the recent dovecot release 2.2.11 it is not the recent and because the pop3 problems 2.2.12 was already released as always: look on the download page for the current version before report problems possibly already solved -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From pch at myzel.net Fri Feb 14 21:51:10 2014 From: pch at myzel.net (Peter Chiochetti) Date: Fri, 14 Feb 2014 22:51:10 +0100 Subject: [Dovecot] FTS question In-Reply-To: <5B9C7235-8B5A-40B0-86B1-030C320D01F6@iki.fi> References: <52FD27FC.4010605@myzel.net> <5B9C7235-8B5A-40B0-86B1-030C320D01F6@iki.fi> Message-ID: <52FE8FCE.7030406@myzel.net> A small correction to the previous post. Below complete /etc/dovecot/local.conf file: > # There is one system user "crew" where mail comes in. > # There are several virtual users, that work with this > # mail: move, reply, delete, etc. Think of groupware. > # Anybody can do anything, but may have to justify? > > # sample line from passwd file > # Name:{PLAIN}password > passdb { > driver = passwd-file > args = /etc/dovecot/passwd > } > > # On authentication, users are switched to "crew" > # This is the user to index and query SOLR > userdb { > driver = static > args = uid=crew gid=crew home=/home/crew user=crew > } > > # Use Logname from passdb for audit trail > mail_log_prefix = "%s(%{auth_user}): " > > mail_plugins = $mail_plugins fts fts_solr mail_log notify > > plugin { > # Search > fts = solr > fts_solr = url=http://localhost:8983/solr/ > fts_autoindex = yes > # Audit > mail_log_events = save copy delete undelete expunge mailbox_create mailbox_rename mailbox_delete > mail_log_fields = uid box msgid from subject > } -- peter From guilhem at fripost.org Fri Feb 14 20:51:57 2014 From: guilhem at fripost.org (Guilhem Moulin) Date: Fri, 14 Feb 2014 21:51:57 +0100 Subject: [Dovecot] dsync in a cronjob to replace offlineimap Message-ID: <20140214205157.GA26316@localhost> Hi list, Replacing offlineimap with dsync for IMAP-to-IMAP synchronization (using dovecot 2.1.7) is working great, but now that I upgraded to 2.2.9 I'd like to take advantage of the incremental replication [1]. I don't think having a separate replicator process & notifications suits my configuration, as I want to sync my server with my laptop which is not always on or might be behind a firewall. After reading ?replication/replicator/dsync-client.c? I was thinking of writing a small wrapper around dsync performing a daily full replication and updating the state otherwise. The following works great in a cronjob doveadm sync -l30 imap.example.org but when I try to get the current state doveadm sync -l30 -fs '' imap.example.org >~/mail/dsync.state and later use incremental replication state=$(< ~/mail/dsync.state) doveadm sync -l30 -s "$state" imap.example.org >~/mail/dsync.state the state seems to somehow quickly become "stale" and messages stop being retrieved from the server. I understand that dsync's incremental replication is mostly intended to be used by the replicator process, but I'm wondering whether it's also possible to use it manually ;-) If so, how to keep a sane state? Thanks, cheers, -- Guilhem. [1] http://wiki2.dovecot.org/Replication -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: Digital signature URL: From tlx at leuxner.net Sat Feb 15 20:13:44 2014 From: tlx at leuxner.net (Thomas Leuxner) Date: Sat, 15 Feb 2014 21:13:44 +0100 Subject: [Dovecot] New global ACL mailbox pattern feature in HG In-Reply-To: <20140210075152.GA6923@nihlus.leuxner.net> References: <20140128072932.GA27627@nihlus.leuxner.net> <20140130102315.GA21185@nihlus.leuxner.net> <20140207222150.GA14954@nihlus.leuxner.net> <20140210075152.GA6923@nihlus.leuxner.net> Message-ID: <20140215201344.GA4401@nihlus.leuxner.net> * Thomas Leuxner 2014.02.10 08:51: > > > Public/* group=PublicMailboxAdmins lrwsik > > > > > > yields an error (Public/ Namespace) while 'Public*' works: > > > $ doveadm mailbox create -u tlx at leuxner.net "Public/Test" > > > $ doveadm(tlx at leuxner.net): Error: Can't create mailbox Public/Test: Permission denied > > > > I think that's correct behavior? The "k" right needs to be for the parent "Public", while Public/* only matches its children. > > I see. Wouldn't "Public" also let's say undesirably apply to mailboxes in the user context then, e.g. someone creates a "Public" folder in his INBOX? I'm asking as I only want to apply the ACL to a namespace. Following the http://wiki2.dovecot.org/ACL example of wildcard patters it appears 'Public/*' is completely ignored. I tested with a new mailbox and the only entry applied is the 'Public*' one: $ cat global-acl INBOX owner lrwstiekxap Public* group=PublicMailboxAdmins lrwsik Public/* anyone lr Public/* authenticated lrws -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From da-dovecotlist-15 at abelonline.de Sun Feb 16 16:30:33 2014 From: da-dovecotlist-15 at abelonline.de (da-dovecotlist-15 at abelonline.de) Date: Sun, 16 Feb 2014 17:30:33 +0100 (CET) Subject: [Dovecot] Syntax of pattern in map section Message-ID: <20140216163033.6A6C88C285@mail.abelonline.de> I can't seem to find any documentation on the meaning/syntax of the "pattern" variable in map sections that are found in dovecot-dict-sql.conf.ext for example. I am trying to setup shared folders. The only thing[1] I found is: >>First you'll need to know what kind of dict paths the code uses. ACL >>plugin uses these paths: >> >>shared/shared-boxes/anyone/$owner >>shared/shared-boxes/user/$user/$owner >>shared/shared-boxes/group/$group/$owner What is a "dict path"? Is this some kind of hard coded identifier in the Dovecot code? I need to understand how they work because I can't use the example in http://wiki2.dovecot.org/SharedMailboxes/Shared. This is because in my PostreSQL table users are not a single column but two columns with the local and domain part[2]: Table "public.shared_mailboxes" Column | Type -----------------------+------------------------ shared_mailbox_local | character varying(64) shared_mailbox_domain | character varying(253) shared_to_local | character varying(64) shared_to_domain | character varying(253) How should a map section look in this case? [1]http://www.dovecot.org/list/dovecot/2009-April/038922.html [2]I did this in order to use REFERENCES to ensure the user exist. Kind regards From neleo at gmx.net Mon Feb 17 07:59:20 2014 From: neleo at gmx.net (Leo) Date: Mon, 17 Feb 2014 08:59:20 +0100 Subject: [Dovecot] Crash in pop3 with recent dovecot, backtrace In-Reply-To: <52FE7EBC.7010808@thelounge.net> References: <52FE50BC.8010808@gmx.net> <52FE7EBC.7010808@thelounge.net> Message-ID: <5301C158.7030709@gmx.net> Sorry - my fault! I downloaded it on thursday (version 2.2.11 was released the day before and it was the latest version at this time) but installed it on friday. Then I had the problems and found this thread on Google. Unfortunately I did not double check the download page and even did not notice the announcement of 2.2.12 here on the list. I very much apologize ... However many thanks for your quick replies! Regards, Leo On 02/14/2014 09:38 PM, Reindl Harald wrote: > > Am 14.02.2014 18:22, schrieb Leo: >> I have the same crashes in pop3 with the recent dovecot release 2.2.11 > it is not the recent and because the pop3 problems 2.2.12 was already released > > as always: > look on the download page for the current version before > report problems possibly already solved > From skdovecot at smail.inf.fh-brs.de Mon Feb 17 08:58:34 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 17 Feb 2014 09:58:34 +0100 (CET) Subject: [Dovecot] output of doveconf in conflict with order of settings in conf.d/*-*.conf files Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I wanted to enable stats, so I added the settings from http://wiki2.dovecot.org/Statistics into conf.d/99-stats.conf: mail_plugins = $mail_plugins stats protocol imap { mail_plugins = $mail_plugins imap_stats } plugin { # how often to session statistics stats_refresh = 30 secs # track per-IMAP command statistics stats_track_cmds = yes } reloaded dovecot, see output of doveconf -n below, but I got the error: imap: Error: Can't load plugin imap_stats_plugin: Plugin stats must be loaded also (you must set: mail_plugins=$mail_plugins stats) If I move the line "mail_plugins = $mail_plugins stats" from 99-stats.conf into 15-stats.conf, the output of doveconf -n looks the same, but the stats is working. I tried finding information about the significance of the order of settings - I mean which number should a conf-file has - , but failed in the Wiki and mailing list. Is this a bug or should there be a documentation? ===== # 2.2.10 (5432b55a2b87): /usr/local/dovecot-2.2.10/etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-amd64 x86_64 Debian 6.0.8 auth_cache_size = 10 M auth_mechanisms = plain login base_dir = /var/run/dovecot2.2/ default_vsz_limit = 512 M deliver_log_format = msgid=%m: %$ %p/%w "%f" "%s" dict { acl = pgsql:/usr/local/dovecot-2.2.10/etc/dovecot/dovecot-dict-sql.conf.ext quota = pgsql:/usr/local/dovecot-2.2.10/etc/dovecot/dovecot-dict-sql.conf.ext } disable_plaintext_auth = no instance_name = dovecot2.2 lda_mailbox_autocreate = yes lmtp_save_to_detail_mailbox = yes log_path = /var/log/dovecot/dovecot2.2.log log_timestamp = "%F %H:%M:%S " mail_gid = vmail mail_log_prefix = "%Us(%u) [%p]: " mail_max_userip_connections = 0 mail_plugins = " quota notify mail_log zlib acl stats" mail_shared_explicit_inbox = yes mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave imapflags namespace { list = children location = maildir:%%h/Maildir:INDEX=~/Maildir/shared/%%u prefix = users.%%u. separator = . type = shared } namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /usr/local/dovecot-2.2.10/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { acl = vfile acl_shared_dict = proxy::acl antispam_allow_append_to_spam = yes antispam_backend = spool2dir antispam_spam = SPAM+ReportAsSPAM antispam_spool2dir_notspam = /tmp/spamspool/%%020lu-%%05lu-%u-H antispam_spool2dir_spam = /tmp/spamspool/%%020lu-%%05lu-%u-S antispam_trash = trash;TRASH;Trash;spam;SPAM;Spam;junk;JUNK;Junk;Deleted Items;Deleted Messages;Gel&APY-schte Elemente;Gel&APY-schte Objekte;Junk E-mail;Junk-E-Mail;INBOX.Trash;INBOX.TRASH;INBOX.trash mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size vsize from subject quota = dict:User quota::proxy::quota quota_rule = *:storage=300MB quota_rule2 = Trash:storage=+30M recipient_delimiter = + sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_extensions = +imapflags sieve_max_actions = 0 sieve_quota_max_storage = 3M stats_command_min_time = 1 mins stats_domain_min_time = 12 hours stats_ip_min_time = 12 hours stats_memory_limit = 128 M stats_refresh = 30 secs stats_session_min_time = 15 mins stats_track_cmds = yes stats_user_min_time = 1 hours } postmaster_address = postmaster at inf.h-brs.de protocols = imap pop3 lmtp sieve quota_full_tempfail = yes service auth { unix_listener auth-client { mode = 0766 } unix_listener auth-userdb { mode = 0766 user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = vmail } } service doveadm { unix_listener doveadm-server { mode = 0666 } } service imap-login { process_min_avail = 4 service_count = 0 vsz_limit = 768 M } service imap { process_limit = 10000 vsz_limit = 768 M } service lmtp { vsz_limit = 768 M } service managesieve-login { inet_listener sieve { port = 4190 } inet_listener sieve_deprecated { port = 2000 } } service pop3-login { process_min_avail = 5 service_count = 0 vsz_limit = 512 M } service stats { fifo_listener stats-mail { mode = 0600 user = vmail } } ssl_ca = References: <52F8B0D9.4010308@babel.it> <52FC91CA.9070601@babel.it> <52FCB4EF.2000009@babel.it> Message-ID: <5301EC0C.6000401@babel.it> Hi everyone, today i found a change about mail_cache_header_fields_read() in 15/02/2014 nightly, where calculation for cache corruption detection changes. It was strictly related to our problem, because cache header fields are always out of bound, but this not resolve the issue. Did someone find some solution to this problem? Ramon Il 13/02/2014 13:05, Ramon ha scritto: > Hi Steffen, > we tried the patch you suggested, but it does not resolve the issue, > in addition it involves pop3 only, and we are experimenting segfaults > on both pop3 and imap. We found more information about the problem: > deleting the index file, and letting the process recreate it, the > problem does not appear anymore using the related account. It seems to > be a corruption problem not detected when accessing cache, all core > dumps we analyzed trace the problem to the same procedure: > mail_cache_header_fields_read (for (p = names; p != end && *p != '\0'; > p++) ; gets an out of bound access). > Regards. > > Ramon > > Il 13/02/2014 11:31, Steffen Kaiser ha scritto: >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> On Thu, 13 Feb 2014, Francesco Fiore wrote: >> >>> Is there any news for this problem? >> >> read the other threads about the issue and find the patch in the >> 2.2.11 thread. >> >> - -- Steffen Kaiser >> -----BEGIN PGP SIGNATURE----- >> Version: GnuPG v1.4.11 (GNU/Linux) >> >> iQEVAwUBUvyfF3D1/YhP6VMHAQIeDQf7BTMO9RzoL21mS06n56j1nRT2HbSYNsXx >> IZ1AWRK2D0ZrZcaHUwadrOaENqeeU4gBJNj633ZXrvpzObyO++rS3fycD3i0gw+V >> LSaa1IaAwb8fBfYkE8Nx997SJPS2fhd0f50ks8+Qf9k3yRal+MCOkBIIm+Wz4+lM >> 0BoYrInmpIP8qCZ27Dm2u1/Z6Apla8ZxlFEUdaiL4ryVFYN1GlfuYEVTuaBn1n5T >> By8VLPtKWRuujQ+eyx6ZTQzF6EqDvqbgJhGwRI2OQZnLgNoxI0PByOrhzhsGcYbq >> akooWof0XBAI3NYhhve18uj5+xy5vOUjXM1JKoqKhcQVR2NRY+mrNg== >> =FIv/ >> -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Mon Feb 17 12:16:06 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 17 Feb 2014 13:16:06 +0100 (CET) Subject: [Dovecot] output of doveconf in conflict with order of settings in conf.d/*-*.conf files In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 17 Feb 2014, Steffen Kaiser wrote: this is also happens for Dovecot v2.2.12 (0ecc40091784), the current hg version. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwH9hnD1/YhP6VMHAQJoCwgAjpkewbryNXSxqPJtdVvUt6KudOTqs1cQ bA0QafdwCAmepQ+p6hyQquBSwnH6k2vnChSW2xyU0+Tbi6T0IWJwbSM17jD1Oen+ ZywMZBaihF6R1GYWiytpAxCl7B4ymLGy/wuC0uJ9wobJVYO0KyUK3FJjZBTYz7eY SSrXjnhfoCCp3Mn2LZD06hVOJSMNX2qwU2JuzO3TvX1yiQ5uOO6GbKOdPLD8+Goc Hnt0skOc0IcFwdOK9zefRcrLZXhjkNExHDBQedbGB6ch6Uniitd3DdEPPJs6HhUm X4vdlz/WWwiy2Mt2cyLnDhf+owP9vOB303yeU/EGhZE6ClvH5KXs+A== =6hRh -----END PGP SIGNATURE----- From raphael.garcia at ecp.fr Mon Feb 17 14:20:05 2014 From: raphael.garcia at ecp.fr (Raphael GARCIA CTI) Date: Mon, 17 Feb 2014 15:20:05 +0100 Subject: [Dovecot] Using DSYNC between dovecot 1.2.15 and 2.1.7 servers. Message-ID: <53021A95.7060103@ecp.fr> Hello everyone, Is it possible to use DSYNC between dovecot 1.2.15 and 2.1.7 servers ? Precisely replicate a dovecot 1.2.15 server to a 2.1.7 server ? Best regards. -- Rapha?l Garcia From CMarcus at Media-Brokers.com Mon Feb 17 14:23:36 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 17 Feb 2014 09:23:36 -0500 Subject: [Dovecot] Using DSYNC between dovecot 1.2.15 and 2.1.7 servers. In-Reply-To: <53021A95.7060103@ecp.fr> References: <53021A95.7060103@ecp.fr> Message-ID: <53021B68.5040804@Media-Brokers.com> On 2014-02-17 9:20 AM, Raphael GARCIA CTI wrote: > Is it possible to use DSYNC between dovecot 1.2.15 and 2.1.7 servers ? > > Precisely replicate a dovecot 1.2.15 server to a 2.1.7 server ? Short answer is, don't do it. Dsync, prior to 2.2 (where it was completely rewritten), was unreliable and prone to breakage. If you want to use dsync reliably, both need to be running 2.2. -- Best regards, Charles From matthias.lay at securepoint.de Mon Feb 17 14:32:30 2014 From: matthias.lay at securepoint.de (matthias lay) Date: Mon, 17 Feb 2014 15:32:30 +0100 Subject: [Dovecot] lda+ldap multiple users In-Reply-To: <1392403017.16710.57.camel@worklian> References: <52F4B4C5.30705@securepoint.de> <52FDE695.2020409@securepoint.de> <1392403017.16710.57.camel@worklian> Message-ID: <53021D7E.8030404@securepoint.de> Hi Bob, On 02/14/2014 07:36 PM, Bob Miller wrote: > I documented my sandbox qmail-ldap/dovecot system here, maybe it is > useful to you: > > http://cocnm.computerisms.ca/index.php/Install_Qmail-ldap,_Dovecot,_and_Related_Email_Services > thx for your help and support, but changing stuff in qmail is not what I really want. in my case the system is not the real Mailserver its just an archieve sitting in between an smtp proxy and the real server, capturing just the mails I want, but deliver *everything* to the real server. so not much to do on the qmail side. and thats the reason everything user related is done in dovecot itself. we do passwd lookups and user lookups only within dovecot. Filter looks like user_filter = (&(|(objectClass=msExchExchangeServerRecipient)(|(objectClass=group)))(|(proxyAddresses=smtp:%Ln@%Ld)(|(mail=%Ln@%Ld)))) ...but if nobody knows if its possible inside the dovecot lookup process, a new/seperate lookup process that calls dovecot-lda with the username instead of the mailaddress might be the only opportunity. Greetz Matze From t.creutz at topackt.com Mon Feb 17 15:31:53 2014 From: t.creutz at topackt.com (Thomas Creutz) Date: Mon, 17 Feb 2014 16:31:53 +0100 Subject: [Dovecot] Warning: mysql: Query failed, retrying: Unknown column 'filter' in 'where clause' Message-ID: <53022B69.6030609@topackt.com> Hi List, I have a problem with dovecot 2.2.12 and sieve-filter call: su -c 'sieve-filter -D -v -W -C -u account at domain.tld /var/vmail/domain.tld/account/.sieve INBOX.Refilter' vmail gives me sieve-filter(vmail): Error: user account at domain.tld: Auth USER lookup failed sieve-filter(vmail): Fatal: Internal error occurred. Refer to server log for more information. on log file I see this: Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Warning: mysql: Query failed, retrying: Unknown column 'filter' in 'where clause' Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Error: sql(account at domain.tld): User query failed: Unknown column 'filter' in 'where clause' but I never used filter in dovecot: grep -iR filter /etc/dovecot/ gives me no result (and yes the dir is right). Any Idea whats wrong? I know it tells me, that the column is missing in the Database - but why I need it? I also never see it documented somewhere: http://wiki2.dovecot.org/AuthDatabase/SQL http://wiki2.dovecot.org/PasswordDatabase/ExtraFields Thomas From apm at one.com Mon Feb 17 18:51:20 2014 From: apm at one.com (Peter Mogensen) Date: Mon, 17 Feb 2014 19:51:20 +0100 Subject: [Dovecot] The submission server Message-ID: <53025A28.7090106@one.com> Hi, As many others I'm looking forward to the submission server. But I have a question: A use-case with authenticated SMTP is to have the server restrict From/Sender headers based on the authenticated user. (and adding the actual authenticated user to the headers) Postfix supports this (AFAICS) and I can't imagine Exims doesn't either with it's elaborate config possibilities. But will that be possible with the Dovecot submission server? /Peter From bob at computerisms.ca Mon Feb 17 19:19:41 2014 From: bob at computerisms.ca (Bob Miller) Date: Mon, 17 Feb 2014 11:19:41 -0800 Subject: [Dovecot] lda+ldap multiple users In-Reply-To: <53021D7E.8030404@securepoint.de> References: <52F4B4C5.30705@securepoint.de> <52FDE695.2020409@securepoint.de> <1392403017.16710.57.camel@worklian> <53021D7E.8030404@securepoint.de> Message-ID: <1392664781.2704.63.camel@worklian> Hi, > so not much to do on the qmail side. and thats the reason everything > user related is done in dovecot itself. ok > ...but if nobody knows if its possible inside the dovecot lookup > process, a new/seperate lookup process that calls dovecot-lda with the > username instead of the mailaddress might be the only opportunity. As I understand the original problem, you need one mail to be delivered to several users, which means you need to figure out how to alias or forward. Steffen's approach is a super good idea I intend to stuff into my back pocket, and is probably worth pursuing given your usage case. Other than that, and based on what I know, I would still be inclined to try and solve this by creating a local user and configuring a .qmail file to forward the mails to AD users, but tweaking your defaultdelivery to accommodate a per-user .qmail file might be tricky or impossible in your situation. A global sieve script might be another approach to forwarding mails from a virtual address to valid users, but I haven't implemented one, so I can't say if it fits your situation or provide advice on configuring one. Another approach could be setting up a mailing list, where the list address is the common address that delivers to subscribed users. Perhaps delivery to a single user and a shared folder might provide a usable end result as well... Whatever you end up doing, I am interested to hear what works for you in the end... > > Greetz > Matze From rgelfand2 at gmail.com Mon Feb 17 19:54:40 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Mon, 17 Feb 2014 14:54:40 -0500 Subject: [Dovecot] Master user ldap config Message-ID: I am using outlook 2010 to login to pop3 mailbox as master user. The user name I provide is john at domain.tld*test at domain.tld. The password is that of test at domain.tld. I am not quite sure as to how to specify ACL. I guessed the ACL specs as per ldap config, below. But it is not working. The master password is stored in master-users file. The ldap config is # debug_level = 9 hosts = 192.168.0.22:389 ldap_version = 3 auth_bind = yes dn = dlookup at domain.local dnpass = password base = OU=Test Users,DC=domain,DC=local scope = subtree deref = never user_filter = (&(Mail=%u)(objectClass=person)(!(userAccountControl=514))) pass_filter = (&(Mail=%u)(objectClass=person)(!(userAccountControl=514))) pass_attrs = uid=user, userPassword=password, =proxy=y, =destuser=%u*masteruser, =pass=mastpass default_pass_scheme = CRYPT user_attrs = =uid=999,=gid=8,=home=/vmail/%Ld/%Ln/home/,=mail=maildir:/vmail/%Ld/%Ln/Maildir/ The dovecot.conf is auth_mechanisms = plain login disable_plaintext_auth = no base_dir = /var/run/dovecot/ log_path = /var/log/dovecot.log info_log_path = /var/log/dovecot.info.log mail_debug = no auth_debug = no auth_verbose = no auth_debug_passwords = no first_valid_gid = 8 instance_name = test last_valid_gid = 8 log_timestamp = "%Y-%m-%d %H:%M:%S " mail_location = maildir:~/Maildir mail_privileged_group = mail passdb { args = /etc/dovecot/conf.d/users.conf driver = passwd-file } passdb { args = /etc/dovecot/dovecot-ldap-test.conf driver = ldap } auth_master_user_separator = * passdb { driver = passwd-file args = /etc/dovecot/master-users master = yes pass = yes } service auth { inet_listener { port = 10305 } unix_listener auth-master { group = mail mode = 0600 user = mail } } userdb { args = /etc/dovecot/conf.d/users.conf driver = passwd-file } userdb { args = /etc/dovecot/master-users driver = passwd-file } userdb { args = /etc/dovecot/dovecot-ldap-test.conf driver = ldap } protocol lmtp { postmaster_address = postmaster at domain.tld mail_plugins = sieve } protocol lda { postmaster_address = postmaster at domain.tld hostname = server.domain.tld # Sieve plugin for local delivery agent mail_plugins = cmusieve log_path = /var/log/dovecot-local-deliver.log } From stephan at rename-it.nl Mon Feb 17 20:06:18 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 17 Feb 2014 21:06:18 +0100 Subject: [Dovecot] The submission server In-Reply-To: <53025A28.7090106@one.com> References: <53025A28.7090106@one.com> Message-ID: <53026BBA.7020105@rename-it.nl> Hi, On 2/17/2014 7:51 PM, Peter Mogensen wrote: > Hi, > > As many others I'm looking forward to the submission server. > But I have a question: > > A use-case with authenticated SMTP is to have the server restrict > From/Sender headers based on the authenticated user. (and adding the > actual authenticated user to the headers) > Postfix supports this (AFAICS) and I can't imagine Exims doesn't > either with it's elaborate config possibilities. > > But will that be possible with the Dovecot submission server? The submission server is in its current design solely a proxy to a normal MTA (which will probably change somewhat when Dovecot gets its own MTA). So, if the backend MTA can perform this sender enforcement, you should have your solution already. One piece of the puzzle is important though: a method to convey the authenticated username to the backend. For Postfix this is already implemented through XCLIENT. I haven't looked whether Exim supports something like this. Also, adding this feature to the submission server itself should not be difficult either. The main problem is that it needs to obtain a list of allowed addresses from a user database. Regards, Stephan. From h.reindl at thelounge.net Mon Feb 17 20:12:32 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 17 Feb 2014 21:12:32 +0100 Subject: [Dovecot] Master user ldap config In-Reply-To: References: Message-ID: <53026D30.7020904@thelounge.net> Am 17.02.2014 20:54, schrieb Roman Gelfand: > I am using outlook 2010 to login to pop3 mailbox as master user. The > user name I provide is john at domain.tld*test at domain.tld. The password > is that of test at domain.tld. I am not quite sure as to how to specify > ACL. I guessed the ACL specs as per ldap config, below. But it is > not working ACL's and POP3 won't work as well as you never receive messages outisde of INBOX our can access any other folder than INBOX with POP3 IMAP is your way to go -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From apm at one.com Mon Feb 17 20:42:25 2014 From: apm at one.com (Peter Mogensen) Date: Mon, 17 Feb 2014 21:42:25 +0100 Subject: [Dovecot] The submission server In-Reply-To: <53026BBA.7020105@rename-it.nl> References: <53025A28.7090106@one.com> <53026BBA.7020105@rename-it.nl> Message-ID: <53027431.9030503@one.com> On 2014-02-17 21:06, Stephan Bosch wrote: > One piece of the puzzle is > important though: a method to convey the authenticated username to the > backend. yeah... I figured that would be the crucial part. Does the dovecot proxy send the authentication name, or the SASL authorization name? /Peter From stephan at rename-it.nl Mon Feb 17 22:52:57 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 17 Feb 2014 23:52:57 +0100 Subject: [Dovecot] The submission server In-Reply-To: <53027431.9030503@one.com> References: <53025A28.7090106@one.com> <53026BBA.7020105@rename-it.nl> <53027431.9030503@one.com> Message-ID: <530292C9.5090203@rename-it.nl> On 2/17/2014 9:42 PM, Peter Mogensen wrote: > On 2014-02-17 21:06, Stephan Bosch wrote: >> One piece of the puzzle is >> important though: a method to convey the authenticated username to the >> backend. > > yeah... I figured that would be the crucial part. > > Does the dovecot proxy send the authentication name, or the SASL > authorization name? Actually, XCLIENT support is implemented, but it turns out I haven't enabled sending LOGIN= yet. :) It will send the authorization name; i.e. the name of the user whose account is being accessed and not the name of e.g. a master user when that was used for authentication. Regards, Stephan. From jthompson at dmevolve.com Mon Feb 17 23:19:22 2014 From: jthompson at dmevolve.com (Jon Thompson) Date: Mon, 17 Feb 2014 17:19:22 -0600 Subject: [Dovecot] Bug Report Message-ID: <68BDBCB3-1A2D-43F4-81C4-BD5C390C9F93@dmevolve.com> So when I try and create a sub mailbox in shared-folders, I get this error? imap(pid 56143 user -----): Fatal: master: service(imap): child 56143 killed with signal 11 (core dumps disabled) I?ve not been able to figure out how to get dovecot in OS X to core dump, so I haven?t included that. The documentation on the web doesn?t seem to apply to the version Apple ships. Here?s dovecotd -n, with the ssl certs removed and the domain replaced with the word domain. # 2.2.5: /Library/Server/Mail/Config/dovecot/dovecot.conf # OS: Darwin 13.0.0 x86_64 hfs aps_topic = com.apple.mail.XServer.b137086a-440f-45fe-89c4-8ddf798318a3 auth_debug = yes auth_debug_passwords = yes auth_mechanisms = cram-md5 plain login apop digest-md5 auth_realms = office.domain.com auth_socket_path = /var/run/dovecot/auth-userdb auth_username_format = %n auth_verbose = yes debug_log_path = /Library/Logs/Mail/mail-debug.log default_internal_user = _dovecot default_login_user = _dovenull disable_plaintext_auth = no first_valid_gid = 6 first_valid_uid = 6 imap_id_log = * imap_id_send = "name" * "version" * imap_urlauth_submit_user = submit info_log_path = /Library/Logs/Mail/mail-info.log log_path = /Library/Logs/Mail/mail-err.log login_log_format_elements = user=<%u> method=%m rip=%r lip=%l mpid=%e %c mail_access_groups = mail mail_attribute_dict = file:/Library/Server/Mail/Data/attributes/attributes.dict mail_debug = yes mail_location = maildir:/Volumes/PromiseRAID/Library/Server/Mail/Data/mail/%u mail_log_prefix = "%s(pid %p user %u): " mail_plugins = quota zlib acl fts fts_sk managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave mdbox_rotate_size = 200 M namespace acl-mailboxes { list = children location = maildir:/Library/Server/Mail/Data/mail/users/%%u:INDEX=/Library/Server/Mail/Data/mail/shared/%%u prefix = shared.%%u. separator = . subscriptions = no type = shared } namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } namespace list-archives { list = children location = maildir:/Library/Server/Mail/Data/listserver/messages/archive/lists/%%u:INDEX=/Library/Server/Mail/Data/listserver/messages/archive/shared/%%u prefix = archives.%%u. separator = . subscriptions = no type = shared } namespace shared-folders { list = yes location = maildir:/Volumes/PromiseRAID/Library/Server/Mail/Data/Shared prefix = shared-folders. separator = . subscriptions = no type = shared } passdb { driver = od } passdb { args = /Library/Server/Mail/Config/dovecot/submit.passdb driver = passwd-file } plugin { acl = vfile:/Library/Server/Mail/Config/dovecot/global-acls:cache_secs=300 acl_anyone = allow acl_shared_dict = file:/Library/Server/Mail/Data/shared/shared-mailboxes fts = sk quota = maildir:User quota quota_warning = storage=100%% quota-exceeded %u sieve = /Library/Server/Mail/Data/rules/%u/dovecot.sieve sieve_dir = /Library/Server/Mail/Data/rules/%u stats_refresh = 30 secs stats_track_cmds = yes } postmaster_address = postmaster at office.domain.com protocols = imap pop3 lmtp sieve quota_full_tempfail = yes service auth { extra_groups = _keytabusers idle_kill = 15 mins unix_listener auth-userdb { user = _dovecot } } service dns_client { unix_listener dns-client { mode = 0600 } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } service_count = 0 } service imap { client_limit = 5 process_limit = 200 service_count = 0 } service indexer-worker { user = _dovecot } service lmtp { unix_listener lmtp { mode = 0600 } } service managesieve-login { inet_listener sieve { port = 4190 } } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } service pop3 { client_limit = 5 process_limit = 200 service_count = 0 } service quota-exceeded { executable = script /Applications/Server.app/Contents/ServerRoot/usr/libexec/dovecot/quota-exceeded.sh unix_listener quota-exceeded { group = mail mode = 0660 user = _dovecot } user = _dovecot } service quota-warning { executable = script /Applications/Server.app/Contents/ServerRoot/usr/libexec/dovecot/quota-warning.sh unix_listener quota-warning { group = mail mode = 0660 user = _dovecot } user = _dovecot } service stats { fifo_listener stats-mail { mode = 0600 user = _dovecot } } ssl = required ssl_ca = ssl_cert = ssl_cipher_list = ALL:!LOW:!SSLv2:!EXP:!aNULL:!ADH:!eNULL ssl_key = ssl_key_path = userdb { args = partition=/Library/Server/Mail/Config/dovecot/partition_map.conf enforce_quotas=no driver = od } userdb { args = /Library/Server/Mail/Config/dovecot/submit.passdb driver = passwd-file } verbose_proctitle = yes protocol lmtp { mail_plugins = quota zlib acl fts fts_sk sieve push_notify } protocol lda { mail_plugins = quota zlib acl fts fts_sk acl sieve push_notify } protocol imap { mail_max_userip_connections = 20 mail_plugins = quota zlib acl fts fts_sk acl imap_acl imap_quota imap_zlib } protocol pop3 { mail_max_userip_connections = 6 } ? - Jon From h.reindl at thelounge.net Mon Feb 17 23:21:54 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 18 Feb 2014 00:21:54 +0100 Subject: [Dovecot] Bug Report In-Reply-To: <68BDBCB3-1A2D-43F4-81C4-BD5C390C9F93@dmevolve.com> References: <68BDBCB3-1A2D-43F4-81C4-BD5C390C9F93@dmevolve.com> Message-ID: <53029992.3050408@thelounge.net> since you are obviously using the binary shipped with Mac OSX and packaged by Apple Inc. which is heavily outdated while current dovecot is version 2.2.12 you may complain to Apple Inc. Am 18.02.2014 00:19, schrieb Jon Thompson: > So when I try and create a sub mailbox in shared-folders, I get this error? > > imap(pid 56143 user -----): Fatal: master: service(imap): child 56143 killed with signal 11 (core dumps disabled) > > I?ve not been able to figure out how to get dovecot in OS X to core dump, so I haven?t included that. The documentation on the web doesn?t seem to apply to the version Apple ships. > > Here?s dovecotd -n, with the ssl certs removed and the domain replaced with the word domain. > # 2.2.5: /Library/Server/Mail/Config/dovecot/dovecot.conf -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From mtrainer at westnet.com.au Tue Feb 18 00:57:26 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Tue, 18 Feb 2014 08:57:26 +0800 Subject: [Dovecot] SMTP configuration for director mail cluster Message-ID: <4d17689bdd24ce2ace1f786e10db5360841fd70a@webmail.westnet.com.au> HI All, I have setup my Dovecot director proxies and Dovecot backend mail stores.? I intend setting up several incoming and outgoing Exim MTA's.? I am a bit confused about what I need to run on the backend Dovecot MTA's to get the incoming mail delivered to them.? Do I need to install Exim on them or use LMTP to receive mail from the MTA's?? Also, can I directly deliver mail to the mailstores or do I have to go through the director proxies using lmtp?? Note that I am using Director with the mailboxes on NFS backed storage. Thanks Murray From t.creutz at topackt.com Tue Feb 18 09:55:20 2014 From: t.creutz at topackt.com (Thomas Creutz) Date: Tue, 18 Feb 2014 10:55:20 +0100 Subject: [Dovecot] Warning: mysql: Query failed, retrying: Unknown column 'filter' in 'where clause' In-Reply-To: <53022B69.6030609@topackt.com> References: <53022B69.6030609@topackt.com> Message-ID: <53032E08.6080406@topackt.com> I would add some informations: auth lookup works fine with doveadm: $ doveadm auth lookup account at domain.tld passdb: account at domain.tld user : account at domain.tld Any Ideas? Thomas Am 17.02.2014 16:31, schrieb Thomas Creutz: > Hi List, > > I have a problem with dovecot 2.2.12 and sieve-filter call: > > su -c 'sieve-filter -D -v -W -C -u account at domain.tld > /var/vmail/domain.tld/account/.sieve INBOX.Refilter' vmail > > gives me > > sieve-filter(vmail): Error: user account at domain.tld: Auth USER lookup failed > sieve-filter(vmail): Fatal: Internal error occurred. Refer to server log > for more information. > > on log file I see this: > > Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Warning: mysql: Query > failed, retrying: Unknown column 'filter' in 'where clause' > Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Error: > sql(account at domain.tld): User query failed: Unknown column 'filter' in > 'where clause' > > but I never used filter in dovecot: > > grep -iR filter /etc/dovecot/ > > gives me no result (and yes the dir is right). > > Any Idea whats wrong? I know it tells me, that the column is missing in > the Database - but why I need it? I also never see it documented somewhere: > > http://wiki2.dovecot.org/AuthDatabase/SQL > http://wiki2.dovecot.org/PasswordDatabase/ExtraFields > > Thomas -- MfG Thomas Creutz Topackt IT Solutions GmbH Altspeyerer Weide 2 67346 Speyer --------------------------------------- Mobil: 0151-11711132 Tel: 06232-31504-0 Fax: 06232-31504-240 ----------------------------------------------- Mail: t.creutz at topackt.com WWW: http://www.topackt.com pgp: https://ssl.topackt.com/pgp/ Xing: http://www.xing.com/go/invite/5799158.1aa7c1 ------------------------------------------------------- Registergericht: Amtsgericht Ludwigshafen, HRB 53097 Gesch?ftsf?hrer: Michael Nist From michael at bigmichi1.de Tue Feb 18 10:10:05 2014 From: michael at bigmichi1.de (Michael Cramer) Date: Tue, 18 Feb 2014 11:10:05 +0100 Subject: [Dovecot] Warning: mysql: Query failed, retrying: Unknown column 'filter' in 'where clause' In-Reply-To: <53032E08.6080406@topackt.com> References: <53022B69.6030609@topackt.com> <53032E08.6080406@topackt.com> Message-ID: <20140218111005.Horde.N0pclTnSSV7RVrWCOuOHGw8@horde.bigmichi1.de> you can try to turn on the debug logging so that you can see which query is executed mail_debug=yes auth_debug=yes Zitat von Thomas Creutz : > I would add some informations: > > auth lookup works fine with doveadm: > > $ doveadm auth lookup account at domain.tld > passdb: account at domain.tld > user : account at domain.tld > > Any Ideas? > > Thomas > > Am 17.02.2014 16:31, schrieb Thomas Creutz: >> Hi List, >> >> I have a problem with dovecot 2.2.12 and sieve-filter call: >> >> su -c 'sieve-filter -D -v -W -C -u account at domain.tld >> /var/vmail/domain.tld/account/.sieve INBOX.Refilter' vmail >> >> gives me >> >> sieve-filter(vmail): Error: user account at domain.tld: Auth USER lookup failed >> sieve-filter(vmail): Fatal: Internal error occurred. Refer to server log >> for more information. >> >> on log file I see this: >> >> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Warning: mysql: Query >> failed, retrying: Unknown column 'filter' in 'where clause' >> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Error: >> sql(account at domain.tld): User query failed: Unknown column 'filter' in >> 'where clause' >> >> but I never used filter in dovecot: >> >> grep -iR filter /etc/dovecot/ >> >> gives me no result (and yes the dir is right). >> >> Any Idea whats wrong? I know it tells me, that the column is missing in >> the Database - but why I need it? I also never see it documented somewhere: >> >> http://wiki2.dovecot.org/AuthDatabase/SQL >> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields >> >> Thomas > > -- > MfG > Thomas Creutz > > Topackt IT Solutions GmbH > Altspeyerer Weide 2 > 67346 Speyer > --------------------------------------- > Mobil: 0151-11711132 > Tel: 06232-31504-0 > Fax: 06232-31504-240 > ----------------------------------------------- > Mail: t.creutz at topackt.com > WWW: http://www.topackt.com > pgp: https://ssl.topackt.com/pgp/ > Xing: http://www.xing.com/go/invite/5799158.1aa7c1 > ------------------------------------------------------- > Registergericht: Amtsgericht Ludwigshafen, HRB 53097 > Gesch?ftsf?hrer: Michael Nist From gilles.chauvin at univ-rouen.fr Tue Feb 18 12:42:29 2014 From: gilles.chauvin at univ-rouen.fr (Gilles Chauvin) Date: Tue, 18 Feb 2014 13:42:29 +0100 Subject: [Dovecot] =?utf-8?q?Dsync_crash_=28v2=2E2=2E10=2C_sdbox+sis_?= =?utf-8?b?4oaSIG1ib3gp?= In-Reply-To: <52F74D9D.90906@univ-rouen.fr> References: <52F74D9D.90906@univ-rouen.fr> Message-ID: <53035535.4040204@univ-rouen.fr> Hi Timo, I've made some further research on this issue (Dovecot was upgraded to the latest release in the meantime but, unsurprisingly, to no avail) and here's what I've found so far. On 09/02/2014 10:42, Gilles Chauvin wrote: > dsync(user2): Error: > read(/zfspool/clone_srv_attachments/ad/0c/ad0cef35cc6f0b2dae2197c4ff2b61a2bd58070d-9e8345192ccbf352c210000044c1c7e7-6efa5f2e522db350ed3d000094b229f9-15470[base64:18 > b/l]) failed: Stream is larger than expected (194476 > 194475, eof=1) > dsync(user2): Error: copy: i_stream_read() failed: Invalid argument > dsync(user2): Panic: file mail-index-transaction-update.c: line 19 > (mail_index_transaction_lookup): assertion failed: (seq >= > t->first_new_seq && seq <= t->last_new_seq) The original mail got an attachment which is base64 encoded on 72 cols. The last 3 lines are: MAAxADMAIAAyADAAOgAwADEAOgA1ADQADQAKAGwAJwB1AHQAaQBsAGkAcwBhAHQAZQB1AHIA IABkAGUAIABsAG8AZwBpAG4AOgAgAGsAZQBsAGUAbQBhAHIAaQAgAGEAIADpAHQA6QAgAGMA cgDpAOkAIABsAGUAIAAyADEALwAwADMALwAyADAAMQAzACAAMgAwADoAMAAyADoAMAA0AA0ACgA= For no good reason, the last line lacks a CR before the final "CgA=" part. I guess this is where Dovecot yells about the "stream larger than expected" because when it reencodes the attachment, it does it correctly by adding a proper CR before "CgA=" hence the one byte difference (tested using the "base64" command line tool). During my tests, each time dsync failed with this particular error, the same pattern applied (malformed base64 last line). Looks like a pretty hard problem to solve but, for now, it prevents us from restoring a mailbox. Regards, Gilles From sebastian at bergschaf.net Tue Feb 18 12:42:47 2014 From: sebastian at bergschaf.net (=?iso-8859-1?Q?Sebastian_Sch=E4fer?=) Date: Tue, 18 Feb 2014 13:42:47 +0100 Subject: [Dovecot] Virtual folder for selected users only? (1.2.15) Message-ID: <002801cf2ca6$ed5779c0$c8066d40$@bergschaf.net> hi, i want to set up virtual folders just for some users on our mailserver. the server is set up with a virtual system-user for each of our clients having multiple mailboxes/users (provided by dovecot-mysql). mailboxes are located: /var/mails/SYSUSER/MAILBOX f.e. my mailbox-folder is set to /var/mails/bergschaf/sebastian[at]bergschaf.net {homedir} = /var/mails {maildir} = bergschaf/sebastian[at]bergschaf.net user_query = SELECT homedir AS home, concat('maildir:', maildir) AS mail, uid, gid, concat('maildir:storage=', (quota*1024)) as quota FROM mail_users WHERE username = '%u' now i want to add virtual folders to my mailbox without affecting any other client/mailbox on the server. i already tried to add a namespace "virtual" like mentioned in the wiki and in some other hotwo-guides, but this points to the need to create a "virtual"-folder for each mailbox what i would like to avoid. (f.e. location = %h/%u/virtual => /var/mails/sebastian[at]bergschaf.net). is it possible to enable a namespace just for some selected users on the server? if that's not possible - i'm not sure how to set the location-directive correctly, because i can't find a variable pointing to the maildir: %u => sebastian[at]bergschaf.net %h => /var/mails ...but how should i point the location to {homedir}/{maildir}/virtual? thanks! sebastian dovecot --version 1.2.15 From pgala at ospartner.pl Tue Feb 18 12:44:07 2014 From: pgala at ospartner.pl (pgala) Date: Tue, 18 Feb 2014 04:44:07 -0800 (PST) Subject: [Dovecot] Use header from instead envelope sender - quota exceed Message-ID: <1392727447089-46819.post@n4.nabble.com> Hi, i want use dovecot and plugin quota to inform users about exceeded space. I also configure postfix to rewrite envelope_sender so envelope_sender<>header: from. Dovecot sent mail with information about exceeded space to email in envelope_sender. It is possible to configure that dovecot sent mail to header from address? I need use sender_canonical_maps in postfix because i want also relay mail outgoing. Thanks for helping me, Piotr -- View this message in context: http://dovecot.2317879.n4.nabble.com/Use-header-from-instead-envelope-sender-quota-exceed-tp46819.html Sent from the Dovecot mailing list archive at Nabble.com. From s.potapov at rambler-co.ru Tue Feb 18 13:02:42 2014 From: s.potapov at rambler-co.ru (Potapov Sergey) Date: Tue, 18 Feb 2014 13:02:42 +0000 Subject: [Dovecot] Possible error in function mailbox_autocreate Message-ID: <409CEB1649811749B2E36961BEE2DDBC44BA0F82@MBX3.rambler.ramblermedia.com> Hi! in mailbox_autocreate: if (mailbox_create(box, NULL, FALSE) < 0) { errstr = mailbox_get_last_error(box, &error); if (error != MAIL_ERROR_NOTFOUND) { <<< May be MAIL_ERROR_EXISTS should be here? mail_storage_set_critical(box->storage, "Failed to autocreate mailbox %s: %s", box->vname, errstr); return -1; } Some time I got this error when two connections tries to create INBOX at same time. ______ ? ?????????, ?????? ??????? From rs at sys4.de Tue Feb 18 13:28:33 2014 From: rs at sys4.de (Robert Schetterer) Date: Tue, 18 Feb 2014 14:28:33 +0100 Subject: [Dovecot] Virtual folder for selected users only? (1.2.15) In-Reply-To: <002801cf2ca6$ed5779c0$c8066d40$@bergschaf.net> References: <002801cf2ca6$ed5779c0$c8066d40$@bergschaf.net> Message-ID: <53036001.9030609@sys4.de> Am 18.02.2014 13:42, schrieb Sebastian Sch?fer: > dovecot --version > 1.2.15 thats very outdated, you should upgrade 2.1.x / 2.2.x latest Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From ath at b-one.net Tue Feb 18 15:44:46 2014 From: ath at b-one.net (Anders Th=?iso-8859-1?Q?=F8?=gersen) Date: Tue, 18 Feb 2014 15:44:46 GMT Subject: [Dovecot] PARTIAL results and UIDs Message-ID: <1392738286485.1472.54992@webmail8> Hi, I have had a look at dovecot 2.2.12 and think that I may have run into an issue with PARTIAL results. I have a mailbox with 9 emails having UIDs from 1 - 9. One of these emails contains the STRING "RFC" in the Subject header. The following SORT command with this mailbox selected does not return any emails: A4 UID SORT RETURN (COUNT PARTIAL 1:3) (FROM) UTF-8 (SUBJECT "RFC") * ESEARCH (TAG "A4") UID PARTIAL (1:3 NIL) COUNT 1 A4 OK Sort completed (0.000 secs). Here COUNT is 1, but the result is NIL. Changing the partial range to 1:5 returns the expected result: A4 UID SORT RETURN (COUNT PARTIAL 1:5) (FROM) UTF-8 (SUBJECT "RFC") * ESEARCH (TAG "A4") UID PARTIAL (1:5 5) COUNT 1 A4 OK Sort completed (0.000 secs). It may be that UIDs are used instead of sequence numbers. Regards Anders From rorru at babel.it Tue Feb 18 16:10:12 2014 From: rorru at babel.it (Ramon) Date: Tue, 18 Feb 2014 17:10:12 +0100 Subject: [Dovecot] Bug report Message-ID: <530385E4.3040302@babel.it> I'm using release 2.2.12, during a copy operation i get segfault on imap process. I have full bt of the issue: (gdb) bt #0 0x00007fcc521029cd in mail_cache_header_fields_read (cache=0x15c7210) at mail-cache-fields.c:369 #1 0x00007fcc52100664 in mail_cache_open_and_verify (cache=0x15c7210) at mail-cache.c:497 #2 0x00007fcc5210244d in mail_cache_register_get_list (cache=0x15c7210, pool=0x1573608, count_r=0x7fff7b3b2418) at mail-cache-fields.c:194 #3 0x00007fcc520ef845 in index_mail_parse_header_register_all_wanted (mail=0x15d4b60, headers=) at index-mail-headers.c:170 #4 index_mail_parse_header_init (mail=0x15d4b60, headers=) at index-mail-headers.c:230 #5 0x00007fcc520efdb8 in index_mail_cache_parse_init (_mail=0x15d4b60, input=0x15ddb38) at index-mail-headers.c:376 #6 0x00007fcc520bb163 in maildir_save_add (_ctx=0x15d3b20, tmp_fname=0x15735e8 "1392731650.M182940P5176.pecpop5", src_mail=0x0) at maildir-save.c:225 #7 0x00007fcc520bb4b8 in maildir_save_begin (_ctx=0x15d3b20, input=0x15debb8) at maildir-save.c:415 #8 0x00007fcc511e7360 in quota_save_begin (ctx=0x15d3b20, input=0x15debb8) at quota-storage.c:274 #9 0x00007fcc520cc182 in mailbox_save_begin (ctx=0x7fff7b3b25a8, input=0x15debb8) at mail-storage.c:2025 #10 0x00007fcc520c6242 in mail_storage_try_copy (ctx=0x15d3b20, mail=) at mail-copy.c:76 #11 mail_storage_copy (ctx=0x15d3b20, mail=) at mail-copy.c:101 #12 0x00007fcc520b6916 in maildir_copy (ctx=0x15d3b20, mail=0x15cf300) at maildir-copy.c:148 #13 0x00007fcc50dd7461 in notify_copy (ctx=0x15d3b20, mail=0x15cf300) at notify-storage.c:107 #14 0x00007fcc511e7183 in quota_copy (ctx=0x15d3b20, mail=0x15cf300) at quota-storage.c:220 #15 0x00007fcc520cc01f in mailbox_copy (_ctx=, mail=0x15cf300) at mail-storage.c:2133 #16 0x000000000040c63b in fetch_and_copy (cmd=0x1593810, move=false) at cmd-copy.c:70 #17 cmd_copy_full (cmd=0x1593810, move=false) at cmd-copy.c:123 #18 0x0000000000416fbd in command_exec (cmd=0x1593810) at imap-commands.c:158 #19 0x00000000004160e0 in client_command_input (cmd=0x1593810) at imap-client.c:780 #20 0x00000000004161cd in client_command_input (cmd=0x1593810) at imap-client.c:841 #21 0x000000000041644d in client_handle_next_command (client=0x1592fb0) at imap-client.c:879 #22 client_handle_input (client=0x1592fb0) at imap-client.c:891 #23 0x00000000004167bf in client_input (client=0x1592fb0) at imap-client.c:933 #24 0x00007fcc51e1f336 in io_loop_call_io (io=0x158c1d0) at ioloop.c:388 #25 0x00007fcc51e203a7 in io_loop_handler_run (ioloop=) at ioloop-epoll.c:220 #26 0x00007fcc51e1f2a8 in io_loop_run (ioloop=0x157b720) at ioloop.c:412 #27 0x00007fcc51dcdf73 in master_service_run (service=0x157b5b0, callback=) at master-service.c:566 #28 0x000000000041fd07 in main (argc=1, argv=0x157b390) at main.c:400 Here's config: auth_debug = yes auth_master_user_separator = * auth_username_format = default_vsz_limit = 512 M disable_plaintext_auth = no dotlock_use_excl = no first_valid_gid = 101 first_valid_uid = 102 imap_id_send = import_environment = TZ info_log_path = /var/log/dovecot.log log_path = /var/log/dovecot.log log_timestamp = "%Y-%m-%d %H:%M:%S " mail_fsync = always mail_gid = 101 mail_location = maildir:%h/Maildir mail_max_userip_connections = 50 mail_nfs_index = yes mail_nfs_storage = yes mail_plugins = quota expire fts fts_lucene mail_log notify mail_uid = 102 maildir_broken_filename_sizes = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave mbox_write_locks = fcntl mmap_disable = yes namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = INBOX. separator = . subscriptions = yes type = private } passdb { args = /opt/dovecot-2.2.10/etc/dovecot/passwd.masterusers driver = passwd-file master = yes } passdb { args = /opt/dovecot-2.2.10/etc/dovecot/dovecot-ldap.conf driver = ldap } passdb { args = /opt/dovecot-2.2.10/etc/dovecot/dovecot-ldap-multiuser.conf driver = ldap master = yes } plugin { fts = lucene fts_lucene = mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size quota = maildir quota_rule2 = INBOX.Trash:storage=+100M } protocols = imap pop3 service anvil { client_limit = 3000 } service auth { client_limit = 4096 unix_listener auth-userdb { mode = 0600 } } service imap-login { inet_listener imap { address = 10.11.47.49 port = 143 } inet_listener imaps { address = 10.11.47.49 port = 993 ssl = yes } process_limit = 2500 process_min_avail = 5 } service imap { drop_priv_before_exec = yes process_limit = 2500 process_min_avail = 5 } service managesieve-login { inet_listener sieve { port = 4190 } process_min_avail = 0 service_count = 1 vsz_limit = 64 M } service managesieve { drop_priv_before_exec = yes process_limit = 1024 } service pop3-login { inet_listener pop3 { address = 10.11.47.49 port = 110 } inet_listener pop3s { address = 10.11.47.49 port = 995 ssl = yes } process_limit = 300 process_min_avail = 5 } service pop3 { drop_priv_before_exec = yes process_limit = 300 process_min_avail = 5 } ssl_cert = > thats very outdated, you should upgrade 2.1.x / 2.2.x latest I would like to avoid this, because the 1.2.15 is running extremely stable for a long time. (also it's the most recent version on this old squeeze-machine if not using backports) As far as I see, the virtual folders are fully supported since 1.2.x - am I wrong? What are the advantages of upgrading to 2.x? Are there security issues? Thanks! best, sebastian From d.parthey at metaways.de Tue Feb 18 19:08:44 2014 From: d.parthey at metaways.de (Daniel Parthey) Date: Tue, 18 Feb 2014 20:08:44 +0100 Subject: [Dovecot] SMTP configuration for director mail cluster In-Reply-To: <4d17689bdd24ce2ace1f786e10db5360841fd70a@webmail.westnet.com.au> References: <4d17689bdd24ce2ace1f786e10db5360841fd70a@webmail.westnet.com.au> Message-ID: <0032c547-558f-45e8-8495-b3c51be97add@email.android.com> On 18. Februar 2014 01:57:26 MEZ, Murray Trainer wrote: >HI All, >I have setup my Dovecot director proxies and Dovecot backend mail >stores.? I intend setting up several incoming and outgoing Exim >MTA's.? I am a bit confused about what I need to run on the backend >Dovecot MTA's to get the incoming mail delivered to them.? Backend needs to run dovecot lmtp service listening on a TCP port. > Do I need > to install Exim on them or use LMTP to receive mail from the MTA's? There is no need for exim on the backends Delivery can be done by lmtp. >Also, can I directly deliver mail to the mailstores or do I have to go >through the director proxies using lmtp?? You will need to go through director lmtp proxy service in order to connect to the correct backbend. Local delivery should not be used in the director setup. If you deliver locally to the wrong NFS client, you will likely corrupt your mailbox indexes on NFS. > Note that I am using >Director with the mailboxes on NFS backed storage. Regards Daniel From bane.ivosev at pmf.uns.ac.rs Tue Feb 18 21:11:55 2014 From: bane.ivosev at pmf.uns.ac.rs (Bane Ivosev) Date: Tue, 18 Feb 2014 22:11:55 +0100 Subject: [Dovecot] Problems with dovecot 2.1.7, spamassassin 3.3.2 and antispam plugin In-Reply-To: <20131121090127.GI47713@ruhr-uni-bochum.de> References: <527D6559.7000804@areyes.com> <5281457C.4040903@areyes.com> <528D0AE1.6020607@areyes.com> <528D4035.9050608@areyes.com> <528DBCB7.5000207@sys4.de> <20131121090127.GI47713@ruhr-uni-bochum.de> Message-ID: <5303CC9B.10205@pmf.uns.ac.rs> i had the same problem. solution: increase default_vsz_limit in /etc/dovecot/conf.d/10-master.conf. for me 384M did the job. On 11/21/2013 10:01 AM, Jost Krieger wrote: > On Thu Nov 21 08:56:39 2013, Robert Schetterer wrote: > >> may off topic , but you may manage spam learn ham/spam for users >> another way too, they only need simply forward mail, i use it like >> that way ,since years, it also works with sieve rules. > > The problem: Users don't (at least ours). If they need a mail, they pull > it out of the spam folder, and they use the "Junk" button in their > client, but they can't be bothered to do more. And the antispam plugin > is the only halfway effective way to automate this for all clients. > > Hint: We make the plugin send a mail and process it later. > > Yours > Jost Krieger > -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: OpenPGP digital signature URL: From alan.schmitt at polytechnique.org Tue Feb 18 22:11:56 2014 From: alan.schmitt at polytechnique.org (Alan Schmitt) Date: Tue, 18 Feb 2014 23:11:56 +0100 Subject: [Dovecot] dovecot antispam plugin not found Message-ID: Hello, I'm trying to setup dovecot-antispam, and even though the configuration and the installation seem to have gone well, dovecot is telling me it's not finding it. Here is the symptom: schmitta at top-wifi ~> /usr/local/Cellar/dovecot/2.2.10/libexec/dovecot/imap -c ~/.dovecotzimbra.rc Fatal: Plugin 'antispam' not found from directory /usr/local/Cellar/dovecot/2.2.10/lib/dovecot However there seems to be a plugin there: schmitta at top-wifi ~> ls -al /usr/local/Cellar/dovecot/2.2.10/lib/dovecot/ | grep antispam -rwxr-xr-x 1 schmitta admin 38460 18 f?v 22:40 lib90_antispam_plugin.bundle I note that it is the only plugin with the ".bundle" extension, if it's important. My configuration file is as follows (I'm not finished with the antispam configuration yet): --8<---------------cut here---------------start------------->8--- protocols = imap mail_location = maildir:~/.Maildir/zimbra:INBOX=~/.Maildir/zimbra/.INBOX default_login_user = _dovenull default_internal_user = _dovecot protocol imap { # mail_plugins = $mail_plugins antispam } protocol lda { log_path = ~/.logs/dovecot-lda-errors.log info_log_path = ~/.logs/dovecot-lda.log mail_plugins = $mail_plugins sieve } plugin { sieve = ~/.dovecot.sieve sieve_plugins = sieve_extprograms sieve_extensions = +vnd.dovecot.filter sieve_filter_bin_dir = /usr/local/lib/dovecot/sieve-filter antispam_backend = DSPAM antispam_signature = X-DSPAM-Signature } --8<---------------cut here---------------end--------------->8--- Should I do something special to be able to load the antispam plugin? Thanks, Alan From dkh at member.fsf.org Tue Feb 18 23:29:58 2014 From: dkh at member.fsf.org (Damon K. Haley) Date: Tue, 18 Feb 2014 16:29:58 -0700 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup In-Reply-To: (Alan Schmitt's message of "Fri, 14 Feb 2014 11:22:37 +0100") References: <52FBF21F.905@whyscream.net> Message-ID: >>>>> Alan Schmitt writes: > Hello Damon, > "Damon Haley" writes: >> Alan, you can use sieve with dovecot in an offline imap setup. >> >> All you have to do is compile sieve into dovecot: >> >> wget >> http://pigeonhole.dovecot.org/releases/2.2/dovecot-2.2-pigeonhole-0.4.2.tar.gz> >> untar it >> >> cd /usr/local/src/dovecot-2.2-pigeonhole-0.4.2/ >> >> ./configure --prefix=/usr/local/Cellar/pigeonhole/0.4.0 >> --with-dovecot=/usr/local/opt/dovecot/lib/dovecot make && make install >> >> I did this on a Macbook with dovecot installed from hombrew. >> >> Whenever imap process is launched by my mail client it automatically sorts >> my INBOX based on sieve rules. > I gave this a try, following the documentation from > http://wiki2.dovecot.org/Pigeonhole/Sieve/Configuration > Unfortunately I have an error: > ,---- > | Establishing connection to tunnel:/usr/local/Cellar/dovecot/2.2.10/libexec/dovecot/imap -c ~/.dovecotzimbra.rc > | Error: Can't load plugin sieve_plugin: Plugin is intended to be used only by binaries: lda lmtp (we're imap) > | Fatal: Couldn't load required plugins > `---- > This is the configuration file I tried: > protocols = imap > mail_location = maildir:~/.Maildir/zimbra:INBOX=~/.Maildir/zimbra/.INBOX > mail_plugins = $mail_plugins sieve > plugin { > sieve = ~/.dovecot.sieve > sieve_dir = ~/.sieve > } > The documentation says that one can only use the plugin with lda or > lmtp. How do you use it with imap? Anna, I use lda. Here are my relevant config files: https://github.com/dhaley/feedyourbaby/blob/master/conf.d/15-lda.conf https://github.com/dhaley/feedyourbaby/blob/master/conf.d/90-sieve.conf Hopefully that helps, although I'm guessing you've already figured it out. Damon From bojan at rexursive.com Wed Feb 19 01:02:53 2014 From: bojan at rexursive.com (Bojan Smojver) Date: Wed, 19 Feb 2014 12:02:53 +1100 Subject: [Dovecot] Index corruption with 2.2.12 when moving a message Message-ID: <1392771773.19579.6.camel@shrek.rexursive.com> Just bumped into this today, when I upgraded to a testing package in Fedora: https://admin.fedoraproject.org/updates/FEDORA-2014-2672/dovecot-2.2.12-1.fc20 For details, see this bug: https://bugzilla.redhat.com/show_bug.cgi?id=1066709 Haven't seen this kind of thing before. Sure, it worked the second time I tried to move the message to another folder (I'm guessing index got rebuilt or something), but still, looks suspicious. Anyway, I'm using mbox format mailboxes, if it matters. Client was Gnome Evolution 3.10.4. -- Bojan From me at junc.eu Wed Feb 19 01:52:02 2014 From: me at junc.eu (Benny Pedersen) Date: Wed, 19 Feb 2014 02:52:02 +0100 Subject: [Dovecot] =?utf-8?q?Virtual_folder_for_selected_users_only=3F_=28?= =?utf-8?b?MS4yLjE1KQ==?= In-Reply-To: <53036001.9030609@sys4.de> References: <002801cf2ca6$ed5779c0$c8066d40$@bergschaf.net> <53036001.9030609@sys4.de> Message-ID: <0a133f7930acfcbce838b19b783ad6a3@junc.eu> On 2014-02-18 14:28, Robert Schetterer wrote: > Am 18.02.2014 13:42, schrieb Sebastian Sch?fer: >> dovecot --version >> 1.2.15 > thats very outdated, you should upgrade 2.1.x / 2.2.x latest outdated ?, well its still very stable here on gentoo, and upgradeing is not just emerge dovecot, this is why i keep 1.2.17 self here From dave.mehler at gmail.com Wed Feb 19 03:29:11 2014 From: dave.mehler at gmail.com (David Mehler) Date: Tue, 18 Feb 2014 22:29:11 -0500 Subject: [Dovecot] Dovecot, mysql, and quota Message-ID: Hello, I'm running dovecot 2.2 and wanting to get quotas going. I've got the plugins loaded appropriately and am wanting to configure a dictionary backend to talk to my mysql database. I've got a single database called mail which has all the mail-related items in it. One table is for virtual users which postfix uses. It looks like this: CREATE TABLE `virtual_users` ( `id` int(11) NOT NULL auto_increment, `domain_id` int(11) NOT NULL, `password` varchar(128) NOT NULL, `email` varchar(100) NOT NULL, PRIMARY KEY (`id`), UNIQUE KEY `email` (`email`), FOREIGN KEY (domain_id) REFERENCES virtual_domains(id) ON DELETE CASCADE ) ENGINE=InnoDB DEFAULT CHARSET=utf8; and a user looks like: INSERT INTO `mail`.`virtual_users` ( `id` , `domain_id` , `password` , `email` ) VALUES ( '1', '1', SHA2( 'PasswordGoesHere', 512) , 'username at domain.com' ); plugin { # SQL backend: quota = dict:User quota::proxy::sqlquota } dict { sqlquota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext } Now when creating the quota table i'd like to have the username field linked to my virtual_users table username field, so I don't have to set up two tables both with the same username information in it. Can someone check me on this design so that if I delete a virtual user out of the virtual_users table the coresponding row in the quota table is also eliminated? My second question has to do with global and per user quotas. If I have something like this: CREATE TABLE quota ( username varchar(100) not null, bytes bigint not null default 262144, messages integer not null default 0, primary key (username) ); 256MB for all users by default, but then if I give a user a 100MB value in the bytes field of their quota entry would that be a per-user quota? Thanks. Dave. From gedalya at gedalya.net Wed Feb 19 03:51:36 2014 From: gedalya at gedalya.net (Gedalya) Date: Tue, 18 Feb 2014 22:51:36 -0500 Subject: [Dovecot] Dovecot, mysql, and quota In-Reply-To: References: Message-ID: <53042A48.20809@gedalya.net> On 02/18/2014 10:29 PM, David Mehler wrote: > > Can someone check me on this design so that if I delete a virtual user out > of the virtual_users table the coresponding row in the quota table is > also eliminated? That's a purely MySQL question. Try something like CREATE TABLE quota ( username varchar(100) not null, bytes bigint not null default 262144, messages integer not null default 0, primary key (username) CONSTRAINT `username_virtual_users` FOREIGN KEY (`username`) REFERENCES `virtual_users` (`email`) ON DELETE CASCADE ); (Check that, don't just copy and paste..) > > My second question has to do with global and per user quotas. If I > have something like this: > > CREATE TABLE quota ( > username varchar(100) not null, > bytes bigint not null default 262144, > messages integer not null default 0, > primary key (username) > ); > > 256MB for all users by default, but then if I give a user a 100MB > value in the bytes field of their quota entry would that be a per-user > quota? dovecot stores the bytes currently used in the bytes column. Do not set a default value, or just make it zero!!! This table does not hold the allocated quota size, only the used storage space. Update your passdb / userdb queries to return a quota size, presumably from your virtual_users table. password_query = SELECT password, \ concat('*:storage=', quota_bytes) as userdb_quota_rule, \ FROM ........ user_query = SELECT concat('*:storage=', quota_bytes) as quota_rule, \ FROM .... Personally I prefer to store the value in megabytes, and use concat('*:storage=', quota_mb, 'M') as quota_rule From skdovecot at smail.inf.fh-brs.de Wed Feb 19 07:11:49 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 19 Feb 2014 08:11:49 +0100 (CET) Subject: [Dovecot] Virtual folder for selected users only? (1.2.15) In-Reply-To: <02b801cf2cd7$7275b060$57611120$@bergschaf.net> References: <02b801cf2cd7$7275b060$57611120$@bergschaf.net> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 18 Feb 2014, Sebastian Sch?fer wrote: About your original question: IMHO, userdb extra fields are the only way to do something for "selected users only", see http://wiki2.dovecot.org/UserDatabase/ExtraFields . That way you need no mail-path variable, because you configure the settings on a per-user basis. Search the list for how to specify one particular namespace and how to enable that namespace from Extra Fields. Ah, I did remembered there was a thread, search for: Sept/07/2011 Marcin Miros?aw [Dovecot] Problem with configuring dovecot to take namespaces from database There will be other questions answered by Timo about his topic. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwRZNnD1/YhP6VMHAQLVSwf/R7x3PX9bsNPZnBt9+BuNcOROwVAFyygd 88Kz/o6qQ1+0bWKj7MtUqhbgdC83TFR7FlycjfgHqSzFHWNAkDzF4QY3qEG9yqO2 Y0bjRDn2/aBv2Yx8Dn5TuiEl/I+tQ+bzr0VjTDG1wWwHYf0WtiFbWWtuiWKtH5Bc 7Pxrqa6letT7F9chwYge/WTQiTYnQ53xAt5+5753bbnfEubG9/C+qeDasnBi8J83 0jlsDiTsHbsWx/M3R+EqYqHaUNxWQSa0Ud97jDxsxIbox7nmQPwyXSgHmF8cZ0Or yXfy6yiRveW1Noq0hexjQkihoX+cMs4d7t0XC7XuOE9WsaBA0RNmWQ== =6Hn7 -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Wed Feb 19 07:28:12 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 19 Feb 2014 08:28:12 +0100 (CET) Subject: [Dovecot] dovecot antispam plugin not found In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 18 Feb 2014, Alan Schmitt wrote: > I'm trying to setup dovecot-antispam, and even though the configuration > and the installation seem to have gone well, dovecot is telling me it's > not finding it. > > schmitta at top-wifi ~> /usr/local/Cellar/dovecot/2.2.10/libexec/dovecot/imap -c ~/.dovecotzimbra.rc > Fatal: Plugin 'antispam' not found from directory /usr/local/Cellar/dovecot/2.2.10/lib/dovecot You are not running a full Dovecot install, so doveconf -n is not working? > schmitta at top-wifi ~> ls -al /usr/local/Cellar/dovecot/2.2.10/lib/dovecot/ | grep antispam > -rwxr-xr-x 1 schmitta admin 38460 18 f?v 22:40 lib90_antispam_plugin.bundle > > I note that it is the only plugin with the ".bundle" extension, if it's > important. what OS is this? Did you've seen some like this: make install Entering directory src. Leaving directory src. Entering directory doc. Leaving directory doc. Entering directory src. Successfully installed lib90_antispam_plugin.so. Leaving directory src. Entering directory doc. Successfully installed dovecot-antispam.7. Leaving directory doc. Does build.mk contain "LIB_SUFFIX=.bundle" ? What happens if you rename lib90_antispam_plugin.bundle to whatever the other plugins are named? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwRdDXD1/YhP6VMHAQLSkQgA5/PbRq61vkfmZ7MYgn1ObAQxjj421px4 wvEMcMw2dt2tO9pPKiqUJj5Xkj/QnUA1hU13vgdp++0lOQFPTjo2H/t7WsO9tYhX gi6sE7DoUnOGVQDIWP25IT+u3o8Z7zhDZ0hqMc8CW6gftN7AqRW04x6Jj59exVQQ Vtm00UXwJo9jQwb5HLZ2q4OY0eFVaujJFSHXsDYzv0Bh+38rNuSnAGMECwEBRwUa mgK7igeRcA5t8ejfL4TBv3fcrp2KfMISC6X5s7CEH3Aw39SDRP1F95K0MDeLG/7d OobE82iNMzNfI4PL5G4plXwMNcBzZJZOZ+JYrjAzbSy3VS/GxQP29Q== =d3fo -----END PGP SIGNATURE----- From amateo at um.es Wed Feb 19 07:49:50 2014 From: amateo at um.es (Angel L. Mateo) Date: Wed, 19 Feb 2014 08:49:50 +0100 Subject: [Dovecot] failed: Message has been copied too many times In-Reply-To: <5278F9B7.5020208@ehu.es> References: <5268F864.8030800@um.es> <5268F941.9040908@um.es> <526E325F.7000308@um.es> <5272749B.1050201@ehu.es> <5278A807.80209@um.es> <5278F9B7.5020208@ehu.es> Message-ID: <5304621E.1060801@um.es> El 05/11/13 14:59, Joseba Torre escribi?: > El 05/11/13 09:10, Angel L. Mateo escribi?: >> El 31/10/13 16:17, Joseba Torre escribi?: >>> >>> Are you sure it's dovecot who is duplicating emails? I have seen this >> >> No, I'm not sure. >> >>> before (not so many copies, but the same effect) and I've always thought >>> it was a thunderbird thing (in every case I've seen the client was >>> thunderbird, and I think your users also use it). >>> >> It could be the reason. My users are using thunderbird and this >> problem always happened with users with lot of automatic mails in a >> mailbox, so the could be trying to delete them (although I told to some >> of them and they told me that they didn't, but you know...) >> > > In my personal case, it happens every now and then without any external > activity, and definetly without any manual deleting (may be it's related > to automatic filtering?) > After a few more cases I'm almost surely that the problem is with thunderbird filters (when a filter has to move a lot of messages from inbox folder to another one). -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci?n y las Comunicaciones Aplicadas (ATICA) http://www.um.es/atica Tfo: 868887590 Fax: 868888337 From alan.schmitt at polytechnique.org Wed Feb 19 09:05:46 2014 From: alan.schmitt at polytechnique.org (Alan Schmitt) Date: Wed, 19 Feb 2014 10:05:46 +0100 Subject: [Dovecot] [Solved] Re: dovecot antispam plugin not found In-Reply-To: (Steffen Kaiser's message of "Wed, 19 Feb 2014 08:28:12 +0100 (CET)") References: Message-ID: Hello Steffen, Long story short: changing the plugin extension worked, thanks! Now for the details ... Steffen Kaiser writes: > On Tue, 18 Feb 2014, Alan Schmitt wrote: > >> I'm trying to setup dovecot-antispam, and even though the configuration >> and the installation seem to have gone well, dovecot is telling me it's >> not finding it. >> >> schmitta at top-wifi ~> /usr/local/Cellar/dovecot/2.2.10/libexec/dovecot/imap -c ~/.dovecotzimbra.rc >> Fatal: Plugin 'antispam' not found from directory /usr/local/Cellar/dovecot/2.2.10/lib/dovecot > > You are not running a full Dovecot install, so doveconf -n is not > working? doveconf -n is working: --8<---------------cut here---------------start------------->8--- schmitta at top-wifi ~> doveconf -c ~/.dovecotzimbra.rc -n # 2.2.10: /Users/schmitta/.dovecotzimbra.rc # OS: Darwin 13.0.0 x86_64 default_internal_user = _dovecot default_login_user = _dovenull mail_location = maildir:~/.Maildir/zimbra:INBOX=~/.Maildir/zimbra/.INBOX managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave vnd.dovecot.filter plugin { antispam_backend = DSPAM antispam_signature = X-DSPAM-Signature sieve = ~/.dovecot.sieve sieve_extensions = +vnd.dovecot.filter sieve_filter_bin_dir = /usr/local/lib/dovecot/sieve-filter sieve_plugins = sieve_extprograms } protocols = imap protocol imap { mail_plugins = " antispam" } protocol lda { info_log_path = ~/.logs/dovecot-lda.log log_path = ~/.logs/dovecot-lda-errors.log mail_plugins = " sieve" } --8<---------------cut here---------------end--------------->8--- >> schmitta at top-wifi ~> ls -al /usr/local/Cellar/dovecot/2.2.10/lib/dovecot/ | grep antispam >> -rwxr-xr-x 1 schmitta admin 38460 18 f?v 22:40 lib90_antispam_plugin.bundle >> >> I note that it is the only plugin with the ".bundle" extension, if it's >> important. > > what OS is this? OS X 10.9.1 > Did you've seen some like this: > > make install > Entering directory src. > Leaving directory src. > Entering directory doc. > Leaving directory doc. > Entering directory src. > Successfully installed lib90_antispam_plugin.so. > Leaving directory src. > Entering directory doc. > Successfully installed dovecot-antispam.7. > Leaving directory doc. Almost (the extension of the plugin was different): --8<---------------cut here---------------start------------->8--- schmitta at top-wifi ~/s/dovecot-antispam-plugin> make install Entering directory src. Leaving directory src. Entering directory doc. Leaving directory doc. Entering directory src. Successfully installed lib90_antispam_plugin.bundle. Leaving directory src. Entering directory doc. Successfully installed dovecot-antispam.7. Leaving directory doc. --8<---------------cut here---------------end--------------->8--- > Does build.mk contain "LIB_SUFFIX=.bundle" ? No. I don't have a "build.mk" but a "buildsys.mk", and it has the following regarding LIB_SUFFIX: --8<---------------cut here---------------start------------->8--- schmitta at top-wifi ~/s/dovecot-antispam-plugin> grep LIB_SUFFIX buildsys.mk LIB_SUFFIX = .dylib --8<---------------cut here---------------end--------------->8--- > What happens if you rename lib90_antispam_plugin.bundle to whatever the > other plugins are named? That was it! Renaming to ".dylib" did nothing, but renaming to ".so" worked (insofar as the plugin loaded, I'm getting the expected error that antispam plugin folders are not configured). Where should I report this building issue? Is there an antispam bug tracker? Thanks again, Alan From h.reindl at thelounge.net Wed Feb 19 09:45:13 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 19 Feb 2014 10:45:13 +0100 Subject: [Dovecot] Virtual folder for selected users only? (1.2.15) In-Reply-To: <0a133f7930acfcbce838b19b783ad6a3@junc.eu> References: <002801cf2ca6$ed5779c0$c8066d40$@bergschaf.net> <53036001.9030609@sys4.de> <0a133f7930acfcbce838b19b783ad6a3@junc.eu> Message-ID: <53047D29.4010608@thelounge.net> Am 19.02.2014 02:52, schrieb Benny Pedersen: > On 2014-02-18 14:28, Robert Schetterer wrote: >> Am 18.02.2014 13:42, schrieb Sebastian Sch?fer: >>> dovecot --version >>> 1.2.15 > >> thats very outdated, you should upgrade 2.1.x / 2.2.x latest > > outdated?, well its still very stable here on gentoo, > and upgradeing is not just emerge dovecot, this is why i > keep 1.2.17 self here can you stop that again and again? * it IS outdated at all * it IS outdated even if we speak about 1.2.x -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From skdovecot at smail.inf.fh-brs.de Wed Feb 19 09:52:07 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 19 Feb 2014 10:52:07 +0100 (CET) Subject: [Dovecot] BUG antispam build chain uses wrong extension for plugin (was Re: [Solved] Re: dovecot antispam plugin not found) In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 19 Feb 2014, Alan Schmitt wrote: > # 2.2.10: /Users/schmitta/.dovecotzimbra.rc > # OS: Darwin 13.0.0 x86_64 > --8<---------------cut here---------------start------------->8--- > schmitta at top-wifi ~/s/dovecot-antispam-plugin> make install > Entering directory src. > Leaving directory src. > Entering directory doc. > Leaving directory doc. > Entering directory src. > Successfully installed lib90_antispam_plugin.bundle. > Leaving directory src. > Entering directory doc. > Successfully installed dovecot-antispam.7. > Leaving directory doc. > --8<---------------cut here---------------end--------------->8--- > > --8<---------------cut here---------------start------------->8--- > schmitta at top-wifi ~/s/dovecot-antispam-plugin> grep LIB_SUFFIX buildsys.mk > LIB_SUFFIX = .dylib > --8<---------------cut here---------------end--------------->8--- > >> What happens if you rename lib90_antispam_plugin.bundle to whatever the >> other plugins are named? > > That was it! Renaming to ".dylib" did nothing, but renaming to ".so" > worked (insofar as the plugin loaded, I'm getting the expected error > that antispam plugin folders are not configured). > > Where should I report this building issue? Is there an antispam bug > tracker? Let's post it here with "BUG antispam" subject :-) - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwR+x3D1/YhP6VMHAQIF4AgAgPVwA/U7mKmhW/7ryMYP0HIekYJEv+UB MOAtgDpBEARLBAwMv2BVwk9XFvlzuhT8TrhSz0eGMxEvpYAG01nlVGt1/jgAfRWa aozBWiGWVSfnU+Smw9U3OO0fd4hof1lz7odAgP82R3r+xvuslhSlmAG0G/zaP9SN qtCn94Nf2Aa2dXqdUydzdDKygStKQ5Okm+L2ML/EhCfM0RZzil6J0lfKylJDOJ04 sNpd0tcr0hvUCpaqwLegqgTUukWrOtdiZv9MscxFlb53HhA2IehgJsyFeAAPlsen V7fd6huyQJRnbF9uBLeMQ24k+3wKiX5xkPPp3upncwwTlHweV/l2QA== =+eBD -----END PGP SIGNATURE----- From alan.schmitt at polytechnique.org Wed Feb 19 11:20:18 2014 From: alan.schmitt at polytechnique.org (Alan Schmitt) Date: Wed, 19 Feb 2014 12:20:18 +0100 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup In-Reply-To: (Damon K. Haley's message of "Tue, 18 Feb 2014 16:29:58 -0700") References: <52FBF21F.905@whyscream.net> Message-ID: Hi Damon, dkh at member.fsf.org (Damon K. Haley) writes: > Here are my relevant config files: > > https://github.com/dhaley/feedyourbaby/blob/master/conf.d/15-lda.conf > https://github.com/dhaley/feedyourbaby/blob/master/conf.d/90-sieve.conf > > Hopefully that helps, although I'm guessing you've already figured it > out. Thanks. I found out how to call dovecot as a lda from fetchmail, but could not see how to do it from offlineimap. So I'm now using the following architecture, which works well in practice but is a little bit complex. #+begin_example +------------+ +-----------+ imap sync +----------+ +----------------+ |mail clients|-----|remote imap|----------------------|local imap|------| mail clients | |(webmail, | +-----------+ (offlineimap) |(dovecot) | |(gnus, Mail.app)| | smartphone)| | +----------+ +----------------+ +------------+ V ^ | | fetch mail and filter it | | \______________________________/ | (fetchmail + dovecot lda) | | +------------+ +---------------+ |mail storage|-----| mail indexing | | (maildir) | | (notmuch) | +------------+ +---------------+ #+end_example Alan From rs at sys4.de Wed Feb 19 11:38:30 2014 From: rs at sys4.de (Robert Schetterer) Date: Wed, 19 Feb 2014 12:38:30 +0100 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup In-Reply-To: References: <52FBF21F.905@whyscream.net> Message-ID: <530497B6.1030109@sys4.de> Am 19.02.2014 12:20, schrieb Alan Schmitt: > Hi Damon, > > dkh at member.fsf.org (Damon K. Haley) writes: > >> Here are my relevant config files: >> >> https://github.com/dhaley/feedyourbaby/blob/master/conf.d/15-lda.conf >> https://github.com/dhaley/feedyourbaby/blob/master/conf.d/90-sieve.conf >> >> Hopefully that helps, although I'm guessing you've already figured it >> out. > > Thanks. I found out how to call dovecot as a lda from fetchmail, but > could not see how to do it from offlineimap. So I'm now using the > following architecture, which works well in practice but is a little bit > complex. > > #+begin_example > +------------+ +-----------+ imap sync +----------+ +----------------+ > |mail clients|-----|remote imap|----------------------|local imap|------| mail clients | > |(webmail, | +-----------+ (offlineimap) |(dovecot) | |(gnus, Mail.app)| > | smartphone)| | +----------+ +----------------+ > +------------+ V ^ | > | fetch mail and filter it | | > \______________________________/ | > (fetchmail + dovecot lda) | > | > +------------+ +---------------+ > |mail storage|-----| mail indexing | > | (maildir) | | (notmuch) | > +------------+ +---------------+ > #+end_example > > Alan > guess not what you want but using getmail maybe more easy i.e like https://sys4.de/de/blog/2013/04/12/abholdienst-fur-mail/ Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From alan.schmitt at polytechnique.org Wed Feb 19 13:05:51 2014 From: alan.schmitt at polytechnique.org (Alan Schmitt) Date: Wed, 19 Feb 2014 14:05:51 +0100 Subject: [Dovecot] Filtering spam in an offlineimap + dovecot setup In-Reply-To: <530497B6.1030109@sys4.de> (Robert Schetterer's message of "Wed, 19 Feb 2014 12:38:30 +0100") References: <52FBF21F.905@whyscream.net> <530497B6.1030109@sys4.de> Message-ID: Hi Robert, Robert Schetterer writes: > guess not what you want but > using getmail maybe more easy > > i.e like > > https://sys4.de/de/blog/2013/04/12/abholdienst-fur-mail/ Thank you for the suggestion. It seems like using getmail would allow me to avoid needing the extprograms pigeonhole plugin. Another nice thing is that it does not need to have the IMAP password in clear text. I'll definitely give it a try. Alan From jernej.porenta at arnes.si Wed Feb 19 13:15:47 2014 From: jernej.porenta at arnes.si (Jernej Porenta) Date: Wed, 19 Feb 2014 14:15:47 +0100 Subject: [Dovecot] ID command and dovecot Message-ID: <5304AE83.8060100@arnes.si> Heya, we are seeing some strange issues with IMAP ID command using latest Roundcube builds on dovecot 2.2.10 responding "Input buffer full, aborting". Roundcube webmail connects to IMAP server and issues ID command first with some long arguments to ID command, however shorter than 1024 octets, which are specified in RFC2971 for ID IMAP extension. The situation is easily reproducible (see http://pastebin.com/q4HX4wqb): # telnet hostname 143 * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN] Server ready. . ID ("name" "Roundcube" "version" "1.0-git" "php" "5.3.3" "os" "Linux" "command" "<$long_less_than_1024_octets_string>") * BYE Input buffer full, aborting However, this problem does not occur when user is already logged in. RFC2971 is saying "Field strings MUST NOT be longer than 30 octets. Value strings MUST NOT be longer than 1024 octets. Implementations MUST NOT send more than 30 field-value pairs." IMHO, dovecot is handling ID command before successful login successfully only if the length of the whole command is less than 1024 octets (exactly 861 octets is working fine, over that "Input buffer full" occurs). I tried finding the reference in the source code, however I am unable to find where this limit actually occurs (maybe IMAP_ARG_STRING imap_arg->type?) thank you in advance, regards, Jernej From CMarcus at Media-Brokers.com Wed Feb 19 13:24:41 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 19 Feb 2014 08:24:41 -0500 Subject: [Dovecot] Use header from instead envelope sender - quota exceed In-Reply-To: <1392727447089-46819.post@n4.nabble.com> References: <1392727447089-46819.post@n4.nabble.com> Message-ID: <5304B099.3040402@Media-Brokers.com> On 2014-02-18 7:44 AM, pgala wrote: > i want use dovecot and plugin quota to inform users about exceeded space. I > also configure postfix to rewrite envelope_sender so > envelope_sender<>header: from. Not sure I understand this, but if you are saying what I think you are saying, why on earth would you do this? This totally BREAKS smtp. The null envelope sender is used for very specific reasons, and you simply should NEVER rewrite it, unless you have a very special use case and know precisely what you are doing and why. From h.reindl at thelounge.net Wed Feb 19 13:48:13 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 19 Feb 2014 14:48:13 +0100 Subject: [Dovecot] Use header from instead envelope sender - quota exceed In-Reply-To: <5304B099.3040402@Media-Brokers.com> References: <1392727447089-46819.post@n4.nabble.com> <5304B099.3040402@Media-Brokers.com> Message-ID: <5304B61D.1040307@thelounge.net> Am 19.02.2014 14:24, schrieb Charles Marcus: > On 2014-02-18 7:44 AM, pgala wrote: >> i want use dovecot and plugin quota to inform users about exceeded space. I >> also configure postfix to rewrite envelope_sender so >> envelope_sender<>header: from. > > Not sure I understand this, but if you are saying what I think you are saying, why on earth would you do this? This > totally BREAKS smtp. > > The null envelope sender is used for very specific reasons he does not talk about the null envelope he tries to send back to the not relevant from-header and ignore the envelope-sender which is not much better ____________________________ do not violate SMTP there is a reason that the return path exists instead break RFCs please do yourself and any other mailuser on this earth which maybe randomly affected by your misconfigurations a favour and read documentations mailservers are a dangerous playground -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From mailinglists at easy-mail.it Wed Feb 19 16:33:13 2014 From: mailinglists at easy-mail.it (Francesco) Date: Wed, 19 Feb 2014 17:33:13 +0100 Subject: [Dovecot] virtualfolders all mails minus duplicates Message-ID: <1392827593.22056.15.camel@secoges-laptop> Hello everyone, i'm trying to mess up a bit with virtual folders and i'm trying to perform something like this: i'd like to create an IMAP virtual folder which shows me all the emails in in INBOX and subfolders but by removing "duplicates" what i mean as duplicates? simply i can recognize duplicate emails as the ones with the same message-id in the header (this was just an idea). in that way if i have a message which is present in more then one folder then it's displayed only once. i considered the idea of using message-id in the header as a criteria, but i don't know if this can be done in this way or in any way at all. any suggestion is really welcome. i'm using dovecot 1.2.15. this is a namespace example just for reference: for INBOX: namespace private { separator = . prefix = INBOX. #subscriptions = yes #list = no inbox = yes } for virtuals: namespace private { prefix = v. separator = . location = virtual:/var/utenti/%Ld/%n/VirtualFolders list = yes inbox = no subscriptions = yes hidden = no } as of now i'm running a virtualfolder which shows messages flagged as important which is done like this: INBOX INBOX.* all flagged hope you can provide me with some hints. Thanks very much Francesco From rs at sys4.de Wed Feb 19 16:58:51 2014 From: rs at sys4.de (Robert Schetterer) Date: Wed, 19 Feb 2014 17:58:51 +0100 Subject: [Dovecot] virtualfolders all mails minus duplicates In-Reply-To: <1392827593.22056.15.camel@secoges-laptop> References: <1392827593.22056.15.camel@secoges-laptop> Message-ID: <5304E2CB.9030306@sys4.de> Am 19.02.2014 17:33, schrieb Francesco: > Hello everyone, > i'm trying to mess up a bit with virtual folders and i'm trying to > perform something like this: > > i'd like to create an IMAP virtual folder which shows me all the emails > in in INBOX and subfolders but by removing "duplicates" > > what i mean as duplicates? simply i can recognize duplicate emails as > the ones with the same message-id in the header (this was just an idea). > > in that way if i have a message which is present in more then one folder > then it's displayed only once. > > i considered the idea of using message-id in the header as a criteria, > but i don't know if this can be done in this way or in any way at all. > > any suggestion is really welcome. > > i'm using dovecot 1.2.15. > > this is a namespace example just for reference: > > for INBOX: > namespace private { > separator = . > prefix = INBOX. > #subscriptions = yes > #list = no > inbox = yes > } > > for virtuals: > namespace private { > prefix = v. > separator = . > location = virtual:/var/utenti/%Ld/%n/VirtualFolders > list = yes > inbox = no > subscriptions = yes > hidden = no > } > > as of now i'm running a virtualfolder which shows messages flagged as > important which is done like this: > > INBOX > INBOX.* > all flagged > > hope you can provide me with some hints. > > Thanks very much > Francesco > not really the same but for pop3 cons which should "see" global sieve prefiltered spam mails in Imap Junk Folder https://sys4.de/de/blog/2013/02/11/dovecot-virtual-setup-mit-globaler-sieve-spamfilter-regel-fur-pop3-nutzer/ sorry german ,but config might give you ideas how to solve your stuff Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From aellert at numeezy.com Wed Feb 19 21:24:08 2014 From: aellert at numeezy.com (Alexandre Ellert) Date: Wed, 19 Feb 2014 22:24:08 +0100 Subject: [Dovecot] Enable mail logger plugin Message-ID: Hello, I'm trying to get more info about user activity (especially when they delete some email). So, I follow info from http://wiki2.dovecot.org/Plugins/MailLog to enabled mail logger plugin, but I don't see anything in my logs. Can you tell me what I'm missing ? Thanks. # doveconf -n # 2.2.10.3: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4 auth_mechanisms = plain login base_dir = /var/run/dovecot/ hostname = mail.numeezy.com imap_capability = +XLIST lda_mailbox_autocreate = yes listen = 188.165.154.169 login_greeting = Ready. mail_gid = 5000 mail_location = maildir:/var/vmail/%d/%n/Maildir mail_plugins = quota mail_log notify mail_privileged_group = mail mail_uid = 5000 namespace inbox { inbox = yes location = mailbox Drafts { auto = subscribe special_use = \Drafts } mailbox Junk { auto = subscribe special_use = \Junk } mailbox Sent { auto = subscribe special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { auto = subscribe special_use = \Trash } mailbox name { special_use = \Drafts \Junk \Sent \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf driver = sql } plugin { antispam_backend = mailtrain antispam_mail_notspam = --ham antispam_mail_sendmail = /usr/local/bin/sa-learn-pipe.sh antispam_mail_spam = --spam antispam_spam = Junk antispam_trash = Trash mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size quota = dict:user::file:/var/vmail/%d/%n/.quotausage quota_grace = 10%% quota_rule = Trash:storage=+200M quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u sieve = /var/vmail/%d/%n/.sieve sieve_before = /etc/dovecot/sieve_before sieve_vacation_send_from_recipient = yes } postmaster_address = postmaster at numeezy.com protocols = imap pop3 service auth-worker { user = vmail } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } user = dovecot } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } service_count = 1 } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } service_count = 1 } service quota-warning { executable = script /usr/local/bin/quota-warning.sh unix_listener quota-warning { mode = 0666 user = vmail } user = vmail } ssl_cert = References: Message-ID: <53053DED.2010802@myzel.net> Am 2014-02-19 22:24, schrieb Alexandre Ellert: > Hello, > > I'm trying to get more info about user activity (especially when they delete some email). > So, I follow info from http://wiki2.dovecot.org/Plugins/MailLog to enabled mail logger plugin, but I don't see anything in my logs. > > Can you tell me what I'm missing ? > > Thanks. It is quite tough to read through such a long config. Skimming through though, and I am not an expert at all, it looks like your mail_plugins line comes in front of other mail_plugins lines. Maybe the later ones override yours? In /etc/dovecot/local.conf I have > mail_plugins = $mail_plugins mail_log notify and this works nicely, maybe because local.conf will be executed after the other config files? (That line also keeps the previously requested ones?) > > # doveconf -n > # 2.2.10.3: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4 > auth_mechanisms = plain login > base_dir = /var/run/dovecot/ > hostname = mail.numeezy.com > imap_capability = +XLIST > lda_mailbox_autocreate = yes > listen = 188.165.154.169 > login_greeting = Ready. > mail_gid = 5000 > mail_location = maildir:/var/vmail/%d/%n/Maildir > mail_plugins = quota mail_log notify > mail_privileged_group = mail > mail_uid = 5000 > namespace inbox { > inbox = yes > location = > mailbox Drafts { > auto = subscribe > special_use = \Drafts > } > mailbox Junk { > auto = subscribe > special_use = \Junk > } > mailbox Sent { > auto = subscribe > special_use = \Sent > } > mailbox "Sent Messages" { > special_use = \Sent > } > mailbox Trash { > auto = subscribe > special_use = \Trash > } > mailbox name { > special_use = \Drafts \Junk \Sent \Trash > } > prefix = > } > passdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > plugin { > antispam_backend = mailtrain > antispam_mail_notspam = --ham > antispam_mail_sendmail = /usr/local/bin/sa-learn-pipe.sh > antispam_mail_spam = --spam > antispam_spam = Junk > antispam_trash = Trash > mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename > mail_log_fields = uid box msgid size > quota = dict:user::file:/var/vmail/%d/%n/.quotausage > quota_grace = 10%% > quota_rule = Trash:storage=+200M > quota_warning = storage=95%% quota-warning 95 %u > quota_warning2 = storage=80%% quota-warning 80 %u > sieve = /var/vmail/%d/%n/.sieve > sieve_before = /etc/dovecot/sieve_before > sieve_vacation_send_from_recipient = yes > } > postmaster_address = postmaster at numeezy.com > protocols = imap pop3 > service auth-worker { > user = vmail > } > service auth { > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0660 > user = postfix > } > unix_listener auth-userdb { > group = vmail > mode = 0600 > user = vmail > } > user = dovecot > } > service imap-login { > inet_listener imap { > port = 143 > } > inet_listener imaps { > port = 993 > ssl = yes > } > service_count = 1 > } > service pop3-login { > inet_listener pop3 { > port = 110 > } > inet_listener pop3s { > port = 995 > ssl = yes > } > service_count = 1 > } > service quota-warning { > executable = script /usr/local/bin/quota-warning.sh > unix_listener quota-warning { > mode = 0666 > user = vmail > } > user = vmail > } > ssl_cert = ssl_key = userdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > protocol lda { > mail_plugins = sieve quota > } > protocol imap { > mail_max_userip_connections = 80 > mail_plugins = quota imap_quota antispam > } > protocol pop3 { > mail_max_userip_connections = 30 > mail_plugins = quota > } > -- peter From jthompson at dmevolve.com Thu Feb 20 04:03:05 2014 From: jthompson at dmevolve.com (Jon Thompson) Date: Wed, 19 Feb 2014 22:03:05 -0600 Subject: [Dovecot] Bug Report In-Reply-To: <53029992.3050408@thelounge.net> References: <68BDBCB3-1A2D-43F4-81C4-BD5C390C9F93@dmevolve.com> <53029992.3050408@thelounge.net> Message-ID: Since I?m obviously using version 2.2.5, which is apparently a supported version by dovecot, I?d still maintain that it should be submitted as a bug. I?ve also submitted the bug to Apple as well. Regardless, has anyone compiled a drop-in update that supports Apple Push Notifications, Sieve, and Open Directory? I?m trying to, but the first two are causing my configuration files to fail. -- - Jon On Feb 17, 2014, at 5:21 PM, Reindl Harald wrote: > since you are obviously using the binary shipped with > Mac OSX and packaged by Apple Inc. which is heavily > outdated while current dovecot is version 2.2.12 > you may complain to Apple Inc. > > Am 18.02.2014 00:19, schrieb Jon Thompson: >> So when I try and create a sub mailbox in shared-folders, I get this error? >> >> imap(pid 56143 user -----): Fatal: master: service(imap): child 56143 killed with signal 11 (core dumps disabled) >> >> I?ve not been able to figure out how to get dovecot in OS X to core dump, so I haven?t included that. The documentation on the web doesn?t seem to apply to the version Apple ships. >> >> Here?s dovecotd -n, with the ssl certs removed and the domain replaced with the word domain. >> # 2.2.5: /Library/Server/Mail/Config/dovecot/dovecot.conf > > From kamath at moltingpenguin.com Thu Feb 20 05:48:08 2014 From: kamath at moltingpenguin.com (Sean Kamath) Date: Wed, 19 Feb 2014 21:48:08 -0800 Subject: [Dovecot] Enable mail logger plugin In-Reply-To: References: Message-ID: On Feb 19, 2014, at 1:24 PM, Alexandre Ellert wrote: > Hello, > > I'm trying to get more info about user activity (especially when they delete some email). > So, I follow info from http://wiki2.dovecot.org/Plugins/MailLog to enabled mail logger plugin, but I don't see anything in my logs. > > Can you tell me what I'm missing ? > > Thanks. > > # doveconf -n > ... > mail_location = maildir:/var/vmail/%d/%n/Maildir > mail_plugins = quota mail_log notify > mail_privileged_group = mail > mail_uid = 5000 > ... > protocol imap { > mail_max_userip_connections = 80 > mail_plugins = quota imap_quota antispam > } > protocol pop3 { > mail_max_userip_connections = 30 > mail_plugins = quota > } > I see "mail_plugins = quota mail_log notify" at the top there, but in the protocol imap block it's "mail_plugins = quota imap_quota antispam". Doesn't the imap block override the global setting? Sean From skdovecot at smail.inf.fh-brs.de Thu Feb 20 10:07:45 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 20 Feb 2014 11:07:45 +0100 (CET) Subject: [Dovecot] Enable mail logger plugin In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 19 Feb 2014, Sean Kamath wrote: > From: Sean Kamath > On Feb 19, 2014, at 1:24 PM, Alexandre Ellert wrote: >> Hello, >> >> I'm trying to get more info about user activity (especially when they delete some email). >> So, I follow info from http://wiki2.dovecot.org/Plugins/MailLog to enabled mail logger plugin, but I don't see anything in my logs. >> >> Can you tell me what I'm missing ? >> >> # doveconf -n >> ... >> mail_location = maildir:/var/vmail/%d/%n/Maildir >> mail_plugins = quota mail_log notify >> mail_privileged_group = mail >> mail_uid = 5000 >> ... >> protocol imap { >> mail_max_userip_connections = 80 >> mail_plugins = quota imap_quota antispam >> } >> protocol pop3 { >> mail_max_userip_connections = 30 >> mail_plugins = quota >> } >> > > I see "mail_plugins = quota mail_log notify" at the top there, but in the protocol imap block it's "mail_plugins = quota imap_quota antispam". > Doesn't the imap block override the global setting? @Alexandre: You've removed the "$mail_plugins" in the IMAP section as Peter already pointed out? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwXT8XD1/YhP6VMHAQJmawf8CJOhyC7HLdGe0uUNlXJgYmFyCD12FpmF DufwuCfVMxe+ce4H6q4QgTdCn91CWsUpsjnqnAsUUnFGUQvLOaswx0paoZLzotci V0OjzhmEz8cTMOiswCEoLJQ8nzAxL7FKcy1eBdzj3+wDd5kH1kBd6DKzaIBLRSWB iVoTke3A0wi9ZIwwABJNNhxR6x+/5/8tkCO6UUi+5kxVkDtX3mBnTAdU5g3xUc/x Z4luip/JaI4MD26lq00RNgTmqW1OSKiRyPvQrVwjRMvOdjcNqw/yPjjpep2VoOv1 gqQYJpfXPJAdo9NWAsdrYtjsi5iRj0tRS6xms4A4FdvAH6NA2/7Drw== =jAiR -----END PGP SIGNATURE----- From aellert at numeezy.com Thu Feb 20 12:24:05 2014 From: aellert at numeezy.com (Alexandre Ellert) Date: Thu, 20 Feb 2014 13:24:05 +0100 Subject: [Dovecot] Enable mail logger plugin In-Reply-To: References: Message-ID: <2B5904BB-31B8-4428-96C5-37DC7641F5DF@numeezy.com> > @Alexandre: You've removed the "$mail_plugins" in the IMAP section as Peter already pointed out? I'm not sure to fully understand how mail_plugins directive works. Please correct, if I'm wrong : Global mail_plugins lists common plugin used by all protocol : > mail_plugins = quota mail_log notify Later, within each protocol declaration, I need to reference $mail_plugins variable (i.e. mail_plugins = $mail_plugins ?) Each protocol can use its own mail_plugins with an override : > protocol imap { > mail_max_userip_connections = 80 > mail_plugins = quota imap_quota antispam > } In that case mail_log notify are not enabled for protocol imap. So, I have two options : 1. List all mail_plugins explicitly for protocol imap, like this : mail_plugins = quota mail_log notify protocol imap { mail_max_userip_connections = 80 mail_plugins = quota imap_quota antispam mail_log notify } 2. Use $mail_plugins variable to include global mail_plugins into protocol imap : mail_plugins = quota mail_log notify protocol imap { mail_max_userip_connections = 80 mail_plugins = $mail_plugins imap_quota antispam } Alexandre From skdovecot at smail.inf.fh-brs.de Thu Feb 20 12:41:25 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 20 Feb 2014 13:41:25 +0100 (CET) Subject: [Dovecot] Enable mail logger plugin In-Reply-To: <2B5904BB-31B8-4428-96C5-37DC7641F5DF@numeezy.com> References: <2B5904BB-31B8-4428-96C5-37DC7641F5DF@numeezy.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 20 Feb 2014, Alexandre Ellert wrote: > From: Alexandre Ellert > >> @Alexandre: You've removed the "$mail_plugins" in the IMAP section as Peter already pointed out? > > I'm not sure to fully understand how mail_plugins directive works. consider it as a variable like in the shell, PHP or perl.... > Please correct, if I'm wrong : > > Global mail_plugins lists common plugin used by all protocol : global mail_plugins just assigns a variable, which is used as default, if the setting is missing. >> mail_plugins = quota mail_log notify > Later, within each protocol declaration, I need to reference $mail_plugins variable (i.e. mail_plugins = $mail_plugins ?) yes, if you want to include the previously defined value. > Each protocol can use its own mail_plugins with an override : >> protocol imap { >> mail_max_userip_connections = 80 >> mail_plugins = quota imap_quota antispam >> } > In that case mail_log notify are not enabled for protocol imap. Yep. > So, I have two options : > 1. List all mail_plugins explicitly for protocol imap, like this : > 2. Use $mail_plugins variable to include global mail_plugins into protocol imap : Yes, whichever suits your particular need more. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwX393D1/YhP6VMHAQKIDAf9HeombYlYE3a35cpjOy7dE/behrF4oLpH 9rDIx7HqfTruiMuT1jkQxcb/aXvWYgrardxrVzS+AOGE5ctU3gbYnqHZWH/ldHD0 jJwfJVpFSM5LuxEWG9djgKZegcYjTwIUIhJYAdIfXdKjVUCpJcSgzaWq2Qp96a28 4Kl6T8wQjWmUSnryPtlC3Ge7rTtvjf46wtzYs9sBWSCyjX/jAGsQG/i5dyzNL4J6 bOKaeXSZz29+MOo67TT0dYR02hsRgHx+4AwqyN8/4P9PH6Xm/DPYHSA4HadTbbO6 vIjmf30YnTKevtdIJsR4UAkmVsRP6xOmn5APIW4JOKbpMUFklpsdlw== =73UN -----END PGP SIGNATURE----- From t.creutz at topackt.com Thu Feb 20 14:04:27 2014 From: t.creutz at topackt.com (Thomas Creutz) Date: Thu, 20 Feb 2014 15:04:27 +0100 Subject: [Dovecot] Warning: mysql: Query failed, retrying: Unknown column 'filter' in 'where clause' In-Reply-To: <20140218111005.Horde.N0pclTnSSV7RVrWCOuOHGw8@horde.bigmichi1.de> References: <53022B69.6030609@topackt.com> <53032E08.6080406@topackt.com> <20140218111005.Horde.N0pclTnSSV7RVrWCOuOHGw8@horde.bigmichi1.de> Message-ID: <53060B6B.3010708@topackt.com> Ok, today I did the debug test: Feb 20 14:57:59 mail1 dovecot: auth: Debug: master in: USER#0111#011account at domain.tld#011service=sieve-filter Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Debug: sql(account at domain.tld): SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE (login = 'account at domain.tld' OR email = 'account at domain.tld') AND disablesieve-filter = 'n' Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Warning: mysql: Query failed, retrying: Unknown column 'filter' in 'where clause' Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Error: sql(account at domain.tld): User query failed: Unknown column 'filter' in 'where clause' Feb 20 14:57:59 mail1 dovecot: auth: Debug: userdb out: FAIL#0111 my dovecot-sql.conf holds this: ----- driver = mysql connect = host=localhost dbname=dbispconfig user=ispconfig password=XXXXXXXX default_pass_scheme = CRYPT password_query = SELECT password FROM mail_user WHERE (login = '%u' OR email = '%u') AND disable%Ls = 'n' user_query = SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE (login = '%u' OR email = '%u') AND disable%Ls = 'n' iterate_query = SELECT email as user FROM mail_user ----- >From where comes the disablesieve-filter? Thomas Am 18.02.2014 11:10, schrieb Michael Cramer: > you can try to turn on the debug logging so that you can see which > query is executed > > mail_debug=yes > auth_debug=yes > > > Zitat von Thomas Creutz : > >> I would add some informations: >> >> auth lookup works fine with doveadm: >> >> $ doveadm auth lookup account at domain.tld >> passdb: account at domain.tld >> user : account at domain.tld >> >> Any Ideas? >> >> Thomas >> >> Am 17.02.2014 16:31, schrieb Thomas Creutz: >>> Hi List, >>> >>> I have a problem with dovecot 2.2.12 and sieve-filter call: >>> >>> su -c 'sieve-filter -D -v -W -C -u account at domain.tld >>> /var/vmail/domain.tld/account/.sieve INBOX.Refilter' vmail >>> >>> gives me >>> >>> sieve-filter(vmail): Error: user account at domain.tld: Auth USER >>> lookup failed >>> sieve-filter(vmail): Fatal: Internal error occurred. Refer to server >>> log >>> for more information. >>> >>> on log file I see this: >>> >>> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Warning: mysql: Query >>> failed, retrying: Unknown column 'filter' in 'where clause' >>> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Error: >>> sql(account at domain.tld): User query failed: Unknown column 'filter' in >>> 'where clause' >>> >>> but I never used filter in dovecot: >>> >>> grep -iR filter /etc/dovecot/ >>> >>> gives me no result (and yes the dir is right). >>> >>> Any Idea whats wrong? I know it tells me, that the column is missing in >>> the Database - but why I need it? I also never see it documented >>> somewhere: >>> >>> http://wiki2.dovecot.org/AuthDatabase/SQL >>> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields >>> >>> Thomas >> >> -- >> MfG >> Thomas Creutz >> >> Topackt IT Solutions GmbH >> Altspeyerer Weide 2 >> 67346 Speyer >> --------------------------------------- >> Mobil: 0151-11711132 >> Tel: 06232-31504-0 >> Fax: 06232-31504-240 >> ----------------------------------------------- >> Mail: t.creutz at topackt.com >> WWW: http://www.topackt.com >> pgp: https://ssl.topackt.com/pgp/ >> Xing: http://www.xing.com/go/invite/5799158.1aa7c1 >> ------------------------------------------------------- >> Registergericht: Amtsgericht Ludwigshafen, HRB 53097 >> Gesch?ftsf?hrer: Michael Nist -- MfG Thomas Creutz Topackt IT Solutions GmbH Altspeyerer Weide 2 67346 Speyer --------------------------------------- Mobil: 0151-11711132 Tel: 06232-31504-0 Fax: 06232-31504-240 ----------------------------------------------- Mail: t.creutz at topackt.com WWW: http://www.topackt.com pgp: https://ssl.topackt.com/pgp/ Xing: http://www.xing.com/go/invite/5799158.1aa7c1 ------------------------------------------------------- Registergericht: Amtsgericht Ludwigshafen, HRB 53097 Gesch?ftsf?hrer: Michael Nist From michael at bigmichi1.de Thu Feb 20 14:17:12 2014 From: michael at bigmichi1.de (Michael Cramer) Date: Thu, 20 Feb 2014 15:17:12 +0100 Subject: [Dovecot] Warning: mysql: Query failed, retrying: Unknown column 'filter' in 'where clause' In-Reply-To: <53060B6B.3010708@topackt.com> References: <53022B69.6030609@topackt.com> <53032E08.6080406@topackt.com> <20140218111005.Horde.N0pclTnSSV7RVrWCOuOHGw8@horde.bigmichi1.de> <53060B6B.3010708@topackt.com> Message-ID: <20140220151712.Horde.lDKSrzSGViNnM_FjFbR61A7@horde.bigmichi1.de> This comes from your password query 'disablesieve-filter' is the result of 'AND disable%Ls' %Ls specifies the lowercase protocol name. If you have these column in your database you need to set this in 'AND `disable%Ls` ' to allow a column name with the minus sign. Zitat von Thomas Creutz : > Ok, today I did the debug test: > > Feb 20 14:57:59 mail1 dovecot: auth: Debug: master in: > USER#0111#011account at domain.tld#011service=sieve-filter > Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Debug: > sql(account at domain.tld): SELECT email as user, maildir as home, > CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, > CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, > '/.sieve') as sieve FROM mail_user WHERE (login = 'account at domain.tld' > OR email = 'account at domain.tld') AND disablesieve-filter = 'n' > Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Warning: mysql: Query > failed, retrying: Unknown column 'filter' in 'where clause' > Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Error: > sql(account at domain.tld): User query failed: Unknown column 'filter' in > 'where clause' > Feb 20 14:57:59 mail1 dovecot: auth: Debug: userdb out: FAIL#0111 > > my dovecot-sql.conf holds this: > ----- > driver = mysql > connect = host=localhost dbname=dbispconfig user=ispconfig password=XXXXXXXX > default_pass_scheme = CRYPT > > password_query = SELECT password FROM mail_user WHERE (login = '%u' OR > email = '%u') AND disable%Ls = 'n' > user_query = SELECT email as user, maildir as home, CONCAT('maildir:', > maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') > AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE > (login = '%u' OR email = '%u') AND disable%Ls = 'n' > > iterate_query = SELECT email as user FROM mail_user > ----- > > From where comes the disablesieve-filter? > > Thomas > > Am 18.02.2014 11:10, schrieb Michael Cramer: >> you can try to turn on the debug logging so that you can see which >> query is executed >> >> mail_debug=yes >> auth_debug=yes >> >> >> Zitat von Thomas Creutz : >> >>> I would add some informations: >>> >>> auth lookup works fine with doveadm: >>> >>> $ doveadm auth lookup account at domain.tld >>> passdb: account at domain.tld >>> user : account at domain.tld >>> >>> Any Ideas? >>> >>> Thomas >>> >>> Am 17.02.2014 16:31, schrieb Thomas Creutz: >>>> Hi List, >>>> >>>> I have a problem with dovecot 2.2.12 and sieve-filter call: >>>> >>>> su -c 'sieve-filter -D -v -W -C -u account at domain.tld >>>> /var/vmail/domain.tld/account/.sieve INBOX.Refilter' vmail >>>> >>>> gives me >>>> >>>> sieve-filter(vmail): Error: user account at domain.tld: Auth USER >>>> lookup failed >>>> sieve-filter(vmail): Fatal: Internal error occurred. Refer to server >>>> log >>>> for more information. >>>> >>>> on log file I see this: >>>> >>>> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Warning: mysql: Query >>>> failed, retrying: Unknown column 'filter' in 'where clause' >>>> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Error: >>>> sql(account at domain.tld): User query failed: Unknown column 'filter' in >>>> 'where clause' >>>> >>>> but I never used filter in dovecot: >>>> >>>> grep -iR filter /etc/dovecot/ >>>> >>>> gives me no result (and yes the dir is right). >>>> >>>> Any Idea whats wrong? I know it tells me, that the column is missing in >>>> the Database - but why I need it? I also never see it documented >>>> somewhere: >>>> >>>> http://wiki2.dovecot.org/AuthDatabase/SQL >>>> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields >>>> >>>> Thomas >>> >>> -- >>> MfG >>> Thomas Creutz >>> >>> Topackt IT Solutions GmbH >>> Altspeyerer Weide 2 >>> 67346 Speyer >>> --------------------------------------- >>> Mobil: 0151-11711132 >>> Tel: 06232-31504-0 >>> Fax: 06232-31504-240 >>> ----------------------------------------------- >>> Mail: t.creutz at topackt.com >>> WWW: http://www.topackt.com >>> pgp: https://ssl.topackt.com/pgp/ >>> Xing: http://www.xing.com/go/invite/5799158.1aa7c1 >>> ------------------------------------------------------- >>> Registergericht: Amtsgericht Ludwigshafen, HRB 53097 >>> Gesch?ftsf?hrer: Michael Nist > > -- > MfG > Thomas Creutz > > Topackt IT Solutions GmbH > Altspeyerer Weide 2 > 67346 Speyer > --------------------------------------- > Mobil: 0151-11711132 > Tel: 06232-31504-0 > Fax: 06232-31504-240 > ----------------------------------------------- > Mail: t.creutz at topackt.com > WWW: http://www.topackt.com > pgp: https://ssl.topackt.com/pgp/ > Xing: http://www.xing.com/go/invite/5799158.1aa7c1 > ------------------------------------------------------- > Registergericht: Amtsgericht Ludwigshafen, HRB 53097 > Gesch?ftsf?hrer: Michael Nist From dovecot at webrz.net Thu Feb 20 14:17:33 2014 From: dovecot at webrz.net (Jos Chrispijn) Date: Thu, 20 Feb 2014 15:17:33 +0100 Subject: [Dovecot] v1.x vs v2.x Message-ID: <53060E7D.8050408@webrz.net> Should I migrate to v2 or are there no significant pro's on this migration? Thanks! -- Best regards, Jos Chrispijn --- Artificial intelligence is no match for natural stupidity From t.creutz at topackt.com Thu Feb 20 14:19:18 2014 From: t.creutz at topackt.com (Thomas Creutz) Date: Thu, 20 Feb 2014 15:19:18 +0100 Subject: [Dovecot] Warning: mysql: Query failed, retrying: Unknown column 'filter' in 'where clause' In-Reply-To: <53060B6B.3010708@topackt.com> References: <53022B69.6030609@topackt.com> <53032E08.6080406@topackt.com> <20140218111005.Horde.N0pclTnSSV7RVrWCOuOHGw8@horde.bigmichi1.de> <53060B6B.3010708@topackt.com> Message-ID: <53060EE6.40309@topackt.com> This sql query must be build somewhere from dovecot itself. I can add the column name to the user_qeuery: user_query = SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve, ASCII( '110' ) AS "disablesieve-filter" FROM mail_user WHERE (login = '%u' OR email = '%u') AND disable%Ls = 'n' But problem is, that dovecot dont quote the column name, so the column name with the - is a error for its own. http://stackoverflow.com/questions/885497/hyphens-in-column-names-in-mysql-db Thomas Am 20.02.2014 15:04, schrieb Thomas Creutz: > Ok, today I did the debug test: > > Feb 20 14:57:59 mail1 dovecot: auth: Debug: master in: > USER#0111#011account at domain.tld#011service=sieve-filter > Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Debug: > sql(account at domain.tld): SELECT email as user, maildir as home, > CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, > CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, > '/.sieve') as sieve FROM mail_user WHERE (login = 'account at domain.tld' > OR email = 'account at domain.tld') AND disablesieve-filter = 'n' > Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Warning: mysql: Query > failed, retrying: Unknown column 'filter' in 'where clause' > Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Error: > sql(account at domain.tld): User query failed: Unknown column 'filter' in > 'where clause' > Feb 20 14:57:59 mail1 dovecot: auth: Debug: userdb out: FAIL#0111 > > my dovecot-sql.conf holds this: > ----- > driver = mysql > connect = host=localhost dbname=dbispconfig user=ispconfig password=XXXXXXXX > default_pass_scheme = CRYPT > > password_query = SELECT password FROM mail_user WHERE (login = '%u' OR > email = '%u') AND disable%Ls = 'n' > user_query = SELECT email as user, maildir as home, CONCAT('maildir:', > maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') > AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE > (login = '%u' OR email = '%u') AND disable%Ls = 'n' > > iterate_query = SELECT email as user FROM mail_user > ----- > > From where comes the disablesieve-filter? > > Thomas > > Am 18.02.2014 11:10, schrieb Michael Cramer: >> you can try to turn on the debug logging so that you can see which >> query is executed >> >> mail_debug=yes >> auth_debug=yes >> >> >> Zitat von Thomas Creutz : >> >>> I would add some informations: >>> >>> auth lookup works fine with doveadm: >>> >>> $ doveadm auth lookup account at domain.tld >>> passdb: account at domain.tld >>> user : account at domain.tld >>> >>> Any Ideas? >>> >>> Thomas >>> >>> Am 17.02.2014 16:31, schrieb Thomas Creutz: >>>> Hi List, >>>> >>>> I have a problem with dovecot 2.2.12 and sieve-filter call: >>>> >>>> su -c 'sieve-filter -D -v -W -C -u account at domain.tld >>>> /var/vmail/domain.tld/account/.sieve INBOX.Refilter' vmail >>>> >>>> gives me >>>> >>>> sieve-filter(vmail): Error: user account at domain.tld: Auth USER >>>> lookup failed >>>> sieve-filter(vmail): Fatal: Internal error occurred. Refer to server >>>> log >>>> for more information. >>>> >>>> on log file I see this: >>>> >>>> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Warning: mysql: Query >>>> failed, retrying: Unknown column 'filter' in 'where clause' >>>> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Error: >>>> sql(account at domain.tld): User query failed: Unknown column 'filter' in >>>> 'where clause' >>>> >>>> but I never used filter in dovecot: >>>> >>>> grep -iR filter /etc/dovecot/ >>>> >>>> gives me no result (and yes the dir is right). >>>> >>>> Any Idea whats wrong? I know it tells me, that the column is missing in >>>> the Database - but why I need it? I also never see it documented >>>> somewhere: >>>> >>>> http://wiki2.dovecot.org/AuthDatabase/SQL >>>> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields >>>> >>>> Thomas >>> -- >>> MfG >>> Thomas Creutz >>> >>> Topackt IT Solutions GmbH >>> Altspeyerer Weide 2 >>> 67346 Speyer >>> --------------------------------------- >>> Mobil: 0151-11711132 >>> Tel: 06232-31504-0 >>> Fax: 06232-31504-240 >>> ----------------------------------------------- >>> Mail: t.creutz at topackt.com >>> WWW: http://www.topackt.com >>> pgp: https://ssl.topackt.com/pgp/ >>> Xing: http://www.xing.com/go/invite/5799158.1aa7c1 >>> ------------------------------------------------------- >>> Registergericht: Amtsgericht Ludwigshafen, HRB 53097 >>> Gesch?ftsf?hrer: Michael Nist -- MfG Thomas Creutz Topackt IT Solutions GmbH Altspeyerer Weide 2 67346 Speyer --------------------------------------- Mobil: 0151-11711132 Tel: 06232-31504-0 Fax: 06232-31504-240 ----------------------------------------------- Mail: t.creutz at topackt.com WWW: http://www.topackt.com pgp: https://ssl.topackt.com/pgp/ Xing: http://www.xing.com/go/invite/5799158.1aa7c1 ------------------------------------------------------- Registergericht: Amtsgericht Ludwigshafen, HRB 53097 Gesch?ftsf?hrer: Michael Nist From t.creutz at topackt.com Thu Feb 20 14:21:21 2014 From: t.creutz at topackt.com (Thomas Creutz) Date: Thu, 20 Feb 2014 15:21:21 +0100 Subject: [Dovecot] Warning: mysql: Query failed, retrying: Unknown column 'filter' in 'where clause' In-Reply-To: <20140220151712.Horde.lDKSrzSGViNnM_FjFbR61A7@horde.bigmichi1.de> References: <53022B69.6030609@topackt.com> <53032E08.6080406@topackt.com> <20140218111005.Horde.N0pclTnSSV7RVrWCOuOHGw8@horde.bigmichi1.de> <53060B6B.3010708@topackt.com> <20140220151712.Horde.lDKSrzSGViNnM_FjFbR61A7@horde.bigmichi1.de> Message-ID: <53060F61.8080202@topackt.com> Oh ok, so I could fix it now by my self - Thanks :) Am 20.02.2014 15:17, schrieb Michael Cramer: > This comes from your password query 'disablesieve-filter' is the > result of 'AND disable%Ls' %Ls specifies the lowercase protocol name. > If you have these column in your database you need to set this in 'AND > `disable%Ls` ' to allow a column name with the minus sign. > > Zitat von Thomas Creutz : > >> Ok, today I did the debug test: >> >> Feb 20 14:57:59 mail1 dovecot: auth: Debug: master in: >> USER#0111#011account at domain.tld#011service=sieve-filter >> Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Debug: >> sql(account at domain.tld): SELECT email as user, maildir as home, >> CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, >> CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, >> '/.sieve') as sieve FROM mail_user WHERE (login = 'account at domain.tld' >> OR email = 'account at domain.tld') AND disablesieve-filter = 'n' >> Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Warning: mysql: Query >> failed, retrying: Unknown column 'filter' in 'where clause' >> Feb 20 14:57:59 mail1 dovecot: auth-worker(29572): Error: >> sql(account at domain.tld): User query failed: Unknown column 'filter' in >> 'where clause' >> Feb 20 14:57:59 mail1 dovecot: auth: Debug: userdb out: FAIL#0111 >> >> my dovecot-sql.conf holds this: >> ----- >> driver = mysql >> connect = host=localhost dbname=dbispconfig user=ispconfig >> password=XXXXXXXX >> default_pass_scheme = CRYPT >> >> password_query = SELECT password FROM mail_user WHERE (login = '%u' OR >> email = '%u') AND disable%Ls = 'n' >> user_query = SELECT email as user, maildir as home, CONCAT('maildir:', >> maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') >> AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE >> (login = '%u' OR email = '%u') AND disable%Ls = 'n' >> >> iterate_query = SELECT email as user FROM mail_user >> ----- >> >> From where comes the disablesieve-filter? >> >> Thomas >> >> Am 18.02.2014 11:10, schrieb Michael Cramer: >>> you can try to turn on the debug logging so that you can see which >>> query is executed >>> >>> mail_debug=yes >>> auth_debug=yes >>> >>> >>> Zitat von Thomas Creutz : >>> >>>> I would add some informations: >>>> >>>> auth lookup works fine with doveadm: >>>> >>>> $ doveadm auth lookup account at domain.tld >>>> passdb: account at domain.tld >>>> user : account at domain.tld >>>> >>>> Any Ideas? >>>> >>>> Thomas >>>> >>>> Am 17.02.2014 16:31, schrieb Thomas Creutz: >>>>> Hi List, >>>>> >>>>> I have a problem with dovecot 2.2.12 and sieve-filter call: >>>>> >>>>> su -c 'sieve-filter -D -v -W -C -u account at domain.tld >>>>> /var/vmail/domain.tld/account/.sieve INBOX.Refilter' vmail >>>>> >>>>> gives me >>>>> >>>>> sieve-filter(vmail): Error: user account at domain.tld: Auth USER >>>>> lookup failed >>>>> sieve-filter(vmail): Fatal: Internal error occurred. Refer to server >>>>> log >>>>> for more information. >>>>> >>>>> on log file I see this: >>>>> >>>>> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Warning: mysql: >>>>> Query >>>>> failed, retrying: Unknown column 'filter' in 'where clause' >>>>> Feb 17 16:21:34 mail1 dovecot: auth-worker(8430): Error: >>>>> sql(account at domain.tld): User query failed: Unknown column >>>>> 'filter' in >>>>> 'where clause' >>>>> >>>>> but I never used filter in dovecot: >>>>> >>>>> grep -iR filter /etc/dovecot/ >>>>> >>>>> gives me no result (and yes the dir is right). >>>>> >>>>> Any Idea whats wrong? I know it tells me, that the column is >>>>> missing in >>>>> the Database - but why I need it? I also never see it documented >>>>> somewhere: >>>>> >>>>> http://wiki2.dovecot.org/AuthDatabase/SQL >>>>> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields >>>>> >>>>> Thomas >>>> >>>> -- >>>> MfG >>>> Thomas Creutz >>>> >>>> Topackt IT Solutions GmbH >>>> Altspeyerer Weide 2 >>>> 67346 Speyer >>>> --------------------------------------- >>>> Mobil: 0151-11711132 >>>> Tel: 06232-31504-0 >>>> Fax: 06232-31504-240 >>>> ----------------------------------------------- >>>> Mail: t.creutz at topackt.com >>>> WWW: http://www.topackt.com >>>> pgp: https://ssl.topackt.com/pgp/ >>>> Xing: http://www.xing.com/go/invite/5799158.1aa7c1 >>>> ------------------------------------------------------- >>>> Registergericht: Amtsgericht Ludwigshafen, HRB 53097 >>>> Gesch?ftsf?hrer: Michael Nist >> >> -- >> MfG >> Thomas Creutz >> >> Topackt IT Solutions GmbH >> Altspeyerer Weide 2 >> 67346 Speyer >> --------------------------------------- >> Mobil: 0151-11711132 >> Tel: 06232-31504-0 >> Fax: 06232-31504-240 >> ----------------------------------------------- >> Mail: t.creutz at topackt.com >> WWW: http://www.topackt.com >> pgp: https://ssl.topackt.com/pgp/ >> Xing: http://www.xing.com/go/invite/5799158.1aa7c1 >> ------------------------------------------------------- >> Registergericht: Amtsgericht Ludwigshafen, HRB 53097 >> Gesch?ftsf?hrer: Michael Nist -- MfG Thomas Creutz Topackt IT Solutions GmbH Altspeyerer Weide 2 67346 Speyer --------------------------------------- Mobil: 0151-11711132 Tel: 06232-31504-0 Fax: 06232-31504-240 ----------------------------------------------- Mail: t.creutz at topackt.com WWW: http://www.topackt.com pgp: https://ssl.topackt.com/pgp/ Xing: http://www.xing.com/go/invite/5799158.1aa7c1 ------------------------------------------------------- Registergericht: Amtsgericht Ludwigshafen, HRB 53097 Gesch?ftsf?hrer: Michael Nist From skdovecot at smail.inf.fh-brs.de Thu Feb 20 14:29:34 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 20 Feb 2014 15:29:34 +0100 (CET) Subject: [Dovecot] v1.x vs v2.x In-Reply-To: <53060E7D.8050408@webrz.net> References: <53060E7D.8050408@webrz.net> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 20 Feb 2014, Jos Chrispijn wrote: > Should I migrate to v2 or are there no significant pro's on this migration? v1 does not get no bugfixes, no new features and almost no support anymore. If you have a running host & like it as is, keept it. I do not remember security problems in v1, that are not fixed. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwYRTnD1/YhP6VMHAQJh2Qf/fmUMEYYwyyYEWhS6YHaM0ggXo8fgDFp1 rNJEQKxPaoVc9V9vXTbeffytSRqP/rEiude+v0Fq9Ugt2m3AbbLWZRLgNL9MNKA9 SgzYWnW7CfYVtnOYJifyeMiEXrKowx3oXQtRzhsW0QPp/aF4C9YPqj7NzyE4JGk9 qxXFoEA2aa/62+UjE+DKchYEwjSLTnDG7wiVro+Oh6otiRLtScnX8T0/CZIY5FgV y5+xKYAEMHvE11esbKe92GtORLwov2gDC9z5qkpqe2ldTNUBEe+zTFOlYgyL1M5H +NYnEJmnVepDWOknBB0I2CwO1a8MN6yk3g3Orbh+4gBw7HkTWO1iIg== =Qk5R -----END PGP SIGNATURE----- From me at junc.eu Thu Feb 20 15:45:55 2014 From: me at junc.eu (Benny Pedersen) Date: Thu, 20 Feb 2014 16:45:55 +0100 Subject: [Dovecot] v1.x vs v2.x In-Reply-To: <53060E7D.8050408@webrz.net> References: <53060E7D.8050408@webrz.net> Message-ID: On 2014-02-20 15:17, Jos Chrispijn wrote: > Should I migrate to v2 or are there no significant pro's on this > migration? i would keep the problem until it gets unstable, if thats happens upgrade to the solution as others says we have outdated software that needs to be updated sometime, it just a matter of when :=) outdated is not same as unstable do you see any problem with v1 ? other then wiki1 now says outdated ? :=) if i would like to create a new server i would take v2 now, if i have a v1 running i would keep it From da-dovecotlist-15 at abelonline.de Thu Feb 20 15:59:21 2014 From: da-dovecotlist-15 at abelonline.de (Boris) Date: Thu, 20 Feb 2014 16:59:21 +0100 Subject: [Dovecot] Syntax of pattern in map section In-Reply-To: <20140216163033.6A6C88C285@mail.abelonline.de> References: <20140216163033.6A6C88C285@mail.abelonline.de> Message-ID: <5157022.h2FQGkTXZ1@skynet2> On Sunday 16 February 2014 17:30:33 da-dovecotlist-15 at abelonline.de wrote: > I can't seem to find any documentation on the meaning/syntax of the > "pattern" variable in map sections that are found in > dovecot-dict-sql.conf.ext for example. I am trying to setup shared folders. > I need to understand how they work because I can't use the example in > http://wiki2.dovecot.org/SharedMailboxes/Shared. This is because in my > PostreSQL table users are not a single column but two columns with the > local and domain part I couldn't find anything myself even after skimming through the code so I created PostgreSQL rules to circumvent the problem. Here they are in case anyone has the same problem. This is the view I created for listing shared folders: CREATE VIEW view_shared_mailboxes AS SELECT shared_mailbox_local || '@' || shared_mailbox_domain AS "shared_mailbox", shared_to_local || '@' || shared_to_domain AS "shared_to", 1 AS "dummy" FROM shared_mailboxes; And these are the rules to enable INSERTSs and DELETEs: CREATE RULE view_shared_mailboxes_insert AS ON INSERT TO view_shared_mailboxes DO INSTEAD INSERT INTO shared_mailboxes (shared_mailbox_local, shared_mailbox_domain, shared_to_local, shared_to_domain) VALUES (split_part(NEW.shared_mailbox,'@',1), split_part(NEW.shared_mailbox,'@',2), split_part(NEW.shared_to,'@',1), split_part(NEW.shared_to,'@',2)); CREATE RULE view_shared_mailboxes_delete AS ON DELETE TO view_shared_mailboxes DO INSTEAD DELETE FROM shared_mailboxes WHERE shared_mailbox_local = split_part(OLD.shared_mailbox,'@',1) AND shared_mailbox_domain = split_part(OLD.shared_mailbox,'@',2) AND shared_to_local = split_part(OLD.shared_to,'@',1) AND shared_to_domain = split_part(OLD.shared_to,'@',2); From rplatel at tucows.com Thu Feb 20 17:09:29 2014 From: rplatel at tucows.com (Richard Platel) Date: Thu, 20 Feb 2014 12:09:29 -0500 Subject: [Dovecot] dovecot with maildir not using mtime on reindex Message-ID: <807406C5-BF91-4719-853E-E3B1F79E3EFC@tucows.com> Hi. It seems that dovecot is using the current time, not a maildir file's mtime for INTERNALDATE when a message is re-indexed: $ cd Index $ rm -rf .INBOX $ cd ../Maildir/cur $ stat * File: `1392914632.P54451Q0M08633.smtpin01,S=2215,W=2249:2,' Size: 960 Blocks: 8 IO Block: 1048576 regular file Device: 36h/54d Inode: 11132959 Links: 1 Access: (0600/-rw-------) Uid: ( 8/ mail) Gid: ( 8/ mail) Access: 2012-01-01 00:00:00.000000000 +0000 Modify: 2012-01-01 00:00:00.000000000 +0000 Change: 2014-02-20 16:46:20.000000000 +0000 Birth: - $ telnet imap01 143 Trying 10.5.45.1... Connected to imap01.dev.firefly.tucows.com. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN] Dovecot ready. A LOGIN rplatel at ff-dev.com ******** A OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS SPECIAL-USE BINARY MOVE QUOTA] Logged in A SELECT INBOX * FLAGS (\Answered \Flagged \Deleted \Seen \Draft) * OK [PERMANENTFLAGS (\Answered \Flagged \Deleted \Seen \Draft \*)] Flags permitted. * 1 EXISTS * 0 RECENT * OK [UNSEEN 1] First unseen. * OK [UIDVALIDITY 1265835133] UIDs valid * OK [UIDNEXT 4548] Predicted next UID A OK [READ-WRITE] Select completed (0.035 secs). A FETCH 1:* FULL * 1 FETCH (FLAGS () INTERNALDATE "20-Feb-2014 16:59:51 +0000" RFC822.SIZE 2249 ENVELOPE ("Thu, 20 Feb 2014 11:43:50 -0500" "Test message" (("Richard Platel" NIL "rplatel" "tucows.com")) (("Richard Platel" NIL "rplatel" "tucows.com")) (("Richard Platel" NIL "rplatel" "tucows.com")) ((NIL NIL "rplatel" "ff-dev.com")) NIL NIL NIL "") BODY ("text" "plain" ("charset" "us-ascii") NIL NIL "7bit" 23 4)) A OK Fetch completed. A LOGOUT * BYE Logging out A OK Logout completed. Connection closed by foreign host. $ date Thu Feb 20 16:59:58 UTC 2014 Stracing the imap process, it seems dovecot does not stat the message file at all. Performing the above with an old dovecot 1 server yields the expected result, the INTERNALDATE of the message is the file's mtime. $ dovecot -n -c /he/dovecot/conf/dovecot.conf # 2.2.10.3: /he/dovecot/conf/dovecot.conf # OS: Linux 3.4.46-dom0-2.0.0 x86_64 Debian 7.0 debug_log_path = syslog disable_plaintext_auth = no first_valid_uid = 8 info_log_path = syslog lock_method = dotlock log_timestamp = mail_fsync = always mail_gid = mail mail_nfs_index = yes mail_nfs_storage = yes mail_plugins = zlib quota tc_mail_log notify tc_proc mail_temp_dir = /var/run/dovecot_tmp mail_uid = mail maildir_very_dirty_syncs = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave mmap_disable = yes namespace inbox { inbox = yes location = prefix = } passdb { args = host=localhost port=1143 username=%L{user}::%L{service}::%L{rip}::%L{session} driver = imap } plugin { antispam_backend = pipe antispam_debug_target = syslog antispam_pipe_program = /he/dovecot/utils/he_spamtrain.pl antispam_pipe_program_args = --user=%u antispam_pipe_program_notspam_arg = --falsepositive antispam_pipe_program_spam_arg = --missed antispam_pipe_tmpdir = /var/run/dovecot_as_tmp antispam_signature_missing = move antispam_spam = Spam;Inbox.Spam;INBOX.Spam;Junk;INBOX.Junk antispam_trash_pattern_ignorecase = trash mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename flag_change append mail_log_fields = uid box msgid flags hetag memcached_servers = 10.5.47.223,10.5.47.222 zlib_save = gz zlib_save_level = 6 } protocols = imap pop3 service anvil { unix_listener anvil-auth-penalty { mode = 00 } } service imap-login { inet_listener imap { address = 0 } inet_listener imaps { port = 0 } process_limit = 29 process_min_avail = 14 service_count = 0 } service imap-postlogin { executable = script-login -d /he/dovecot/utils/post_login.sh } service imap { executable = imap imap-postlogin process_limit = 1270 vsz_limit = 0 } service pop3-login { inet_listener pop3 { address = 0 } inet_listener pop3s { port = 0 } process_limit = 29 process_min_avail = 14 service_count = 0 } service pop3-postlogin { executable = script-login -d /he/dovecot/utils/post_login.sh } service pop3 { executable = pop3 pop3-postlogin process_limit = 206 vsz_limit = 512 M } ssl = no userdb { args = /he/dovecot/conf/dovecot-tc-dict-auth.conf driver = dict } verbose_proctitle = yes protocol imap { mail_max_userip_connections = 30 mail_plugins = zlib quota tc_mail_log notify tc_proc imap_quota antispam } protocol pop3 { mail_max_userip_connections = 30 pop3_uidl_format = %08Xv%08Xu } From rplatel at tucows.com Thu Feb 20 18:57:21 2014 From: rplatel at tucows.com (Richard Platel) Date: Thu, 20 Feb 2014 13:57:21 -0500 Subject: [Dovecot] dovecot with maildir not using mtime on reindex In-Reply-To: <807406C5-BF91-4719-853E-E3B1F79E3EFC@tucows.com> References: <807406C5-BF91-4719-853E-E3B1F79E3EFC@tucows.com> Message-ID: Furthermore: it seems the behaviour is correct (mtime is used for internaldate) if the message is not compressed. On Feb 20, 2014, at 12:09 PM, Richard Platel wrote: > Hi. > > It seems that dovecot is using the current time, not a maildir file's mtime for INTERNALDATE when a message is re-indexed: > > $ cd Index > $ rm -rf .INBOX > $ cd ../Maildir/cur > $ stat * > File: `1392914632.P54451Q0M08633.smtpin01,S=2215,W=2249:2,' > Size: 960 Blocks: 8 IO Block: 1048576 regular file > Device: 36h/54d Inode: 11132959 Links: 1 > Access: (0600/-rw-------) Uid: ( 8/ mail) Gid: ( 8/ mail) > Access: 2012-01-01 00:00:00.000000000 +0000 > Modify: 2012-01-01 00:00:00.000000000 +0000 > Change: 2014-02-20 16:46:20.000000000 +0000 > Birth: - > $ telnet imap01 143 > Trying 10.5.45.1... > Connected to imap01.dev.firefly.tucows.com. > Escape character is '^]'. > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN] Dovecot ready. > A LOGIN rplatel at ff-dev.com ******** > A OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS SPECIAL-USE BINARY MOVE QUOTA] Logged in > A SELECT INBOX > * FLAGS (\Answered \Flagged \Deleted \Seen \Draft) > * OK [PERMANENTFLAGS (\Answered \Flagged \Deleted \Seen \Draft \*)] Flags permitted. > * 1 EXISTS > * 0 RECENT > * OK [UNSEEN 1] First unseen. > * OK [UIDVALIDITY 1265835133] UIDs valid > * OK [UIDNEXT 4548] Predicted next UID > A OK [READ-WRITE] Select completed (0.035 secs). > A FETCH 1:* FULL > * 1 FETCH (FLAGS () INTERNALDATE "20-Feb-2014 16:59:51 +0000" RFC822.SIZE 2249 ENVELOPE ("Thu, 20 Feb 2014 11:43:50 -0500" "Test message" (("Richard Platel" NIL "rplatel" "tucows.com")) (("Richard Platel" NIL "rplatel" "tucows.com")) (("Richard Platel" NIL "rplatel" "tucows.com")) ((NIL NIL "rplatel" "ff-dev.com")) NIL NIL NIL "") BODY ("text" "plain" ("charset" "us-ascii") NIL NIL "7bit" 23 4)) > A OK Fetch completed. > A LOGOUT > * BYE Logging out > A OK Logout completed. > Connection closed by foreign host. > $ date > Thu Feb 20 16:59:58 UTC 2014 > > Stracing the imap process, it seems dovecot does not stat the message file at all. Performing the above with an old dovecot 1 server yields the expected result, the INTERNALDATE of the message is the file's mtime. > > $ dovecot -n -c /he/dovecot/conf/dovecot.conf > # 2.2.10.3: /he/dovecot/conf/dovecot.conf > # OS: Linux 3.4.46-dom0-2.0.0 x86_64 Debian 7.0 > debug_log_path = syslog > disable_plaintext_auth = no > first_valid_uid = 8 > info_log_path = syslog > lock_method = dotlock > log_timestamp = > mail_fsync = always > mail_gid = mail > mail_nfs_index = yes > mail_nfs_storage = yes > mail_plugins = zlib quota tc_mail_log notify tc_proc > mail_temp_dir = /var/run/dovecot_tmp > mail_uid = mail > maildir_very_dirty_syncs = yes > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave > mmap_disable = yes > namespace inbox { > inbox = yes > location = > prefix = > } > passdb { > args = host=localhost port=1143 username=%L{user}::%L{service}::%L{rip}::%L{session} > driver = imap > } > plugin { > antispam_backend = pipe > antispam_debug_target = syslog > antispam_pipe_program = /he/dovecot/utils/he_spamtrain.pl > antispam_pipe_program_args = --user=%u > antispam_pipe_program_notspam_arg = --falsepositive > antispam_pipe_program_spam_arg = --missed > antispam_pipe_tmpdir = /var/run/dovecot_as_tmp > antispam_signature_missing = move > antispam_spam = Spam;Inbox.Spam;INBOX.Spam;Junk;INBOX.Junk > antispam_trash_pattern_ignorecase = trash > mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename flag_change append > mail_log_fields = uid box msgid flags hetag > memcached_servers = 10.5.47.223,10.5.47.222 > zlib_save = gz > zlib_save_level = 6 > } > protocols = imap pop3 > service anvil { > unix_listener anvil-auth-penalty { > mode = 00 > } > } > service imap-login { > inet_listener imap { > address = 0 > } > inet_listener imaps { > port = 0 > } > process_limit = 29 > process_min_avail = 14 > service_count = 0 > } > service imap-postlogin { > executable = script-login -d /he/dovecot/utils/post_login.sh > } > service imap { > executable = imap imap-postlogin > process_limit = 1270 > vsz_limit = 0 > } > service pop3-login { > inet_listener pop3 { > address = 0 > } > inet_listener pop3s { > port = 0 > } > process_limit = 29 > process_min_avail = 14 > service_count = 0 > } > service pop3-postlogin { > executable = script-login -d /he/dovecot/utils/post_login.sh > } > service pop3 { > executable = pop3 pop3-postlogin > process_limit = 206 > vsz_limit = 512 M > } > ssl = no > userdb { > args = /he/dovecot/conf/dovecot-tc-dict-auth.conf > driver = dict > } > verbose_proctitle = yes > protocol imap { > mail_max_userip_connections = 30 > mail_plugins = zlib quota tc_mail_log notify tc_proc imap_quota antispam > } > protocol pop3 { > mail_max_userip_connections = 30 > pop3_uidl_format = %08Xv%08Xu > } From da-dovecotlist-15 at abelonline.de Thu Feb 20 19:45:32 2014 From: da-dovecotlist-15 at abelonline.de (Boris) Date: Thu, 20 Feb 2014 20:45:32 +0100 Subject: [Dovecot] Why are ACLs for non-existent mailboxes accepted? Message-ID: <1596406.KPuaozNP9l@skynet2> Dovecot 2.2.9-1 accepts SETACL commands that share mailboxes to non-existent mailboxes. There is no error message. Is this intended behavior? I think it's bad because clients present a success message when indeed the intent of the user failed. Typos are hard to catch. From da-dovecotlist-15 at abelonline.de Thu Feb 20 20:15:41 2014 From: da-dovecotlist-15 at abelonline.de (Boris) Date: Thu, 20 Feb 2014 21:15:41 +0100 Subject: [Dovecot] Why are ACLs for non-existent mailboxes accepted? In-Reply-To: <1596406.KPuaozNP9l@skynet2> References: <1596406.KPuaozNP9l@skynet2> Message-ID: <1823776.3i587m2DzB@skynet2> On Thursday 20 February 2014 20:45:32 Boris wrote: > Dovecot 2.2.9-1 accepts SETACL commands that share mailboxes to non-existent > mailboxes. There is no error message. Is this intended behavior? > > I think it's bad because clients present a success message when indeed the > intent of the user failed. Typos are hard to catch. I probably found the solution myself. Quoting RFC 4314: An implementation MUST make sure the ACL commands themselves do not give information about mailboxes with appropriately restricted ACLs. For example, when a user agent executes a GETACL command on a mailbox that the user has no permission to LIST, the server would respond to that request with the same error that would be used if the mailbox did not exist, thus revealing no existence information, much less the mailbox's ACL. If Dovecot would give any error message to the user he would be able to check the existence of mailboxes. In reality imho this isn't any additional insecurity since I could simply send an email to this mailbox and would receive a "delivery failed" message thus knowing of it existence. So is there a way to force Dovecot to refuse SETACL to nonexistent users? From aellert at numeezy.com Thu Feb 20 20:54:07 2014 From: aellert at numeezy.com (Alexandre Ellert) Date: Thu, 20 Feb 2014 21:54:07 +0100 Subject: [Dovecot] Enable mail logger plugin In-Reply-To: References: <2B5904BB-31B8-4428-96C5-37DC7641F5DF@numeezy.com> Message-ID: <5D6C7E92-A48F-43EF-8E49-4C06495356DA@numeezy.com> I've reworked my configuration and now it works as expected. Here is what it looks like now : mail_plugins = quota mail_log notify protocol lda { mail_plugins = $mail_plugins sieve } protocol imap { mail_plugins = $mail_plugins imap_quota antispam } protocol pop3 { mail_plugins = $mail_plugins } Thanks all for your help and for good explanations. Alexandre. From me at junc.eu Fri Feb 21 00:25:04 2014 From: me at junc.eu (Benny Pedersen) Date: Fri, 21 Feb 2014 01:25:04 +0100 Subject: [Dovecot] =?utf-8?q?Why_are_ACLs_for_non-existent_mailboxes_accep?= =?utf-8?q?ted=3F?= In-Reply-To: <1823776.3i587m2DzB@skynet2> References: <1596406.KPuaozNP9l@skynet2> <1823776.3i587m2DzB@skynet2> Message-ID: On 2014-02-20 21:15, Boris wrote: > If Dovecot would give any error message to the user he would be able to > check > the existence of mailboxes. In reality imho this isn't any additional > insecurity since I could simply send an email to this mailbox and would > receive a "delivery failed" message thus knowing of it existence. what if the email is an alias ?, it still does not revail if its local or remote and there is still the possible that more then one alias have a single mailbox so you loose there :=) From nick.z.edwards at gmail.com Fri Feb 21 01:53:22 2014 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Fri, 21 Feb 2014 11:53:22 +1000 Subject: [Dovecot] Bug Report In-Reply-To: References: <68BDBCB3-1A2D-43F4-81C4-BD5C390C9F93@dmevolve.com> <53029992.3050408@thelounge.net> Message-ID: huh? You are logging a bug for antique version, if you grab latest source, build and install it, and problem remains with current version, THEN it is a bug, most devs would ignore you for such sillyness otherwise On 2/20/14, Jon Thompson wrote: > Since I'm obviously using version 2.2.5, which is apparently a supported > version by dovecot, I'd still maintain that it should be submitted as a bug. > I've also submitted the bug to Apple as well. > > Regardless, has anyone compiled a drop-in update that supports Apple Push > Notifications, Sieve, and Open Directory? I'm trying to, but the first two > are causing my configuration files to fail. > -- > - Jon > > > > > On Feb 17, 2014, at 5:21 PM, Reindl Harald wrote: > >> since you are obviously using the binary shipped with >> Mac OSX and packaged by Apple Inc. which is heavily >> outdated while current dovecot is version 2.2.12 >> you may complain to Apple Inc. >> >> Am 18.02.2014 00:19, schrieb Jon Thompson: >>> So when I try and create a sub mailbox in shared-folders, I get this >>> error... >>> >>> imap(pid 56143 user -----): Fatal: master: service(imap): child 56143 >>> killed with signal 11 (core dumps disabled) >>> >>> I've not been able to figure out how to get dovecot in OS X to core dump, >>> so I haven't included that. The documentation on the web doesn't seem to >>> apply to the version Apple ships. >>> >>> Here's dovecotd -n, with the ssl certs removed and the domain replaced >>> with the word domain. >>> # 2.2.5: /Library/Server/Mail/Config/dovecot/dovecot.conf >> >> > From mtrainer at westnet.com.au Fri Feb 21 02:12:31 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Fri, 21 Feb 2014 10:12:31 +0800 Subject: [Dovecot] Dovecot auth query Message-ID: Hi All, I have my initial mailproxy setup with director through to my initial backend mailstore.? POP3 and IMAP user authentication is working ok on the proxy and the mailstore.? I just noticed when I do a "doveadm auth lookup" on the proxy it appears to give correct results but when I do it on the backend mailstore I get the error below.? Config on the mailstore below.? Any ideas?? Murray root at mailproxy01:~# doveadm auth lookup mail1 at example.com passdb: lookup auth succeeded extra fields: ? user=lookup ? proxy ? pass=mail1 at example.com root at mailstore01:~# doveadm auth lookup mail1 at example.com passdb: lookup auth failed extra fields: ? user=lookup root at mailstore01:~# doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.1 auth_debug = yes auth_debug_passwords = yes auth_mechanisms = plain login auth_verbose = yes auth_verbose_passwords = plain disable_plaintext_auth = no dotlock_use_excl = no mail_debug = yes mail_fsync = always mail_location = maildir:~/ mmap_disable = yes namespace { ? inbox = yes ? location = ? prefix = INBOX. ? type = private } passdb { ? args = /etc/dovecot/dovecot-ldap.conf.ext ? driver = ldap } plugin { ? mail_log_fields = uid box msgid size ? sieve = ~/.dovecot.sieve ? sieve_dir = ~/sieve } protocols = " imap lmtp pop3" service lmtp { ? inet_listener lmtp { ??? address = 27.54.95.41 127.0.01 ::1 ??? port = 24 ? } } ssl_cert = From skdovecot at smail.inf.fh-brs.de Fri Feb 21 07:54:34 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 21 Feb 2014 08:54:34 +0100 (CET) Subject: [Dovecot] Why SETACL accepts non-existant users (was Re: Why are ACLs for non-existent mailboxes accepted?) In-Reply-To: <1823776.3i587m2DzB@skynet2> References: <1596406.KPuaozNP9l@skynet2> <1823776.3i587m2DzB@skynet2> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 20 Feb 2014, Boris wrote: > On Thursday 20 February 2014 20:45:32 Boris wrote: >> Dovecot 2.2.9-1 accepts SETACL commands that share mailboxes to non-existent >> mailboxes. There is no error message. Is this intended behavior? There is a "false friend" here. A "mailbox" in the tongue of many English speakers is an IMAP folder, the mailbox file all mails had been appended together in the old times, when mbx or mbox mail storage format was common. In Germany many people use "Mailbox" as the collection of all IMAP folders of one account. So the question is why Dovecot accepts non-existant _users_ as you wrote in your last line. > I probably found the solution myself. Quoting RFC 4314: No, because of mailbox != Mailbox. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwcGOnD1/YhP6VMHAQLsrQgArKBviwA4oHXpQSPHEj9hS+FgmV2pkO82 +3azectYRBh/srANAfhCq+9k6C68yq7BtPTLp77ZyW/v/YG+2lkT4hck+XoEgK+Y NOew0F/9x3hG2/drStM20YLJBzX54THhJObc832Mk7QMGIsSsILdBZ+SeGYMBuU6 +721ytjNjUXF/WBqcgJpA4v+SrFYY1UXTMWWLyUwql/dxJ8lxU7pdhlpoieb9oFm BG5jM5YuFg7Faav3eI260mJwUSvxq/L+5xRafDpF//fmhICPMJBgbB9/Z0e/ariO yvfHCPXppKZRcRUOE0OpcVONBNi/Dkowl1mbEpNxIzVvQZCwIO8eDQ== =Z3aV -----END PGP SIGNATURE----- From fabianosidler at swissonline.ch Fri Feb 21 22:40:09 2014 From: fabianosidler at swissonline.ch (Fabiano Sidler) Date: Fri, 21 Feb 2014 23:40:09 +0100 Subject: [Dovecot] dsync, a zero-way synchronisation tool? Message-ID: <20140221224009.GA81296@lion> Hi folks! I have set up dsync replication with SSH according to http://wiki2.dovecot.org/Replication with the exception of having system users and calling doveadm dsync-server directly from authorized_keys, because the wrapper script posted on the above site is needless (at least in 2.2.10). However, while the two instances connect well to each other, no synchronisation is performed at all, the mailboxes happily remain untouched. I've then temporarily replaced SSH with socat and captured the traffic. Any hints what goes wrong? Unfortunately there are no logs to provide... Greetings, Fabiano -------------- next part -------------- VERSION dsync 3 2 Hhostname sync_ns_prefix sync_box sync_box_guid sync_type debug sync_visible_namespaces exclude_mailboxes send_mail_requests backup_send backup_recv lock_timeout no_mail_sync no_backup_overwrite purge_remote Smailbox_guid last_uidvalidity last_common_uid last_common_modseq last_common_pvt_modseq changes_during_sync Nname existence mailbox_guid uid_validity uid_next last_renamed_or_created subscribed last_subscription_change Dhierarchy_sep mailboxes dirs unsubscribes Bmailbox_guid uid_validity uid_next messages_count first_recent_uid highest_modseq highest_pvt_modseq mailbox_lost cache_fields have_guids have_save_guids have_only_guid128 Atype key value stream deleted last_change modseq Ctype uid guid hdr_hash modseq pvt_modseq save_timestamp add_flags remove_flags final_flags keywords_reset keyword_changes Rguid uid Mguid uid pop3_uidl pop3_order received_date stream cname decision last_used . VERSION dsync 3 2 Hhostname sync_ns_prefix sync_box sync_box_guid sync_type debug sync_visible_namespaces exclude_mailboxes send_mail_requests backup_send backup_recv lock_timeout no_mail_sync no_backup_overwrite purge_remote Smailbox_guid last_uidvalidity last_common_uid last_common_modseq last_common_pvt_modseq changes_during_sync Nname existence mailbox_guid uid_validity uid_next last_renamed_or_created subscribed last_subscription_change Dhierarchy_sep mailboxes dirs unsubscribes Bmailbox_guid uid_validity uid_next messages_count first_recent_uid highest_modseq highest_pvt_modseq mailbox_lost cache_fields have_guids have_save_guids have_only_guid128 Atype key value stream deleted last_change modseq Ctype uid guid hdr_hash modseq pvt_modseq save_timestamp add_flags remove_flags final_flags keywords_reset keyword_changes Rguid uid Mguid uid pop3_uidl pop3_order received_date stream cname decision last_used . Hmail1.example.org    c    Hmail2.example.org NINBOX y 9c788533a3760253b9750000879d8c25 1392670371 29 NTrash y 7888b4327f930253627d0000879d8c25 1392670372 1  1392675836 . D. NINBOX y 9c788533a3760253b9750000879d8c25 1392670371 29 NTrash y 7888b4327f930253627d0000879d8c25 1392670372 1  1392677757 . D. B9c788533a3760253b9750000879d8c25 1392670371 29 28 29 7 0  flagstyt1392926317ndate.receivedttt1392927996ndate.savettt1392927888nsize.virtualtyt1392926317nsize.physicaltyt1392926317nmime.partsttt1392843172nhdr.BCCttt1392926317nhdr.CCttt1392926317nhdr.CONTENT-TYPEttt1392926317nhdr.DATEttt1392926317nhdr.FROMttt1392926317nhdr.IN-REPLY-TOttt1392926317nhdr.MESSAGE-IDttt1392926317nhdr.NEWSGROUPSttt1392926317nhdr.PRIORITYttt1392926317nhdr.REFERENCESttt1392926317nhdr.REPLY-TOttt1392926317nhdr.SUBJECTttt1392926317nhdr.TOttt1392926317nhdr.X-PRIORITYttt1392926317 B9c788533a3760253b9750000879d8c25 1392670371 29 28 29 7 0  flagstyt1392926317ndate.receivedttt1392927996ndate.savettt1392927888nsize.virtualtyt1392926317nsize.physicaltyt1392926317nmime.partsttt1392843172nhdr.Datettt1392926317nhdr.BCCttt1392926317nhdr.CCttt1392926317nhdr.CONTENT-TYPEttt1392926317nhdr.FROMttt1392926317nhdr.IN-REPLY-TOttt1392926317nhdr.MESSAGE-IDttt1392926317nhdr.NEWSGROUPSttt1392926317nhdr.PRIORITYttt1392926317nhdr.REFERENCESttt1392926317nhdr.REPLY-TOttt1392926317nhdr.SUBJECTttt1392926317nhdr.TOttt1392926317nhdr.X-PRIORITYttt1392926317 B7888b4327f930253627d0000879d8c25 1392670372 1 0 1 1 0  flagstt B7888b4327f930253627d0000879d8c25 1392670372 1 0 1 1 0  flagstt . X X -------------- next part -------------- VERSION dsync 3 2 Hhostname sync_ns_prefix sync_box sync_box_guid sync_type debug sync_visible_namespaces exclude_mailboxes send_mail_requests backup_send backup_recv lock_timeout no_mail_sync no_backup_overwrite purge_remote Smailbox_guid last_uidvalidity last_common_uid last_common_modseq last_common_pvt_modseq changes_during_sync Nname existence mailbox_guid uid_validity uid_next last_renamed_or_created subscribed last_subscription_change Dhierarchy_sep mailboxes dirs unsubscribes Bmailbox_guid uid_validity uid_next messages_count first_recent_uid highest_modseq highest_pvt_modseq mailbox_lost cache_fields have_guids have_save_guids have_only_guid128 Atype key value stream deleted last_change modseq Ctype uid guid hdr_hash modseq pvt_modseq save_timestamp add_flags remove_flags final_flags keywords_reset keyword_changes Rguid uid Mguid uid pop3_uidl pop3_order received_date stream cname decision last_used . Hmail2.example.org    c    VERSION dsync 3 2 Hhostname sync_ns_prefix sync_box sync_box_guid sync_type debug sync_visible_namespaces exclude_mailboxes send_mail_requests backup_send backup_recv lock_timeout no_mail_sync no_backup_overwrite purge_remote Smailbox_guid last_uidvalidity last_common_uid last_common_modseq last_common_pvt_modseq changes_during_sync Nname existence mailbox_guid uid_validity uid_next last_renamed_or_created subscribed last_subscription_change Dhierarchy_sep mailboxes dirs unsubscribes Bmailbox_guid uid_validity uid_next messages_count first_recent_uid highest_modseq highest_pvt_modseq mailbox_lost cache_fields have_guids have_save_guids have_only_guid128 Atype key value stream deleted last_change modseq Ctype uid guid hdr_hash modseq pvt_modseq save_timestamp add_flags remove_flags final_flags keywords_reset keyword_changes Rguid uid Mguid uid pop3_uidl pop3_order received_date stream cname decision last_used . Hmail1.example.org NINBOX y c04dac12c0760253f16f000014dc9113 1392670400 26 NTrash y 8dc9d737899302530e77000014dc9113 1392670401 1  1392677772 . D. NINBOX y c04dac12c0760253f16f000014dc9113 1392670400 26 NTrash y 8dc9d737899302530e77000014dc9113 1392670401 1  1392676984 . D. Bc04dac12c0760253f16f000014dc9113 1392670400 26 25 26 5 0  flagstyt1392916751ndate.receivedttt1392928020ndate.savettt1392921503nsize.virtualtyt1392916750nsize.physicaltyt1392928020nmime.partsttt1392843201nhdr.BCCttt1392916750nhdr.CCttt1392916750nhdr.CONTENT-TYPEttt1392916750nhdr.DATEttt1392916750nhdr.FROMttt1392916750nhdr.IN-REPLY-TOttt1392916750nhdr.MESSAGE-IDttt1392916750nhdr.NEWSGROUPSttt1392916750nhdr.PRIORITYttt1392916750nhdr.REFERENCESttt1392916750nhdr.REPLY-TOttt1392916750nhdr.SUBJECTttt1392916750nhdr.TOttt1392916750nhdr.X-PRIORITYttt1392916750 Bc04dac12c0760253f16f000014dc9113 1392670400 26 25 26 5 0  flagstyt1392916751ndate.receivedttt1392928020ndate.savettt1392921503nsize.virtualtyt1392916750nsize.physicaltyt1392928020nmime.partsttt1392843201nhdr.Datettt1392916750nhdr.BCCttt1392916750nhdr.CCttt1392916750nhdr.CONTENT-TYPEttt1392916750nhdr.FROMttt1392916750nhdr.IN-REPLY-TOttt1392916750nhdr.MESSAGE-IDttt1392916750nhdr.NEWSGROUPSttt1392916750nhdr.PRIORITYttt1392916750nhdr.REFERENCESttt1392916750nhdr.REPLY-TOttt1392916750nhdr.SUBJECTttt1392916750nhdr.TOttt1392916750nhdr.X-PRIORITYttt1392916750 B8dc9d737899302530e77000014dc9113 1392670401 1 0 1 1 0  flagstt B8dc9d737899302530e77000014dc9113 1392670401 1 0 1 1 0  flagstt . X X From nathan at schultheiss.fr Sat Feb 22 03:40:19 2014 From: nathan at schultheiss.fr (nathan at schultheiss.fr) Date: Sat, 22 Feb 2014 04:40:19 +0100 Subject: [Dovecot] Dovecot / Postfix and the quota-status Message-ID: <809f2d31c37f6166517ceb80e3278d04@schultheiss.fr> Dovecot Version: 2.2.12 Postfix Version: 2.9.6 Hello I've configured the quota-status service (socket and port). When I call the service with shell, he replied request=smtpd_access_policy sender=sender at domain.tld recipient=recipient at domain.tld size=100000 action=552 5.2.2 Mailbox is full In shell the service returns a 552 when the quota is exceeded, but when postfix call it, the service return alway DUNNO. How it's possible to debug the quota-status for understand why to postfix the service return DUNNO and not 552 ? The mailbox it's overquota already, all quota check with shell return the good reply (552). Thank in advance for your help, Nathan => Postfix trace INET Call ************************** connect(21, {sa_family=AF_INET, sin_port=htons(12340), sin_addr=inet_addr("127.0.0.1")}, 16) = -1 EINPROGRESS (Operation now in progress) poll([{fd=21, events=POLLOUT}], 1, 100000) = 1 ([{fd=21, revents=POLLOUT}]) getsockopt(21, SOL_SOCKET, SO_ERROR, [0], [4]) = 0 fcntl(21, F_GETFL) = 0x802 (flags O_RDWR|O_NONBLOCK) fcntl(21, F_SETFL, O_RDWR) = 0 fcntl(21, F_GETFD) = 0 fcntl(21, F_SETFD, FD_CLOEXEC) = 0 epoll_ctl(11, EPOLL_CTL_ADD, 21, {EPOLLIN, {u32=21}}) = 0 poll([{fd=21, events=POLLIN}], 1, 0) = 0 (Timeout) poll([{fd=21, events=POLLOUT}], 1, 100000) = 1 ([{fd=21, revents=POLLOUT}]) write(21, "request=smtpd_access_policy\nprot"..., 518) = 518 poll([{fd=21, events=POLLIN}], 1, 100000) = 1 ([{fd=21, revents=POLLIN}]) read(21, "action=DUNNO\n\n", 4096) = 14 => Postfix trace SOCKET Call **************************** connect(21, {sa_family=AF_FILE, path="private/quota-status"}, 110) = 0 fcntl(21, F_GETFL) = 0x802 (flags O_RDWR|O_NONBLOCK) fcntl(21, F_SETFL, O_RDWR) = 0 fcntl(21, F_GETFD) = 0 fcntl(21, F_SETFD, FD_CLOEXEC) = 0 epoll_ctl(11, EPOLL_CTL_ADD, 21, {EPOLLIN, {u32=21}}) = 0 poll([{fd=21, events=POLLIN}], 1, 0) = 0 (Timeout) poll([{fd=21, events=POLLOUT}], 1, 100000) = 1 ([{fd=21, revents=POLLOUT}]) write(21, "request=smtpd_access_policy\nprot"..., 516) = 516 poll([{fd=21, events=POLLIN}], 1, 100000) = 1 ([{fd=21, revents=POLLIN}]) read(21, "action=DUNNO\n\n", 4096) = 14 From voytek at sbt.net.au Sat Feb 22 04:37:02 2014 From: voytek at sbt.net.au (voytek at sbt.net.au) Date: Sat, 22 Feb 2014 15:37:02 +1100 Subject: [Dovecot] version question Message-ID: <69216b14a77961a8fe330ff14583321e.squirrel@emu.sbt.net.au> I have Dovecot server from a iRedMail install, version 2.0.21 dovecot --version 2.0.21 yum update wants to update as so from iRedMail repo: --> Running transaction check ---> Package dovecot.x86_64 1:2.0.21-0_136.el6 will be updated ---> Package dovecot.x86_64 1:2.1.17-0_136.el6 will be an update ---> Package dovecot-managesieve.x86_64 2:0.2.6-22.el6 will be updated ---> Package dovecot-managesieve.x86_64 2:0.3.6-26.el6 will be an update ---> Package dovecot-pigeonhole.x86_64 2:0.2.6-22.el6 will be updated ---> Package dovecot-pigeonhole.x86_64 2:0.3.6-26.el6 will be an update --> Finished Dependency Resolution Package Arch Version Repository Size ========================================================================================================= Updating: dovecot x86_64 1:2.1.17-0_136.el6 iRedMail 2.4 M dovecot-managesieve x86_64 2:0.3.6-26.el6 iRedMail 45 k dovecot-pigeonhole x86_64 2:0.3.6-26.el6 iRedMail 348 k so, if I run this update, I'll update to '2.1.17-0', yes ? ahem, dumb question ahead: what's the '1' in front ? 1:2.1.17-0_136 (dumb user worrying that I don't attempt to install ver 1...) apart from /etc/dovecot/*, should I backup anything else ? sorry for dumb q... thanks From gedalya at gedalya.net Sat Feb 22 04:49:45 2014 From: gedalya at gedalya.net (Gedalya) Date: Fri, 21 Feb 2014 23:49:45 -0500 Subject: [Dovecot] version question In-Reply-To: <69216b14a77961a8fe330ff14583321e.squirrel@emu.sbt.net.au> References: <69216b14a77961a8fe330ff14583321e.squirrel@emu.sbt.net.au> Message-ID: <53082C69.4000701@gedalya.net> On 02/21/2014 11:37 PM, voytek at sbt.net.au wrote: > --> Running transaction check > ---> Package dovecot.x86_64 1:2.0.21-0_136.el6 will be updated > ---> Package dovecot.x86_64 1:2.1.17-0_136.el6 will be an update > ---> Package dovecot-managesieve.x86_64 2:0.2.6-22.el6 will be updated > ---> Package dovecot-managesieve.x86_64 2:0.3.6-26.el6 will be an update > ---> Package dovecot-pigeonhole.x86_64 2:0.2.6-22.el6 will be updated > ---> Package dovecot-pigeonhole.x86_64 2:0.3.6-26.el6 will be an update > --> Finished Dependency Resolution > ahem, dumb question ahead: what's the '1' in front ? 1:2.1.17-0_136 > > As you can see the 1: prefix appears also in your currently installed packages. The number followed by a colon, e.g. 1:, is not part of the upstream version, it's called an epoch and it's part of the package version. It's a trick related to your package manager and its repositories, not to the specific software in question. From chris.laif at googlemail.com Sat Feb 22 10:21:34 2014 From: chris.laif at googlemail.com (Chris Laif) Date: Sat, 22 Feb 2014 11:21:34 +0100 Subject: [Dovecot] Disable/patch iOS7 Full Body Search Message-ID: As mentioned in other posts [1], iOS7 Mail App uses a multi-folder full body search by default. As to my knowledge, this behavior cannot be disabled within the Mail App. Is there any way to disable/patch this behavior on the server side? My users complain that searching now takes 'forever'. They were happy with the old behavior (searching From/To/Subject only). I do NOT want to setup/maintain a dovecot FTS. I just want to have the 'old' behavior. Chris [1 ]http://blog.fastmail.fm/2013/09/17/ios-7-mail-app-uses-multi-folder-body-searches-by-default/ ("Our plan at FastMail is to detect iOS clients, and convert all searches into FUZZY searches.") From p.heinlein at heinlein-support.de Sat Feb 22 10:46:58 2014 From: p.heinlein at heinlein-support.de (Peer Heinlein) Date: Sat, 22 Feb 2014 11:46:58 +0100 Subject: [Dovecot] doveadm mailbox command in multi instance setup Message-ID: <53088022.9030404@heinlein-support.de> We're running Dovecot in a multipe instance cluster with individual userdb-querys to different LDAP-Servers. As far as I can see there's no way to use the doveadm mailbox command with different Auth-Sockets or different configurations. While root at dobby4:/etc/dovecot# doveadm user -a /var/run/dovecot-xy/auth-master p.heinlein at example.com field value uid 10000 gid 10000 home /mail/example.com/123456/ mail mdbox:~/mdbox quota_rule2 *:storage=50G is working, using doveadm -c /etc/dovecot/dovecot-xy.conf mailbox list -u p.heinlein at example.com does NOT an (user unknown). How can use a different auth socket with "doveadm mailbox" commands? (Maybe using the network socket could be a working way, but what about normal way on the command line?) Peer -- Heinlein Support GmbH Schwedter Str. 8/9b, 10119 Berlin http://www.heinlein-support.de Tel: 030 / 405051-42 Fax: 030 / 405051-19 Zwangsangaben lt. ?35a GmbHG: HRB 93818 B / Amtsgericht Berlin-Charlottenburg, Gesch?ftsf?hrer: Peer Heinlein -- Sitz: Berlin -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: OpenPGP digital signature URL: From adbr at nic.ru Sat Feb 22 23:48:45 2014 From: adbr at nic.ru (Andrei Dobrotsvetov) Date: Sun, 23 Feb 2014 03:48:45 +0400 (MSK) Subject: [Dovecot] dsync: possible cosmetic bug Message-ID: Hello Everyone, I use dovecot2-2.2.10, FreeBSD 9.2-RELEASE. Replication was set up according to: http://wiki2.dovecot.org/Replication, dsync wrapper script is used. It seems that all is worked as desired, but i see the following into log file: doveadm: Error: dsync-remote(XXX at YYY): Info: save: box=INBOX, ... There were no such log records when i tried replication without wrapper script. Best regards, Andrei From mailinglists at easy-mail.it Sun Feb 23 14:07:32 2014 From: mailinglists at easy-mail.it (Francesco) Date: Sun, 23 Feb 2014 15:07:32 +0100 Subject: [Dovecot] realtime backup with LDA? Message-ID: <530A00A4.3090103@easy-mail.it> Hello everyone, i was reading the dovecot-lda documentation as i'm using LDA as a delivery agent on my current mailserver configuration. I was curious to know if there are some options for having a message to be delivered to a "twin mailbox" upon delivery. this twin mailbox would work as a backup archive for recovering emails in case the user accidentally deletes them. so if i have a user which is alice i would create a second mailbox named backup_alice or whatever respecting a predictable schema and then every mail delivered to alice would also be delivered to backup_alice. do you know if this can be done? have any example? i was also planning to use shared folders + ACLS to have backup_alice accessible as a read only mailbox directly from the alice imap account. thanks in advance Francesco From leho at kraav.com Sun Feb 23 15:56:36 2014 From: leho at kraav.com (Leho Kraav) Date: Sun, 23 Feb 2014 17:56:36 +0200 Subject: [Dovecot] 2.2.12: Panic: file mail-index.c: line 380 (mail_index_keywords_unref): assertion failed: (keywords->refcount > 0) Message-ID: <530A1A34.4090206@kraav.com> I upgraded 2.1 -> 2.2 something like a week ago because I needed INDEXPVT. Not sure if this crash started immediately or not, noticed it today looking at journalctl. Backtrace http://bpaste.net/raw/181944/ and pasted below. This seems to crash on every IMAP connection made, so any ideas for a possible client-level workaround are quite welcome until dovecot code improves here. root at server ~ $ dovecot -n # 2.2.12: /etc/dovecot/dovecot.conf # OS: Linux 3.4.54-vs2.3.3.5+pf64 x86_64 Gentoo Base System release 2.2 ext4 hostname = *hidden* listen = 192.168.1.2 log_path = /dev/stderr log_timestamp = mail_gid = mail mail_home = /secure/Maildir/%n mail_location = Maildir:/secure/Maildir/%n mail_plugins = acl mail_privileged_group = mail mail_uid = mail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { list = children location = maildir:/secure/Maildir/%%n:INDEXPVT=/secure/Maildir/%n/shared/%%n prefix = Shared.%%n. separator = . subscriptions = no type = shared } namespace { location = maildir:/secure/Maildir/projekt:INDEX=/secure/Maildir/%n/projekt prefix = Projekt. separator = . subscriptions = no type = public } namespace { location = maildir:/secure/Maildir/rss:INDEX=/secure/Maildir/%n/rss prefix = RSS. separator = . subscriptions = no type = public } namespace inbox { hidden = no inbox = yes list = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = separator = . subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { acl = vfile acl_shared_dict = file:/secure/Maildir/shared-mailboxes.db mail_log_events = mailbox_delete sieve = /secure/Maildir/%n/dovecot-sieve sieve_dir = /secure/Maildir/%n/sieve sieve_global_path = /etc/dovecot/sieve/default.sieve } postmaster_address = postmaster protocols = imap lmtp sieve service auth { unix_listener auth-userdb { mode = 0600 user = mail } user = mail } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } service managesieve-login { inet_listener sieve { port = 4190 } } ssl_cert = , status=status at entry=0) at failures.c:193 backtrace = 0xae54a8 "/usr/lib64/dovecot/libdovecot.so.0(+0x6adcf) [0x7f64dab76dcf] -> /usr/lib64/dovecot/libdovecot.so.0(+0x6ae2e) [0x7f64dab76e2e] -> /usr/lib64/dovecot/libdovecot.so.0(i_fatal+0) [0x7f64dab30d4e] -> /usr"... #3 0x00007f64dab76e2e in i_internal_fatal_handler (ctx=0x7fffb9d88d00, format=, args=) at failures.c:657 status = 0 #4 0x00007f64dab30d4e in i_panic (format=format at entry=0x7f64dae79848 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:267 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fffb9d88df0, reg_save_area = 0x7fffb9d88d30}} #5 0x00007f64dae59fbc in mail_index_keywords_unref (_keywords=) at mail-index.c:380 keywords = __FUNCTION__ = "mail_index_keywords_unref" #6 0x00007f64dae22657 in mailbox_copy (_ctx=, mail=mail at entry=0xbcf260) at mail-storage.c:2140 ctx = 0xbd3a80 t = 0xbcd580 keywords = 0xbd4a50 pvt_flags = 0 real_mail = ret = -1 __FUNCTION__ = "mailbox_copy" #7 0x00007f64dae2270d in mailbox_move (_ctx=, mail=0xbcf260) at mail-storage.c:2153 ctx = 0xbd3a80 #8 0x000000000040e72d in fetch_and_copy (copy_count_r=, src_uidset_r=, search_args=, src_trans_r=0x7fffb9d88e88, t=0xbcd580, move=true, client=0xb0de50) at cmd-copy.c:67 search_ctx = 0xbcefe0 src_trans = 0xbce2c0 srcset_ctx = {str = 0xae5320, first_uid = 0, last_uid = 4294967295} ret = 1 save_ctx = 0x0 mail = 0xbcf260 copy_count = 1 src_uidset = 0xae5320 #9 cmd_copy_full (cmd=0xb0ea30, move=true) at cmd-copy.c:123 client = 0xb0de50 dest_storage = destbox = 0xb87bf0 t = 0xbcd580 src_trans = search_args = 0xb86be0 messageset = 0xaf0b60 "2631" mailbox = 0xaf0b68 "Trash" src_uidset = sync_flags = (unknown: 0) imap_flags = (unknown: 0) changes = {pool = 0x7fffb9d88fb0, uid_validity = 3117977312, saved_uids = {arr = {buffer = 0xd, element_size = 140071145425344}, v = 0xd, v_modifiable = 0xd}, ignored_modseq_changes = 11471704, changed = false, no_read_perm = false} copy_count = msg = ret = __FUNCTION__ = "cmd_copy_full" #10 0x0000000000418e6c in command_exec (cmd=cmd at entry=0xb0ea30) at imap-commands.c:158 hook = 0xaee0f0 ret = #11 0x0000000000417ed0 in client_command_input (cmd=0xb0ea30) at imap-client.c:780 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #12 0x0000000000417f8a in client_command_input (cmd=0xb0ea30) at imap-client.c:841 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #13 0x0000000000418245 in client_handle_next_command (remove_io_r=, client=0xb0de50) at imap-client.c:879 No locals. #14 client_handle_input (client=client at entry=0xb0de50) at imap-client.c:891 _data_stack_cur_id = 3 ret = 64 remove_io = false handled_commands = false __FUNCTION__ = "client_handle_input" #15 0x00000000004185f2 in client_input (client=0xb0de50) at imap-client.c:933 cmd = output = 0xb0e880 bytes = 26 __FUNCTION__ = "client_input" #16 0x00007f64dab873b6 in io_loop_call_io (io=0xb0e950) at ioloop.c:388 ioloop = 0xaed740 t_id = 2 #17 0x00007f64dab88237 in io_loop_handler_run (ioloop=ioloop at entry=0xaed740) at ioloop-epoll.c:220 ctx = 0xaee3d0 events = 0x0 event = 0xaef1f0 list = 0xaefdc0 io = tv = {tv_sec = 4, tv_usec = 995201} events_count = msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #18 0x00007f64dab86ec8 in io_loop_run (ioloop=0xaed740) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #19 0x00007f64dab36033 in master_service_run (service=0xaed5d0, callback=callback at entry=0x4216a0 ) at master-service.c:566 No locals. #20 0x000000000040cc87 in main (argc=1, argv=0xaed390) at main.c:400 set_roots = {0x429180 , 0x0} login_set = {auth_socket_path = 0xae5048 "\001", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x421550 , failure_callback = 0x421260 , request_auth_token = 1} service_flags = storage_service_flags = username = 0x0 c = #0 0x00007f64da799535 in raise () from /lib64/libc.so.6 No symbol table info available. #1 0x00007f64da79a9b8 in abort () from /lib64/libc.so.6 No symbol table info available. #2 0x00007f64dab76dc5 in default_fatal_finish (type=, status=status at entry=0) at failures.c:193 backtrace = 0xae54a8 "/usr/lib64/dovecot/libdovecot.so.0(+0x6adcf) [0x7f64dab76dcf] -> /usr/lib64/dovecot/libdovecot.so.0(+0x6ae2e) [0x7f64dab76e2e] -> /usr/lib64/dovecot/libdovecot.so.0(i_fatal+0) [0x7f64dab30d4e] -> /usr"... #3 0x00007f64dab76e2e in i_internal_fatal_handler (ctx=0x7fffb9d88d00, format=, args=) at failures.c:657 status = 0 #4 0x00007f64dab30d4e in i_panic (format=format at entry=0x7f64dae79848 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:267 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fffb9d88df0, reg_save_area = 0x7fffb9d88d30}} #5 0x00007f64dae59fbc in mail_index_keywords_unref (_keywords=) at mail-index.c:380 keywords = __FUNCTION__ = "mail_index_keywords_unref" #6 0x00007f64dae22657 in mailbox_copy (_ctx=, mail=mail at entry=0xbcf260) at mail-storage.c:2140 ctx = 0xbd3a80 t = 0xbcd580 keywords = 0xbd4a50 pvt_flags = 0 real_mail = ret = -1 __FUNCTION__ = "mailbox_copy" #7 0x00007f64dae2270d in mailbox_move (_ctx=, mail=0xbcf260) at mail-storage.c:2153 ctx = 0xbd3a80 #8 0x000000000040e72d in fetch_and_copy (copy_count_r=, src_uidset_r=, search_args=, src_trans_r=0x7fffb9d88e88, t=0xbcd580, move=true, client=0xb0de50) at cmd-copy.c:67 search_ctx = 0xbcefe0 src_trans = 0xbce2c0 srcset_ctx = {str = 0xae5320, first_uid = 0, last_uid = 4294967295} ret = 1 save_ctx = 0x0 mail = 0xbcf260 copy_count = 1 src_uidset = 0xae5320 #9 cmd_copy_full (cmd=0xb0ea30, move=true) at cmd-copy.c:123 client = 0xb0de50 dest_storage = destbox = 0xb87bf0 t = 0xbcd580 src_trans = search_args = 0xb86be0 messageset = 0xaf0b60 "2631" mailbox = 0xaf0b68 "Trash" src_uidset = sync_flags = (unknown: 0) imap_flags = (unknown: 0) changes = {pool = 0x7fffb9d88fb0, uid_validity = 3117977312, saved_uids = {arr = {buffer = 0xd, element_size = 140071145425344}, v = 0xd, v_modifiable = 0xd}, ignored_modseq_changes = 11471704, changed = false, no_read_perm = false} copy_count = msg = ret = __FUNCTION__ = "cmd_copy_full" #10 0x0000000000418e6c in command_exec (cmd=cmd at entry=0xb0ea30) at imap-commands.c:158 hook = 0xaee0f0 ret = #11 0x0000000000417ed0 in client_command_input (cmd=0xb0ea30) at imap-client.c:780 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #12 0x0000000000417f8a in client_command_input (cmd=0xb0ea30) at imap-client.c:841 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #13 0x0000000000418245 in client_handle_next_command (remove_io_r=, client=0xb0de50) at imap-client.c:879 No locals. #14 client_handle_input (client=client at entry=0xb0de50) at imap-client.c:891 _data_stack_cur_id = 3 ret = 64 remove_io = false handled_commands = false __FUNCTION__ = "client_handle_input" #15 0x00000000004185f2 in client_input (client=0xb0de50) at imap-client.c:933 cmd = output = 0xb0e880 bytes = 26 __FUNCTION__ = "client_input" #16 0x00007f64dab873b6 in io_loop_call_io (io=0xb0e950) at ioloop.c:388 ioloop = 0xaed740 t_id = 2 #17 0x00007f64dab88237 in io_loop_handler_run (ioloop=ioloop at entry=0xaed740) at ioloop-epoll.c:220 ctx = 0xaee3d0 events = 0x0 event = 0xaef1f0 list = 0xaefdc0 io = tv = {tv_sec = 4, tv_usec = 995201} events_count = msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #18 0x00007f64dab86ec8 in io_loop_run (ioloop=0xaed740) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #19 0x00007f64dab36033 in master_service_run (service=0xaed5d0, callback=callback at entry=0x4216a0 ) at master-service.c:566 No locals. #20 0x000000000040cc87 in main (argc=1, argv=0xaed390) at main.c:400 set_roots = {0x429180 , 0x0} login_set = {auth_socket_path = 0xae5048 "\001", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x421550 , failure_callback = 0x421260 , request_auth_token = 1} service_flags = storage_service_flags = username = 0x0 c = #0 0x00007f64da799535 in raise () from /lib64/libc.so.6 No symbol table info available. #1 0x00007f64da79a9b8 in abort () from /lib64/libc.so.6 No symbol table info available. #2 0x00007f64dab76dc5 in default_fatal_finish (type=, status=status at entry=0) at failures.c:193 backtrace = 0xae54a8 "/usr/lib64/dovecot/libdovecot.so.0(+0x6adcf) [0x7f64dab76dcf] -> /usr/lib64/dovecot/libdovecot.so.0(+0x6ae2e) [0x7f64dab76e2e] -> /usr/lib64/dovecot/libdovecot.so.0(i_fatal+0) [0x7f64dab30d4e] -> /usr"... #3 0x00007f64dab76e2e in i_internal_fatal_handler (ctx=0x7fffb9d88d00, format=, args=) at failures.c:657 status = 0 #4 0x00007f64dab30d4e in i_panic (format=format at entry=0x7f64dae79848 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:267 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fffb9d88df0, reg_save_area = 0x7fffb9d88d30}} #5 0x00007f64dae59fbc in mail_index_keywords_unref (_keywords=) at mail-index.c:380 keywords = __FUNCTION__ = "mail_index_keywords_unref" #6 0x00007f64dae22657 in mailbox_copy (_ctx=, mail=mail at entry=0xbcf260) at mail-storage.c:2140 ctx = 0xbd3a80 t = 0xbcd580 keywords = 0xbd4a50 pvt_flags = 0 real_mail = ret = -1 __FUNCTION__ = "mailbox_copy" #7 0x00007f64dae2270d in mailbox_move (_ctx=, mail=0xbcf260) at mail-storage.c:2153 ctx = 0xbd3a80 #8 0x000000000040e72d in fetch_and_copy (copy_count_r=, src_uidset_r=, search_args=, src_trans_r=0x7fffb9d88e88, t=0xbcd580, move=true, client=0xb0de50) at cmd-copy.c:67 search_ctx = 0xbcefe0 src_trans = 0xbce2c0 srcset_ctx = {str = 0xae5320, first_uid = 0, last_uid = 4294967295} ret = 1 save_ctx = 0x0 mail = 0xbcf260 copy_count = 1 src_uidset = 0xae5320 #9 cmd_copy_full (cmd=0xb0ea30, move=true) at cmd-copy.c:123 client = 0xb0de50 dest_storage = destbox = 0xb87bf0 t = 0xbcd580 src_trans = search_args = 0xb86be0 messageset = 0xaf0b60 "2631" mailbox = 0xaf0b68 "Trash" src_uidset = sync_flags = (unknown: 0) imap_flags = (unknown: 0) changes = {pool = 0x7fffb9d88fb0, uid_validity = 3117977312, saved_uids = {arr = {buffer = 0xd, element_size = 140071145425344}, v = 0xd, v_modifiable = 0xd}, ignored_modseq_changes = 11471704, changed = false, no_read_perm = false} copy_count = msg = ret = __FUNCTION__ = "cmd_copy_full" #10 0x0000000000418e6c in command_exec (cmd=cmd at entry=0xb0ea30) at imap-commands.c:158 hook = 0xaee0f0 ret = #11 0x0000000000417ed0 in client_command_input (cmd=0xb0ea30) at imap-client.c:780 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #12 0x0000000000417f8a in client_command_input (cmd=0xb0ea30) at imap-client.c:841 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #13 0x0000000000418245 in client_handle_next_command (remove_io_r=, client=0xb0de50) at imap-client.c:879 No locals. #14 client_handle_input (client=client at entry=0xb0de50) at imap-client.c:891 _data_stack_cur_id = 3 ret = 64 remove_io = false handled_commands = false __FUNCTION__ = "client_handle_input" #15 0x00000000004185f2 in client_input (client=0xb0de50) at imap-client.c:933 cmd = output = 0xb0e880 bytes = 26 __FUNCTION__ = "client_input" #16 0x00007f64dab873b6 in io_loop_call_io (io=0xb0e950) at ioloop.c:388 ioloop = 0xaed740 t_id = 2 #17 0x00007f64dab88237 in io_loop_handler_run (ioloop=ioloop at entry=0xaed740) at ioloop-epoll.c:220 ctx = 0xaee3d0 events = 0x0 event = 0xaef1f0 list = 0xaefdc0 io = tv = {tv_sec = 4, tv_usec = 995201} events_count = msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #18 0x00007f64dab86ec8 in io_loop_run (ioloop=0xaed740) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #19 0x00007f64dab36033 in master_service_run (service=0xaed5d0, callback=callback at entry=0x4216a0 ) at master-service.c:566 No locals. #20 0x000000000040cc87 in main (argc=1, argv=0xaed390) at main.c:400 set_roots = {0x429180 , 0x0} login_set = {auth_socket_path = 0xae5048 "\001", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x421550 , failure_callback = 0x421260 , request_auth_token = 1} service_flags = storage_service_flags = username = 0x0 c = #0 0x00007f64da799535 in raise () from /lib64/libc.so.6 No symbol table info available. #1 0x00007f64da79a9b8 in abort () from /lib64/libc.so.6 No symbol table info available. #2 0x00007f64dab76dc5 in default_fatal_finish (type=, status=status at entry=0) at failures.c:193 backtrace = 0xae54a8 "/usr/lib64/dovecot/libdovecot.so.0(+0x6adcf) [0x7f64dab76dcf] -> /usr/lib64/dovecot/libdovecot.so.0(+0x6ae2e) [0x7f64dab76e2e] -> /usr/lib64/dovecot/libdovecot.so.0(i_fatal+0) [0x7f64dab30d4e] -> /usr"... #3 0x00007f64dab76e2e in i_internal_fatal_handler (ctx=0x7fffb9d88d00, format=, args=) at failures.c:657 status = 0 #4 0x00007f64dab30d4e in i_panic (format=format at entry=0x7f64dae79848 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:267 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fffb9d88df0, reg_save_area = 0x7fffb9d88d30}} #5 0x00007f64dae59fbc in mail_index_keywords_unref (_keywords=) at mail-index.c:380 keywords = __FUNCTION__ = "mail_index_keywords_unref" #6 0x00007f64dae22657 in mailbox_copy (_ctx=, mail=mail at entry=0xbcf260) at mail-storage.c:2140 ctx = 0xbd3a80 t = 0xbcd580 keywords = 0xbd4a50 pvt_flags = 0 real_mail = ret = -1 __FUNCTION__ = "mailbox_copy" #7 0x00007f64dae2270d in mailbox_move (_ctx=, mail=0xbcf260) at mail-storage.c:2153 ctx = 0xbd3a80 #8 0x000000000040e72d in fetch_and_copy (copy_count_r=, src_uidset_r=, search_args=, src_trans_r=0x7fffb9d88e88, t=0xbcd580, move=true, client=0xb0de50) at cmd-copy.c:67 search_ctx = 0xbcefe0 src_trans = 0xbce2c0 srcset_ctx = {str = 0xae5320, first_uid = 0, last_uid = 4294967295} ret = 1 save_ctx = 0x0 mail = 0xbcf260 copy_count = 1 src_uidset = 0xae5320 #9 cmd_copy_full (cmd=0xb0ea30, move=true) at cmd-copy.c:123 client = 0xb0de50 dest_storage = destbox = 0xb87bf0 t = 0xbcd580 src_trans = search_args = 0xb86be0 messageset = 0xaf0b60 "2631" mailbox = 0xaf0b68 "Trash" src_uidset = sync_flags = (unknown: 0) imap_flags = (unknown: 0) changes = {pool = 0x7fffb9d88fb0, uid_validity = 3117977312, saved_uids = {arr = {buffer = 0xd, element_size = 140071145425344}, v = 0xd, v_modifiable = 0xd}, ignored_modseq_changes = 11471704, changed = false, no_read_perm = false} copy_count = msg = ret = __FUNCTION__ = "cmd_copy_full" #10 0x0000000000418e6c in command_exec (cmd=cmd at entry=0xb0ea30) at imap-commands.c:158 hook = 0xaee0f0 ret = #11 0x0000000000417ed0 in client_command_input (cmd=0xb0ea30) at imap-client.c:780 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #12 0x0000000000417f8a in client_command_input (cmd=0xb0ea30) at imap-client.c:841 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #13 0x0000000000418245 in client_handle_next_command (remove_io_r=, client=0xb0de50) at imap-client.c:879 No locals. #14 client_handle_input (client=client at entry=0xb0de50) at imap-client.c:891 _data_stack_cur_id = 3 ret = 64 remove_io = false handled_commands = false __FUNCTION__ = "client_handle_input" #15 0x00000000004185f2 in client_input (client=0xb0de50) at imap-client.c:933 cmd = output = 0xb0e880 bytes = 26 __FUNCTION__ = "client_input" #16 0x00007f64dab873b6 in io_loop_call_io (io=0xb0e950) at ioloop.c:388 ioloop = 0xaed740 t_id = 2 #17 0x00007f64dab88237 in io_loop_handler_run (ioloop=ioloop at entry=0xaed740) at ioloop-epoll.c:220 ctx = 0xaee3d0 events = 0x0 event = 0xaef1f0 list = 0xaefdc0 io = tv = {tv_sec = 4, tv_usec = 995201} events_count = msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #18 0x00007f64dab86ec8 in io_loop_run (ioloop=0xaed740) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #19 0x00007f64dab36033 in master_service_run (service=0xaed5d0, callback=callback at entry=0x4216a0 ) at master-service.c:566 No locals. #20 0x000000000040cc87 in main (argc=1, argv=0xaed390) at main.c:400 set_roots = {0x429180 , 0x0} login_set = {auth_socket_path = 0xae5048 "\001", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x421550 , failure_callback = 0x421260 , request_auth_token = 1} service_flags = storage_service_flags = username = 0x0 c = #0 0x00007f64da799535 in raise () from /lib64/libc.so.6 No symbol table info available. #1 0x00007f64da79a9b8 in abort () from /lib64/libc.so.6 No symbol table info available. #2 0x00007f64dab76dc5 in default_fatal_finish (type=, status=status at entry=0) at failures.c:193 backtrace = 0xae54a8 "/usr/lib64/dovecot/libdovecot.so.0(+0x6adcf) [0x7f64dab76dcf] -> /usr/lib64/dovecot/libdovecot.so.0(+0x6ae2e) [0x7f64dab76e2e] -> /usr/lib64/dovecot/libdovecot.so.0(i_fatal+0) [0x7f64dab30d4e] -> /usr"... #3 0x00007f64dab76e2e in i_internal_fatal_handler (ctx=0x7fffb9d88d00, format=, args=) at failures.c:657 status = 0 #4 0x00007f64dab30d4e in i_panic (format=format at entry=0x7f64dae79848 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:267 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fffb9d88df0, reg_save_area = 0x7fffb9d88d30}} #5 0x00007f64dae59fbc in mail_index_keywords_unref (_keywords=) at mail-index.c:380 keywords = __FUNCTION__ = "mail_index_keywords_unref" #6 0x00007f64dae22657 in mailbox_copy (_ctx=, mail=mail at entry=0xbcf260) at mail-storage.c:2140 ctx = 0xbd3a80 t = 0xbcd580 keywords = 0xbd4a50 pvt_flags = 0 real_mail = ret = -1 __FUNCTION__ = "mailbox_copy" #7 0x00007f64dae2270d in mailbox_move (_ctx=, mail=0xbcf260) at mail-storage.c:2153 ctx = 0xbd3a80 #8 0x000000000040e72d in fetch_and_copy (copy_count_r=, src_uidset_r=, search_args=, src_trans_r=0x7fffb9d88e88, t=0xbcd580, move=true, client=0xb0de50) at cmd-copy.c:67 search_ctx = 0xbcefe0 src_trans = 0xbce2c0 srcset_ctx = {str = 0xae5320, first_uid = 0, last_uid = 4294967295} ret = 1 save_ctx = 0x0 mail = 0xbcf260 copy_count = 1 src_uidset = 0xae5320 #9 cmd_copy_full (cmd=0xb0ea30, move=true) at cmd-copy.c:123 client = 0xb0de50 dest_storage = destbox = 0xb87bf0 t = 0xbcd580 src_trans = search_args = 0xb86be0 messageset = 0xaf0b60 "2631" mailbox = 0xaf0b68 "Trash" src_uidset = sync_flags = (unknown: 0) imap_flags = (unknown: 0) changes = {pool = 0x7fffb9d88fb0, uid_validity = 3117977312, saved_uids = {arr = {buffer = 0xd, element_size = 140071145425344}, v = 0xd, v_modifiable = 0xd}, ignored_modseq_changes = 11471704, changed = false, no_read_perm = false} copy_count = msg = ret = __FUNCTION__ = "cmd_copy_full" #10 0x0000000000418e6c in command_exec (cmd=cmd at entry=0xb0ea30) at imap-commands.c:158 hook = 0xaee0f0 ret = #11 0x0000000000417ed0 in client_command_input (cmd=0xb0ea30) at imap-client.c:780 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #12 0x0000000000417f8a in client_command_input (cmd=0xb0ea30) at imap-client.c:841 client = 0xb0de50 command = __FUNCTION__ = "client_command_input" #13 0x0000000000418245 in client_handle_next_command (remove_io_r=, client=0xb0de50) at imap-client.c:879 No locals. #14 client_handle_input (client=client at entry=0xb0de50) at imap-client.c:891 _data_stack_cur_id = 3 ret = 64 remove_io = false handled_commands = false __FUNCTION__ = "client_handle_input" #15 0x00000000004185f2 in client_input (client=0xb0de50) at imap-client.c:933 cmd = output = 0xb0e880 bytes = 26 __FUNCTION__ = "client_input" #16 0x00007f64dab873b6 in io_loop_call_io (io=0xb0e950) at ioloop.c:388 ioloop = 0xaed740 t_id = 2 #17 0x00007f64dab88237 in io_loop_handler_run (ioloop=ioloop at entry=0xaed740) at ioloop-epoll.c:220 ctx = 0xaee3d0 events = 0x0 event = 0xaef1f0 list = 0xaefdc0 io = tv = {tv_sec = 4, tv_usec = 995201} events_count = msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #18 0x00007f64dab86ec8 in io_loop_run (ioloop=0xaed740) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #19 0x00007f64dab36033 in master_service_run (service=0xaed5d0, callback=callback at entry=0x4216a0 ) at master-service.c:566 No locals. #20 0x000000000040cc87 in main (argc=1, argv=0xaed390) at main.c:400 set_roots = {0x429180 , 0x0} login_set = {auth_socket_path = 0xae5048 "\001", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x421550 , failure_callback = 0x421260 , request_auth_token = 1} service_flags = storage_service_flags = username = 0x0 c = From fabianosidler at swissonline.ch Sun Feb 23 16:21:47 2014 From: fabianosidler at swissonline.ch (Fabiano Sidler) Date: Sun, 23 Feb 2014 17:21:47 +0100 Subject: [Dovecot] dsync: possible cosmetic bug In-Reply-To: References: Message-ID: <20140223162147.GA83280@lion> Thus wrote Andrei Dobrotsvetov: > Hello Everyone, > > I use dovecot2-2.2.10, > FreeBSD 9.2-RELEASE. Same version and OS like me...:) > Replication was set up according to: > http://wiki2.dovecot.org/Replication, > dsync wrapper script is used. > > It seems that all is worked as desired, > but i see the following into log file: > > doveadm: Error: dsync-remote(XXX at YYY): Info: save: box=INBOX, ... > > There were no such log records > when i tried replication without wrapper script. Forget the wrapper script on that site, it's needless or broken. Call doveadm dsync-server directly from authorized_keys. But synchronisation works then for you? I'm currently having the problem that dsync doesn't synch anything at all... Greetings, Fabiano From cyberonicturbo at gmail.com Thu Feb 20 22:12:42 2014 From: cyberonicturbo at gmail.com (Cyberonic Turbo) Date: Thu, 20 Feb 2014 17:12:42 -0500 Subject: [Dovecot] Quota-Status issue Message-ID: Following this guide: http://sys4.de/en/blog/2013/04/08/postfix-dovecot-mailbox-quota/ I can't seem to get it to work, as soon as I add the smtpd_recipient_restrictions setting to postfix I can no longer send mail at all. I get the message SMTP Error (450): Failed to add recipient "postmaster at example.com" (4.7.1 : Recipient address rejected: Internal error occurred. Refer to server log for more information.). I googled around and found this command to test the quota-status service: printf "recipient=postmaster at example.com\nsize=1234\n\n" | nc 127.0.0.1 12340 It seems to always return the quota_status_nouser message. I'm really stumped here. What logs do I need to check for errors and does anyone have any experience with this? I'm running Dovect 2.2.10 with Postfix 2.6.6 Here's my dovecot -n result: # 2.2.10: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-431.5.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) auth_master_user_separator = * auth_mechanisms = PLAIN LOGIN dict { acl = mysql:/etc/dovecot/dovecot-share-folder.conf quotadict = mysql:/etc/dovecot/dovecot-used-quota.conf } first_valid_uid = 2000 last_valid_uid = 2000 listen = * log_path = /var/log/dovecot.log mail_gid = 2000 mail_location = maildir:/%Lh/Maildir/:INDEX=/%Lh/Maildir/ mail_plugins = quota mail_uid = 2000 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { inbox = yes location = prefix = separator = / type = private } namespace { list = children location = maildir:/%%Lh/Maildir/:INDEX=/%%Lh/Maildir/Shared/%%u prefix = Shared/%%u/ separator = / subscriptions = yes type = shared } passdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } passdb { args = /etc/dovecot/dovecot-master-users-password driver = passwd-file master = yes } plugin { acl = vfile acl_shared_dict = proxy::acl auth_socket_path = /var/run/dovecot/auth-master autocreate = INBOX autocreate2 = Sent autocreate3 = Trash autocreate4 = Drafts autocreate5 = Junk autosubscribe = INBOX autosubscribe2 = Sent autosubscribe3 = Trash autosubscribe4 = Drafts autosubscribe5 = Junk quota = dict:user::proxy::quotadict quota_grace = 10%% quota_rule = *:storage=1G quota_status_nouser = DUNNO quota_status_overquota = 552 5.2.2 Mailbox is full quota_status_success = DUNNO quota_warning = storage=85%% quota-warning 85 %u quota_warning2 = storage=90%% quota-warning 90 %u quota_warning3 = storage=95%% quota-warning 95 %u sieve = /%Lh/sieve/dovecot.sieve sieve_dir = /%Lh/sieve sieve_global_dir = /var/vmail/sieve sieve_global_path = /var/vmail/sieve/dovecot.sieve } protocols = pop3 imap sieve service auth { unix_listener /var/spool/postfix/dovecot-auth { group = postfix mode = 0666 user = postfix } unix_listener auth-master { group = vmail mode = 0666 user = vmail } unix_listener auth-userdb { group = vmail mode = 0660 user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = vmail } } service imap-login { process_limit = 500 service_count = 1 } service pop3-login { service_count = 1 } service quota-status { client_limit = 1 executable = quota-status -p postfix inet_listener { port = 12340 } } service quota-warning { executable = script /usr/local/bin/dovecot-quota-warning.sh unix_listener quota-warning { group = vmail mode = 0660 user = vmail } } ssl = required ssl_cert = Hi, although dovecot is great and almost exactly solving my problems and fitting my requirements, there is an odd detail that causes me problems: The %c variable. (See http://wiki2.dovecot.org/Variables ) I'm managing an IMAP server for an association, which is connected to an LDAP server. Users can connect in three ways: IMAPS from the internet, IMAP from local acccounts, and IMAP through a Web->IMAP interface, which is protected through additional one-time-passwords. The web gateway is intended to be used from untrusted computers as well, so the IMAP password entered through the Web site must not be the same as the password used on IMAPS. I have solved this problem by using %s%c as part of the LDAP user_filter. When people connect over IMAPS, this becomes imapsecured (%s=imap, %c=secured), while an unencrypted connect becomes imap (%s=imap, %c=) Unfortunately, this works only, if the web interface and the IMAP server are located on different (virtual) machines. But if the web gateway and dovecot are no the /same/ machine, this does not work anymore, since %c becomes "secured" on localhost, even if unencrypted. It causes a lot of trouble and headache. Please add a configuration variable to configure, whether %c should become "secured" for unencrypted traffic on the loopback device (localhost). regards Hadmut From h.reindl at thelounge.net Sun Feb 23 22:37:55 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Sun, 23 Feb 2014 23:37:55 +0100 Subject: [Dovecot] Detail improvement: %c variable In-Reply-To: <530A75EB.3020904@danisch.de> References: <530A75EB.3020904@danisch.de> Message-ID: <530A7843.5090008@thelounge.net> Am 23.02.2014 23:27, schrieb Hadmut Danisch: > But if the web gateway and dovecot are no the /same/ machine, this does > not work anymore, since %c becomes "secured" on localhost, even if > unencrypted. It causes a lot of trouble and headache what headache? how do you imagine a man-in-the-middle-attack on 127.0.0.1 > Please add a configuration variable to configure, whether %c > should become "secured" for unencrypted traffic on the loopback > device (localhost) to gain exactly what? frankly for practical usage epect debugging even a fallback to no encryption at all on loopback would be sane and for the sake of reduce useless overhead fine -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From hadmut at danisch.de Sun Feb 23 23:23:54 2014 From: hadmut at danisch.de (Hadmut Danisch) Date: Mon, 24 Feb 2014 00:23:54 +0100 Subject: [Dovecot] Detail improvement: %c variable In-Reply-To: <530A7843.5090008@thelounge.net> References: <530A75EB.3020904@danisch.de> <530A7843.5090008@thelounge.net> Message-ID: <20140223232354.GA25188@danisch.de> On Sun, Feb 23, 2014 at 11:37:55PM +0100, Reindl Harald wrote: > > what headache? The one I've described. > > how do you imagine a man-in-the-middle-attack on 127.0.0.1 You're confusing the different attacks. This has nothing to do with a man-in-the-middle. This is against a passive eavesdropper, e.g. someone watching people entering the password at a web interface, or a keylogger on an unreliable computer. > > Please add a configuration variable to configure, whether %c > > should become "secured" for unencrypted traffic on the loopback > > device (localhost) > > to gain exactly what? to gain different LDAP filter strings for IMAP requests coming from outside encrypted with SSL/TLS and unencrypted IMAP requests on localhost. > frankly for practical usage epect debugging even a fallback to > no encryption at all on loopback would be sane and for the > sake of reduce useless overhead fine It is never a good idea to lower security in favor of easy debugging. That's why I propose a switch to turn this behaviour on and off. Hadmut From h.reindl at thelounge.net Sun Feb 23 23:54:51 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 24 Feb 2014 00:54:51 +0100 Subject: [Dovecot] Detail improvement: %c variable In-Reply-To: <20140223232354.GA25188@danisch.de> References: <530A75EB.3020904@danisch.de> <530A7843.5090008@thelounge.net> <20140223232354.GA25188@danisch.de> Message-ID: <530A8A4B.3090305@thelounge.net> Am 24.02.2014 00:23, schrieb Hadmut Danisch: > On Sun, Feb 23, 2014 at 11:37:55PM +0100, Reindl Harald wrote: >> what headache? > The one I've described. you described nothing relevant you only talk why 127.0.0.1 is treated as "secured" well because it is by definition, if you don't trust 127.0.0.1 you have lost the game at all >> how do you imagine a man-in-the-middle-attack on 127.0.0.1 > > You're confusing the different attacks. This has nothing to do with a > man-in-the-middle. This is against a passive eavesdropper, > e.g. someone watching people entering the password at a web interface, > or a keylogger on an unreliable computer RTFM - these is *logging* and there it does not make a difference in case of security if it was a encrypted connection or one from LOCALHOST where there is no wire at all between client and server ____________________ These variables work only in Dovecot-auth and *login_log_format_elements* setting %c secured "secured" string with SSL, TLS and localhost connections. Otherwise empty. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From skdovecot at smail.inf.fh-brs.de Mon Feb 24 08:58:32 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 24 Feb 2014 09:58:32 +0100 (CET) Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530A00A4.3090103@easy-mail.it> References: <530A00A4.3090103@easy-mail.it> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sun, 23 Feb 2014, Francesco wrote: > i was reading the dovecot-lda documentation as i'm using LDA as a > delivery agent on my current mailserver configuration. > > I was curious to know if there are some options for having a message to > be delivered to a "twin mailbox" upon delivery. > this twin mailbox would work as a backup archive for recovering emails > in case the user accidentally deletes them. > > so if i have a user which is alice i would create a second mailbox named > backup_alice or whatever respecting a predictable schema and then every > mail delivered to alice would also be delivered to backup_alice. > > do you know if this can be done? have any example? I would add a BCC recipient in the MTA. It's more save in such situation. See the thread about qmail and multiple recipients for one mail address. > i was also planning to use shared folders + ACLS to have backup_alice > accessible as a read only mailbox directly from the alice imap account. If posting (appending a new message) would be OK: Add a global Sieve script and let each message: fileinto :copy "backup"; Otherwise, use a shell wrapper: file stdin into temp file, call Dovecot LDA with original recipient exit with LDA's exit code on error call Dovecot LDA with backup recipient exit 0 # ignores error to prevent repetitive delivery to recipient I've posted a shell wrapper a few days ago in above mentioned thread. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwsJuHD1/YhP6VMHAQIaGwf/S0Wypw98TklEf/NjH2wxb6hKaGndKZOs GMrVyo2VZCaxphu3TpanxSYiPqm3fhi9Ruax2QDulaOkDrm9CgGQrl+Q2lJqzaJD GQhowSzHi2fXswjTES4lAoMxB1JcvS7f9tEmVS2+xcv6ptVtro4HUcMC9ho39AvS mKnyx8NP+sy8Cp5CU7gTaLGaDR5pVpGS1CHu7ijQj8P0nRceP4jHo4p2yrxUbsMs lool4VVBnWLIhbgkKwoxYUF9ydnVSLMQ3dXnTgQIjAQTsRc5FvID1kuKbN5rLZGw CaOCc+kM33bYCk2++KwlDCpeFH8pOrayQFzDKPequN8TWkUm/sidKQ== =mul3 -----END PGP SIGNATURE----- From Michael.Galapchuk at fcbank.com.ua Mon Feb 24 10:30:32 2014 From: Michael.Galapchuk at fcbank.com.ua (Michael Galapchuk) Date: Mon, 24 Feb 2014 12:30:32 +0200 Subject: [Dovecot] Dovecot stopped with "master: Fatal: kevent(): Invalid argument" Message-ID: Hi, after more than 20 days uptime, Dovecot stopped with the following logged in /var/log/messages: - master: Fatal: kevent(): Invalid argument dovecot -n: # 2.2.10: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 9.2-RELEASE-p3 amd64 auth_default_realm = xxx.com.ua auth_mechanisms = plain login default_client_limit = 3000 dict { quotadict = mysql:/usr/local/etc/dovecot/dovecot-dict-quota.conf } disable_plaintext_auth = no doveadm_password = xxx doveadm_port = xxx first_valid_gid = 6 first_valid_uid = 26 listen = 10.xx.xx.xx 10.xx.xx.xx login_log_format_elements = user=<%u> method=%m rip=%r %c mail_location = mdbox:~/mdbox mail_plugins = quota mail_log notify replication mail_privileged_group = mail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave mdbox_rotate_interval = 2 weeks mdbox_rotate_size = 25 M passdb { args = /usr/local/etc/dovecot/dovecot-mysql.conf driver = sql } plugin { mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size mail_replica = tcp:xxx.xxx.com.ua quota = dict:user::proxy::quotadict quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=85%% quota-warning 85 %u replication_full_sync_interval = 12 hours sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 lmtp sieve service aggregator { fifo_listener replication-notify-fifo { user = mailnull } unix_listener replication-notify { user = mailnull } } service dict { unix_listener dict { group = mail mode = 0600 user = mailnull } } service doveadm { inet_listener { port = xxx } } service imap-login { client_limit = 3000 process_min_avail = 8 service_count = 0 vsz_limit = 256 M } service lmtp { executable = lmtp -L group = mail process_min_avail = 5 unix_listener lmtp { mode = 0666 } user = mailnull } service managesieve-login { process_min_avail = 2 service_count = 1 } service managesieve { process_limit = 128 } service pop3-login { process_limit = 1024 process_min_avail = 8 service_count = 1 } service quota-warning { executable = script /usr/local/bin/quota-warning.sh group = mail unix_listener quota-warning { group = mail mode = 0600 user = mailnull } user = mailnull } service replicator { process_min_avail = 1 unix_listener replicator-doveadm { mode = 0600 user = mailnull } } ssl_cert = References: <530A00A4.3090103@easy-mail.it> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 24 Feb 2014, Steffen Kaiser wrote: > On Sun, 23 Feb 2014, Francesco wrote: >> i was reading the dovecot-lda documentation as i'm using LDA as a >> delivery agent on my current mailserver configuration. >> >> I was curious to know if there are some options for having a message to >> be delivered to a "twin mailbox" upon delivery. >> this twin mailbox would work as a backup archive for recovering emails >> in case the user accidentally deletes them. >> >> so if i have a user which is alice i would create a second mailbox named >> backup_alice or whatever respecting a predictable schema and then every >> mail delivered to alice would also be delivered to backup_alice. >> >> do you know if this can be done? have any example? > > I would add a BCC recipient in the MTA. It's more save in such situation. > See the thread about qmail and multiple recipients for one mail address. Just to emphaze my intention: Use the MTA's ability of aliases, forwards or whatever it is called. In sendmail you could create ".forward" files for each recipient, to forward a message to the user without further forward/aliasing and to other user(s). Or one could use sendmail's alias feature to split a message. >> i was also planning to use shared folders + ACLS to have backup_alice >> accessible as a read only mailbox directly from the alice imap account. > > If posting (appending a new message) would be OK: Add a global Sieve > script and let each message: fileinto :copy "backup"; > > Otherwise, use a shell wrapper: > > file stdin into temp file, > call Dovecot LDA with original recipient > exit with LDA's exit code on error > call Dovecot LDA with backup recipient > exit 0 # ignores error to prevent repetitive delivery to recipient > > I've posted a shell wrapper a few days ago in above mentioned thread. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwsnVHD1/YhP6VMHAQLG6QgAjymUpQdJ1jfX5hGJVfsn8EDGsDCxP+vL NgyMARd1jqh6psI7tMHl+nR8MU2X+/+Cp6QmPsg9aGld3hVaFSFTO39xtAqycwPo 3wIARrmqJ6Tk85jj/M6sxGyA200UN+qq+uQ+B2imwYuUJQsMqBrf5vfPQ3MTHVKy ZBFaMZZb6wcMwN7w45qVzR88NBlzlAfsRNgwaPM2QpBW4Zkkh/ph4mpZ50JunAN5 DZxrodVQOsp8KNdlSeI+4Zb20RUmxosg6bkqUbrwHtwiGBLIic71ohhgSBBatG5d DDLR66SAqykENFwVviXlNVJ0KLgJ2kkXvreSvPaKajf7tVUvhrO98w== =EQ7V -----END PGP SIGNATURE----- From CMarcus at Media-Brokers.com Mon Feb 24 12:58:00 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 24 Feb 2014 07:58:00 -0500 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: References: <530A00A4.3090103@easy-mail.it> Message-ID: <530B41D8.40107@Media-Brokers.com> On 2/24/2014 3:58 AM, Steffen Kaiser wrote: > I would add a BCC recipient in the MTA. It's more save in such > situation. See the thread about qmail and multiple recipients for one > mail address. The only downside to this is all of the original headers are *not* preserved in the BCC copy. I too would very much like to see a way to 'split' the mail delivery transaction so that an *identical* copy of the message is delivered to two different places simultaneously. On 2/24/2014 3:58 AM, Steffen Kaiser wrote: > If posting (appending a new message) would be OK: Add a global Sieve > script and let each message: fileinto :copy "backup"; So... it looks like this would work as I described above? An identical copy, preserving all of the original headers? Thanks! Best regards, */Charles/* From CMarcus at Media-Brokers.com Mon Feb 24 12:59:42 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 24 Feb 2014 07:59:42 -0500 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530A00A4.3090103@easy-mail.it> References: <530A00A4.3090103@easy-mail.it> Message-ID: <530B423E.4020008@Media-Brokers.com> On 2/23/2014 9:07 AM, Francesco wrote: > i was also planning to use shared folders + ACLS to have backup_alice > accessible as a read only mailbox directly from the alice imap account. Hi Francesco, I would be *very* interested in seeing what you come up with, as I have been wanting to do the exact same thing - but it is very important that the users have *only* read-only access to these, as you specified... Thanks, -- Best regards, */Charles/* From theoxarhs at gmail.com Mon Feb 24 13:00:12 2014 From: theoxarhs at gmail.com (XarHs) Date: Mon, 24 Feb 2014 15:00:12 +0200 Subject: [Dovecot] A question regarding doveadm replicator status Message-ID: Hello, I am using Dovecot version 2.2.10. I am quite familiar with ssh replication and I managed to set it up correctly. The only problem I see is that when i run the command: doveadm replicator status I get a wrong "Total number of known users" which is a) is different between the two (2) replicated dovecot servers, i.e. in mail1 I get a total of 21 users and in mail2 I get a total of 20 users (it should be the same, correct?) b) is not matching the total number of users I have in each server (mail1, mail2) which I am also getting when counting the total users with "doveadm" service enabled. (the command doveadm user '*' | wc lists a total of 16 users for both mail1, mail2 servers, which is also the total number of users that exist indeed in the LDAP structure with the doveadm service enabled. Is there any way to reset the value of "Total number of known users"? Do I have to delete a file in /var/run/dovecot or something in order to do it? The only way I tried (not successfully though) to reset it is by executing the command: for i in `doveadm user '*'` ;do doveadm replicator remove $i ; done which does empties all existing users (16), but leaves me with Queued 'sync' requests 0 Queued 'high' requests 0 Queued 'low' requests 0 Queued 'failed' requests 0 Queued 'full resync' requests 0 Waiting 'failed' requests 0 Total number of known users 5 in mail1 server and Queued 'sync' requests 0 Queued 'high' requests 0 Queued 'low' requests 0 Queued 'failed' requests 0 Queued 'full resync' requests 0 Waiting 'failed' requests 0 Total number of known users 4 in mail2 server, i.e. the value is 5 (21-16) for mail1 and 4 (20-16) for mail2 server. After seeing that I tried to restart dovecot service, which again ended in the following numbers: Queued 'sync' requests 0 Queued 'high' requests 0 Queued 'low' requests 0 Queued 'failed' requests 0 Queued 'full resync' requests 0 Waiting 'failed' requests 0 Total number of known users 21 in mail1 server and Queued 'sync' requests 0 Queued 'high' requests 0 Queued 'low' requests 0 Queued 'failed' requests 0 Queued 'full resync' requests 0 Waiting 'failed' requests 0 Total number of known users 20 in mail2 server thus their values augmented back to +16, meaning dovecot read succesfully my 16 users. I have not found a way to successfully reset the "Total number of known users" numbers back to the valid 16 users, which is also returned by running the command: doveadm user '*' | wc Why do I have those differences? How is the "Total number of known users" being calculated? What should I do to effectively reset to to the normal value (which in my case is 16)? Thanks in advance. From stan at hardwarefreak.com Mon Feb 24 13:39:53 2014 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Mon, 24 Feb 2014 07:39:53 -0600 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B41D8.40107@Media-Brokers.com> References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> Message-ID: <530B4BA9.9040700@hardwarefreak.com> On 2/24/2014 6:58 AM, Charles Marcus wrote: > On 2/24/2014 3:58 AM, Steffen Kaiser wrote: >> I would add a BCC recipient in the MTA. It's more save in such >> situation. See the thread about qmail and multiple recipients for one >> mail address. > > The only downside to this is all of the original headers are *not* > preserved in the BCC copy. Given this is a function of the MTA, are you stating with authority that all the dozen or so Unix MTAs behave in this manner? Or are you simply stating the behavior of your MTA, and assuming everyone on the list also uses your MTA? -- Stan From skdovecot at smail.inf.fh-brs.de Mon Feb 24 14:25:20 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 24 Feb 2014 15:25:20 +0100 (CET) Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B41D8.40107@Media-Brokers.com> References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 24 Feb 2014, Charles Marcus wrote: > On 2/24/2014 3:58 AM, Steffen Kaiser wrote: >> I would add a BCC recipient in the MTA. It's more save in such situation. >> See the thread about qmail and multiple recipients for one mail address. > > The only downside to this is all of the original headers are *not* preserved > in the BCC copy. Er, I don't know what you mean with "all of the original headers". There are no headers of the delivery process to user, that's right. Everything else should be untouchted. Or in other words, the backup copy does not "backup" the delivery process. > On 2/24/2014 3:58 AM, Steffen Kaiser wrote: >> If posting (appending a new message) would be OK: Add a global Sieve script >> and let each message: fileinto :copy "backup"; > > So... it looks like this would work as I described above? An identical copy, > preserving all of the original headers? The other one would be the wrapper method. I just looked into the man page of dovecot-lda: -p path Path to the mail to be delivered instead of reading from stdin. If using maildir the file is hard linked to the destination if possible. This allows a single mail to be delivered to multiple users using hard links, but currently it also prevents deliver from updating cache file so it shouldn't be used unless really necessary. So Dovecot LDA seems to keep its virtual fingers off the message and you don't need to redirect all the time and you can get hard links, if you use the same uid/gid for both users, 100% identical then e.g.: #!/bin/bash user=$... f=/path/to/dir/on/same/mountpoint/as/user/and/user_backup/$$.tmp cat - > $f dovecot-lda .... -d ${user} -p $f rc=$? if test $rc -gt 0; then rm -f $f exit $rc fi dovecot-lda .... -d ${user}_backup -p $f rm -f $f # ignore errors to prevent re-delivery to user exit 0 - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwtWUXD1/YhP6VMHAQKHXgf/Z1h23FhLvd5KfHjb90neguH7p7ZoEL9t YyX52w8GCSkPXCvDkJ6Nc/iAi54TqkVzv7VERXODWDiMeB/rmXSg/OnWMo5s2cSO AnV19SP6OPkmRcxPulOz1dp3uQoDUDbwW6iDf9EGaV3MzfNC6fBiOGUXeTDAbBa9 k6z6W1wwvqQ192/gkb6pkzw8wpL48zxurSPkquMH6hqB1MwfnQmS6J0cG3TY1+QP 7HbpvDaqJ4KPhlJk7DnIKk+78/pc04GnuAFqo/+JXDchNBgSSk7FzHys3/irLGLU BkyZ+kDfGNBklsH4Zzwb7L5soryDa5HAfgEZSydK404O3BtnMR2iVA== =P93w -----END PGP SIGNATURE----- From CMarcus at Media-Brokers.com Mon Feb 24 14:42:19 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 24 Feb 2014 09:42:19 -0500 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B4BA9.9040700@hardwarefreak.com> References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B4BA9.9040700@hardwarefreak.com> Message-ID: <530B5A4B.1030408@Media-Brokers.com> On 2/24/2014 8:39 AM, Stan Hoeppner wrote: > On 2/24/2014 6:58 AM, Charles Marcus wrote: >> On 2/24/2014 3:58 AM, Steffen Kaiser wrote: >>> I would add a BCC recipient in the MTA. It's more save in such >>> situation. See the thread about qmail and multiple recipients for one >>> mail address. >> The only downside to this is all of the original headers are *not* >> preserved in the BCC copy. > Given this is a function of the MTA, Says who? I would argue that it is more a function of the MDA. > are you stating with authority that all the dozen or so Unix MTAs behave in this manner? Or are you simply stating the behavior of your MTA, and assuming everyone on the list also uses your MTA? Obviously the latter (postfix)... apologies for my presumptuousness. Fyi, Stan, you know that sometimes you can be a real asshat in the way you make your point(s)... -- Best regards, Charles From CMarcus at Media-Brokers.com Mon Feb 24 14:44:15 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 24 Feb 2014 09:44:15 -0500 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> Message-ID: <530B5ABF.3000903@Media-Brokers.com> On 2/24/2014 9:25 AM, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Mon, 24 Feb 2014, Charles Marcus wrote: > >> On 2/24/2014 3:58 AM, Steffen Kaiser >> wrote: >>> I would add a BCC recipient in the MTA. It's more save in such >>> situation. See the thread about qmail and multiple recipients for >>> one mail address. >> >> The only downside to this is all of the original headers are *not* >> preserved in the BCC copy. > > Er, I don't know what you mean with "all of the original headers". > There are no headers of the delivery process to user, that's right. > Everything else should be untouchted. Or in other words, the backup > copy does not "backup" the delivery process. As Stan so graciously pointed out, I was talking about the specific MTA that I use - postfix - and I based my comment on the fact that everyone on the postfix list, including Wietse, stated that using the BCC method does *not* preserve all of the original message headers (identically to the non BCC'd copy). Are you saying Wietse was incorrect? -- Best regards, Charles From goetz.reinicke at filmakademie.de Mon Feb 24 15:07:00 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Mon, 24 Feb 2014 16:07:00 +0100 Subject: [Dovecot] Oldies but Goldies - Dovecot 1.2 and Sieve Message-ID: <530B6014.1050703@filmakademie.de> Hi, we still run dovecot 1.2.17 and upgrading is not planed for some time. But I'm asked to install a sieve system to be used with SOGo soon. What do I have to install / configure? Is installing/configuring the dovecot-sieve-0.1.19 and dovecot-managesieve-0.11.13 enough? We still use mostly the default settings for imaps/pop3s. And of course configure SOGo. Thanks for any feedback. Regards . G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From mailinglists at easy-mail.it Mon Feb 24 15:10:00 2014 From: mailinglists at easy-mail.it (Francesco) Date: Mon, 24 Feb 2014 16:10:00 +0100 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B423E.4020008@Media-Brokers.com> References: <530A00A4.3090103@easy-mail.it> <530B423E.4020008@Media-Brokers.com> Message-ID: <1393254600.3880.20.camel@secoges-laptop> Il giorno lun, 24/02/2014 alle 07.59 -0500, Charles Marcus ha scritto: > On 2/23/2014 9:07 AM, Francesco wrote: > > i was also planning to use shared folders + ACLS to have backup_alice > > accessible as a read only mailbox directly from the alice imap account. > > Hi Francesco, > > I would be *very* interested in seeing what you come up with, as I have > been wanting to do the exact same thing - but it is very important that > the users have *only* read-only access to these, as you specified... > > Thanks, > Hi, everything is still under early implementing stages and i don't even have a testing environment yet so... i don't have much to share for now. i have another mailserver where i have users who have read only access to a shared mailbox but i don't have the access to the configuration files right here right now. i'll post some sniplets of the configurations as soon as i have them handy. Francesco From skdovecot at smail.inf.fh-brs.de Mon Feb 24 15:13:27 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 24 Feb 2014 16:13:27 +0100 (CET) Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B5ABF.3000903@Media-Brokers.com> References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B5ABF.3000903@Media-Brokers.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 24 Feb 2014, Charles Marcus wrote: > Date: Mon, 24 Feb 2014 09:44:15 -0500 > From: Charles Marcus > Reply-To: Dovecot Mailing List > To: dovecot at dovecot.org > Subject: Re: [Dovecot] realtime backup with LDA? > > On 2/24/2014 9:25 AM, Steffen Kaiser wrote: >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> On Mon, 24 Feb 2014, Charles Marcus wrote: >> >>> On 2/24/2014 3:58 AM, Steffen Kaiser >>> wrote: >>>> I would add a BCC recipient in the MTA. It's more save in such situation. >>>> See the thread about qmail and multiple recipients for one mail address. >>> >>> The only downside to this is all of the original headers are *not* >>> preserved in the BCC copy. >> >> Er, I don't know what you mean with "all of the original headers". There >> are no headers of the delivery process to user, that's right. Everything >> else should be untouchted. Or in other words, the backup copy does not >> "backup" the delivery process. > > As Stan so graciously pointed out, I was talking about the specific MTA that > I use - postfix - and I based my comment on the fact that everyone on the > postfix list, including Wietse, stated that using the BCC method does *not* > preserve all of the original message headers (identically to the non BCC'd > copy). > > Are you saying Wietse was incorrect? What changes are made by default, that are not implemented by the MTA admin? And yes, if I have two recipients of one message, I expect the headers stay untouched. If we enter the discussion "shall the MTA remove the "for XYZ" from Received headers", if one add a recipient, I back out. :-) - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwthl3D1/YhP6VMHAQKtaAf/SFASDui9ShrUK5CQb3ohwS43lf18OOFu nUcwuVD5oFO2GQ40ukTrwXAybJZIdG5wmmN6nxhVmUcKPd3bRe75hYLLdIwURgPD KYciseZ+lKGotIuLulE0uPsrQapXFDDcrJ5Heg3kAoIG9TH6EQ0vaXNexNnKnQ/F UPQwkcBFnVBmK3lFJwZKMAzsrjql1lRc+D2v9CZ3ras2HzfSKfHQ86w9LV2jBDsA 7wsf0wTXAKGqb54Z5LiIZQLw5EVJxyKqByH1kRzT/xWSbawmkk7sgPvo2P9IOoui oi9zSYIiOfMfVY0ZmfaCkR5AlK/QWej1JY4Ezs36zgAQkzSW2Sm8iQ== =kh35 -----END PGP SIGNATURE----- From hadmut at danisch.de Mon Feb 24 15:19:31 2014 From: hadmut at danisch.de (Hadmut Danisch) Date: Mon, 24 Feb 2014 16:19:31 +0100 Subject: [Dovecot] Detail improvement: %c variable In-Reply-To: <530A8A4B.3090305@thelounge.net> References: <530A75EB.3020904@danisch.de> <530A7843.5090008@thelounge.net> <20140223232354.GA25188@danisch.de> <530A8A4B.3090305@thelounge.net> Message-ID: <20140224151931.GA26455@danisch.de> On Mon, Feb 24, 2014 at 12:54:51AM +0100, Reindl Harald wrote: > > you described nothing relevant You're quite ignorant and obviously don't understand the background. > you only talk why 127.0.0.1 is treated as "secured" > well because it is by definition, if you don't trust > 127.0.0.1 you have lost the game at all Which is wrong. I did not say that I did not trust 127.0.0.1. I said that I do not trust the Web-IMAP-Gateway (such as squirrelmail) if the client uses an untrusted computer. > > >> how do you imagine a man-in-the-middle-attack on 127.0.0.1 > > > > You're confusing the different attacks. This has nothing to do with a > > man-in-the-middle. This is against a passive eavesdropper, > > e.g. someone watching people entering the password at a web interface, > > or a keylogger on an unreliable computer > > RTFM - these is *logging* and there it does not make a difference > in case of security if it was a encrypted connection or one > from LOCALHOST where there is no wire at all between client and > server Again, your statements are technically wrong and you obviously do not understand the security implications. As I said before, the Webserver protects the Web access with a one-time-password. So an IMAP password caught at a computer using the Web interface is useless for an attacker, since the attacker could not login again with caught passwords. But the attacker could use the password fetched by a keylogger to directly access the IMAPS port (without the web and thus without the need to use a one-time-password) if the web interface (going over 127.0.0.1) and IMAPS share the same password - what they do due to bad design of dovecot. May I kindly ask you to stop giving negativ or even harsh and offensive replies as long as you do not understand the security implications and the web technology? Your statements about man-in-the-middle and trusting 127.0.0.1 are so technically wrong, that I do not see a point in this conversation. As far as I can see dovecot does not consider 127.0.0.1 as "secured" for any good reason, just to make debugging in plaintext easier. This is a severe security gap. Hadmut From h.reindl at thelounge.net Mon Feb 24 15:38:20 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 24 Feb 2014 16:38:20 +0100 Subject: [Dovecot] Detail improvement: %c variable In-Reply-To: <20140224151931.GA26455@danisch.de> References: <530A75EB.3020904@danisch.de> <530A7843.5090008@thelounge.net> <20140223232354.GA25188@danisch.de> <530A8A4B.3090305@thelounge.net> <20140224151931.GA26455@danisch.de> Message-ID: <530B676C.6020105@thelounge.net> Am 24.02.2014 16:19, schrieb Hadmut Danisch: > On Mon, Feb 24, 2014 at 12:54:51AM +0100, Reindl Harald wrote: >> >> you described nothing relevant > > You're quite ignorant and obviously don't understand the background. no >> you only talk why 127.0.0.1 is treated as "secured" >> well because it is by definition, if you don't trust >> 127.0.0.1 you have lost the game at all > > > Which is wrong. > > I did not say that I did not trust 127.0.0.1. I said that I do not > trust the Web-IMAP-Gateway (such as squirrelmail) if the client uses > an untrusted computer. which should not run on the mailserver at all if we talk about security > Unfortunately, this works only, if the web interface and the IMAP server > are located on different (virtual) machines that is how it should be > But if the web gateway and dovecot are on the /same/ machine, > this does not work anymore that is how it should *not* be http://www.avolio.com/columns/e-mailServerSecurity.html > Again, your statements are technically wrong and you obviously do not > understand the security implications. i understand them well, that's why the case having a service you do not trust on the same machine is questionable to say it nice > As I said before, the Webserver protects the Web access with a > one-time-password. So an IMAP password caught at a computer using the > Web interface is useless for an attacker, since the attacker could not > login again with caught passwords. > > But the attacker could use the password fetched by a keylogger to > directly access the IMAPS port (without the web and thus without the need > to use a one-time-password) if the web interface (going over > 127.0.0.1) and IMAPS share the same password - what they do due to bad > design of dovecot. no, they do due bad design of your network as you statet above by "web gateway and dovecot are on the /same/ machine" > May I kindly ask you to stop giving negativ or even harsh and > offensive replies as long as you do not understand the security > implications and the web technology? there was nothing harsh or offensive > Your statements about man-in-the-middle and trusting 127.0.0.1 are so > technically wrong, that I do not see a point in this conversation. the reason why dovecot treats localhost as "secured" is because it is typically secured as long you don't mix trusted and untrusted software on the sam emachone > As far as I can see dovecot does not consider 127.0.0.1 as "secured" > for any good reason, just to make debugging in plaintext easier. This > is a severe security gap see above don't run trusted and untrusted services on the same machine -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From giles at coochey.net Mon Feb 24 15:41:47 2014 From: giles at coochey.net (Giles Coochey) Date: Mon, 24 Feb 2014 15:41:47 +0000 Subject: [Dovecot] Detail improvement: %c variable In-Reply-To: <20140224151931.GA26455@danisch.de> References: <530A75EB.3020904@danisch.de> <530A7843.5090008@thelounge.net> <20140223232354.GA25188@danisch.de> <530A8A4B.3090305@thelounge.net> <20140224151931.GA26455@danisch.de> Message-ID: <530B683B.9010902@coochey.net> On 24/02/2014 15:19, Hadmut Danisch wrote: > As far as I can see dovecot does not consider 127.0.0.1 as "secured" > for any good reason, just to make debugging in plaintext easier. This > is a severe security gap. Hadmut You could choose not to use localhost IP, but bind to the actual local IP of the host, even though it is on the local machine? Is it only attaching to the 127.0.0.1 because you're binding to it by hostname as opposed to IP? Just a thought... -- Regards, Giles Coochey, CCNP, CCNA, CCNAS NetSecSpec Ltd +44 (0) 8444 780677 +44 (0) 7983 877438 http://www.coochey.net http://www.netsecspec.co.uk giles at coochey.net -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6454 bytes Desc: S/MIME Cryptographic Signature URL: From CMarcus at Media-Brokers.com Mon Feb 24 15:48:52 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 24 Feb 2014 10:48:52 -0500 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B5ABF.3000903@Media-Brokers.com> Message-ID: <530B69E4.5030504@Media-Brokers.com> On 2/24/2014 10:13 AM, Steffen Kaiser wrote: > > What changes are made by default, that are not implemented by the MTA > admin? Sorry, I don't understand the question (language thing I'm sure). I'm talking about the 'always_bcc' feature in postfix, which obviously must be enabled by the MTA sysadmin. > And yes, if I have two recipients of one message, I expect the headers > stay untouched. If we enter the discussion "shall the MTA remove the > "for XYZ" from Received headers", if one add a recipient, I back out. :-) I don't recall the specifics of the differences, but after the differences were discussed on list, they were enough that some people said it was not satisfactory for the legal requirements for mail archiving. -- Best regards, Charles From fabianosidler at swissonline.ch Mon Feb 24 16:00:08 2014 From: fabianosidler at swissonline.ch (Fabiano Sidler) Date: Mon, 24 Feb 2014 17:00:08 +0100 Subject: [Dovecot] dsync, a zero-way synchronisation tool? In-Reply-To: <20140221224009.GA81296@lion> References: <20140221224009.GA81296@lion> Message-ID: <20140224160008.GA84505@lion> So schrieb Fabiano Sidler: > Hi folks! > > I have set up dsync replication with SSH according to > http://wiki2.dovecot.org/Replication with the exception of having system users > and calling doveadm dsync-server directly from authorized_keys, because the > wrapper script posted on the above site is needless (at least in 2.2.10). > > However, while the two instances connect well to each other, no synchronisation > is performed at all, the mailboxes happily remain untouched. I've then > temporarily replaced SSH with socat and captured the traffic. > > Any hints what goes wrong? Unfortunately there are no logs to provide... Hello? Noone with any idea? Timo, as the developer, what do you think about the captured traffic between the hosts? Greetings, Fabiano From skdovecot at smail.inf.fh-brs.de Mon Feb 24 16:03:48 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 24 Feb 2014 17:03:48 +0100 (CET) Subject: [Dovecot] Detail improvement: %c variable In-Reply-To: <530B683B.9010902@coochey.net> References: <530A75EB.3020904@danisch.de> <530A7843.5090008@thelounge.net> <20140223232354.GA25188@danisch.de> <530A8A4B.3090305@thelounge.net> <20140224151931.GA26455@danisch.de> <530B683B.9010902@coochey.net> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 24 Feb 2014, Giles Coochey wrote: > You could choose not to use localhost IP, but bind to the actual local IP of > the host, even though it is on the local machine? > > Is it only attaching to the 127.0.0.1 because you're binding to it by > hostname as opposed to IP? Won't work, I tried it with v2.2.10. Any connection to a local IP from a local IP seems to be "secured". Maybe with a virtual one. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwttZHD1/YhP6VMHAQKe5wgA5q16t412w/HOD01U84fEmyRnu8yZlOti 1GrRPudqtwFRTpwP2zgKFpZsZCcrbGOfHQyIkQEUahnFg1MFNsO0OQovP+480E0B t++NhGdZhIbK2p0b1VSyx0OyexBZrKR96qylgAgEgP3K/HtevzduqFXrETr0kGZF Ri7YUPDKurtvTHN+q91krFY/7aGaF8XWsM0M/SY/+ZKKOMAdNBgm8Pyv5d1iS4Xv kjetCfb4fH05e8yeFlaSM83Qrg+YryTH5gbOPschj3rIae9VU7UOZFMThWDBM54F VGvfLLGsTxAqWOsqAqjFDFe3xagqrFy68xpO5ijjaP0vHQYUNgSz6Q== =QBAY -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Mon Feb 24 16:14:17 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 24 Feb 2014 17:14:17 +0100 (CET) Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B69E4.5030504@Media-Brokers.com> References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B5ABF.3000903@Media-Brokers.com> <530B69E4.5030504@Media-Brokers.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 24 Feb 2014, Charles Marcus wrote: > On 2/24/2014 10:13 AM, Steffen Kaiser wrote: >> >> What changes are made by default, that are not implemented by the MTA >> admin? > > Sorry, I don't understand the question (language thing I'm sure). Doesn't matter with always_bcc :-) > I'm talking about the 'always_bcc' feature in postfix, which obviously must > be enabled by the MTA sysadmin. Ah, OK. But this is not what I meant, because it would sent all messages to one and a single mail address, for all users, right? I mean to add a BCC per user to "user"_backup, like a per user alias or forward. A message to user A is "split" into a message to user A and A_backup, where the new message to user A is not split again. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwtv2XD1/YhP6VMHAQJ2ogf+NPnVnFTeY95938ZreunCK6iQW4LEpS+m pBoG2YsxlQMsPWtIsi702R3WqFgBdGVYLKRI91ikrfpjqNFL3YIqmfsmJ63Skm8W RxuYU2UPWJExWot3v0WJXntB5hy22qDG7lelfqI+5DdeWtls1vW1y9XiHkSldOQL 29ZtCxqkiYC1XHAbEIdO70v3DVd9GVzzkfQ3bY2zPH85+5ntsBkppM/G3jhu+kuh hIXAFYcfVN7MuqTPE2FkoUZCB/2HlkG2wzDGJiqReYfCy2Sp5ejScPtRdUupKD5P lyROk+d9+tBcfaMMtoe9IWNwb2HLw6JnSvzqhp36/H1D9dXkRYhXqg== =y9GX -----END PGP SIGNATURE----- From CMarcus at Media-Brokers.com Mon Feb 24 17:06:42 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 24 Feb 2014 12:06:42 -0500 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B5ABF.3000903@Media-Brokers.com> <530B69E4.5030504@Media-Brokers.com> Message-ID: <530B7C22.2030201@Media-Brokers.com> On 2/24/2014 11:14 AM, Steffen Kaiser wrote: > On Mon, 24 Feb 2014, Charles Marcus wrote: >> I'm talking about the 'always_bcc' feature in postfix, which >> obviously must be enabled by the MTA sysadmin. > Ah, OK. But this is not what I meant, because it would sent all > messages to one and a single mail address, for all users, right? I > mean to add a BCC per user to "user"_backup, like a per user alias or > forward. Depends on how you implement it. You can use sender[recipient]_bcc_maps and provide a separate address for each. -- Best regards, Charles From stan at hardwarefreak.com Mon Feb 24 17:12:44 2014 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Mon, 24 Feb 2014 11:12:44 -0600 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B5A4B.1030408@Media-Brokers.com> References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B4BA9.9040700@hardwarefreak.com> <530B5A4B.1030408@Media-Brokers.com> Message-ID: <530B7D8C.4060203@hardwarefreak.com> On 2/24/2014 8:42 AM, Charles Marcus wrote: > On 2/24/2014 8:39 AM, Stan Hoeppner wrote: >> On 2/24/2014 6:58 AM, Charles Marcus wrote: >>> On 2/24/2014 3:58 AM, Steffen Kaiser >>> wrote: >>>> I would add a BCC recipient in the MTA. It's more save in such >>>> situation. See the thread about qmail and multiple recipients for one >>>> mail address. > >>> The only downside to this is all of the original headers are *not* >>> preserved in the BCC copy. > >> Given this is a function of the MTA, > > Says who? I would argue that it is more a function of the MDA. Says both Steffen's remarks above, and your reply to them. Why you would take exception to my simply reiterating the context is inexplicable. >> are you stating with authority that all the dozen or so Unix MTAs >> behave in this manner? Or are you simply stating the behavior of your >> MTA, and assuming everyone on the list also uses your MTA? > > Obviously the latter (postfix)... apologies for my presumptuousness. It's not at all obvious, which is why I asked. When one makes a blanket statement such as that above, with 'not' in *bold* print, the statement needs to be qualified. This is precisely why I asked the two questions. -- Stan From rs at sys4.de Mon Feb 24 17:21:47 2014 From: rs at sys4.de (Robert Schetterer) Date: Mon, 24 Feb 2014 18:21:47 +0100 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B7C22.2030201@Media-Brokers.com> References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B5ABF.3000903@Media-Brokers.com> <530B69E4.5030504@Media-Brokers.com> <530B7C22.2030201@Media-Brokers.com> Message-ID: <530B7FAB.3040906@sys4.de> Am 24.02.2014 18:06, schrieb Charles Marcus: > On 2/24/2014 11:14 AM, Steffen Kaiser > wrote: >> On Mon, 24 Feb 2014, Charles Marcus wrote: >>> I'm talking about the 'always_bcc' feature in postfix, which >>> obviously must be enabled by the MTA sysadmin. > >> Ah, OK. But this is not what I meant, because it would sent all >> messages to one and a single mail address, for all users, right? I >> mean to add a BCC per user to "user"_backup, like a per user alias or >> forward. > > Depends on how you implement it. You can use sender[recipient]_bcc_maps > and provide a separate address for each. > if you dont like bcc feature i.e like this ( sorry only german just a archive solution) https://sys4.de/de/blog/2013/02/07/mailarchiv-mit-dovecot-und-postfix-sortiert-nach-datum-mailadressen-und-ein-ausgehend-unterordnern/ you may try some global sieve copy rule etc, http://wiki2.dovecot.org/Pigeonhole/Sieve/Configuration#multiscript but your subject feel more you wanna use some replication mech like http://wiki2.dovecot.org/Replication using dove lda wrapper might not the right design solution Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From CMarcus at Media-Brokers.com Mon Feb 24 17:38:12 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 24 Feb 2014 12:38:12 -0500 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B7D8C.4060203@hardwarefreak.com> References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B4BA9.9040700@hardwarefreak.com> <530B5A4B.1030408@Media-Brokers.com> <530B7D8C.4060203@hardwarefreak.com> Message-ID: <530B8384.4060902@Media-Brokers.com> On 2/24/2014 12:12 PM, Stan Hoeppner wrote: > On 2/24/2014 8:42 AM, Charles Marcus wrote: >> On 2/24/2014 8:39 AM, Stan Hoeppner wrote: >>> On 2/24/2014 6:58 AM, Charles Marcus wrote: >>>> On 2/24/2014 3:58 AM, Steffen Kaiser >>>> wrote: >>>>> I would add a BCC recipient in the MTA. It's more save in such >>>>> situation. See the thread about qmail and multiple recipients for one >>>>> mail address. >>>> The only downside to this is all of the original headers are *not* >>>> preserved in the BCC copy. >>> Given this is a function of the MTA, >> Says who? I would argue that it is more a function of the MDA. > Says both Steffen's remarks above, and your reply to them. Why you would take exception to my simply reiterating the context is inexplicable. My comment about how it would work if/when using bcc settings (missing Steffen's reference to qmail, thus failing to limit my reference to postfix's use of the bcc settings) does not equate to my agreeing with the idea that 'it is the function of an MTA'. It *can* be a function of an MTA, but it can also - and I would/have argued that it is more appropriately - a function of the MDA (the relevant part of that acronym being 'Delivery'). I took exception to the tone of your comment that I 'would ass-u-me that everyone on the list uses my MTA of choice'. >>> are you stating with authority that all the dozen or so Unix MTAs >>> behave in this manner? Or are you simply stating the behavior of your >>> MTA, and assuming everyone on the list also uses your MTA? >> Obviously the latter (postfix)... apologies for my presumptuousness. > It's not at all obvious, which is why I asked. I think it is obvious, since the alternative (that I can speak with authority with respect to 'the dozen or so Unix MTAs') is highly unlikely, even impossible - which is also why I took exception to the comment. It appeared, in my view, to be a comment aimed solely at chastising me for making a simple mistake of context, and that, again, I missed Steffen's reference to qmail (god, who uses that ancient, unmaintained thing anymore). > When one makes a blanket statement such as that above, with 'not' in *bold* print, the statement needs to be qualified. This is precisely why I asked the two questions. And I apologized for presuming to assume that everyone uses postfix... -- Best regards, Charles From rhklinux at yahoo.com Mon Feb 24 04:15:15 2014 From: rhklinux at yahoo.com (rhklinux) Date: Sun, 23 Feb 2014 20:15:15 -0800 (PST) Subject: [Dovecot] Dovecot hooks Message-ID: <1393215315237-46887.post@n4.nabble.com> Hello people, I am absolute newbie in the world of Dovecot. Before I start learning configuration and plugin writing I want to ensure that what I am trying to do can be done using Dovecot. I want to have a IMAP proxy setup with a module (written by me) that scans email data for some specific content. Any help appriciated. -- View this message in context: http://dovecot.2317879.n4.nabble.com/Dovecot-hooks-tp46887.html Sent from the Dovecot mailing list archive at Nabble.com. From rs at sys4.de Mon Feb 24 17:53:40 2014 From: rs at sys4.de (Robert Schetterer) Date: Mon, 24 Feb 2014 18:53:40 +0100 Subject: [Dovecot] Dovecot hooks In-Reply-To: <1393215315237-46887.post@n4.nabble.com> References: <1393215315237-46887.post@n4.nabble.com> Message-ID: <530B8724.8090108@sys4.de> Am 24.02.2014 05:15, schrieb rhklinux: > Hello people, > I am absolute newbie in the world of Dovecot. Before I start learning > configuration and plugin writing I want to ensure that what I am trying to > do can be done using Dovecot. I want to have a IMAP proxy setup with a > module (written by me) that scans email data for some specific content. > Any help appriciated. > > > > -- > View this message in context: http://dovecot.2317879.n4.nabble.com/Dovecot-hooks-tp46887.html > Sent from the Dovecot mailing list archive at Nabble.com. > search the list archive like http://dovecot.2317879.n4.nabble.com/Transparent-IMAP-proxy-td42801.html Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From stan at hardwarefreak.com Mon Feb 24 17:59:03 2014 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Mon, 24 Feb 2014 11:59:03 -0600 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B5ABF.3000903@Media-Brokers.com> <530B69E4.5030504@Media-Brokers.com> Message-ID: <530B8867.9000903@hardwarefreak.com> On 2/24/2014 10:14 AM, Steffen Kaiser wrote: ... > I mean to add a > BCC per user to "user"_backup, like a per user alias or forward. > > A message to user A is "split" into a message to user A and A_backup, > where the new message to user A is not split again. If using Postfix, this can be accomplished via two methods. 1. /etc/aliases If using local accounts, create a new mailbox and add it as a 2nd value in the 'name: value, value' definition. See: aliases(5) 2. /etc/postfix/virtual If using a virtual(5) table, simply add a 2nd result (address) to each pattern. Using aliases(5), the 'X-Original-To:' and 'Delivered-To:' headers remain intact. Using virtual(5), these headers are rewritten to the target address(es). The latter shouldn't be a problem for your use case. Each such address needs to be added to an access(5) table which will be used with check_recipient_access to reject mail coming in via SMTP. You only want backup mail going into these mailboxes, not spam, not mistyped addresses that may match the mailbox name, etc. -- Stan From kremels at kreme.com Mon Feb 24 21:18:11 2014 From: kremels at kreme.com (LuKreme) Date: Mon, 24 Feb 2014 14:18:11 -0700 Subject: [Dovecot] Oldies but Goldies - Dovecot 1.2 and Sieve In-Reply-To: <530B6014.1050703@filmakademie.de> References: <530B6014.1050703@filmakademie.de> Message-ID: <05DD82CF-AE65-47F7-AB31-FA7B1A315DFA@kreme.com> On 24 Feb 2014, at 08:07 , G?tz Reinicke - IT Koordinator wrote: > we still run dovecot 1.2.17 and upgrading is not planed for some time. > > But I'm asked to install a sieve system to be used with SOGo soon. > > What do I have to install / configure? I was under the impression that dovecot 1.x is no longer supported. > -- > G?tz Reinicke > IT-Koordinator > > Tel. +49 7141 969 82 420 > E-Mail goetz.reinicke at filmakademie.de > > Filmakademie Baden-W?rttemberg GmbH > Akademiehof 10 > 71638 Ludwigsburg > www.filmakademie.de > > Eintragung Amtsgericht Stuttgart HRB 205016 > > Vorsitzender des Aufsichtsrats: J?rgen Walter MdL > Staatssekret?r im Ministerium f?r Wissenschaft, > Forschung und Kunst Baden-W?rttemberg > > Gesch?ftsf?hrer: Prof. Thomas Schadt 1) you signature delimiter is broken. you need a space after the -- 2) your signature is longer than your message (which is only really annoying because the delimiter is broken) -- You've never heard of the Millennium Falcon? From kremels at kreme.com Mon Feb 24 21:23:07 2014 From: kremels at kreme.com (LuKreme) Date: Mon, 24 Feb 2014 14:23:07 -0700 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: <530B41D8.40107@Media-Brokers.com> References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> Message-ID: <06C34372-0E2A-45CB-97E4-17998FFA4A6E@kreme.com> On 24 Feb 2014, at 05:58 , Charles Marcus wrote: > I too would very much like to see a way to 'split' the mail delivery transaction so that an *identical* copy of the message is delivered to two different places simultaneously. I have two methods of doing this. 1) /etc/postfix/virtual 2) /usr/local/etc/procmailrc -- What would be the point of cyphering messages that very clever enemies couldn't break? You'd end up not knowing what they thought you thought they were thinking... --The Fifth Elephant From kremels at kreme.com Mon Feb 24 21:27:52 2014 From: kremels at kreme.com (LuKreme) Date: Mon, 24 Feb 2014 14:27:52 -0700 Subject: [Dovecot] realtime backup with LDA? In-Reply-To: References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B5ABF.3000903@Media-Brokers.com> <530B69E4.5030504@Media-Brokers.com> Message-ID: On 24 Feb 2014, at 09:14 , Steffen Kaiser wrote: > Ah, OK. But this is not what I meant, because it would sent all messages to one and a single mail address, for all users, right? I mean to add a BCC per user to "user"_backup, like a per user alias or forward. > > A message to user A is "split" into a message to user A and A_backup, where the new message to user A is not split again. /etc/postfix/virtual user1 user1,user11 user2 user2,user2 at gmail.com user3+bank user1+bank,user2+bank,user3 stupidsony user1+sony -- Ille Qui Nos Omnes Servabit From sca at andreasschulze.de Mon Feb 24 21:46:51 2014 From: sca at andreasschulze.de (Andreas Schulze) Date: Mon, 24 Feb 2014 22:46:51 +0100 Subject: [Dovecot] Detail improvement: %c variable In-Reply-To: <20140224151931.GA26455@danisch.de> References: <530A75EB.3020904@danisch.de> <530A7843.5090008@thelounge.net> <20140223232354.GA25188@danisch.de> <530A8A4B.3090305@thelounge.net> <20140224151931.GA26455@danisch.de> Message-ID: <20140224224651.Horde.bDQOZLU5QOTJIM86-4H8xA2@horde.andreasschulze.de> Hadmut Danisch: > I did not say that I did not trust 127.0.0.1. I said that I do not > trust the Web-IMAP-Gateway (such as squirrelmail) if the client uses > an untrusted computer. the question to me is: why could Hadmut Danisch not configure dovecot use an non default trust state for localhost for whatever reasons? because this setting is hardcoded but should be configurable for him. Andeas From spork at bway.net Mon Feb 24 22:56:28 2014 From: spork at bway.net (Charles Sprickman) Date: Mon, 24 Feb 2014 17:56:28 -0500 Subject: [Dovecot] Quota-Status issue In-Reply-To: References: Message-ID: On Feb 20, 2014, at 5:12 PM, Cyberonic Turbo wrote: > Following this guide: > http://sys4.de/en/blog/2013/04/08/postfix-dovecot-mailbox-quota/ I can't > seem to get it to work, as soon as I add the smtpd_recipient_restrictions > setting to postfix I can no longer send mail at all. I get the message SMTP > Error (450): Failed to add recipient "postmaster at example.com" (4.7.1 : > Recipient address rejected: Internal error occurred. Refer to server log > for more information.). I googled around and found this command to test the > quota-status service: printf "recipient=postmaster at > example.com\nsize=1234\n\n" > | nc 127.0.0.1 12340 > It seems to always return the quota_status_nouser message. I'm really > stumped here. What logs do I need to check for errors and does anyone have > any experience with this? I'm not an expert, I just followed the same guide a few days ago while preparing to front an old vpopmail system with postfix. It did work for me. Before moving on to enabling the check in postfix, verify that the dovecot side is working. Your example test should work, I did the same here: [root at util-b /usr/local/etc/postfix]# printf "recipient=chip at test.bway.net\nsize=12304\n\n" | nc mbox.i 25001 action=DUNNO [root at util-b /usr/local/etc/postfix]# printf "recipient=chip at test.bway.net\nsize=123000000004\n\n" | nc mbox.i 25001 action=552 5.2.2 Mailbox is full If that fails for you, examine the dovecot log. In my case, I did have to provide the full path to the "quota-status" binary and dovecot complained about not being able to find it. Make sure you actually have quota-status installed. Full dovecot snippet for this below: # report quota to postfix # see http://sys4.de/en/blog/2013/04/08/postfix-dovecot-mailbox-quota/ plugin { quota_status_success = DUNNO quota_status_nouser = DUNNO quota_status_overquota = "552 5.2.2 Mailbox is full" } service quota-status { executable = /usr/local/libexec/dovecot/quota-status -p postfix inet_listener { address = 10.x.x.19 # In my case I want it listening on a particular IP port = 25001 } client_limit = 5 } If the dovecot portion is working, then move on to your postfix logs? Charles > > I'm running Dovect 2.2.10 with Postfix 2.6.6 > > Here's my dovecot -n result: > > # 2.2.10: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-431.5.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) > auth_master_user_separator = * > auth_mechanisms = PLAIN LOGIN > dict { > acl = mysql:/etc/dovecot/dovecot-share-folder.conf > quotadict = mysql:/etc/dovecot/dovecot-used-quota.conf > } > first_valid_uid = 2000 > last_valid_uid = 2000 > listen = * > log_path = /var/log/dovecot.log > mail_gid = 2000 > mail_location = maildir:/%Lh/Maildir/:INDEX=/%Lh/Maildir/ > mail_plugins = quota > mail_uid = 2000 > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character > vacation subaddress comparator-i;ascii-numeric relational regex imap4flags > copy include variables body enotify environment mailbox date ihave > namespace { > inbox = yes > location = > prefix = > separator = / > type = private > } > namespace { > list = children > location = maildir:/%%Lh/Maildir/:INDEX=/%%Lh/Maildir/Shared/%%u > prefix = Shared/%%u/ > separator = / > subscriptions = yes > type = shared > } > passdb { > args = /etc/dovecot/dovecot-mysql.conf > driver = sql > } > passdb { > args = /etc/dovecot/dovecot-master-users-password > driver = passwd-file > master = yes > } > plugin { > acl = vfile > acl_shared_dict = proxy::acl > auth_socket_path = /var/run/dovecot/auth-master > autocreate = INBOX > autocreate2 = Sent > autocreate3 = Trash > autocreate4 = Drafts > autocreate5 = Junk > autosubscribe = INBOX > autosubscribe2 = Sent > autosubscribe3 = Trash > autosubscribe4 = Drafts > autosubscribe5 = Junk > quota = dict:user::proxy::quotadict > quota_grace = 10%% > quota_rule = *:storage=1G > quota_status_nouser = DUNNO > quota_status_overquota = 552 5.2.2 Mailbox is full > quota_status_success = DUNNO > quota_warning = storage=85%% quota-warning 85 %u > quota_warning2 = storage=90%% quota-warning 90 %u > quota_warning3 = storage=95%% quota-warning 95 %u > sieve = /%Lh/sieve/dovecot.sieve > sieve_dir = /%Lh/sieve > sieve_global_dir = /var/vmail/sieve > sieve_global_path = /var/vmail/sieve/dovecot.sieve > } > protocols = pop3 imap sieve > service auth { > unix_listener /var/spool/postfix/dovecot-auth { > group = postfix > mode = 0666 > user = postfix > } > unix_listener auth-master { > group = vmail > mode = 0666 > user = vmail > } > unix_listener auth-userdb { > group = vmail > mode = 0660 > user = vmail > } > } > service dict { > unix_listener dict { > group = vmail > mode = 0660 > user = vmail > } > } > service imap-login { > process_limit = 500 > service_count = 1 > } > service pop3-login { > service_count = 1 > } > service quota-status { > client_limit = 1 > executable = quota-status -p postfix > inet_listener { > port = 12340 > } > } > service quota-warning { > executable = script /usr/local/bin/dovecot-quota-warning.sh > unix_listener quota-warning { > group = vmail > mode = 0660 > user = vmail > } > } > ssl = required > ssl_cert = ssl_key = userdb { > args = /etc/dovecot/dovecot-mysql.conf > driver = sql > } > protocol lda { > auth_socket_path = /var/run/dovecot/auth-master > lda_mailbox_autocreate = yes > log_path = /var/log/sieve.log > mail_plugins = quota sieve autocreate > postmaster_address = root > } > protocol imap { > imap_client_workarounds = tb-extra-mailbox-sep > mail_plugins = quota imap_quota autocreate > } > protocol pop3 { > mail_plugins = quota > pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > pop3_uidl_format = %08Xu%08Xv > } > > For my postfix/main.cf I have this relevant setting: > smtpd_recipient_restrictions = reject_unknown_sender_domain, > reject_unknown_recipient_domain, reject_non_fqdn_sender, > reject_non_fqdn_recipient, reject_unlisted_recipient, check_policy_service > inet:127.0.0.1:7777, check_policy_service inet:127.0.0.1:10031, > check_policy_service inet:127.0.0.1:12340, permit_mynetworks, > permit_sasl_authenticated, reject_unauth_destination From da-dovecotlist-15 at abelonline.de Tue Feb 25 00:54:49 2014 From: da-dovecotlist-15 at abelonline.de (Boris) Date: Tue, 25 Feb 2014 01:54:49 +0100 Subject: [Dovecot] Why SETACL accepts non-existant users (was Re: Why are ACLs for non-existent mailboxes accepted?) In-Reply-To: References: <1596406.KPuaozNP9l@skynet2> <1823776.3i587m2DzB@skynet2> Message-ID: <1660844.9HCa3Xg6C0@skynet2> On Friday 21 February 2014 08:54:34 Steffen Kaiser wrote: > On Thu, 20 Feb 2014, Boris wrote: > > On Thursday 20 February 2014 20:45:32 Boris wrote: > >> Dovecot 2.2.9-1 accepts SETACL commands that share mailboxes to > >> non-existent mailboxes. There is no error message. Is this intended > >> behavior? > > There is a "false friend" here. A "mailbox" in the tongue of many English > speakers is an IMAP folder, the mailbox file all mails had been appended > together in the old times, when mbx or mbox mail storage format was > common. In Germany many people use "Mailbox" as the collection of all IMAP > folders of one account. > > So the question is why Dovecot accepts non-existant _users_ as you wrote > in your last line. > > > I probably found the solution myself. Quoting RFC 4314: > No, because of mailbox != Mailbox. So what is the reason then? From slusarz at curecanti.org Tue Feb 25 01:04:40 2014 From: slusarz at curecanti.org (Michael M Slusarz) Date: Mon, 24 Feb 2014 18:04:40 -0700 Subject: [Dovecot] Why SETACL accepts non-existant users (was Re: Why are ACLs for non-existent mailboxes accepted?) In-Reply-To: <1660844.9HCa3Xg6C0@skynet2> References: <1596406.KPuaozNP9l@skynet2> <1823776.3i587m2DzB@skynet2> <1660844.9HCa3Xg6C0@skynet2> Message-ID: <20140224180440.Horde.CCM3Cc5yrF3-Oa7oc24kRg6@bigworm.curecanti.org> Quoting Boris : > On Friday 21 February 2014 08:54:34 Steffen Kaiser wrote: >> On Thu, 20 Feb 2014, Boris wrote: >> > On Thursday 20 February 2014 20:45:32 Boris wrote: >> >> Dovecot 2.2.9-1 accepts SETACL commands that share mailboxes to >> >> non-existent mailboxes. There is no error message. Is this intended >> >> behavior? >> >> There is a "false friend" here. A "mailbox" in the tongue of many English >> speakers is an IMAP folder, the mailbox file all mails had been appended >> together in the old times, when mbx or mbox mail storage format was >> common. In Germany many people use "Mailbox" as the collection of all IMAP >> folders of one account. >> >> So the question is why Dovecot accepts non-existant _users_ as you wrote >> in your last line. >> >> > I probably found the solution myself. Quoting RFC 4314: >> No, because of mailbox != Mailbox. > > So what is the reason then? There is nothing in RFC 4314 that requires the mailbox to exist. SETACL only returns NO if you "can't set acl". But "can't set acl" != "mailbox has to exist". Example: a server can allow pre-setting ACLs for mailboxes that MAY be created in the future. Perfectly legal according to the spec. RFC 3501 defines the commands needed to check for mailbox existence. If you are trying to use ACL commands to determine mailbox existence you are doing it wrong. michael From da-dovecotlist-15 at abelonline.de Tue Feb 25 01:21:07 2014 From: da-dovecotlist-15 at abelonline.de (Boris) Date: Tue, 25 Feb 2014 02:21:07 +0100 Subject: [Dovecot] Why SETACL accepts non-existant users (was Re: Why are ACLs for non-existent mailboxes accepted?) In-Reply-To: <20140224180440.Horde.CCM3Cc5yrF3-Oa7oc24kRg6@bigworm.curecanti.org> References: <1596406.KPuaozNP9l@skynet2> <1660844.9HCa3Xg6C0@skynet2> <20140224180440.Horde.CCM3Cc5yrF3-Oa7oc24kRg6@bigworm.curecanti.org> Message-ID: <13935078.jI0b8ubRas@skynet2> On Monday 24 February 2014 18:04:40 Michael M Slusarz wrote: > SETACL only returns NO if you "can't set acl". But "can't set acl" != > "mailbox has to exist". Example: a server can allow pre-setting ACLs > for mailboxes that MAY be created in the future. Perfectly legal > according to the spec. Sounds reasonable. Thank you for the hint. > RFC 3501 defines the commands needed to check for mailbox existence. > If you are trying to use ACL commands to determine mailbox existence > you are doing it wrong. I'm glad I'm not doing this then. From rhklinux at yahoo.com Tue Feb 25 05:50:31 2014 From: rhklinux at yahoo.com (rhklinux) Date: Mon, 24 Feb 2014 21:50:31 -0800 (PST) Subject: [Dovecot] Dovecot hooks In-Reply-To: <530B8724.8090108@sys4.de> References: <1393215315237-46887.post@n4.nabble.com> <530B8724.8090108@sys4.de> Message-ID: <1393307431603-46922.post@n4.nabble.com> Thanks ! I will check it out. -- View this message in context: http://dovecot.2317879.n4.nabble.com/Dovecot-hooks-tp46887p46922.html Sent from the Dovecot mailing list archive at Nabble.com. From skdovecot at smail.inf.fh-brs.de Tue Feb 25 07:57:36 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 25 Feb 2014 08:57:36 +0100 (CET) Subject: [Dovecot] realtime backup with LDA? In-Reply-To: References: <530A00A4.3090103@easy-mail.it> <530B41D8.40107@Media-Brokers.com> <530B5ABF.3000903@Media-Brokers.com> <530B69E4.5030504@Media-Brokers.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 24 Feb 2014, LuKreme wrote: > On 24 Feb 2014, at 09:14 , Steffen Kaiser wrote: > >> Ah, OK. But this is not what I meant, because it would sent all messages to one and a single mail address, for all users, right? I mean to add a BCC per user to "user"_backup, like a per user alias or forward. >> >> A message to user A is "split" into a message to user A and A_backup, where the new message to user A is not split again. > > /etc/postfix/virtual > user1 user1,user11 > user2 user2,user2 at gmail.com > user3+bank user1+bank,user2+bank,user3 > stupidsony user1+sony :-) Looks like that's exactly what I mean. I do not use postfix, so I do not know how the features are named there. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwxM8HD1/YhP6VMHAQIrcAf+JA0c2DN3x0aOBvbGd1fUg5EX5u+m3tcG xobiIRIJx/yjfF7dzYsR7r4jEy6rvU3uVSz3TgkweDIBcWBSn46uIR8/7krOsuuC Og6+xOyEmCVC081eOTnnTYrLM3bGOjzID9rTe6SmXmJ6pceww7KLIkEF6fdbmn3M HTBNAmUItWceHzjEQBEMftwJyW9FlqNG2zeFRZO4BZN0unfOwf9b9ojgFHgQO4IZ MP0zi6m+35UV/fs+f73+26YERj1ajhMVI1wquaSifOdOtVOY3ROZRjSA8zDFmHZ4 LNTBJDPmQRgNoOfCDxsZWfx2wg/ynSfxNTxRvozzoFmoEOI1YxnLcw== =xcIG -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Tue Feb 25 08:02:01 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 25 Feb 2014 09:02:01 +0100 (CET) Subject: [Dovecot] Detail improvement: %c variable In-Reply-To: <20140224224651.Horde.bDQOZLU5QOTJIM86-4H8xA2@horde.andreasschulze.de> References: <530A75EB.3020904@danisch.de> <530A7843.5090008@thelounge.net> <20140223232354.GA25188@danisch.de> <530A8A4B.3090305@thelounge.net> <20140224151931.GA26455@danisch.de> <20140224224651.Horde.bDQOZLU5QOTJIM86-4H8xA2@horde.andreasschulze.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 24 Feb 2014, Andreas Schulze wrote: > Hadmut Danisch: > >> I did not say that I did not trust 127.0.0.1. I said that I do not >> trust the Web-IMAP-Gateway (such as squirrelmail) if the client uses >> an untrusted computer. > > the question to me is: why could Hadmut Danisch not configure > dovecot use an non default trust state for localhost for whatever reasons? > > because this setting is hardcoded but should be configurable for him. Probably if one goes to implement such option, it would be also a good thing to let this be configurable using "local" blocks. I mean, in order to enable/disable the implicit trust per IP address. That way one could point one service, such as the web frontend, on an IP adsress, that defaults to "not secured", but have others that default to "secured". - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwxN+XD1/YhP6VMHAQL7XQgA0mEj0UShy+yUdlLVXNCeH/fD9Qy8ZPAB bkyIsUeWc5lDGwrj5Dgz6c06cLo5YHh67hNzmINiYoY5FwAu2iDuwC7ASq1U2n+3 ZPy/eo4+p3SA9vRVIWOv4PK9Sy7zpm0kypkmCzzrUKXt7WdE275P+dGyF5dvwKjS dGJGhcfWG920YJ4/BbnjyonE3SbduCSylvmu/3e4B6KNkRHAsOLClcVI+Xrcb3CU Q5pdnjZWJ0FIKPIu2D4GvbD0Bsyml/JnYEeZfHdZ88rItNWOCpDuO3KmkjBvaCMx MdXLRjxP/EnhkzRikHUC9uHUlhjsk9mLQLJm8/a+PFprFZ4cIv3e6Q== =c9Qh -----END PGP SIGNATURE----- From mihai at badici.ro Tue Feb 25 10:33:44 2014 From: mihai at badici.ro (Mihai Badici) Date: Tue, 25 Feb 2014 12:33:44 +0200 Subject: [Dovecot] tests with metadata module In-Reply-To: <52C195EA.9060105@alec.pl> References: <16526123.pst3BNDYgE@arhivio> <2076911.g1DvFl5trc@arhivio> <52C195EA.9060105@alec.pl> Message-ID: <2407774.A7AFTfm3zm@arhivio> On Monday 30 December 2013 16:48:58 A.L.E.C wrote: > On 12/30/2013 03:25 PM, Mihai Badici wrote: > > I made some investigation and I found Roundcube perform a > > GETMETADATA "*" (/private/vendor/kolab/folder-type) > > to list all special folders. > > This is indeed not specified in RFC5464, but it was in ANNOTATEMORE > extension draft. This is very handy and it is supported by Cyrus. > > Timo fixed this in http://hg.dovecot.org/dovecot-2.2/rev/0c3071ebe44b > one day before 2.2.10 release. Didn't it make to the release? This issue strike again I think. I upgraded to dovecot 2.2.12 ( from 2.2.10) and when trying to access calendar I have this error in roundcube: Invalid argument supplied for foreach() in /usr/share/roundcubemail-1.0/plugins/libkolab/lib/kolab_storage.php on line 1040 When I look at the code, I find the argument came from this call: $folders = self::$imap->get_metadata('*', array(kolab_storage::CTYPE_KEY_PRIVATE)); which means the getmetadata with wildcard was not working again .... -- Mihai B?dici http://mihai.badici.ro From mailinglists at easy-mail.it Tue Feb 25 10:42:33 2014 From: mailinglists at easy-mail.it (Francesco) Date: Tue, 25 Feb 2014 11:42:33 +0100 Subject: [Dovecot] 2 users database on same LDAP with different mail location Message-ID: <1393324953.3425.17.camel@secoges-laptop> Hello, i know i know, i'm getting annoying but appearently i always come up with weird ideas and i cant seem to accomplish such a task. the scenario is that i have an LDAP server with a bunch of users. some of them are in a specific OU, and i'd like to define for all these users belonging to this OU an alternative mail location/storage. in details for all the users i'd like to use maildir storage in a directory, while for the users belonging to a specific OU i'd like to use dbox with an alternative storage attached. so i created 2 userdb like this: userdb { driver = ldap args = /etc/dovecot/dovecot-ldap-maildir.conf.ext } userdb { driver = ldap args = /etc/dovecot/dovecot-ldap-dbox.conf.ext } and then defined these 2 args files: maildir: hosts = localhost dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local dnpass = auth_bind = yes ldap_version = 3 base = DC=plutone,DC=local user_attrs = sAMAccountName=home=/var/vmail/%$ dbox: hosts = localhost dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local dnpass = auth_bind = yes ldap_version = 3 base = OU=dboxusers,OU=lowpriority,DC=plutone,DC=local user_attrs = sAMAccountName=home=/var/local_dbox/%$, =mail=dbox:/var/local_dbox/%$:ALT=/var/iscsi_dbox/%$ user_filter = (&(ObjectClass=person)(mail=%u)) yet it doesn't matter how hard i try if i send an email to a user belonging to the dboxusers OU i still have the user to be addressed to the maildir storage in /var/vmail am i missing something? Thanks Francesco From theoxarhs at gmail.com Tue Feb 25 11:34:46 2014 From: theoxarhs at gmail.com (XarHs) Date: Tue, 25 Feb 2014 13:34:46 +0200 Subject: [Dovecot] A question regarding doveadm replicator status In-Reply-To: References: Message-ID: the problem was solved by itself (probably by a full sync! thanks anyway! On Mon, Feb 24, 2014 at 3:00 PM, XarHs wrote: > Hello, > > I am using Dovecot version 2.2.10. I am quite familiar with ssh > replication and I managed to set it up correctly. The only problem I see is > that when i run the command: > doveadm replicator status I get a wrong "Total number of known users" > which is > a) is different between the two (2) replicated dovecot servers, i.e. in > mail1 I get a total of 21 users and in mail2 I get a total of 20 users (it > should be the same, correct?) > b) is not matching the total number of users I have in each server (mail1, > mail2) which I am also getting when counting the total users with "doveadm" > service enabled. (the command doveadm user '*' | wc lists a total of 16 > users for both mail1, mail2 servers, which is also the total number of > users that exist indeed in the LDAP structure with the doveadm service > enabled. > > Is there any way to reset the value of "Total number of known users"? Do I > have to delete a file in /var/run/dovecot or something in order to do it? > > The only way I tried (not successfully though) to reset it is by executing > the command: > for i in `doveadm user '*'` ;do doveadm replicator remove $i ; done > which does empties all existing users (16), but leaves me with > Queued 'sync' requests 0 > Queued 'high' requests 0 > Queued 'low' requests 0 > Queued 'failed' requests 0 > Queued 'full resync' requests 0 > Waiting 'failed' requests 0 > Total number of known users 5 > in mail1 server and > Queued 'sync' requests 0 > Queued 'high' requests 0 > Queued 'low' requests 0 > Queued 'failed' requests 0 > Queued 'full resync' requests 0 > Waiting 'failed' requests 0 > Total number of known users 4 > in mail2 server, i.e. the value is 5 (21-16) for mail1 and 4 (20-16) for > mail2 server. > > After seeing that I tried to restart dovecot service, which again ended in > the following numbers: > Queued 'sync' requests 0 > Queued 'high' requests 0 > Queued 'low' requests 0 > Queued 'failed' requests 0 > Queued 'full resync' requests 0 > Waiting 'failed' requests 0 > Total number of known users 21 > in mail1 server and > Queued 'sync' requests 0 > Queued 'high' requests 0 > Queued 'low' requests 0 > Queued 'failed' requests 0 > Queued 'full resync' requests 0 > Waiting 'failed' requests 0 > Total number of known users 20 > in mail2 server thus their values augmented back to +16, meaning dovecot > read succesfully my 16 users. > > I have not found a way to successfully reset the "Total number of known > users" numbers back to the valid 16 users, which is also returned by > running the command: > doveadm user '*' | wc > > Why do I have those differences? How is the "Total number of known users" > being calculated? > What should I do to effectively reset to to the normal value (which in my > case is 16)? > > Thanks in advance. > From list at grootstyr.eu Tue Feb 25 12:29:37 2014 From: list at grootstyr.eu (list at grootstyr.eu) Date: Tue, 25 Feb 2014 13:29:37 +0100 Subject: [Dovecot] 2 users database on same LDAP with different mail location In-Reply-To: <1393324953.3425.17.camel@secoges-laptop> References: <1393324953.3425.17.camel@secoges-laptop> Message-ID: <20140225122937.GA31603@clntbx.grootstyr.eu> On Tue, Feb 25, 2014 at 11:42:33AM +0100, Francesco wrote: > Hello, > i know i know, i'm getting annoying but appearently i always come up > with weird ideas and i cant seem to accomplish such a task. > > the scenario is that i have an LDAP server with a bunch of users. > some of them are in a specific OU, and i'd like to define for all these > users belonging to this OU an alternative mail location/storage. > > in details for all the users i'd like to use maildir storage in a > directory, while for the users belonging to a specific OU i'd like to > use dbox with an alternative storage attached. > > so i created 2 userdb like this: > > userdb { > driver = ldap > args = /etc/dovecot/dovecot-ldap-maildir.conf.ext > } > > userdb { > driver = ldap > args = /etc/dovecot/dovecot-ldap-dbox.conf.ext > } > > and then defined these 2 args files: > maildir: > > hosts = localhost > dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local > dnpass = > auth_bind = yes > ldap_version = 3 > base = DC=plutone,DC=local > user_attrs = sAMAccountName=home=/var/vmail/%$ > > dbox: > > hosts = localhost > dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local > dnpass = > auth_bind = yes > ldap_version = 3 > base = OU=dboxusers,OU=lowpriority,DC=plutone,DC=local > user_attrs = sAMAccountName=home=/var/local_dbox/%$, > =mail=dbox:/var/local_dbox/%$:ALT=/var/iscsi_dbox/%$ > user_filter = (&(ObjectClass=person)(mail=%u)) > > > yet it doesn't matter how hard i try if i send an email to a user > belonging to the dboxusers OU i still have the user to be addressed to > the maildir storage in /var/vmail > > am i missing something? > > Thanks > Francesco You can use LDAP to search for an alternative mail attribute, and specify a default location using mail_location. In your example; mail_location = /var/vmail/%u. Then use one LDAP config file to override the mailbox location if the LDAP database specifies a maildir location. By the way, aren't userdb's searched sequentially? Try switching those userdb's to make the one with the group lookup go first. LDAP users will always match the userdb without group lookup. Matthijs From list at grootstyr.eu Tue Feb 25 12:39:26 2014 From: list at grootstyr.eu (list at grootstyr.eu) Date: Tue, 25 Feb 2014 13:39:26 +0100 Subject: [Dovecot] 2 users database on same LDAP with different mail location In-Reply-To: <20140225122937.GA31603@clntbx.grootstyr.eu> References: <1393324953.3425.17.camel@secoges-laptop> <20140225122937.GA31603@clntbx.grootstyr.eu> Message-ID: <20140225123926.GA31640@clntbx.grootstyr.eu> On Tue, Feb 25, 2014 at 01:29:37PM +0100, list at grootstyr.eu wrote: > On Tue, Feb 25, 2014 at 11:42:33AM +0100, Francesco wrote: > > Hello, > > i know i know, i'm getting annoying but appearently i always come up > > with weird ideas and i cant seem to accomplish such a task. > > > > the scenario is that i have an LDAP server with a bunch of users. > > some of them are in a specific OU, and i'd like to define for all these > > users belonging to this OU an alternative mail location/storage. > > > > in details for all the users i'd like to use maildir storage in a > > directory, while for the users belonging to a specific OU i'd like to > > use dbox with an alternative storage attached. > > > > so i created 2 userdb like this: > > > > userdb { > > driver = ldap > > args = /etc/dovecot/dovecot-ldap-maildir.conf.ext > > } > > > > userdb { > > driver = ldap > > args = /etc/dovecot/dovecot-ldap-dbox.conf.ext > > } > > > > and then defined these 2 args files: > > maildir: > > > > hosts = localhost > > dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local > > dnpass = > > auth_bind = yes > > ldap_version = 3 > > base = DC=plutone,DC=local > > user_attrs = sAMAccountName=home=/var/vmail/%$ > > > > dbox: > > > > hosts = localhost > > dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local > > dnpass = > > auth_bind = yes > > ldap_version = 3 > > base = OU=dboxusers,OU=lowpriority,DC=plutone,DC=local > > user_attrs = sAMAccountName=home=/var/local_dbox/%$, > > =mail=dbox:/var/local_dbox/%$:ALT=/var/iscsi_dbox/%$ > > user_filter = (&(ObjectClass=person)(mail=%u)) > > > > > > yet it doesn't matter how hard i try if i send an email to a user > > belonging to the dboxusers OU i still have the user to be addressed to > > the maildir storage in /var/vmail > > > > am i missing something? > > > > Thanks > > Francesco > > You can use LDAP to search for an alternative mail attribute, and specify a default location using > mail_location. In your example; mail_location = /var/vmail/%u. Then use one LDAP config file to override the > mailbox location if the LDAP database specifies a maildir location. > > By the way, aren't userdb's searched sequentially? Try switching those userdb's to make the one with the group > lookup go first. LDAP users will always match the userdb without group lookup. > > Matthijs An addition to my own comment, put the group lookup userdb first, and add skip = found to the second userdb. This way it will search the group userdb first and if it found the user, so when it is in the group, don't search the second userdb and use the answer from the first userdb. Matthijs From mailinglists at easy-mail.it Tue Feb 25 12:42:52 2014 From: mailinglists at easy-mail.it (Francesco) Date: Tue, 25 Feb 2014 13:42:52 +0100 Subject: [Dovecot] 2 users database on same LDAP with different mail location In-Reply-To: <20140225123926.GA31640@clntbx.grootstyr.eu> References: <1393324953.3425.17.camel@secoges-laptop> <20140225122937.GA31603@clntbx.grootstyr.eu> <20140225123926.GA31640@clntbx.grootstyr.eu> Message-ID: <530C8FCC.6020301@easy-mail.it> Il 25/02/2014 13:39, list at grootstyr.eu ha scritto: > On Tue, Feb 25, 2014 at 01:29:37PM +0100, list at grootstyr.eu wrote: >> On Tue, Feb 25, 2014 at 11:42:33AM +0100, Francesco wrote: >>> Hello, >>> i know i know, i'm getting annoying but appearently i always come up >>> with weird ideas and i cant seem to accomplish such a task. >>> >>> the scenario is that i have an LDAP server with a bunch of users. >>> some of them are in a specific OU, and i'd like to define for all these >>> users belonging to this OU an alternative mail location/storage. >>> >>> in details for all the users i'd like to use maildir storage in a >>> directory, while for the users belonging to a specific OU i'd like to >>> use dbox with an alternative storage attached. >>> >>> so i created 2 userdb like this: >>> >>> userdb { >>> driver = ldap >>> args = /etc/dovecot/dovecot-ldap-maildir.conf.ext >>> } >>> >>> userdb { >>> driver = ldap >>> args = /etc/dovecot/dovecot-ldap-dbox.conf.ext >>> } >>> >>> and then defined these 2 args files: >>> maildir: >>> >>> hosts = localhost >>> dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local >>> dnpass = >>> auth_bind = yes >>> ldap_version = 3 >>> base = DC=plutone,DC=local >>> user_attrs = sAMAccountName=home=/var/vmail/%$ >>> >>> dbox: >>> >>> hosts = localhost >>> dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local >>> dnpass = >>> auth_bind = yes >>> ldap_version = 3 >>> base = OU=dboxusers,OU=lowpriority,DC=plutone,DC=local >>> user_attrs = sAMAccountName=home=/var/local_dbox/%$, >>> =mail=dbox:/var/local_dbox/%$:ALT=/var/iscsi_dbox/%$ >>> user_filter = (&(ObjectClass=person)(mail=%u)) >>> >>> >>> yet it doesn't matter how hard i try if i send an email to a user >>> belonging to the dboxusers OU i still have the user to be addressed to >>> the maildir storage in /var/vmail >>> >>> am i missing something? >>> >>> Thanks >>> Francesco >> You can use LDAP to search for an alternative mail attribute, and specify a default location using >> mail_location. In your example; mail_location = /var/vmail/%u. Then use one LDAP config file to override the >> mailbox location if the LDAP database specifies a maildir location. >> >> By the way, aren't userdb's searched sequentially? Try switching those userdb's to make the one with the group >> lookup go first. LDAP users will always match the userdb without group lookup. >> >> Matthijs > An addition to my own comment, put the group lookup userdb first, and add skip = found to the second userdb. > This way it will search the group userdb first and if it found the user, so when it is in the group, don't > search the second userdb and use the answer from the first userdb. > > Matthijs ok.. thank you i'm gonna try this one, do you think the attributes files are fine? Francesco From skdovecot at smail.inf.fh-brs.de Tue Feb 25 13:18:54 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 25 Feb 2014 14:18:54 +0100 (CET) Subject: [Dovecot] 2 users database on same LDAP with different mail location In-Reply-To: <20140225122937.GA31603@clntbx.grootstyr.eu> References: <1393324953.3425.17.camel@secoges-laptop> <20140225122937.GA31603@clntbx.grootstyr.eu> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 25 Feb 2014, list at grootstyr.eu wrote: > On Tue, Feb 25, 2014 at 11:42:33AM +0100, Francesco wrote: >> in details for all the users i'd like to use maildir storage in a >> directory, while for the users belonging to a specific OU i'd like to >> use dbox with an alternative storage attached. >> >> so i created 2 userdb like this: >> >> userdb { >> driver = ldap >> args = /etc/dovecot/dovecot-ldap-maildir.conf.ext >> } >> >> userdb { >> driver = ldap >> args = /etc/dovecot/dovecot-ldap-dbox.conf.ext >> } >> >> and then defined these 2 args files: >> maildir: >> >> hosts = localhost >> dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local >> dnpass = >> auth_bind = yes >> ldap_version = 3 >> base = DC=plutone,DC=local >> user_attrs = sAMAccountName=home=/var/vmail/%$ >> >> dbox: >> >> hosts = localhost >> dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local >> dnpass = >> auth_bind = yes >> ldap_version = 3 >> base = OU=dboxusers,OU=lowpriority,DC=plutone,DC=local >> user_attrs = sAMAccountName=home=/var/local_dbox/%$, >> =mail=dbox:/var/local_dbox/%$:ALT=/var/iscsi_dbox/%$ >> user_filter = (&(ObjectClass=person)(mail=%u)) >> >> yet it doesn't matter how hard i try if i send an email to a user >> belonging to the dboxusers OU i still have the user to be addressed to >> the maildir storage in /var/vmail > > You can use LDAP to search for an alternative mail attribute, and specify a default location using > mail_location. In your example; mail_location = /var/vmail/%u. Then use one LDAP config file to override the > mailbox location if the LDAP database specifies a maildir location. > > By the way, aren't userdb's searched sequentially? Try switching those userdb's to make the one with the group > lookup go first. LDAP users will always match the userdb without group lookup. yep, the first file, which belongs to the first userdb {} I guess, does not have no user_filter, so it does always find the user. Either add a user_filter to the first file, that excludes any dbox users, or switch the order of both userdb's. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUwyYP3D1/YhP6VMHAQJX2Af+Lvxeqg4GULjMlRIFZVsBtR+8v6VlQtth iHVpeYXuvZ4r3wNSz6bvka1+0aoQ9IPlvX6IJN9zSp6zoVPh5yHMCi/jgARnu48I 0Zr9iab8hE7uuiBUnnnzPDFYeVcV1iWWK9hcNJUOlMD543R51wL79VKz7/36nwyl Vvon8/e0wlbczVHq27VgR0LWq3o5OOxG8GteWjMCG9ox2YiTlwm6trcEuJ17OZhD TJOs02jg0zPd6yC5ctecYfZNSkBqzmc2I29/8ecQMYWHshrdAK32UE+manORvRnN H2QIGhbJ+XI+JOnGKTSyFgjVHYV2jrGiH8uqoMweJwx3gq0hEN2J5A== =Gvcd -----END PGP SIGNATURE----- From CMarcus at Media-Brokers.com Tue Feb 25 13:42:15 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 25 Feb 2014 08:42:15 -0500 Subject: [Dovecot] Oldies but Goldies - Dovecot 1.2 and Sieve In-Reply-To: <530B6014.1050703@filmakademie.de> References: <530B6014.1050703@filmakademie.de> Message-ID: <530C9DB7.7040209@Media-Brokers.com> On 2/24/2014 10:07 AM, G?tz Reinicke - IT Koordinator wrote: > we still run dovecot 1.2.17 and upgrading is not planed for some time. Well, since 1.x is no longer supported, you will most likely have more and more issues that you won't get any help with. From mailinglists at easy-mail.it Tue Feb 25 15:09:02 2014 From: mailinglists at easy-mail.it (Francesco) Date: Tue, 25 Feb 2014 16:09:02 +0100 Subject: [Dovecot] 2 users database on same LDAP with different mail location In-Reply-To: References: <1393324953.3425.17.camel@secoges-laptop> <20140225122937.GA31603@clntbx.grootstyr.eu> Message-ID: <530CB20E.4040205@easy-mail.it> Il 25/02/2014 14:18, Steffen Kaiser ha scritto: > On Tue, 25 Feb 2014, list at grootstyr.eu wrote: > > > On Tue, Feb 25, 2014 at 11:42:33AM +0100, Francesco wrote: > >> in details for all the users i'd like to use maildir storage in a > >> directory, while for the users belonging to a specific OU i'd like to > >> use dbox with an alternative storage attached. > >> > >> so i created 2 userdb like this: > >> > >> userdb { > >> driver = ldap > >> args = /etc/dovecot/dovecot-ldap-maildir.conf.ext > >> } > >> > >> userdb { > >> driver = ldap > >> args = /etc/dovecot/dovecot-ldap-dbox.conf.ext > >> } > >> > >> and then defined these 2 args files: > >> maildir: > >> > >> hosts = localhost > >> dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local > >> dnpass = > >> auth_bind = yes > >> ldap_version = 3 > >> base = DC=plutone,DC=local > >> user_attrs = sAMAccountName=home=/var/vmail/%$ > >> > >> dbox: > >> > >> hosts = localhost > >> dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local > >> dnpass = > >> auth_bind = yes > >> ldap_version = 3 > >> base = OU=dboxusers,OU=lowpriority,DC=plutone,DC=local > >> user_attrs = sAMAccountName=home=/var/local_dbox/%$, > >> =mail=dbox:/var/local_dbox/%$:ALT=/var/iscsi_dbox/%$ > >> user_filter = (&(ObjectClass=person)(mail=%u)) > >> > >> yet it doesn't matter how hard i try if i send an email to a user > >> belonging to the dboxusers OU i still have the user to be addressed to > >> the maildir storage in /var/vmail > > > You can use LDAP to search for an alternative mail attribute, and > specify a default location using > > mail_location. In your example; mail_location = /var/vmail/%u. Then > use one LDAP config file to override the > > mailbox location if the LDAP database specifies a maildir location. > > > By the way, aren't userdb's searched sequentially? Try switching > those userdb's to make the one with the group > > lookup go first. LDAP users will always match the userdb without > group lookup. > > yep, the first file, which belongs to the first userdb {} I guess, > does not have no user_filter, so it does always find the user. > > Either add a user_filter to the first file, that excludes any dbox > users, or switch the order of both userdb's. > > -- Steffen Kaiser I think i'll go for the reordering which looks to be simplier as i'm a sheep when it comes to LDAP stuff :D Francesco From dovecot.pkoch at dfgh.net Tue Feb 25 16:43:16 2014 From: dovecot.pkoch at dfgh.net (dovecot.pkoch at dfgh.net) Date: Tue, 25 Feb 2014 17:43:16 +0100 Subject: [Dovecot] AUTH_USER variable has invalid value in checkpassword Script Message-ID: Dear dovecot experts: We are using client certificates to authenthicate against a Dovecot server. Our certificates contain a x500UniqueIdentifier. I'm absolutely sure that the value of the x500UniqueIdentifier was stored into the AUTH_USER when I tested my setup last year. This has somehow changed and now AUTH_USER always contains the username. This has fatal consequences as now every owner of a valid certificate can logon as any user. Here are some more details of our setup: We are using a checkpassword-Script that does the following: 1. Read Username and Password from file descriptor 3 2. If (AUTH_CERT=="valid") and (AUTH_USER==Username) then user is authenticated 3 If (AUTH_CERT=="valid") and (AUTH_USER<>Username) then authentication is rejected (User a tries to logon as User B) 4 If (AUTH_CERT<>"valid) we calculate the current OATH value for Usernames TOTP-token and compare that with the provided password. The last step is the reason why we are using a checkpassword script. Our smartphone users cannot use a smartcard but enter a password that was created by an OTP generator, so programming my own checkpassword script was my only option. AUTH_USER contains the username even if the x500UniqueIdentifier from the users certificate does not, so step 2 happens when step 3 should happen. I did the initial testing with Dovecot 2.2.6. At that time we were using both port 143 and 993. We now use Dovecot 2.2.7 and port 993 only. This should not make a difference but I will recompile 2.2.6 right after sending this posting. Kind regards and thank you very much for this wonderful IMAP server Peter Koch current dovecot.conf: --------------------------------------------------------- # Dovecot configuration file default_process_limit = 2048 protocols = imap listen = * base_dir = /var/dovecot/ mail_location = maildir:/mail/%u:LAYOUT=fs ssl_cert = Just upgraded to a new Solr, so I did a full re-index. Saw some of these friendly messages: doveadm(csmith at amfes.com): Error: zlib.read(/var/mail/amfes.com/csmith/mdbox/storage/m.20): gz trailer has wrong CRC value at 28579617 doveadm(csmith at amfes.com): Error: read(zlib(/var/mail/amfes.com/csmith/mdbox/storage/m.20)) failed: Invalid argument doveadm(csmith at amfes.com): Error: read(zlib(/var/mail/amfes.com/csmith/mdbox/storage/m.20)) failed: Invalid argument (uid=5251) -- Daniel From dmiller at amfes.com Tue Feb 25 18:54:12 2014 From: dmiller at amfes.com (Daniel L. Miller) Date: Tue, 25 Feb 2014 10:54:12 -0800 Subject: [Dovecot] Error - zlib & fts In-Reply-To: <530CE5EF.8010704@amfes.com> References: <530CE5EF.8010704@amfes.com> Message-ID: On 2/25/2014 10:50 AM, Daniel L. Miller wrote: > Just upgraded to a new Solr, so I did a full re-index. Saw some of > these friendly messages: > > doveadm(csmith at amfes.com): Error: > zlib.read(/var/mail/amfes.com/csmith/mdbox/storage/m.20): gz trailer > has wrong CRC value at 28579617 > doveadm(csmith at amfes.com): Error: > read(zlib(/var/mail/amfes.com/csmith/mdbox/storage/m.20)) failed: > Invalid argument > doveadm(csmith at amfes.com): Error: > read(zlib(/var/mail/amfes.com/csmith/mdbox/storage/m.20)) failed: > Invalid argument (uid=5251) > Also some of these: doveadm(csmith at amfes.com): Error: zlib.read(/var/mail/amfes.com/csmith/mdbox/storage/m.20): missing gz header at 27877205 Running 2.2.12. -- Daniel From sloewent at yahoo.com Tue Feb 25 19:44:41 2014 From: sloewent at yahoo.com (Si L) Date: Tue, 25 Feb 2014 11:44:41 -0800 (PST) Subject: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot Message-ID: <1393357481.63475.YahooMailBasic@web162402.mail.bf1.yahoo.com> Hi, I just upgraded from version 1 to version on Debian Squeeze using their backports. Like I expected my dovecot1 config had to be converted using doveconf and this I did. However, I see problems with files inside directory: drwxr-xr-x 4 dovenull root 4096 Feb 25 20:35 /var/run/dovecot All of them were created owned by root:root rw. I tried to changed, for example : chown postfix:dovecot /var/run/dovecot/auth-master but noticed when I restarted dovecot it reset the permissions back to root:root rw. Here's the version: # dovecot --version 2.1.7 Here's my slightly redacted conf. # grep -v ^# dovecot.conf|grep -v ^$ auth_mechanisms = plain login auth_verbose = yes dict { quotadict = mysql:/etc/dovecot/dovecot-dict-quota.conf } disable_plaintext_auth = no first_valid_uid = 106 log_timestamp = "%Y-%m-%d %H:%M:%S " mail_location = maildir:/var/xx/%d/%u/ mail_plugins = quota mail_privileged_group = mail maildir_very_dirty_syncs = yes passdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } plugin { quota_rule = *:storage=262144:messages=20000 quota_rule2 = Trash:storage=282144:messages=23000 } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { mode = 0600 user = vmail } user = root } service imap-login { chroot = login inet_listener imap { address = 127.0.0.1 port = 3993 } inet_listener imaps { address = * port = 993 } process_limit = 256 process_min_avail = 24 service_count = 1 vsz_limit = 48 M } service pop3-login { chroot = login process_limit = 256 process_min_avail = 24 service_count = 1 vsz_limit = 48 M } ssl = required ssl_ca = Message-ID: <1393357963.59388.YahooMailBasic@web162402.mail.bf1.yahoo.com> Hi, Just noticed mode = 0666 should be set for auth-userdb however I see its not set in my converted dovecot.conf and think I should set this in the conf.d/10-master.conf, but I don't know which permissions should be secure and if secure permissions, then how should postfix interact with this or deliver to mail stores that are owned by xxx ? -------------------------------------------- On Tue, 25/2/14, Si L wrote: Subject: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot To: dovecot at dovecot.org Date: Tuesday, 25 February, 2014, 16:44 Hi, I just upgraded from version 1 to version on Debian Squeeze using their backports. Like I expected my dovecot1 config had to be converted using doveconf and this I did. However, I see problems with files inside directory: drwxr-xr-x 4 dovenull root 4096 Feb 25 20:35 /var/run/dovecot All of them were created owned by root:root rw. I tried to changed, for example : chown postfix:dovecot /var/run/dovecot/auth-master but noticed when I restarted dovecot it reset the permissions back to root:root rw. Here's the version: # dovecot --version 2.1.7 Here's my slightly redacted conf. # grep -v ^# dovecot.conf|grep -v ^$ auth_mechanisms = plain login auth_verbose = yes dict { ? quotadict = mysql:/etc/dovecot/dovecot-dict-quota.conf } disable_plaintext_auth = no first_valid_uid = 106 log_timestamp = "%Y-%m-%d %H:%M:%S " mail_location = maildir:/var/xx/%d/%u/ mail_plugins = quota mail_privileged_group = mail maildir_very_dirty_syncs = yes passdb { ? args = /etc/dovecot/dovecot-mysql.conf ? driver = sql } plugin { ? quota_rule = *:storage=262144:messages=20000 ? quota_rule2 = Trash:storage=282144:messages=23000 } service auth { ? unix_listener /var/spool/postfix/private/auth { ? ? group = postfix ? ? mode = 0660 ? ? user = postfix ? } ? unix_listener auth-master { ? ? mode = 0600 ? ? user = vmail ? } ? user = root } service imap-login { ? chroot = login ? inet_listener imap { ? ? address = 127.0.0.1 ? ? port = 3993 ? } ? inet_listener imaps { ? ? address = * ? ? port = 993 ? } ? process_limit = 256 ? process_min_avail = 24 ? service_count = 1 ? vsz_limit = 48 M } service pop3-login { ? chroot = login ? process_limit = 256 ? process_min_avail = 24 ? service_count = 1 ? vsz_limit = 48 M } ssl = required ssl_ca = Message-ID: <1393358767.72330.YahooMailBasic@web162406.mail.bf1.yahoo.com> Scratch this because this was set in my dovecot.conf..... and had not made any difference .... Is the /etc/dovecot/dovecot.conf used anymore, because dovecot is not listening on any ports ! I've looked on the wiki and only Basic Configuration is noted so I don't know if I should use: service imap-login { chroot = login inet_listener imap { address = 127.0.0.1 port = 3993 or some syntax. Any body? Off topic, Debian does not include the documentation directory with its packages: # cd /usr/share/doc/dovecot/example-config -su: cd: /usr/share/doc/dovecot/example-config: No such file or directory Regards, S -------------------------------------------- On Tue, 25/2/14, Si L wrote: Subject: Re: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot To: dovecot at dovecot.org Date: Tuesday, 25 February, 2014, 16:52 Hi, Just noticed mode = 0666 should be set for auth-userdb however I see its not set in my converted dovecot.conf and think I should set this in the conf.d/10-master.conf, but I don't know which permissions should be secure and if secure permissions, then how should postfix interact with this or deliver to mail stores that are owned by xxx ? -------------------------------------------- On Tue, 25/2/14, Si L wrote: Subject: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot To: dovecot at dovecot.org Date: Tuesday, 25 February, 2014, 16:44 Hi, ? I just upgraded from version 1 to version on Debian Squeeze using their backports. Like I expected my dovecot1 config had to be converted using doveconf and this I did. However, I see problems with files inside directory: drwxr-xr-x 4 dovenull root 4096 Feb 25 20:35 /var/run/dovecot All of them were created owned by root:root rw. I tried to changed, for example : chown postfix:dovecot /var/run/dovecot/auth-master but noticed when I restarted dovecot it reset the permissions back to root:root rw. Here's the version: # dovecot --version 2.1.7 Here's my slightly redacted conf. # grep -v ^# dovecot.conf|grep -v ^$ auth_mechanisms = plain login auth_verbose = yes dict { ? quotadict = mysql:/etc/dovecot/dovecot-dict-quota.conf } disable_plaintext_auth = no first_valid_uid = 106 log_timestamp = "%Y-%m-%d %H:%M:%S " mail_location = maildir:/var/xx/%d/%u/ mail_plugins = quota mail_privileged_group = mail maildir_very_dirty_syncs = yes passdb { ? args = /etc/dovecot/dovecot-mysql.conf ? driver = sql } plugin { ? quota_rule = *:storage=262144:messages=20000 ? quota_rule2 = Trash:storage=282144:messages=23000 } service auth { ? unix_listener /var/spool/postfix/private/auth { ? ? group = postfix ? ? mode = 0660 ? ? user = postfix ? } ? unix_listener auth-master { ? ? mode = 0600 ? ? user = vmail ? } ? user = root } service imap-login { ? chroot = login ? inet_listener imap { ? ? address = 127.0.0.1 ? ? port = 3993 ? } ? inet_listener imaps { ? ? address = * ? ? port = 993 ? } ? process_limit = 256 ? process_min_avail = 24 ? service_count = 1 ? vsz_limit = 48 M } service pop3-login { ? chroot = login ? process_limit = 256 ? process_min_avail = 24 ? service_count = 1 ? vsz_limit = 48 M } ssl = required ssl_ca = Message-ID: <1393359293.90783.YahooMailBasic@web162404.mail.bf1.yahoo.com> Hi, Looks like I've run out of time and have to roll back from version 2 to version 1 and stick with version 1. I have dpkgs for version 1 and my orginal configuration files and think I'll have to stick with Debian Squeeze and never use Wheezy because that does not carry Dovecot 1. Does any debian dovecot peeps know if this is all the packages I need? dovecot-common_1.2.15-7_amd64.deb dovecot-dbg_1.2.15-7_amd64.deb dovecot-dev_1.2.15-7_amd64.deb dovecot-imapd_1.2.15-7_amd64.deb dovecot-pop3d_1.2.15-7_amd64.deb mysqmail-dovecot-logger_0.4.9-7_amd64.deb -------------------------------------------- On Tue, 25/2/14, Si L wrote: Subject: Re: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot To: dovecot at dovecot.org Date: Tuesday, 25 February, 2014, 17:06 Scratch this because this was set in my dovecot.conf.....? and had not made any difference .... Is the /etc/dovecot/dovecot.conf used anymore, because dovecot is not listening on any ports ! I've looked on the wiki and only Basic Configuration is noted so I don't know if I should use: service imap-login { ? chroot = login ? inet_listener imap { ? ? address = 127.0.0.1 ? ? port = 3993 or some syntax.? Any body? Off topic, Debian does not include the documentation directory with its packages: # cd /usr/share/doc/dovecot/example-config -su: cd: /usr/share/doc/dovecot/example-config: No such file or directory Regards, S -------------------------------------------- On Tue, 25/2/14, Si L wrote: Subject: Re: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot To: dovecot at dovecot.org Date: Tuesday, 25 February, 2014, 16:52 Hi, Just noticed mode = 0666 should be set for auth-userdb however I see its not set in my converted dovecot.conf and think I should set this in the conf.d/10-master.conf, but I don't know which permissions should be secure and if secure permissions, then how should postfix interact with this or deliver to mail stores that are owned by xxx ? -------------------------------------------- On Tue, 25/2/14, Si L wrote: ? Subject: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot ? To: dovecot at dovecot.org ? Date: Tuesday, 25 February, 2014, 16:44 ? ? Hi, ? ? I just upgraded from version 1 to version on Debian Squeeze ? using their backports. ? ? Like I expected my dovecot1 config had to be converted using ? doveconf and this I did. ? ? However, I see problems with files inside directory: ? drwxr-xr-x 4 dovenull root 4096 Feb 25 20:35 ? /var/run/dovecot ? ? All of them were created owned by root:root rw. ? ? I tried to changed, for example : ? chown postfix:dovecot /var/run/dovecot/auth-master ? but noticed when I restarted dovecot it reset the ? permissions back to root:root rw. ? ? Here's the version: ? # dovecot --version ? 2.1.7 ? ? Here's my slightly redacted conf. ? # grep -v ^# dovecot.conf|grep -v ^$ ? auth_mechanisms = plain login ? auth_verbose = yes ? dict { ? ? quotadict = ? mysql:/etc/dovecot/dovecot-dict-quota.conf ? } ? disable_plaintext_auth = no ? first_valid_uid = 106 ? log_timestamp = "%Y-%m-%d %H:%M:%S " ? mail_location = maildir:/var/xx/%d/%u/ ? mail_plugins = quota ? mail_privileged_group = mail ? maildir_very_dirty_syncs = yes ? passdb { ? ? args = /etc/dovecot/dovecot-mysql.conf ? ? driver = sql ? } ? plugin { ? ? quota_rule = *:storage=262144:messages=20000 ? ? quota_rule2 = Trash:storage=282144:messages=23000 ? } ? service auth { ? ? unix_listener /var/spool/postfix/private/auth { ? ? ? group = postfix ? ? ? mode = 0660 ? ? ? user = postfix ? ? } ? ? unix_listener auth-master { ? ? ? mode = 0600 ? ? ? user = vmail ? ? } ? ? user = root ? } ? service imap-login { ? ? chroot = login ? ? inet_listener imap { ? ? ? address = 127.0.0.1 ? ? ? port = 3993 ? ? } ? ? inet_listener imaps { ? ? ? address = * ? ? ? port = 993 ? ? } ? ? process_limit = 256 ? ? process_min_avail = 24 ? ? service_count = 1 ? ? vsz_limit = 48 M ? } ? service pop3-login { ? ? chroot = login ? ? process_limit = 256 ? ? process_min_avail = 24 ? ? service_count = 1 ? ? vsz_limit = 48 M ? } ? ssl = required ? ssl_ca = Message-ID: <1393360872.24748.YahooMailBasic@web162403.mail.bf1.yahoo.com> Downgraded successfully and dovecot 1 works and I shan't use Dovecot 2 because this was too confused to upgrade to. I think lots of you will think "Moron should have read the instructions RTFM" and well you're right but I could not find them :( If anybody's interested for downgrading on Squeeze: apt-get purge dovecot-* ( like dovecot-common and all of her other bits) remove backports lines from sources.lst rm -r /etc/dovecot/* just to be sure. apt-get update apt-get install dovecot-common dovecot-imapd copy your dovecot version 1 confs into /etc/dovecot Done :) -------------------------------------------- On Tue, 25/2/14, Si L wrote: Subject: Re: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot To: dovecot at dovecot.org Date: Tuesday, 25 February, 2014, 17:14 Hi, Looks like I've run out of time and have to roll back from version 2 to version 1 and stick with version 1. I have dpkgs for version 1 and my orginal configuration files and think I'll have to stick with Debian Squeeze and never use Wheezy because that does not carry Dovecot 1. Does any debian dovecot peeps know if this is all the packages I need? dovecot-common_1.2.15-7_amd64.deb dovecot-dbg_1.2.15-7_amd64.deb dovecot-dev_1.2.15-7_amd64.deb dovecot-imapd_1.2.15-7_amd64.deb dovecot-pop3d_1.2.15-7_amd64.deb mysqmail-dovecot-logger_0.4.9-7_amd64.deb -------------------------------------------- On Tue, 25/2/14, Si L wrote: Subject: Re: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot To: dovecot at dovecot.org Date: Tuesday, 25 February, 2014, 17:06 Scratch this because this was set in my dovecot.conf.....? and had not made any difference .... Is the /etc/dovecot/dovecot.conf used anymore, because dovecot is not listening on any ports ! I've looked on the wiki and only Basic Configuration is noted so I don't know if I should use: service imap-login { ? chroot = login ? inet_listener imap { ? ? address = 127.0.0.1 ? ? port = 3993 or some syntax.? Any body? Off topic, Debian does not include the documentation directory with its packages: # cd /usr/share/doc/dovecot/example-config -su: cd: /usr/share/doc/dovecot/example-config: No such file or directory Regards, S -------------------------------------------- On Tue, 25/2/14, Si L wrote: ? Subject: Re: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot ? To: dovecot at dovecot.org ? Date: Tuesday, 25 February, 2014, 16:52 ? ? Hi, ? ? Just noticed ? ? mode = 0666 ? ? should be set for auth-userdb ? ? however I see its not set in my converted dovecot.conf and ? think I should set this in the conf.d/10-master.conf, but I ? don't know which permissions should be secure and if secure ? permissions, then how should postfix interact with this or ? deliver to mail stores that are owned by xxx ? ? ? -------------------------------------------- ? On Tue, 25/2/14, Si L ? wrote: ? ? Subject: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze ? : broken /var/run/dovecot ? To: dovecot at dovecot.org ? Date: Tuesday, 25 February, 2014, 16:44 ? ? Hi, ? ? ? I just upgraded from version 1 to version on Debian ? Squeeze ? using their backports. ? ? Like I expected my dovecot1 config had to be converted ? using ? doveconf and this I did. ? ? However, I see problems with files inside directory: ? drwxr-xr-x 4 dovenull root 4096 Feb 25 20:35 ? /var/run/dovecot ? ? All of them were created owned by root:root rw. ? ? I tried to changed, for example : ? chown postfix:dovecot /var/run/dovecot/auth-master ? but noticed when I restarted dovecot it reset the ? permissions back to root:root rw. ? ? Here's the version: ? # dovecot --version ? 2.1.7 ? ? Here's my slightly redacted conf. ? # grep -v ^# dovecot.conf|grep -v ^$ ? auth_mechanisms = plain login ? auth_verbose = yes ? dict { ? ? quotadict = ? mysql:/etc/dovecot/dovecot-dict-quota.conf ? } ? disable_plaintext_auth = no ? first_valid_uid = 106 ? log_timestamp = "%Y-%m-%d %H:%M:%S " ? mail_location = maildir:/var/xx/%d/%u/ ? mail_plugins = quota ? mail_privileged_group = mail ? maildir_very_dirty_syncs = yes ? passdb { ? ? args = /etc/dovecot/dovecot-mysql.conf ? ? driver = sql ? } ? plugin { ? ? quota_rule = *:storage=262144:messages=20000 ? ? quota_rule2 = Trash:storage=282144:messages=23000 ? } ? service auth { ? ? unix_listener /var/spool/postfix/private/auth { ? ? ? group = postfix ? ? ? mode = 0660 ? ? ? user = postfix ? ? } ? ? unix_listener auth-master { ? ? ? mode = 0600 ? ? ? user = vmail ? ? } ? ? user = root ? } ? service imap-login { ? ? chroot = login ? ? inet_listener imap { ? ? ? address = 127.0.0.1 ? ? ? port = 3993 ? ? } ? ? inet_listener imaps { ? ? ? address = * ? ? ? port = 993 ? ? } ? ? process_limit = 256 ? ? process_min_avail = 24 ? ? service_count = 1 ? ? vsz_limit = 48 M ? } ? service pop3-login { ? ? chroot = login ? ? process_limit = 256 ? ? process_min_avail = 24 ? ? service_count = 1 ? ? vsz_limit = 48 M ? } ? ssl = required ? ssl_ca = References: <530B6014.1050703@filmakademie.de> Message-ID: <530D0B8F.6050106@bluerosetech.com> On 2/24/2014 7:07 AM, G?tz Reinicke - IT Koordinator wrote: > Hi, > > we still run dovecot 1.2.17 and upgrading is not planed for some time. > > But I'm asked to install a sieve system to be used with SOGo soon. > > What do I have to install / configure? > > Is installing/configuring the dovecot-sieve-0.1.19 and > dovecot-managesieve-0.11.13 enough? IIRC you have to recompile Dovecot 1.x with options to pull in the sieve/managesieve features. Your OS should either give you options to enable those features or give you a package that already includes them. After that, there's a few configuration bits to go in dovecot.conf. There is documentation for all of this at wiki1.dovecot.org (note that it's "wiki1", not "wiki"). From dovecot.pkoch at dfgh.net Tue Feb 25 23:33:34 2014 From: dovecot.pkoch at dfgh.net (dovecot.pkoch at dfgh.net) Date: Wed, 26 Feb 2014 00:33:34 +0100 Subject: [Dovecot] AUTH_USER variable has invalid value in checkpassword Script Message-ID: answering my own questions: > This has somehow changed and now AUTH_USER always > contains the username. This has fatal consequences as no > every owner of a valid certificate can logon as any user. I now use auth_ssl_username_from_cert = yes and this temporarily fixes my problem. Now if user A authenticates with his certificate and claims to be user B he will be logged on as user A. With ssl_username_from_cert = no (default) he was logged in as User B. > I'm absolutely sure that the value of the x500UniqueIdentifier > was stored into the AUTH_USER when I tested my setup > last year. If one looks at the source code, in particular routine env_put_auth_vars() in src/auth/db-checkpassword.c and routine auth_request_get_var_expand_table() in src/auth/auth-request.c it is clear, that this has never worked. The environemnt variable AUTH_USER always contais the username (in all Dovecot versions). It dows NOT contain the Dovecot auth_user-variable. Comparing AUTH_USER with the username makes no sense in a checkpassword-script So here's my next question: How do I find out the original username from within a chackpassword script after it has been replaced by the x500UniqueIdentifier value from a client certificate? Why is request->requested_login_user == NULL in env_put_auth_vars(). request->user contains the x500UniqueIdentifier value from the clients certificate so the original username was replaced and therefore should have been moved into request->requested_login_user. Kind regards Peter Koch From jeff.geiger at firespring.com Wed Feb 26 03:22:16 2014 From: jeff.geiger at firespring.com (Jeff Geiger) Date: Tue, 25 Feb 2014 21:22:16 -0600 Subject: [Dovecot] Removing Mount Points Message-ID: Dovecot version 2.1.7 If a dovecot mount point (drive) dies, and the data is restored into the same path that's no longer a mount point (subfolder), dovecot complains about a missing mount point. Is it safe to do a `doveadm mount remove {path}` to fix the error since it's no longer a legit mount point? Example: We were storing indexes on an SSD drive mounted at /mnt/ssd. That drive died. I was able to put everything back into the /mnt/ssd folder (no longer mounted, just a folder). Everything seems to be working as expected. But, when I just went to dsync an account from another server to this one, I got the following error: dsync(sales at foo.com): Error: Couldn't create index dir /mnt/ssd/indexes/6/a/ sales at foo.com/mailboxes: Can't create mailbox root dir /mnt/ssd/indexes/6/a/ sales at foo.com/mailboxes: Mountpoint /mnt/ssd isn't mounted. Mount it or remove it with doveadm mount remove Would doing a `doveadm mount remove /mnt/ssd` fix my issue, or cause some type of catastrophe? Thanks, Jeff Geiger jeff.geiger at firespring.com From skdovecot at smail.inf.fh-brs.de Wed Feb 26 07:02:22 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 26 Feb 2014 08:02:22 +0100 (CET) Subject: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot In-Reply-To: <1393357481.63475.YahooMailBasic@web162402.mail.bf1.yahoo.com> References: <1393357481.63475.YahooMailBasic@web162402.mail.bf1.yahoo.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 25 Feb 2014, Si L wrote: You've checked out http://wiki2.dovecot.org/Upgrading ? > However, I see problems with files inside directory: > drwxr-xr-x 4 dovenull root 4096 Feb 25 20:35 /var/run/dovecot > > Here's the version: > # dovecot --version > 2.1.7 Where is its conf? ;-) > Here's my slightly redacted conf. > # grep -v ^# dovecot.conf|grep -v ^$ if these settings below work for you, locate the "service XYZ" entries in the Dovecot v2 config and replace the values there. The syntax is the same, IMHO. > service auth { > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0660 > user = postfix > } > unix_listener auth-master { > mode = 0600 > user = vmail > } > user = root > } > service imap-login { > chroot = login > inet_listener imap { > address = 127.0.0.1 > port = 3993 > } > inet_listener imaps { > address = * > port = 993 > } > process_limit = 256 > process_min_avail = 24 > service_count = 1 > vsz_limit = 48 M > } > service pop3-login { > chroot = login > process_limit = 256 > process_min_avail = 24 > service_count = 1 > vsz_limit = 48 M > } - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUw2RgXD1/YhP6VMHAQLSLAf/WEcvWfBaJf6krNmxR/oktANGbAfILd1X 216GkKAreG9J00UlWtUndzHJ9fcvOBBO8ch/DUVVWgmpoUF4F/7JXm4gyrw0ZP0X si1LMVzVXZPnX0qcSqUPW3tm40iF4oEUxh8CWVFORjeCtzFXPR2TmSHYCYYgu9YZ VWHG5zsAugM/hGBfmuKtc0614S+0TbFEFe1RjFJUs05A+9tqKbbT2pC0u13UTXgz jkm8mQEkrXiz+lXMwGNKbYtcLs3m4PSj4duAHt5H/eo8/gzOqRB6vZTzQtYDocUO VeaeJ3i3yurD3U6KdVE3dLk5QmihZSg1ukoWYwRX79iGAeVxPX7zmw== =21Jr -----END PGP SIGNATURE----- From sloewent at yahoo.com Wed Feb 26 07:01:51 2014 From: sloewent at yahoo.com (Si L) Date: Tue, 25 Feb 2014 23:01:51 -0800 (PST) Subject: [Dovecot] Auto-response Message-ID: <86397.50543.qm@web162414.mail.bf1.yahoo.com> Dear Sir, Thank-you for your message. I shall not be reading Yahoo Mail for quite some time. You should presume that your message remains unloved and unread. ** If you know who I am (in other words you are not a Bulk Emailer), then you already know how to contact me either on my _normal_ EMail address, or on the telephone. Yours faithfully. From skdovecot at smail.inf.fh-brs.de Wed Feb 26 07:03:57 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 26 Feb 2014 08:03:57 +0100 (CET) Subject: [Dovecot] Removing Mount Points In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 25 Feb 2014, Jeff Geiger wrote: > dsync(sales at foo.com): Error: Couldn't create index dir /mnt/ssd/indexes/6/a/ > sales at foo.com/mailboxes: Can't create mailbox root dir /mnt/ssd/indexes/6/a/ > sales at foo.com/mailboxes: Mountpoint /mnt/ssd isn't mounted. Mount it or > remove it with doveadm mount remove > > Would doing a `doveadm mount remove /mnt/ssd` fix my issue, or cause some > type of catastrophe? ;-) http://wiki2.dovecot.org/Tools/Doveadm/Mount - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUw2R3XD1/YhP6VMHAQLoRQf+LBey9f2o1+MLRSgJB+Sptp0aC746kAz6 8cddo6qfNGMogQ7ilfflqCpm1YA/iD29d+8/TL10616cDKZ0Tb1a4M+w8pNnImUa ViUSBlf59QA6k9b7dshB6f191NPmFT5/lHusDZJywDcS1kal+D/lIsOPToy+Hfon zkEslqh3Gksjj60yYrBbOBw0a2lesy7eSYunBcabTfumwFHJofWSlWuvQdxfBXKW IMQ4yzKL1bv+UgfnJpfo6qzReV++sKS9IehGEygqEU7gCE/jhRZyZIICfXRqQAnC 0jrboJwtfDdY7BX7LrjhaFYtQNCgNF3VqTPnHbyH+eT2KhlLkgMMMA== =xo3d -----END PGP SIGNATURE----- From goetz.reinicke at filmakademie.de Wed Feb 26 07:50:18 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Wed, 26 Feb 2014 08:50:18 +0100 Subject: [Dovecot] Upgrading from 1.2.x -> 2.2.x in one step possible Message-ID: <530D9CBA.6080801@filmakademie.de> Hi, after some off-ML discussions to and some reconsiderations, we might do the "big jump" from our current 1.2.17 to the atrpms 2.2. From googling and reading the dovecot upgrade wiki I don't see any (big) pitfalls. Basically we use the default config options, mbox, pop3s/imaps on RH EL 5. So "just" run the upgrade-config script, fingers crossed and thats it? Ii it possible to do such a big step form 1.2 to 2.2? Thanks for comments and suggestions . G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From mailinglists at easy-mail.it Wed Feb 26 08:59:25 2014 From: mailinglists at easy-mail.it (Francesco) Date: Wed, 26 Feb 2014 09:59:25 +0100 Subject: [Dovecot] 2 users database on same LDAP with different mail location In-Reply-To: <20140225123926.GA31640@clntbx.grootstyr.eu> References: <1393324953.3425.17.camel@secoges-laptop> <20140225122937.GA31603@clntbx.grootstyr.eu> <20140225123926.GA31640@clntbx.grootstyr.eu> Message-ID: <1393405165.3412.4.camel@secoges-laptop> Il giorno mar, 25/02/2014 alle 13.39 +0100, list at grootstyr.eu ha scritto: > On Tue, Feb 25, 2014 at 01:29:37PM +0100, list at grootstyr.eu wrote: > > On Tue, Feb 25, 2014 at 11:42:33AM +0100, Francesco wrote: > > > Hello, > > > i know i know, i'm getting annoying but appearently i always come up > > > with weird ideas and i cant seem to accomplish such a task. > > > > > > the scenario is that i have an LDAP server with a bunch of users. > > > some of them are in a specific OU, and i'd like to define for all these > > > users belonging to this OU an alternative mail location/storage. > > > > > > in details for all the users i'd like to use maildir storage in a > > > directory, while for the users belonging to a specific OU i'd like to > > > use dbox with an alternative storage attached. > > > > > > so i created 2 userdb like this: > > > > > > userdb { > > > driver = ldap > > > args = /etc/dovecot/dovecot-ldap-maildir.conf.ext > > > } > > > > > > userdb { > > > driver = ldap > > > args = /etc/dovecot/dovecot-ldap-dbox.conf.ext > > > } > > > > > > and then defined these 2 args files: > > > maildir: > > > > > > hosts = localhost > > > dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local > > > dnpass = > > > auth_bind = yes > > > ldap_version = 3 > > > base = DC=plutone,DC=local > > > user_attrs = sAMAccountName=home=/var/vmail/%$ > > > > > > dbox: > > > > > > hosts = localhost > > > dn = CN=ldapadmin,OU=administrators,DC=plutone,DC=local > > > dnpass = > > > auth_bind = yes > > > ldap_version = 3 > > > base = OU=dboxusers,OU=lowpriority,DC=plutone,DC=local > > > user_attrs = sAMAccountName=home=/var/local_dbox/%$, > > > =mail=dbox:/var/local_dbox/%$:ALT=/var/iscsi_dbox/%$ > > > user_filter = (&(ObjectClass=person)(mail=%u)) > > > > > > > > > yet it doesn't matter how hard i try if i send an email to a user > > > belonging to the dboxusers OU i still have the user to be addressed to > > > the maildir storage in /var/vmail > > > > > > am i missing something? > > > > > > Thanks > > > Francesco > > > > You can use LDAP to search for an alternative mail attribute, and specify a default location using > > mail_location. In your example; mail_location = /var/vmail/%u. Then use one LDAP config file to override the > > mailbox location if the LDAP database specifies a maildir location. > > > > By the way, aren't userdb's searched sequentially? Try switching those userdb's to make the one with the group > > lookup go first. LDAP users will always match the userdb without group lookup. > > > > Matthijs > > An addition to my own comment, put the group lookup userdb first, and add skip = found to the second userdb. > This way it will search the group userdb first and if it found the user, so when it is in the group, don't > search the second userdb and use the answer from the first userdb. > > Matthijs Hello, as you suggested i tried swapping the two userdb to have the one with the more specific OU to be checked first, but this didn't do the trick appearently. so i tried adding skip = found in the userdb like this: userdb { driver = ldap args = /etc/dovecot/dovecot-ldap.conf.ext skip = found } but dovecot doesn't start up saying: doveconf: Fatal: Error in configuration file /etc/dovecot/conf.d/auth-ldap.conf.ext line 27: Unknown setting: skip # dovecot --version 2.0.19 Francesco From d.parthey at metaways.de Wed Feb 26 09:21:16 2014 From: d.parthey at metaways.de (Daniel Parthey) Date: Wed, 26 Feb 2014 10:21:16 +0100 Subject: [Dovecot] Upgrading from 1.2.x -> 2.2.x in one step possible In-Reply-To: <530D9CBA.6080801@filmakademie.de> References: <530D9CBA.6080801@filmakademie.de> Message-ID: <530DB20C.70704@metaways.de> Hello G?tz, Am 26.02.2014 08:50, schrieb G?tz Reinicke - IT Koordinator: > after some off-ML discussions to and some reconsiderations, we might do > the "big jump" from our current 1.2.17 to the atrpms 2.2. > > From googling and reading the dovecot upgrade wiki I don't see any (big) > pitfalls. > > Basically we use the default config options, mbox, pop3s/imaps on RH EL 5. > > So "just" run the upgrade-config script, fingers crossed and thats it? > > Is it possible to do such a big step form 1.2 to 2.2? You should at least have read these wiki articles: http://wiki2.dovecot.org/Upgrading/2.0 http://wiki2.dovecot.org/Upgrading/2.1 http://wiki2.dovecot.org/Upgrading/2.2 According to http://wiki2.dovecot.org/Upgrading/2.2 Downgrading can be done fully safely to v2.1.16, not to versions before, because of attribute and cache file changes. So it is probably better to do the upgrade step-by-step, from stable to stable version, or have a good backup. Regards Daniel From skdovecot at smail.inf.fh-brs.de Wed Feb 26 09:32:55 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 26 Feb 2014 10:32:55 +0100 (CET) Subject: [Dovecot] Upgrading from 1.2.x -> 2.2.x in one step possible In-Reply-To: <530D9CBA.6080801@filmakademie.de> References: <530D9CBA.6080801@filmakademie.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 26 Feb 2014, G?tz Reinicke - IT Koordinator wrote: > after some off-ML discussions to and some reconsiderations, we might do > the "big jump" from our current 1.2.17 to the atrpms 2.2. > > From googling and reading the dovecot upgrade wiki I don't see any (big) > pitfalls. > > Basically we use the default config options, mbox, pop3s/imaps on RH EL 5. > > So "just" run the upgrade-config script, fingers crossed and thats it? > > Ii it possible to do such a big step form 1.2 to 2.2? Yes, but you should verify the generated config and make some tests. IMHO, you should create the config from scratch with help from the upgraded one. Esp. because "Basically we use the default config options" should not pose too much effort. Do you know, still, what you've changed in the v1.2 config? Then re-do those changes in v2.2 and verify each step, that the particular setting is unchanged. Expect some mailbox errors the first time, telling you that some files are broken and needed to re-create. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUw20yHD1/YhP6VMHAQIU9QgAgtUAgyOrQvohYj2bmUJNtuVX45kA5GR5 a8+8+WS1cV+UT4ihhlDFAWsAYzYvPL7X6qrcbhVt76myzfesOHxYPC2LfxmBkMVg BJBxb3mRe+XNHZQPzrdxwAY2gvjvCr3q/X9ez35wKMFgAUnuVja8m2NOZgs8sWce ZuaETllU9QcGt5rfP+m/5YEZPSFA4jrLt8BCqa7Q0pJTZBlwUMXRm782Psfh0+84 34dxz2FhiA3cJlbRFQYKEI1kkMGcRtm9Lu3UBUrGu9mMyTVxLx9hJkr9M40aHFdh V+3WRGYZm5evLEtMnBxeH9XxOFEu7Bo5xiJaC9C5TX5LWITuAlJfXg== =R3m6 -----END PGP SIGNATURE----- From CMarcus at Media-Brokers.com Wed Feb 26 13:29:15 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 26 Feb 2014 08:29:15 -0500 Subject: [Dovecot] Dovecot upgrade 1 to 2 on Debian Squeeze : broken /var/run/dovecot In-Reply-To: <1393357481.63475.YahooMailBasic@web162402.mail.bf1.yahoo.com> References: <1393357481.63475.YahooMailBasic@web162402.mail.bf1.yahoo.com> Message-ID: <530DEC2B.1020804@Media-Brokers.com> On 2/25/2014 2:44 PM, Si L wrote: > Here's my slightly redacted conf. > # grep -v ^# dovecot.conf|grep -v ^$ Don't do that. Please post output of doveconf -n... -- Best regards, Charles From CMarcus at Media-Brokers.com Wed Feb 26 13:33:48 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 26 Feb 2014 08:33:48 -0500 Subject: [Dovecot] 2 users database on same LDAP with different mail location In-Reply-To: <1393405165.3412.4.camel@secoges-laptop> References: <1393324953.3425.17.camel@secoges-laptop> <20140225122937.GA31603@clntbx.grootstyr.eu> <20140225123926.GA31640@clntbx.grootstyr.eu> <1393405165.3412.4.camel@secoges-laptop> Message-ID: <530DED3C.2070207@Media-Brokers.com> On 2/26/2014 3:59 AM, Francesco wrote: > so i tried adding > skip = found > in the userdb like this: > > > userdb { > driver = ldap > args = /etc/dovecot/dovecot-ldap.conf.ext > skip = found > } > > but dovecot doesn't start up saying: > doveconf: Fatal: Error in configuration > file /etc/dovecot/conf.d/auth-ldap.conf.ext line 27: Unknown setting: > skip > > # dovecot --version > 2.0.19 Per tfm, the skip argument was added in 2.2.10... http://wiki2.dovecot.org/UserDatabase -- Best regards, Charles From jeff.geiger at firespring.com Wed Feb 26 14:29:25 2014 From: jeff.geiger at firespring.com (Jeff Geiger) Date: Wed, 26 Feb 2014 08:29:25 -0600 Subject: [Dovecot] Removing Mount Points In-Reply-To: <530d91b8.03cb0e0a.24ea.0d82SMTPIN_ADDED_BROKEN@mx.google.com> References: <530d91b8.03cb0e0a.24ea.0d82SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: That's exactly where I pulled that information from. Are you saying that my assumption is correct and I can run that without ending the world as I know it? :) Thanks! Jeff Geiger jeff.geiger at firespring.com On Wed, Feb 26, 2014 at 1:03 AM, Steffen Kaiser < skdovecot at smail.inf.fh-brs.de> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > On Tue, 25 Feb 2014, Jeff Geiger wrote: > > dsync(sales at foo.com): Error: Couldn't create index dir >> /mnt/ssd/indexes/6/a/ >> sales at foo.com/mailboxes: Can't create mailbox root dir >> /mnt/ssd/indexes/6/a/ >> sales at foo.com/mailboxes: Mountpoint /mnt/ssd isn't mounted. Mount it or >> remove it with doveadm mount remove >> >> Would doing a `doveadm mount remove /mnt/ssd` fix my issue, or cause some >> type of catastrophe? >> > > ;-) http://wiki2.dovecot.org/Tools/Doveadm/Mount > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUw2R3XD1/YhP6VMHAQLoRQf+LBey9f2o1+MLRSgJB+Sptp0aC746kAz6 > 8cddo6qfNGMogQ7ilfflqCpm1YA/iD29d+8/TL10616cDKZ0Tb1a4M+w8pNnImUa > ViUSBlf59QA6k9b7dshB6f191NPmFT5/lHusDZJywDcS1kal+D/lIsOPToy+Hfon > zkEslqh3Gksjj60yYrBbOBw0a2lesy7eSYunBcabTfumwFHJofWSlWuvQdxfBXKW > IMQ4yzKL1bv+UgfnJpfo6qzReV++sKS9IehGEygqEU7gCE/jhRZyZIICfXRqQAnC > 0jrboJwtfDdY7BX7LrjhaFYtQNCgNF3VqTPnHbyH+eT2KhlLkgMMMA== > =xo3d > -----END PGP SIGNATURE----- > From h.reindl at thelounge.net Wed Feb 26 14:37:52 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 26 Feb 2014 15:37:52 +0100 Subject: [Dovecot] Removing Mount Points In-Reply-To: References: <530d91b8.03cb0e0a.24ea.0d82SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: <530DFC40.7090408@thelounge.net> Am 26.02.2014 15:29, schrieb Jeff Geiger: > That's exactly where I pulled that information from. Are you saying that > my assumption is correct and I can run that without ending the world as I > know it? :) surely, the whole thing about warn if a previous mountpoint does no longer exist is a completly broken idea, mounpoints are meaningless on the application layer > On Wed, Feb 26, 2014 at 1:03 AM, Steffen Kaiser < > skdovecot at smail.inf.fh-brs.de> wrote: > >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> >> On Tue, 25 Feb 2014, Jeff Geiger wrote: >> >> dsync(sales at foo.com): Error: Couldn't create index dir >>> /mnt/ssd/indexes/6/a/ >>> sales at foo.com/mailboxes: Can't create mailbox root dir >>> /mnt/ssd/indexes/6/a/ >>> sales at foo.com/mailboxes: Mountpoint /mnt/ssd isn't mounted. Mount it or >>> remove it with doveadm mount remove >>> >>> Would doing a `doveadm mount remove /mnt/ssd` fix my issue, or cause some >>> type of catastrophe? >>> >> >> ;-) http://wiki2.dovecot.org/Tools/Doveadm/Mount -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From mtrainer at westnet.com.au Thu Feb 27 04:06:23 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Thu, 27 Feb 2014 12:06:23 +0800 Subject: [Dovecot] dsync mirror to mailstores in director setup Message-ID: Hi All, I have dsync mirror command working between a standalone dovecot server and a backend mailstore in a Dovecot Director setup.?? Is it safe to do the dsync directly to the backend mailstore in this setup? It doesn't seem to work via the director proxy. Thanks Murray From goetz.reinicke at filmakademie.de Thu Feb 27 08:11:18 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Thu, 27 Feb 2014 09:11:18 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 Message-ID: <530EF326.9000504@filmakademie.de> Hi, I did the upgrade frpom 1.2.x to 2.2.10 and had some warnings/errors on a very few accounts/mailboxes. All of them where permission related and solved. Dovecot rocks again. But on one mailbox I do get an error: Error: user rechnnugseingang-animationsinstitut: Initialization failed: Initializing mail storage from mail_location setting failed Error: Invalid user settings. Refer to server log for more information. There is a homedirectory and the permissions are set like on all other accounts. The username is quite long (35 characters) but an other one with 34 is working fine. And before the upgrade there was no error. Thnaks for any help or hint. Regards . G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From jtam.home at gmail.com Thu Feb 27 08:31:44 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Thu, 27 Feb 2014 00:31:44 -0800 (PST) Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: References: Message-ID: G?tz Reinicke - IT Koordinator wrote: > But on one mailbox I do get an error: > > Error: user rechnnugseingang-animationsinstitut: Initialization failed: > Initializing mail storage from mail_location setting failed > > Error: Invalid user settings. Refer to server log for more information. And the server logs says ...? Maybe the '-' is not one of the allowed characters (is there a missing 'e' at the end?) Joseph Tam From goetz.reinicke at filmakademie.de Thu Feb 27 08:40:28 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-1?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Thu, 27 Feb 2014 09:40:28 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: References: Message-ID: <530EF9FC.8030407@filmakademie.de> Am 27.02.14 09:31, schrieb Joseph Tam: > G?tz Reinicke - IT Koordinator wrote: > >> But on one mailbox I do get an error: >> >> Error: user rechnnugseingang-animationsinstitut: Initialization failed: >> Initializing mail storage from mail_location setting failed >> >> Error: Invalid user settings. Refer to server log for more information. > > And the server logs says ...? Maybe the '-' is not one of the allowed > characters (is there a missing 'e' at the end?) Oops missed something may be, but I dont see anything in the dovecot.log or syslogs. The '-' is allowed as we do have other accounts with that character and there is no typo. May be i can increase the logging level ... /G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From skdovecot at smail.inf.fh-brs.de Thu Feb 27 08:41:29 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 27 Feb 2014 09:41:29 +0100 (CET) Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: <530EF326.9000504@filmakademie.de> References: <530EF326.9000504@filmakademie.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 27 Feb 2014, G?tz Reinicke - IT Koordinator wrote: > But on one mailbox I do get an error: > > Error: user rechnnugseingang-animationsinstitut: Initialization failed: > Initializing mail storage from mail_location setting failed > > Error: Invalid user settings. Refer to server log for more information. Is above error the only error in the log? > There is a homedirectory and the permissions are set like on all other > accounts. > > The username is quite long (35 characters) but an other one with 34 is > working fine. I do not have such long names ... I suggest to turn on mail_debug, then you see all paths a.s.o. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUw76OXD1/YhP6VMHAQKAHggApKCLQNsJudvrU3Y+YliFeqX6BgCXLfZU nQZ3ctdR+JZcOtbF+W1+Cxdq74gGtluFL0wFnkWiiQ7b77pJ8D8QaIFmA8U8We1I rci/3ia2+7lklYaOnI59kF/jW7gP+It1x/pM+plP4h/OTaiGygpfByUu2Lb23Lo/ BnPBQxtdDnPzfBMtkan7vWoVD1Y9GTjJecpoEY7R9/CexxSan9Ug0otu6sI1KCGC 5uCrj+fRYDUeTHTvKa5Q1YBY/O8Dx8/WrBXWAc4vZhnCPP57w8o0jXuihpghTzNN 66UvIqRLRK54j4DB1fV1RW4XWV99kAaKwv6SukJfwJLvh02OsfeC7w== =Dzhn -----END PGP SIGNATURE----- From goetz.reinicke at filmakademie.de Thu Feb 27 08:48:30 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Thu, 27 Feb 2014 09:48:30 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: References: <530EF326.9000504@filmakademie.de> Message-ID: <530EFBDE.9020805@filmakademie.de> Am 27.02.14 09:41, schrieb Steffen Kaiser: > On Thu, 27 Feb 2014, G?tz Reinicke - IT Koordinator wrote: > >> But on one mailbox I do get an error: > >> Error: user rechnnugseingang-animationsinstitut: Initialization failed: >> Initializing mail storage from mail_location setting failed > >> Error: Invalid user settings. Refer to server log for more information. > > Is above error the only error in the log? Yes, thats the only log for about 8 hours +- now. >> There is a homedirectory and the permissions are set like on all other >> accounts. > >> The username is quite long (35 characters) but an other one with 34 is >> working fine. > > I do not have such long names ... > > I suggest to turn on mail_debug, then you see all paths a.s.o. Switched it on, but there are no more error messages. /G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From js at on2it.net Thu Feb 27 11:38:14 2014 From: js at on2it.net (Jeroen Scheerder) Date: Thu, 27 Feb 2014 12:38:14 +0100 Subject: [Dovecot] Dovecot2 vs. AD, "Inactivity during authentication" Message-ID: <4B4234F3-C776-48F3-8425-D8BED6ACCDD7@on2it.net> Hi, I'm trying to setup Dovecot2 for o IMAP client access o LDA for postfix mail delivery (with SIEVE) ... on a FreeBSD host. The FreeBSD server has no users (by intention), so I've set up a virtual mail domain, using LDAP lookups in Postfix. So far so good. Mail delivers into the proper mailbox. But I'm stuck getting Dovecot to authenticate. User- and passwd DB's are set up for LDAP lookups to AD, using an authenticated bind (the AD server offers no anonymous binds, yet). I've enabled all the debugging I can find, but my logs have little information to offer. Any help in getting me a step further would be much appreciated. In particular, I'd like to learn how do diagnose these userdb/passdb issues properly. Here's what I see in the logs: Feb 27 12:25:49 ponyboy dovecot: imap-login: Disconnected: Inactivity during authentication (disconnected while authenticating, waited 172 secs): user=<>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured, session= Feb 27 12:26:42 ponyboy dovecot: auth: Error: PLAIN(js,127.0.0.1,): Request 74099.1 timed out after 225 secs, state=1 This logging is related to the folloging IMAP session: ponyboy% telnet localhost 143 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN] Dovecot ready. a login js suppressed * OK Waiting for authentication process to respond.. * BYE Disconnected for inactivity during authentication. Connection closed by foreign host. Here's my config: $ dovecot -n # 2.2.10: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 10.0-RELEASE amd64 ufs auth_debug = yes auth_mechanisms = plain login auth_username_format = %Ln auth_verbose = yes first_valid_gid = 1000 first_valid_uid = 1000 imap_client_workarounds = delay-newmail last_valid_gid = 1000 last_valid_uid = 1000 mail_gid = 1000 mail_location = maildir:/var/mail/on2it/%Ln mail_uid = 1000 maildir_very_dirty_syncs = yes namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /usr/local/etc/dovecot/on2it-ldap-users.cfg driver = ldap } protocols = imap service auth-worker { user = root } service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 } unix_listener auth-userdb { group = postfix mode = 0666 user = postfix } } service imap-login { inet_listener imap { port = 143 } } shutdown_clients = no ssl = no userdb { args = /usr/local/etc/dovecot/on2it-ldap-users-userdb.cfg driver = ldap } valid_chroot_dirs = /var/mail/on2it $ cat /usr/local/etc/dovecot/on2it-ldap-users.cfg hosts = dc2.office.on2it.net ldap_version = 3 base = dc=office,dc=on2it,dc=net scope=subtree auth_bind = yes dn = [suppressed] dnpass = [suppressed] pass_attrs = sAMAccountName=user user_attrs = \ =home=/var/mail/on2it/%{ldap:sAMAccountName}, \ =mail=maildir:/var/mail/on2it/%{ldap:sAMAccountName} user_filter = (&(ObjectClass=person)(sAMAccountName=%u)) pass_filter = (&(ObjectClass=person)(sAMAccountName=%u)) iterate_attrs = sAMAccountName=user iterate_filter = (objectClass=person) $ ls -l /usr/local/etc/dovecot/on2it-ldap-users-userdb.cfg lrwxr-xr-x 1 root wheel 20 Feb 27 12:07 /usr/local/etc/dovecot/on2it-ldap-users-userdb.cfg -> on2it-ldap-users.cfg -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 881 bytes Desc: OpenPGP digital signature URL: From js at on2it.net Thu Feb 27 11:58:41 2014 From: js at on2it.net (Jeroen Scheerder) Date: Thu, 27 Feb 2014 12:58:41 +0100 Subject: [Dovecot] Dovecot2 vs. AD, "Inactivity during authentication" In-Reply-To: <4B4234F3-C776-48F3-8425-D8BED6ACCDD7@on2it.net> References: <4B4234F3-C776-48F3-8425-D8BED6ACCDD7@on2it.net> Message-ID: Quoth Jeroen Scheerder (27 Feb 2014, 12:38): > Here's what I see in the logs: > > Feb 27 12:25:49 ponyboy dovecot: imap-login: Disconnected: Inactivity during authentication (disconnected while authenticating, waited 172 secs): user=<>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured, session= > Feb 27 12:26:42 ponyboy dovecot: auth: Error: PLAIN(js,127.0.0.1,): Request 74099.1 timed out after 225 secs, state=1 Logging to file instead of syslog, I see a bit more: Feb 27 12:45:27 auth: Debug: Loading modules from directory: /usr/local/lib/dovecot/auth Feb 27 12:45:27 auth: Debug: Wrote new auth token secret to /var/run/dovecot/auth-token-secret.dat Feb 27 12:45:27 auth: Debug: auth client connected (pid=74241) Feb 27 12:45:31 auth: Debug: client in: AUTH 1 PLAIN service=imap secured session=9QHH22HzYgB/AAAB lip=127.0.0.1 rip=127.0.0.1 lport=143 rport=64354 resp= Feb 27 12:45:31 auth: Debug: ldap(js,127.0.0.1,<9QHH22HzYgB/AAAB>): bind search: base=dc=office,dc=on2it,dc=net filter=(&(ObjectClass=person)(sAMAccountName=js)) Feb 27 12:48:27 imap-login: Info: Disconnected: Inactivity during authentication (disconnected while authenticating, waited 176 secs): user=<>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured, session=<9QHH22HzYgB/AAAB> Feb 27 12:49:16 auth: Debug: ldap(js,127.0.0.1,<9QHH22HzYgB/AAAB>): result: sAMAccountName=js; sAMAccountName unused Feb 27 12:49:16 auth: Debug: ldap(js,127.0.0.1,<9QHH22HzYgB/AAAB>): result: sAMAccountName=js Feb 27 12:49:16 auth: Error: PLAIN(js,127.0.0.1,<9QHH22HzYgB/AAAB>): Request 74241.1 timed out after 225 secs, state=1 Feb 27 12:49:16 auth: Debug: client in: CANCEL 1 Feb 27 12:49:18 auth: Debug: client passdb out: FAIL 1 user=js temp Using ldapsearch on this very host, I have verified that this particular ldap query, with the same authenticated bind, actually works: ponyboy% time ldapsearch -o ldif-wrap=no -x -LLL -E pr=200/noprompt -w suppressed \ -H ldap://dc2.office.on2it.net -b dc=office,dc=on2it,dc=net -D suppressed -s sub \ '(&(ObjectClass=person)(sAMAccountName=js))' sAMAccountName dn: CN=Jeroen Scheerder,OU=Users,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net sAMAccountName: js # refldap://DomainDnsZones.office.on2it.net/DC=DomainDnsZones,DC=office,DC=on2it,DC=net # refldap://ForestDnsZones.office.on2it.net/DC=ForestDnsZones,DC=office,DC=on2it,DC=net # refldap://office.on2it.net/CN=Configuration,DC=office,DC=on2it,DC=net # pagedresults: cookie= ldapsearch -o ldif-wrap=no -x -LLL -E pr=200/noprompt -w [...] -H 0.00s user 0.00s system 19% cpu 0.019 total -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 881 bytes Desc: OpenPGP digital signature URL: From CMarcus at Media-Brokers.com Thu Feb 27 12:27:49 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 27 Feb 2014 07:27:49 -0500 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: <530EFBDE.9020805@filmakademie.de> References: <530EF326.9000504@filmakademie.de> <530EFBDE.9020805@filmakademie.de> Message-ID: <530F2F45.3080009@Media-Brokers.com> On 2/27/2014 3:48 AM, G?tz Reinicke - IT Koordinator wrote: > Am 27.02.14 09:41, schrieb Steffen Kaiser: >> On Thu, 27 Feb 2014, G?tz Reinicke - IT Koordinator wrote: >>> But on one mailbox I do get an error: >>> Error: user rechnnugseingang-animationsinstitut: Initialization failed: >>> Initializing mail storage from mail_location setting failed >>> Error: Invalid user settings. Refer to server log for more information. >> Is above error the only error in the log? > Yes, thats the only log for about 8 hours +- now. >>> There is a homedirectory and the permissions are set like on all other >>> accounts. >>> The username is quite long (35 characters) but an other one with 34 is >>> working fine. >> I do not have such long names ... >> >> I suggest to turn on mail_debug, then you see all paths a.s.o. > Switched it on, but there are no more error messages. doveconf -n output? (should have provided that in the first email) From juancarlos.sanchez at upm.es Thu Feb 27 13:12:19 2014 From: juancarlos.sanchez at upm.es (Juan Carlos Sanchez) Date: Thu, 27 Feb 2014 14:12:19 +0100 Subject: [Dovecot] maildir quota divergence Message-ID: <530F39B3.6090806@upm.es> Hello; We are using maildir quotas and have found differences in many users in respect to what system command are showing and doveadm quotas. For example, four user test, we have: doveadm quota get -u test Quota name Type Value Limit % STORAGE 98066 102400 95 MESSAGE 883 - 0 But if we check user mail_location with "du" system command we get he is using 70458 Kb. We are running dovecot 2.1.17 ?any clue? Thanks in advance. From juancarlos.sanchez at upm.es Thu Feb 27 13:27:15 2014 From: juancarlos.sanchez at upm.es (Juan Carlos Sanchez) Date: Thu, 27 Feb 2014 14:27:15 +0100 Subject: [Dovecot] maildir quota divergence In-Reply-To: <530F39B3.6090806@upm.es> References: <530F39B3.6090806@upm.es> Message-ID: <530F3D33.6050904@upm.es> An addition. It might be related to a recent upgrade from 2.0 branch to 2.1.17 Thanks in advance. El 27/02/2014 14:12, Juan Carlos Sanchez escribi?: > Hello; > > We are using maildir quotas and have found differences in many users > in respect to what system command are showing and doveadm quotas. > > For example, four user test, we have: > > doveadm quota get -u test > Quota name Type Value > Limit % > STORAGE 98066 > 102400 95 > MESSAGE 883 > - 0 > > But if we check user mail_location with "du" system command we get he > is using 70458 Kb. > > We are running dovecot 2.1.17 > > ?any clue? > > Thanks in advance. > -- ------------------------------------------------------ Juan Carlos Sanchez Hernandez Responsable de Seguridad y Correo Electronico Servicio de Planificacion Informatica y Comunicaciones Universidad Politecnica de Madrid Rectorado Avda. Ramiro de Maeztu 7 28040 Madrid ------------------------------------------------------ From Jost.Krieger+dovecot at rub.de Thu Feb 27 13:30:19 2014 From: Jost.Krieger+dovecot at rub.de (Jost Krieger) Date: Thu, 27 Feb 2014 14:30:19 +0100 Subject: [Dovecot] maildir quota divergence In-Reply-To: <530F39B3.6090806@upm.es> References: <530F39B3.6090806@upm.es> Message-ID: <20140227133019.GH3882@ruhr-uni-bochum.de> On Thu Feb 27 14:12:19 2014, Juan Carlos Sanchez wrote: > We are using maildir quotas and have found differences in many users > in respect to what system command are showing and doveadm quotas. > > For example, four user test, we have: > > doveadm quota get -u test > Quota name Type Value Limit > % > STORAGE 98066 102400 > 95 > MESSAGE 883 - > 0 > > But if we check user mail_location with "du" system command we get > he is using 70458 Kb. > > We are running dovecot 2.1.17 > > ?any clue? Please show us your doveconf -n. There are a lot of possibilities, it can even be correct (if you use dbox and the user makes lots of copies of his mails). Yours Jost Krieger -- | Jost.Krieger+sig at ruhr-uni-bochum.de Please help stamp out spam! | | Postmaster, JAPH, resident answer machine at RUB Comp. Center | | Sincere words are not sweet, sweet words are not sincere. | | Lao Tse, Tao Te King 81 | From traiano at gmail.com Thu Feb 27 13:47:31 2014 From: traiano at gmail.com (Traiano Welcome) Date: Thu, 27 Feb 2014 15:47:31 +0200 Subject: [Dovecot] Dovecot Migration: Retrieving/Logging POP/IMAP Passwords in Plaintext Message-ID: Hi List I'm currently in the process of migrating my dovecot imap/pop users to a new server and have to extract their passwords in order to import them into the new system (different password encryption schemes). I've tried enabling auth_* debug parameters in my dovecot.conf in the hope that this would result in logging plaintext passwords to the dovecot log. However dovecot does not log the passwords in plaintext under any debugging configuration. My question: Is there any other configuration of dovecot that would allow me to capture POP/IMAP passwords at a successful login time? Dovecot version: 1.0.7 (from dovecot-1.0.7-7.el5_7.1 rpm) The output of dovecot -n is: --- # 1.0.7: /etc/dovecot.conf info_log_path: /var/log/dovecot.debug verbose_ssl: yes login_dir: /var/run/dovecot/login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login mail_location: mbox:~:INBOX=~/Mailbox mail_debug: yes mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_plugin_dir(default): /usr/lib64/dovecot/imap mail_plugin_dir(imap): /usr/lib64/dovecot/imap mail_plugin_dir(pop3): /usr/lib64/dovecot/pop3 auth default: mechanisms: plain login verbose: yes debug: yes debug_passwords: yes passdb: driver: pam userdb: driver: passwd socket: type: listen client: path: /var/run/dovecot/auth-client mode: 438 --- My dovecot.conf is as follows: ------ info_log_path = /var/log/dovecot.debug verbose_ssl = yes mail_location = mbox:~:INBOX=~/Mailbox mail_debug = yes protocol imap { } protocol pop3 { } protocol lda { postmaster_address = postmaster at example.com } auth_verbose = yes auth_debug = yes auth_debug_passwords = yes auth default { mechanisms = plain login passdb pam { } userdb passwd { } user = root socket listen { client { path = /var/run/dovecot/auth-client mode = 0666 } } } dict { } plugin { } --- Many thanks in advance! Traiano From CMarcus at Media-Brokers.com Thu Feb 27 14:06:03 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 27 Feb 2014 09:06:03 -0500 Subject: [Dovecot] Dovecot Migration: Retrieving/Logging POP/IMAP Passwords in Plaintext In-Reply-To: References: Message-ID: <530F464B.3090103@Media-Brokers.com> On 2/27/2014 8:47 AM, Traiano Welcome wrote: > Dovecot version: 1.0.7 (from dovecot-1.0.7-7.el5_7.1 rpm) No other response is possible except: UPGRADE. 1.x has been unsupported forfar too long for anyone to waste time on it. Best regards, Charles From traiano at gmail.com Thu Feb 27 14:20:43 2014 From: traiano at gmail.com (Traiano Welcome) Date: Thu, 27 Feb 2014 16:20:43 +0200 Subject: [Dovecot] Dovecot Migration: Retrieving/Logging POP/IMAP Passwords in Plaintext In-Reply-To: <530F464B.3090103@Media-Brokers.com> References: <530F464B.3090103@Media-Brokers.com> Message-ID: Hi Charles Thanks for your response: On Thu, Feb 27, 2014 at 4:06 PM, Charles Marcus wrote: > On 2/27/2014 8:47 AM, Traiano Welcome wrote: > >> Dovecot version: 1.0.7 (from dovecot-1.0.7-7.el5_7.1 rpm) >> > > No other response is possible except: > > UPGRADE. > > 1.x has been unsupported forfar too long for anyone to waste time on it. > > I agree. Once upgraded to a reasonably recent version, though, what configuration would I use to log plaintext passwords, then ? > Best regards, > > Charles > From CMarcus at Media-Brokers.com Thu Feb 27 14:32:12 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 27 Feb 2014 09:32:12 -0500 Subject: [Dovecot] Dovecot Migration: Retrieving/Logging POP/IMAP Passwords in Plaintext In-Reply-To: References: <530F464B.3090103@Media-Brokers.com> Message-ID: <530F4C6C.6080305@Media-Brokers.com> On 2/27/2014 9:20 AM, Traiano Welcome wrote: > I agree. Once upgraded to a reasonably recent version, though, what > configuration would I use to log plaintext passwords, then ? http://wiki2.dovecot.org/Logging Scroll down to the bottom... -- Best regards, Charles From goetz.reinicke at filmakademie.de Thu Feb 27 15:06:01 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Thu, 27 Feb 2014 16:06:01 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: <530F2F45.3080009@Media-Brokers.com> References: <530EF326.9000504@filmakademie.de> <530EFBDE.9020805@filmakademie.de> <530F2F45.3080009@Media-Brokers.com> Message-ID: <530F5459.5050901@filmakademie.de> Am 27.02.14 13:27, schrieb Charles Marcus: > On 2/27/2014 3:48 AM, G?tz Reinicke - IT Koordinator > wrote: >> Am 27.02.14 09:41, schrieb Steffen Kaiser: >>> On Thu, 27 Feb 2014, G?tz Reinicke - IT Koordinator wrote: >>>> But on one mailbox I do get an error: >>>> Error: user rechnnugseingang-animationsinstitut: Initialization failed: >>>> Initializing mail storage from mail_location setting failed >>>> Error: Invalid user settings. Refer to server log for more information. >>> Is above error the only error in the log? > >> Yes, thats the only log for about 8 hours +- now. > >>>> There is a homedirectory and the permissions are set like on all other >>>> accounts. >>>> The username is quite long (35 characters) but an other one with 34 is >>>> working fine. > >>> I do not have such long names ... >>> >>> I suggest to turn on mail_debug, then you see all paths a.s.o. > >> Switched it on, but there are no more error messages. > > doveconf -n output? [root at mail ~]# doveconf -n # 2.2.10: /etc/dovecot/dovecot.conf doveconf: Warning: service auth { client_limit=1000 } is lower than required under max. load (2148) doveconf: Warning: service anvil { client_limit=1000 } is lower than required under max. load (2151) # OS: Linux 2.6.18-371.4.1.el5 x86_64 Red Hat Enterprise Linux Server release 5.10 (Tikanga) auth_mechanisms = plain login auth_verbose = yes disable_plaintext_auth = no log_path = /var/log/dovecot.log mail_location = mbox:~/:INBOX=/var/mail/%u mail_privileged_group = mail passdb { driver = pam } protocols = imap pop3 service auth { user = root } service imap-login { process_limit = 1024 process_min_avail = 10 service_count = 1 } service imap { process_limit = 1024 vsz_limit = 1 G } service pop3-login { process_limit = 1024 process_min_avail = 10 service_count = 1 } service pop3 { process_limit = 1024 vsz_limit = 1 G } ssl_ca = From juancarlos.sanchez at upm.es Thu Feb 27 15:17:57 2014 From: juancarlos.sanchez at upm.es (Juan Carlos Sanchez) Date: Thu, 27 Feb 2014 16:17:57 +0100 Subject: [Dovecot] maildir quota divergence In-Reply-To: <20140227133019.GH3882@ruhr-uni-bochum.de> References: <530F39B3.6090806@upm.es> <20140227133019.GH3882@ruhr-uni-bochum.de> Message-ID: <530F5725.80806@upm.es> Here it goes.... # 2.1.17: /usr/local/etc/dovecot/dovecot.conf # OS: SunOS 5.10 sun4u ufs auth_cache_negative_ttl = 0 auth_cache_size = 1000 k auth_cache_ttl = 2 hours auth_master_user_separator = * auth_verbose = yes base_dir = /var/run/dovecot disable_plaintext_auth = no info_log_path = /var/log/mail/dovecot_info.log log_path = /var/log/mail/dovecot.log mail_gid = vmail mail_location = maildir:/buzones/%1Mn/%n/correo mail_plugins = quota mail_privileged_group = mail mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace inbox { inbox = yes location = mailbox Sent { auto = subscribe special_use = \Sent } mailbox Trash { auto = subscribe special_use = \Trash } prefix = } passdb { args = /path_here/file driver = passwd-file master = yes pass = yes } passdb { args = /usr/local/etc/dovecot-ldap.conf driver = ldap } plugin { quota = maildir quota_rule = *:storage=100M quota_rule2 = Trash:storage=+20M quota_rule3 = SPAM:ignore quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u sieve = ~/.dovecot.sieve sieve_global_dir = /path_here/ zlib_save = gz zlib_save_level = 6 } protocols = imap pop3 sieve lmtp service anvil { client_limit = 4611 } service auth { client_limit = 10852 unix_listener auth-client { mode = 0660 } unix_listener auth-master { mode = 0666 } unix_listener auth-userdb { mode = 0777 } user = root } service imap-login { process_min_avail = 4 service_count = 0 } service imap { process_limit = 4096 } service lmtp { client_limit = 50 executable = lmtp -L process_min_avail = 20 unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } user = vmail } service managesieve-login { inet_listener sieve_deprecated { port = 2000 } process_limit = 1024 } service managesieve { process_limit = 1536 } service pop3-login { process_limit = 1024 } service pop3 { process_limit = 1536 } service quota-warning { executable = script /usr/local/bin/quota-warning.sh user = vmail } ssl_ca = Please show us your doveconf -n. -- ------------------------------------------------------ Juan Carlos Sanchez Hernandez Responsable de Seguridad y Correo Electronico Servicio de Planificacion Informatica y Comunicaciones Universidad Politecnica de Madrid Rectorado Avda. Ramiro de Maeztu 7 28040 Madrid ------------------------------------------------------ From skdovecot at smail.inf.fh-brs.de Thu Feb 27 16:06:08 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen) Date: Thu, 27 Feb 2014 17:06:08 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: <530EFBDE.9020805@filmakademie.de> References: <530EF326.9000504@filmakademie.de> <530EFBDE.9020805@filmakademie.de> Message-ID: <530F6270.5050403@smail.inf.fh-brs.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 G?tz Reinicke - IT Koordinator wrote: > Am 27.02.14 09:41, schrieb Steffen Kaiser: >> I suggest to turn on mail_debug, then you see all paths a.s.o. > > Switched it on, but there are no more error messages. But you'll see lines with home= mail= a.s.o. Are these settings correct? Maybe, post them, too. - -- Steffen -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) Comment: Using GnuPG with undefined - http://www.enigmail.net/ iQEVAwUBUw9ib3D1/YhP6VMHAQJLzgf/YzhiwRXvJ+2ntinaFPLEEgBKp5lcah7m 6j+ElZgf1c0ChsJF0V6GOTsYw7UbioLPug+Y0g0i1Sw7+LQO1991xn9OQkD+z1X0 JmaOokoZY/uaHcAZ2+v1s475Ha6HBZd853YGylgvshlo90dqSmcUquHwcTfr0XqT pzPaM8lb663iT8WIw7xQIePWmA5zJA7hEbAMTHmxYUmtcmbyphNzaWXLlEKl9qx1 bBBJdhHbAsCmT7GsgfcQgW1NTvtWoQe+ZCwRC7KOvUPpZaqy1vArMmkubyOPjmUe Za7/0OX1s7dNVEbJMGGcKuG9yPdtr8bYzXZHnLkP+D2LMvsc023YXw== =KLkd -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Thu Feb 27 16:15:05 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen) Date: Thu, 27 Feb 2014 17:15:05 +0100 Subject: [Dovecot] maildir quota divergence In-Reply-To: <530F39B3.6090806@upm.es> References: <530F39B3.6090806@upm.es> Message-ID: <530F6489.9000300@smail.inf.fh-brs.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Juan Carlos Sanchez wrote: > Hello; > > We are using maildir quotas and have found differences in many > users in respect to what system command are showing and doveadm > quotas. > > For example, four user test, we have: > > doveadm quota get -u test Quota name Type Value Limit > % STORAGE 98066 102400 > 95 MESSAGE 883 - > 0 > > But if we check user mail_location with "du" system command we get > he is using 70458 Kb. > > We are running dovecot 2.1.17 > > ?any clue? Did you already tried: doveadm quota recalc -u user? Did you started "du" right in Maildir? Use: cd .../Maildir du -cs cur new .*/{cur,new} in order to count message files only. You do not seem to have activated the hardlink feature. If you did, you need to count each link, too. untested size in KB: find cur new .*/{cur,new} -type f -printf '%k\n' | \ awk ' END { print n } { n=n+$1 } ' - -- Steffen -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) Comment: Using GnuPG with undefined - http://www.enigmail.net/ iQEVAwUBUw9kiHD1/YhP6VMHAQLh7Af/U4gqXDaE/9wJOdp/KvpIX9CvJIUPuX8L Is/iAS2U/vLbZgh2o26NIsOfd+4cr+uR1OIrtPeUjDkvxFL17qo4SaZf0Sn8TTX5 BVX2b2OG1M6k+cxRmt+mV3UeRAzvzSoKUIhXTju7QbwcIG/SL1w8pCyLrBPIK0w1 O7sPl+eR2cF9cvY5M1pmfb+CBc/p1djn2bkeOT4lZf8BjRSqTxUbNP7HXIT9743A vGBjCi7HsDSKHK4EaDlmtgsH3q9L5MtJQzL0ScDEcghzedhfsk4vf/96ipmhnfAQ dXuBgWrztaNyNKxpg0IkHWlA7nUS9IWLEz6EjHG17yxuI/jRhHEnLQ== =9aHd -----END PGP SIGNATURE----- From goetz.reinicke at filmakademie.de Thu Feb 27 16:16:45 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-1?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Thu, 27 Feb 2014 17:16:45 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: <530F6270.5050403@smail.inf.fh-brs.de> References: <530EF326.9000504@filmakademie.de> <530EFBDE.9020805@filmakademie.de> <530F6270.5050403@smail.inf.fh-brs.de> Message-ID: <530F64ED.2080704@filmakademie.de> Am 27.02.14 17:06, schrieb Steffen: > G?tz Reinicke - IT Koordinator wrote: >> Am 27.02.14 09:41, schrieb Steffen Kaiser: >>> I suggest to turn on mail_debug, then you see all paths a.s.o. > >> Switched it on, but there are no more error messages. > > But you'll see lines with home= mail= a.s.o. Are these settings > correct? Maybe, post them, too. I just realised, that I used just a basic configuration (from the migration); I just added and started with the big conf.d and added my setting. There is still the same problem/error in the log, but with some more text: E.g. the rechnungseingang-finanzbuchhaltung looks like: Feb 27 16:59:55 imap(rechnungseingang-finanzbuchhaltung): Debug: Effective uid=3473, gid=1182, home=/home/misc_accounts/rechnungseingang-finanzbuchhaltung Feb 27 17:02:11 imap(rechnungseingang-animationsinstitut): Debug: Effective uid=3474, gid=1182, home= Feb 27 17:02:11 auth-worker(19896): Debug: pam(rechnungseingang-animationsinstitut,172.17.25.85): lookup service=dovecot Feb 27 17:02:11 auth-worker(19896): Debug: pam(rechnungseingang-animationsinstitut,172.17.25.85): #1/1 style=1 msg=Password: Feb 27 17:02:11 auth: Debug: client passdb out: OK 1 user=rechnungseingang-animationsinstitut Feb 27 17:02:11 auth-worker(19896): Debug: passwd(rechnungseingang-animationsinstitut,172.17.25.85): lookup Feb 27 17:02:11 auth: Debug: master userdb out: USER 3536191489 rechnungseingang-animationsinstitut system_groups_user=rechnungseingang-animationsinstitut uid=3474 gid=1182 home auth_token=58932681706c22720023a40104779c049ae2ac42 Feb 27 17:02:11 imap-login: Info: Login: user=, method=PLAIN, rip=172.17.25.85, lip=193.196.129.3, mpid=21531, TLS, session= Feb 27 17:02:11 imap(rechnungseingang-animationsinstitut): Debug: Effective uid=3474, gid=1182, home= Feb 27 17:02:11 imap(rechnungseingang-animationsinstitut): Debug: Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=mbox:~/:INBOX=/var/mail/rechnungseingang-animationsinstitut Feb 27 17:02:11 imap(rechnungseingang-animationsinstitut): Error: user rechnungseingang-animationsinstitut: Initialization failed: Namespace '': Home directory not set for user. Can't expand ~/ for mail root dir in: ~/:INBOX=/var/mail/rechnungseingang-animationsinstitut Feb 27 17:02:11 imap(rechnungseingang-animationsinstitut): Error: Invalid user settings. Refer to server log for more information. -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From bob at computerisms.ca Thu Feb 27 16:58:45 2014 From: bob at computerisms.ca (Bob Miller) Date: Thu, 27 Feb 2014 08:58:45 -0800 Subject: [Dovecot] Dovecot2 vs. AD, "Inactivity during authentication" In-Reply-To: References: <4B4234F3-C776-48F3-8425-D8BED6ACCDD7@on2it.net> Message-ID: <1393520325.12464.333.camel@worklian> Hi, have you verified from you AD logs that dovecot is sending the same thing as your ldapsearch? -- Computerisms Bob Miller 867-334-7117 / 867-633-3760 http://computerisms.ca On Thu, 2014-02-27 at 12:58 +0100, Jeroen Scheerder wrote: > Quoth Jeroen Scheerder (27 Feb 2014, 12:38): > > > Here's what I see in the logs: > > > > Feb 27 12:25:49 ponyboy dovecot: imap-login: Disconnected: Inactivity during authentication (disconnected while authenticating, waited 172 secs): user=<>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured, session= > > Feb 27 12:26:42 ponyboy dovecot: auth: Error: PLAIN(js,127.0.0.1,): Request 74099.1 timed out after 225 secs, state=1 > > Logging to file instead of syslog, I see a bit more: > > Feb 27 12:45:27 auth: Debug: Loading modules from directory: /usr/local/lib/dovecot/auth > Feb 27 12:45:27 auth: Debug: Wrote new auth token secret to /var/run/dovecot/auth-token-secret.dat > Feb 27 12:45:27 auth: Debug: auth client connected (pid=74241) > Feb 27 12:45:31 auth: Debug: client in: AUTH 1 PLAIN service=imap secured session=9QHH22HzYgB/AAAB lip=127.0.0.1 rip=127.0.0.1 lport=143 rport=64354 resp= > Feb 27 12:45:31 auth: Debug: ldap(js,127.0.0.1,<9QHH22HzYgB/AAAB>): bind search: base=dc=office,dc=on2it,dc=net filter=(&(ObjectClass=person)(sAMAccountName=js)) > Feb 27 12:48:27 imap-login: Info: Disconnected: Inactivity during authentication (disconnected while authenticating, waited 176 secs): user=<>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured, session=<9QHH22HzYgB/AAAB> > Feb 27 12:49:16 auth: Debug: ldap(js,127.0.0.1,<9QHH22HzYgB/AAAB>): result: sAMAccountName=js; sAMAccountName unused > Feb 27 12:49:16 auth: Debug: ldap(js,127.0.0.1,<9QHH22HzYgB/AAAB>): result: sAMAccountName=js > Feb 27 12:49:16 auth: Error: PLAIN(js,127.0.0.1,<9QHH22HzYgB/AAAB>): Request 74241.1 timed out after 225 secs, state=1 > Feb 27 12:49:16 auth: Debug: client in: CANCEL 1 > Feb 27 12:49:18 auth: Debug: client passdb out: FAIL 1 user=js temp > > Using ldapsearch on this very host, I have verified that this particular ldap query, with the same authenticated bind, actually works: > > ponyboy% time ldapsearch -o ldif-wrap=no -x -LLL -E pr=200/noprompt -w suppressed \ > -H ldap://dc2.office.on2it.net -b dc=office,dc=on2it,dc=net -D suppressed -s sub \ > '(&(ObjectClass=person)(sAMAccountName=js))' sAMAccountName > dn: CN=Jeroen Scheerder,OU=Users,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net > sAMAccountName: js > > # refldap://DomainDnsZones.office.on2it.net/DC=DomainDnsZones,DC=office,DC=on2it,DC=net > > # refldap://ForestDnsZones.office.on2it.net/DC=ForestDnsZones,DC=office,DC=on2it,DC=net > > # refldap://office.on2it.net/CN=Configuration,DC=office,DC=on2it,DC=net > > # pagedresults: cookie= > ldapsearch -o ldif-wrap=no -x -LLL -E pr=200/noprompt -w [...] -H 0.00s user 0.00s system 19% cpu 0.019 total From traiano at gmail.com Thu Feb 27 17:19:12 2014 From: traiano at gmail.com (Traiano Welcome) Date: Thu, 27 Feb 2014 19:19:12 +0200 Subject: [Dovecot] Dovecot Migration: Retrieving/Logging POP/IMAP Passwords in Plaintext In-Reply-To: <530F4C6C.6080305@Media-Brokers.com> References: <530F464B.3090103@Media-Brokers.com> <530F4C6C.6080305@Media-Brokers.com> Message-ID: On Thu, Feb 27, 2014 at 4:32 PM, Charles Marcus wrote: > On 2/27/2014 9:20 AM, Traiano Welcome wrote: > >> I agree. Once upgraded to a reasonably recent version, though, what >> configuration would I use to log plaintext passwords, then ? >> > > http://wiki2.dovecot.org/Logging > > Scroll down to the bottom... > > >From the wiki: "auth_debug_passwords=yes does everything that auth_debug=yes does, but it also removes password hiding (but only if you are not using PAM, since PAM errors aren't written to Dovecot's own logs)." Looks like upgrading won't help either, as I'm using pam: --- passdb pam { } userdb passwd { } --- > -- > > Best regards, > > Charles > From cyberonicturbo at gmail.com Thu Feb 27 20:41:18 2014 From: cyberonicturbo at gmail.com (Cyberonic Turbo) Date: Thu, 27 Feb 2014 15:41:18 -0500 Subject: [Dovecot] Quota-Status issue In-Reply-To: References: Message-ID: Thanks for the help. For some reason I couldn't find the dovecot log before, but there it was staring me in the face, haha. Here's the error I was getting: Feb 27 14:55:06 auth-worker(30525): Error: sql(test at example.com): User query failed: Unknown column 'mailbox.enablequota-status' in 'where clause' Feb 27 14:55:06 quota-status: Error: user test at example.com: Auth USER lookup failed Looks like it was missing a column in the table. Was able to fix it by adding: ALTER TABLE vmail.umailbox ADD `enablequota-status` tinyint(1) DEFAULT 1 AFTER `enablelib-storage`; Now it works as expected! printf "recipient=test at example.com\nsize=12304\n\n" | nc 127.0.0.1 12340 action=552 5.2.2 Mailbox is full Once again, thanks for the help. Everything is working smoothly now. On Mon, Feb 24, 2014 at 5:56 PM, Charles Sprickman wrote: > On Feb 20, 2014, at 5:12 PM, Cyberonic Turbo wrote: > > > Following this guide: > > http://sys4.de/en/blog/2013/04/08/postfix-dovecot-mailbox-quota/ I can't > > seem to get it to work, as soon as I add the smtpd_recipient_restrictions > > setting to postfix I can no longer send mail at all. I get the message > SMTP > > Error (450): Failed to add recipient "postmaster at example.com" (4.7.1 : > > Recipient address rejected: Internal error occurred. Refer to server log > > for more information.). I googled around and found this command to test > the > > quota-status service: printf "recipient=postmaster at > > example.com\nsize=1234\n\n" > > | nc 127.0.0.1 12340 > > It seems to always return the quota_status_nouser message. I'm really > > stumped here. What logs do I need to check for errors and does anyone > have > > any experience with this? > > I'm not an expert, I just followed the same guide a few days ago > while preparing to front an old vpopmail system with postfix. It > did work for me. > > Before moving on to enabling the check in postfix, verify that the > dovecot side is working. > > Your example test should work, I did the same here: > > [root at util-b /usr/local/etc/postfix]# printf "recipient=chip at test.bway.net\nsize=12304\n\n" > | nc mbox.i 25001 > action=DUNNO > > [root at util-b /usr/local/etc/postfix]# printf "recipient=chip at test.bway.net\nsize=123000000004\n\n" > | nc mbox.i > 25001 action=552 5.2.2 Mailbox is full > > If that fails for you, examine the dovecot log. In my case, I did > have to provide the full path to the "quota-status" binary and > dovecot complained about not being able to find it. Make sure you > actually have quota-status installed. Full dovecot snippet for this > below: > > # report quota to postfix > # see http://sys4.de/en/blog/2013/04/08/postfix-dovecot-mailbox-quota/ > > plugin { > quota_status_success = DUNNO > quota_status_nouser = DUNNO > quota_status_overquota = "552 5.2.2 Mailbox is full" > } > > service quota-status { > executable = /usr/local/libexec/dovecot/quota-status -p postfix > inet_listener { > address = 10.x.x.19 # In my case I want it listening on a > particular IP > port = 25001 > } > client_limit = 5 > } > > If the dovecot portion is working, then move on to your postfix logs... > > Charles > > > > > I'm running Dovect 2.2.10 with Postfix 2.6.6 > > > > Here's my dovecot -n result: > > > > # 2.2.10: /etc/dovecot/dovecot.conf > > # OS: Linux 2.6.32-431.5.1.el6.x86_64 x86_64 CentOS release 6.5 (Final) > > auth_master_user_separator = * > > auth_mechanisms = PLAIN LOGIN > > dict { > > acl = mysql:/etc/dovecot/dovecot-share-folder.conf > > quotadict = mysql:/etc/dovecot/dovecot-used-quota.conf > > } > > first_valid_uid = 2000 > > last_valid_uid = 2000 > > listen = * > > log_path = /var/log/dovecot.log > > mail_gid = 2000 > > mail_location = maildir:/%Lh/Maildir/:INDEX=/%Lh/Maildir/ > > mail_plugins = quota > > mail_uid = 2000 > > managesieve_notify_capability = mailto > > managesieve_sieve_capability = fileinto reject envelope encoded-character > > vacation subaddress comparator-i;ascii-numeric relational regex > imap4flags > > copy include variables body enotify environment mailbox date ihave > > namespace { > > inbox = yes > > location = > > prefix = > > separator = / > > type = private > > } > > namespace { > > list = children > > location = maildir:/%%Lh/Maildir/:INDEX=/%%Lh/Maildir/Shared/%%u > > prefix = Shared/%%u/ > > separator = / > > subscriptions = yes > > type = shared > > } > > passdb { > > args = /etc/dovecot/dovecot-mysql.conf > > driver = sql > > } > > passdb { > > args = /etc/dovecot/dovecot-master-users-password > > driver = passwd-file > > master = yes > > } > > plugin { > > acl = vfile > > acl_shared_dict = proxy::acl > > auth_socket_path = /var/run/dovecot/auth-master > > autocreate = INBOX > > autocreate2 = Sent > > autocreate3 = Trash > > autocreate4 = Drafts > > autocreate5 = Junk > > autosubscribe = INBOX > > autosubscribe2 = Sent > > autosubscribe3 = Trash > > autosubscribe4 = Drafts > > autosubscribe5 = Junk > > quota = dict:user::proxy::quotadict > > quota_grace = 10%% > > quota_rule = *:storage=1G > > quota_status_nouser = DUNNO > > quota_status_overquota = 552 5.2.2 Mailbox is full > > quota_status_success = DUNNO > > quota_warning = storage=85%% quota-warning 85 %u > > quota_warning2 = storage=90%% quota-warning 90 %u > > quota_warning3 = storage=95%% quota-warning 95 %u > > sieve = /%Lh/sieve/dovecot.sieve > > sieve_dir = /%Lh/sieve > > sieve_global_dir = /var/vmail/sieve > > sieve_global_path = /var/vmail/sieve/dovecot.sieve > > } > > protocols = pop3 imap sieve > > service auth { > > unix_listener /var/spool/postfix/dovecot-auth { > > group = postfix > > mode = 0666 > > user = postfix > > } > > unix_listener auth-master { > > group = vmail > > mode = 0666 > > user = vmail > > } > > unix_listener auth-userdb { > > group = vmail > > mode = 0660 > > user = vmail > > } > > } > > service dict { > > unix_listener dict { > > group = vmail > > mode = 0660 > > user = vmail > > } > > } > > service imap-login { > > process_limit = 500 > > service_count = 1 > > } > > service pop3-login { > > service_count = 1 > > } > > service quota-status { > > client_limit = 1 > > executable = quota-status -p postfix > > inet_listener { > > port = 12340 > > } > > } > > service quota-warning { > > executable = script /usr/local/bin/dovecot-quota-warning.sh > > unix_listener quota-warning { > > group = vmail > > mode = 0660 > > user = vmail > > } > > } > > ssl = required > > ssl_cert = > ssl_key = > userdb { > > args = /etc/dovecot/dovecot-mysql.conf > > driver = sql > > } > > protocol lda { > > auth_socket_path = /var/run/dovecot/auth-master > > lda_mailbox_autocreate = yes > > log_path = /var/log/sieve.log > > mail_plugins = quota sieve autocreate > > postmaster_address = root > > } > > protocol imap { > > imap_client_workarounds = tb-extra-mailbox-sep > > mail_plugins = quota imap_quota autocreate > > } > > protocol pop3 { > > mail_plugins = quota > > pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > > pop3_uidl_format = %08Xu%08Xv > > } > > > > For my postfix/main.cf I have this relevant setting: > > smtpd_recipient_restrictions = reject_unknown_sender_domain, > > reject_unknown_recipient_domain, reject_non_fqdn_sender, > > reject_non_fqdn_recipient, reject_unlisted_recipient, > check_policy_service > > inet:127.0.0.1:7777, check_policy_service inet:127.0.0.1:10031, > > check_policy_service inet:127.0.0.1:12340, permit_mynetworks, > > permit_sasl_authenticated, reject_unauth_destination > > From renaud at allard.it Thu Feb 27 23:18:35 2014 From: renaud at allard.it (Renaud Allard) Date: Fri, 28 Feb 2014 00:18:35 +0100 Subject: [Dovecot] Converting old emails to compressed format Message-ID: <530FC7CB.1040200@allard.it> Hello, I know this question has already been asked, but I would really like a solution here as I tried all I could find on the wiki or mail archives I am now running dovecot 2.2.12 Compression works fine for new mails, so zlib works Mails are currently stored using dbox So I tried for testing dsync -D -v mirror -u user -m Archives dbox:~/temp dsync -o "plugin/zlib_save=xz" -D -v mirror -u user -m Archives dbox:~/temp dsync -o "plugin/zlib_save=" -D -v mirror -u user -m Archives dbox:~/temp dsync -o "plugin/zlib_save=" -D -v mirror -u user -m Archives maildir:~/temp dsync -o "plugin/zlib_save=xz" -D -v mirror -u user -m Archives maildir:~/temp And also converting again those maildir messages to dbox (just in case it wouldn't work from dbox format) And also with backup instead of mirror None of this actually works, mails are indeed copied, but not compressed So I am wondering if there is a way to compress those mails? Thank you -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4303 bytes Desc: S/MIME Cryptographic Signature URL: From jtam.home at gmail.com Fri Feb 28 00:05:05 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Thu, 27 Feb 2014 16:05:05 -0800 (PST) Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: References: Message-ID: G?tz Reinicke writes: > mail_location = mbox:~/:INBOX=/var/mail/%u > ... > Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, > list=yes, subscriptions=yes > location=mbox:~/:INBOX=/var/mail/rechnungseingang-animationsinstitut > Feb 27 17:02:11 imap(rechnungseingang-animationsinstitut): Error: user > rechnungseingang-animationsinstitut: Initialization failed: Namespace > '': Home directory not set for user. Can't expand ~/ for mail root dir > in: ~/:INBOX=/var/mail/rechnungseingang-animationsinstitut Hmm, I don't have a trialing '/' in my mail_location, so maybe you can try leaving it off too just to check. mbox:~:INBOX=/var/mail/%u Also, is your home directory well defined in your userdb? Check output of doveadm user rechnungseingang-animationsinstitut Joseph Tam From mvfreelancer at gmail.com Fri Feb 28 01:40:43 2014 From: mvfreelancer at gmail.com (MV) Date: Fri, 28 Feb 2014 01:40:43 +0000 Subject: [Dovecot] Logging authentication failures when Dovecot's auth service used to authenticate postfix smtpd Message-ID: Hello, tl;dr: Is there a way to get dovecot's auth to log failed smtp authentications without having to switch on "auth_verbose"? postfix version 2.11.0 and dovecot version 2.2.12 I'm currently migrating my postfix+courier to postfix+dovecot and so far it's working as expected. Except for logging smtp login failures. Despite Postfix logging successful authentications (see sample below), it doesn't log failed smtp logins. Feb 25 22:28:53 mailer2 postfix/submission[20274]: C981B20198: client=A-B-C-D.*****.net[A.B.C.D]:63107, sasl_method=PLAIN, sasl_username=joe at example.net And since my postfix setup authenticates virtual users through Dovecot's auth, I thought maybe dovecot could report smtp login failures the same way it reports imap and pop3 login failures. Below is a sample extracted from "info_log_path" after several imap and pop3 login failures. (Obviously the IP 255.... is made up and irrelevant for this mater). # begin extract "/var/log/dovecot-info.log" 2014-02-27 21:14:26 auth: Info: passwd-file(joe at example.net,255.255.255.255,): Password mismatch 2014-02-27 21:16:46 auth: Info: passwd-file(foobar,255.255.255.255,): unknown user 2014-02-27 21:52:00 auth: Info: passwd-file(foo at example.net,255.255.255.255,<0Su6VGrzGwAuQV80>): unknown user 2014-02-27 21:53:35 auth: Info: plain(?,255.255.255.255,<0Su6VGrzGwAuQV80>): Empty username 2014-02-27 21:53:55 auth: Info: plain(?,255.255.255.255,<0Su6VGrzGwAuQV80>): Username character disallowed by auth_username_chars: 0x5c (username: \0) 2014-02-27 22:08:05 auth: Info: plain(?,255.255.255.255): invalid input 2014-02-27 22:09:36 auth: Info: passwd-file(joe at example.net,255.255.255.255): Password mismatch 2014-02-27 22:09:53 auth: Info: login(?,255.255.255.255): Empty username # end extract I've tried adding "-L -o info_log_path=/var/log/dovecot-info.log" to the both auth and auth-worker services but that yield nothing. ----------------------%<-------------------------------- auth_mechanisms = plain login auth_verbose = yes base_dir = /var/run/dovecot/ info_log_path = /var/log/dovecot-info.log log_path = /var/log/dovecot.log log_timestamp = "%Y-%m-%d %H:%M:%S " passdb { args = scheme=CRYPT username_format=%u /etc/dovecot/virtual_users driver = passwd-file } userdb { args = username_format=%u /etc/dovecot/virtual_users default_fields = uid=vmail gid=vmail driver = passwd-file override_fields = home=/home/vmail/%d/%u result_failure = return-fail result_internalfail = return-fail } service auth-worker { executable = auth -w -L -o info_log_path=/var/log/dovecot-info.log } service auth { executable = auth -L -o info_log_path=/var/log/dovecot-info.log unix_listener /var/spool/postfix/private/dovecot-auth { group = postfix user = postfix mode = 0660 } } service lmtp { executable = lmtp -L -o info_log_path=/var/log/dovecot-info.log unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix user = postfix mode = 0660 } } ---------------------->%-------------------------------- The relevant postfix config is ... smtpd_sasl_type = dovecot smtpd_sasl_path = private/dovecot-auth virtual_transport = lmtp:unix:private/dovecot-lmtp From skdovecot at smail.inf.fh-brs.de Fri Feb 28 07:31:36 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 28 Feb 2014 08:31:36 +0100 (CET) Subject: [Dovecot] Dovecot2 vs. AD, "Inactivity during authentication" In-Reply-To: References: <4B4234F3-C776-48F3-8425-D8BED6ACCDD7@on2it.net> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 27 Feb 2014, Jeroen Scheerder wrote: > passdb { > args = /usr/local/etc/dovecot/on2it-ldap-users.cfg > driver = ldap > } > userdb { > args = /usr/local/etc/dovecot/on2it-ldap-users-userdb.cfg > driver = ldap > } > $ cat /usr/local/etc/dovecot/on2it-ldap-users.cfg > hosts = dc2.office.on2it.net > ldap_version = 3 > base = dc=office,dc=on2it,dc=net > scope=subtree > auth_bind = yes > dn = [suppressed] > dnpass = [suppressed] > > pass_attrs = sAMAccountName=user > user_attrs = \ > =home=/var/mail/on2it/%{ldap:sAMAccountName}, \ > =mail=maildir:/var/mail/on2it/%{ldap:sAMAccountName} you must not use home dir == mail dir, search list about what wired things can happen, if you do. But this has nothing to do with your auth problem. > user_filter = (&(ObjectClass=person)(sAMAccountName=%u)) > pass_filter = (&(ObjectClass=person)(sAMAccountName=%u)) > > iterate_attrs = sAMAccountName=user > iterate_filter = (objectClass=person) > > $ ls -l /usr/local/etc/dovecot/on2it-ldap-users-userdb.cfg > lrwxr-xr-x 1 root wheel 20 Feb 27 12:07 /usr/local/etc/dovecot/on2it-ldap-users-userdb.cfg -> on2it-ldap-users.cfg > Feb 27 12:49:16 auth: Debug: ldap(js,127.0.0.1,<9QHH22HzYgB/AAAB>): result: sAMAccountName=js; sAMAccountName unused > Feb 27 12:49:16 auth: Debug: ldap(js,127.0.0.1,<9QHH22HzYgB/AAAB>): result: sAMAccountName=js This puzzles me, "sAMAccountName unused" should mean that Dovecot does not use the attribute, which contradicts the definition of pass_attrs. Do you have wiered characters in/around the line "pass_attrs = sAMAccountName=user"? Maybe a Windows linebreak ^M / \r or something? A Unicode non-breakable space? Did you stopped, killed any remaining Dovecot processes and restarted Dovecot - just to be sure? Maybe, add sAMAccountName=user to user_attrs, too. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUxA7WXD1/YhP6VMHAQKX4ggA1Zn7M3ADyVmqxtYT3aiNW429RiFLnKrX ql8YZUS+ZPAKP7aBzEFZqUFKc3UkP9yR6QfZPoJC/x3DJqnKZZTW6dJl2vDkXVth KUA1OotQVE21E85mbZR8zUYwKGl05saYwJb/4HpfP56xX8PbaItAUPISwPa5LAYK aShfHZ/dD0Qq49eEMqa/ErG/3ntUQfD162UCiKMspUh91i4enEt1WQ2j4cSRN3BV iSwx3U337uFYyUCqAhiUG7dtHU8CH2GD6RNFM/m3JXYZWg91zgKveBNJ4pGzV8mU bb5pJ2KAhUQIjXnCgZrSSVIkgUr6KOMr0gkztACNvwhm78TF45WAbg== =Y/0n -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Fri Feb 28 07:37:48 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 28 Feb 2014 08:37:48 +0100 (CET) Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: <530F64ED.2080704@filmakademie.de> References: <530EF326.9000504@filmakademie.de> <530EFBDE.9020805@filmakademie.de> <530F6270.5050403@smail.inf.fh-brs.de> <530F64ED.2080704@filmakademie.de> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 27 Feb 2014, G?tz Reinicke - IT Koordinator wrote: > Am 27.02.14 17:06, schrieb Steffen: >> G?tz Reinicke - IT Koordinator wrote: >>> Am 27.02.14 09:41, schrieb Steffen Kaiser: >>>> I suggest to turn on mail_debug, then you see all paths a.s.o. >> >>> Switched it on, but there are no more error messages. >> >> But you'll see lines with home= mail= a.s.o. Are these settings >> correct? Maybe, post them, too. > > I just realised, that I used just a basic configuration (from the > migration); I just added and started with the big conf.d and added my > setting. > > There is still the same problem/error in the log, but with some more text: > > E.g. the rechnungseingang-finanzbuchhaltung looks like: > > Feb 27 16:59:55 imap(rechnungseingang-finanzbuchhaltung): Debug: > Effective uid=3473, gid=1182, > home=/home/misc_accounts/rechnungseingang-finanzbuchhaltung > > Feb 27 17:02:11 imap(rechnungseingang-animationsinstitut): Debug: > Effective uid=3474, gid=1182, home= > > list=yes, subscriptions=yes > location=mbox:~/:INBOX=/var/mail/rechnungseingang-animationsinstitut See that next Info line: !!!! Home directory not set for user. Can't expand ~/ for mail root dir in: ~/ !!!! In contrast to rechnungseingang-finanzbuchhaltung your userdb does not return no home dir for rechnungseingang-animationsinstitut, therefore your mail_location ~/ expands to the root directory "/". You have to correct your userdb. Maybe you need to clean the cache: doveadm auth cache flush - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUxA8zHD1/YhP6VMHAQLexQgAjIEJcpptztDfWUt+P/T5jOC6GNgZLGKw BqCLrlwfmFFmSKiwqrNee2mSTjIHtAE15doeBrTclh1Hhmdgq+rdRNydBc6TRbXe eXqZujdutDJPL1iZdNP3yT1p1lALKNPlqIraey7URUTQqSRwMymDmjHF4woY2VR4 wYnZb+PCcgWhIgLykTaV7gu7L1jVwzf7mH9liFZkTjOt0zHYzOXZ1jJ+K3X7TvBA jLQmxUp0ygCmAgd1Wl10El5e5RxMyZXvCOGiF++Rv4TJAJSxer1hgzSSY9EEv6wM kN3qkcGfXlmySYwNihk4Cf4xqqKryr364EIkBlEmYli5VLvxpY8WLg== =RgoZ -----END PGP SIGNATURE----- From goetz.reinicke at filmakademie.de Fri Feb 28 08:19:55 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Fri, 28 Feb 2014 09:19:55 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 In-Reply-To: References: <530EF326.9000504@filmakademie.de> <530EFBDE.9020805@filmakademie.de> <530F6270.5050403@smail.inf.fh-brs.de> <530F64ED.2080704@filmakademie.de> Message-ID: <531046AB.4070307@filmakademie.de> Am 28.02.14 08:37, schrieb Steffen Kaiser: > On Thu, 27 Feb 2014, G?tz Reinicke - IT Koordinator wrote: > >> Am 27.02.14 17:06, schrieb Steffen: >>> G?tz Reinicke - IT Koordinator wrote: >>>> Am 27.02.14 09:41, schrieb Steffen Kaiser: >>>>> I suggest to turn on mail_debug, then you see all paths a.s.o. >>> >>>> Switched it on, but there are no more error messages. >>> >>> But you'll see lines with home= mail= a.s.o. Are these settings >>> correct? Maybe, post them, too. > >> I just realised, that I used just a basic configuration (from the >> migration); I just added and started with the big conf.d and added my >> setting. > >> There is still the same problem/error in the log, but with some more >> text: > >> E.g. the rechnungseingang-finanzbuchhaltung looks like: > >> Feb 27 16:59:55 imap(rechnungseingang-finanzbuchhaltung): Debug: >> Effective uid=3473, gid=1182, >> home=/home/misc_accounts/rechnungseingang-finanzbuchhaltung > >> Feb 27 17:02:11 imap(rechnungseingang-animationsinstitut): Debug: >> Effective uid=3474, gid=1182, home= > >> list=yes, subscriptions=yes >> location=mbox:~/:INBOX=/var/mail/rechnungseingang-animationsinstitut > > See that next Info line: > > !!!! > Home directory not set for user. Can't expand ~/ for mail root dir > in: ~/ > !!!! > > In contrast to rechnungseingang-finanzbuchhaltung your userdb does not > return no home dir for rechnungseingang-animationsinstitut, therefore > your mail_location ~/ expands to the root directory "/". > > You have to correct your userdb. Maybe you need to clean the cache: > > doveadm auth cache flush Hi, [root at mail ~]# doveadm auth cache flush doveadm(root): Error: userdb lookup: connect(/var/run/dovecotauth-master) failed: No such file or directory 0 cache entries flushed On the other hand I can confirm, that the user has a homedirectory which he can access and write to. (e.g. there is a .forward file written by that user.) Strange. Cheers . G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From Daniel-128 at gmx.de Fri Feb 28 08:55:26 2014 From: Daniel-128 at gmx.de (Daniel Thielemann) Date: Fri, 28 Feb 2014 09:55:26 +0100 Subject: [Dovecot] When does the replication run normally? Message-ID: Hi, I got my manual dsync finally working and can replicate mails by initiate it from comandline (doveadm sync -u mail at domain.dom -d), but it does not run by itself (per dovecot replication). When does dovecot invoke the replication normally? Thanks in advance Daniel From js at on2it.net Fri Feb 28 10:57:22 2014 From: js at on2it.net (Jeroen Scheerder) Date: Fri, 28 Feb 2014 11:57:22 +0100 Subject: [Dovecot] Dovecot2 vs. AD, "Inactivity during authentication" In-Reply-To: <1393520325.12464.333.camel@worklian> References: <4B4234F3-C776-48F3-8425-D8BED6ACCDD7@on2it.net> <1393520325.12464.333.camel@worklian> Message-ID: Quoth Bob Miller (27 Feb 2014, 17:58): > have you verified from you AD logs that dovecot is sending the same > thing as your ldapsearch? I have limited access to my AD server. I've verified everything I can using ldapsearch, and I have tcpdump'ed dovecot's LDAP authentication to it. This is what I see: ---- Snip, IMAP user session ---- $ telnet localhost 143 [...] * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN] Dovecot ready. a1 login js passphrase * OK Waiting for authentication process to respond.. * BYE Disconnected for inactivity during authentication. Connection closed by foreign host. --- Snip --- --- Snip, Dovecot log --- Feb 28 11:34:48 auth: Debug: auth client connected (pid=77528) Feb 28 11:34:52 auth: Debug: client in: AUTH 1 PLAIN service=imap secured session=Raj3/HTzkgB/AAAB lip=127.0.0.1 rip=127.0.0.1 lport=143 rport=24210 resp= Feb 28 11:34:52 auth: Debug: ldap(js,127.0.0.1,): bind search: base=dc=office,dc=on2it,dc=net filter=(&(objectClass=person)(sAMAccountName=js)) === LONG PAUSE === Feb 28 11:37:48 imap-login: Info: Disconnected: Inactivity during authentication (disconnected while authenticating, waited 176 secs): user=<>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured, session= Feb 28 11:38:37 auth: Debug: ldap(js,127.0.0.1,): result: sAMAccountName=js; sAMAccountName unused Feb 28 11:38:37 auth: Debug: ldap(js,127.0.0.1,): result: sAMAccountName=js Feb 28 11:38:37 auth: Error: PLAIN(js,127.0.0.1,): Request 77528.1 timed out after 225 secs, state=1 Feb 28 11:38:37 auth: Debug: client in: CANCEL 1 Feb 28 11:38:39 auth: Debug: client passdb out: FAIL 1 user=js temp --- Snip --- --- Snip, tcpdump of Dovecot LDAP session (commented, omitting tcp setup/teardown, passphrases replaced --- # # Immediately after issuing the IMAP login. # We see the successful bind here # We also see a successful user DN lookup # 11:34:52.687896 IP (tos 0x0, ttl 64, id 42561, offset 0, flags [DF], proto TCP (6), length 183) 172.17.50.13.53438 > 172.17.10.2.389: Flags [P.], seq 100:231, ack 23, win 1040, options [nop,nop,TS val 596440913 ecr 123872255], length 131 .....A at .@.....2 .....(......W........... #..Q.b#.0.....`{....eCN=Jabber Server LDAP Koppeling,OU=Service Accounts,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net..passphrase 11:34:52.689710 IP (tos 0x0, ttl 127, id 5023, offset 0, flags [DF], proto TCP (6), length 74) 172.17.10.2.389 > 172.17.50.13.53438: Flags [P.], seq 23:45, ack 231, win 258, options [nop,nop,TS val 123875052 ecr 596440913], length 22 E..J.. at ...S... .......W(..6....c...... .b..#..Q0........a..... ...... 11:34:52.689816 IP (tos 0x0, ttl 64, id 42564, offset 0, flags [DF], proto TCP (6), length 166) 172.17.50.13.53438 > 172.17.10.2.389: Flags [P.], seq 231:345, ack 45, win 1040, options [nop,nop,TS val 596440913 ecr 123875052], length 114 .....D at .@.....2 .....(..6...m........... #..Q.b..0p...ck..dc=office,dc=on2it,dc=net .. ............-....objectClass..person....sAMAccountName..js0...sAMAccountName 11:34:52.690695 IP (tos 0x0, ttl 127, id 5024, offset 0, flags [DF], proto TCP (6), length 488) 172.17.10.2.389 > 172.17.50.13.53438: Flags [P.], seq 45:481, ack 345, win 258, options [nop,nop,TS val 123875053 ecr 596440913], length 436 E..... at ...R>.. .......m(.............. .b..#..Q0........d....v.NCN=Jeroen Scheerder,OU=Users,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net0.... 0.......sAMAccountName1.......js0....]...s....T.Rldap://DomainDnsZones.office.on2it.net/DC=DomainDnsZones,DC=office,DC=on2it,DC=net0....]...s....T.Rldap://ForestDnsZones.office.on2it.net/DC=ForestDnsZones,DC=office,DC=on2it,DC=net0....M...s....D.Bldap://office.on2it.net/CN=Configuration,DC=office,DC=on2it,DC=net0........e..... ...... # # We've obtained the expected result from our query. # === Pause, and we get the "OK Waiting for authentication process to respond.." response in sync with... === 11:34:52.784578 IP (tos 0x0, ttl 64, id 42568, offset 0, flags [DF], proto TCP (6), length 52) 172.17.50.13.53438 > 172.17.10.2.389: Flags [.], seq 345, ack 481, win 1037, options [nop,nop,TS val 596441011 ecr 123875053], length 0 ...4.H at .@..J..2 .X..........!... #....b.. === LONG PAUSE === # # # Then 1m45s after authentication, we *do* see the expected LDAP auth attempt ("finally") # Why the delay? # 11:38:37.825390 IP (tos 0x0, ttl 64, id 42651, offset 0, flags [DF], proto TCP (6), length 152) 172.17.50.13.53438 > 172.17.10.2.389: Flags [P.], seq 345:445, ack 481, win 1040, options [nop,nop,TS val 596666051 ecr 123875053], length 100 ...... at .@.....2 .....(......!........... #.f..b..0b...`]....NCN=Jeroen Scheerder,OU=Users,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net..passphrase 11:38:37.827354 IP (tos 0x0, ttl 127, id 9765, offset 0, flags [DF], proto TCP (6), length 74) 172.17.10.2.389 > 172.17.50.13.53438: Flags [P.], seq 481:503, ack 445, win 258, options [nop,nop,TS val 123897567 ecr 596666051], length 22 E..J&%@...AW.. .......!(.............. .b..#.f.0........a..... ...... 11:38:37.924458 IP (tos 0x0, ttl 64, id 42653, offset 0, flags [DF], proto TCP (6), length 52) 172.17.50.13.53438 > 172.17.10.2.389: Flags [.], seq 445, ack 503, win 1040, options [nop,nop,TS val 596666151 ecr 123897567], length 0 ...4.. at .@.....2 .....(......7.....X..... #.g'.b.. 11:39:38.119947 IP (tos 0x0, ttl 64, id 42656, offset 0, flags [DF], proto TCP (6), length 59) 172.17.50.13.53438 > 172.17.10.2.389: Flags [P.], seq 445:452, ack 503, win 1040, options [nop,nop,TS val 596726346 ecr 123897567], length 7 ...;.. at .@.....2 .....(......7....._..... B.RJ.b..0... 11:39:38.120029 IP (tos 0x0, ttl 64, id 42657, offset 0, flags [DF], proto TCP (6), length 52) 172.17.50.13.53438 > 172.17.10.2.389: Flags [F.], seq 452, ack 503, win 1040, options [nop,nop,TS val 596726346 ecr 123897567], length 0 ...4.. at .@.....2 .....(......7.....X..... #.RJ.b.. 11:39:38.120173 IP (tos 0x0, ttl 64, id 42658, offset 0, flags [DF], proto TCP (6), length 59) 172.17.50.13.64429 > 172.17.10.2.389: Flags [P.], seq 1491639458:1491639465, ack 1700255044, win 1040, options [nop,nop,TS val 596726346 ecr 123849133], length 7 ...;.. at .@.....2 .....X...eW.D....._..... #.RJ.a..0....B. --- Snip --- From js at on2it.net Fri Feb 28 12:41:14 2014 From: js at on2it.net (Jeroen Scheerder) Date: Fri, 28 Feb 2014 13:41:14 +0100 Subject: [Dovecot] Dovecot2 vs. AD, "Inactivity during authentication" In-Reply-To: References: <4B4234F3-C776-48F3-8425-D8BED6ACCDD7@on2it.net> <1393520325.12464.333.camel@worklian> Message-ID: <35C3814C-93FD-4A2B-B57E-F889AB2C41A2@on2it.net> Quoth Jeroen Scheerder (28 Feb 2014, 11:57): > tcpdump of Dovecot LDAP session I've since captured to a file, and used wireshark to get a bit more grasp on the LDAP transactions: js at tchotchke:s003(31) tshark -o tcp.check_checksum:FALSE -ta -r Downloads/dc2.pcap 1 13:14:37.274193 172.17.50.13 -> 172.17.10.2 LDAP 197 bindRequest(7) "CN=Jabber Server LDAP Koppeling,OU=Service Accounts,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net" simple 2 13:14:37.276072 172.17.10.2 -> 172.17.50.13 LDAP 88 bindResponse(7) success 3 13:14:37.276160 172.17.50.13 -> 172.17.10.2 LDAP 180 searchRequest(8) "dc=office,dc=on2it,dc=net" wholeSubtree 4 13:14:37.276965 172.17.10.2 -> 172.17.50.13 LDAP 502 searchResEntry(8) "CN=Jeroen Scheerder,OU=Users,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net" | searchResRef(8) | searchResRef(8) | searchResRef(8) | searchResDone(8) success 5 13:14:37.372560 172.17.50.13 -> 172.17.10.2 TCP 66 49416 > 389 [ACK] Seq=246 Ack=459 Win=1037 Len=0 TSval=602425599 TSecr=124473537 6 13:18:22.424078 172.17.50.13 -> 172.17.10.2 LDAP 166 bindRequest(12) "CN=Jeroen Scheerder,OU=Users,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net" simple 7 13:18:22.426516 172.17.10.2 -> 172.17.50.13 LDAP 88 bindResponse(12) success So from the looks of it all is hunky-dory, LDAP-wise. - An authenticated bind (using a service account) as intended is done in frame 1 - Successfully, frame 2 indicates - The DN is searched successfully (frames 3, 4) - Frame 5 (length 0) is some kind of TCP keepalive, performed by the LDAP client library, or so I suspect - Then we have a succesful bind to the user DN (as obtained in frame 4), we see this in frames 6 and 7 - But frames 6 and 7 occur after a long, long delay, as shown with relative timing: js at tchotchke:s003(32) tshark -o tcp.check_checksum:FALSE -tr -r Downloads/dc2.pcap 1 0.000000 172.17.50.13 -> 172.17.10.2 LDAP 197 bindRequest(7) "CN=Jabber Server LDAP Koppeling,OU=Service Accounts,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net" simple 2 0.001879 172.17.10.2 -> 172.17.50.13 LDAP 88 bindResponse(7) success 3 0.001967 172.17.50.13 -> 172.17.10.2 LDAP 180 searchRequest(8) "dc=office,dc=on2it,dc=net" wholeSubtree 4 0.002772 172.17.10.2 -> 172.17.50.13 LDAP 502 searchResEntry(8) "CN=Jeroen Scheerder,OU=Users,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net" | searchResRef(8) | searchResRef(8) | searchResRef(8) | searchResDone(8) success 5 0.098367 172.17.50.13 -> 172.17.10.2 TCP 66 49416 > 389 [ACK] Seq=246 Ack=459 Win=1037 Len=0 TSval=602425599 TSecr=124473537 6 225.149885 172.17.50.13 -> 172.17.10.2 LDAP 166 bindRequest(12) "CN=Jeroen Scheerder,OU=Users,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net" simple 7 225.152323 172.17.10.2 -> 172.17.50.13 LDAP 88 bindResponse(12) success I think it's just weird, and I'm beginning to guess a little source dive will do me some good. :-) -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 881 bytes Desc: OpenPGP digital signature URL: From eriberto at eriberto.pro.br Fri Feb 28 13:12:27 2014 From: eriberto at eriberto.pro.br (Eriberto) Date: Fri, 28 Feb 2014 10:12:27 -0300 Subject: [Dovecot] Windows 8 issues (using Live/Outlook) Message-ID: Hi! I am trying to make Windows 8 using Live 2012 and Outlook 2010 login in Dovecot POP3s. However, I receive this message in log: Feb 28 07:32:05 ipanema dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=10.0.0.10, lip=10.0.0.1, TLS handshaking: Disconnected, session= Note that user is sent as blank and this is the only log line. I used debug mode too: Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: elliptic curve secp384r1 will be used for ECDH and ECDHE key exchanges Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: elliptic curve secp384r1 will be used for ECDH and ECDHE key exchanges Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x10, ret=1: before/accept initialization [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2001, ret=1: before/accept initialization [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2001, ret=1: SSLv3 read client hello A [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2001, ret=1: SSLv3 write server hello A [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2001, ret=1: SSLv3 write certificate A [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2001, ret=1: SSLv3 write server done A [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2001, ret=1: SSLv3 flush data [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: pop3-login: Warning: SSL failed: where=0x2002: SSLv3 read client certificate A [10.0.0.10] Feb 28 09:07:07 ipanema dovecot: auth: Debug: Loading modules from directory: /usr/lib/dovecot/modules/auth Feb 28 09:07:07 ipanema dovecot: auth: Debug: Read auth token secret from /var/run/dovecot/auth-token-secret.dat Feb 28 09:07:07 ipanema dovecot: auth: Debug: auth client connected (pid=8138) Feb 28 09:07:07 ipanema dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=10.0.0.10, lip=10.0.0.1, TLS handshaking: Disconnected, session= Analysing the traffic with tshark, I can see: 0.007163 10.0.0.10 -> 10.0.0.1 TLSv1.2 331 Certificate, Server Hello Done I am using Dovecot 2.2.9 and I think it is TLS compatible. External (non-MS) clients, as Mozilla Thunderbird and Sylpheed, are working fine. Can someone point me a light? # 2.2.9: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4 Thanks in advanced. Regards, Eriberto From bind at enas.net Fri Feb 28 15:11:08 2014 From: bind at enas.net (Urban Loesch) Date: Fri, 28 Feb 2014 16:11:08 +0100 Subject: [Dovecot] Force SSL authentication per user basis Message-ID: <5310A70C.8010004@enas.net> Hi, I'm searching a way to force encrypted connections for POP3/IMAP on a per user basis. To not break clients which still connect in plaintext (there are still many of it) I must implement a mechanism to force encrypted connections on a per user basis. The users and passwords are stored in a mysql database. So there would be no problem to expand the database with a column like "ssl_tls" -> yes/no. The problem now: how can I get dovecot to process this field in the right way? I searched the list and googled about such a way, but I can't find any solution. My Dovecot version is 2.2.12. Many thanks and regards Urban Loesch From mvfreelancer at gmail.com Fri Feb 28 15:57:31 2014 From: mvfreelancer at gmail.com (MV) Date: Fri, 28 Feb 2014 15:57:31 +0000 Subject: [Dovecot] Logging authentication failures when Dovecot's auth service used to authenticate postfix smtpd In-Reply-To: References: Message-ID: Please ignore my previous email. I guess the lack of sleep has taken the best of me. What I was trying to achieve is, to have a log entry for every authentication attempted regardless of its success or failure. And from that log I should extract the client's IP. My setup authenticates imap and pop3 users through a "passwd-file" authentication database. And postfix is setup to authenticate submissions through the dovecot socket "auth". So far so good. Currently ("auth_verbose = yes" and "auth_debug = no") when a client connects to either imap, pop3 or submission/smtpd and fails to authenticate, Dovecot *immediately* logs the failure as below. auth: Info: passwd-file(...) ... auth: Info: plain(...) ... auth: Info: login(...) ... And when a client connects to either imap and pop3 successfully, Docecot *immediately* logs that too. The reason I enforce _immediately_ is because successful submission/smtpd authentications are not logged until after postfix receives the command "RCPT TO". And as such, the following sequence of commands will not be logged by Dovecot, and will only be logged as connect+disconnect by Postfix. connect to Postfix/Submission/587 Send EHLO... Send STARTTLS Send AUTH... Wait success Send QUIT Goto connect And below is what postfix's log will show after the commands above are executed by the remote client. ... postfix/smtpd[1234]: connect from host.domain.tld[0.0.0.0] ... postfix/smtpd[1234]: disconnect from host.domain.tld[0.0.0.0] ... postfix/smtpd[5678]: connect from host.domain.tld[0.0.0.0] ... postfix/smtpd[5678]: disconnect from host.domain.tld[0.0.0.0] So there's no trace in Postfix's log neither in Dovecot's log of the successful authentication because the client quit the connection after AUTH and before RCPT TO. And finally, in order to have every AUTH logged (imap, pop3 and smtpd) I could set auth_verbose=yes and auth_debug=yes and use syslog to discard the excess debug messages keeping only the line that reads auth: Debug: client in: AUTH ... rip=<...> ... or instead I could keep auth_verbose=yes and auth_debug=no and patch src/auth/auth-client-connection.c (see attachment). -------------- next part -------------- A non-text attachment was scrubbed... Name: auth-client-connection.patch Type: text/x-patch Size: 714 bytes Desc: not available URL: From h.reindl at thelounge.net Fri Feb 28 16:04:26 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Fri, 28 Feb 2014 17:04:26 +0100 Subject: [Dovecot] Logging authentication failures when Dovecot's auth service used to authenticate postfix smtpd In-Reply-To: References: Message-ID: <5310B38A.8040104@thelounge.net> Am 28.02.2014 16:57, schrieb MV: > Please ignore my previous email. I guess the lack of sleep has taken > the best of me. > > What I was trying to achieve is, to have a log entry for every > authentication attempted regardless of its success or failure. And > from that log I should extract the client's IP. > > My setup authenticates imap and pop3 users through a "passwd-file" > authentication database. And postfix is setup to authenticate > submissions through the dovecot socket "auth". So far so good. > > Currently ("auth_verbose = yes" and "auth_debug = no") when a client > connects to either imap, pop3 or submission/smtpd and fails to > authenticate, Dovecot *immediately* logs the failure as below. in case of SASL postfix is talking via a unix socket so there is no connection IP dovecot knows about service auth { unix_listener /var/spool/postfix/private/auth { mode = 0660 user = postfix group = postfix } } -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From mvfreelancer at gmail.com Fri Feb 28 17:05:52 2014 From: mvfreelancer at gmail.com (MV) Date: Fri, 28 Feb 2014 17:05:52 +0000 Subject: [Dovecot] Logging authentication failures when Dovecot's auth service used to authenticate postfix smtpd Message-ID: > in case of SASL postfix is talking via a unix socket so there is no connection IP dovecot knows about I don't not where Dovecot get the client IP from, but having auth socket in place, below is a redacted extract from my logs. As you can see Dovecot does know the client's IP. Dovecot config: auth_verbose = yes auth_debug = no # Dovecot log after submission/smtpd AUTH successful # Dovecot log after submission/smtpd AUTH failure ... auth: Info: passwd-file(joe at example.com,46.z.z.z): Password mismatch Dovecot config: auth_verbose = yes auth_debug = yes # Dovecot log after submission/smtpd AUTH successful ... auth: Debug: client in: AUTH 1 PLAIN service=smtp nologin lip=212.x.x.x rip=46.z.z.z secured resp= ... auth: Debug: passwd-file(joe at example.com,46.z.z.z): lookup: user=joe at example.com file=/etc/dovecot/virtual_users ... auth: Debug: client passdb out: OK 1 user=joe at example.com # Dovecot log after submission/smtpd AUTH failure ... auth: Debug: client in: AUTH 2 PLAIN service=smtp nologin lip=212.x.x.x rip=46.z.z.z secured resp= ... auth: Info: plain(?,46.z.z.z): invalid input ... auth: Debug: client passdb out: FAIL 2 And regardless of Docecot config, postfix always logs the same stuff # Postfix log after submission/smtpd AUTH successful (QUIT after AUTH without sending RCPT TO) ... postfix/smtpd[5678]: connect from host.client.foo.tld[46.z.z.z] ... postfix/smtpd[5678]: disconnect from host.client.foo.tld[46.z.z.z] # Postfix log after submission/smtpd AUTH failure ... postfix/smtpd[1234]: connect from host.client.foo.tld[46.z.z.z] ... postfix/smtpd[1234]: warning: host.client.foo.tld[46.z.z.z]: SASL PLAIN authentication failed: ... postfix/smtpd[1234]: disconnect from host.client.foo.tld[46.z.z.z] From bind at enas.net Fri Feb 28 17:06:26 2014 From: bind at enas.net (Urban Loesch) Date: Fri, 28 Feb 2014 18:06:26 +0100 Subject: [Dovecot] Force SSL authentication per user basis - SOLVED In-Reply-To: <5310A70C.8010004@enas.net> References: <5310A70C.8010004@enas.net> Message-ID: <5310C212.8040603@enas.net> Hi, I found the solution with "%c" variable. Thanks Urban Am 28.02.2014 16:11, schrieb Urban Loesch: > Hi, > > I'm searching a way to force encrypted connections for POP3/IMAP on a per user basis. > > To not break clients which still connect in plaintext (there are > still many of it) I must implement a mechanism to force encrypted connections > on a per user basis. > > The users and passwords are stored in a mysql database. So there would be no problem to > expand the database with a column like "ssl_tls" -> yes/no. > > The problem now: how can I get dovecot to process this field in the right way? > I searched the list and googled about such a way, but I can't find any solution. > > My Dovecot version is 2.2.12. > > Many thanks and regards > Urban Loesch >