From njriley at illinois.edu Sat Mar 1 19:01:29 2014 From: njriley at illinois.edu (Nicholas Riley) Date: Sat, 01 Mar 2014 13:01:29 -0600 Subject: [Dovecot] + prefix in dovecot-virtual Message-ID: Hi, The "+" prefix in dovecot-virtual does not seem to be documented. only discovered it because I tried to include a mailbox whose name began with + and Dovecot gave me an error when I tried to copy to it. I see it was added here: http://hg.dovecot.org/dovecot-2.2/rev/be0f0de75e34 My dovecot-virtual file looked like this: !+/2014-03 +/2014-02 all I just added another + to the second line and it seems to work. I don't care about \Recent thankfully but is there a better way to specify a mailbox whose name begins with +? Thanks. -- Nicholas Riley From maia at weiser.dk Sat Mar 1 20:53:28 2014 From: maia at weiser.dk (Kim Johansen) Date: Sat, 01 Mar 2014 21:53:28 +0100 Subject: [Dovecot] running postlogin script result in libgcc_s.so.1 must be installed for pthread_cancel to work Message-ID: <531248C8.4060900@weiser.dk> Hey, I try to run a postlogin script with: service pop3 { executable = pop3 postlogin } service postlogin { executable = script-login /etc/dovecot/popafter.sh user = $default_internal_user unix_listener postlogin { } } In my popafter.sh I call a php script, and that result in: dovecot: postlogin: Error: libgcc_s.so.1 must be installed for pthread_cancel to work dovecot: postlogin: Error: Aborted (core dumped) I have tried google it, but cannot find a solution there works for me, anybody who can help me? mail dovecot $ sudo dovecot -n # 2.0.19: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-59-generic x86_64 Ubuntu 12.04.4 LTS ext4 disable_plaintext_auth = no mail_location = maildir:/var/mail/vmail/%d/%n:INDEX=/var/mail/vmail/%d/%n/indexes mail_plugins = quota passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { quota = maildir:User quota quota_exceeded_message = The user you are trying to reach is over quota. quota_rule = *:bytes=100M quota_rule2 = INBOX.Trash:storage=+20%% } protocols = " imap lmtp pop3" service imap { executable = imap postlogin } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0600 user = postfix } } service pop3 { executable = pop3 postlogin } service postlogin { executable = script-login /etc/dovecot/popafter.sh user = $default_internal_user } ssl_cert = References: <531248C8.4060900@weiser.dk> Message-ID: <53127A55.4090004@myzel.net> Am 2014-03-01 21:53, schrieb Kim Johansen: > Hey, > > In my popafter.sh I call a php script, and that result in: > dovecot: postlogin: Error: libgcc_s.so.1 must be installed for > pthread_cancel to work > dovecot: postlogin: Error: Aborted (core dumped) > > I have tried google it, but cannot find a solution there works for me, > anybody who can help me? The first thing I would try in your place is to look if libgcc_s.so.1 is available on your system, and if not, then use the package manager of choice to install it. Did you do that already? -- peter From njriley at illinois.edu Sun Mar 2 03:37:50 2014 From: njriley at illinois.edu (Nicholas Riley) Date: Sat, 01 Mar 2014 21:37:50 -0600 Subject: [Dovecot] No speed improvement with FTS for iOS 7? Message-ID: Hi, I recompiled Dovecot with Lucene FTS to try to improve iOS 7 IMAP search speed. Unfortunately this does not seem to help. I have 60 mailboxes, totaling 300 MB; lucene-indexes is 30 MB in size. % doveadm mailbox status -t all '*' messages=16335 recent=0 unseen=1736 vsize=280049586 Searching for a single word which is present in two messages of one mailbox takes 40 seconds to return. This is true whether or not fts is enabled. doveadm search takes much less than 1 second to do the same search. % time doveadm search BODY cython d8f09230c97af952b60c0000c1443b93 1 d8f09230c97af952b60c0000c1443b93 2 doveadm search BODY cython 0.18s user 0.05s system 99% cpu 0.230 total With fts disabled, it takes about 6.5 seconds. This is still a long way from 40 seconds. Is there any way I can make dovecot perform better here? Thanks, -- Nicholas Riley From jcea at jcea.es Sun Mar 2 05:03:19 2014 From: jcea at jcea.es (Jesus Cea) Date: Sun, 02 Mar 2014 06:03:19 +0100 Subject: [Dovecot] Pluggable mailstore Message-ID: <5312BB97.8080902@jcea.es> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Reading the archives I see messages from a long (years) time ago discussing pluggable mailstores. No recent news, though. Any progress?. Current status? Regards - -- Jes?s Cea Avi?n _/_/ _/_/_/ _/_/_/ jcea at jcea.es - http://www.jcea.es/ _/_/ _/_/ _/_/ _/_/ _/_/ Twitter: @jcea _/_/ _/_/ _/_/_/_/_/ jabber / xmpp:jcea at jabber.org _/_/ _/_/ _/_/ _/_/ _/_/ "Things are not so easy" _/_/ _/_/ _/_/ _/_/ _/_/ _/_/ "My name is Dump, Core Dump" _/_/_/ _/_/_/ _/_/ _/_/ "El amor es poner tu felicidad en la felicidad de otro" - Leibniz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBCAAGBQJTEruXAAoJEGjgN61Khv5D0hMIAK8fH6Qu+fvliQXjpTFutJ9r nw86mVM5OjPtNKw3O4/0/SfiM+/36rrT53rThbb/guDAIkNwt05NgfIbjdd74jRw 8U+CzoG/fVDe9jV2tzy5UThogVALKSxj1+EQrTk3PwepF68NZYb+s1ZDrfga7LKG F0+wt+XGTga4hIIkPGHoEDCQHX5Z2VpZwItsPXIta1Dv+ObeJtVcv11xL6raf3R2 0FFF1fj0OcKuGFBNH9cKiFTq5jvHb3QzK2205VDpsv5rnNnYZT9pbFHrtZ3Qk6O9 nxKSQVjRjf2pGMo9mjD/qxq/LUQFUVkJFdeueN/Z9KWeqm6MC/n16GCYBYgWpXU= =LrP4 -----END PGP SIGNATURE----- From maia at weiser.dk Sun Mar 2 07:45:39 2014 From: maia at weiser.dk (Kim Johansen) Date: Sun, 02 Mar 2014 08:45:39 +0100 Subject: [Dovecot] running postlogin script result in libgcc_s.so.1 must be installed for pthread_cancel to work In-Reply-To: <53127A55.4090004@myzel.net> References: <531248C8.4060900@weiser.dk> <53127A55.4090004@myzel.net> Message-ID: <5312E1A3.3050802@weiser.dk> On 03/02/2014 01:24 AM, Peter Chiochetti wrote: > Am 2014-03-01 21:53, schrieb Kim Johansen: >> Hey, >> >> In my popafter.sh I call a php script, and that result in: >> dovecot: postlogin: Error: libgcc_s.so.1 must be installed for >> pthread_cancel to work >> dovecot: postlogin: Error: Aborted (core dumped) >> >> I have tried google it, but cannot find a solution there works for me, >> anybody who can help me? > > The first thing I would try in your place is to look if libgcc_s.so.1 > is available on your system, and if not, then use the package manager > of choice to install it. Did you do that already? > I should have put that into my email also. yes, it is on my system: /lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/lib32/libgcc_s.so.1 From pch at myzel.net Sun Mar 2 10:23:48 2014 From: pch at myzel.net (Peter Chiochetti) Date: Sun, 02 Mar 2014 11:23:48 +0100 Subject: [Dovecot] running postlogin script result in libgcc_s.so.1 must be installed for pthread_cancel to work In-Reply-To: <5312E1A3.3050802@weiser.dk> References: <531248C8.4060900@weiser.dk> <53127A55.4090004@myzel.net> <5312E1A3.3050802@weiser.dk> Message-ID: <531306B4.6020708@myzel.net> Am 2014-03-02 08:45, schrieb Kim Johansen: > > On 03/02/2014 01:24 AM, Peter Chiochetti wrote: >> Am 2014-03-01 21:53, schrieb Kim Johansen: >>> Hey, >>> >>> In my popafter.sh I call a php script, and that result in: >>> dovecot: postlogin: Error: libgcc_s.so.1 must be installed for >>> pthread_cancel to work >>> dovecot: postlogin: Error: Aborted (core dumped) >> >> The first thing I would try in your place is to look if libgcc_s.so.1 >> is available on your system, and if not, then use the package manager >> of choice to install it. Did you do that already? > > I should have put that into my email also. > > yes, it is on my system: > > /lib/x86_64-linux-gnu/libgcc_s.so.1 > /usr/lib32/libgcc_s.so.1 Are they both found by the linker? $ ldconfig -p | grep libgcc_s -- peter From michal.franczak at comarch.com Sun Mar 2 11:20:09 2014 From: michal.franczak at comarch.com (=?ISO-8859-2?Q?Micha=B3_Franczak?=) Date: Sun, 02 Mar 2014 12:20:09 +0100 Subject: [Dovecot] Dsync replication with LDAP and auth_bind=yes Message-ID: <531313E9.7090402@comarch.com> Hello, I have working dovecot configuration with LDAP based authentication in Active Directory. I'd like to use dsync replication but dovecot can't do user lookups. Is it possible to configure replication in such architecture? doveadm user '*' Returns only one local dovecot user. dovecot --version 2.2.10 My dovecot-ldap.conf look as follows: hosts = ad.domain.com:389 ldap_version = 3 auth_bind = yes dn = src_mail_ldap dnpass = somePass base = OU=users,DC=domain,DC=com scope = subtree deref = never user_filter = (&(userPrincipalName=%u)(objectClass=person)(!(userAccountControl:1.2.840.113556.1.4.803:=2))) pass_filter = (&(userPrincipalName=%u)(objectClass=person)(!(userAccountControl:1.2.840.113556.1.4.803:=2))) pass_attrs = userPassword=password default_pass_scheme = CRYPT user_attrs = =home=/var/vmail/vmail1/%Ld/%Ln/Maildir/,=mail=maildir:/var/vmail/vmail1/%Ld/%Ln/Maildir/ Best Regards -- Michal -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2197 bytes Desc: S/MIME Cryptographic Signature URL: From pch at myzel.net Sun Mar 2 12:16:18 2014 From: pch at myzel.net (Peter Chiochetti) Date: Sun, 02 Mar 2014 13:16:18 +0100 Subject: [Dovecot] No speed improvement with FTS for iOS 7? In-Reply-To: References: Message-ID: <53132112.7080602@myzel.net> Am 2014-03-02 04:37, schrieb Nicholas Riley: > Hi, > > I recompiled Dovecot with Lucene FTS to try to improve iOS 7 IMAP search > speed. > > Unfortunately this does not seem to help. > > I have 60 mailboxes, totaling 300 MB; lucene-indexes is 30 MB in size. > > % doveadm mailbox status -t all '*' > messages=16335 recent=0 unseen=1736 vsize=280049586 > > Searching for a single word which is present in two messages of one > mailbox takes 40 seconds to return. This is true whether or not fts is > enabled. you mean, from the IOS device? > doveadm search takes much less than 1 second to do the same search. > > % time doveadm search BODY cython > d8f09230c97af952b60c0000c1443b93 1 > d8f09230c97af952b60c0000c1443b93 2 > doveadm search BODY cython 0.18s user 0.05s system 99% cpu 0.230 total > > With fts disabled, it takes about 6.5 seconds. This is still a long way > from 40 seconds. > > Is there any way I can make dovecot perform better here? if its fast on the server, can you tell, whether the IOS device actually uses the server for searching? -- peter From h.reindl at thelounge.net Sun Mar 2 12:41:04 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Sun, 02 Mar 2014 13:41:04 +0100 Subject: [Dovecot] No speed improvement with FTS for iOS 7? In-Reply-To: <53132112.7080602@myzel.net> References: <53132112.7080602@myzel.net> Message-ID: <531326E0.6090905@thelounge.net> Am 02.03.2014 13:16, schrieb Peter Chiochetti: > Am 2014-03-02 04:37, schrieb Nicholas Riley: >> Hi, >> >> I recompiled Dovecot with Lucene FTS to try to improve iOS 7 IMAP search >> speed. >> >> Unfortunately this does not seem to help. >> >> I have 60 mailboxes, totaling 300 MB; lucene-indexes is 30 MB in size. >> >> % doveadm mailbox status -t all '*' >> messages=16335 recent=0 unseen=1736 vsize=280049586 >> >> Searching for a single word which is present in two messages of one >> mailbox takes 40 seconds to return. This is true whether or not fts is >> enabled https://discussions.apple.com/message/9504230#9504230 not the newest thread but "I don't think it is. I've never heard of any mail client being able to search IMAP messages stored remotely" shows the typical apple customer and so what apple needs to implement for sell -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From skdovecot at smail.inf.fh-brs.de Sun Mar 2 14:46:19 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen) Date: Sun, 02 Mar 2014 15:46:19 +0100 Subject: [Dovecot] running postlogin script result in libgcc_s.so.1 must be installed for pthread_cancel to work In-Reply-To: <5312E1A3.3050802@weiser.dk> References: <531248C8.4060900@weiser.dk> <53127A55.4090004@myzel.net> <5312E1A3.3050802@weiser.dk> Message-ID: <5313443B.3050801@smail.inf.fh-brs.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Kim Johansen wrote: > > On 03/02/2014 01:24 AM, Peter Chiochetti wrote: >> Am 2014-03-01 21:53, schrieb Kim Johansen: >>> Hey, >>> >>> In my popafter.sh I call a php script, and that result in: >>> dovecot: postlogin: Error: libgcc_s.so.1 must be installed for >>> pthread_cancel to work dovecot: postlogin: Error: Aborted (core >>> dumped) >>> >>> I have tried google it, but cannot find a solution there works >>> for me, anybody who can help me? >> >> The first thing I would try in your place is to look if >> libgcc_s.so.1 is available on your system, and if not, then use >> the package manager of choice to install it. Did you do that >> already? >> > > I should have put that into my email also. > > yes, it is on my system: > > /lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/lib32/libgcc_s.so.1 Check out https://bugzilla.redhat.com/show_bug.cgi?id=767094 I'm not sure why VSZ would trigger that error, but who knows? - -- Steffen -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) Comment: Using GnuPG with undefined - http://www.enigmail.net/ iQEVAwUBUxNEO3D1/YhP6VMHAQKEqQgA0YYamyGvVjiG/C8tq74l+vZrKXlZU0VM LSWi4+x/c0D+S6AqCnT1E6lnTfb+KFTRcxAOQW72iSNYMp7EQ/ivEiuAdtjaTG5N rhQCHrH31Q39dIITiEV+eJyakWx5xf5lQoHRB2CZkDe8Qa1zXRvyadxZdRPFW4/y Std3CIrdj6ej9wFbpz01ZJfTg17yKWtfX1A7J2WEgaC1QuXtmJn/HFBZ/U6skF/O P1gq8Pv/nesvd1dgM6aW9VX7hpUrBxf2Hw9kgExiv1D7s6V9bw4AQsnqpWxTyiM7 9MetROloIbNtDkYaQkpYGfid0f/YYnXHe+bxwAGehsO0BLV1cLJbsw== =fh3S -----END PGP SIGNATURE----- From njriley at illinois.edu Sun Mar 2 16:15:26 2014 From: njriley at illinois.edu (Nicholas Riley) Date: Sun, 02 Mar 2014 10:15:26 -0600 Subject: [Dovecot] No speed improvement with FTS for iOS 7? References: <53132112.7080602@myzel.net> Message-ID: In article <53132112.7080602 at myzel.net>, Peter Chiochetti wrote: > you mean, from the IOS device? Yes, sorry, from Mail on an iPhone 5S. > if its fast on the server, can you tell, whether the IOS device actually > uses the server for searching? Watching the logs, it makes many connections to the IMAP server (one per mailbox?), so yes, it is definitely using the server. Eventually it runs into the connection limit, closes all the connections then tries to open them all again. You can see the entire process takes about a minute. https://gist.github.com/nriley/8a0c2ea4a9d7773e340d I guess the next step is to figure out IMAP logging, but I was wondering if anyone else had had success with getting Dovecot to perform well in this scenario. From the response thus far it seems like the answer may be no. Thanks, -- Nicholas Riley From maia at weiser.dk Sun Mar 2 19:09:47 2014 From: maia at weiser.dk (Kim Johansen) Date: Sun, 02 Mar 2014 20:09:47 +0100 Subject: [Dovecot] running postlogin script result in libgcc_s.so.1 must be installed for pthread_cancel to work In-Reply-To: <5313443B.3050801@smail.inf.fh-brs.de> References: <531248C8.4060900@weiser.dk> <53127A55.4090004@myzel.net> <5312E1A3.3050802@weiser.dk> <5313443B.3050801@smail.inf.fh-brs.de> Message-ID: <531381FB.20306@weiser.dk> On 03/02/2014 03:46 PM, Steffen wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Kim Johansen wrote: >> On 03/02/2014 01:24 AM, Peter Chiochetti wrote: >>> Am 2014-03-01 21:53, schrieb Kim Johansen: >>>> Hey, >>>> >>>> In my popafter.sh I call a php script, and that result in: >>>> dovecot: postlogin: Error: libgcc_s.so.1 must be installed for >>>> pthread_cancel to work dovecot: postlogin: Error: Aborted (core >>>> dumped) >>>> >>>> I have tried google it, but cannot find a solution there works >>>> for me, anybody who can help me? >>> The first thing I would try in your place is to look if >>> libgcc_s.so.1 is available on your system, and if not, then use >>> the package manager of choice to install it. Did you do that >>> already? >>> >> I should have put that into my email also. >> >> yes, it is on my system: >> >> /lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/lib32/libgcc_s.so.1 > Check out https://bugzilla.redhat.com/show_bug.cgi?id=767094 > I'm not sure why VSZ would trigger that error, but who knows? > > - -- > Steffen > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.9 (Darwin) > Comment: Using GnuPG with undefined - http://www.enigmail.net/ > > iQEVAwUBUxNEO3D1/YhP6VMHAQKEqQgA0YYamyGvVjiG/C8tq74l+vZrKXlZU0VM > LSWi4+x/c0D+S6AqCnT1E6lnTfb+KFTRcxAOQW72iSNYMp7EQ/ivEiuAdtjaTG5N > rhQCHrH31Q39dIITiEV+eJyakWx5xf5lQoHRB2CZkDe8Qa1zXRvyadxZdRPFW4/y > Std3CIrdj6ej9wFbpz01ZJfTg17yKWtfX1A7J2WEgaC1QuXtmJn/HFBZ/U6skF/O > P1gq8Pv/nesvd1dgM6aW9VX7hpUrBxf2Hw9kgExiv1D7s6V9bw4AQsnqpWxTyiM7 > 9MetROloIbNtDkYaQkpYGfid0f/YYnXHe+bxwAGehsO0BLV1cLJbsw== > =fh3S > -----END PGP SIGNATURE----- > Thanks for all the suggestions. Here is a try to follow up on all of them: - the VSZ mem limit did not make any change on my system, I tried to raise it to 1024M, with no luck. - the linker sees the files fine: mail1 dovecot $ ldconfig -p | grep libgcc_s libgcc_s.so.1 (libc6,x86-64) => /lib/x86_64-linux-gnu/libgcc_s.so.1 libgcc_s.so.1 (libc6) => /usr/lib32/libgcc_s.so.1 mail1 dovecot $ - but I have had success with using a bash script instead of a PHP script, with a smaller foodprint as Jeroen suggested. So I think that is the solution is to rewrite the script to bash script. What I try to do it to convert password scheme to get et more secure, so I follow the guide from the wiki sites: http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes and here they have a PHP script. But thanks for the help. Kim From maciej.uhlig at us.edu.pl Sun Mar 2 19:49:49 2014 From: maciej.uhlig at us.edu.pl (Maciej Uhlig) Date: Sun, 02 Mar 2014 20:49:49 +0100 Subject: [Dovecot] running postlogin script result in libgcc_s.so.1 must be installed for pthread_cancel to work In-Reply-To: <531381FB.20306@weiser.dk> References: <531248C8.4060900@weiser.dk> <53127A55.4090004@myzel.net> <5312E1A3.3050802@weiser.dk> <5313443B.3050801@smail.inf.fh-brs.de> <531381FB.20306@weiser.dk> Message-ID: <53138B5D.7000602@us.edu.pl> Kim Johansen - 2014-03-02 20:09: > - but I have had success with using a bash script instead of a PHP script, with a smaller foodprint as Jeroen suggested. > So I think that is the solution is to rewrite the script to bash script. Some time ago I tried to get postlogin PHP script working without success (i don't remember what exactly was the problem though). What I did, was make postlogin shell script calling postlogin PHP script via exec. Something like this: #!/bin/sh set > /tmp/dovecot-environment echo "$@" > /tmp/dovecot-args exec /data/etc/dovecot/postlogin.php > /dev/null 2>&1 & exec "$@" This worked. MU -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 3354 bytes Desc: Kryptograficzna sygnatura S/MIME URL: From mysqlstudent at gmail.com Sun Mar 2 23:06:23 2014 From: mysqlstudent at gmail.com (Alex) Date: Sun, 2 Mar 2014 18:06:23 -0500 Subject: [Dovecot] Tracking logins Message-ID: Hi, I'm using dovecot-2.1.17 on fc18 and wondered if there is some mechanism, perhaps a database, that can store the logins/logouts for each user? I realize there's something already logged to syslog, but I'd like more of a history. While lastlog is great for users that actually login, my dovecot users don't login, just check email via pop and imap. Any ideas greatly appreciated. Thanks, Alex From h.reindl at thelounge.net Sun Mar 2 23:12:43 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 03 Mar 2014 00:12:43 +0100 Subject: [Dovecot] Tracking logins In-Reply-To: References: Message-ID: <5313BAEB.8010406@thelounge.net> Am 03.03.2014 00:06, schrieb Alex: > I'm using dovecot-2.1.17 on fc18 FC18 is EOL and it is unacceptable running a operating system with no security updates as mailserver and wondered if there is some > mechanism, perhaps a database, that can store the logins/logouts for > each user? I realize there's something already logged to syslog, but > I'd like more of a history. > > While lastlog is great for users that actually login, my dovecot users > don't login, just check email via pop and imap [root at srv-rhsoft:~]$ yum info rsyslog-mysql Geladene Plugins: etckeeper, protectbase, tsflags 0 packages excluded due to repository protections Installierte Pakete Name : rsyslog-mysql Architektur : x86_64 Version : 7.4.8 Ausgabe : 1.fc20 Gr??e : 16 k Quelle : installed Zusammenfassung: MySQL support for rsyslog URL : http://www.rsyslog.com/ Lizenz : (GPLv3+ and ASL 2.0) Beschreibung: The rsyslog-mysql package contains a dynamic shared object that will add : MySQL database support to rsyslog. [root at srv-rhsoft:~]$ cat /etc/redhat-release Fedora release 20 (Heisenbug) [root at srv-rhsoft:~]$ rpm -q dovecot dovecot-2.2.12-2.fc20.20140214.rh.x86_64 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From mysqlstudent at gmail.com Mon Mar 3 00:38:04 2014 From: mysqlstudent at gmail.com (Alex) Date: Sun, 2 Mar 2014 19:38:04 -0500 Subject: [Dovecot] Tracking logins In-Reply-To: <5313BAEB.8010406@thelounge.net> References: <5313BAEB.8010406@thelounge.net> Message-ID: Hi, > Am 03.03.2014 00:06, schrieb Alex: >> I'm using dovecot-2.1.17 on fc18 > > FC18 is EOL and it is unacceptable running a operating > system with no security updates as mailserver Yes, thanks, I know I have to update. The next update will probably be RHEL. >> While lastlog is great for users that actually login, my dovecot users >> don't login, just check email via pop and imap > > [root at srv-rhsoft:~]$ yum info rsyslog-mysql Is there a specific hook from dovecot to mysql that you can point me to? Thanks, Alex From h.reindl at thelounge.net Mon Mar 3 01:13:20 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 03 Mar 2014 02:13:20 +0100 Subject: [Dovecot] Tracking logins In-Reply-To: References: <5313BAEB.8010406@thelounge.net> Message-ID: <5313D730.1020603@thelounge.net> Am 03.03.2014 01:38, schrieb Alex: >> Am 03.03.2014 00:06, schrieb Alex: >>> I'm using dovecot-2.1.17 on fc18 >> >> FC18 is EOL and it is unacceptable running a operating >> system with no security updates as mailserver > > Yes, thanks, I know I have to update. The next update will probably be RHEL. your decision i went from F9 to F20 with every dist-upgrade between including the siwtch to systemd, UsrMove and grub2 >>> While lastlog is great for users that actually login, my dovecot users >>> don't login, just check email via pop and imap >> >> [root at srv-rhsoft:~]$ yum info rsyslog-mysql > > Is there a specific hook from dovecot to mysql that you can point me to? dovecot does not need to know about that dovecot -> syslog -> rsyslog -> mysql https://www.google.com/search?q=rsysog+mysql -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From rs at sys4.de Mon Mar 3 08:55:49 2014 From: rs at sys4.de (Robert Schetterer) Date: Mon, 03 Mar 2014 09:55:49 +0100 Subject: [Dovecot] Tracking logins In-Reply-To: References: Message-ID: <53144395.1040607@sys4.de> Am 03.03.2014 00:06, schrieb Alex: > Hi, > > > I'm using dovecot-2.1.17 on fc18 and wondered if there is some > mechanism, perhaps a database, that can store the logins/logouts for > each user? I realize there's something already logged to syslog, but > I'd like more of a history. > > While lastlog is great for users that actually login, my dovecot users > don't login, just check email via pop and imap. > > Any ideas greatly appreciated. > Thanks, > Alex > depending what you results you need, use i.e logwatch or take stuff out of syslog at logrotate time with a script like https://sys4.de/de/blog/2013/02/02/monitoring-dovecot-last-login-rsyslog/ https://sys4.de/en/blog/2013/01/10/xymon-dovecot-count-imap-pop3-logins-graph-central-rsyslog-server-ubuntu-lucid/ using syslog with db, or syslog analyser solutions like graylog2, logtash, also maybe fine http://8pussy.org/ http://sareport.darold.net/ also you might give stats plugin a try http://wiki2.dovecot.org/Statistics Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From juancarlos.sanchez at upm.es Mon Mar 3 13:05:30 2014 From: juancarlos.sanchez at upm.es (Juan Carlos Sanchez) Date: Mon, 03 Mar 2014 14:05:30 +0100 Subject: [Dovecot] maildir quota divergence In-Reply-To: <530F3D33.6050904@upm.es> References: <530F39B3.6090806@upm.es> <530F3D33.6050904@upm.es> Message-ID: <53147E1A.1030500@upm.es> Finally have found there is no divergence really. We are using zlib to compress mail, so the difference comes from that, as doveadm is calculating quotas with the original size of messages while system commands see the "real" compressed size. Best regards. El 27/02/2014 14:27, Juan Carlos Sanchez escribi?: > An addition. > It might be related to a recent upgrade from 2.0 branch to 2.1.17 > > Thanks in advance. > > El 27/02/2014 14:12, Juan Carlos Sanchez escribi?: >> Hello; >> >> We are using maildir quotas and have found differences in many users >> in respect to what system command are showing and doveadm quotas. >> >> For example, four user test, we have: >> >> doveadm quota get -u test >> Quota name Type Value >> Limit % >> STORAGE 98066 >> 102400 95 >> MESSAGE 883 >> - 0 >> >> But if we check user mail_location with "du" system command we get he >> is using 70458 Kb. >> >> We are running dovecot 2.1.17 >> >> ?any clue? >> >> Thanks in advance. >> > -- ------------------------------------------------------ Juan Carlos Sanchez Hernandez Responsable de Seguridad y Correo Electronico Servicio de Planificacion Informatica y Comunicaciones Universidad Politecnica de Madrid Rectorado Avda. Ramiro de Maeztu 7 28040 Madrid ------------------------------------------------------ From js at on2it.net Mon Mar 3 13:58:21 2014 From: js at on2it.net (Jeroen Scheerder) Date: Mon, 03 Mar 2014 14:58:21 +0100 Subject: [Dovecot] Dovecot, AD and authenticated binds... Message-ID: <83533353-004F-4E9A-BD7C-77B928B3DBE6@on2it.net> I posted earlier with reports of less than stellar success in using Active Directory for dovecot authentication. My approach is to using the two-step approach of - obtaining the user DN by a search using an authenticated bind (using a service account) - then binding as that DN, and returning the relevant user attributes This hasn't been succesful. Dovecot's authentication process does perform the (first) authenticated bind successfully, it does obtain the right DN, than just sits there doing nothing as far as I can tell, and after a long delay concludes authentication failure - shortly before deciding to perform the bind with the user-supplied credentials, successfully. Source inspection has not resulted in a glorious eureka yet. So I thought, why not handle it myself? And I wrote a little script, using the checkpassword interface. I've enclosed it. The script is based on , but somehow the userdb_uid and userdb_gid I've passed back in the "EXTRA" environment variable get lost along the way. It syslogs, and the syslogs show that the LDAP parts working as expected: Mar 3 14:49:09 ponyboy checkpassword: successful authenticated bind and DN(js) lookup Mar 3 14:49:09 ponyboy checkpassword: DN(js) is CN=Jeroen Scheerder,OU=Users,OU=Netherlands,OU=ON2IT,DC=office,DC=on2it,DC=net Mar 3 14:49:09 ponyboy checkpassword: js authenticated In dovecot's log, simultaneously, I see basically a successful login, except that the (user_)uid and (userdb_)gid work - unless I disable prefetch, and use a static userdb: Mar 03 14:49:04 auth: Debug: Loading modules from directory: /usr/local/lib/dovecot/auth Mar 03 14:49:04 auth: Debug: Read auth token secret from /var/run/dovecot/auth-token-secret.dat Mar 03 14:49:04 auth: Debug: auth client connected (pid=90856) Mar 03 14:49:09 auth: Debug: client in: AUTH 1 PLAIN service=imap secured session=+qFODbTzDgB/AAAB lip=127.0.0.1 rip=127.0.0.1 lport=143 rport=63246 resp= Mar 03 14:49:09 auth: Debug: checkpassword(js,127.0.0.1,<+qFODbTzDgB/AAAB>): execute: /usr/local/etc/dovecot/checkpassword-on2it /usr/local/libexec/dovecot/checkpassword-reply Mar 03 14:49:09 auth: Debug: checkpassword(js,127.0.0.1,<+qFODbTzDgB/AAAB>): Received input: userdb_uid=143 userdb_gid=143 Mar 03 14:49:09 auth: Debug: checkpassword(js,127.0.0.1,<+qFODbTzDgB/AAAB>): exit_status=0 Mar 03 14:49:09 auth: Debug: client passdb out: OK 1 user=js Mar 03 14:49:09 auth: Debug: master in: REQUEST 4007395329 90856 1 29571963894e557ab643d2e51872ba55 session_pid=90899 request_auth_token Mar 03 14:49:09 auth: Debug: prefetch(js,127.0.0.1,<+qFODbTzDgB/AAAB>): success Mar 03 14:49:09 auth: Debug: master userdb out: USER 4007395329 js uid=143 gid=143 auth_token=e2d7c2463dd4c039010e904afb4ea45214cb7de5 Mar 03 14:49:09 imap-login: Info: Login: user=, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=90899, secured, session=<+qFODbTzDgB/AAAB> Mar 03 14:49:09 imap: Error: user js: Mail access for users with UID 143 not permitted (see first_valid_uid in config file, uid from userdb lookup). Mar 03 14:49:09 imap: Error: Invalid user settings. Refer to server log for more information. With a static userdb (as shown in the config below): behold, everything works: Mar 03 14:52:49 auth: Debug: client in: AUTH 1 PLAIN service=imap secured session=R0plGrTzGAB/AAAB lip=127.0.0.1 rip=127.0.0.1 lport=143 rport=40984 resp= Mar 03 14:52:49 auth: Debug: checkpassword(js,127.0.0.1,): execute: /usr/local/etc/dovecot/checkpassword-on2it /usr/local/libexec/dovecot/checkpassword-reply Mar 03 14:52:49 auth: Debug: checkpassword(js,127.0.0.1,): Received input: userdb_uid=143 userdb_gid=143 Mar 03 14:52:49 auth: Debug: checkpassword(js,127.0.0.1,): exit_status=0 Mar 03 14:52:49 auth: Debug: client passdb out: OK 1 user=js Mar 03 14:52:49 auth: Debug: master in: REQUEST 2818310145 90960 1 1b6ea6c4e6b90fd49a87195c35fa34ef session_pid=91002 request_auth_token Mar 03 14:52:49 auth: Debug: master userdb out: USER 2818310145 js uid=1000 gid=1000 home=/var/mail/on2it/js auth_token=21609f5f149bf80dec701dce9f288824cdf52c60 Mar 03 14:52:49 imap-login: Info: Login: user=, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=91002, secured, session= Mar 03 14:53:04 imap(js): Info: Connection closed in=0 out=352 So it's working for me now. This is clearly not the way things ought to work... but the stock LDAP interaction seems broken to my limited mind. So who would be so friendly as to point out the fallacies I've been pursuing? Regards, Jeroen. $ dovecot -n # 2.2.10: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 10.0-RELEASE amd64 ufs auth_debug = yes auth_mechanisms = plain login auth_username_format = %Ln auth_verbose = yes first_valid_gid = 1000 first_valid_uid = 1000 imap_client_workarounds = delay-newmail last_valid_gid = 1000 last_valid_uid = 1000 log_path = /tmp/dovecot mail_gid = 1000 mail_location = maildir:/var/mail/on2it/%Ln mail_uid = 1000 maildir_very_dirty_syncs = yes namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /usr/local/etc/dovecot/checkpassword-on2it driver = checkpassword } protocols = imap service auth-worker { user = root } service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 } unix_listener auth-userdb { group = postfix mode = 0666 user = postfix } } service imap-login { inet_listener imap { port = 143 } } shutdown_clients = no ssl = no userdb { args = uid=1000 gid=1000 home=/var/mail/on2it/%Ln driver = static } valid_chroot_dirs = /var/mail/on2itn2it -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: checkpasswd URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 881 bytes Desc: OpenPGP digital signature URL: From gilles.celli at ecgs.lu Mon Mar 3 14:37:31 2014 From: gilles.celli at ecgs.lu (Gilles Celli) Date: Mon, 3 Mar 2014 15:37:31 +0100 Subject: [Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8 Message-ID: <1C9C8634-C43A-4D12-8CF6-AD46E6882A1A@ecgs.lu> Hi dovecot masters, This is my first post here, since I desperately need some advices from the dovecot community. I've tried to get an answer on the Apple Forums but til now no luck....here we go: I've tried to sync our users emails (Mac OS X Server 10.6.8 Snow Leopard with dovecot 1.1.20-apple0.5) via imapsync to our new server by using the masterusers authentication method on the old 10.6.8 server... The main problem on OS X Server 10.6.8 is that dovecot 1.1.20 uses the OD (OpenDirectory) driver (well I think), so that when following the directions of Master users/password from this page I can't login with the http://wiki1.dovecot.org/Authentication/MasterUsers I couldn't find anything on the OD driver directive....the dovecot 1.1.20-apple build doesn't even have the shadow driver built in (see below the dovecot --build-options), so that passdb shadow {} won't work anyway I always get NO Authentication failed, when trying the following: >telnet localhost 143 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. * OK Dovecot ready. 1 login user1*mailadmin PASSWORD 1 NO Authentication failed. I've tried also to add a Post-login scripting like described here, but no luck either: http://www.stefanux.de/wiki/doku.php/server/dovecot Does someone know how to fix my migration issue ? Any help is greatly appreciated. Gilles Here's my dovecot : >dovecotd --build-options Build options: ioloop=kqueue notify=kqueue ipv6 openssl Mail storages: maildir mbox dbox cydir raw SQL drivers: Passdb: checkpassword od pam passwd passwd-file Userdb: od passwd passwd-file prefetch static Here's my dovecot -n output: >dovecotd -n # 1.1.20apple0.5: /private/etc/dovecot/dovecot.conf Warning: fd limit 256 is lower than what Dovecot can use under full load (more than 306). Either grow the limit or change login_max_processes_count and max_mail_processes settings # OS: Darwin 10.8.0 i386 hfs base_dir: /var/run/dovecot syslog_facility: local6 protocols: pop3 imap pop3s imaps ssl_ca_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.chain.pem ssl_cert_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.cert.pem ssl_key_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.key.pem ssl_cipher_list: ALL:!LOW:!SSLv2:!aNULL:!ADH:!eNULL disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login login_user: _dovecot login_process_per_connection: no max_mail_processes: 50 mail_max_userip_connections(default): 20 mail_max_userip_connections(imap): 20 mail_max_userip_connections(pop3): 10 verbose_proctitle: yes first_valid_uid: 6 first_valid_gid: 6 mail_access_groups: mail mail_location: maildir:/var/spool/imap/dovecot/mail/%u mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_process_sharing: full mail_max_connections(default): 10 mail_max_connections(imap): 10 mail_max_connections(pop3): 5 mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 lda: postmaster_address: postmaster at example.com hostname: mymailserver.example.com mail_plugins: quota quota_full_tempfail: yes sendmail_path: /usr/sbin/sendmail auth_socket_path: /var/run/dovecot/auth-master log_path: /var/log/mailaccess.log info_log_path: /var/log/mailaccess.log auth default: mechanisms: plain login gssapi apop cram-md5 master_user_separator: * verbose: yes passdb: driver: passwd-file args: /etc/dovecot/passwd.masterusers pass: yes master: yes passdb: driver: od userdb: driver: od args: partition=/etc/dovecot/partition_map.conf enforce_quotas=no socket: type: listen master: path: /var/run/dovecot/auth-master mode: 384 user: _dovecot group: mail plugin: quota_warning: storage=100%% /usr/libexec/dovecot/quota-exceeded.sh quota_warning2: storage=90%% /usr/libexec/dovecot/quota-warning.sh quota: maildir:User quota sieve: /var/spool/imap/dovecot/sieve-scripts/%u/dovecot.sieve From list at grootstyr.eu Mon Mar 3 15:41:58 2014 From: list at grootstyr.eu (list at grootstyr.eu) Date: Mon, 3 Mar 2014 16:41:58 +0100 Subject: [Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8 In-Reply-To: <1C9C8634-C43A-4D12-8CF6-AD46E6882A1A@ecgs.lu> References: <1C9C8634-C43A-4D12-8CF6-AD46E6882A1A@ecgs.lu> Message-ID: <20140303154158.GA98178@clntbx.grootstyr.eu> Since you've defined verbose auth logging you should get some interesting log files about your failed login attempts that could point us in the right direction. Matthijs On Mon, Mar 03, 2014 at 03:37:31PM +0100, Gilles Celli wrote: > Hi dovecot masters, > > This is my first post here, since I desperately need some advices from the dovecot community. > I've tried to get an answer on the Apple Forums but til now no luck....here we go: > > I've tried to sync our users emails (Mac OS X Server 10.6.8 Snow Leopard with dovecot 1.1.20-apple0.5) via imapsync > to our new server by using the masterusers authentication method on the old 10.6.8 server... > > The main problem on OS X Server 10.6.8 is that dovecot 1.1.20 uses the OD (OpenDirectory) driver (well I think), > so that when following the directions of Master users/password from this page I can't login with the > http://wiki1.dovecot.org/Authentication/MasterUsers > > I couldn't find anything on the OD driver directive....the dovecot 1.1.20-apple build doesn't even have the shadow driver built in (see below the dovecot --build-options), > so that passdb shadow {} won't work anyway > > > I always get NO Authentication failed, when trying the following: > >telnet localhost 143 > Trying 127.0.0.1... > Connected to localhost. > Escape character is '^]'. > * OK Dovecot ready. > 1 login user1*mailadmin PASSWORD > 1 NO Authentication failed. > > I've tried also to add a Post-login scripting like described here, but no luck either: > http://www.stefanux.de/wiki/doku.php/server/dovecot > > Does someone know how to fix my migration issue ? > > Any help is greatly appreciated. > > Gilles > > Here's my dovecot : > > >dovecotd --build-options > Build options: ioloop=kqueue notify=kqueue ipv6 openssl > Mail storages: maildir mbox dbox cydir raw > SQL drivers: > Passdb: checkpassword od pam passwd passwd-file > Userdb: od passwd passwd-file prefetch static > > > Here's my dovecot -n output: > > >dovecotd -n > > # 1.1.20apple0.5: /private/etc/dovecot/dovecot.conf > Warning: fd limit 256 is lower than what Dovecot can use under full load (more than 306). Either grow the limit or change login_max_processes_count and max_mail_processes settings > # OS: Darwin 10.8.0 i386 hfs > base_dir: /var/run/dovecot > syslog_facility: local6 > protocols: pop3 imap pop3s imaps > ssl_ca_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.chain.pem > ssl_cert_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.cert.pem > ssl_key_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.key.pem > ssl_cipher_list: ALL:!LOW:!SSLv2:!aNULL:!ADH:!eNULL > disable_plaintext_auth: no > login_dir: /var/run/dovecot/login > login_executable(default): /usr/libexec/dovecot/imap-login > login_executable(imap): /usr/libexec/dovecot/imap-login > login_executable(pop3): /usr/libexec/dovecot/pop3-login > login_user: _dovecot > login_process_per_connection: no > max_mail_processes: 50 > mail_max_userip_connections(default): 20 > mail_max_userip_connections(imap): 20 > mail_max_userip_connections(pop3): 10 > verbose_proctitle: yes > first_valid_uid: 6 > first_valid_gid: 6 > mail_access_groups: mail > mail_location: maildir:/var/spool/imap/dovecot/mail/%u > mail_executable(default): /usr/libexec/dovecot/imap > mail_executable(imap): /usr/libexec/dovecot/imap > mail_executable(pop3): /usr/libexec/dovecot/pop3 > mail_process_sharing: full > mail_max_connections(default): 10 > mail_max_connections(imap): 10 > mail_max_connections(pop3): 5 > mail_plugins(default): quota imap_quota > mail_plugins(imap): quota imap_quota > mail_plugins(pop3): quota > mail_plugin_dir(default): /usr/lib/dovecot/imap > mail_plugin_dir(imap): /usr/lib/dovecot/imap > mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 > lda: > postmaster_address: postmaster at example.com > hostname: mymailserver.example.com > mail_plugins: quota > quota_full_tempfail: yes > sendmail_path: /usr/sbin/sendmail > auth_socket_path: /var/run/dovecot/auth-master > log_path: /var/log/mailaccess.log > info_log_path: /var/log/mailaccess.log > auth default: > mechanisms: plain login gssapi apop cram-md5 > master_user_separator: * > verbose: yes > passdb: > driver: passwd-file > args: /etc/dovecot/passwd.masterusers > pass: yes > master: yes > passdb: > driver: od > userdb: > driver: od > args: partition=/etc/dovecot/partition_map.conf enforce_quotas=no > socket: > type: listen > master: > path: /var/run/dovecot/auth-master > mode: 384 > user: _dovecot > group: mail > plugin: > quota_warning: storage=100%% /usr/libexec/dovecot/quota-exceeded.sh > quota_warning2: storage=90%% /usr/libexec/dovecot/quota-warning.sh > quota: maildir:User quota > sieve: /var/spool/imap/dovecot/sieve-scripts/%u/dovecot.sieve -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 834 bytes Desc: not available URL: From mysqlstudent at gmail.com Mon Mar 3 15:43:35 2014 From: mysqlstudent at gmail.com (Alex) Date: Mon, 3 Mar 2014 10:43:35 -0500 Subject: [Dovecot] Tracking logins In-Reply-To: <53144395.1040607@sys4.de> References: <53144395.1040607@sys4.de> Message-ID: Hi, >> I'm using dovecot-2.1.17 on fc18 and wondered if there is some >> mechanism, perhaps a database, that can store the logins/logouts for >> each user? I realize there's something already logged to syslog, but >> I'd like more of a history. >> >> While lastlog is great for users that actually login, my dovecot users >> don't login, just check email via pop and imap. >> >> Any ideas greatly appreciated. >> Thanks, >> Alex >> > > depending what you results you need, use i.e logwatch or take stuff out > of syslog at logrotate time with a script > > like > > https://sys4.de/de/blog/2013/02/02/monitoring-dovecot-last-login-rsyslog/ > > https://sys4.de/en/blog/2013/01/10/xymon-dovecot-count-imap-pop3-logins-graph-central-rsyslog-server-ubuntu-lucid/ > > using syslog with db, or syslog analyser solutions like graylog2, logtash, > > also maybe fine > > http://8pussy.org/ > http://sareport.darold.net/ > > > also you might give stats plugin a try > > http://wiki2.dovecot.org/Statistics Awesome, thanks guys. This is much more helpful than just telling me to google it - I was looking for something that was designed to actually do this before developing something that queries mysql from scratch, and this is a good start. Thanks, Alex > > Best Regards > MfG Robert Schetterer > > -- > [*] sys4 AG > > http://sys4.de, +49 (89) 30 90 46 64 > Franziskanerstra?e 15, 81669 M?nchen > > Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 > Vorstand: Patrick Ben Koetter, Marc Schiffbauer > Aufsichtsratsvorsitzender: Florian Kirstein From js at on2it.net Mon Mar 3 15:47:42 2014 From: js at on2it.net (Jeroen Scheerder) Date: Mon, 03 Mar 2014 16:47:42 +0100 Subject: [Dovecot] Dovecot, AD and authenticated binds... In-Reply-To: <83533353-004F-4E9A-BD7C-77B928B3DBE6@on2it.net> References: <83533353-004F-4E9A-BD7C-77B928B3DBE6@on2it.net> Message-ID: Quoth Jeroen Scheerder ( 3 Mar 2014, 14:58): > [checkpasswd.txt] In case anybody cares, I introduced a few bugs in prettyprinting it for the list (shame on me) and overlook a few LDA necessities. My own copy is fixed, but if anyone wants it I'll be glad to share. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 881 bytes Desc: OpenPGP digital signature URL: From gilles.celli at ecgs.lu Mon Mar 3 16:02:18 2014 From: gilles.celli at ecgs.lu (Gilles Celli) Date: Mon, 3 Mar 2014 17:02:18 +0100 Subject: [Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8 In-Reply-To: <20140303154158.GA98178@clntbx.grootstyr.eu> References: <1C9C8634-C43A-4D12-8CF6-AD46E6882A1A@ecgs.lu> <20140303154158.GA98178@clntbx.grootstyr.eu> Message-ID: If I do a: >telnet localhost 143 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. * OK Dovecot ready. 1 login myusername*masterAdmin masterAdminPassword 1 NO Authentication failed. 1 logout * BYE Logging out 1 OK Logout completed. Connection closed by foreign host. the only logging that I get is this one from /var/log/system.log Mar 3 16:54:22 mymailserver dovecot[38455]: auth(default): od(myusername,127.0.0.1): Credentials could not be verified username or password is invalid. On 03 Mar 2014, at 16:41, list at grootstyr.eu wrote: > Since you've defined verbose auth logging you should get some > interesting log files about your failed login attempts that could point > us in the right direction. > > Matthijs > > On Mon, Mar 03, 2014 at 03:37:31PM +0100, Gilles Celli wrote: >> Hi dovecot masters, >> >> This is my first post here, since I desperately need some advices from the dovecot community. >> I've tried to get an answer on the Apple Forums but til now no luck....here we go: >> >> I've tried to sync our users emails (Mac OS X Server 10.6.8 Snow Leopard with dovecot 1.1.20-apple0.5) via imapsync >> to our new server by using the masterusers authentication method on the old 10.6.8 server... >> >> The main problem on OS X Server 10.6.8 is that dovecot 1.1.20 uses the OD (OpenDirectory) driver (well I think), >> so that when following the directions of Master users/password from this page I can't login with the >> http://wiki1.dovecot.org/Authentication/MasterUsers >> >> I couldn't find anything on the OD driver directive....the dovecot 1.1.20-apple build doesn't even have the shadow driver built in (see below the dovecot --build-options), >> so that passdb shadow {} won't work anyway >> >> >> I always get NO Authentication failed, when trying the following: >>> telnet localhost 143 >> Trying 127.0.0.1... >> Connected to localhost. >> Escape character is '^]'. >> * OK Dovecot ready. >> 1 login user1*mailadmin PASSWORD >> 1 NO Authentication failed. >> >> I've tried also to add a Post-login scripting like described here, but no luck either: >> http://www.stefanux.de/wiki/doku.php/server/dovecot >> >> Does someone know how to fix my migration issue ? >> >> Any help is greatly appreciated. >> >> Gilles >> >> Here's my dovecot : >> >>> dovecotd --build-options >> Build options: ioloop=kqueue notify=kqueue ipv6 openssl >> Mail storages: maildir mbox dbox cydir raw >> SQL drivers: >> Passdb: checkpassword od pam passwd passwd-file >> Userdb: od passwd passwd-file prefetch static >> >> >> Here's my dovecot -n output: >> >>> dovecotd -n >> >> # 1.1.20apple0.5: /private/etc/dovecot/dovecot.conf >> Warning: fd limit 256 is lower than what Dovecot can use under full load (more than 306). Either grow the limit or change login_max_processes_count and max_mail_processes settings >> # OS: Darwin 10.8.0 i386 hfs >> base_dir: /var/run/dovecot >> syslog_facility: local6 >> protocols: pop3 imap pop3s imaps >> ssl_ca_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.chain.pem >> ssl_cert_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.cert.pem >> ssl_key_file: /etc/certificates/Default.DB14D82BF89A0DDCE123137BC94AEA0C94DDD838.key.pem >> ssl_cipher_list: ALL:!LOW:!SSLv2:!aNULL:!ADH:!eNULL >> disable_plaintext_auth: no >> login_dir: /var/run/dovecot/login >> login_executable(default): /usr/libexec/dovecot/imap-login >> login_executable(imap): /usr/libexec/dovecot/imap-login >> login_executable(pop3): /usr/libexec/dovecot/pop3-login >> login_user: _dovecot >> login_process_per_connection: no >> max_mail_processes: 50 >> mail_max_userip_connections(default): 20 >> mail_max_userip_connections(imap): 20 >> mail_max_userip_connections(pop3): 10 >> verbose_proctitle: yes >> first_valid_uid: 6 >> first_valid_gid: 6 >> mail_access_groups: mail >> mail_location: maildir:/var/spool/imap/dovecot/mail/%u >> mail_executable(default): /usr/libexec/dovecot/imap >> mail_executable(imap): /usr/libexec/dovecot/imap >> mail_executable(pop3): /usr/libexec/dovecot/pop3 >> mail_process_sharing: full >> mail_max_connections(default): 10 >> mail_max_connections(imap): 10 >> mail_max_connections(pop3): 5 >> mail_plugins(default): quota imap_quota >> mail_plugins(imap): quota imap_quota >> mail_plugins(pop3): quota >> mail_plugin_dir(default): /usr/lib/dovecot/imap >> mail_plugin_dir(imap): /usr/lib/dovecot/imap >> mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 >> lda: >> postmaster_address: postmaster at example.com >> hostname: mymailserver.example.com >> mail_plugins: quota >> quota_full_tempfail: yes >> sendmail_path: /usr/sbin/sendmail >> auth_socket_path: /var/run/dovecot/auth-master >> log_path: /var/log/mailaccess.log >> info_log_path: /var/log/mailaccess.log >> auth default: >> mechanisms: plain login gssapi apop cram-md5 >> master_user_separator: * >> verbose: yes >> passdb: >> driver: passwd-file >> args: /etc/dovecot/passwd.masterusers >> pass: yes >> master: yes >> passdb: >> driver: od >> userdb: >> driver: od >> args: partition=/etc/dovecot/partition_map.conf enforce_quotas=no >> socket: >> type: listen >> master: >> path: /var/run/dovecot/auth-master >> mode: 384 >> user: _dovecot >> group: mail >> plugin: >> quota_warning: storage=100%% /usr/libexec/dovecot/quota-exceeded.sh >> quota_warning2: storage=90%% /usr/libexec/dovecot/quota-warning.sh >> quota: maildir:User quota >> sieve: /var/spool/imap/dovecot/sieve-scripts/%u/dovecot.sieve From list at grootstyr.eu Mon Mar 3 20:48:39 2014 From: list at grootstyr.eu (list at grootstyr.eu) Date: Mon, 3 Mar 2014 21:48:39 +0100 Subject: [Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8 In-Reply-To: References: <1C9C8634-C43A-4D12-8CF6-AD46E6882A1A@ecgs.lu> <20140303154158.GA98178@clntbx.grootstyr.eu> Message-ID: <20140303204839.GA98864@clntbx.grootstyr.eu> Try getting more verbose logs using dovecot's logging mechanisms. auth_verbose=yes auth_debug=yes It seems that you aren't authenticating your master users against your passwd file, instead you are authenticating against your OpenDirectory. From asicofante at gmail.com Tue Mar 4 01:43:43 2014 From: asicofante at gmail.com (Aleve Sicofante) Date: Tue, 4 Mar 2014 02:43:43 +0100 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? Message-ID: I wish to know if someone knows an IMAP client (desktop or webmail) using Dovecot's virtual mailboxes as server-side search folders. Thanks. From asicofante at gmail.com Tue Mar 4 01:45:50 2014 From: asicofante at gmail.com (Aleve Sicofante) Date: Tue, 4 Mar 2014 02:45:50 +0100 Subject: [Dovecot] IMAP native METADATA already implemented? Message-ID: A year ago, more or less, I was told "Dovecot is getting close to having native METADATA support." How's this going? Thanks. From mihai at badici.ro Tue Mar 4 05:31:06 2014 From: mihai at badici.ro (Mihai Badici) Date: Tue, 04 Mar 2014 07:31:06 +0200 Subject: [Dovecot] IMAP native METADATA already implemented? In-Reply-To: References: Message-ID: <5052115.sxkyovvBcv@arhivio> On Tuesday 04 March 2014 02:45:50 Aleve Sicofante wrote: > A year ago, more or less, I was told "Dovecot is getting close to having > native METADATA support." How's this going? > > Thanks. It's working, starting with 2.2.7 as i remember. There are some changes in configuration files ( i posted some impressions one month ago on this list) but at the end it works. -- Mihai B?dici http://mihai.badici.ro From skdovecot at smail.inf.fh-brs.de Tue Mar 4 07:18:36 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 4 Mar 2014 08:18:36 +0100 (CET) Subject: [Dovecot] Windows 8 issues (using Live/Outlook) In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 28 Feb 2014, Eriberto wrote: > Feb 28 07:32:05 ipanema dovecot: pop3-login: Disconnected (no auth > attempts in 0 secs): user=<>, rip=10.0.0.10, lip=10.0.0.1, TLS > handshaking: Disconnected, session= > > Note that user is sent as blank and this is the only log line. I used > debug mode too: > > Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2002, > ret=-1: SSLv3 read client certificate A [10.0.0.10] > Feb 28 09:07:07 ipanema dovecot: pop3-login: Debug: SSL: where=0x2002, > ret=-1: SSLv3 read client certificate A [10.0.0.10] > Feb 28 09:07:07 ipanema dovecot: pop3-login: Warning: SSL failed: > where=0x2002: SSLv3 read client certificate A [10.0.0.10] > > I am using Dovecot 2.2.9 and I think it is TLS compatible. External > (non-MS) clients, as Mozilla Thunderbird and Sylpheed, are working > fine. > > Can someone point me a light? Does Windows trust your CA? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUxV+THD1/YhP6VMHAQJO0QgAtZphMeoIULp77Jr8//sJBQkaVxHhX27B /+1nf1qyQLXdB80sFyMFAHvVTuNGuW9FMyQ9LsbG07v5BJsUr3Phhp/Nhu+vYABw Yd2fuz/Uha9frWLf+I01riWcHgBOEpdsm2zMacXVkb4I6mo9E2Vhv1c5AW4UcIIN CCjKgPsCaayTtPGzGZ6CU+37ID8bfXAJTsB/MS2+dhHHQ8rlTTrC0s7UnNKltYm5 u9wUdkGGujQDQXHqcMoEY8uJWDjxze2YWRGL0veoC3G30Jr5sDdSfbV2ekRSt/+P ZePKCaC/aDjHptnPT6IjaxuedegRsh4vX0HZbF0XEFXXGP6QWYZriA== =Cs+O -----END PGP SIGNATURE----- From goetz.reinicke at filmakademie.de Tue Mar 4 08:03:00 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Tue, 04 Mar 2014 09:03:00 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 - BUG? - Solution In-Reply-To: <531046AB.4070307@filmakademie.de> References: <530EF326.9000504@filmakademie.de> <530EFBDE.9020805@filmakademie.de> <530F6270.5050403@smail.inf.fh-brs.de> <530F64ED.2080704@filmakademie.de> <531046AB.4070307@filmakademie.de> Message-ID: <531588B4.50800@filmakademie.de> Am 28.02.14 09:19, schrieb G?tz Reinicke - IT Koordinator: <...> Hi, thanks to all suggestions, but it looks like the long username (35 letters) causes that problem, that just one out of about 1.000 users cant log in. We shorted/changed the username to less than 35 letters and every thing is fine now. dovecot-2.2.10-1_14.el5 Red Hat Enterprise Linux Server release 5.10 CPU architecture x86_64 SMP Local Filesystem ext3 PAM authentication with ldap backend. May be that's a bug? Or feature? Regards . G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From rs at sys4.de Tue Mar 4 08:24:04 2014 From: rs at sys4.de (Robert Schetterer) Date: Tue, 04 Mar 2014 09:24:04 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 - BUG? - Solution In-Reply-To: <531588B4.50800@filmakademie.de> References: <530EF326.9000504@filmakademie.de> <530EFBDE.9020805@filmakademie.de> <530F6270.5050403@smail.inf.fh-brs.de> <530F64ED.2080704@filmakademie.de> <531046AB.4070307@filmakademie.de> <531588B4.50800@filmakademie.de> Message-ID: <53158DA4.2040705@sys4.de> Am 04.03.2014 09:03, schrieb G?tz Reinicke - IT Koordinator: > Am 28.02.14 09:19, schrieb G?tz Reinicke - IT Koordinator: > <...> > > Hi, thanks to all suggestions, but it looks like the long username (35 > letters) causes that problem, that just one out of about 1.000 users > cant log in. > > We shorted/changed the username to less than 35 letters and every thing > is fine now. > > dovecot-2.2.10-1_14.el5 > Red Hat Enterprise Linux Server release 5.10 > CPU architecture x86_64 SMP > Local Filesystem ext3 > PAM authentication with ldap backend. > > May be that's a bug? Or feature? > > Regards . G?tz > reading this http://www.rfc-editor.org/errata_search.php?rfc=3696&eid=1690 it should be a bug , until you did not go over the total max limit but you may look in ldap problems too, perhaps there is a limit too Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From eriberto at eriberto.pro.br Tue Mar 4 11:32:17 2014 From: eriberto at eriberto.pro.br (Eriberto) Date: Tue, 4 Mar 2014 08:32:17 -0300 Subject: [Dovecot] Windows 8 issues (using Live/Outlook) In-Reply-To: <53157e28.0989440a.6a22.1d63SMTPIN_ADDED_BROKEN@mx.google.com> References: <53157e28.0989440a.6a22.1d63SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: Yes, I imported the cacert. This not solved the problem. Thanks, Eriberto 2014-03-04 4:18 GMT-03:00 Steffen Kaiser : > > > Does Windows trust your CA? > From goetz.reinicke at filmakademie.de Tue Mar 4 12:21:07 2014 From: goetz.reinicke at filmakademie.de (=?ISO-8859-15?Q?G=F6tz_Reinicke_-_IT_Koordinator?=) Date: Tue, 04 Mar 2014 13:21:07 +0100 Subject: [Dovecot] Error "Initializing mail storage ..." after upgrading to 2.2.10 - BUG? - Solution In-Reply-To: <53158DA4.2040705@sys4.de> References: <530EF326.9000504@filmakademie.de> <530EFBDE.9020805@filmakademie.de> <530F6270.5050403@smail.inf.fh-brs.de> <530F64ED.2080704@filmakademie.de> <531046AB.4070307@filmakademie.de> <531588B4.50800@filmakademie.de> <53158DA4.2040705@sys4.de> Message-ID: <5315C533.3040009@filmakademie.de> Am 04.03.14 09:24, schrieb Robert Schetterer: > Am 04.03.2014 09:03, schrieb G?tz Reinicke - IT Koordinator: >> Am 28.02.14 09:19, schrieb G?tz Reinicke - IT Koordinator: >> <...> >> >> Hi, thanks to all suggestions, but it looks like the long username (35 >> letters) causes that problem, that just one out of about 1.000 users >> cant log in. >> >> We shorted/changed the username to less than 35 letters and every thing >> is fine now. >> >> dovecot-2.2.10-1_14.el5 >> Red Hat Enterprise Linux Server release 5.10 >> CPU architecture x86_64 SMP >> Local Filesystem ext3 >> PAM authentication with ldap backend. >> >> May be that's a bug? Or feature? >> >> Regards . G?tz62 >> > > reading this > > http://www.rfc-editor.org/errata_search.php?rfc=3696&eid=1690 > > it should be a bug , until you did not go over the total max limit > but you may look in ldap problems too, perhaps there is a limit too Thanks for your feedback, from that RFC Document it looks like we are save. 35 < 64 characters. However, the problem is solved when WE change the users login name, so for curiosity: what has been changed in the dovecot code? Regards . G?tz -- G?tz Reinicke IT-Koordinator Tel. +49 7141 969 82 420 E-Mail goetz.reinicke at filmakademie.de Filmakademie Baden-W?rttemberg GmbH Akademiehof 10 71638 Ludwigsburg www.filmakademie.de Eintragung Amtsgericht Stuttgart HRB 205016 Vorsitzender des Aufsichtsrats: J?rgen Walter MdL Staatssekret?r im Ministerium f?r Wissenschaft, Forschung und Kunst Baden-W?rttemberg Gesch?ftsf?hrer: Prof. Thomas Schadt -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5223 bytes Desc: S/MIME Cryptographic Signature URL: From dieterknopf at googlemail.com Tue Mar 4 12:48:36 2014 From: dieterknopf at googlemail.com (Dieter Knopf) Date: Tue, 4 Mar 2014 13:48:36 +0100 Subject: [Dovecot] Shared Namespace and correct location Message-ID: Hello again, i still have problems using a Shared Namespace in my configuration. I'm using Dovecot 2.2.9. mail_location = maildir:/home/vmail/%d/%n/MAILDIR:INDEX=/home/vmail/%d/%n/INDEX/ namespace inbox { type = private separator = / prefix = inbox = yes } This works create. But: namespace { type = shared separator = / prefix = shared/%%u/ location = maildir:/home/vmail/%%d/%%u/MAILDIR/shared:INDEX=/home/vmail/%d/%u/INDEXS/%%u subscriptions = no list = children } I'm still not sure how i can see a shared mailbox on a different account. I can add ACL rules and dovecot is adding SQL-Entries to the user-shares table. The dovecot-acl-list file is created too, hope this is okay (vfile + SQL) But i can't see the shared folder on the target account. I tried many location-pathes, but not sure how i can add the right folder. There must be a problem with %%d and %%u. Thank you very much, Dieter From sca at andreasschulze.de Tue Mar 4 14:55:21 2014 From: sca at andreasschulze.de (Andreas Schulze) Date: Tue, 04 Mar 2014 15:55:21 +0100 Subject: [Dovecot] IMAP native METADATA already implemented? In-Reply-To: <5052115.sxkyovvBcv@arhivio> References: <5052115.sxkyovvBcv@arhivio> Message-ID: <20140304155521.Horde.schLxqWIxJV1BiPnWSOuwQ1@horde.andreasschulze.de> Mihai Badici: >> It's working, starting with 2.2.7 as i remember. I could confirm. 2.2.10 works wonderful as horde preference backend ... Andreas From gilles.celli at ecgs.lu Tue Mar 4 15:33:51 2014 From: gilles.celli at ecgs.lu (Gilles Celli) Date: Tue, 4 Mar 2014 16:33:51 +0100 Subject: [Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8 In-Reply-To: <20140303204839.GA98864@clntbx.grootstyr.eu> References: <1C9C8634-C43A-4D12-8CF6-AD46E6882A1A@ecgs.lu> <20140303154158.GA98178@clntbx.grootstyr.eu> <20140303204839.GA98864@clntbx.grootstyr.eu> Message-ID: <6706B0BF-4D8C-4801-B800-E1C402E50337@ecgs.lu> Ok I've enabled dovecot's "auth_verbose" and "auth_debug" mode along with syslog facility to debug mode, so here's the output: 1. So first when trying to login with "myusername*master": #telnet mailserv.example.com 143 Connected to mailserv.example.com. Escape character is '^]'. * OK Dovecot ready. 1 login myusername*master myMasterPassword 1 NO Authentication failed. 1 logout * BYE Logging out 1 OK Logout completed. Connection closed by foreign host. It fails....here's then the debug logout: Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): client in: AUTH 14 PLAIN service=imap secured lip=127.0.0.1 rip=127.0.0.1 lport=143 rport=63994 resp=AGdpbGxlcyplY2dzYWRtaW4AdGVzdA== Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): passwd-file(master,127.0.0.1,master): lookup: user=master file=/etc/dovecot/passwd.masterusers Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): passdb(master,127.0.0.1,master): Master user logging in as myusername Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): mail SACL is enabled; overriding settings in user record Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): found user in local table: user=myusername Mar 4 16:09:14 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): Credentials could not be verified username or password is invalid. Mar 4 16:09:16 mailserv dovecot[9253]: auth(default): client out: FAIL 14 user=myusername Mar 4 16:09:24 mailserv dovecot[9253]: imap-login: Aborted login (auth failed, 1 attempts): user=, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured Mar 4 16:09:24 mailserv dovecot[9253]: auth(default): new auth connection: pid=9278 2. Well here's with "myusername" login, which is succesful: #telnet mailserv.example.com 143 Connected to mailserv.example.com. Escape character is '^]'. * OK Dovecot ready. 1 login myusername myPassword 1 OK Logged in. 1 logout * BYE Logging out 1 OK Logout completed. Connection closed by foreign host. Logout: Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): client in: AUTH 65 PLAIN service=imap secured lip=127.0.0.1 rip=127.0.0.1 lport=143 rport=64184 resp=AGdpbGxlcwB0PWcxbGwzc3B3IQ== Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): mail SACL is enabled; overriding settings in user record Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): found user in local table: user=myusername Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): client out: OK 65 user=myusername Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): master in: REQUEST 80 9276 65 Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): lookup user=myusername Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): found user in local table: user=myusername Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): record name=myusername, uid=1030, gid=20 Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): user=myusername, quota=*:storage=10240000 Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): od(myusername,127.0.0.1): data store location=maildir:/var/spool/imap/dovecot/mail/396B158B-27A9-4827-99AF-CBF65F85C407 Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): master out: USER 80 myusername uid=1030 gid=20 quota=maildir:User quota:noenforcing quota_rule=*:storage=10240000 mail=maildir:/var/spool/imap/dovecot/mail/396B158B-27A9-4827-99AF-CBF65F85C407 mail_location=maildir:/var/spool/imap/dovecot/mail/396B158B-27A9-4827-99AF-CBF65F85C407 sieve=/var/spool/imap/dovecot/sieve-scripts/396B158B-27A9-4827-99AF-CBF65F85C407/dovecot.sieve sieve_dir=/var/spool/imap/dovecot/sieve-scripts/396B158B-27A9-4827-99AF-CBF65F85C407 sieve_storage=/var/spool/imap/dovecot/sieve-scripts/396B158B-27A9-4827-99AF-CBF65F85C407 Mar 4 16:22:42 mailserv dovecot[9253]: imap-login: Login: user=, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured Mar 4 16:22:42 mailserv dovecot[9253]: auth(default): new auth connection: pid=9276 Mar 4 16:22:46 mailserv dovecot[9253]: IMAP(*): User myusername: Disconnected: Logged out bytes=8/43 Any thoughts ? Cheers, Gilles On 03 Mar 2014, at 21:48, list at grootstyr.eu wrote: > Try getting more verbose logs using dovecot's logging mechanisms. > auth_verbose=yes > auth_debug=yes > It seems that you aren't authenticating your master users against your > passwd file, instead you are authenticating against your OpenDirectory. From me at rvijay.me Tue Mar 4 16:59:42 2014 From: me at rvijay.me (Vijay Rajah) Date: Tue, 04 Mar 2014 22:29:42 +0530 Subject: [Dovecot] When does the replication run normally? In-Reply-To: References: Message-ID: <5316067E.6040300@rvijay.me> Daniel, Not sure if you had any response. There are 2 types of replication. (I'm assuming you have setup some sort of replication using dsync and are using 2.2+ version of dovecot) 1. Fast replication -- Only syncs new mails 2. Full replication. -- Does a FULL sync, and validates the currently replicated mails. The fast replication occurs whenever a mail arrives for a user. The full replication occurs based on "replication_full_sync_interval" setting in your config. The default for "replication_full_sync_interval" is 24 Hrs. (2.2rc2+) to check the status of replication use doveadm replicator status '*' -- This will give replication stats for all the users. (do not do this if you have a lot of users :-) ). -Thanks Vijay PS: I'm not an expert on Dovecot. This is based on my personal experience. On 28/02/14 2:25 PM, Daniel Thielemann wrote: > Hi, > > I got my manual dsync finally working and can replicate mails by initiate it from comandline (doveadm sync -u mail at domain.dom -d), > but it does not run by itself (per dovecot replication). When does dovecot invoke the replication normally? > > Thanks in advance > > Daniel From rlanore at cls.fr Tue Mar 4 17:05:51 2014 From: rlanore at cls.fr (Lanore Ronan) Date: Tue, 04 Mar 2014 18:05:51 +0100 Subject: [Dovecot] cyrus2dovecot and doveadm search,expunge Message-ID: <531607EF.9040003@cls.fr> hi list, i'am doing a migration from cyrus ( 2.1.17 ) to dovecot ( 2.1.7). for mailbox migration i'am using this script : http://cyrus2dovecot.sw.fu-berlin.de/ To migrate a mailbox : /usr/local/sbin/cyrus2dovecot.pl -C /data/migration/spool/%h/user/%u -D /data/mail/foo.bar/%u at foo.bar -U /data/migration/flags/%h/%u.sub -S /data/migration/flags/%h/%u.seen test Directories /data/migration/spool /data/migration/flags are rsynced with rsync -av --delete ... .... .... After mailbox end to migrate, i want to search all message savedbefore some days but this don't work doveadm search -u test at foo.bar mailbox inbox savedbefore 1d i'm sure this mailbox have mail before this days. ls into mailbox dir: -rw-r--r-- 1 siadmin siadmin 21662 Mar 3 15:54 1393858496.R2cdf6e55Q2902.server.foo.bar,S=21662,W=22160:2,a I don't understand why this message isn't printer by savedbefore 1d what i'm doing wrong thanks -- Ronan Lanore From CMarcus at Media-Brokers.com Tue Mar 4 17:21:23 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 04 Mar 2014 12:21:23 -0500 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: References: Message-ID: <53160B93.4020207@Media-Brokers.com> On 3/3/2014 8:43 PM, Aleve Sicofante wrote: > I wish to know if someone knows an IMAP client (desktop or webmail) using > Dovecot's virtual mailboxes as server-side search folders. I'm also interested in this. What I'd really like to see is support in Thunderbird for this. Thunderbird already has support for virtual folders, but I'd love to see this support extended to server-side virtual folders - ie, so Thunderbird could create and manage them directly on the server. From campbell at cnpapers.com Tue Mar 4 19:28:38 2014 From: campbell at cnpapers.com (Steve Campbell) Date: Tue, 04 Mar 2014 14:28:38 -0500 Subject: [Dovecot] No email since Feb 6 Message-ID: <53162966.70503@cnpapers.com> Is the list down or have I been blocked. From CMarcus at Media-Brokers.com Tue Mar 4 19:36:00 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 04 Mar 2014 14:36:00 -0500 Subject: [Dovecot] No email since Feb 6 In-Reply-To: <53162966.70503@cnpapers.com> References: <53162966.70503@cnpapers.com> Message-ID: <53162B20.5000304@Media-Brokers.com> On 3/4/2014 2:28 PM, Steve Campbell wrote: > Is the list down or have I been blocked. > List is not down (Replying All to send direct too)... -- Best regards, Charles From tolga at ozses.net Tue Mar 4 21:00:17 2014 From: tolga at ozses.net (Muzaffer Tolga Ozses) Date: Tue, 4 Mar 2014 23:00:17 +0200 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: <53160B93.4020207@Media-Brokers.com> References: <53160B93.4020207@Media-Brokers.com> Message-ID: Could you elaborate? I'm using virtual mailboxes, but I'm not sure if that's what you're talking about. If you mean no system accounts, that's my setup. On 4 March 2014 19:21, Charles Marcus wrote: > On 3/3/2014 8:43 PM, Aleve Sicofante wrote: > >> I wish to know if someone knows an IMAP client (desktop or webmail) using >> Dovecot's virtual mailboxes as server-side search folders. >> > > I'm also interested in this. What I'd really like to see is support in > Thunderbird for this. > > Thunderbird already has support for virtual folders, but I'd love to see > this support extended to server-side virtual folders - ie, so Thunderbird > could create and manage them directly on the server. > From ml+dovecot at moritz.augsburger.name Tue Mar 4 21:48:39 2014 From: ml+dovecot at moritz.augsburger.name (Moritz Augsburger) Date: Tue, 04 Mar 2014 21:48:39 +0000 Subject: [Dovecot] Hidden virtual folder Message-ID: <53164A37.6020309@moritz.augsburger.name> Hi, I wanted to create a virtual folder containing all unread messages and the threads they belong to, and this config works really fine: > dovecot.conf: namespace { type = private prefix = virtual/ separator = / location = virtual:~/Maildir/virtual:INDEX=MEMORY list = children subscriptions = no } > virtual/All/dovecot-virtual: * -Trash -Trash/* -Junk -Junk/* -Drafts -Drafts/* -virtual -virtual/* all > virtual/New/dovecot-virtual: virtual/All inthread refs or unseen recent The only problem I got is that scanning all files for the virtual/All mailbox takes too long, and I would like to keep them cached (no INDEX=MEMORY), so I thought I'll just put virtual/All inside a second virtual namespace. As it's a bad idea to open the All directory manually, I could also hide the complete namespace to the user. So I added the following to my config: namespace { type = private prefix = virtual-all/ separator = / location = virtual:~/Maildir/virtual-all/ hidden = yes list = no subscriptions = no } But sadly it didn't work, a directory virtual-all/ pops up inside my client (thunderbird/icedove). Is hidden=yes/list=no unsupported for virtual locations, or is it me misconfiguring dovecot? If it should matter, it's version 2.2.9, or more specific debian 1:2.2.9-1~bpo70+1. Thanks Moritz From asicofante at gmail.com Tue Mar 4 23:57:08 2014 From: asicofante at gmail.com (Aleve Sicofante) Date: Wed, 5 Mar 2014 00:57:08 +0100 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: References: <53160B93.4020207@Media-Brokers.com> Message-ID: I'm talking about this: http://wiki2.dovecot.org/Plugins/Virtual 2014-03-04 22:00 GMT+01:00 Muzaffer Tolga Ozses : > Could you elaborate? I'm using virtual mailboxes, but I'm not sure if > that's what you're talking about. If you mean no system accounts, that's my > setup. > > > On 4 March 2014 19:21, Charles Marcus wrote: > > > On 3/3/2014 8:43 PM, Aleve Sicofante wrote: > > > >> I wish to know if someone knows an IMAP client (desktop or webmail) > using > >> Dovecot's virtual mailboxes as server-side search folders. > >> > > > > I'm also interested in this. What I'd really like to see is support in > > Thunderbird for this. > > > > Thunderbird already has support for virtual folders, but I'd love to see > > this support extended to server-side virtual folders - ie, so Thunderbird > > could create and manage them directly on the server. > > > From jtam.home at gmail.com Wed Mar 5 01:08:23 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Tue, 4 Mar 2014 17:08:23 -0800 (PST) Subject: [Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8 In-Reply-To: References: Message-ID: On Tue, 4 Mar 2014, dovecot-request at dovecot.org wrote: > #telnet mailserv.example.com 143 > Connected to mailserv.example.com. > Escape character is '^]'. > * OK Dovecot ready. > 1 login myusername myPassword > 1 OK Logged in. > 1 logout > * BYE Logging out > 1 OK Logout completed. > Connection closed by foreign host. This does not test what you want, which is trying to authenticate the master user, not the regular user. From what I remember of your config, you have another passdb which holds the credentials of your master user: you need to check that file to make sure the master user's password (hash) matches what you think the master password ought to be. Joseph Tam From slusarz at curecanti.org Wed Mar 5 05:59:53 2014 From: slusarz at curecanti.org (Michael M Slusarz) Date: Tue, 04 Mar 2014 22:59:53 -0700 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: References: <53160B93.4020207@Media-Brokers.com> Message-ID: <20140304225953.Horde.CBOdsEvuH2Z-BbIJCWTQhA1@bigworm.curecanti.org> Quoting Aleve Sicofante : > I'm talking about this: http://wiki2.dovecot.org/Plugins/Virtual Every client can take advantage of them. From a client's perspective, they are just another IMAP mailbox. michael From dcouot at hotmail.com Wed Mar 5 10:26:43 2014 From: dcouot at hotmail.com (Dominique) Date: Wed, 5 Mar 2014 11:26:43 +0100 Subject: [Dovecot] Send and Bounced mail not appearing, depending on mail client Message-ID: Hi, I just installed Dovecot2 on Ubuntu 12.04 server with postfix and postfixadmin. I am using virtual users and virutal domains. When using Thunderbird, Roundcubemail,iOS mail application on an iPad2 or Kmail n Android, all mail sent and bounce shows up. However, when using vTigerCRM to send mails, nothing shows up - anywhere. I know the mail are being send - as per the mail.log and the various postfix log lines. But none of that is being captured by Dovecot... What am I missing? Thanks for any hints you can provide. Dominique --- This email is free from viruses and malware because avast! Antivirus protection is active. http://www.avast.com From sven at svenhartge.de Wed Mar 5 10:33:01 2014 From: sven at svenhartge.de (Sven Hartge) Date: Wed, 5 Mar 2014 11:33:01 +0100 Subject: [Dovecot] Send and Bounced mail not appearing, depending on mail client References: Message-ID: Dominique wrote: > I just installed Dovecot2 on Ubuntu 12.04 server with postfix and > postfixadmin. I am using virtual users and virutal domains. When > using Thunderbird, Roundcubemail,iOS mail application on an iPad2 or > Kmail n Android, all mail sent and bounce shows up. > However, when using vTigerCRM to send mails, nothing shows up - > anywhere. I know the mail are being send - as per the mail.log and the > various postfix log lines. But none of that is being captured by > Dovecot... > What am I missing? Dovecot does not "capture" mails sent via SMTP. The client has to upload them itself into the Sent folder. Normal mail clients like Thunderbird or Outlook do this if configured appropriately. Your CRM on the other hand is either not using IMAP (likely) or not configured correctly. Gr??e, Sven. -- Sigmentation fault. Core dumped. From js at on2it.net Wed Mar 5 10:33:49 2014 From: js at on2it.net (Jeroen Scheerder) Date: Wed, 05 Mar 2014 11:33:49 +0100 Subject: [Dovecot] Using AD, one more try - "successfol auth" and crashing auth process Message-ID: <8D7F40A6-13B3-452E-A91C-3807E7088B45@on2it.net> Hi, I have no success in using AD with dovecot. The little checkpassword script I cooked up that uses ldapsearch to lookup a user DN (with an authenticated bind) and then ldapsearch with an authenticated bind for that DN again works well. * Approach 1: use a service account to bind to AD, lookup the user DN, and bind to that DN. It fails. The LDAP config looks like: hosts = dc2.office.on2it.net ldap_version = 3 base = dc=office,dc=on2it,dc=net scope=subtree auth_bind = yes dn = CN=DovecotSvc,OU=Svcs,DC=office,DC=on2it,DC=net dnpass = suppressed pass_attrs = sAMAccountName=user pass_filter = (&(objectClass=person)(sAMAccountName=%u)) user_attrs = sAMAccountName=user user_filter = (&(objectClass=person)(sAMAccountName=%u)) What happens in this case is best shown in the packet capture as displayed by tshark: $ tshark -o tcp.check_checksum:FALSE -tr -r dc2.pcap 1 0.000000 172.17.50.13 -> 172.17.10.2 LDAP 197 bindRequest(7) "CN=DovecotSvc,OU=Svcs,DC=office,DC=on2it,DC=net" simple 2 0.001879 172.17.10.2 -> 172.17.50.13 LDAP 88 bindResponse(7) success Yay! The service account binds just fine. 3 0.001967 172.17.50.13 -> 172.17.10.2 LDAP 180 searchRequest(8) "dc=office,dc=on2it,dc=net" wholeSubtree 4 0.002772 172.17.10.2 -> 172.17.50.13 LDAP 502 searchResEntry(8) "CN=Jeroen Scheerder,OU=Users,DC=office,DC=on2it,DC=net" \ | searchResRef(8) | searchResRef(8) | searchResRef(8) | searchResDone(8) success 5 0.098367 172.17.50.13 -> 172.17.10.2 TCP 66 49416 > 389 [ACK] Seq=246 Ack=459 Win=1037 Len=0 TSval=602425599 TSecr=124473537 Yay! The user DN is found successfully. 6 225.149885 172.17.50.13 -> 172.17.10.2 LDAP 166 bindRequest(12) "CN=Jeroen Scheerder,OU=Users,DC=office,DC=on2it,DC=net" simple 7 225.152323 172.17.10.2 -> 172.17.50.13 LDAP 88 bindResponse(12) success 8 225.248387 172.17.50.13 -> 172.17.10.2 TCP 66 49416 > 389 [ACK] Seq=346 Ack=481 Win=1040 Len=0 TSval=602650749 TSecr=124496053 Yay! The user DN bind works. But wait, why is it taking dovecot 225 seconds to get around to trying it? The auth process has already given up. * Approach 2: A template defines the user DN. Bind to that DN. AD DNs don't contain usernames, but AD allows all kinds of non-LDAP shorthands for DNs, inclusing %user%@domain. I've verified this to work using ldapsearch: $ ldapsearch -o ldif-wrap=no -x -LLL -E pr=200/noprompt -H ldap://dc2.office.on2it.net \ -b dc=office,dc=on2it,dc=net -s sub \ -D js at office.on2it.net -W \ '(&(ObjectClass=person)(sAMAccountName=js))' DN Enter LDAP Password: dn: CN=Jeroen Scheerder,DC=office,DC=on2it,DC=net The config looks like: hosts = dc2.office.on2it.net ldap_version = 3 base = dc=office,dc=on2it,dc=net scope=subtree auth_bind = yes auth_bind_userdn = "%u at office.on2it.net" pass_attrs = sAMAccountName=user user_attrs = sAMAccountName=user What happens in this case is best shown by a snippet of dovecot logging: Mar 5 09:57:36 ponyboy dovecot: auth: Error: ldap(js,127.0.0.1,): ldap_search(base=dc=office,dc=on2it,dc=net filter=(&(objectClass=posixAccount)(uid=js))) failed: Operations error Mar 5 09:57:36 ponyboy dovecot: imap: Error: Disconnected from auth server, aborting (client-pid=7247 client-id=1) Mar 5 09:57:36 ponyboy dovecot: auth: Fatal: master: service(auth): child 7245 killed with signal 11 (core not dumped - set service auth { drop_priv_before_exec=yes }) Mar 5 09:57:36 ponyboy dovecot: imap-login: Internal login failure (pid=7247 id=1) (internal failure, 1 successful auths): user=, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=7248, secured, session= I find this intriguing -- "1 successful auths", so says imap-login, with auth dying horribly. I smell a rat. Something's wrong here... -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 881 bytes Desc: OpenPGP digital signature URL: From asicofante at gmail.com Wed Mar 5 11:23:41 2014 From: asicofante at gmail.com (Aleve Sicofante) Date: Wed, 5 Mar 2014 12:23:41 +0100 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: <20140304225953.Horde.CBOdsEvuH2Z-BbIJCWTQhA1@bigworm.curecanti.org> References: <53160B93.4020207@Media-Brokers.com> <20140304225953.Horde.CBOdsEvuH2Z-BbIJCWTQhA1@bigworm.curecanti.org> Message-ID: 2014-03-05 6:59 GMT+01:00 Michael M Slusarz : > Quoting Aleve Sicofante : > > I'm talking about this: http://wiki2.dovecot.org/Plugins/Virtual >> > > Every client can take advantage of them. From a client's perspective, > they are just another IMAP mailbox. > Of course any client would be able to "see" them once created somewhere else. The point is obviously finding a client capable of creating such virtual mailboxes from searches, labels, etc. From skdovecot at smail.inf.fh-brs.de Wed Mar 5 16:39:14 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 05 Mar 2014 17:39:14 +0100 Subject: [Dovecot] Shared Namespace and correct location In-Reply-To: References: Message-ID: <53175332.5080502@smail.inf.fh-brs.de> Dieter Knopf wrote: > Hello again, > > i still have problems using a Shared Namespace in my configuration. > > I'm using Dovecot 2.2.9. > > mail_location = > maildir:/home/vmail/%d/%n/MAILDIR:INDEX=/home/vmail/%d/%n/INDEX/ ^^^^^^^^^^^^^^^^ > namespace inbox { > type = private > separator = / > prefix = > inbox = yes > } > > This works create. > > But: > namespace { > type = shared > separator = / > prefix = shared/%%u/ > location = > maildir:/home/vmail/%%d/%%u/MAILDIR/shared:INDEX=/home/vmail/%d/%u/INDEXS/%%u ^^^^^^^^^^^^^^ The paths don't match > subscriptions = no > list = children > } > I tried many location-pathes, but not sure how i can add the right folder. > There must be a problem with %%d and %%u. Check out my response to "Re: [Dovecot] Shared Folters with LDA/Sieve" from 19.01.2014 17:20. -- Steffen From thanhlong.dang at multidist.com Wed Mar 5 16:39:58 2014 From: thanhlong.dang at multidist.com (Thanh Long DANG) Date: Wed, 5 Mar 2014 16:39:58 +0000 Subject: [Dovecot] Bounce messages Message-ID: Hi, I just set up my mail server using postfix / dovecot / mysql and it works well. I just have a problem : I'm a trying to have a overquota notification and the server sends nothing (mail server rejects incoming mail). Could you tell me if there is a problem with dovecot or postfix configuration? Kind regards,Long My conf : # 2.1.7: /etc/dovecot/dovecot.conf# OS: Linux 2.6.32-26-pve x86_64 Debian 7.2 simfsauth_mechanisms = plain logindebug_log_path = /var/log/dovecot-debug.logdict { quotadict = mysql:/etc/dovecot/dovecot-dict-sql.conf}disable_plaintext_auth = noinfo_log_path = /var/log/dovecot-info.loglog_path = /var/log/dovecot.logmail_location = maildir:/home/vmail/%d/%n:INDEX=/home/vmail/%d/%n/indexesnamespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix =}passdb { args = /etc/dovecot/dovecot-mysql.conf.ext driver = sql}plugin { quota = maildir:User quota quota_exceeded_message = Storage quota for this account has been exceeded, please try again later. quota_rule = *:storage=1G quota_rule2 = Trash:storage=+30%% quota_rule3 = Sent:storage=+30%% quota_warning = storage=90%% quota-warning 90 %u quota_warning2 = storage=75%% quota-warning 75 %u sieve = ~/.dovecot.sieve sieve_dir = ~/sieve}postmaster_address = postmaster at multidist.euprotocols = " imap lmtp pop3"quota_full_tempfail = yesrejection_subject = Rejet: %sservice auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 }}service dict { unix_listener dict { mode = 0777 }}service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0666 user = postfix }}service quota-warning { executable = script /usr/local/bin/quota-warning.sh unix_listener quota-warning { mode = 0777 }}ssl_cert = References: <53160B93.4020207@Media-Brokers.com> <20140304225953.Horde.CBOdsEvuH2Z-BbIJCWTQhA1@bigworm.curecanti.org> Message-ID: <20140305110721.Horde.rBUALZuYgXODdgw_Is8o2w1@bigworm.curecanti.org> Quoting Aleve Sicofante : > 2014-03-05 6:59 GMT+01:00 Michael M Slusarz : > >> Quoting Aleve Sicofante : >> >> I'm talking about this: http://wiki2.dovecot.org/Plugins/Virtual >>> >> >> Every client can take advantage of them. From a client's perspective, >> they are just another IMAP mailbox. >> > > Of course any client would be able to "see" them once created somewhere > else. The point is obviously finding a client capable of creating such > virtual mailboxes from searches, labels, etc. You are misinterpreting what the Dovecot virtual plugin does. It allows an admin to create virtual mailboxes. It does not provide a client with any ability to alter edit/those mailboxes. We've had virtual mailboxes in our client for 10+ years (i.e. client displays a "fake" mailbox that is generated via server-side search actions). That's the only 100% reliable way to implement this across IMAP servers. RFC 5466 can be used for this on the IMAP side, but there's not really any server-side support for it so it is not a viable option at this time. michael From campbell at cnpapers.com Wed Mar 5 20:23:34 2014 From: campbell at cnpapers.com (Steve Campbell) Date: Wed, 05 Mar 2014 15:23:34 -0500 Subject: [Dovecot] Still no emails since Feb. 6 Message-ID: <531787C6.4000900@cnpapers.com> I checked my settings on the dovecot mailman page, and although my account was set to "disable" email, after changing it and attempting to have the list resend my password, I'm still not seeing emails. The last time I received emails, the outgoing server for the list was sent from the IP 193.210.130.67. Is that still correct? I've checked my logs to see if there's anything blocked, and I don't see anything. I've checked my access file and firewall, and nothing is blocked there. I'm not sure why my account settings showed "disabled", but it sounds like email was either bounced back to the list or my server is in some type of outgoing list to prevent sending to me. I'm at a loss. Is there any way an admin can check for me, please, to see if there's a problem they might spot? Thanks, steve From genie at geniechka.ru Wed Mar 5 20:34:43 2014 From: genie at geniechka.ru (Eugene R) Date: Thu, 6 Mar 2014 00:34:43 +0400 Subject: [Dovecot] Still no emails since Feb. 6 In-Reply-To: <531787C6.4000900@cnpapers.com> References: <531787C6.4000900@cnpapers.com> Message-ID: <59E47BF96AF04D9EBFEFE15086475DEE@geniepc2011> Hi Steve, Looks like the originating server is currently wursti.dovecot.fi [87.106.245.223] Indeed, there is a mail from Timo on Feb 7 about moving the server =) Do you really filter by IP? Best wishes Eugene -----Original Message----- From: Steve Campbell Sent: Thursday, March 06, 2014 12:23 AM To: dovecot at dovecot.org Subject: [Dovecot] Still no emails since Feb. 6 I checked my settings on the dovecot mailman page, and although my account was set to "disable" email, after changing it and attempting to have the list resend my password, I'm still not seeing emails. The last time I received emails, the outgoing server for the list was sent from the IP 193.210.130.67. Is that still correct? I've checked my logs to see if there's anything blocked, and I don't see anything. I've checked my access file and firewall, and nothing is blocked there. I'm not sure why my account settings showed "disabled", but it sounds like email was either bounced back to the list or my server is in some type of outgoing list to prevent sending to me. I'm at a loss. Is there any way an admin can check for me, please, to see if there's a problem they might spot? Thanks, steve From genie at geniechka.ru Wed Mar 5 20:37:41 2014 From: genie at geniechka.ru (Eugene R) Date: Thu, 6 Mar 2014 00:37:41 +0400 Subject: [Dovecot] Still no emails since Feb. 6 In-Reply-To: <531787C6.4000900@cnpapers.com> References: <531787C6.4000900@cnpapers.com> Message-ID: <88809A510CC6478FBFD238FF6D748A10@geniepc2011> Got access denied for direct mail: : host mailserver2.cnpapers.net[216.12.119.162] said: 550 5.7.1 Access denied (in reply to MAIL FROM command) Well, this is now really off-topic for the list (local config error). Sorry to bother people -----Original Message----- From: Steve Campbell Sent: Thursday, March 06, 2014 12:23 AM To: dovecot at dovecot.org Subject: [Dovecot] Still no emails since Feb. 6 I checked my settings on the dovecot mailman page, and although my account was set to "disable" email, after changing it and attempting to have the list resend my password, I'm still not seeing emails. The last time I received emails, the outgoing server for the list was sent from the IP 193.210.130.67. Is that still correct? I've checked my logs to see if there's anything blocked, and I don't see anything. I've checked my access file and firewall, and nothing is blocked there. I'm not sure why my account settings showed "disabled", but it sounds like email was either bounced back to the list or my server is in some type of outgoing list to prevent sending to me. I'm at a loss. Is there any way an admin can check for me, please, to see if there's a problem they might spot? Thanks, steve From dovecot at voidptr.de Wed Mar 5 22:41:32 2014 From: dovecot at voidptr.de (dovecot at voidptr.de) Date: Wed, 5 Mar 2014 23:41:32 +0100 Subject: [Dovecot] Pigeonhole Sieve Extprograms Plugin Message-ID: <20140305224131.GA4714@voidptr.de> Hi, I upgraded to Dovecot 2.2.9 from Debian's wheezy-backports today (which should contain the "sieve_extprograms" plugin and thus also the vnd.dovecot.{pipe,filter,execute} capabilities. However when I add require "vnd.dovecot.filter"; to my sieve script via managesieve, the server reports error: require command: unknown Sieve capability: 'vnd.dovecot.filter' What am I missing and what should I do to get pipe/filter/execute to work? postconf -n attached. Nils -------------- next part -------------- # 2.2.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-042stab084.14 x86_64 Debian 7.4 auth_verbose = yes mail_location = maildir:~/Maildir:LAYOUT=fs managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { inbox = yes location = mailbox Drafts { auto = subscribe special_use = \Drafts } mailbox Junk { auto = subscribe special_use = \Junk } mailbox Sent { auto = subscribe special_use = \Sent } mailbox Trash { auto = subscribe special_use = \Trash } prefix = subscriptions = yes } passdb { args = scheme=SHA512-CRYPT username_format=%n /etc/dovecot/users driver = passwd-file } plugin { sieve = ~/.dovecot.sieve sieve_default = /var/lib/dovecot/sieve/default.sieve sieve_dir = ~/sieve sieve_global_dir = /var/lib/dovecot/sieve/ } protocols = " imap sieve" service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 } } service imap-login { inet_listener imaps { port = 0 } } ssl = required ssl_cert = References: <20140305224131.GA4714@voidptr.de> Message-ID: <5317AFBF.4030501@thinline.cz> Hi, I think you are missing something along these lines: plugin { sieve_plugins = sieve_extprograms sieve_global_extensions = +vnd.dovecot.filter sieve_extensions = +vnd.dovecot.filter } Also, I'm not sure what wheezy-backports package does, but the same version of Dovecot for Jessie looks for sieve plugins libraries under /usr/lib/dovecot/modules/sieve directory, whereas the dovecot-sieve package puts them into /usr/lib/dovecot/modules, causing Dovecot to throw errors (as it's unable to find them.) Made it work by creating a symlink /usr/lib/dovecot/modules/sieve pointing to ../modules. I suspect this can cause breakage during dovecot-sieve update (if they ever get to put those files to the right place), so better watch that. J. dovecot at voidptr.de wrote: > Hi, > > I upgraded to Dovecot 2.2.9 from Debian's wheezy-backports today (which > should contain the "sieve_extprograms" plugin and thus also the > vnd.dovecot.{pipe,filter,execute} capabilities. > > However when I add > require "vnd.dovecot.filter"; > to my sieve script via managesieve, the server reports > error: require command: unknown Sieve capability: 'vnd.dovecot.filter' > > What am I missing and what should I do to get pipe/filter/execute to > work? > > postconf -n attached. > > Nils From asicofante at gmail.com Thu Mar 6 07:28:42 2014 From: asicofante at gmail.com (Aleve Sicofante) Date: Thu, 6 Mar 2014 08:28:42 +0100 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: <20140305110721.Horde.rBUALZuYgXODdgw_Is8o2w1@bigworm.curecanti.org> References: <53160B93.4020207@Media-Brokers.com> <20140304225953.Horde.CBOdsEvuH2Z-BbIJCWTQhA1@bigworm.curecanti.org> <20140305110721.Horde.rBUALZuYgXODdgw_Is8o2w1@bigworm.curecanti.org> Message-ID: 2014-03-05 19:07 GMT+01:00 Michael M Slusarz : > Quoting Aleve Sicofante : > > 2014-03-05 6:59 GMT+01:00 Michael M Slusarz : >> >> Quoting Aleve Sicofante : >>> >>> I'm talking about this: http://wiki2.dovecot.org/Plugins/Virtual >>> >>>> >>>> >>> Every client can take advantage of them. From a client's perspective, >>> they are just another IMAP mailbox. >>> >>> >> Of course any client would be able to "see" them once created somewhere >> else. The point is obviously finding a client capable of creating such >> virtual mailboxes from searches, labels, etc. >> > > You are misinterpreting what the Dovecot virtual plugin does. It allows > an admin to create virtual mailboxes. It does not provide a client with > any ability to alter edit/those mailboxes. > > We've had virtual mailboxes in our client for 10+ years (i.e. client > displays a "fake" mailbox that is generated via server-side search > actions). That's the only 100% reliable way to implement this across IMAP > servers. > > RFC 5466 can be used for this on the IMAP side, but there's not really any > server-side support for it so it is not a viable option at this time. > I see. Well, that sounds pretty useless to me. I urge whoever designed the plugin to make it client-oriented. It will be much more useful. From alan at chandlerfamily.org.uk Thu Mar 6 07:48:15 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Thu, 06 Mar 2014 07:48:15 +0000 Subject: [Dovecot] Struggling with antispam Message-ID: <5318283F.3000801@chandlerfamily.org.uk> I have a dovecot installation I am building on a raspberry pi for a mail server for the home. I am almost there, everything bar one thing is working. In simple terms dovecot is the authentication agent and the lda (using lmtp) for postfix. My maildir mailboxed at at /var/mail - location and accounts controlled by a small sqlite database. the uid for these mailboxes are 10001 and up and are not mapped to any account on the system. The sieve plugin is working and I have a default script which works to archive outgoing mail, returned via postfix sender_bcc_maps to user+saveout into a Sent subfolder organised by date. postfix also uses milters, to do spf, and dkim checking - and most importantly from this posts perspective passes all mail through dspam, adding an X-DSPAM-Signature header as it passes through. I plan to use another default sieve script to move mail based on the X-DPAM-Result header to move messages to the users Junk folder (when I can get antispam working). I want to use the antispam plugin to pick up users moving mail in and out of their Junk folder to train dspam. I initially tried using antispam's dspam backend. However I could not get it to work. I "think" the issue is that antispam is running with uid 10001 when it does this, and dspam will not process the message because it can't find this uid as a system user. But I am not sure. The approach I am trying now, is use the pipe backend to send mail to spam at chandlerfamily.org.uk or ham at chandlerfamily.org.uk - and via postfix manipulations get that to call dspam as user dspam. If I run as root and use sendmail -bv to check that it works I get a delivery report that shows that it would indeed arrive at dspam I have a file in /var/spool/dspam called group which has dpsam:shared:* In it so that all users share the same dictionary. However, when I try to make this work with anitspam, I keep getting failure, and I can't work out what is causing it. Maybe its again because I am running with uid 10001 when calling sendmail but I don't know. antispam config is plugin { antispam_debug_target = syslog antispam_verbose_debug = 1 antispam_backend = pipe antispam_signature = X-DSPAM-Signature antispam_signature_missing = error antispam_trash = Trash antispam_spam = Junk antispam_pipe_program=/usr/bin/sendmail antispam_pipe_program_args=-f;dspam at chandlerfamily.org.uk antispam_pipe_program_spam_args=spam at chandlerfamily.org.uk antispam_pipe_program_notspam_args=ham at chandlerfamily.org.uk } And what appears in syslog as a result of moving a mail from my INBOX to the Junk folder in thunderbird is ... Mar 6 06:52:38 piserver imap: antispam: plugin initialising (2.0-notgit) Mar 6 06:52:38 piserver imap: antispam: verbose debug enabled Mar 6 06:52:38 piserver imap: antispam: "Junk" is exact match spam folder Mar 6 06:52:38 piserver imap: antispam: no unsure folders Mar 6 06:52:38 piserver imap: antispam: "Trash" is exact match trash folder Mar 6 06:52:38 piserver imap: antispam: pipe backend spam arg[0] = spam at chandlerfamily.org.uk Mar 6 06:52:38 piserver imap: antispam: pipe backend ham arg[0] = ham at chandlerfamily.org.uk Mar 6 06:52:38 piserver imap: antispam: pipe backend program = /usr/bin/sendmail Mar 6 06:52:38 piserver imap: antispam: pipe backend program arg[0] = -f Mar 6 06:52:38 piserver imap: antispam: pipe backend program arg[1] = dspam at chandlerfamily.org.uk Mar 6 06:52:38 piserver imap: antispam: pipe backend tmpdir /tmp Mar 6 06:54:11 piserver imap: antispam: mailbox_is_unsure(Junk): 0 Mar 6 06:54:11 piserver imap: antispam: mailbox_is_trash(INBOX): 0 Mar 6 06:54:11 piserver imap: antispam: mailbox_is_trash(Junk): 0 Mar 6 06:54:11 piserver imap: antispam: mail copy: from trash: 0, to trash: 0 Mar 6 06:54:11 piserver imap: antispam: mailbox_is_spam(INBOX): 0 Mar 6 06:54:11 piserver imap: antispam: mailbox_is_spam(Junk): 1 Mar 6 06:54:11 piserver imap: antispam: mailbox_is_unsure(INBOX): 0 Mar 6 06:54:11 piserver imap: antispam: mail copy: src spam: 0, dst spam: 1, src unsure: 0 Mar 6 06:54:11 piserver imap: antispam: running mailtrain backend program /usr/bin/sendmail Mar 6 06:54:11 piserver imap: antispam: running mailtrain backend program /usr/bin/sendmail Mar 6 06:54:11 piserver imap: antispam: running mailtrain backend program parameter 1 -f Mar 6 06:54:11 piserver imap: antispam: running mailtrain backend program parameter 2 dspam at chandlerfamily.org.uk Mar 6 06:54:11 piserver imap: antispam: running mailtrain backend program parameter 3 spam at chandlerfamily.org.uk Mar 6 06:54:11 piserver imap: antispam: run program failed with exit code 1 At the same time there is nothing is /var/log/mail.log indicating postfix has ever received any sendmail request. I would prefer to use dpsam backend directly if someone can tell me how to overcome the dspam rejection issues, but this alternative would also work (if a bit more convoluted to get mail to the correct place) if I could get antispam to call sendmail correctly. From alan at chandlerfamily.org.uk Thu Mar 6 07:59:51 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Thu, 06 Mar 2014 07:59:51 +0000 Subject: [Dovecot] Struggling with antispam In-Reply-To: <5318283F.3000801@chandlerfamily.org.uk> References: <5318283F.3000801@chandlerfamily.org.uk> Message-ID: <53182AF7.8080207@chandlerfamily.org.uk> On 06/03/14 07:48, Alan Chandler wrote: > > However, when I try to make this work with anitspam, I keep getting > failure, and I can't work out what is causing it. Maybe its again > because I am running with uid 10001 when calling sendmail but I don't > know. > > antispam config is > > plugin { > ... > antispam_pipe_program=/usr/bin/sendmail Arrg: I have been struggling with this all yesterday evening. Two minutes after posting this I realise it is /usr/sbin/sendmail, not /usr/bin/sendmail Sorry for the noise (Although I would prefer to use the dspam backend if I could). It is not working yet - postfix has rejected the mail because it came from an unknown sender (dspam at chandlerfamily.org.uk) I could use %u on the sender address - but then my sieve script to save outgoing mail would have to change to ignore mail aimed at the spam addresses. From long93160 at hotmail.com Thu Mar 6 08:11:54 2014 From: long93160 at hotmail.com (Thanh Long DANG) Date: Thu, 6 Mar 2014 08:11:54 +0000 Subject: [Dovecot] Bounce messages In-Reply-To: References: Message-ID: Hi, Please find enclose to this mail the configuration. Thank you :-) Best regards, Long From: thanhlong.dang at multidist.com To: dovecot at dovecot.org Subject: Bounce messages Date: Wed, 5 Mar 2014 16:39:58 +0000 Hi, I just set up my mail server using postfix / dovecot / mysql and it works well. I just have a problem : I'm a trying to have a overquota notification and the server sends nothing (mail server rejects incoming mail). Could you tell me if there is a problem with dovecot or postfix configuration? Kind regards, Long My conf : # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-26-pve x86_64 Debian 7.2 simfs auth_mechanisms = plain login debug_log_path = /var/log/dovecot-debug.log dict { ? quotadict = mysql:/etc/dovecot/dovecot-dict-sql.conf } disable_plaintext_auth = no info_log_path = /var/log/dovecot-info.log log_path = /var/log/dovecot.log mail_location = maildir:/home/vmail/%d/%n:INDEX=/home/vmail/%d/%n/indexes namespace inbox { ? inbox = yes ? location = ? mailbox Drafts { ? ? special_use = \Drafts ? } ? mailbox Junk { ? ? special_use = \Junk ? } ? mailbox Sent { ? ? special_use = \Sent ? } ? mailbox "Sent Messages" { ? ? special_use = \Sent ? } ? mailbox Trash { ? ? special_use = \Trash ? } ? prefix = } passdb { ? args = /etc/dovecot/dovecot-mysql.conf.ext ? driver = sql } plugin { ? quota = maildir:User quota ? quota_exceeded_message = Storage quota for this account has been exceeded, please try again later. ? quota_rule = *:storage=1G ? quota_rule2 = Trash:storage=+30%% ? quota_rule3 = Sent:storage=+30%% ? quota_warning = storage=90%% quota-warning 90 %u ? quota_warning2 = storage=75%% quota-warning 75 %u ? sieve = ~/.dovecot.sieve ? sieve_dir = ~/sieve } postmaster_address = postmaster at multidist.eu protocols = " imap lmtp pop3" quota_full_tempfail = yes rejection_subject = Rejet: %s service auth { ? unix_listener /var/spool/postfix/private/auth { ? ? mode = 0666 ? } } service dict { ? unix_listener dict { ? ? mode = 0777 ? } } service lmtp { ? unix_listener /var/spool/postfix/private/dovecot-lmtp { ? ? group = postfix ? ? mode = 0666 ? ? user = postfix ? } } service quota-warning { ? executable = script /usr/local/bin/quota-warning.sh ? unix_listener quota-warning { ? ? mode = 0777 ? } } ssl_cert = From skdovecot at smail.inf.fh-brs.de Thu Mar 6 08:27:35 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 6 Mar 2014 09:27:35 +0100 (CET) Subject: [Dovecot] Bounce messages In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 6 Mar 2014, Thanh Long DANG wrote: > I just set up my mail server using postfix / dovecot / mysql and it > works well. I just have a problem : I'm a trying to have a overquota > notification and the server sends nothing (mail server rejects incoming > mail). What do you mean with "the server sends nothing" Which server should send what? And should the mail _not_ reject incoming mail, if the user is over quota? If you mean: /usr/local/bin/quota-warning.sh is executed, but postfix does not deliver the warning, because the user is overquota; then you need to make the script deliver the message in alternate ways: a) use Dovecot deliver directly with quota disabled b) spool the message into Maildir directly > Could you tell me if there is a problem with dovecot or postfix configuration? postfix+quota config usually contain a quota-status section, like described here (German, but the code snippets are significant): http://sys4.de/de/blog/2013/04/05/dovecot-quota-mit-postfix-abfragen/ > My conf : > > # 2.1.7: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-26-pve x86_64 Debian 7.2 simfs > auth_mechanisms = plain login > debug_log_path = /var/log/dovecot-debug.log > dict { > ? quotadict = mysql:/etc/dovecot/dovecot-dict-sql.conf > } > disable_plaintext_auth = no > info_log_path = /var/log/dovecot-info.log > log_path = /var/log/dovecot.log > mail_location = maildir:/home/vmail/%d/%n:INDEX=/home/vmail/%d/%n/indexes > namespace inbox { > ? inbox = yes > ? location = > ? mailbox Drafts { > ? ? special_use = \Drafts > ? } > ? mailbox Junk { > ? ? special_use = \Junk > ? } > ? mailbox Sent { > ? ? special_use = \Sent > ? } > ? mailbox "Sent Messages" { > ? ? special_use = \Sent > ? } > ? mailbox Trash { > ? ? special_use = \Trash > ? } > ? prefix = > } > passdb { > ? args = /etc/dovecot/dovecot-mysql.conf.ext > ? driver = sql > } > plugin { > ? quota = maildir:User quota > ? quota_exceeded_message = Storage quota for this account has been exceeded, please try again later. > ? quota_rule = *:storage=1G > ? quota_rule2 = Trash:storage=+30%% > ? quota_rule3 = Sent:storage=+30%% > ? quota_warning = storage=90%% quota-warning 90 %u > ? quota_warning2 = storage=75%% quota-warning 75 %u > ? sieve = ~/.dovecot.sieve > ? sieve_dir = ~/sieve > } > postmaster_address = postmaster at multidist.eu > protocols = " imap lmtp pop3" > quota_full_tempfail = yes > rejection_subject = Rejet: %s > service auth { > ? unix_listener /var/spool/postfix/private/auth { > ? ? mode = 0666 > ? } > } > service dict { > ? unix_listener dict { > ? ? mode = 0777 > ? } > } > service lmtp { > ? unix_listener /var/spool/postfix/private/dovecot-lmtp { > ? ? group = postfix > ? ? mode = 0666 > ? ? user = postfix > ? } > } > service quota-warning { > ? executable = script /usr/local/bin/quota-warning.sh > ? unix_listener quota-warning { > ? ? mode = 0777 > ? } > } > ssl_cert = ssl_key = userdb { > ? args = /etc/dovecot/dovecot-mysql.conf.ext > ? driver = sql > } > verbose_proctitle = yes > protocol lmtp { > ? mail_plugins = " quota" > } > protocol lda { > ? info_log_path = /var/log/dovecot-lda.log > ? log_path = /var/log/dovecot-lda-errors.log > ? mail_plugins = " quota" > } > protocol imap { > ? mail_max_userip_connections = 10 > ? mail_plugins = quota imap_quota > } > protocol pop3 { > ? mail_plugins = quota > ? pop3_uidl_format = %08Xu%08Xv > } - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUxgxeHD1/YhP6VMHAQIDrAf/QDjhBzLodZDvQbuwZXwubJIf5y14IqVR rG6LEBMZtxUP8QmtYBK3dZayfG56+POWDg5fgMmqdqYpQgBStTaWhrKLEy1LSZ8E VLr8dArvRx4HsJrgr2ygHAJOQtoSM3YgoEjI8m0fRmdvzjaSZ+srbkZB911l5Gfi nWQm/8tsjaASAcGzbZ1OnltXxQef1K4qhrgZrxrOWW7xCWCAElNddY1lfekeahY6 NfiTfKvkTyLfzzEi22RQTAMviUVraHJ69FyTpMWro5qiZIke5FWXlGP/XeK45xTh 0wcs/CK/OzxHu8lAVNoZWqTZUXRXCTaq0oll3N1QqaK8kIsnB8k/NQ== =QRsH -----END PGP SIGNATURE----- From long93160 at hotmail.com Thu Mar 6 08:41:07 2014 From: long93160 at hotmail.com (Thanh Long DANG) Date: Thu, 6 Mar 2014 08:41:07 +0000 Subject: [Dovecot] Bounce messages In-Reply-To: References: , , Message-ID: Hi, The problem is : when the mailbox is full and i'm trying to send a mail to it from another mailbox : 1- the server rejects the mail (OK) 2- need to notify the sender that the mailbox of recipient is full (Not OK) (quota notifications is ok) I think the link may help me. I will have a look today. Kind regards, Long ---------------------------------------- > Date: Thu, 6 Mar 2014 09:27:35 +0100 > From: skdovecot at smail.inf.fh-brs.de > To: long93160 at hotmail.com > CC: dovecot at dovecot.org > Subject: Re: [Dovecot] Bounce messages > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thu, 6 Mar 2014, Thanh Long DANG wrote: > >> I just set up my mail server using postfix / dovecot / mysql and it >> works well. I just have a problem : I'm a trying to have a overquota >> notification and the server sends nothing (mail server rejects incoming >> mail). > > What do you mean with "the server sends nothing" Which server should send > what? And should the mail _not_ reject incoming mail, if the user is over > quota? > > If you mean: /usr/local/bin/quota-warning.sh is executed, but postfix does > not deliver the warning, because the user is overquota; then you need to > make the script deliver the message in alternate ways: > > a) use Dovecot deliver directly with quota disabled > b) spool the message into Maildir directly > >> Could you tell me if there is a problem with dovecot or postfix configuration? > > postfix+quota config usually contain a quota-status section, like > described here (German, but the code snippets are significant): > http://sys4.de/de/blog/2013/04/05/dovecot-quota-mit-postfix-abfragen/ > >> My conf : >> >> # 2.1.7: /etc/dovecot/dovecot.conf >> # OS: Linux 2.6.32-26-pve x86_64 Debian 7.2 simfs >> auth_mechanisms = plain login >> debug_log_path = /var/log/dovecot-debug.log >> dict { >> quotadict = mysql:/etc/dovecot/dovecot-dict-sql.conf >> } >> disable_plaintext_auth = no >> info_log_path = /var/log/dovecot-info.log >> log_path = /var/log/dovecot.log >> mail_location = maildir:/home/vmail/%d/%n:INDEX=/home/vmail/%d/%n/indexes >> namespace inbox { >> inbox = yes >> location = >> mailbox Drafts { >> special_use = \Drafts >> } >> mailbox Junk { >> special_use = \Junk >> } >> mailbox Sent { >> special_use = \Sent >> } >> mailbox "Sent Messages" { >> special_use = \Sent >> } >> mailbox Trash { >> special_use = \Trash >> } >> prefix = >> } >> passdb { >> args = /etc/dovecot/dovecot-mysql.conf.ext >> driver = sql >> } >> plugin { >> quota = maildir:User quota >> quota_exceeded_message = Storage quota for this account has been exceeded, please try again later. >> quota_rule = *:storage=1G >> quota_rule2 = Trash:storage=+30%% >> quota_rule3 = Sent:storage=+30%% >> quota_warning = storage=90%% quota-warning 90 %u >> quota_warning2 = storage=75%% quota-warning 75 %u >> sieve = ~/.dovecot.sieve >> sieve_dir = ~/sieve >> } >> postmaster_address = postmaster at multidist.eu >> protocols = " imap lmtp pop3" >> quota_full_tempfail = yes >> rejection_subject = Rejet: %s >> service auth { >> unix_listener /var/spool/postfix/private/auth { >> mode = 0666 >> } >> } >> service dict { >> unix_listener dict { >> mode = 0777 >> } >> } >> service lmtp { >> unix_listener /var/spool/postfix/private/dovecot-lmtp { >> group = postfix >> mode = 0666 >> user = postfix >> } >> } >> service quota-warning { >> executable = script /usr/local/bin/quota-warning.sh >> unix_listener quota-warning { >> mode = 0777 >> } >> } >> ssl_cert = > ssl_key = > userdb { >> args = /etc/dovecot/dovecot-mysql.conf.ext >> driver = sql >> } >> verbose_proctitle = yes >> protocol lmtp { >> mail_plugins = " quota" >> } >> protocol lda { >> info_log_path = /var/log/dovecot-lda.log >> log_path = /var/log/dovecot-lda-errors.log >> mail_plugins = " quota" >> } >> protocol imap { >> mail_max_userip_connections = 10 >> mail_plugins = quota imap_quota >> } >> protocol pop3 { >> mail_plugins = quota >> pop3_uidl_format = %08Xu%08Xv >> } > > - -- > Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUxgxeHD1/YhP6VMHAQIDrAf/QDjhBzLodZDvQbuwZXwubJIf5y14IqVR > rG6LEBMZtxUP8QmtYBK3dZayfG56+POWDg5fgMmqdqYpQgBStTaWhrKLEy1LSZ8E > VLr8dArvRx4HsJrgr2ygHAJOQtoSM3YgoEjI8m0fRmdvzjaSZ+srbkZB911l5Gfi > nWQm/8tsjaASAcGzbZ1OnltXxQef1K4qhrgZrxrOWW7xCWCAElNddY1lfekeahY6 > NfiTfKvkTyLfzzEi22RQTAMviUVraHJ69FyTpMWro5qiZIke5FWXlGP/XeK45xTh > 0wcs/CK/OzxHu8lAVNoZWqTZUXRXCTaq0oll3N1QqaK8kIsnB8k/NQ== > =QRsH > -----END PGP SIGNATURE----- From mailinglists at easy-mail.it Thu Mar 6 08:49:49 2014 From: mailinglists at easy-mail.it (Francesco) Date: Thu, 06 Mar 2014 09:49:49 +0100 Subject: [Dovecot] whole user mailbox read only Message-ID: <1394095789.4208.12.camel@secoges-laptop> Hello, i was browsing the dovecot wiki for some documentation related to the use of ACLs but i couldn't find an answer. i'm in the need to prevent users from deleting emails, yet being able to add new content via imap, what i mean is that a user should be able to create an email in its mailbox (maildir actually is used), but once the email is there the user shouldn't be able to delete it. do you know if there is a way to accomplish this for each subfolder on a Maildir environment? Thanks in advance Francesco From dieterknopf at googlemail.com Thu Mar 6 10:49:07 2014 From: dieterknopf at googlemail.com (Dieter Knopf) Date: Thu, 6 Mar 2014 11:49:07 +0100 Subject: [Dovecot] Public Namespace and INBOX Message-ID: Hello, i added a existing MAILDIR as a Public Namespace and i can subscribe to this Namespace without a problem. I can access every folder except the INBOX. Thunderbird just shows a GREY "INBOX". Is there any way to access the INBOX of a maildir? Thanks Dieter Knopf From nick.z.edwards at gmail.com Thu Mar 6 10:49:33 2014 From: nick.z.edwards at gmail.com (Nick Edwards) Date: Thu, 6 Mar 2014 20:49:33 +1000 Subject: [Dovecot] Still no emails since Feb. 6 In-Reply-To: <531787C6.4000900@cnpapers.com> References: <531787C6.4000900@cnpapers.com> Message-ID: Hi Steve, new server from last month - 87.106.245.223 has correct A/PTR records, not in any DNSBL I can test, so no idea why your not getting anything. On 3/6/14, Steve Campbell wrote: > I checked my settings on the dovecot mailman page, and although my > account was set to "disable" email, after changing it and attempting to > have the list resend my password, I'm still not seeing emails. > > The last time I received emails, the outgoing server for the list was > sent from the IP 193.210.130.67. Is that still correct? > > I've checked my logs to see if there's anything blocked, and I don't see > anything. I've checked my access file and firewall, and nothing is > blocked there. > > I'm not sure why my account settings showed "disabled", but it sounds > like email was either bounced back to the list or my server is in some > type of outgoing list to prevent sending to me. > > I'm at a loss. Is there any way an admin can check for me, please, to > see if there's a problem they might spot? > > Thanks, > > steve > From h.reindl at thelounge.net Thu Mar 6 11:03:48 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 06 Mar 2014 12:03:48 +0100 Subject: [Dovecot] Still no emails since Feb. 6 In-Reply-To: <88809A510CC6478FBFD238FF6D748A10@geniepc2011> References: <531787C6.4000900@cnpapers.com> <88809A510CC6478FBFD238FF6D748A10@geniepc2011> Message-ID: <53185614.3050606@thelounge.net> Am 05.03.2014 21:37, schrieb Eugene R: > Got access denied for direct mail: > : host mailserver2.cnpapers.net[216.12.119.162] said: > 550 5.7.1 Access denied (in reply to MAIL FROM command) > > Well, this is now really off-topic for the list (local config error). Sorry to bother people and now the OP should seek his maillog for "Access denied" rejects and asks himself why a public MX acts that wrong -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From dovecot at voidptr.de Thu Mar 6 11:47:51 2014 From: dovecot at voidptr.de (dovecot at voidptr.de) Date: Thu, 6 Mar 2014 12:47:51 +0100 Subject: [Dovecot] Pigeonhole Sieve Extprograms Plugin In-Reply-To: <5317AFBF.4030501@thinline.cz> References: <20140305224131.GA4714@voidptr.de> <5317AFBF.4030501@thinline.cz> Message-ID: <20140306114750.GA21812@voidptr.de> On 06/03/14 00:14, Ji?? Bourek wrote: > Hi, > > I think you are missing something along these lines: > > plugin { > sieve_plugins = sieve_extprograms > sieve_global_extensions = +vnd.dovecot.filter > sieve_extensions = +vnd.dovecot.filter > } > > Also, I'm not sure what wheezy-backports package does, but the same > version of Dovecot for Jessie looks for sieve plugins libraries under > /usr/lib/dovecot/modules/sieve directory, whereas the dovecot-sieve > package puts them into /usr/lib/dovecot/modules, causing Dovecot to > throw errors (as it's unable to find them.) > > Made it work by creating a symlink /usr/lib/dovecot/modules/sieve > pointing to ../modules. I suspect this can cause breakage during > dovecot-sieve update (if they ever get to put those files to the right > place), so better watch that. > > J. Hi, You're right, after adding the plugin to sieve_plugins and symlinking its .so file in the right place, it works fine. Thank you for the hint. The mismatch between the configured and actual plugin directories seems like a bug with the Debian package to me... Nils From campbell at cnpapers.com Thu Mar 6 12:30:07 2014 From: campbell at cnpapers.com (Steve Campbell) Date: Thu, 06 Mar 2014 07:30:07 -0500 Subject: [Dovecot] Still no emails since Feb. 6 In-Reply-To: <53185614.3050606@thelounge.net> References: <531787C6.4000900@cnpapers.com> <88809A510CC6478FBFD238FF6D748A10@geniepc2011> <53185614.3050606@thelounge.net> Message-ID: <53186A4F.7040907@cnpapers.com> On 3/6/2014 6:03 AM, Reindl Harald wrote: > Am 05.03.2014 21:37, schrieb Eugene R: >> Got access denied for direct mail: >> : host mailserver2.cnpapers.net[216.12.119.162] said: >> 550 5.7.1 Access denied (in reply to MAIL FROM command) >> >> Well, this is now really off-topic for the list (local config error). Sorry to bother people > and now the OP should seek his maillog for "Access denied" rejects > and asks himself why a public MX acts that wrong > Thanks all for the help. That IP was placed in my firewall, not sure when. Public MX's don't necessarily guarantee that what's coming from them are OK. My maillog is so full of rejects and without knowing what IP I should look for, it was difficult to find out what was going on. Anyway, we'll see what happens now. From h.reindl at thelounge.net Thu Mar 6 12:38:53 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 06 Mar 2014 13:38:53 +0100 Subject: [Dovecot] Still no emails since Feb. 6 In-Reply-To: <53186A4F.7040907@cnpapers.com> References: <531787C6.4000900@cnpapers.com> <88809A510CC6478FBFD238FF6D748A10@geniepc2011> <53185614.3050606@thelounge.net> <53186A4F.7040907@cnpapers.com> Message-ID: <53186C5D.6070509@thelounge.net> Am 06.03.2014 13:30, schrieb Steve Campbell: > On 3/6/2014 6:03 AM, Reindl Harald wrote: >> Am 05.03.2014 21:37, schrieb Eugene R: >>> Got access denied for direct mail: >>> : host mailserver2.cnpapers.net[216.12.119.162] said: >>> 550 5.7.1 Access denied (in reply to MAIL FROM command) >>> >>> Well, this is now really off-topic for the list (local config error). Sorry to bother people >> and now the OP should seek his maillog for "Access denied" rejects >> and asks himself why a public MX acts that wrong >> > Thanks all for the help. That IP was placed in my firewall, not sure when uhm you don't comment day and reason as well as not "whois ip" in case of set ip addresses blocked in your firewalls? -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From CMarcus at Media-Brokers.com Thu Mar 6 12:41:11 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 06 Mar 2014 07:41:11 -0500 Subject: [Dovecot] Public Namespace and INBOX In-Reply-To: References: Message-ID: <53186CE7.7080203@Media-Brokers.com> On 3/6/2014 5:49 AM, Dieter Knopf wrote: > i added a existing MAILDIR as a Public Namespace and i can subscribe to > this Namespace without a problem. > > I can access every folder except the INBOX. Thunderbird just shows a GREY > "INBOX". > > Is there any way to access the INBOX of a maildir? I'm really confused at the number of people who ask questions like this without providing their configuration. Do you people think everyone here has a crystal ball? -- Best regards, Charles From dieterknopf at googlemail.com Thu Mar 6 13:07:17 2014 From: dieterknopf at googlemail.com (Dieter Knopf) Date: Thu, 6 Mar 2014 14:07:17 +0100 Subject: [Dovecot] Public Namespace and INBOX In-Reply-To: <53186CE7.7080203@Media-Brokers.com> References: <53186CE7.7080203@Media-Brokers.com> Message-ID: Sorry. Config is: namespace inbox { type = private separator = / prefix = inbox = yes } namespace { type = public separator = / prefix = FOO/ location = maildir:/home/vmail/ foo.eu/info/MAILDIR:INDEX=/home/vmail/foo.eu/info/S_INDEX:INDEXPVT=/home/vmail/foo.eu/info/S_INDEXPVT/%u subscriptions = no } I can subscribe to anything but the FOO/ folder is empty (Mailbox doesn't exist FOO/FOO) It works with a custom INBOX (mail_location = .....INBOX=.../.INBOX/", then i can subscribe to INBOX, but it would be nice if the PREFIX-Folder shows the INBOX. Thanks Dieter 2014-03-06 13:41 GMT+01:00 Charles Marcus : > On 3/6/2014 5:49 AM, Dieter Knopf wrote: > >> i added a existing MAILDIR as a Public Namespace and i can subscribe to >> this Namespace without a problem. >> >> I can access every folder except the INBOX. Thunderbird just shows a GREY >> "INBOX". >> >> Is there any way to access the INBOX of a maildir? >> > > I'm really confused at the number of people who ask questions like this > without providing their configuration. > > Do you people think everyone here has a crystal ball? > > -- > > Best regards, > > Charles > From skdovecot at smail.inf.fh-brs.de Thu Mar 6 13:20:07 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 6 Mar 2014 14:20:07 +0100 (CET) Subject: [Dovecot] Public Namespace and INBOX In-Reply-To: References: <53186CE7.7080203@Media-Brokers.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 6 Mar 2014, Dieter Knopf wrote: > I can subscribe to anything but the FOO/ folder is empty (Mailbox doesn't > exist FOO/FOO) Please search the list, I'm 80% sure that I've read the same question some weeks back and Timo answered that. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUxh2B3D1/YhP6VMHAQLXbQf/d0IKbMY9h1UwJZ+aSmBfNEFVcN71DZba N2CTkltFjQzy9XVnqwHA3uLrwDuqD3+fv0Nr6E6SJywerN0EIo+/iQ9lNbVt8Muv e3nhEHuCT6OHRB/MqBhb5rX+56sTBvlXwlZndQvzzqtRGQ6Qg4TEe23ER489dFN5 8PSdCXAcjzWwnI/4+7l2FrwFPbLf0MxDlJNSScROsMJyWVPR0p1eqDiWAYXukcNX 93rO/0FM14hvuxrFonHchU837erVAOqA9Kqy5TKT8Qny/FOyTiVv6XWGxJnHwtpF dvmLZFdFZHcrE1zQBjWlOjXoNtZS+O1zdyJH1ci/zds37OQTScghLQ== =nSoR -----END PGP SIGNATURE----- From mailinglist at darac.org.uk Thu Mar 6 13:26:57 2014 From: mailinglist at darac.org.uk (Darac Marjal) Date: Thu, 6 Mar 2014 13:26:57 +0000 Subject: [Dovecot] Public Namespace and INBOX In-Reply-To: References: Message-ID: <20140306132657.GB2440@darac.org.uk> On Thu, Mar 06, 2014 at 11:49:07AM +0100, Dieter Knopf wrote: > Hello, > > i added a existing MAILDIR as a Public Namespace and i can subscribe to > this Namespace without a problem. > > I can access every folder except the INBOX. Thunderbird just shows a GREY > "INBOX". This is a symptom of a folder not existing, but folders beneath it existing. For example, I filter Debian Bug mails into INBOX\Bugs\$BugNumber. There is no INBOX\Bugs folder, so it shows up greyed. If you have a greyed out INBOX, then either you've made a mistake in your config or perhaps there's an issue with the mailbox itself. Can you access the maildir as a private namespace? > > Is there any way to access the INBOX of a maildir? > > Thanks > Dieter Knopf -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: Digital signature URL: From dieterknopf at googlemail.com Thu Mar 6 14:27:52 2014 From: dieterknopf at googlemail.com (Dieter Knopf) Date: Thu, 6 Mar 2014 15:27:52 +0100 Subject: [Dovecot] Public Namespace and INBOX In-Reply-To: <20140306132657.GB2440@darac.org.uk> References: <20140306132657.GB2440@darac.org.uk> Message-ID: Hello, sure, it's a standard virtual mailbox, INBOX is working fine. I just used the same directory for a PUBLIC namespace. Thanks 2014-03-06 14:26 GMT+01:00 Darac Marjal : > On Thu, Mar 06, 2014 at 11:49:07AM +0100, Dieter Knopf wrote: > > Hello, > > > > i added a existing MAILDIR as a Public Namespace and i can subscribe to > > this Namespace without a problem. > > > > I can access every folder except the INBOX. Thunderbird just shows a GREY > > "INBOX". > > This is a symptom of a folder not existing, but folders beneath it > existing. For example, I filter Debian Bug mails into > INBOX\Bugs\$BugNumber. There is no INBOX\Bugs folder, so it shows up > greyed. > > If you have a greyed out INBOX, then either you've made a mistake in > your config or perhaps there's an issue with the mailbox itself. Can you > access the maildir as a private namespace? > > > > > Is there any way to access the INBOX of a maildir? > > > > Thanks > > Dieter Knopf > From skdovecot at smail.inf.fh-brs.de Thu Mar 6 15:32:48 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 6 Mar 2014 16:32:48 +0100 (CET) Subject: [Dovecot] Public Namespace and INBOX In-Reply-To: References: <20140306132657.GB2440@darac.org.uk> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 6 Mar 2014, Dieter Knopf wrote: > sure, it's a standard virtual mailbox, INBOX is working fine. I just used > the same directory for a PUBLIC namespace. If you don't get it to work, fake an INBOX by symlinking cur/new/tmp into ".INBOX". It's not the nice, but should work. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUxiVIHD1/YhP6VMHAQJZEwgApof9omD+MoSDPtEL5qWtiNY68SRMNatH bL0y0AvNWsf5GTfNf6vPCeM7dR/QTqMpOtUpUJZS3gzbbplVP8NRV+CdvtRAX5g0 ap3m4a3ktpKnQCLhXdInd7EbEwQjBKBMa+T1QMDvY5St4gtrRmWcF1nCWGRg1WNa QHTIJaTBYY4tQyNR+CGMIdNUlmCEQSg+ROUOFDRnfPMWJExWRxk6fThSXJ4o346v /K5ctglSPBTwHX/IVJ+Q93nJDynCgSt7/w8EbHt39/9iHNXnxCX1s6Z2zkx6njQn rjOwYIm3PmL9c1TuY7C2zoGKNCtjPKP4aiSWGdqup2Ohp+knV+Bl3A== =Ivse -----END PGP SIGNATURE----- From dieterknopf at googlemail.com Thu Mar 6 15:52:41 2014 From: dieterknopf at googlemail.com (Dieter Knopf) Date: Thu, 6 Mar 2014 16:52:41 +0100 Subject: [Dovecot] Public Namespace and INBOX In-Reply-To: <531894fb.49cf0e0a.2c68.ffff9b01SMTPIN_ADDED_BROKEN@mx.google.com> References: <20140306132657.GB2440@darac.org.uk> <531894fb.49cf0e0a.2c68.ffff9b01SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: 2014-03-06 16:32 GMT+01:00 Steffen Kaiser : > > If you don't get it to work, fake an INBOX by symlinking cur/new/tmp into > ".INBOX". It's not the nice, but should work. > > Thanks, because of that i tried it with a custom INBOX in mail_location and it worked, but i still only see FOO/INBOX as folder and not FOO itself. From d.kuhn at heinlein-support.de Thu Mar 6 16:19:03 2014 From: d.kuhn at heinlein-support.de (Dennis Kuhn) Date: Thu, 06 Mar 2014 17:19:03 +0100 Subject: [Dovecot] no sieve with lmtp_save_to_detail_mailbox=yes Message-ID: <53189FF7.6040106@heinlein-support.de> i have a problem with sieve and lmtp_save_to_detail_mailbox = yes. If the mailbox "detail" exists everything works fine, but if the mailbox detail does not exist then sieve does not work. The .dovecot.sieve.log file says sieve: info: started log at Mar 06 14:28:47. error: msgid=<531877EE.7070806 at heinlein-support.de>: failed to store into mailbox 'test2': Mailbox doesn't exist: test2. I think this is the reason why no sieve script is executed, but why is sieve here involved? Is there any relation between lmtp_save_to_detail_mailbox=yes and sieve or is this a bug? The same sieve file works with the same mailaddress without mailextension, so the sieve script is not the reason for the failure. I am using dovecot version 2.2.12 Dennis Kuhn -- Heinlein Support GmbH Schwedter Str. 8/9b, 10119 Berlin http://www.heinlein-support.de Tel: 030 / 405051-57 Fax: 030 / 405051-19 Zwangsangaben lt. ?35a GmbHG: HRB 93818 B / Amtsgericht Berlin-Charlottenburg, Gesch?ftsf?hrer: Peer Heinlein -- Sitz: Berlin From stephan at rename-it.nl Thu Mar 6 20:14:16 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Thu, 06 Mar 2014 21:14:16 +0100 Subject: [Dovecot] no sieve with lmtp_save_to_detail_mailbox=yes In-Reply-To: <53189FF7.6040106@heinlein-support.de> References: <53189FF7.6040106@heinlein-support.de> Message-ID: <5318D718.3090306@rename-it.nl> On 3/6/2014 5:19 PM, Dennis Kuhn wrote: > i have a problem with sieve and lmtp_save_to_detail_mailbox = yes. If > the mailbox "detail" exists everything works fine, but if the mailbox > detail does not exist then sieve does not work. The .dovecot.sieve.log > file says > > sieve: info: started log at Mar 06 14:28:47. > error: msgid=<531877EE.7070806 at heinlein-support.de>: failed to store > into mailbox 'test2': Mailbox doesn't exist: test2. > > I think this is the reason why no sieve script is executed, but why is > sieve here involved? > Is there any relation between lmtp_save_to_detail_mailbox=yes and sieve > or is this a bug? > > The same sieve file works with the same mailaddress without > mailextension, so the sieve script is not the reason for the failure. That setting changes the default `keep;' mailbox from INBOX to whatever the detail is. You can set lda_mailbox_autocreate=yes to make sure that the detail folder exists. If you don't want to create this folder implicitly, you have a bit of an issue. The use of the detail as the default keep mailbox has existed since the old CMUSieve plugin and I didn't bother to change this. There is currently no way to prevent this behavior, other than using `fileinto "INBOX";' explicitly rather than `keep;'. You can check for the presence of a detail in the message using the subaddress extension (http://tools.ietf.org/html/rfc5233) and then do whatever is needed to prevent this error; i.e. not execute (implicit) keep. Better yet: you can also turn off this setting and let Sieve do everything. This way, you can define a default script that recognizes the detail and stores the mail in the corresponding folder if it exists. An example is here: http://wiki2.dovecot.org/Pigeonhole/Sieve/Examples#Plus_Addressed_mail_filtering . Use the sieve_default setting to configure a default script which is executed when the user has no active Sieve script. Alternatively, if you always want a certain action for a detail'ed message, you can force it using a sieve_before script. Of course, it all depends a bit on what you're trying to achieve. Regards, Stephan. From support at webunity.nl Wed Mar 5 13:59:19 2014 From: support at webunity.nl (Gilles van den Hoven) Date: Wed, 5 Mar 2014 13:59:19 +0000 (UTC) Subject: [Dovecot] =?utf-8?q?Dovecot_Migration=3A_Retrieving/Logging_POP/I?= =?utf-8?q?MAP_Passwords=09in_Plaintext?= References: Message-ID: Traiano Welcome gmail.com> writes: > > Hi List > > I'm currently in the process of migrating my dovecot imap/pop users to a > new server and have to extract their passwords in order to import them into > the new system (different password encryption schemes). > > I've tried enabling auth_* debug parameters in my dovecot.conf in the hope > that this would result in logging plaintext passwords to the dovecot log. > However dovecot does not log the passwords in plaintext under any debugging > configuration. > > My question: Is there any other configuration of dovecot that would allow > me to capture POP/IMAP passwords at a successful login time? > > Dovecot version: 1.0.7 (from dovecot-1.0.7-7.el5_7.1 rpm) > > The output of dovecot -n is: > > --- > # 1.0.7: /etc/dovecot.conf > info_log_path: /var/log/dovecot.debug > verbose_ssl: yes > login_dir: /var/run/dovecot/login > login_executable(default): /usr/libexec/dovecot/imap-login > login_executable(imap): /usr/libexec/dovecot/imap-login > login_executable(pop3): /usr/libexec/dovecot/pop3-login > mail_location: mbox:~:INBOX=~/Mailbox > mail_debug: yes > mail_executable(default): /usr/libexec/dovecot/imap > mail_executable(imap): /usr/libexec/dovecot/imap > mail_executable(pop3): /usr/libexec/dovecot/pop3 > mail_plugin_dir(default): /usr/lib64/dovecot/imap > mail_plugin_dir(imap): /usr/lib64/dovecot/imap > mail_plugin_dir(pop3): /usr/lib64/dovecot/pop3 > auth default: > mechanisms: plain login > verbose: yes > debug: yes > debug_passwords: yes > passdb: > driver: pam > userdb: > driver: passwd > socket: > type: listen > client: > path: /var/run/dovecot/auth-client > mode: 438 > --- > > My dovecot.conf is as follows: > > ------ > info_log_path = /var/log/dovecot.debug > verbose_ssl = yes > mail_location = mbox:~:INBOX=~/Mailbox > mail_debug = yes > protocol imap { > } > protocol pop3 { > } > protocol lda { > postmaster_address = postmaster example.com > } > auth_verbose = yes > auth_debug = yes > auth_debug_passwords = yes > auth default { > mechanisms = plain login > passdb pam { > } > userdb passwd { > } > user = root > socket listen { > client { > path = /var/run/dovecot/auth-client > mode = 0666 > } > } > } > dict { > } > plugin { > } > --- > > Many thanks in advance! > Traiano > > Yes this is possible, i did it today for my own server which was also running dovecot 1.x. I hope i got all steps; but if not this should get you a head start in the right direction. requires SQL and prefetching; largely based on a lot of googling, trying and this page; http://wiki1.dovecot.org/UserDatabase/Prefetch Steps to implement (based on SQL login); 1) Change MySQL 'user' query (all fields that are needed for LDA) note: adjust query to match your own fields/query user_query = SELECT home, uid, gid FROM mail_users WHERE address = '%u' AND active = '1' 2) Change MySQL 'password' query (prepend all 'user info' fields with userdb_) note: adjust query to match your own fields/query password_query = SELECT <...>, '%w' as userdb_plain_pass FROM mail_users WHERE address = '%u' AND active = '1' 3) Add new executables for imap and pop3 login; vi /usr/local/sbin/pop3.sh add this: #!/bin/sh echo "UPDATE mail_users SET modified=now(), type='pop3', plainpwd='$PLAIN_PASS' WHERE address = '$USER'" | mysql --host= -- user= --password= exec /usr/lib/dovecot/pop3 "$@" vi /usr/local/sbin/imap.sh add this: #!/bin/sh echo "UPDATE mail_users SET modified=now(), type='pop3', plainpwd='$PLAIN_PASS' WHERE address = '$USER'" | mysql --host= -- user= --password= exec /usr/lib/dovecot/imap "$@" Chmod +x them and make sure both the query as the "/usr/lib/dovecot/" matches your environment. 4) In dovecot.conf; change executables for imap and pop3 login to point to new bash scripts protocol pop3 { ... mail_executable = /usr/local/sbin/pop3.sh ... } protocol imap { ... mail_executable = /usr/local/sbin/imap.sh ... } 5) Still in dovecot.conf add: userdb { driver = prefetch } 6) restart dovecot, done. /etc/init.d/dovecot restart Regards, Gilles From ml+dovecot at moritz.augsburger.name Fri Mar 7 11:12:38 2014 From: ml+dovecot at moritz.augsburger.name (Moritz Augsburger) Date: Fri, 07 Mar 2014 11:12:38 +0000 Subject: [Dovecot] Sieve/autosubscribe subfolder Message-ID: <5319A9A6.1060206@moritz.augsburger.name> Hi, I just ran across the annoying issue, that with lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes set, parent folders of newly created subfolders get subscribed without being existent. Let me give an example: In sieve I use fileinto "foo/bar"; but "foo/" does not exist as folder. So the Mailbox "foo/bar" gets created, but without "foo/" being a Mailbox. Nevertheless gets "foo/" subscribed, so that I have a non-existing mailbox in my subscription list, what confuses thunderbird. So, to solve this problem, I would propose - either the implicit creation of foo/ as mailbox or - not subscribing foo/ Moritz From paul at aptanet.com Fri Mar 7 12:14:10 2014 From: paul at aptanet.com (Paul Tansom) Date: Fri, 7 Mar 2014 12:14:10 +0000 Subject: [Dovecot] Struggling with antispam In-Reply-To: <53182AF7.8080207@chandlerfamily.org.uk> References: <5318283F.3000801@chandlerfamily.org.uk> <53182AF7.8080207@chandlerfamily.org.uk> Message-ID: <20140307121410.GA3319@aptanet.com> ** Alan Chandler [2014-03-06 08:01]: > On 06/03/14 07:48, Alan Chandler wrote: > >However, when I try to make this work with anitspam, I keep > >getting failure, and I can't work out what is causing it. Maybe > >its again because I am running with uid 10001 when calling > >sendmail but I don't know. > > > >antispam config is > > > >plugin { > >... > > > antispam_pipe_program=/usr/bin/sendmail > > Arrg: > > I have been struggling with this all yesterday evening. Two minutes > after posting this I realise it is /usr/sbin/sendmail, not > /usr/bin/sendmail > > Sorry for the noise (Although I would prefer to use the dspam > backend if I could). > > It is not working yet - postfix has rejected the mail because it > came from an unknown sender (dspam at chandlerfamily.org.uk) I could > use %u on the sender address - but then my sieve script to save > outgoing mail would have to change to ignore mail aimed at the spam > addresses. ** end quote [Alan Chandler] I wouldn't worry about it. I've done this plenty of times in the past, usually when I lack somebody (often completely non-technical) to try and explain things to. Sometimes it can be worth blogging or documenting - sorry to use that word ;) - things instead of boring somebody with at technical explanation - or posting something to a mailing list :) Anyway, as an aside to this, I've been amazed how effective greylisting has been - so much so a that on my server I've not got round to putting the full anti-spam configuration back in. I should imagine that on a raspberry pi the reduced load either of not running the anti-spam or much less mail being checked would be welcome. Without going into technical detail, all I am doing is greylisting anything that comes in and is on a RBL. Non RBL stuff gets straight through, so if a proper mail server is spamming and not yet on a RBL it doesn't help. If a legitimate server has ended up on a RBL by mistake it will try again (although so will a compromised one) and just be slowed down. The vast majority of spam, for me at least it seems, just doesn't bother to retry so there is no need to use processing power to scan it. Of course at some point the spammers will improve their processes no doubt, but for now they just seem to want to churn it out to anyone that will accept it without question and bother the rest. My volume of mail is pretty low (only a few thousand a day I think), so the hassle of setting up scanning hasn't been worth effort - yet - for the small volume of spam that gets through (although being a long term Mutt user for my mail I find I fly through managing mail compared to using a mouse). -- Paul Tansom | Aptanet Ltd. | http://www.aptanet.com/ | 023 9238 0001 ============================================================================= Registered in England | Company No: 4905028 | Registered Office: Ralls House, Parklands Business Park, Forrest Road, Denmead, Waterlooville, Hants, PO7 6XP From s.sabatier at pobox.com Fri Mar 7 12:15:12 2014 From: s.sabatier at pobox.com (Stanislas SABATIER) Date: Fri, 7 Mar 2014 13:15:12 +0100 Subject: [Dovecot] How to run a program with mail_filter plugin Message-ID: Hi, I'm using mail_filter plugin but I don't want it to launch a script but a program I wrote instead. In 10-master, if I put the absolute path to my program in the plugin settings ie : (?) service mail-filter { executable = /usr/local/bin/mail/my_email_filter (?) ?But I've got the following error from Dovecot : dovecot: master: Error: service(mail-filter): Initial status notification not received in 30 seconds, killing the process? h ?ow do I need to configure the service to launch my program ? Thanks, Regards, Stan.? --------------------------------------------------------------- Stanislas SABATIER s.sabatier at pobox.com --------------------------------------------------------------- From alan at chandlerfamily.org.uk Fri Mar 7 16:21:37 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Fri, 07 Mar 2014 16:21:37 +0000 Subject: [Dovecot] Struggling with antispam In-Reply-To: <20140307121410.GA3319@aptanet.com> References: <5318283F.3000801@chandlerfamily.org.uk> <53182AF7.8080207@chandlerfamily.org.uk> <20140307121410.GA3319@aptanet.com> Message-ID: <5319F211.4000607@chandlerfamily.org.uk> On 07/03/14 12:14, Paul Tansom wrote: > Anyway, as an aside to this, I've been amazed how effective > greylisting has been - so much so a that on my server I've not got > round to putting the full anti-spam configuration back in. That is very interesting - I was running on a 256Mb Pi (the old model B) and it would have worked with only the milter-greylist package installed. When my wife expressed an interest in the old PI as an XBMC front end I splashed out on a replacement with 512Mb, and have added dkim, clamav and dspam checks as well (just got this working and antispam working). and I am using just over the 256Mb in a pretty static state (I am routing all my outgoing e-mails through it, but I have not yet switched over from my other e-mail server) One question I would be very interested in - and can't find much about it is how long do you greylist these people for? Basically I only greylist people who fail the spf checks at the moment (that is specifically those who explicitly fail the spf check and those that have an spf record with a +all at the end) I greylist a softfail for 4 hours and a hard fail or open for 12, but I plucked these figures out of the air. Alan From noeldude at gmail.com Fri Mar 7 17:21:12 2014 From: noeldude at gmail.com (Noel) Date: Fri, 07 Mar 2014 11:21:12 -0600 Subject: [Dovecot] Struggling with antispam In-Reply-To: <5319F211.4000607@chandlerfamily.org.uk> References: <5318283F.3000801@chandlerfamily.org.uk> <53182AF7.8080207@chandlerfamily.org.uk> <20140307121410.GA3319@aptanet.com> <5319F211.4000607@chandlerfamily.org.uk> Message-ID: <531A0008.7000708@gmail.com> On 3/7/2014 10:21 AM, Alan Chandler wrote: > > One question I would be very interested in - and can't find much > about it is how long do you greylist these people for? > > Basically I only greylist people who fail the spf checks at the > moment (that is specifically those who explicitly fail the spf > check and those that have an spf record with a +all at the end) > > I greylist a softfail for 4 hours and a hard fail or open for 12, > but I plucked these figures out of the air. > > Alan A delay of 5..15 minutes is sufficient, a delay of hours unnecessarily delays legit mail without increasing the effectiveness. The vast majority of bots either don't retry, or retry once immediately. It seems to me that greylisting based on spf would not be very effective since it appears many bot herders intentionally use domains without spf records. Remember the purpose of greylisting is to reject bots, not delay "real" mail servers -- even if you don't want their mail. -- Noel Jones From alan at chandlerfamily.org.uk Fri Mar 7 17:26:04 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Fri, 07 Mar 2014 17:26:04 +0000 Subject: [Dovecot] Struggling with antispam In-Reply-To: <531A0008.7000708@gmail.com> References: <5318283F.3000801@chandlerfamily.org.uk> <53182AF7.8080207@chandlerfamily.org.uk> <20140307121410.GA3319@aptanet.com> <5319F211.4000607@chandlerfamily.org.uk> <531A0008.7000708@gmail.com> Message-ID: <531A012C.70109@chandlerfamily.org.uk> On 07/03/14 17:21, Noel wrote: > On 3/7/2014 10:21 AM, Alan Chandler wrote: >> One question I would be very interested in - and can't find much >> about it is how long do you greylist these people for? >> >> Basically I only greylist people who fail the spf checks at the >> moment (that is specifically those who explicitly fail the spf >> check and those that have an spf record with a +all at the end) >> >> I greylist a softfail for 4 hours and a hard fail or open for 12, >> but I plucked these figures out of the air. >> >> Alan > A delay of 5..15 minutes is sufficient, a delay of hours > unnecessarily delays legit mail without increasing the > effectiveness. The vast majority of bots either don't retry, or > retry once immediately. > > It seems to me that greylisting based on spf would not be very > effective since it appears many bot herders intentionally use > domains without spf records. > > Remember the purpose of greylisting is to reject bots, not delay > "real" mail servers -- even if you don't want their mail. > > > > -- Noel Jones Thanks These few posts have made me rethink my strategy here. Alan From azizknina at gmail.com Fri Mar 7 18:36:28 2014 From: azizknina at gmail.com (Aziz KNINA) Date: Fri, 7 Mar 2014 18:36:28 +0000 Subject: [Dovecot] unsebscribe Message-ID: *unsebscribe* From h.reindl at thelounge.net Fri Mar 7 18:47:53 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Fri, 07 Mar 2014 19:47:53 +0100 Subject: [Dovecot] unsebscribe In-Reply-To: References: Message-ID: <531A1459.20103@thelounge.net> Am 07.03.2014 19:36, schrieb Aziz KNINA: > *unsebscribe* besides the typo: just do it yourself https://www.google.com/search?q=how+to+unsubscribe+from+a+mailing+list just look at the list-headers of any message from any mailing-list List-Id: Dovecot Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From paul at aptanet.com Sat Mar 8 00:38:23 2014 From: paul at aptanet.com (Paul Tansom) Date: Sat, 8 Mar 2014 00:38:23 +0000 Subject: [Dovecot] Struggling with antispam In-Reply-To: <531A0008.7000708@gmail.com> References: <5318283F.3000801@chandlerfamily.org.uk> <53182AF7.8080207@chandlerfamily.org.uk> <20140307121410.GA3319@aptanet.com> <5319F211.4000607@chandlerfamily.org.uk> <531A0008.7000708@gmail.com> Message-ID: <20140308003822.GC3319@aptanet.com> ** Noel [2014-03-07 17:23]: > On 3/7/2014 10:21 AM, Alan Chandler wrote: > > > > One question I would be very interested in - and can't find much > > about it is how long do you greylist these people for? > > > > Basically I only greylist people who fail the spf checks at the > > moment (that is specifically those who explicitly fail the spf > > check and those that have an spf record with a +all at the end) > > > > I greylist a softfail for 4 hours and a hard fail or open for 12, > > but I plucked these figures out of the air. > > > > Alan > > A delay of 5..15 minutes is sufficient, a delay of hours > unnecessarily delays legit mail without increasing the > effectiveness. The vast majority of bots either don't retry, or > retry once immediately. > > It seems to me that greylisting based on spf would not be very > effective since it appears many bot herders intentionally use > domains without spf records. > > Remember the purpose of greylisting is to reject bots, not delay > "real" mail servers -- even if you don't want their mail. ** end quote [Noel] That sounds about right. I'm blocking unknown hosts for 10 minutes before whitelisting them for 8 hours. If they don't retry with that time they are dropped from the whitelist, but if they do that whitelist is extended to 60 days. At least that's the way I'm reading the config. It's a pretty standard greylistd config combined with exim and dovecot. It's running on an Atom 330 based server, although that is protected to some extent via a similar setup on a lightweight VPS that routes mail in via the hubbed hosts config. I'm actually thinking of clustering the two boxes instead which may work better if my internet connection goes down (which it did for about a week thanks to BT line problems last year). Next is to improve my backup process which is untidy. -- Paul Tansom | Aptanet Ltd. | http://www.aptanet.com/ | 023 9238 0001 ============================================================================= Registered in England | Company No: 4905028 | Registered Office: Ralls House, Parklands Business Park, Forrest Road, Denmead, Waterlooville, Hants, PO7 6XP From alan at chandlerfamily.org.uk Sat Mar 8 07:36:21 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Sat, 08 Mar 2014 07:36:21 +0000 Subject: [Dovecot] Planning migration Message-ID: <531AC875.9070207@chandlerfamily.org.uk> I think I have a working dovecot installation, and the time has come to migrate my users. There are only 4 of us, so it can be done manually per user. I looked at this page in the wiki http://wiki2.dovecot.org/Migration/Dsync but I am totally confused. 1st off, it uses doveadm, but with commands parameters that dont match my doveadm's man page. In fact they look more like dsync parameters. Is there an error, or am I totally misunderstanding 2nd - if I assume its a dsync set of parameters, the imapc: at the end is a specification of location2. However, again my man page doesn't give any explanation of this. I am wondering, is this an example of an proxy 3rd - where do the imapc_* parameters go in the configuration I can't find any reference to them in the wiki From gedalya at gedalya.net Sat Mar 8 08:20:12 2014 From: gedalya at gedalya.net (Gedalya) Date: Sat, 08 Mar 2014 03:20:12 -0500 Subject: [Dovecot] Planning migration In-Reply-To: <531AC875.9070207@chandlerfamily.org.uk> References: <531AC875.9070207@chandlerfamily.org.uk> Message-ID: <531AD2BC.7040801@gedalya.net> On 03/08/2014 02:36 AM, Alan Chandler wrote: > I think I have a working dovecot installation, and the time has come > to migrate my users. There are only 4 of us, so it can be done > manually per user. > > I looked at this page in the wiki > > http://wiki2.dovecot.org/Migration/Dsync > > but I am totally confused. > > 1st off, it uses doveadm, but with commands parameters that dont match > my doveadm's man page. In fact they look more like dsync parameters. > Is there an error, or am I totally misunderstanding > Indeed that's a problem. Dsync as a separate command has been deprecated and now dsync is a symbolic link to doveadm. The currently correct way to invoke dsync commands is as is described on this wiki page, but the man pages were not updated to reflect this. > 2nd - if I assume its a dsync set of parameters, the imapc: at the end > is a specification of location2. However, again my man page doesn't > give any explanation of this. I am wondering, is this an example of > an proxy imapc is a dovecot storage backend, which acts as an IMAP client. Migration is implemented as a reverse backup from location2. imapc can be used as a sort of proxy but in this case it is literally used as a storage engine, when reading from location2 and writing to your new mailbox. I've expressed my opinion before that the wiki's structure seems rather, ehm, circular. Every page seems to assume you already know absolutely everything except for the details provided by that page. It would be helpful if every topic had a proper introduction, explaining what every thing is, why it exists, and under what circumstances it could help you solve what problem. The last discussion of this did not end with a call to action. > > 3rd - where do the imapc_* parameters go in the configuration I > can't find any reference to them in the wiki local.conf is fine (should be included from dovecot.conf), or otherwise just dovecot.conf. You can also just specify a series of '-o imapc_*' on the command line, you say you only have 4 users... From dalevizo at otenet.gr Sat Mar 8 09:57:39 2014 From: dalevizo at otenet.gr (Dimos Alevizos) Date: Sat, 8 Mar 2014 11:57:39 +0200 Subject: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' In-Reply-To: <52FCCE1E.10301@otenet.gr> References: <51C1AB7B.9030404@otenet.gr> <4EAAD8C1-A99F-4D66-9FB6-32E634E4A8A5@iki.fi> <20130624104131.GB9999@otenet.gr> <51CA967E.1000701@otenet.gr> <625F4988-B777-4DB0-84FF-E5ED6A5EFD14@iki.fi> <5270E2AE.6020900@otenet.gr> <52FCCE1E.10301@otenet.gr> Message-ID: <20140308095739.GA12260@otenet.gr> Kind reminder :-) D. On Thu 13/02/2014 15:52, Dimos Alevizos wrote: > At last, I was finally able to find time and run a backtrace, I've > attached the file. > If you don't remember (and hey, you can blame you after all this > time) the problem is only with a couple (~10) of users among the > hundreds of thousands currently using the service. > > Please let me know if I should provide any other info, logs or whatever. > > Dimos Alevizos > > -------- Original Message -------- > Subject: Re: [Dovecot] Mbox corruption - Inbox beginning with > 'FFrom' or 'FrFrom' > From: Timo Sirainen > To: Dimos Alevizos > CC: Dimitris Paouris , Dovecot Mailing List > > Date: 02/11/2013 01:16 ?? > > >Well, if that patch didn?t work, then the problem is elsewhere. There aren?t many other good possibilities left though.. How about adding this patch, it should be even safer than the previous one: > > > >http://hg.dovecot.org/dovecot-2.2/rev/d3062d066593 > > > >On 30.10.2013, at 12.42, Dimos Alevizos wrote: > > > >>I'm afraid it doesn't seem to be working. > >>I've compiled a patched 2.2.6 dovecot with the patch you sent and installed it in a production server (had to be 2.2.6 cause we've upgraded all the rest since I begun this thread months ago) and although we still have mbox corruptions (rarely as before) the server isn't crashing : > >> > >>Oct 30 11:15:19 pop04 dovecot: pop3-login: Login: user=, method=PLAIN, rip=85.72.232.35, lip=83.235.66.43, mpid=24419, secured, session=<+0ywxfHpIQBVSOgj> > >>Oct 30 11:15:20 pop04 dovecot: pop3(artower at otenet.gr): Disconnected: Logged out top=0/0, retr=0/0, del=0/1336, size=471029518 > >>Oct 30 11:19:12 pop04 dovecot: lmtp(2863, artower at otenet.gr): r7U3KnyhcFIvCwAAckDtvw: msgid=: size=17823 saved mail to INBOX > >>Oct 30 11:33:12 pop04 dovecot: pop3-login: Login: user=, method=PLAIN, rip=85.72.224.94, lip=83.235.66.43, mpid=600, secured, session= > >>Oct 30 11:33:12 pop04 dovecot: pop3(artower at otenet.gr): Error: Syncing INBOX failed: Mailbox isn't a valid mbox file > >>Oct 30 11:33:12 pop04 dovecot: pop3(artower at otenet.gr): Error: Couldn't init INBOX: Mailbox isn't a valid mbox file > >>Oct 30 11:33:12 pop04 dovecot: pop3(artower at otenet.gr): Mailbox init failed top=0/0, retr=0/0, del=0/0, size=0 > >>Oct 30 11:33:33 pop04 dovecot: lmtp(16314, artower at otenet.gr): Au4vIMqucFK6PwAAckDtvw: msgid=<004401ced552$bb5ecd70$321c6850$@planet.nl>: size=7975817 save failed to INBOX: Mailbox isn't a valid mbox file > >> > >>Perhaps the patch is only valid for 2.1.16 and needs to be modified for 2.2.6 ? > >> > >>Thank you for your time > >>Dimos Alevizos > >> > >> > >>-------- Original Message -------- > >>Subject: Re: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' > >>From: Timo Sirainen > >>To: Dimos Alevizos > >>CC: dovecot at dovecot.org, Dimitris Paouris > >>Date: 26/06/2013 06:59 ?? > >> > >>>It crashes one specific IMAP/POP3 session, so others are unaffected. The potential problems: > >>> > >>> * It might cause the user's mbox to become crashing constantly. so first crash -> client reconnects -> client attempts the same operation -> crash again. Then again, this might not happen, it depends. > >>> > >>> * The mbox file would probably become slightly more corrupted than normally, because it doesn't finish moving data around. No data should get actually lost, but some parts could become duplicated (e.g. some headers or even mails, possibly causing UID renumbering = redownloading). > >>> > >>>So not ideal in production, but shouldn't be too bad either, especially if you just wait for the first crash and then immediately switch to the old unpatched version. > >>> > >>>On 26.6.2013, at 10.21, Dimos Alevizos wrote: > >>> > >>>>Hi, > >>>> > >>>>I haven't had the time to compile it yet, but a question just occurred. > >>>>Given that it's so rare and we can't reproduce it on a dev server, how safe is this to use on a production server ? > >>>>When you say "crash" you mean the whole dovecot server or that specific client's child ? > >>>> > >>>>D. > >>>> > >>>>-------- Original Message -------- > >>>>Subject: Re: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' or 'FrFrom' > >>>>From: dalevizo > >>>>To: Timo Sirainen > >>>>CC: dovecot at dovecot.org, Dimitris Paouris > >>>>Date: 24/06/2013 01:41 ?? > >>>> > >>>>>Thanx I'll try the patch as soon as possible and I'll let you know. > >>>>>It is indeed very rare. We're only seeing 4-5 corruptions in about 13 > >>>>>million logins per day. > >>>>>I've been trying to convince our design team that we should move to > >>>>>maildir, but the truth is that it's quite a change, and we're way too > >>>>>busy to deal with everything else AND a migration from mbox to maildir. > >>>>> > >>>>>D. > >>>>> > >>>>>On Mon 24/06/2013 13:16, Timo Sirainen wrote: > >>>>>>On 19.6.2013, at 16.00, Dimos Alevizos wrote: > >>>>>> > >>>>>>>we're having some problems with our dovecot setup. > >>>>>>>I've seen similar problems in the mailing list some years ago but alas wasn't able to find a solution. > >>>>>>> > >>>>>>>Our setup is as follows : > >>>>>>>An MX farm (postfix) sends mails via LMTP to a director farm (dovecot 2.1.12) which proxies pop3/imap/lmtp traffic to a dovecot farm (dovecot 2.1.16). > >>>>>>>All mailboxes and indexes are on NFS and all servers are Centos. > >>>>>>> > >>>>>>>The problem is that at times we see mailboxes (all of them are in mbox format) beginning with FFrom or FrFrom and of course dovecot says it's not a valid mbox file. > >>>>>> > >>>>>>This is quite an old bug, but it happens rarely enough that I haven't been able to reproduce and fix it. Actually people hadn't complained about it for a long time now, so I had assumed it had somehow gotten fixed already. > >>>>>> > >>>>>>With the attached debug patch it should crash instead of (completely) corrupting the mbox file. Debugging the resulting core file with gdb could be useful in figuring this out. > >>>>>> > >>>>>>Although I wouldn't recommend mbox format for any big installation anyway.. > >>>>>> > >>>>> > >>>>> > >>>>>> > >>>>>> > >>>>> > >>>> > >>> > >> > > > Feb 13 15:41:08 pop06 dovecot: imap-login: Login: user=, method=PLAIN, rip=195.170.0.170, lip=83.235.66.45, mpid=8157, session= > Feb 13 15:41:09 pop06 dovecot: imap(someuser at somedomain): Panic: file mbox-sync.c: line 655 (mbox_sync_handle_header): assertion failed: (mail_ctx->mail.from_offset + move_diff != 1 && mail_ctx->mail.from_offset + move_diff != 2) > Feb 13 15:41:09 pop06 dovecot: imap(someuser at somedomain): Error: Raw backtrace: /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf551923fa] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf55192466] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf55191583] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0 [0x2adf54e7e9a7] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0(mbox_sync+0x620) [0x2adf54e7f160] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0(mbox_storage_sync_init+0x83) [0x2adf54e80093] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0(mailbox_sync_init+0x31) [0x2adf54e99da1] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0(mailbox_sync+0x27) [0x2adf54e9abc7] -> dovecot/imap [someuser at somedomain 195.170.0.170 SELECT](cmd_select_full+0x219) [0x4111c9] -> dovecot/imap [someuser at somedomain 195.170.0.170 SELECT](cmd_select+0xb) [0x411afb] -> dovecot/imap [someuser at somedomain 195.170.0.170 SELECT](command_exec+0x37) [0x4165e7] -> dovecot/imap [d > Feb 13 15:41:09 pop06 dovecot: imap(someuser at somedomain): Fatal: master: service(imap): child 8157 killed with signal 6 (core dumped) > > root at pop06:someuser $ gdb /opt/dovecot-2.2.9/libexec/imap core.8157 > GNU gdb (GDB) CentOS (7.0.1-45.el5.centos) > Copyright (C) 2009 Free Software Foundation, Inc. > License GPLv3+: GNU GPL version 3 or later > This is free software: you are free to change and redistribute it. > There is NO WARRANTY, to the extent permitted by law. Type "show copying" > and "show warranty" for details. > This GDB was configured as "x86_64-redhat-linux-gnu". > For bug reporting instructions, please see: > ... > Reading symbols from /opt/dovecot-2.2.9/libexec/imap...done. > [New Thread 8157] > Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0...done. > Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/libdovecot-storage.so.0 > Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0...done. > Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 > Reading symbols from /lib64/libc.so.6...(no debugging symbols found)...done. > Loaded symbols for /lib64/libc.so.6 > Reading symbols from /lib64/librt.so.1...(no debugging symbols found)...done. > Loaded symbols for /lib64/librt.so.1 > Reading symbols from /lib64/libdl.so.2...(no debugging symbols found)...done. > Loaded symbols for /lib64/libdl.so.2 > Reading symbols from /lib64/ld-linux-x86-64.so.2...(no debugging symbols found)...done. > Loaded symbols for /lib64/ld-linux-x86-64.so.2 > Reading symbols from /lib64/libpthread.so.0...(no debugging symbols found)...done. > [Thread debugging using libthread_db enabled] > Loaded symbols for /lib64/libpthread.so.0 > Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib10_quota_plugin.so...done. > Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib10_quota_plugin.so > Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib11_imap_quota_plugin.so...done. > Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib11_imap_quota_plugin.so > Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib15_notify_plugin.so...done. > Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib15_notify_plugin.so > Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib20_fts_plugin.so...done. > Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib20_fts_plugin.so > Reading symbols from /opt/dovecot-2.2.9/lib/dovecot/lib21_fts_solr_plugin.so...done. > Loaded symbols for /opt/dovecot-2.2.9/lib/dovecot/lib21_fts_solr_plugin.so > Reading symbols from /lib64/libexpat.so.0...(no debugging symbols found)...done. > Loaded symbols for /lib64/libexpat.so.0 > Reading symbols from /lib64/libgcc_s.so.1...(no debugging symbols found)...done. > Loaded symbols for /lib64/libgcc_s.so.1 > > warning: no loadable sections found in added symbol-file system-supplied DSO at 0x7fff49dfd000 > Core was generated by `dovecot/imap [someuser at somed'. > Program terminated with signal 6, Aborted. > #0 0x0000003efe030265 in raise () from /lib64/libc.so.6 > (gdb) bt full > #0 0x0000003efe030265 in raise () from /lib64/libc.so.6 > No symbol table info available. > #1 0x0000003efe031d10 in abort () from /lib64/libc.so.6 > No symbol table info available. > #2 0x00002adf5519241e in default_fatal_finish (type=, status=0) at failures.c:192 > backtrace = 0x14d90370 "/opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf551923fa] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf55192466] -> /opt/dovecot-2.2.9/lib/dovecot/libdovecot.so.0 [0x2adf55191583] ->"... > #3 0x00002adf55192466 in i_internal_fatal_handler (ctx=0x7fff49d91340, format=, args=) at failures.c:653 > status = 0 > #4 0x00002adf55191583 in i_panic (format=0x1fdd
) at failures.c:264 > ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} > args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fff49d91410, reg_save_area = 0x7fff49d91350}} > #5 0x00002adf54e7e9a7 in mbox_sync_handle_header (sync_ctx=0x7fff49d935e0, mail_ctx=0x7fff49d937d0, partial=true) at mbox-sync.c:654 > orig_from_offset = 14200194 > move_diff = -14200194 > ret = > __FUNCTION__ = "mbox_sync_handle_header" > #6 mbox_sync_loop (sync_ctx=0x7fff49d935e0, mail_ctx=0x7fff49d937d0, partial=true) at mbox-sync.c:1138 > rec = 0x14dc0d20 > uid = > messages_count = 302 > offset = 14200194 > ret = > expunged = false > skipped_mails = false > uids_broken = false > #7 0x00002adf54e7f160 in mbox_sync_int (mbox=0x14db5b30, flags=MBOX_SYNC_UNDIRTY) at mbox-sync.c:1619 > index_sync_ctx = 0x14dd3710 > sync_view = 0x14dd3780 > ret = > delay_writes = true > readonly = false > trans = 0x14dbf420 > sync_ctx = {mbox = 0x14db5b30, flags = MBOX_SYNC_UNDIRTY, input = 0x14dd4fe8, file_input = 0x14dd4e18, write_fd = 15, orig_mtime = 1392290551, orig_atime = 1391079897, > orig_size = 29081201, last_stat = {st_dev = 25, st_ino = 30254297, st_nlink = 1, st_mode = 33152, st_uid = 1904649, st_gid = 550, pad0 = 0, st_rdev = 0, st_size = 29081201, > st_blksize = 32768, st_blocks = 56920, st_atim = {tv_sec = 1391079897, tv_nsec = 0}, st_mtim = {tv_sec = 1392290551, tv_nsec = 0}, st_ctim = {tv_sec = 1392290551, > tv_nsec = 961280000}, __unused = {0, 0, 0}}, index_sync_ctx = 0x14dd3710, sync_view = 0x14dd3780, t = 0x14dbf420, reset_hdr = {major_version = 0 '\000', minor_version = 0 '\000', > base_header_size = 0, header_size = 0, record_size = 0, compat_flags = 0 '\000', unused = "\000\000", indexid = 0, flags = 0, uid_validity = 0, next_uid = 0, messages_count = 0, > unused_old_recent_messages_count = 0, seen_messages_count = 0, deleted_messages_count = 0, first_recent_uid = 0, first_unseen_uid_lowwater = 0, first_deleted_uid_lowwater = 0, > log_file_seq = 0, log_file_tail_offset = 0, log_file_head_offset = 0, unused_old_sync_size = 0, unused_old_sync_stamp = 0, day_stamp = 0, day_first_uid = {0, 0, 0, 0, 0, 0, 0, 0}}, > hdr = 0x14dbf090, header = 0x14dcb070, from_line = 0x14dcd100, base_uid_validity = 1387910574, base_uid_last = 439, base_uid_last_offset = 0, mails = {arr = {buffer = 0x14dcb0b0, > element_size = 64}, v = 0x14dcb0b0, v_modifiable = 0x14dcb0b0}, sync_changes = 0x14dcb0f0, mail_keyword_pool = 0x14dbf780, saved_keywords_pool = 0x14de7480, prev_msg_uid = 242, > next_uid = 440, idx_next_uid = 440, seq = 105, idx_seq = 105, need_space_seq = 0, last_nonrecent_uid = 0, expunged_space = 14200194, space_diff = 0, dest_first_mail = 1, > first_mail_crlf_expunged = 0, keep_recent = 0, readonly = 0, delay_writes = 1, renumber_uids = 0, moved_offsets = 0, ext_modified = 0, index_reset = 0, errors = 0} > sync_flags = > changed = > __FUNCTION__ = "mbox_sync_int" > #8 mbox_sync (mbox=0x14db5b30, flags=MBOX_SYNC_UNDIRTY) at mbox-sync.c:2000 > lock_id = 3 > ret = > __FUNCTION__ = "mbox_sync" > #9 0x00002adf54e80093 in mbox_storage_sync_init (box=0x14db5b30, flags=65) at mbox-sync.c:2049 > mbox = 0x1fdd > mbox_sync_flags = 8157 > ret = 0 > #10 0x00002adf54e99da1 in mailbox_sync_init (box=0x14db5b30, flags=65) at mail-storage.c:1668 > _data_stack_cur_id = 4 > ctx = > #11 0x00002adf54e9abc7 in mailbox_sync (box=0x1fdd, flags=8157) at mail-storage.c:1716 > ctx = 0x14d99110 > status = {sync_delayed_expunges = 0} > #12 0x00000000004111c9 in select_open (cmd=0x14db3310, readonly=false) at cmd-select.c:313 > No locals. > #13 cmd_select_full (cmd=0x14db3310, readonly=false) at cmd-select.c:439 > client = 0x14db2b00 > ctx = 0x14db3408 > args = 0x14d9ba98 > list_args = 0x101010101010101 > mailbox = 0x14d902b8 "INBOX" > error = > ret = > __FUNCTION__ = "cmd_select_full" > ---Type to continue, or q to quit--- > #14 0x0000000000411afb in cmd_select (cmd=0x1fdd) at cmd-select.c:448 > No locals. > #15 0x00000000004165e7 in command_exec (cmd=0x14db3310) at imap-commands.c:158 > hook = 0x14d99110 > ret = > #16 0x00000000004153db in client_command_input (cmd=0x1fdd) at imap-client.c:780 > client = 0x14db2b00 > command = > __FUNCTION__ = "client_command_input" > #17 0x0000000000415495 in client_command_input (cmd=0x14db3310) at imap-client.c:841 > client = 0x14db2b00 > command = 0x6 > __FUNCTION__ = "client_command_input" > #18 0x000000000041564f in client_handle_next_command (client=0x14db2b00) at imap-client.c:879 > No locals. > #19 client_handle_input (client=0x14db2b00) at imap-client.c:891 > _data_stack_cur_id = 3 > remove_io = > handled_commands = false > __FUNCTION__ = "client_handle_input" > #20 0x0000000000415a52 in client_input (client=0x14db2b00) at imap-client.c:933 > cmd = > output = 0x14db0c00 > bytes = 19 > __FUNCTION__ = "client_input" > #21 0x00002adf551a1676 in io_loop_call_io (io=0x14db0cd0) at ioloop.c:388 > ioloop = 0x14d98740 > t_id = 2 > #22 0x00002adf551a2c7d in io_loop_handler_run (ioloop=) at ioloop-epoll.c:220 > ctx = > event = 0x14d9a250 > list = 0x14db0d20 > io = 0x1fdd > tv = {tv_sec = 3, tv_usec = 790044} > events_count = > msecs = > ret = 1 > i = 0 > call = false > __FUNCTION__ = "io_loop_handler_run" > #23 0x00002adf551a15f8 in io_loop_run (ioloop=0x14d98740) at ioloop.c:412 > __FUNCTION__ = "io_loop_run" > #24 0x00002adf551528d3 in master_service_run (service=0x14d985d0, callback=0x1fdd) at master-service.c:566 > No locals. > #25 0x000000000041ef07 in main (argc=2, argv=0x14d98390) at main.c:400 > login_set = {auth_socket_path = 0x14d90060 "\210", postlogin_socket_path = 0x14d900b8 "", postlogin_timeout_secs = 60, callback = 0x41f100 , > failure_callback = 0x41f0a0 , request_auth_token = 1} > service_flags = > storage_service_flags = MAIL_STORAGE_SERVICE_FLAG_DISALLOW_ROOT > username = 0x0 > c = > set_roots = {0x426b20, 0x0} > (gdb) From kremels at kreme.com Sat Mar 8 22:00:08 2014 From: kremels at kreme.com (LuKreme) Date: Sat, 8 Mar 2014 15:00:08 -0700 Subject: [Dovecot] Sieve/autosubscribe subfolder In-Reply-To: <5319A9A6.1060206@moritz.augsburger.name> References: <5319A9A6.1060206@moritz.augsburger.name> Message-ID: <17AC350F-84DD-48B2-A41D-D3A41B0D6ACF@kreme.com> On 07 Mar 2014, at 04:12 , Moritz Augsburger wrote: > Hi, > > I just ran across the annoying issue, that with > > lda_mailbox_autocreate = yes > lda_mailbox_autosubscribe = yes > > set, parent folders of newly created subfolders get subscribed without > being existent. > > Let me give an example: > > In sieve I use > fileinto "foo/bar"; > > but "foo/" does not exist as folder. So the Mailbox "foo/bar" gets > created, but without "foo/" being a Mailbox. Nevertheless gets "foo/" > subscribed, so that I have a non-existing mailbox in my subscription > list, what confuses thunderbird. Are you sure the problem is not ThunderBird? > So, to solve this problem, I would propose > - either the implicit creation of foo/ as mailbox or Terrible idea. > - not subscribing foo/ Yes, assuming that it is not TB screwing up. -- The omnipotent eyesight of various supernatural entities is often remarked upon. It is said that they can see the fall of every sparrow. And this may be true. But there is only one who is always there when it hits the ground. --Hogfather From vesa.muhonen at iki.fi Sat Mar 8 00:06:24 2014 From: vesa.muhonen at iki.fi (Vesa Muhonen) Date: Sat, 08 Mar 2014 01:06:24 +0100 Subject: [Dovecot] BUG: segmentation fault in auth Message-ID: <3369297.EJL4TedX5x@orthanc> Hi I'm getting segmentation fault in Dovecot 2.2.11. This happens when trying to do a user lookup by "doveadm user". The machine is running Arch Linux on i686 on ext3. dovecot -n (I took this when running the previous version that works) # 2.2.9: /etc/dovecot/dovecot.conf # OS: Linux 3.12.9-x86-linode56 i686 auth_cache_size = 32 k default_client_limit = 500 default_process_limit = 50 default_vsz_limit = 128 M log_timestamp = "%Y-%m-%d %H:%M:%S " mail_gid = vmail mail_location = sdbox:~/sdbox mail_privileged_group = mail mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { inbox = yes location = mailbox Archive { auto = create special_use = \Archive } mailbox Drafts { auto = create special_use = \Drafts } mailbox Junk { auto = create special_use = \Junk } mailbox Sent { auto = create special_use = \Sent } mailbox Trash { auto = create special_use = \Trash } prefix = separator = / subscriptions = yes type = private } passdb { args = /etc/dovecot/deny-users deny = yes driver = passwd-file } passdb { args = /etc/dovecot/master-users driver = passwd-file master = yes pass = yes } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_max_script_size = 1M sieve_quota_max_scripts = 10 sieve_quota_max_storage = 10M } postmaster_address = postmaster@ protocols = imap lmtp sieve service auth-worker { user = $default_internal_user } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } user = $default_internal_user } service imap-login { inet_listener imap { port = 143 } process_min_avail = 1 service_count = 1 vsz_limit = 64 M } service imap { process_limit = 256 } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0600 user = postfix } user = vmail } service managesieve-login { inet_listener sieve { port = 4190 } service_count = 1 vsz_limit = 64 M } service managesieve { process_limit = 128 } ssl = required ssl_ca = } This is the error I get: # doveadm user ... doveadm(root): Error: userdb lookup(...): Disconnected unexpectedly field value This appears in logs: Mar 08 00:18:40 kernel: auth[15182]: segfault at 4 ip 0805dbbd sp bfd87ec0 error 4 in auth[8048000+4b000] Mar 08 00:18:40 dovecot[15177]: auth: Fatal: master: service(auth): child 15182 killed with signal 11 (core dumped) Mar 08 00:18:40 systemd-coredump[15227]: Process 15182 (auth) dumped core. And the coredump (if I got it out correctly) # systemd-coredumpctl gdb 15182 TIME PID UID GID SIG EXE Sat 2014-03-08 00:18:40 CET 15182 76 76 11 /usr/lib/dovecot/auth Reading symbols from /usr/lib/dovecot/auth...(no debugging symbols found)...done. [New LWP 15182] Core was generated by `dovecot/auth'. Program terminated with signal SIGSEGV, Segmentation fault. #0 0x0805dbbd in auth_fields_exists () I'm no expert in debugging, but do tell if you need more info. -vesa From fulford at fulford.net Sun Mar 9 02:09:54 2014 From: fulford at fulford.net (Clifford W Fulford) Date: Sun, 9 Mar 2014 02:09:54 +0000 (GMT) Subject: [Dovecot] Slackware 14 config Message-ID: I am trying to install dovecot 2.2.12 from source on slackware 14.0 Compilation and install work without error. doveconf -n # 2.2.12: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 3.2.45 x86_64 Slackware 14.0 auth_mechanisms = plain login auth_socket_path = /var/run/dovecot/auth-userdb base_dir = /var/run/dovecot/ mail_location = mbox:~/mail:INBOX=/var/spool/mail/%u namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { driver = shadow } protocols = imap lmtp pop3 service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } ssl_cert = trying to install Pigeonhole Sieve Extprograms how do I determine what is correct path for dovecot.config ? I did the hg clone http://hg.rename-it.nl/pigeonhole-0.3-sieve-extprograms/ './autogen.sh' seemed to have worked, but './configure' fails with # ./configure --with-dovecot=/usr/local/lib/dovecot ... checking whether to build static libraries... yes checking for dovecot-config in "/usr/local/lib/dovecot"... not found configure: configure: Use --with-dovecot=DIR to provide the path to the dovecot-config file. configure: error: dovecot-config not found or ... checking for dovecot-config in "/usr/lib64/dovecot"... not found configure: configure: Use --with-dovecot=DIR to provide the path to the dovecot-config file. configure: error: dovecot-config not found # whereis dovecot dovecot: /usr/sbin/dovecot /etc/dovecot /usr/lib64/dovecot /usr/libexec/dovecot /usr/share/man/man1/dovecot.1.gz # dovecot --version 2.1.17 # uname -a Linux 2.6.32-431.5.1.el6.x86_64 #1 SMP Wed Feb 12 00:41:43 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux From scott at geigermediaservices.com Sun Mar 9 16:06:38 2014 From: scott at geigermediaservices.com (Scott Geiger) Date: Sun, 09 Mar 2014 12:06:38 -0400 Subject: [Dovecot] dovecot 2 + vpopmail 5.5.0 Message-ID: <5a34e84e8442ac406aac57b5983e9931@geigermediaservices.com> I am working on setting up dovecot 2.2.12 with an installed qmail + vpopmail 5.5.0 base. So far I have not had much luck getting the auth to work with vpopmail. Does dovecot 2.2.12 work with vpopmail 5.5.0? So far when I try to authenticate I always get back User Unknown in the log. Thanks From skdovecot at smail.inf.fh-brs.de Mon Mar 10 13:09:17 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 10 Mar 2014 14:09:17 +0100 (CET) Subject: [Dovecot] Slackware 14 config In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sun, 9 Mar 2014, Clifford W Fulford wrote: > Seems to start ok. No errors reported in logs. Checked location of logs with > "doveadm log find" Did you've verified that a Dovecot process is running and which ports it is listening to? > > telnet localhost 143 > Connected to localhost. > Escape character is '^]' > > No imap prompt. Still no errors. Do you have SELinux or some protection system running? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUx25fXD1/YhP6VMHAQJ4lggAoiIk8A42SOkEfDd6Q0pxAL4+KZ/45tVj oixb9lJ3EiFCJJlUl9Fv2HZnek/hQ46grQ4AC2M44h4z/ZB6EwGj1koHIVrqOsOx q2pK1O601UbQ2/Ht2UDoeevCpbZZ1WxXHesRZJeP0gZTW4eeZU9Y/5yT57eSsCrw xpcGoKxXaua/4Y8yAb23m4InjdFxZuF5Ob4K77pm6Z3CWvAVgcMF2TIJpH6+KIzG rhn6VKLGeSQZ54SkATmfvNSqj3tL7fzKWhVih9xtNEH/rwzXo+16j0tOUmGREZD7 zsOTu0qo48cZu7ES/PCUMXUzl+MJ+u5ac6Tkt59CzSf9es0nonDmcA== =cJuq -----END PGP SIGNATURE----- From fulford at fulford.net Mon Mar 10 13:29:33 2014 From: fulford at fulford.net (Clifford W Fulford) Date: Mon, 10 Mar 2014 13:29:33 +0000 (GMT) Subject: [Dovecot] Slackware 14 config In-Reply-To: References: Message-ID: Yes it is running and its listending on ports 143 and 193 but I only get the response shown in my post. No imap capability message and no response to any input. Clifford ======================================================================== On Mon, 10 Mar 2014, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Sun, 9 Mar 2014, Clifford W Fulford wrote: > >> Seems to start ok. No errors reported in logs. Checked location of logs >> with "doveadm log find" > > Did you've verified that a Dovecot process is running and which ports it is > listening to? > >> >> telnet localhost 143 >> Connected to localhost. >> Escape character is '^]' >> >> No imap prompt. Still no errors. > > Do you have SELinux or some protection system running? > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUx25fXD1/YhP6VMHAQJ4lggAoiIk8A42SOkEfDd6Q0pxAL4+KZ/45tVj > oixb9lJ3EiFCJJlUl9Fv2HZnek/hQ46grQ4AC2M44h4z/ZB6EwGj1koHIVrqOsOx > q2pK1O601UbQ2/Ht2UDoeevCpbZZ1WxXHesRZJeP0gZTW4eeZU9Y/5yT57eSsCrw > xpcGoKxXaua/4Y8yAb23m4InjdFxZuF5Ob4K77pm6Z3CWvAVgcMF2TIJpH6+KIzG > rhn6VKLGeSQZ54SkATmfvNSqj3tL7fzKWhVih9xtNEH/rwzXo+16j0tOUmGREZD7 > zsOTu0qo48cZu7ES/PCUMXUzl+MJ+u5ac6Tkt59CzSf9es0nonDmcA== > =cJuq > -----END PGP SIGNATURE----- > From fulford at fulford.net Mon Mar 10 13:34:40 2014 From: fulford at fulford.net (Clifford W Fulford) Date: Mon, 10 Mar 2014 13:34:40 +0000 (GMT) Subject: [Dovecot] Slackware 14 config In-Reply-To: References: Message-ID: Sorry just seen my typo I meant ports 143 and 993. -- On Mon, 10 Mar 2014, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Sun, 9 Mar 2014, Clifford W Fulford wrote: > >> Seems to start ok. No errors reported in logs. Checked location of logs >> with "doveadm log find" > > Did you've verified that a Dovecot process is running and which ports it is > listening to? > >> >> telnet localhost 143 >> Connected to localhost. >> Escape character is '^]' >> >> No imap prompt. Still no errors. > > Do you have SELinux or some protection system running? > > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUx25fXD1/YhP6VMHAQJ4lggAoiIk8A42SOkEfDd6Q0pxAL4+KZ/45tVj > oixb9lJ3EiFCJJlUl9Fv2HZnek/hQ46grQ4AC2M44h4z/ZB6EwGj1koHIVrqOsOx > q2pK1O601UbQ2/Ht2UDoeevCpbZZ1WxXHesRZJeP0gZTW4eeZU9Y/5yT57eSsCrw > xpcGoKxXaua/4Y8yAb23m4InjdFxZuF5Ob4K77pm6Z3CWvAVgcMF2TIJpH6+KIzG > rhn6VKLGeSQZ54SkATmfvNSqj3tL7fzKWhVih9xtNEH/rwzXo+16j0tOUmGREZD7 > zsOTu0qo48cZu7ES/PCUMXUzl+MJ+u5ac6Tkt59CzSf9es0nonDmcA== > =cJuq > -----END PGP SIGNATURE----- > From professa at dementianati.com Mon Mar 10 13:53:37 2014 From: professa at dementianati.com (Professa Dementia) Date: Mon, 10 Mar 2014 06:53:37 -0700 Subject: [Dovecot] Slackware 14 config In-Reply-To: References: Message-ID: <531DC3E1.5000408@dementianati.com> > Sorry just seen my typo I meant ports 143 and 993. Irrelevant. Take a step back and think about it logically. The error messages did not say that you could not connect to these ports. In fact, it seems you can, so clearly, this is not your problem. A "netstat -nat" will show if something is listening on these ports. > doveadm(root): Error: Timeout waiting for handshake from auth server. my > pid=8881, input bytes=0 > doveadm(root): Fatal: Couldn't connect to auth socket This is what you should be looking into -> "Timeout waiting for handshake from auth server" The second message "cannot connect ..." is the generic error if the entire connect fails. However, the primary error is the timeout error. That is the key. It is not getting a response from the other end of the socket. What is supposed to be connecting to the other end? Are you using SASL or something else to do authentication? What does "lsof | grep auth-userdb" show? Two things should have that file open. If not, there is your problem. A pipe, named or otherwise, is like a chatroom. It is very lonely when you are the only one. Standard problem solving techniques. All the information you need is right in front of you. Dem From andrew.lewis at imaginet.co.za Mon Mar 10 15:11:22 2014 From: andrew.lewis at imaginet.co.za (Andrew Lewis) Date: Mon, 10 Mar 2014 17:11:22 +0200 Subject: [Dovecot] mdbox+sis: Error: read(attachments-connector(/path/...)) failed: read(/path/...[base64:18 b/l]) failed: Stream is larger than expected (256088 > 256087, eof=1) (FETCH BODY[] for mailbox INBOX UID 29925) Message-ID: <531DD61A.1020501@imaginet.co.za> Hi, User's mailbox is failing to sync. Log: Error: read(attachments-connector(/path/storage/m.217)) failed: read(/path/attachments/a5/b0/a5b01f595205522593c27457ea51094872f1f2b42b01e90d27d3f9237bc8a2ab-dbf7460d4778b152ec6e00000d189396[base64:18 b/l]) failed: Stream is larger than expected (256088 > 256087, eof=1) (FETCH BODY[] for mailbox INBOX UID 29925) Sounds like issue here: http://comments.gmane.org/gmane.mail.imap.dovecot/76254 Config attached. Best Regards, Andrew Lewis -------------- next part -------------- # 2.2.12.0: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-57-generic x86_64 Ubuntu 12.04.4 LTS auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@& auth_verbose = yes auth_verbose_passwords = plain dict { sqlquota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext } disable_plaintext_auth = no first_valid_uid = 108 last_valid_uid = 108 mail_attachment_dir = ~/attachments mail_attachment_hash = %{sha256} mail_gid = 115 mail_location = mdbox:~/ mail_plugins = quota mail_privileged_group = mail mail_uid = 108 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace { inbox = yes location = prefix = INBOX. separator = . type = private } passdb { args = /etc/dovecot/auth-sql.conf.ext driver = sql } plugin { quota = dict:User quota::noenforcing:proxy::sqlquota sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 lmtp sieve service dict { unix_listener dict { mode = 0600 user = Debian-exim } } service imap-postlogin { executable = script-login /usr/local/bin/update-lastlogin.sh } service imap { executable = imap imap-postlogin } service lmtp { inet_listener lmtp { port = 2525 } process_limit = 10 } service pop3-postlogin { executable = script-login /usr/local/bin/update-lastlogin.sh } service pop3 { executable = pop3 pop3-postlogin } ssl_cert = Hi All I follwed the steps in the below url to configure a dovecot proxy instance. http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy I created a new file '95-test.conf' in /etc/dovecot/conf.d/ location. and put the below lines in that file. proxy=yes host=**** port=143 nopassword=yes However I am getting the following when starting the serice. I tried 'proxy' and 'proxy_maybe' entries, and they both failed. doveconf: Fatal: Error in configuration file /etc/dovecot/conf.d/10-auth.conf line 11: Unknown setting: proxy Could anyone help me how i can resolve this? Thanks Bala From user+dovecot at localhost.localdomain.org Mon Mar 10 18:18:55 2014 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Mon, 10 Mar 2014 18:18:55 +0000 Subject: [Dovecot] Pigeonhole Sieve Extprograms dovecot path? In-Reply-To: <97fe825a81e5dd41feb81343ac830954.squirrel@emu.sbt.net.au> References: <97fe825a81e5dd41feb81343ac830954.squirrel@emu.sbt.net.au> Message-ID: <531E020F.3010705@localhost.localdomain.org> On 03/10/2014 09:49 AM voytek at sbt.net.au wrote: > ? > # ./configure --with-dovecot=/usr/local/lib/dovecot > ... > checking whether to build static libraries... yes > checking for dovecot-config in "/usr/local/lib/dovecot"... not found > configure: > configure: Use --with-dovecot=DIR to provide the path to the > dovecot-config file. > configure: error: dovecot-config not found > > ? > # dovecot --version > 2.1.17 > # uname -a > Linux 2.6.32-431.5.1.el6.x86_64 #1 SMP Wed Feb 12 00:41:43 UTC 2014 x86_64 > x86_64 x86_64 GNU/Linux Did you compile Dovecot from source? Then the dovecot-config file will be located in the top source directory of Dovecot. Otherwise install the matching dovecot-devel RPM. Then you'll find dovecot-config in /usr/lib/dovecot. Regards, Pascal -- The trapper recommends today: f007ba11.1406919 at localdomain.org From voytek at sbt.net.au Mon Mar 10 22:41:25 2014 From: voytek at sbt.net.au (voytek at sbt.net.au) Date: Tue, 11 Mar 2014 09:41:25 +1100 Subject: [Dovecot] Pigeonhole Sieve Extprograms dovecot path? In-Reply-To: <531E020F.3010705@localhost.localdomain.org> References: <97fe825a81e5dd41feb81343ac830954.squirrel@emu.sbt.net.au> <531E020F.3010705@localhost.localdomain.org> Message-ID: <8cbecb91b5d0860b41938ebf70e36517.squirrel@emu.sbt.net.au> On Tue, March 11, 2014 5:18 am, Pascal Volk wrote: > Did you compile Dovecot from source? Then the dovecot-config file will > be located in the top source directory of Dovecot. > Otherwise install the matching dovecot-devel RPM. Then you'll find > dovecot-config in /usr/lib/dovecot. Pascal, thanks. from rpm from *iRedMail repo* dooh, I'm mising dovecot-devel... ooops... probs ahead[1]: hmmm, seems I might be buying more trouble than I'm maybe solving... [1] -------------- # yum install dovecot-devel Loaded plugins: fastestmirror, priorities Loading mirror speeds from cached hostfile Setting up Install Process Resolving Dependencies --> Running transaction check ---> Package dovecot-devel.x86_64 1:2.0.9-7.el6 will be installed --> Processing Dependency: dovecot = 1:2.0.9-7.el6 for package: 1:dovecot-devel-2.0.9-7.el6.x86_64 --> Running transaction check ---> Package dovecot.i686 1:2.0.9-7.el6 will be installed --> Processing Dependency: libz.so.1 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libssl.so.10(libssl.so.10) for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libssl.so.10 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libsqlite3.so.0 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libpam.so.0(LIBPAM_1.0) for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libpam.so.0 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libldap-2.4.so.2 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libkrb5.so.3(krb5_3_MIT) for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libkrb5.so.3 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libk5crypto.so.3 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libgssapi_krb5.so.2(gssapi_krb5_2_MIT) for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libgssapi_krb5.so.2 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libcrypto.so.10(libcrypto.so.10) for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libcrypto.so.10 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libcom_err.so.2 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libcap.so.2 for package: 1:dovecot-2.0.9-7.el6.i686 --> Processing Dependency: libbz2.so.1 for package: 1:dovecot-2.0.9-7.el6.i686 --> Running transaction check ---> Package bzip2-libs.i686 0:1.0.5-7.el6_0 will be installed ---> Package krb5-libs.i686 0:1.10.3-10.el6_4.6 will be installed --> Processing Dependency: libselinux.so.1 for package: krb5-libs-1.10.3-10.el6_4.6.i686 --> Processing Dependency: libkeyutils.so.1(KEYUTILS_0.3) for package: krb5-libs-1.10.3-10.el6_4.6.i686 --> Processing Dependency: libkeyutils.so.1 for package: krb5-libs-1.10.3-10.el6_4.6.i686 ---> Package libcap.i686 0:2.16-5.5.el6 will be installed --> Processing Dependency: libattr.so.1(ATTR_1.0) for package: libcap-2.16-5.5.el6.i686 --> Processing Dependency: libattr.so.1 for package: libcap-2.16-5.5.el6.i686 ---> Package libcom_err.i686 0:1.41.12-18.el6 will be installed ---> Package openldap.i686 0:2.4.23-34.el6_5.1 will be installed --> Processing Dependency: libssl3.so(NSS_3.7.4) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libssl3.so(NSS_3.4) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libssl3.so(NSS_3.2) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libssl3.so for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libsmime3.so for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libsasl2.so.2 for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libplds4.so for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libplc4.so for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnssutil3.so for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.9.3) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.9.2) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.8) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.6) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.4) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.3) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.2) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.12.9) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.12.5) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.12.1) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.12) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.11.1) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.11) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so(NSS_3.10) for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnss3.so for package: openldap-2.4.23-34.el6_5.1.i686 --> Processing Dependency: libnspr4.so for package: openldap-2.4.23-34.el6_5.1.i686 ---> Package openssl.i686 0:1.0.1e-16.el6_5.4 will be installed ---> Package pam.i686 0:1.1.1-17.el6 will be installed --> Processing Dependency: libdb-4.7.so for package: pam-1.1.1-17.el6.i686 --> Processing Dependency: libcrack.so.2 for package: pam-1.1.1-17.el6.i686 --> Processing Dependency: libaudit.so.1 for package: pam-1.1.1-17.el6.i686 ---> Package sqlite.i686 0:3.6.20-1.el6 will be installed --> Processing Dependency: libreadline.so.6 for package: sqlite-3.6.20-1.el6.i686 ---> Package zlib.i686 0:1.2.3-29.el6 will be installed --> Running transaction check ---> Package audit-libs.i686 0:2.2-2.el6 will be installed ---> Package cracklib.i686 0:2.8.16-4.el6 will be installed ---> Package cyrus-sasl-lib.i686 0:2.1.23-13.el6_3.1 will be installed ---> Package db4.i686 0:4.7.25-18.el6_4 will be installed ---> Package keyutils-libs.i686 0:1.4-4.el6 will be installed ---> Package libattr.i686 0:2.4.44-7.el6 will be installed ---> Package libselinux.i686 0:2.0.94-5.3.el6_4.1 will be installed ---> Package nspr.i686 0:4.10.2-1.el6_5 will be installed ---> Package nss.i686 0:3.15.3-6.el6_5 will be installed --> Processing Dependency: nss-softokn(x86-32) >= 3.14.3 for package: nss-3.15.3-6.el6_5.i686 --> Processing Dependency: libsoftokn3.so for package: nss-3.15.3-6.el6_5.i686 ---> Package nss-util.i686 0:3.15.3-1.el6_5 will be installed ---> Package readline.i686 0:6.0-4.el6 will be installed --> Processing Dependency: libtinfo.so.5 for package: readline-6.0-4.el6.i686 --> Running transaction check ---> Package ncurses-libs.i686 0:5.7-3.20090208.el6 will be installed ---> Package nss-softokn.i686 0:3.14.3-9.el6 will be installed --> Finished Dependency Resolution Error: Multilib version problems found. This often means that the root cause is something else and multilib version checking is just pointing out that there is a problem. Eg.: 1. You have an upgrade for dovecot which is missing some dependency that another package requires. Yum is trying to solve this by installing an older version of dovecot of the different architecture. If you exclude the bad architecture yum will tell you what the root cause is (which package requires what). You can try redoing the upgrade with --exclude dovecot.otherarch ... this should give you an error message showing the root cause of the problem. 2. You have multiple architectures of dovecot installed, but yum can only see an upgrade for one of those arcitectures. If you don't want/need both architectures anymore then you can remove the one with the missing update and everything will work. 3. You have duplicate versions of dovecot installed already. You can use "yum check" to get yum show these errors. ...you can also use --setopt=protected_multilib=false to remove this checking, however this is almost never the correct thing to do as something else is very likely to go wrong (often causing much more problems). Protected multilib versions: 1:dovecot-2.0.9-7.el6.i686 != 1:dovecot-2.1.17-0_136.el6.x86_64 You could try using --skip-broken to work around the problem You could try running: rpm -Va --nofiles --nodigest From dieterknopf at gmail.com Tue Mar 11 09:06:58 2014 From: dieterknopf at gmail.com (Dieter Knopf) Date: Tue, 11 Mar 2014 10:06:58 +0100 Subject: [Dovecot] Public Namespace and INBOX In-Reply-To: References: <20140306132657.GB2440@darac.org.uk> <531894fb.49cf0e0a.2c68.ffff9b01SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: Hello again, i played a little bit with the config and still can't get it to work. The folders should look like: PUBLICMAILDIR (=INBOX) - Foo1 - Foo2 But it still looks like: PUBLICMAILDIR (Mailbox doesn't exist) - INBOX - Foo1 - Foo2 Without the seperate .INBOX-Directory inside my MAILDIR (mail_location = INBOX=foo/.INBOX/) there is no way to access the INBOX. With i just see a INBOX folder inside my Public Namespace. Thanks again Dieter 2014-03-06 16:52 GMT+01:00 Dieter Knopf : > > 2014-03-06 16:32 GMT+01:00 Steffen Kaiser : > > >> If you don't get it to work, fake an INBOX by symlinking cur/new/tmp into >> ".INBOX". It's not the nice, but should work. >> >> > Thanks, because of that i tried it with a custom INBOX in mail_location > and it worked, but i still only see FOO/INBOX as folder and not FOO itself. > > From rgelfand2 at gmail.com Tue Mar 11 13:31:52 2014 From: rgelfand2 at gmail.com (Roman Gelfand) Date: Tue, 11 Mar 2014 09:31:52 -0400 Subject: [Dovecot] POP3 and mail retention Message-ID: Using outlook 2010 as mail client, I have noticed that once an email is moved from inbox, it is deleted from the cur/ directory on the server. Is there a pop3 setting on dovecot that would keep emails, with possible retention period, and recognize that this email has been moved from inbox, etc.. If all of this is doable, would setting outlook to delete the email after 14 days work? delete email from the server when emptying deleted folder? Thanks in advance From h.reindl at thelounge.net Tue Mar 11 13:40:25 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 11 Mar 2014 14:40:25 +0100 Subject: [Dovecot] POP3 and mail retention In-Reply-To: References: Message-ID: <531F1249.9000005@thelounge.net> Am 11.03.2014 14:31, schrieb Roman Gelfand: > Using outlook 2010 as mail client, I have noticed that once an email > is moved from inbox, it is deleted from the cur/ directory on the > server. Is there a pop3 setting on dovecot that would keep emails, > with possible retention period that is not the job of the server * you have a setting "leave messages on server" in any MUA * you can set for how long on any MUA * if the MUA is configured to delete you MUST NOT do anything else on the server -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From gedalya at gedalya.net Tue Mar 11 13:41:04 2014 From: gedalya at gedalya.net (Gedalya) Date: Tue, 11 Mar 2014 09:41:04 -0400 Subject: [Dovecot] POP3 and mail retention In-Reply-To: References: Message-ID: <531F1270.8030203@gedalya.net> On 03/11/2014 09:31 AM, Roman Gelfand wrote: > Using outlook 2010 as mail client, I have noticed that once an email > is moved from inbox, it is deleted from the cur/ directory on the > server. Is there a pop3 setting on dovecot that would keep emails, See in conf.d/20-pop3.conf # This option changes POP3 behavior so that it's not possible to actually # delete mails via POP3, only hide them from future POP3 sessions. The mails # will still be counted towards user's quota until actually deleted via IMAP. # Use e.g. "$POP3Deleted" as the value (it will be visible as IMAP keyword). # Make sure you can legally archive mails before enabling this setting. #pop3_deleted_flag = > with possible retention period, no > and recognize that this email has been > moved from inbox, etc.. If all of this is doable, would setting > outlook to delete the email after 14 days work? delete email from the > server when emptying deleted folder? No. If you are not really deleting, you're not really deleting. Maybe you can set up your own cron job to do a doveadm expunge on messages flagged with your pop3_deleted_flag, but I'm not sure about telling when that flag was set on a message. > > Thanks in advance From alessio at skye.it Tue Mar 11 14:22:48 2014 From: alessio at skye.it (Alessio Cecchi) Date: Tue, 11 Mar 2014 15:22:48 +0100 Subject: [Dovecot] dovecot 2 + vpopmail 5.5.0 In-Reply-To: <5a34e84e8442ac406aac57b5983e9931@geigermediaservices.com> References: <5a34e84e8442ac406aac57b5983e9931@geigermediaservices.com> Message-ID: <531F1C38.7020306@skye.it> Il 09/03/2014 17:06, Scott Geiger ha scritto: > > > I am working on setting up dovecot 2.2.12 with an installed qmail + > vpopmail 5.5.0 base. So far I have not had much luck getting the auth to > work with vpopmail. Does dovecot 2.2.12 work with vpopmail 5.5.0? So far > when I try to authenticate I always get back User Unknown in the log. > > > Thanks > Hi, Dovecot, also 2.2, works fine with vpopmail, you can use native "vpopmail auth" or SQL auth with custom query to vpopmail's database. But I suggest to use vpopmail 5.4.33 instaed of 5.5. -- Alessio Cecchi is: @ ILS -> http://www.linux.it/~alessice/ on LinkedIn -> http://www.linkedin.com/in/alessice Assistenza Sistemi GNU/Linux -> http://www.cecchi.biz Cloud Email Hosting -> http://www.qboxmail.com @ PLUG -> ex-Presidente, adesso senatore a vita, http://www.prato.linux.it From skdovecot at smail.inf.fh-brs.de Tue Mar 11 14:53:04 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 11 Mar 2014 15:53:04 +0100 (CET) Subject: [Dovecot] POP3 and mail retention In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 11 Mar 2014, Roman Gelfand wrote: > Using outlook 2010 as mail client, I have noticed that once an email > is moved from inbox, it is deleted from the cur/ directory on the > server. Is there a pop3 setting on dovecot that would keep emails, > with possible retention period, and recognize that this email has been > moved from inbox, etc.. If all of this is doable, would setting > outlook to delete the email after 14 days work? delete email from the > server when emptying deleted folder? Check out: http://wiki2.dovecot.org/Plugins/Lazyexpunge I do not use it, but you can search the list for expierences. Note the remark at the top "The plugin itself doesn't clean up the expunged messages, you'll have to do it some other way (see below)." - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUx8jUXD1/YhP6VMHAQImPAgAzSpQaxCR9B0x7XdwzI2VncE1TL74Q189 8+oGLaN5y7FB8dj4bDIcgjiQfjKUnggCKAQNpulIi2LPd6PGkaXFh0erQjEjsu+R CSeMg3zfr9GAB8vIT4U3xW+GvzLPxK2lbZvQtVVgQens5WxY4a4cePZhUU4LMb96 4eGzQnUend7q3+gICzZ9pKoBl2yOmCbZt4pbGmhWQlMb20wX75f/psJ/8z4eamve tkmOIY847NsuREVUjnedKmv8ktHaeCprgoTTkHaW6gVZdk52jrjpR62AxcmIJyNY uH/W+qXsktjtPhJByCCqFrGcSRbuD1Y6UfEoBaFCvb68Jym6ylruVA== =GUKM -----END PGP SIGNATURE----- From minfrin at sharp.fm Tue Mar 11 16:04:57 2014 From: minfrin at sharp.fm (Graham Leggett) Date: Tue, 11 Mar 2014 18:04:57 +0200 Subject: [Dovecot] Turning on autocreate of maildirs - how? Message-ID: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> Hi all, I have a dovecot v2.2.7 installation, and I would like dovecot to autocreate the Maildir mailbox when those mailboxes don't exist. Following the instructions at http://wiki2.dovecot.org/MailboxSettings have had no effect, the errors below are reported. As soon as I create the Maildir manually with maildirmake fetching mail starts working fine, so all of the messages about the directory being ambiguous seem to be a red herring. Anyone know how to turn this on? Mar 11 16:02:37 monica dovecot: imap: Debug: Added userdb setting: mail=/home/vmail/test at sharp.fm/ Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: Effective uid=517, gid=517, home= Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=/home/vmail/test at sharp.fm/ Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: mdbox autodetect: stat(/home/vmail/test at sharp.fm/storage) failed: No such file or directory Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: sdbox autodetect: stat(/home/vmail/test at sharp.fm/mailboxes) failed: No such file or directory Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: maildir autodetect: stat(/home/vmail/test at sharp.fm/cur) failed: No such file or directory Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: mbox autodetect: INBOX file: stat(/home/vmail/test at sharp.fm) failed: No such file or directory Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: mbox autodetect: has .imap/: stat(/home/vmail/test at sharp.fm/.imap) failed: No such file or directory Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: mbox autodetect: has inbox: stat(/home/vmail/test at sharp.fm/inbox) failed: No such file or directory Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: mbox autodetect: has mbox: stat(/home/vmail/test at sharp.fm/mbox) failed: No such file or directory Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Debug: sdbox autodetect: stat(/home/vmail/test at sharp.fm/mailboxes) failed: No such file or directory Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Error: user test at sharp.fm: Initialization failed: Namespace '': Ambiguous mail location setting, don't know what to do with it: /home/vmail/test at sharp.fm/ (try prefixing it with mbox: or maildir:) Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Error: Invalid user settings. Refer to server log for more information. Regards, Graham -- From jeroen at massar.ch Tue Mar 11 16:18:17 2014 From: jeroen at massar.ch (Jeroen Massar) Date: Tue, 11 Mar 2014 17:18:17 +0100 Subject: [Dovecot] Turning on autocreate of maildirs - how? In-Reply-To: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> References: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> Message-ID: <531F3749.6010805@massar.ch> On 2014-03-11 17:04, Graham Leggett wrote: [..] > Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Error: user test at sharp.fm: Initialization failed: Namespace '': Ambiguous mail location setting, don't know what to do with it: /home/vmail/test at sharp.fm/ (try prefixing it with mbox: or maildir:) This line is important the important one and tells you what to do. (effectively dovecot does not know the format of the mail directory hence it does not know how to create it...) Greets, Jeroen From minfrin at sharp.fm Tue Mar 11 16:25:45 2014 From: minfrin at sharp.fm (Graham Leggett) Date: Tue, 11 Mar 2014 18:25:45 +0200 Subject: [Dovecot] Turning on autocreate of maildirs - how? In-Reply-To: <531F3749.6010805@massar.ch> References: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> <531F3749.6010805@massar.ch> Message-ID: <428BB398-DC69-4FE2-A95F-82E8E87064F1@sharp.fm> On 11 Mar 2014, at 6:18 PM, Jeroen Massar wrote: > On 2014-03-11 17:04, Graham Leggett wrote: > [..] > >> Mar 11 16:02:37 monica dovecot: imap(test at sharp.fm): Error: user test at sharp.fm: Initialization failed: Namespace '': Ambiguous mail location setting, don't know what to do with it: /home/vmail/test at sharp.fm/ (try prefixing it with mbox: or maildir:) > > This line is important the important one and tells you what to do. > > (effectively dovecot does not know the format of the mail directory > hence it does not know how to create it?) For years the trailing slash has indicated the mailbox format as maildir, and dovecot has been happily autodetecting these maildirs without a problem. In our case in addition to dovecot we have a combination of postfix and a legacy courier-imap, how will these the be affected by the addition of "maildir:"? What I don't understand is why autocreate is ignoring the long standing convention that the trailing slash indicates maildir, and whether this is intentional or whether there is some reason for it. Regards, Graham -- From minfrin at sharp.fm Tue Mar 11 17:32:41 2014 From: minfrin at sharp.fm (Graham Leggett) Date: Tue, 11 Mar 2014 19:32:41 +0200 Subject: [Dovecot] Turning on autocreate of maildirs - how? In-Reply-To: <428BB398-DC69-4FE2-A95F-82E8E87064F1@sharp.fm> References: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> <531F3749.6010805@massar.ch> <428BB398-DC69-4FE2-A95F-82E8E87064F1@sharp.fm> Message-ID: <608BDCBD-9493-4D6B-A02C-8A52046633F7@sharp.fm> On 11 Mar 2014, at 6:25 PM, Graham Leggett wrote: > For years the trailing slash has indicated the mailbox format as maildir, and dovecot has been happily autodetecting these maildirs without a problem. > > In our case in addition to dovecot we have a combination of postfix and a legacy courier-imap, how will these the be affected by the addition of "maildir:"? > > What I don't understand is why autocreate is ignoring the long standing convention that the trailing slash indicates maildir, and whether this is intentional or whether there is some reason for it. Giving the different prefix a try on a test account, a mailbox directory is created, but the rest of the maidir directories (new, cur, tmp) aren't created, and the error below is returned. The key is the message "Error: user test at sharp.fm: Initialization failed: namespace configuration error: There can be only one namespace with inbox=yes" Mar 11 17:27:20 monica dovecot: imap: Debug: Added userdb setting: mail=maildir:/home/vmail/test at sharp.fm/ Mar 11 17:27:20 monica dovecot: imap(test at sharp.fm): Debug: Effective uid=517, gid=517, home= Mar 11 17:27:20 monica dovecot: imap(test at sharp.fm): Debug: Namespace inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/home/vmail/test at sharp.fm/ Mar 11 17:27:20 monica dovecot: imap(test at sharp.fm): Debug: maildir++: root=/home/vmail/test at sharp.fm, index=, indexpvt=, control=, inbox=/home/vmail/test at sharp.fm, alt= Mar 11 17:27:20 monica dovecot: imap(test at sharp.fm): Debug: Namespace : type=private, prefix=INBOX., sep=., inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/home/vmail/test at sharp.fm/ Mar 11 17:27:20 monica dovecot: imap(test at sharp.fm): Debug: maildir++: root=/home/vmail/test at sharp.fm, index=, indexpvt=, control=, inbox=/home/vmail/test at sharp.fm, alt= Mar 11 17:27:20 monica dovecot: imap(test at sharp.fm): Error: user test at sharp.fm: Initialization failed: namespace configuration error: There can be only one namespace with inbox=yes Mar 11 17:27:20 monica dovecot: imap(test at sharp.fm): Error: Invalid user settings. Refer to server log for more information. I have two namespaces defined, I am assuming this is wrong: namespace inbox { inbox = yes mailbox Trash { auto = subscribe special_use = \Trash } mailbox Drafts { auto = subscribe special_use = \Drafts } mailbox Sent { auto = subscribe # autocreate and autosubscribe the Sent mailbox special_use = \Sent } mailbox "Sent Messages" { auto = no special_use = \Sent } mailbox Junk { auto = create # autocreate Spam, but don't autosubscribe special_use = \Junk } mailbox virtual/All { # if you have a virtual "All messages" mailbox auto = no special_use = \All } } namespace { type = private separator = . prefix = INBOX. inbox = yes } Regards, Graham -- From chris.laif at googlemail.com Tue Mar 11 17:36:13 2014 From: chris.laif at googlemail.com (Chris Laif) Date: Tue, 11 Mar 2014 18:36:13 +0100 Subject: [Dovecot] Disable/patch iOS7 Full Body Search In-Reply-To: References: Message-ID: Hi, I wonder if anyone has done some research on this subject. Apple users are complaining loudly [1] about being not able to search the inbox since Apple did not change the brain-dead full-body-search-behaviour in iOS 7.1. Chris [1] https://discussions.apple.com/thread/5323188?start=30&tstart=0 On Sat, Feb 22, 2014 at 11:21 AM, Chris Laif wrote: > As mentioned in other posts [1], iOS7 Mail App uses a multi-folder > full body search by default. As to my knowledge, this behavior cannot > be disabled within the Mail App. > > Is there any way to disable/patch this behavior on the server side? My > users complain that searching now takes 'forever'. They were happy > with the old behavior (searching From/To/Subject only). > > I do NOT want to setup/maintain a dovecot FTS. I just want to have the > 'old' behavior. > > Chris > > > [1 ]http://blog.fastmail.fm/2013/09/17/ios-7-mail-app-uses-multi-folder-body-searches-by-default/ > ("Our plan at FastMail is to detect iOS clients, and convert all > searches into FUZZY searches.") From minfrin at sharp.fm Tue Mar 11 17:41:38 2014 From: minfrin at sharp.fm (Graham Leggett) Date: Tue, 11 Mar 2014 19:41:38 +0200 Subject: [Dovecot] Turning on autocreate of maildirs - how? In-Reply-To: <608BDCBD-9493-4D6B-A02C-8A52046633F7@sharp.fm> References: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> <531F3749.6010805@massar.ch> <428BB398-DC69-4FE2-A95F-82E8E87064F1@sharp.fm> <608BDCBD-9493-4D6B-A02C-8A52046633F7@sharp.fm> Message-ID: <544DB770-4821-4FD6-9294-DE33CAACED1F@sharp.fm> On 11 Mar 2014, at 7:32 PM, Graham Leggett wrote: > Giving the different prefix a try on a test account, a mailbox directory is created, but the rest of the maidir directories (new, cur, tmp) aren't created, and the error below is returned. > > The key is the message "Error: user test at sharp.fm: Initialization failed: namespace configuration error: There can be only one namespace with inbox=yes" This is somewhat of a moot point - the addition of maildir: breaks maildrop: Mar 11 17:35:36 monica postfix/pipe[25561]: 10E29804B4: to=, relay=maildrop, delay=0.21, delays=0.15/0.02/0/0.03, dsn=4.3.0, status =deferred (temporary failure. Command output: /usr/bin/maildrop: Unable to change to home directory. ) Is there a way to get dovecot autocreate to work without fiddling with the paths? For example, declare a global maildir default? Regards, Graham -- From jeroen at massar.ch Tue Mar 11 17:48:16 2014 From: jeroen at massar.ch (Jeroen Massar) Date: Tue, 11 Mar 2014 18:48:16 +0100 Subject: [Dovecot] Turning on autocreate of maildirs - how? In-Reply-To: <544DB770-4821-4FD6-9294-DE33CAACED1F@sharp.fm> References: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> <531F3749.6010805@massar.ch> <428BB398-DC69-4FE2-A95F-82E8E87064F1@sharp.fm> <608BDCBD-9493-4D6B-A02C-8A52046633F7@sharp.fm> <544DB770-4821-4FD6-9294-DE33CAACED1F@sharp.fm> Message-ID: <531F4C60.2070000@massar.ch> On 2014-03-11 18:41 , Graham Leggett wrote: > On 11 Mar 2014, at 7:32 PM, Graham Leggett wrote: > >> Giving the different prefix a try on a test account, a mailbox directory is created, but the rest of the maidir directories (new, cur, tmp) aren't created, and the error below is returned. >> >> The key is the message "Error: user test at sharp.fm: Initialization failed: namespace configuration error: There can be only one namespace with inbox=yes" > > This is somewhat of a moot point - the addition of maildir: breaks maildrop: > > Mar 11 17:35:36 monica postfix/pipe[25561]: 10E29804B4: to=, relay=maildrop, delay=0.21, delays=0.15/0.02/0/0.03, dsn=4.3.0, status > =deferred (temporary failure. Command output: /usr/bin/maildrop: Unable to change to home directory. ) > > Is there a way to get dovecot autocreate to work without fiddling with the paths? For example, declare a global maildir default? See http://wiki2.dovecot.org/maildrop that has a global default settings file documented. Personally, I am in favor of using LMTP (http://wiki2.dovecot.org/LMTP) especially as you gain SIEVE powers (when enabled) ;) Grets, Jeroen From alan at chandlerfamily.org.uk Tue Mar 11 19:00:39 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Tue, 11 Mar 2014 19:00:39 +0000 Subject: [Dovecot] Turning on autocreate of maildirs - how? In-Reply-To: <544DB770-4821-4FD6-9294-DE33CAACED1F@sharp.fm> References: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> <531F3749.6010805@massar.ch> <428BB398-DC69-4FE2-A95F-82E8E87064F1@sharp.fm> <608BDCBD-9493-4D6B-A02C-8A52046633F7@sharp.fm> <544DB770-4821-4FD6-9294-DE33CAACED1F@sharp.fm> Message-ID: <531F5D57.1010004@chandlerfamily.org.uk> On 11/03/14 17:41, Graham Leggett wrote: > On 11 Mar 2014, at 7:32 PM, Graham Leggett wrote: > >> Giving the different prefix a try on a test account, a mailbox directory is created, but the rest of the maidir directories (new, cur, tmp) aren't created, and the error below is returned. >> >> The key is the message "Error: user test at sharp.fm: Initialization failed: namespace configuration error: There can be only one namespace with inbox=yes" > This is somewhat of a moot point - the addition of maildir: breaks maildrop: > > Mar 11 17:35:36 monica postfix/pipe[25561]: 10E29804B4: to=, relay=maildrop, delay=0.21, delays=0.15/0.02/0/0.03, dsn=4.3.0, status > =deferred (temporary failure. Command output: /usr/bin/maildrop: Unable to change to home directory. ) > > Is there a way to get dovecot autocreate to work without fiddling with the paths? For example, declare a global maildir default? > > Regards, > Graham > -- I have 15-mailboxes.conf where there are statements auto=create or auto=subscribe commented out inside namespace segments. It is where all the special use mailboxes get defined. I think the default is probably no - I can create folders with thunderbird specifically, but I don't think it is creating them automatically. I have auto = create within my special use mailboxes, and they did get created automatically when I needed them (I was deleting Trash for instance, but it sprung back after I had done that when it was next needed. -- Alan Chandler http://www.chandlerfamily.org.uk From tommy at fam-berglund.eu Tue Mar 11 19:02:32 2014 From: tommy at fam-berglund.eu (Tommy Berglund) Date: Tue, 11 Mar 2014 20:02:32 +0100 Subject: [Dovecot] Doveadm? Message-ID: <531F5DC8.1000803@fam-berglund.eu> I have a question? Is it possible that with doveadm delete all but the last x-number of messages in a folder. For example to retain the last 200 messages in the folder. If it is possible, how do you do it? Something like "doveadm expunge -u jane.doe at example.org mailbox xxx" Thank you! -- //Tommy From alan at chandlerfamily.org.uk Tue Mar 11 19:10:30 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Tue, 11 Mar 2014 19:10:30 +0000 Subject: [Dovecot] Can I create multiple sockets and listen on them in parallel. Message-ID: <531F5FA6.8040309@chandlerfamily.org.uk> I currently have a setup which is postfix -> dovecot via lmtp over a unix socket. The socket is located at /var/spool/postfix/private/dovecot-lmtp I am calling dspam as a milter from postfix. However I am struggling with getting dspam knowing the correct user for the incoming mail, because after its been through the milter, the virtual alias maps etc end up turning it into my "dovecot" user name, and the two are not easily comparable. So instead I want to try and set up postfix->dspam->dovecot But I want to take it in easy stages, and therefore ideally would like to set up dovecot to listen on two sockets simultenously = one for the existing connection from postfix, and one for the future connection from dspam - preferably in the context of the /var/spool/dspam or /var/lib/dovecot directories That way I can continue to receive existing mail whilst sending a few test mails through dspam. Does 10-master.conf config file work that way? (debian configuration) can I change something like this ... service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { mode = 0600 group = postfix user = postfix } } into this ... service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { mode = 0600 group = postfix user = postfix } unix_listener /var/spool/dspam/dovecot-lmtp { mode = 0600 group = dspam user = dspam } } and still have dovecot work? -- Alan Chandler http://www.chandlerfamily.org.uk From gedalya at gedalya.net Tue Mar 11 19:41:44 2014 From: gedalya at gedalya.net (Gedalya) Date: Tue, 11 Mar 2014 15:41:44 -0400 Subject: [Dovecot] Doveadm? In-Reply-To: <531F5DC8.1000803@fam-berglund.eu> References: <531F5DC8.1000803@fam-berglund.eu> Message-ID: <531F66F8.2050801@gedalya.net> doveadm search -u jane.doe at example.org mailbox INBOX | cut -d" " -f2 | head -n -200 | tr '\n' , | xargs -n1 doveadm expunge -u jane.doe at example.org mailbox INBOX uid basically, get all uid's and use head to cut out all but the last 200, turn that into a comma separated list, and pass to dovadm expunge. Test it first! On 03/11/2014 03:02 PM, Tommy Berglund wrote: > I have a question? > Is it possible that with doveadm delete all but the last x-number of > messages in a folder. For example to retain the last 200 messages in > the folder. > If it is possible, how do you do it? > Something like "doveadm expunge -u jane.doe at example.org mailbox xxx" > > Thank you! From HFlor at gmx.de Tue Mar 11 20:00:06 2014 From: HFlor at gmx.de (Hardy Flor) Date: Tue, 11 Mar 2014 21:00:06 +0100 Subject: [Dovecot] Panic: file mail-index-map.c: line 547 (mail_index_map_lookup_seq_range): assertion failed: (first_uid > 0) Message-ID: <531F6B46.3090407@gmx.de> Version: 2.2.12 OS: Debian wheezy x86_64 2014 Mar 11 20:06:53 ptb-test imap(flor_hardy): Panic: file mail-index-map.c: line 547 (mail_index_map_lookup_seq_range): assertion failed: (first_uid > 0) 2014 Mar 11 20:06:53 ptb-test imap(flor_hardy): Fatal: master: service(imap): child 2760 killed with signal 6 (core dumped) GNU gdb (GDB) 7.4.1-debian Copyright (C) 2012 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-linux-gnu". For bug reporting instructions, please see: ... Reading symbols from /usr/lib/dovecot/imap...Reading symbols from /usr/lib/debug/usr/lib/dovecot/imap...done. done. [New LWP 2760] warning: Can't read pathname for load map: Eingabe-/Ausgabefehler. [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1". Core was generated by `dovecot/imap'. Program terminated with signal 6, Aborted. #0 0x00007f32d28b4475 in raise () from /lib/x86_64-linux-gnu/libc.so.6 (gdb) bt full #0 0x00007f32d28b4475 in raise () from /lib/x86_64-linux-gnu/libc.so.6 No symbol table info available. #1 0x00007f32d28b76f0 in abort () from /lib/x86_64-linux-gnu/libc.so.6 No symbol table info available. #2 0x00007f32d2c78345 in default_fatal_finish (type=, status=status at entry=0) at failures.c:193 backtrace = 0x186d768 "/usr/lib/dovecot/libdovecot.so.0(+0x6b34f) [0x7f32d2c7834f] -> /usr/lib/dovecot/libdovecot.so.0(+0x6b3ae) [0x7f32d2c783ae] -> /usr/lib/dovecot/libdovecot.so.0(i_fatal+0) [0x7f32d2c31e8e] -> /usr/lib/d"... #3 0x00007f32d2c783ae in i_internal_fatal_handler (ctx=0x7fff8d12aa30, format=, args=) at failures.c:657 status = 0 #4 0x00007f32d2c31e8e in i_panic (format=format at entry=0x7f32d2fbc098 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:267 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fff8d12ab20, reg_save_area = 0x7fff8d12aa60}} #5 0x00007f32d2fa03b2 in mail_index_map_lookup_seq_range (map=, first_uid=0, last_uid=, first_seq_r=, last_seq_r=) at mail-index-map.c:549 __FUNCTION__ = "mail_index_map_lookup_seq_range" #6 0x00007f32d2fa856d in tview_lookup_seq_range (view=0x18a6850, first_uid=0, last_uid=0, first_seq_r=0x18a79e0, last_seq_r=0x18a79e0) at mail-index-transaction-view.c:178 tview = 0x18a6850 rec = seq = __FUNCTION__ = "tview_lookup_seq_range" #7 0x00007f32d2fb17c2 in mail_index_lookup_seq (view=, uid=, seq_r=seq_r at entry=0x18a79e0) at mail-index-view.c:522 No locals. #8 0x00007f32d2f809b4 in index_mail_get_pvt (_mail=_mail at entry=0x18a78a0) at index-mail.c:158 No locals. #9 0x00007f32d2f81082 in index_mail_get_pvt (_mail=0x18a78a0) at index-mail.c:152 mail = 0x18a78a0 #10 index_mail_get_flags (_mail=0x18a78a0) at index-mail.c:177 mail = 0x18a78a0 rec = flags = MAIL_ANSWERED pvt_flags_mask = #11 0x00007f32d18371a4 in mail_log_append_mail_message_real (desc=0x7f32d1837504 "save", event=MAIL_LOG_EVENT_SAVE, mail=0x18a78a0, ctx=0x18c62f0) at mail-log-plugin.c:297 muser = msg = 0x18c6308 text = 0x186d310 size = 224891 #12 mail_log_append_mail_message (desc=0x7f32d1837504 "save", event=MAIL_LOG_EVENT_SAVE, mail=0x18a78a0, ctx=0x18c62f0) at mail-log-plugin.c:335 _data_stack_cur_id = 3 #13 mail_log_append_mail_message (ctx=0x18c62f0, mail=0x18a78a0, event=MAIL_LOG_EVENT_SAVE, desc=0x7f32d1837504 "save") at mail-log-plugin.c:320 muser = #14 0x00007f32d1c3c51b in notify_contexts_mail_save (mail=mail at entry=0x18a78a0) at notify-plugin.c:63 ctx = 0x1886fc0 mail_txn = #15 0x00007f32d1c3d4b0 in notify_save_finish (ctx=) at notify-storage.c:145 lbox = dest_mail = 0x18a78a0 #16 0x00007f32d2f64582 in mailbox_save_finish (_ctx=_ctx at entry=0x189a280) at mail-storage.c:2073 ctx = 0x18a9590 t = 0x18ab220 keywords = 0x0 pvt_flags = MAIL_SEEN copying_via_save = false ret = __FUNCTION__ = "mailbox_save_finish" #17 0x000000000040cef1 in cmd_append_continue_message (cmd=0x189a120) at cmd-append.c:858 lit_offset = 228081 client = 0x1899540 ctx = 0x189a228 ret = #18 0x00000000004183cc in command_exec (cmd=0x189a120) at imap-commands.c:158 hook = 0x18760f0 ret = #19 0x000000000040c9a3 in client_input_append (cmd=0xac8) at cmd-append.c:116 ctx = 0x189a228 client = 0x1899540 reason = finished = lit_offset = __FUNCTION__ = "client_input_append" #20 0x00007f32d2c88ab6 in io_loop_call_io (io=0x18ab150) at ioloop.c:388 ioloop = 0x1875740 t_id = 2 #21 0x00007f32d2c89957 in io_loop_handler_run (ioloop=ioloop at entry=0x1875740) at ioloop-epoll.c:220 ctx = 0x18763d0 events = 0x0 event = 0x1877230 list = 0x1877e00 io = tv = {tv_sec = 5, tv_usec = 398615} events_count = msecs = ret = 1 i = call = __FUNCTION__ = "io_loop_handler_run" #22 0x00007f32d2c885c8 in io_loop_run (ioloop=0x1875740) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #23 0x00007f32d2c37233 in master_service_run (service=0x18755d0, callback=callback at entry=0x420c50 ) at master-service.c:566 No locals. #24 0x000000000040c128 in main (argc=1, argv=0x1875390) at main.c:400 set_roots = {0x4287c0, 0x0} login_set = {auth_socket_path = 0x186d048 "\001", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x420ae0 , failure_callback = 0x4207f0 , request_auth_token = 1} service_flags = storage_service_flags = username = 0x0 c = ******************************************************** In the "Projekte" folder several subfolderswere created. Now, when a user wants to save more e-mails in this subfolder does this Stop message. The e-mails are all but saved. -------------- next part -------------- # 2.2.12: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4 auth_debug = yes auth_debug_passwords = yes auth_mechanisms = plain login auth_username_format = %Ln auth_verbose = yes auth_verbose_passwords = plain base_dir = /var/run/dovecot/ default_vsz_limit = 512 M dict { acl = mysql:/etc/dovecot/conf.d/dovecot-dict-sql.conf.ext } first_valid_uid = 1 hostname = ptb-mail mail_attachment_dir = /var/mail/attachments mail_attachment_hash = %{md5} mail_attachment_min_size = 16 k mail_debug = yes mail_gid = vmail mail_location = mdbox:/var/mail/user/%n mail_plugins = acl listescape virtual mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave duplicate mdbox_rotate_interval = 1 weeks namespace { list = children location = mdbox:/var/mail/projekte/:INDEXPVT=/var/mail/user/%n/projekte prefix = Projekte/ separator = / subscriptions = no type = public } namespace { list = children location = mdbox:/var/mail/user/%%n:INDEXPVT=/var/mail/user/%n/shared/%%u prefix = Benutzer/%%u/ separator = / subscriptions = no type = shared } namespace inbox { hidden = no inbox = yes list = yes location = mailbox Archiv { auto = subscribe special_use = \Archive } mailbox Entw?rfe { auto = subscribe special_use = \Drafts } mailbox Papierkorb { auto = subscribe special_use = \Trash } mailbox "Sent Messages" { special_use = \Sent } mailbox Spam { auto = subscribe special_use = \Junk } mailbox gesendet { auto = subscribe special_use = \Sent } mailbox sent { special_use = \Sent } mailbox trash { special_use = \Trash } mailbox virtual/alle { special_use = \All } mailbox virtual/markiert { special_use = \Flagged } prefix = separator = / subscriptions = yes type = private } namespace virtual { location = virtual:/etc/dovecot/virtual:INDEX=/var/mail/user/%n/virtual:LAYOUT=fs prefix = virtual/ separator = / type = private } passdb { driver = pam } plugin { acl = vfile acl_anyone = allow acl_shared_dict = file:/var/mail/user/share_dict mail_log_events = save delete undelete expunge copy flag_change mailbox_delete mailbox_rename mailbox_create append mail_log_fields = box msgid flags size from subject sieve = /var/mail/user/%u/dovecot.sieve sieve_dir = /var/mail/sieve/%u sieve_global_dir = /var/mail/sieve/_global sieve_max_actions = 32 sieve_max_redirects = 4 sieve_max_script_size = 1M sieve_quota_max_scripts = 0 sieve_quota_max_storage = 0 } postmaster_address = postmaster at ptb-gmbh.de protocols = " imap lmtp sieve pop3" service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } } service dict { unix_listener dict { mode = 0600 user = vmail } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } service lmtp { inet_listener lmtp { port = 24 } unix_listener /var/spool/postfix/dev/lmtp { mode = 0600 user = postfix } } service managesieve-login { inet_listener sieve { port = 4190 } process_min_avail = 0 service_count = 1 vsz_limit = 64 M } ssl_cert = References: <531F5FA6.8040309@chandlerfamily.org.uk> Message-ID: <531F6BFB.8010507@gedalya.net> Just do it and see what happens. Looks OK to me.. Actually I just fearlessly dared to paste your proposed config snippet into my dovecot config and it didn't blow up and it did create two sockets, so I assume they would both work. On 03/11/2014 03:10 PM, Alan Chandler wrote: > I currently have a setup which is postfix -> dovecot via lmtp over a > unix socket. The socket is located at > /var/spool/postfix/private/dovecot-lmtp > > I am calling dspam as a milter from postfix. > > However I am struggling with getting dspam knowing the correct user > for the incoming mail, because after its been through the milter, the > virtual alias maps etc end up turning it into my "dovecot" user name, > and the two are not easily comparable. > > So instead I want to try and set up postfix->dspam->dovecot > > But I want to take it in easy stages, and therefore ideally would like > to set up dovecot to listen on two sockets simultenously = one for the > existing connection from postfix, and one for the future connection > from dspam - preferably in the context of the /var/spool/dspam or > /var/lib/dovecot directories > > That way I can continue to receive existing mail whilst sending a few > test mails through dspam. > > Does 10-master.conf config file work that way? (debian configuration) > > can I change something like this ... > > service lmtp { > unix_listener /var/spool/postfix/private/dovecot-lmtp { > mode = 0600 > group = postfix > user = postfix > } > } > > into this ... > > service lmtp { > unix_listener /var/spool/postfix/private/dovecot-lmtp { > mode = 0600 > group = postfix > user = postfix > } > unix_listener /var/spool/dspam/dovecot-lmtp { > mode = 0600 > group = dspam > user = dspam > } > > } > > and still have dovecot work? > > > > From alan at chandlerfamily.org.uk Tue Mar 11 20:08:28 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Tue, 11 Mar 2014 20:08:28 +0000 Subject: [Dovecot] Can I create multiple sockets and listen on them in parallel. In-Reply-To: <531F6BFB.8010507@gedalya.net> References: <531F5FA6.8040309@chandlerfamily.org.uk> <531F6BFB.8010507@gedalya.net> Message-ID: <531F6D3C.6070204@chandlerfamily.org.uk> On 11/03/14 20:03, Gedalya wrote: > Just do it and see what happens. Looks OK to me.. > Actually I just fearlessly dared to paste your proposed config snippet > into my dovecot config and it didn't blow up and it did create two > sockets, so I assume they would both work. > > > On 03/11/2014 03:10 PM, Alan Chandler wrote: >> ... >> service lmtp { >> unix_listener /var/spool/postfix/private/dovecot-lmtp { >> mode = 0600 >> group = postfix >> user = postfix >> } >> unix_listener /var/spool/dspam/dovecot-lmtp { >> mode = 0600 >> group = dspam >> user = dspam >> } >> >> } >> >> and still have dovecot work? >> >> >> >> Actually I figured I could do it quickly, and if dovecot stopped working I could revert back. So I took the plunge, and yes it still seems to be working and yes It created two sockets. Don't know if they both work yet, but the first one does and the second is definitely there. Thanks for daring for me. -- Alan Chandler http://www.chandlerfamily.org.uk From gedalya at gedalya.net Tue Mar 11 21:30:37 2014 From: gedalya at gedalya.net (Gedalya) Date: Tue, 11 Mar 2014 17:30:37 -0400 Subject: [Dovecot] Can I create multiple sockets and listen on them in parallel. In-Reply-To: <531F6D3C.6070204@chandlerfamily.org.uk> References: <531F5FA6.8040309@chandlerfamily.org.uk> <531F6BFB.8010507@gedalya.net> <531F6D3C.6070204@chandlerfamily.org.uk> Message-ID: <531F807D.9010504@gedalya.net> On 03/11/2014 04:08 PM, Alan Chandler wrote: > Actually I figured I could do it quickly, and if dovecot stopped > working I could revert back. > > So I took the plunge, and yes it still seems to be working and yes It > created two sockets. Don't know if they both work yet, but the first > one does and the second is definitely there. > > Thanks for daring for me. It helps to have just a test platform, or like in my case, an "expendable" server which I use only for my own personal mail so it's OK if it's down for 60 seconds here and there.. From njriley at illinois.edu Tue Mar 11 23:03:55 2014 From: njriley at illinois.edu (Nicholas Riley) Date: Tue, 11 Mar 2014 18:03:55 -0500 Subject: [Dovecot] Disable/patch iOS7 Full Body Search References: Message-ID: In article , Chris Laif wrote: > Hi, I wonder if anyone has done some research on this subject. Apple > users are complaining loudly [1] about being not able to search the > inbox since Apple did not change the brain-dead > full-body-search-behaviour in iOS 7.1. There don't seem to be any notable changes in iOS 7.1. iOS Mail still opens lots of simultaneous IMAP connections, eventually complains about not being able to contact the server, and doesn't seem to do anything that uses Dovecot's search indexes. I posted about this a few days ago: http://thread.gmane.org/gmane.mail.imap.dovecot/76613 but did not hear from anyone else who has had success getting Dovecot searches from iOS 7 to be performant. This was disappointing as I spent quite a bit of time getting Lucene FTS set up, because Timo had mentioned a few months ago that it should help. I don't do this for a living ? I'm just maintaining a Dovecot server with a couple of users, but I do happen to have an iPhone and iPad with iOS 7 and like to search my email from time to time. -- Nicholas Riley From ron at tohuw.net Wed Mar 12 01:08:00 2014 From: ron at tohuw.net (Ron Scott-Adams) Date: Tue, 11 Mar 2014 21:08:00 -0400 Subject: [Dovecot] Suppress IMAP Disconnection Messages Message-ID: <72D5C220-A1CA-4895-A600-91CC8EF17694@tohuw.net> In syslog, I frequently see messages such as: "dovecot: imap(user): Disconnected for inactivity" I understand why these happen, but is there anyway to configure logging to suppress these messages? From skdovecot at smail.inf.fh-brs.de Wed Mar 12 06:18:25 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 12 Mar 2014 07:18:25 +0100 (CET) Subject: [Dovecot] Turning on autocreate of maildirs - how? In-Reply-To: <608BDCBD-9493-4D6B-A02C-8A52046633F7@sharp.fm> References: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> <531F3749.6010805@massar.ch> <428BB398-DC69-4FE2-A95F-82E8E87064F1@sharp.fm> <608BDCBD-9493-4D6B-A02C-8A52046633F7@sharp.fm> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 11 Mar 2014, Graham Leggett wrote: > The key is the message "Error: user test at sharp.fm: Initialization failed: namespace configuration error: There can be only one namespace with inbox=yes" > > I have two namespaces defined, I am assuming this is wrong: > > namespace inbox { > inbox = yes > mailbox Trash { > auto = subscribe [...] > } > } > > namespace { > type = private > separator = . > prefix = INBOX. > inbox = yes > } I guess you've figured out already, you need to name both namespaces the same, e.g. "" or "inbox". - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUx/8MXD1/YhP6VMHAQLS8wgAhjBoTS8TJP+Igf4qjYgL/o/j9eytkI/2 IYrHOVgMYH/cTjNlawx54PktyMXb6RP8+b2KV93aj0GBo0j8WODM/6QxN0DcTflI JWe46EYjb2WYqEYHmTM/r9TymCaMmZL/5Lwyivxc9Hi9UIrZQ+pC3PLRmxOGgRIH btm/6cxWnU0WWBnIbolgrgEriXsUDDEf9NZsfSYeBN8t86/Cv/+DZVuf3MQWqaWc SzQK8tq/3ZX/HJ0r+t8fWTQTRLXV1jk1VszIfPFokNtudCHDX0crL73ROdVWpLh7 DjV+k3FEQ2ePmNbciYtDnAGMl5RYmpbOZhb8H4HlOus31Bu4qVqfVA== =rXPE -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Wed Mar 12 06:23:43 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 12 Mar 2014 07:23:43 +0100 (CET) Subject: [Dovecot] Turning on autocreate of maildirs - how? In-Reply-To: <544DB770-4821-4FD6-9294-DE33CAACED1F@sharp.fm> References: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> <531F3749.6010805@massar.ch> <428BB398-DC69-4FE2-A95F-82E8E87064F1@sharp.fm> <608BDCBD-9493-4D6B-A02C-8A52046633F7@sharp.fm> <544DB770-4821-4FD6-9294-DE33CAACED1F@sharp.fm> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 11 Mar 2014, Graham Leggett wrote: > On 11 Mar 2014, at 7:32 PM, Graham Leggett wrote: > >> Giving the different prefix a try on a test account, a mailbox directory is created, but the rest of the maidir directories (new, cur, tmp) aren't created, and the error below is returned. >> >> The key is the message "Error: user test at sharp.fm: Initialization failed: namespace configuration error: There can be only one namespace with inbox=yes" > > This is somewhat of a moot point - the addition of maildir: breaks maildrop: > > Mar 11 17:35:36 monica postfix/pipe[25561]: 10E29804B4: to=, relay=maildrop, delay=0.21, delays=0.15/0.02/0/0.03, dsn=4.3.0, status > =deferred (temporary failure. Command output: /usr/bin/maildrop: Unable to change to home directory. ) > > Is there a way to get dovecot autocreate to work without fiddling with the paths? For example, declare a global maildir default? What's your UserDB? In some message you've mentioned LDAP. With "Attribute templates" you can prefix the location with "maildir:". If you do not return mail in the userdb, the global mail_location is used. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUx/9b3D1/YhP6VMHAQLFJgf+LTH0B8s4SGbqL2jueZrwApQfdmYrQE6h 0z9wuYEnPOBWJIvs2CI1M/H3cNzXXwyzl7ALFYWdAz6QMxHIqp/De3J1KhDKg8p+ 1wxiQym1sOz4ieLo+/YYzSHRpwXEMNsl9l2581PvhN/IUKK/FbLL+H3wMhxoVOhe m4XFS4Ip/bIqr8ZpYeIZhd9dFmDkBz1KhTw2ZgEBZBKyqRrJoaU6rg3nnq/QGYRF yaH4QsB3YP35hTG/7r3WsEWSdBVlEKYQOHwSmACDbIFpPHBW+FL624owGhfR0ZGK g0URKSvrVDRsae+DDg4CiqlDIHjHiGS+bJQgt54ox50acVz29CAHLQ== =r1Sl -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Wed Mar 12 06:25:31 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 12 Mar 2014 07:25:31 +0100 (CET) Subject: [Dovecot] Suppress IMAP Disconnection Messages In-Reply-To: <72D5C220-A1CA-4895-A600-91CC8EF17694@tohuw.net> References: <72D5C220-A1CA-4895-A600-91CC8EF17694@tohuw.net> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 11 Mar 2014, Ron Scott-Adams wrote: > In syslog, I frequently see messages such as: "dovecot: imap(user): Disconnected for inactivity" I understand why these happen, but is there anyway to configure logging to suppress these messages? the usual reply to such request is: Configure an advanced syslog demon to drop these lines :-) - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUx/923D1/YhP6VMHAQIsWggA0PjYPcZf1hU3l3kf1Njg+Thk/SSjW6Ea F00fUbPls9gSXV7NXw8pYK6kBC0VUk1H/FcNQ8ETbDGQqzP/1kzblMI9iJlExTgV 5lJKS+RNbLOdoqSsl+pISTzYd8QUwdW4U5JT8fJW8F7qqeMIPFHhYCXJC2cjGYpP aqEfMfguy433ZGblrjvd4emQxLatF1N5iV5gz1v1uEJEwhmbEa/i13BXFwk9x32T uhflaVu4ookN/15MRKS6hPcLsUgk2cDjMSThVNfmM9kWJee4Gy8UQXWHtj7DYQEo Ypc95wrd9OofDBupyxp/sQLbz9oCg4U2FeLwz7F9FswqiKWq/nKcaw== =DWXh -----END PGP SIGNATURE----- From tommy at fam-berglund.eu Wed Mar 12 07:06:28 2014 From: tommy at fam-berglund.eu (Tommy Berglund) Date: Wed, 12 Mar 2014 08:06:28 +0100 Subject: [Dovecot] Doveadm? In-Reply-To: <531F66F8.2050801@gedalya.net> References: <531F5DC8.1000803@fam-berglund.eu> <531F66F8.2050801@gedalya.net> Message-ID: <53200774.4090409@fam-berglund.eu> 2014-03-11 20:41, Gedalya skrev: > doveadm search -u jane.doe at example.org mailbox INBOX | cut -d" " -f2 | > head -n -200 | tr '\n' , | xargs -n1 doveadm expunge -u > jane.doe at example.org mailbox INBOX uid > > basically, get all uid's and use head to cut out all but the last 200, > turn that into a comma separated list, and pass to dovadm expunge. > > Test it first! > Thanks! I try to test in this weekend. //Tommy > On 03/11/2014 03:02 PM, Tommy Berglund wrote: >> I have a question? >> Is it possible that with doveadm delete all but the last x-number of >> messages in a folder. For example to retain the last 200 messages in >> the folder. >> If it is possible, how do you do it? >> Something like "doveadm expunge -u jane.doe at example.org mailbox xxx" >> >> Thank you! From philippbruell at gmail.com Wed Mar 12 11:17:55 2014 From: philippbruell at gmail.com (=?ISO-8859-1?Q?Philipp_Br=FCll?=) Date: Wed, 12 Mar 2014 12:17:55 +0100 Subject: [Dovecot] Finding memory leaks Message-ID: <53204263.4090602@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, I try to find a memory leak in a dovecot plugin that I develop. In order to find it, it would be helpful to print the total amount of memory that is currently allocated. This print could than spread over the source code and the memory consumption can be tracked. I've tried i_debug("pool size %u", (unsigned int)pool_alloconly_get_total_alloc_size(system_pool)); But that failed. Does someone has a good advice? I would like to avoid complex solutions like valgrind. Best regards, Philipp -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEbBAEBAgAGBQJTIEJjAAoJEMxVSu8VsNAvlnUH+Nf9ueeaer8rpJ3gfaaz9hk8 KlKb0O0pamgwfNy3rqWR0jU0BRKhZaYUeVRv+9tk1qV2cMv11prcB+P0DojKbVuQ VgqBCYjeHbRXAasmm/39fieJ/c33y67RGKzVR50oNnhmQ/tbtUXwFdNGs5vGKzJs fZwD7EaoBQd5VFWfOu5oUrKCbIv4YVTIt8rcBah04oDV0nWilpgvFFUHo3+nKNpc SjSbhoXU/uRsrIPp4PsndCaRdZl4UfadFehu9xBsuZpZfamODozx5oEJhR4ArYMK gJYZGvSxGURgad/yRkkn3AIKHiJk0/MencjGcmi9ijdoKF4IhZL+k4w4oqjwRw== =/jzf -----END PGP SIGNATURE----- -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4261 bytes Desc: S/MIME Cryptographic Signature URL: From chris.laif at googlemail.com Wed Mar 12 11:26:08 2014 From: chris.laif at googlemail.com (Chris Laif) Date: Wed, 12 Mar 2014 12:26:08 +0100 Subject: [Dovecot] Disable/patch iOS7 Full Body Search In-Reply-To: References: Message-ID: Nicholas, I think the problem has nothing to do with the number of connections iOS7 opens to the server.I do not get any warnings about too many connections and the problem still persists. I think the problem is the way iOS7 builds the search request (pure sub-string search vs. fuzzy search, see fastmail.fm's blog post). The pure sub-string search seems *not* to use dovecot's FTS at all :-( But that's just guessing from my side, would be nice if any of the experts could enlighten the situation. Timo, we need you ;-) Chris From fov at datacall.com.ua Wed Mar 12 11:36:30 2014 From: fov at datacall.com.ua (=?UTF-8?B?0KTRgNCw0L3Rh9GD0Log0J7Qu9C10LM=?=) Date: Wed, 12 Mar 2014 13:36:30 +0200 Subject: [Dovecot] dovecot 2.2.9 replication Message-ID: <532046BE.6030902@datacall.com.ua> Good afternoon, I have a problem with replication is configured in Dovecot, I have two servers, they are version 2.2.9. Here is their configuration /root at mx1:/etc/dovecot# dovecot -n// //# 2.2.9: /etc/dovecot/dovecot.conf// //# OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4// //auth_debug = yes// //auth_debug_passwords = yes// //auth_mechanisms = plain login// //auth_socket_path = /var/run/dovecot/auth-master// //base_dir = /var/run/dovecot/// //disable_plaintext_auth = no// //dsync_remote_cmd = /usr/bin/ssh -l Debian-exim %{host} /usr/bin/doveadm dsync-server -u//%u//-l%{lock_timeout} -n%{namespace}// //first_valid_gid = 103// //first_valid_uid = 101// //listen = *// //mail_access_groups = mail,Debian-exim,dovecot// //mail_debug = yes// //mail_full_filesystem_access = yes// //mail_gid = 103// //mail_location = maildir:/var/vmail/%d/%n// //mail_plugins = " notify replication"// //mail_uid = 101// //managesieve_notify_capability = mailto// //managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date// //namespace inbox {// // inbox = yes// // location = // // prefix = // //} // //passdb { // // args = /etc/dovecot/dovecot-ldap.conf // // driver = ldap // //} // //plugin {// // autocreate = Trash// // autocreate2 = Sent// // autocreate3 = Drafts// // autocreate4 = Junk// // autosubscribe = Trash// // autosubscribe2 = Sent// // autosubscribe3 = Drafts// // autosubscribe4 = Junk// // mail_replica = remote:Debian-exim at 10.0.1.2// // sieve = /var/vmail/%d/%n/currently-active-script.sieve// // sieve_dir = /var/vmail/%d/%n/sieve// //}// //protocols = imap sieve pop3// //service aggregator {// // fifo_listener replication-notify-fifo {// // mode = 0777// // user = Debian-exim// // }// // unix_listener replication-notify {// // mode = 0777// // user = Debian-exim// // }// //}// //service auth {// // unix_listener auth-client {// // group = Debian-exim// // mode = 0666// // user = Debian-exim// // }// // unix_listener auth-master {// // group = Debian-exim// // mode = 0666// // user = Debian-exim// // }// // user = root// //}// //service config {// // unix_listener config {// // mode = 0777// // user = Debian-exim// // }// //}// //service doveadm {// // user = Debian-exim// //}// //service imap-login {// // inet_listener imap {// // address = 127.0.0.1,209.51.169.117,10.0.1.1// // port = 143// // }// //}// //service managesieve-login {// // executable = /usr/lib/dovecot/managesieve-login// // inet_listener sieve {// // address = 127.0.0.1,209.51.169.117,10.0.1.1// // port = 2000// // }// // process_min_avail = 1// // service_count = 1// // vsz_limit = 64 M// //}// //service managesieve {// // executable = /usr/lib/dovecot/managesieve// // process_limit = 10// //}// //service pop3-login {// // inet_listener pop3 {// // address = 127.0.0.1,209.51.169.117,10.0.1.1// // port = 110// // }// //}// //service replicator {// // process_min_avail = 1// // unix_listener replicator-doveadm {// // mode = 0777// // user = Debian-exim// // }// // unix_listener replicator {// // mode = 0777// // user = Debian-exim// // }// //}// //ssl = no// //userdb {// // args = /etc/dovecot/dovecot-ldap.conf// // driver = ldap// //}// //protocol lda {// // auth_socket_path = /var/run/dovecot/auth-master// // info_log_path = /tmp/dovecot-deliver.log// // log_path = /tmp/dovecot-deliver.log// // mail_plugins = sieve// // postmaster_address = postmaster at horsetele.com.ua// // sendmail_path = /usr/sbin/exim4// //}// //protocol imap {// // imap_client_workarounds = tb-extra-mailbox-sep// // mail_plugins = autocreate// //}// //protocol sieve {// // managesieve_implementation_string = dovecot// // managesieve_max_line_length = 65536// //}// //protocol pop3 {// // pop3_uidl_format = %08Xu%08Xv// //}/ Replication is described in a separate config file, here it is /mail_plugins = $mail_plugins notify replication dsync_remote_cmd = /usr/bin/ssh -l Debian-exim %{host} /usr/bin/doveadm dsync-server -u%u -l%{lock_timeout} -n%{namespace} service aggregator { fifo_listener replication-notify-fifo { user = Debian-exim mode = 0777 } unix_listener replication-notify { user = Debian-exim mode = 0777 } } service replicator { process_min_avail = 1 unix_listener replicator { mode = 0777 user = Debian-exim } } service replicator { unix_listener replicator-doveadm { mode = 0777 user = Debian-exim } } service doveadm { user = Debian-exim } service config { unix_listener config { user = Debian-exim mode = 0777 } } replication_max_conns = 10 plugin { mail_replica = remote:Debian-exim at 10.0.1.2 }/ authorization by ssh user Debian-exim between servers configured when sending notify plugin does not work. Could you help me set up the best way? -- ??????? ???? ????????? ?? ?????? ???????-?????? "????????" 04050 ???????, ?. ???? ??. ???????????, 40 ?????? ??? datacall.com.ua me?: +38 (098) 569-58-42 +38 (093) 348-98-78 +38 (044) 363-11-99 +7 (812) 612-00-18 e-mail: fov at datacall.com.ua "????????" -------------- next part -------------- A non-text attachment was scrubbed... Name: logo (1).png Type: image/png Size: 5461 bytes Desc: not available URL: From CMarcus at Media-Brokers.com Wed Mar 12 12:01:31 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 12 Mar 2014 08:01:31 -0400 Subject: [Dovecot] Disable/patch iOS7 Full Body Search In-Reply-To: References: Message-ID: <53204C9B.4040007@Media-Brokers.com> On 3/11/2014 7:03 PM, Nicholas Riley wrote: > In article > , > Chris Laif wrote: > >> Hi, I wonder if anyone has done some research on this subject. Apple >> users are complaining loudly [1] about being not able to search the >> inbox since Apple did not change the brain-dead >> full-body-search-behaviour in iOS 7.1. > There don't seem to be any notable changes in iOS 7.1. iOS Mail still > opens lots of simultaneous IMAP connections, eventually complains about > not being able to contact the server, and doesn't seem to do anything > that uses Dovecot's search indexes. > > I posted about this a few days ago: > > http://thread.gmane.org/gmane.mail.imap.dovecot/76613 > > but did not hear from anyone else who has had success getting Dovecot > searches from iOS 7 to be performant. This was disappointing as I spent > quite a bit of time getting Lucene FTS set up, because Timo had > mentioned a few months ago that it should help. > > I don't do this for a living ? I'm just maintaining a Dovecot server > with a couple of users, but I do happen to have an iPhone and iPad with > iOS 7 and like to search my email from time to time. This is concerning to me, so I've CC'd Mike Abbot from Apple (participates on this list from time to time and helps Timo fix things). Most of our users have held off on the iOS7 update, but some haven't, and it won't be too long I imagine before most have updated (either via getting new devices, or just taking the plunge). Mike? -- Best regards, Charles From a.kostyrev at serverc.ru Wed Mar 12 13:00:52 2014 From: a.kostyrev at serverc.ru (=?utf-8?B?0JrQvtGB0YLRi9GA0LXQsiDQkNC70LXQutGB0LDQvdC00YAg0JDQu9C10LrRgQ==?= =?utf-8?B?0LXQtdCy0LjRhw==?=) Date: Thu, 13 Mar 2014 00:00:52 +1100 Subject: [Dovecot] dovecot 2.2.9 replication In-Reply-To: <532046BE.6030902@datacall.com.ua> References: <532046BE.6030902@datacall.com.ua> Message-ID: <213B51F00051AE48A9F0E11288017717B8443F@Delta.sc.local> I didn't get it. What's wrong ? What's not working? -----Original Message----- From: dovecot [mailto:dovecot-bounces at dovecot.org] On Behalf Of ??????? ???? Sent: Wednesday, March 12, 2014 10:37 PM To: dovecot at dovecot.org Subject: [Dovecot] dovecot 2.2.9 replication Good afternoon, I have a problem with replication is configured in Dovecot, I have two servers, they are version 2.2.9. Here is their configuration /root at mx1:/etc/dovecot# dovecot -n// //# 2.2.9: /etc/dovecot/dovecot.conf// //# OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4// //auth_debug = yes// //auth_debug_passwords = yes// //auth_mechanisms = plain login// //auth_socket_path = /var/run/dovecot/auth-master// //base_dir = /var/run/dovecot/// //disable_plaintext_auth = no// //dsync_remote_cmd = /usr/bin/ssh -l Debian-exim %{host} /usr/bin/doveadm dsync-server -u//%u//-l%{lock_timeout} -n%{namespace}// //first_valid_gid = 103// //first_valid_uid = 101// //listen = *// //mail_access_groups = mail,Debian-exim,dovecot// //mail_debug = yes// //mail_full_filesystem_access = yes// //mail_gid = 103// //mail_location = maildir:/var/vmail/%d/%n// //mail_plugins = " notify replication"// //mail_uid = 101// //managesieve_notify_capability = mailto// //managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date// //namespace inbox {// // inbox = yes// // location = // // prefix = // //} // //passdb { // // args = /etc/dovecot/dovecot-ldap.conf // // driver = ldap // //} // //plugin {// // autocreate = Trash// // autocreate2 = Sent// // autocreate3 = Drafts// // autocreate4 = Junk// // autosubscribe = Trash// // autosubscribe2 = Sent// // autosubscribe3 = Drafts// // autosubscribe4 = Junk// // mail_replica = remote:Debian-exim at 10.0.1.2// // sieve = /var/vmail/%d/%n/currently-active-script.sieve// // sieve_dir = /var/vmail/%d/%n/sieve// //}// //protocols = imap sieve pop3// //service aggregator {// // fifo_listener replication-notify-fifo {// // mode = 0777// // user = Debian-exim// // }// // unix_listener replication-notify {// // mode = 0777// // user = Debian-exim// // }// //}// //service auth {// // unix_listener auth-client {// // group = Debian-exim// // mode = 0666// // user = Debian-exim// // }// // unix_listener auth-master {// // group = Debian-exim// // mode = 0666// // user = Debian-exim// // }// // user = root// //}// //service config {// // unix_listener config {// // mode = 0777// // user = Debian-exim// // }// //}// //service doveadm {// // user = Debian-exim// //}// //service imap-login {// // inet_listener imap {// // address = 127.0.0.1,209.51.169.117,10.0.1.1// // port = 143// // }// //}// //service managesieve-login {// // executable = /usr/lib/dovecot/managesieve-login// // inet_listener sieve {// // address = 127.0.0.1,209.51.169.117,10.0.1.1// // port = 2000// // }// // process_min_avail = 1// // service_count = 1// // vsz_limit = 64 M// //}// //service managesieve {// // executable = /usr/lib/dovecot/managesieve// // process_limit = 10// //}// //service pop3-login {// // inet_listener pop3 {// // address = 127.0.0.1,209.51.169.117,10.0.1.1// // port = 110// // }// //}// //service replicator {// // process_min_avail = 1// // unix_listener replicator-doveadm {// // mode = 0777// // user = Debian-exim// // }// // unix_listener replicator {// // mode = 0777// // user = Debian-exim// // }// //}// //ssl = no// //userdb {// // args = /etc/dovecot/dovecot-ldap.conf// // driver = ldap// //}// //protocol lda {// // auth_socket_path = /var/run/dovecot/auth-master// // info_log_path = /tmp/dovecot-deliver.log// // log_path = /tmp/dovecot-deliver.log// // mail_plugins = sieve// // postmaster_address = postmaster at horsetele.com.ua// // sendmail_path = /usr/sbin/exim4// //}// //protocol imap {// // imap_client_workarounds = tb-extra-mailbox-sep// // mail_plugins = autocreate// //}// //protocol sieve {// // managesieve_implementation_string = dovecot// // managesieve_max_line_length = 65536// //}// //protocol pop3 {// // pop3_uidl_format = %08Xu%08Xv// //}/ Replication is described in a separate config file, here it is /mail_plugins = $mail_plugins notify replication dsync_remote_cmd = /usr/bin/ssh -l Debian-exim %{host} /usr/bin/doveadm dsync-server -u%u -l%{lock_timeout} -n%{namespace} service aggregator { fifo_listener replication-notify-fifo { user = Debian-exim mode = 0777 } unix_listener replication-notify { user = Debian-exim mode = 0777 } } service replicator { process_min_avail = 1 unix_listener replicator { mode = 0777 user = Debian-exim } } service replicator { unix_listener replicator-doveadm { mode = 0777 user = Debian-exim } } service doveadm { user = Debian-exim } service config { unix_listener config { user = Debian-exim mode = 0777 } } replication_max_conns = 10 plugin { mail_replica = remote:Debian-exim at 10.0.1.2 }/ authorization by ssh user Debian-exim between servers configured when sending notify plugin does not work. Could you help me set up the best way? -- ??????? ???? ????????? ?? ?????? ???????-?????? "????????" 04050 ???????, ?. ???? ??. ???????????, 40 ?????? ??? datacall.com.ua me?: +38 (098) 569-58-42 +38 (093) 348-98-78 +38 (044) 363-11-99 +7 (812) 612-00-18 e-mail: fov at datacall.com.ua "????????" From CMarcus at Media-Brokers.com Wed Mar 12 13:12:27 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 12 Mar 2014 09:12:27 -0400 Subject: [Dovecot] dovecot 2.2.9 replication In-Reply-To: <213B51F00051AE48A9F0E11288017717B8443F@Delta.sc.local> References: <532046BE.6030902@datacall.com.ua> <213B51F00051AE48A9F0E11288017717B8443F@Delta.sc.local> Message-ID: <53205D3B.9030905@Media-Brokers.com> On 3/12/2014 9:00 AM, ???????? ????????? ?????????? wrote: > Good afternoon, I have a problem with replication is configured in > Dovecot, I have two servers, they are version 2.2.9. Here is their > configuration > /root at mx1:/etc/dovecot# dovecot -n// > //# 2.2.9: /etc/dovecot/dovecot.conf// What's with all those extraneous slashes?? -- Best regards, Charles From bruell at simiatech.com Wed Mar 12 13:30:35 2014 From: bruell at simiatech.com (=?ISO-8859-1?Q?Philipp_Br=FCll?=) Date: Wed, 12 Mar 2014 14:30:35 +0100 Subject: [Dovecot] Finding memory leaks Message-ID: <5320617B.4090804@simiatech.com> Hello, I try to find a memory leak in a dovecot plugin that I develop. In order to find it, it would be helpful to print the total amount of memory that is currently allocated. This print could than spread over the source code and the memory consumption can be tracked. I've tried i_debug("pool size %u", (unsigned int)pool_alloconly_get_total_alloc_size(system_pool)); But that failed. Does someone has a good advice? I would like to avoid complex solutions like valgrind. Best regards, Philipp From stephane.cottin at vixns.com Wed Mar 12 17:51:00 2014 From: stephane.cottin at vixns.com (=?iso-8859-1?Q?St=E9phane_Cottin?=) Date: Wed, 12 Mar 2014 18:51:00 +0100 Subject: [Dovecot] Mail server input error: UPDATE-SESSION Message-ID: <41AEFC47-4FEE-4FD8-A1EE-9AEC15FD871A@vixns.com> Hello, After upgrading to 2.2.12 and adding stats plugin, got a lot of errors like this : stats: Error: Mail server input error: UPDATE-SESSION xyz at xyz.xyz imap: stats shrank: mcache 900988905 < 1039472051 St?phane -------------- next part -------------- A non-text attachment was scrubbed... Name: dovecot.conf Type: application/octet-stream Size: 2709 bytes Desc: not available URL: -------------- next part -------------- From michael.abbott at apple.com Wed Mar 12 19:23:35 2014 From: michael.abbott at apple.com (Mike Abbott) Date: Wed, 12 Mar 2014 14:23:35 -0500 Subject: [Dovecot] Disable/patch iOS7 Full Body Search In-Reply-To: <53204C9B.4040007@Media-Brokers.com> References: <53204C9B.4040007@Media-Brokers.com> Message-ID: <8C9C4CF1-A872-4ECB-B2A2-226EE4FF549E@apple.com> In traversing this thread I see a few different issues being reported. In no particular order I see: [Nicholas Riley] > iOS Mail still opens lots of simultaneous IMAP connections, eventually complains about not being able to contact the server, and doesn't seem to do anything that uses Dovecot's search indexes. This seems to have nothing to do with searching per se but it's hard to tell anything without thorough steps to reproduce the issue and/or detailed activity logs. Packet traces capturing all traffic between the client and the server during such an episode would be helpful. (Limited to the issue at hand though. A huge dump of hours of traffic would not be useful. Beware revealing private information.) And if you suspect that your clients are hitting your mail_max_userip_connections setting why not just increase it? [http://blog.fastmail.fm/2013/09/17/ios-7-mail-app-uses-multi-folder-body-searches-by-default/] > Depending on your IMAP server, your message bodies may or may not be indexed in a way that allows sub-string searching. RFC 3501 section 6.4.4 unequivocally requires substring matches: In all search keys that use strings, a message matches the key if the string is a substring of the field. I would suggest that an IMAP server whose search indexes don't support efficient substring matches is misconfigured. Imagine a server which indexes only occurrences of the word "potato." Would you be surprised when it performs poorly when searching for other foods? [https://discussions.apple.com/thread/5323188] > Apple turned all server-side email searching into a slow and inefficient entire msgs substring search Personally I consider searching message bodies a feature. Anecdotally it works great for me with my iOS device and personal mail accounts. But again, server-side searching is only "slow and inefficient" in the absence of a properly configured search subsystem. Note these (dated, but still relevant) documents: [http://wiki2.dovecot.org/Plugins/FTS/Solr] * break-imap-search : Use Solr also for indexing TEXT and BODY searches. This makes your server non-IMAP-compliant. (This is always enabled in v2.1+) [http://wiki2.dovecot.org/Plugins/FTS/Squat] By strictly reading the IMAP RFC it requires substring matching, so to optimize regular TEXT and BODY searches you must use Squat with Dovecot v2.0. From greminn at gmail.com Wed Mar 12 21:11:12 2014 From: greminn at gmail.com (Simon) Date: Thu, 13 Mar 2014 10:11:12 +1300 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb Message-ID: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> Hi There, Ive taken a look at this and cant quite figure out what is going on here. I have tested all the SQL permissions, and also changed the unix_listener auth-userdb mode to 0666 (as instructed elsewhere to try and solve this issue), but cannot seem to work out what the issue is. Would someone be able to please point me in the correct direction here? Output of log + dovecot -n via this link: http://pastebin.com/wsUt0eEF # 2.0.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-431.el6.centos.plus.x86_64 x86_64 CentOS release 6.5 (Final) xfs Thanks Simon From alan at chandlerfamily.org.uk Wed Mar 12 21:35:13 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Wed, 12 Mar 2014 21:35:13 +0000 Subject: [Dovecot] Struggling with antispam In-Reply-To: <53182AF7.8080207@chandlerfamily.org.uk> References: <5318283F.3000801@chandlerfamily.org.uk> <53182AF7.8080207@chandlerfamily.org.uk> Message-ID: <5320D311.902@chandlerfamily.org.uk> On 06/03/14 07:59, Alan Chandler wrote: > On 06/03/14 07:48, Alan Chandler wrote: >> >> However, when I try to make this work with anitspam, I keep getting >> failure, and I can't work out what is causing it. Maybe its again >> because I am running with uid 10001 when calling sendmail but I don't >> know. >> >> antispam config is >> >> plugin { >> ... > >> antispam_pipe_program=/usr/bin/sendmail > > > Arrg: > > I have been struggling with this all yesterday evening. Two minutes > after posting this I realise it is /usr/sbin/sendmail, not > /usr/bin/sendmail > > Sorry for the noise (Although I would prefer to use the dspam backend > if I could). > > It is not working yet - postfix has rejected the mail because it came > from an unknown sender (dspam at chandlerfamily.org.uk) I could use %u on > the sender address - but then my sieve script to save outgoing mail > would have to change to ignore mail aimed at the spam addresses. Well I am STILL struggling with this. here is my (revised) plugin parameters (and also a temp change to call a script rather than sendmail) antispam_debug_target = syslog antispam_verbose_debug = 1 antispam_backend = pipe antispam_signature = X-DSPAM-Signature antispam_signature_missing = error antispam_trash = Trash antispam_spam = Junk antispam_allow_append_to_spam = yes antispam_pipe_program=/home/pi/callsendmail antispam_pipe_program_args=-f;dspam at chandlerfamily.org.uk antispam_pipe_program_spam_args=%u at spam.spam antispam_pipe_program_notspam_args=%u at ham.ham To try and find out what is going wrong. the /home/pi/callsendmail script has the following in it #!/bin/sh echo "$$-start ($*)" >> /tmp/dspam-train.log cat<&0 >> tmp/dspam-train.log echo "$$-end" >> /tmp/dspam-train.log exit 0 So I was hoping to see my training message in the log. Instead I just get this 21536-start (-f dspam at chandlerfamily.org.uk alan at spam.spam) 21536-end Is it my shell script that is wrong or antispam - why is nothing written in my log file? -- Alan Chandler http://www.chandlerfamily.org.uk From gedalya at gedalya.net Wed Mar 12 21:43:31 2014 From: gedalya at gedalya.net (Gedalya) Date: Wed, 12 Mar 2014 17:43:31 -0400 Subject: [Dovecot] Struggling with antispam In-Reply-To: <5320D311.902@chandlerfamily.org.uk> References: <5318283F.3000801@chandlerfamily.org.uk> <53182AF7.8080207@chandlerfamily.org.uk> <5320D311.902@chandlerfamily.org.uk> Message-ID: <5320D503.6060602@gedalya.net> On 03/12/2014 05:35 PM, Alan Chandler wrote: > cat<&0 >> tmp/dspam-train.log missing leading / .. also, just cat >> /tmp/dspam-train.log would work, you don't need to redirect what is already your input. From alan at chandlerfamily.org.uk Wed Mar 12 22:13:37 2014 From: alan at chandlerfamily.org.uk (Alan Chandler) Date: Wed, 12 Mar 2014 22:13:37 +0000 Subject: [Dovecot] Struggling with antispam In-Reply-To: <5320D503.6060602@gedalya.net> References: <5318283F.3000801@chandlerfamily.org.uk> <53182AF7.8080207@chandlerfamily.org.uk> <5320D311.902@chandlerfamily.org.uk> <5320D503.6060602@gedalya.net> Message-ID: <5320DC11.1020905@chandlerfamily.org.uk> On 12/03/14 21:43, Gedalya wrote: > On 03/12/2014 05:35 PM, Alan Chandler wrote: >> cat<&0 >> tmp/dspam-train.log > > missing leading / .. > also, just cat >> /tmp/dspam-train.log would work, you don't need to > redirect what is already your input. > Thanks that solved that and indeed my training message is piped through as I hoped. I now moved that same script to replace the call to dspam in master.cf of my postfix config to check how that was being called for retraining, and indeed it is being called /usr/bin/dspam --client --mode=teft --class=spam --source=error --user alan at chandlerfamily.org.uk with the correct message on the standard input. HOWEVER the following appears in syslog when revert all the changes to the proper programs Mar 12 22:09:54 piserver dspam[21941]: Unable to find a valid signature. Aborting. Mar 12 22:09:54 piserver dspam[21941]: process_message returned error -5. dropping message. Any idea why dspam can't find the signature. -- Alan Chandler http://www.chandlerfamily.org.uk From minfrin at sharp.fm Wed Mar 12 23:13:21 2014 From: minfrin at sharp.fm (Graham Leggett) Date: Thu, 13 Mar 2014 01:13:21 +0200 Subject: [Dovecot] Turning on autocreate of maildirs - how? In-Reply-To: References: <2A08A9A1-3309-4417-8D44-5744DFFCAC3C@sharp.fm> <531F3749.6010805@massar.ch> <428BB398-DC69-4FE2-A95F-82E8E87064F1@sharp.fm> <608BDCBD-9493-4D6B-A02C-8A52046633F7@sharp.fm> <544DB770-4821-4FD6-9294-DE33CAACED1F@sharp.fm> Message-ID: <40889306-9D8C-450E-AB6D-0F7D26027C69@sharp.fm> On 12 Mar 2014, at 8:23 AM, Steffen Kaiser wrote: > What's your UserDB? In some message you've mentioned LDAP. With "Attribute templates" you can prefix the location with "maildir:". If you do not return mail in the userdb, the global mail_location is used. Turns out this was the key - when I changed user_attrs = mailMessageStore=mail to user_attrs = mailMessageStore=mail=maildir:%$ the autocreate started working successfully with the original path values, and maildrop is happy. Thanks you for this, I appreciate it. Regards, Graham -- From skdovecot at smail.inf.fh-brs.de Thu Mar 13 07:56:46 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 13 Mar 2014 08:56:46 +0100 (CET) Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 13 Mar 2014, Simon wrote: > Ive taken a look at this and cant quite figure out what is going on here. I have tested all the SQL permissions, and also changed the unix_listener auth-userdb mode to 0666 (as instructed elsewhere to try and solve this issue), but cannot seem to work out what the issue is. what happens if you connect to that socket manually, e.g.: # sudo -u socat - UNIX:/usr/local/dovecot/var/run/dovecot/auth-userdb VERSION 1 1 SPID 1746 Maybe first try as root, then with the partucular users. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUyFkvnD1/YhP6VMHAQJvbwgA2qSvbTK1VnJqTU4ULEhdv7dwzNBpUncL NJoqJLZRFcLNfiGo8XlX+8yOFWUX7P/7iXArqqMylJVMFheBDFQyALDPw02TqSs3 RuQEpvDFHXkCnJlHqbrkOtLIoGcrWu7OBf1N1zsxHPloGyOymDAEZD2jZvEwUUVO p2tK7VOmp9v/V1cczNkt+ANDTvUAdgy9smrtBsJOr6/SmWOWtoOUzGvagJlDOklj 2juIhMpIVfNDEWBmDBIy/52uOZGJ+KGx93JktLnyGLq1mSkV2JSCunrQdduxyBuB iOfgkpwEEuWs9x2HK5bLm1Wv14i2XJTplMkNEvhcSrM89D1Rctjl1Q== =HUSS -----END PGP SIGNATURE----- From aellert at numeezy.com Thu Mar 13 08:48:15 2014 From: aellert at numeezy.com (Alexandre Ellert) Date: Thu, 13 Mar 2014 09:48:15 +0100 Subject: [Dovecot] FTS solr : body search gives mysql error Message-ID: <525DBEC3-D855-4D58-A879-0DF92E1A4748@numeezy.com> Hello, I've recently setup FTS solr plugin, following http://wiki2.dovecot.org/Plugins/FTS/Solr, and I have this error in logs when I do a body search : Mar 13 01:46:40 mut-mx-1 dovecot: auth-worker(5808): Warning: mysql: Query failed, retrying: Unknown column 'disableindexer' in 'where clause' Mar 13 01:46:40 mut-mx-1 dovecot: auth-worker(5808): Error: sql(user at domain.com): User query failed: Unknown column 'disableindexer' in 'where clause' Mar 13 01:46:40 mut-mx-1 dovecot: indexer-worker: Error: user user at domain.com: Auth USER lookup failed Mar 13 01:46:40 mut-mx-1 dovecot: indexer-worker: Error: User user at domain.com lookup failed: Internal error occurred. Refer to server log for more information. Mar 13 01:46:40 mut-mx-1 dovecot: imap(user at domain.com): Error: indexer failed to index mailbox INBOX Anyway, the search result seems good. Should I worry about this error or is there other thing I should do (i.e modify mysql schema) ? I'm using mysql as a backend to store users and password. According to the documentation, I just added this block of configuration (please tell me if need full doveconf -n) : mail_plugins = fts fts_solr [ my other plugins ] plugin { fts = solr fts_solr = url=http://127.0.0.1:8080/solr/ } Versions : OS : Debian 7 dovecot : 2.2.12 (from dovecot-ee repo) solr : 3.6.0 (from distrib repo) Other recommendations and feedback about using solr FTS in production would be greatly appreciated. Many thanks. Alexandre From skdovecot at smail.inf.fh-brs.de Thu Mar 13 09:10:13 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 13 Mar 2014 10:10:13 +0100 (CET) Subject: [Dovecot] FTS solr : body search gives mysql error In-Reply-To: <525DBEC3-D855-4D58-A879-0DF92E1A4748@numeezy.com> References: <525DBEC3-D855-4D58-A879-0DF92E1A4748@numeezy.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 13 Mar 2014, Alexandre Ellert wrote: > I've recently setup FTS solr plugin, following http://wiki2.dovecot.org/Plugins/FTS/Solr, and I have this error in logs when I do a body search : > > Mar 13 01:46:40 mut-mx-1 dovecot: auth-worker(5808): Warning: mysql: Query failed, retrying: Unknown column 'disableindexer' in 'where clause' > Mar 13 01:46:40 mut-mx-1 dovecot: auth-worker(5808): Error: sql(user at domain.com): User query failed: Unknown column 'disableindexer' in 'where clause' > Mar 13 01:46:40 mut-mx-1 dovecot: indexer-worker: Error: user user at domain.com: Auth USER lookup failed > Mar 13 01:46:40 mut-mx-1 dovecot: indexer-worker: Error: User user at domain.com lookup failed: Internal error occurred. Refer to server log for more information. > Mar 13 01:46:40 mut-mx-1 dovecot: imap(user at domain.com): Error: indexer failed to index mailbox INBOX > > Anyway, the search result seems good. Should I worry about this error or is there other thing I should do (i.e modify mysql schema) ? > > I'm using mysql as a backend to store users and password. > According to the documentation, I just added this block of configuration (please tell me if need full doveconf -n) : We always do and include any additional conf files with mysql queries. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUyF19XD1/YhP6VMHAQIWiwgAzY3ZdKczZu6Mvsq/6zUdX1uhnyiptHaN 0l8NHG8cJxj1gvEAptMAstwsaIga6KbAq9XrwB2Np2H3E+LQ96C9hBeAmA6NDFAM oifUwi5nzjxYYDIO0TESxhgLCOlLxNbelIcJ+JLPk1uhM4mcHEuhJfJ/FRcwcwTN PaCyZ8k/bW9HyfyM7+YB9GNCQkLCkz8SuSzifqX2IucTAds24UefB440v1Z/dbjF 0YbheR9QlWc/87/Nzbzid3QB0yebcsBHmKd/u1bQp7A/woYtWum+iKXjlP4Cz5rh HU5vDzLg/GC5IW5DXs/qFJZ9CJac+V4I6zLWn7acAkJRJg3sIlNo8w== =D/3o -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Thu Mar 13 09:59:23 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 13 Mar 2014 10:59:23 +0100 (CET) Subject: [Dovecot] quota using wrong limits in user shared mailboxes Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I have setup a shared namespace to expose user's mailboxes to other users. That works well. Via ACLs users can access other users mailboxes. I have setup a quota for each user, that works well, too. The quota is tracked and new messages are denied, if the quota is exceeded. I do not find hints, if you need to setup something special for shared namespaces. http://wiki2.dovecot.org/Quota/Configuration shows how to track the quota and http://wiki2.dovecot.org/SharedMailboxes/Shared shows how to setup the namespace and ACL. If user1 shares "mailbox" to user2 and user2 copies a message there, the quota is tracked in the quota of user1 correctly. But to calculate if * LOGIN user2 ... * COPY 1 users.user1.mailbox fails with overquota or succeed, the quota limit of user2 is used instead of the quota of user1, whom "mailbox" belongs to. I have tested it with a. limit(user2) < limit(user1) b. quota(user1) + sizeof(message) < limit(user1) if quota(user1) + sizeof(message) > limit(user2), COPY fails with overquota. If I raise the quota of user2, the COPY succeeds. That means, although the target user's quota is not exceeded and won't after the copy, COPY fails. That seems to be wrong for me. The same will apply to the other way round, I guess: If the target user is over quota, but copying user's quota limit is greater than that, the COPY succeeds. [I have not tested it.] Hence, if you enable sharing, you undermine quota, because the other user can copy messages into a mailbox of an user overquota. Does other people see the same issue? My config: # 2.2.10 (5432b55a2b87): /usr/local/dovecot-2.2.10/etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-amd64 x86_64 Debian 6.0.9 auth_cache_size = 30 M auth_mechanisms = plain login auth_verbose = yes auth_worker_max_count = 100 base_dir = /var/run/dovecot2.2/ default_vsz_limit = 512 M deliver_log_format = msgid=%m: %$ %p/%w "%f" "%s" dict { acl = pgsql:/usr/local/dovecot-2.2.10/etc/dovecot/dovecot-dict-sql.conf.ext quota = pgsql:/usr/local/dovecot-2.2.10/etc/dovecot/dovecot-dict-sql.conf.ext } disable_plaintext_auth = no instance_name = dovecot2.2 lda_mailbox_autocreate = yes lmtp_save_to_detail_mailbox = yes log_path = /var/log/dovecot/dovecot2.2.log log_timestamp = "%F %H:%M:%S " mail_gid = vmail mail_log_prefix = "%Us(%u) [%p]: " mail_max_userip_connections = 0 mail_plugins = " quota notify mail_log zlib acl stats" mail_shared_explicit_inbox = yes mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave imapflags namespace { list = children location = maildir:%%h/Maildir:INDEX=~/Maildir/shared/%%u prefix = users.%%u. separator = . type = shared } namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /usr/local/dovecot-2.2.10/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { acl = vfile acl_shared_dict = proxy::acl antispam_allow_append_to_spam = yes antispam_backend = spool2dir antispam_spam = SPAM+ReportAsSPAM antispam_spool2dir_notspam = /tmp/spamspool/%%020lu-%%05lu-%u-H antispam_spool2dir_spam = /tmp/spamspool/%%020lu-%%05lu-%u-S antispam_trash = trash;TRASH;Trash;spam;SPAM;Spam;junk;JUNK;Junk;Deleted Items;Deleted Messages;Gel&APY-schte Elemente;Gel&APY-schte Objekte;Junk E-mail;Junk-E-Mail;INBOX.Trash;INBOX.TRASH;INBOX.trash mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size vsize from subject quota = dict:User quota::proxy::quota quota_rule = *:storage=300MB quota_rule2 = Trash:storage=+30M recipient_delimiter = + sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_extensions = +imapflags sieve_max_actions = 0 sieve_quota_max_storage = 3M stats_command_min_time = 1 mins stats_domain_min_time = 12 hours stats_ip_min_time = 12 hours stats_memory_limit = 128 M stats_refresh = 30 secs stats_session_min_time = 15 mins stats_track_cmds = yes stats_user_min_time = 1 hours } postmaster_address = postmaster at inf.h-brs.de protocols = imap pop3 lmtp sieve quota_full_tempfail = yes service auth { unix_listener auth-client { mode = 0766 } unix_listener auth-userdb { mode = 0766 user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = vmail } } service doveadm { unix_listener doveadm-server { mode = 0666 } } service imap-login { process_min_avail = 4 service_count = 0 vsz_limit = 768 M } service imap { process_limit = 1000 vsz_limit = 768 M } service lmtp { vsz_limit = 768 M } service managesieve-login { inet_listener sieve { port = 4190 } inet_listener sieve_deprecated { port = 2000 } } service pop3-login { process_min_avail = 5 service_count = 0 vsz_limit = 512 M } service stats { fifo_listener stats-mail { mode = 0600 user = vmail } } ssl_ca = References: <41AEFC47-4FEE-4FD8-A1EE-9AEC15FD871A@vixns.com> Message-ID: <32C61C01-7157-48A4-8DBF-8A1160F61864@vixns.com> More info, may be related to antispam plugin imap(xyz at xyz.xyz): Error: Cached message size smaller than expected (4293 < 8192) imap(xyz at xyz.xyz): Error: Corrupted index cache file /xyz/Maildir/.Junk/dovecot.index.cache: Broken physical size for mail UID 0 imap(xyz at xyz.xyz): Error: read(zlib(/xyz/Maildir/.Junk/tmp/1394709643.M419216P12667.xyz)) failed: Invalid argument (uid=0) Le 12 mars 2014 ? 18:51, St?phane Cottin a ?crit : > Hello, > > After upgrading to 2.2.12 and adding stats plugin, got a lot of errors like this : > stats: Error: Mail server input error: UPDATE-SESSION xyz at xyz.xyz imap: stats shrank: mcache 900988905 < 1039472051 > > St?phane > > > > From pgala at ospartner.pl Thu Mar 13 14:43:49 2014 From: pgala at ospartner.pl (pgala) Date: Thu, 13 Mar 2014 07:43:49 -0700 (PDT) Subject: [Dovecot] quota is exceeded during send mail Message-ID: <1394721829434-47149.post@n4.nabble.com> Hi, i try configure qouta plugin in dovecot. If i want sent mail to user with full mailbox all is ok, messege is reject. But if i want sent mail from user with full mailbox then messege is delivery and save to sent folder so quota is unlimited in this case. my dovecot.conf -------------------------------------------------------------------------------- # 2.2.9: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 2.6.32-358.el6.x86_64 x86_64 CentOS release 6.4 (Final) ext4 auth_mechanisms = plain login dict { quotadict = mysql:/usr/local/etc/dovecot/dovecot-dict-quota.conf } disable_plaintext_auth = no first_valid_gid = 12 first_valid_uid = 101 lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes lmtp_save_to_detail_mailbox = yes mail_location = maildir:/home/vmail/%d/%n mail_plugins = quota managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave passdb { args = /usr/local/etc/dovecot/dovecot-mysql.conf driver = sql } plugin { acl = vfile:/usr/local/etc/dovecot/acls quota = dict:user::proxy::quotadict quota_exceeded_message = Quota exceeded. quota_grace = 10MB trash = /usr/local/etc/dovecot/trash.conf } protocols = imap pop3 lmtp sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { group = mail mode = 0666 user = vmail } } service dict { unix_listener dict { group = mail mode = 0666 user = vmail } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } service imap { vsz_limit = 256 M } service managesieve-login { inet_listener sieve { port = 4190 } process_min_avail = 0 service_count = 1 vsz_limit = 64 M } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } ssl_cert = References: Message-ID: Timo wrote this last month: mbox format + dsync replication apparently doesn't work because of lock ordering issues. Might not be easy to fix, or in any case it's pretty low priority for me for now. Sorry for "bumping the subject" again but is there any chance this has moved up the priority list? I don't know if anyone else feels the same... but replication is number one on our Christmas wish list right now :-) -Mark On 30 January 2014 15:02, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thu, 30 Jan 2014, IT geek 31 wrote: > > Here are the errors on the remote server (the last two are a different >> mailbox!): >> >> Jan 30 13:25:16 Server2 dovecot: dsync-server(MailUser1): Panic: file >> mbox-lock.c: line 799 (mbox_lock): assertion failed: (lock_type == F_RDLCK >> || mbox->mbox_lock_type != F_RDLCK) >> >> Jan 30 13:25:16 Server2 dovecot: dsync-server(MailUser1): Fatal: master: >> service(doveadm): child 26627 killed with signal 6 (core not dumped - set >> service doveadm { drop_priv_before_exec=yes }) >> > > follow the advice, set ulimit -c unlimited, get a core dump, then > > gdb /usr/.../binary core > bt full > > post the output and use some subject line, e.g. > dsync-server(MailUser1): Panic: file mbox-lock.c: line 799 with coredump > to get Timos attension, that you have information for the panic. > > Any help is appreciated. >> > > provide Timo any information about the core dump, give it an useful title, > e.g. "BUG Panic: file mbox-lock.c: with backtrace" to catch his attention > during his busy phases of work. Bumping the subject is not useful. > > I found only this: http://thr3ads.net/dovecot/ > 2013/05/2645571-dsync-assert-failure-in-2.2.2 which says "Appears to work > properly again in 2.2.4.". > > On 30 January 2014 14:29, Steffen Kaiser > >wrote: >> >> -----BEGIN PGP SIGNED MESSAGE----- >>> Hash: SHA1 >>> >>> On Thu, 30 Jan 2014, IT geek 31 wrote: >>> >>> On 30 January 2014 12:52, Steffen Kaiser >> >>>> wrote: >>>>> >>>> >>>> On Thu, 30 Jan 2014, IT geek 31 wrote: >>>> >>>>> >>>>> Apologies for this being my 248th post about replication... >>>>> >>>>> >>>>>> The current error I'm getting is: >>>>>> >>>>>> Jan 30 12:10:54 Server1 dovecot: dsync-local(MailUser1): Error: dsync( >>>>>> Server2.test.com): read() failed: read((fd)) failed: Connection reset >>>>>> by >>>>>> peer >>>>>> >>>>>> >>>>>> this is a generic network error: >>>>> http://stackoverflow.com/questions/1434451/what-does- >>>>> connection-reset-by-peer-mean >>>>> >>>>> The other side of the communication channel closed the connection. It >>>>> also >>>>> does not neccessarily mean that other end point did it, but it could >>>>> be a >>>>> firewall, router, whatever in between as well. >>>>> >>>>> Do you know why I am now getting: >>>>> >>>> >>>> >>>> Jan 30 12:50:43 Server1 dovecot: dsync-local(MailUser1): Error: read( >>>> Server2.test.com) failed: EOF >>>> >>>> >>> First you get "Connection reset by peer", the system closes the file >>> descriptot, Dovecot reads further from the handle and gets EOF. It's a >>> subsequent error, IMHO. >>> >>> - -- Steffen Kaiser >>> -----BEGIN PGP SIGNATURE----- >>> Version: GnuPG v1.4.11 (GNU/Linux) >>> >>> iQEVAwUBUupTvXD1/YhP6VMHAQJxAggAyeX8kLK1AaoTsGPzIFfVW9GZKKF/eMpT >>> kgzL1UlY86ht0N3c2mvcOLBqjV15QSjNLaAV7wN4wPflMeescLScPUga21hrKKJV >>> 077T8ggLZE8Du6qTrkGej48/g6SdE/ZuyKiG/h/7s9OcdHJXHSIaqzVL7i+SNRmp >>> g0lo2n0axIk9M1mLLHw3SbbKEN1kDcrOGtdqh2Pl2wohLWNTJ+ZN1YpcBzJgOlq2 >>> hIQeuVqvUXHLP8/S7CFngPVeZM+Kxr12HpOOt95/eqf4VEhyF1C1KXFVUXMbGkfX >>> +6bifTBkoGIzwznGHOIsigmJWrk9a7RM0rk5stFLvyGfdjxyN0VYCg== >>> =HOzr >>> -----END PGP SIGNATURE----- >>> >>> >> > - -- Steffen Kaiser > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBUupbcXD1/YhP6VMHAQIPvwgAt/vLcy5rW9CuUIWuePrK4X3lr9930YM4 > A1gs57G++lLEWkJAYN5uxQ/rODbluAq+7yXfR6HUoeOQu+ZCuxIjSnG5Dqo9iwYE > eJudAOs7oJIEBASfv3EaYtCCh44M8sZ6u+Y0+VFnNUbpqmr2hQn+OL67srsqnCFQ > J3xFEHFvdyLK8QrIhtMucSYh6KwmmPjKRNCy6/L71aq7ZCEfG0UR55gnv7XQ/BDF > kfTaC1pRUcZImO2WyTDwD8jXFjIhoH5bBiEbh7z2EKoKborpLK/hnSSpLvfhBZwf > A09Ep4fXP/wFmXuDsbrWyc4BZVl1a76Nq21IOPtTL5foP8SjALQHRg== > =PxdB > -----END PGP SIGNATURE----- > From CMarcus at Media-Brokers.com Thu Mar 13 15:11:52 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 13 Mar 2014 11:11:52 -0400 Subject: [Dovecot] Is replication broken? In-Reply-To: References: Message-ID: <5321CAB8.9000200@Media-Brokers.com> On 3/13/2014 10:55 AM, IT geek 31 wrote: > Timo wrote this last month: > > mbox format + dsync replication apparently doesn't work because of lock > ordering issues. Might not be easy to fix, or in any case it's pretty low > priority for me for now. > > Sorry for "bumping the subject" again but is there any chance this has > moved up the priority list? > > I don't know if anyone else feels the same... but replication is number one > on our Christmas wish list right now :-) I think Timo's point is the fact that this is strictly mbox related. Maybe switch to mdbox is an option? -- Best regards, Charles From skdovecot at smail.inf.fh-brs.de Thu Mar 13 15:37:53 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Thu, 13 Mar 2014 16:37:53 +0100 (CET) Subject: [Dovecot] Patch & feature request: hide passwords in doveconf -n by default Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, attached patch tries to hide any setting that ends in _password (singular) in the output of doveconf by default. doveconf -n - -> passwords replaced by "" to prevent information leak when submitting bug reports doveconf -n -P - -> passwords visible when used by admins locally doveconf -n -P -P - -> setting itself is not shown to even hide that a password is set in the config Warning: doveconf is used by internal programs as well, maybe they won't after the patch. Timo should check out the idea. The passwords are left alone currently, if one queries one setting and if the values are saved to environment. Kind regards, - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUyHQ0nD1/YhP6VMHAQIYkwf/aeiT4MMERJr1abZIHPv5zjvgHlyixwfM huFD2CzbhWUoUlE4auAxUVDP+l/s7jlQzZ04y4vt2BdMauMUDSg8ZcFWxSkj+Veg ZDjTVSP/v386ihH0TlGWXsVp1hCvzJUgylpQYbFwCJ3b58xs7p+8wb2l2Ngj/TTp kmtl8mJ2Z5+MBJqz4IBxye7RXkTndHMC18EjVHxNkIIJ8kEUn7tbs0eljudZXSPD q2gsG0PzvGTOUkuWWvWLVP4nTXBKMIffxX2SDNHmb1gHNV05zL8b5uth3PxUA7d6 NpXsnGHxCfOGf3FPbaTlGPfVpIX5IdTxZTRXHe++tDdlonZInM7V/g== =73ZJ -----END PGP SIGNATURE----- -------------- next part -------------- A non-text attachment was scrubbed... Name: dovecot_conf_hidepwd.diff.bz2 Type: application/octet-stream Size: 1667 bytes Desc: URL: From papier at sdv.fr Thu Mar 13 16:12:00 2014 From: papier at sdv.fr (Laurent Papier) Date: Thu, 13 Mar 2014 17:12:00 +0100 Subject: [Dovecot] possible quota bug ? In-Reply-To: <52f7bbc019275_69938ee20342597c@a4-weasel7.mail> References: <52eac45a9cc88_4ee222883073570@a4-weasel3.mail> <52f7bbc019275_69938ee20342597c@a4-weasel7.mail> Message-ID: <20140313171200.4820acb6@titanium.sdv.fr> Le Sun, 09 Feb 2014 15:32:48 -0200 fernando.figaro at uol.com.br ?crit: Hi, no solution just a confirmation of the bug. lz4 compression here. Clean maildir directory generated with 'doveadm backup'. So S=..,W=.. are correct. Moving this mail file from inbox to trash: -rw------- 1 maildir maildir 5165 Mar 13 17:01 1394726488.M954102P27201.dev-nc-pxe.sdv.fr,S=7590,W=7640:2,Sa # cat maildirsize 12582910S,30C 108394 10 5165 1 -7590 -1 > Hi Timo, > > I'm posting more info about this issue: > > Sent a message from gmail, delivered via lmtp/lda/sieve > > -rw------- 1 vmail vmail 1187 Feb 9 15:14 1391966051.M730051P32575.LAB-STO-V-01,S=2392,W=2440 > > The message was compressed (gz) > > Maildirsize: > 1073741824S > 51505 31 > 2392 1 > > Move message from INBOX to TRASH > > Feb 9 15:15:45 LAB-LMB-V-01 dovecot: imap(xxx): copy from INBOX: box=INBOX.Trash, uid=27, msgid=, size=1187 > Feb 9 15:15:45 LAB-LMB-V-01 dovecot: imap(xxx): expunge: box=INBOX, uid=32, msgid=, size=2392 > > Maildirsize: > 1073741824S > 51505 31 > 2392 1 > 1187 1 > -2392 -1 > ? > -- Laurent Papier - 03 88 75 80 50 Resp. syst?me - SdV Plurimedia - From itgeek31 at googlemail.com Thu Mar 13 18:27:43 2014 From: itgeek31 at googlemail.com (IT geek 31) Date: Thu, 13 Mar 2014 19:27:43 +0100 Subject: [Dovecot] Is replication broken? In-Reply-To: <5321CAB8.9000200@Media-Brokers.com> References: <5321CAB8.9000200@Media-Brokers.com> Message-ID: Oh agreed. I assumed that to be what he meant :-) I'll have a hunt for a numpties guide for migrating from mbox to mdbox. I found this: http://wiki2.dovecot.org/Migration/MailFormat But I think that is hinting at going mbox ---> Maildir ---> mdbox. Not ideal. -Mark On 13 March 2014 16:11, Charles Marcus wrote: > On 3/13/2014 10:55 AM, IT geek 31 wrote: > >> Timo wrote this last month: >> >> mbox format + dsync replication apparently doesn't work because of lock >> ordering issues. Might not be easy to fix, or in any case it's pretty low >> priority for me for now. >> >> Sorry for "bumping the subject" again but is there any chance this has >> moved up the priority list? >> >> I don't know if anyone else feels the same... but replication is number >> one >> on our Christmas wish list right now :-) >> > > I think Timo's point is the fact that this is strictly mbox related. > > Maybe switch to mdbox is an option? > > -- > > Best regards, > > Charles > From dieterknopf at gmail.com Fri Mar 14 11:51:01 2014 From: dieterknopf at gmail.com (Dieter Knopf) Date: Fri, 14 Mar 2014 12:51:01 +0100 Subject: [Dovecot] Public Namespace and INBOX In-Reply-To: References: <20140306132657.GB2440@darac.org.uk> <531894fb.49cf0e0a.2c68.ffff9b01SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: Hello again, if i create a Simlink inside my MAILDIR (Public Namespace) (ln -s .INBOX .PREFIXNAME) then i can open the PREFIX-Folder, but that can't be the right way, because then i have two different INBOX-Folders (PREFIX/ AND PREFIX/INBOX). Thanks 2014-03-11 10:06 GMT+01:00 Dieter Knopf : > Hello again, > > i played a little bit with the config and still can't get it to work. > > The folders should look like: > PUBLICMAILDIR (=INBOX) > - Foo1 > - Foo2 > > But it still looks like: > PUBLICMAILDIR (Mailbox doesn't exist) > - INBOX > - Foo1 > - Foo2 > > Without the seperate .INBOX-Directory inside my MAILDIR (mail_location = > INBOX=foo/.INBOX/) there is no way to access the INBOX. With i just see a > INBOX folder inside my Public Namespace. > > Thanks again > Dieter > > > > 2014-03-06 16:52 GMT+01:00 Dieter Knopf : > > >> 2014-03-06 16:32 GMT+01:00 Steffen Kaiser >> : >> >> >>> If you don't get it to work, fake an INBOX by symlinking cur/new/tmp >>> into ".INBOX". It's not the nice, but should work. >>> >>> >> Thanks, because of that i tried it with a custom INBOX in mail_location >> and it worked, but i still only see FOO/INBOX as folder and not FOO itself. >> >> > From aellert at numeezy.com Fri Mar 14 18:36:33 2014 From: aellert at numeezy.com (Alexandre Ellert) Date: Fri, 14 Mar 2014 19:36:33 +0100 Subject: [Dovecot] FTS solr : body search gives mysql error In-Reply-To: References: <525DBEC3-D855-4D58-A879-0DF92E1A4748@numeezy.com> Message-ID: <95C9ABA2-6516-4296-83F4-816BB6AA8691@numeezy.com> > We always do and include any additional conf files with mysql queries. I'm confused but I don't understand your answer. Can you please give more detail or an example ? Thanks. From linuxmail at 4lin.net Fri Mar 14 18:51:14 2014 From: linuxmail at 4lin.net (Denny Fuchs) Date: Fri, 14 Mar 2014 19:51:14 +0100 Subject: [Dovecot] Compile Metadata for 2.2.9 Message-ID: <58E0030D-5F3D-42AC-8545-168811BE4E29@4lin.net> hi, I use Debian Wheezy backports for Dovecot and I want to compile the latest metadata plugin, but it fails: the metadata plugin was downloaded via: http://hg.dovecot.org/dovecot-metadata-plugin/archive/tip.tar.gz root at build:~/dovecot-metadata-plugin-b6df1381bb79# ./configure --with-dovecot=/usr/lib/dovecot/ && make [...] /bin/bash ../libtool --tag=CC --mode=compile gcc -std=gnu99 -DHAVE_CONFIG_H -I. -I.. -I/usr/include/dovecot -g -O2 -MT imap-metadata-plugin.lo -MD -MP -MF .deps/imap-metadata-plugin.Tpo -c -o imap-metadata-plugin.lo imap-metadata-plugin.c libtool: compile: gcc -std=gnu99 -DHAVE_CONFIG_H -I. -I.. -I/usr/include/dovecot -g -O2 -MT imap-metadata-plugin.lo -MD -MP -MF .deps/imap-metadata-plugin.Tpo -c imap-metadata-plugin.c -fPIC -DPIC -o .libs/imap-metadata-plugin.o imap-metadata-plugin.c:452:1: error: static declaration of 'cmd_getmetadata' follows non-static declaration In file included from /usr/include/dovecot/imap-client.h:4:0, from /usr/include/dovecot/imap-common.h:17, from imap-metadata-plugin.c:21: /usr/include/dovecot/imap-commands.h:110:6: note: previous declaration of 'cmd_getmetadata' was here imap-metadata-plugin.c:743:1: error: static declaration of 'cmd_setmetadata' follows non-static declaration In file included from /usr/include/dovecot/imap-client.h:4:0, from /usr/include/dovecot/imap-common.h:17, from imap-metadata-plugin.c:21: /usr/include/dovecot/imap-commands.h:111:6: note: previous declaration of 'cmd_setmetadata' was here make[2]: *** [imap-metadata-plugin.lo] Error 1 make[2]: Leaving directory `/root/dovecot-metadata-plugin-b6df1381bb79/src' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/root/dovecot-metadata-plugin-b6df1381bb79' make: *** [all] Error 2 I tried also hg clone ..., but got the same ... Do I need Dovecot 2.2.10 to compile successful ? cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 203 bytes Desc: Message signed with OpenPGP using GPGMail URL: From h.reindl at thelounge.net Fri Mar 14 18:57:44 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Fri, 14 Mar 2014 19:57:44 +0100 Subject: [Dovecot] FTS solr : body search gives mysql error In-Reply-To: <95C9ABA2-6516-4296-83F4-816BB6AA8691@numeezy.com> References: <525DBEC3-D855-4D58-A879-0DF92E1A4748@numeezy.com> <95C9ABA2-6516-4296-83F4-816BB6AA8691@numeezy.com> Message-ID: <53235128.2080905@thelounge.net> Am 14.03.2014 19:36, schrieb Alexandre Ellert: >> We always do and include any additional conf files with mysql queries. > I'm confused but I don't understand your answer. Can you please give more detail or an example? you reported a mysql query error and no configuration -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From aellert at numeezy.com Fri Mar 14 18:58:10 2014 From: aellert at numeezy.com (Alexandre Ellert) Date: Fri, 14 Mar 2014 19:58:10 +0100 Subject: [Dovecot] FTS solr : body search gives mysql error In-Reply-To: <95C9ABA2-6516-4296-83F4-816BB6AA8691@numeezy.com> References: <525DBEC3-D855-4D58-A879-0DF92E1A4748@numeezy.com> <95C9ABA2-6516-4296-83F4-816BB6AA8691@numeezy.com> Message-ID: <8425F461-B81D-42D3-9141-9A71B86533BA@numeezy.com> With auth_debug = yes, I see that the MySQL querie change when fts solr is enabled, it adds : AND disableindexer-worker = 'n' Here is the full query : Mar 14 19:51:03 mut-mx-1 dovecot: auth: Debug: master in: USER#0111#011user at domain.com#011service=indexer-worker Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Debug: sql(user at domain.com): SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE (login = 'user at domain.com' OR email = 'user at domain.com') AND disableindexer-worker = 'n' Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Warning: mysql: Query failed, retrying: Unknown column 'disableindexer' in 'where clause' Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Error: sql(user at domain.com): User query failed: Unknown column 'disableindexer' in 'where clause' Mar 14 19:51:03 mut-mx-1 dovecot: auth: Debug: userdb out: FAIL#0111 So, I guess that I need to add a disableindexer-worker column in my database but I can't find any documentation about that nor any reference about disableindexer-worker in source code. I'm lost? Alexandre From h.reindl at thelounge.net Fri Mar 14 19:05:02 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Fri, 14 Mar 2014 20:05:02 +0100 Subject: [Dovecot] FTS solr : body search gives mysql error In-Reply-To: <8425F461-B81D-42D3-9141-9A71B86533BA@numeezy.com> References: <525DBEC3-D855-4D58-A879-0DF92E1A4748@numeezy.com> <95C9ABA2-6516-4296-83F4-816BB6AA8691@numeezy.com> <8425F461-B81D-42D3-9141-9A71B86533BA@numeezy.com> Message-ID: <532352DE.6070101@thelounge.net> Am 14.03.2014 19:58, schrieb Alexandre Ellert: > With auth_debug = yes, I see that the MySQL querie change when fts solr is enabled, it adds : AND disableindexer-worker = 'n' > Here is the full query : > > Mar 14 19:51:03 mut-mx-1 dovecot: auth: Debug: master in: USER#0111#011user at domain.com#011service=indexer-worker > Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Debug: sql(user at domain.com): SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE (login = 'user at domain.com' OR email = 'user at domain.com') AND disableindexer-worker = 'n' > Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Warning: mysql: Query failed, retrying: Unknown column 'disableindexer' in 'where clause' > Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Error: sql(user at domain.com): User query failed: Unknown column 'disableindexer' in 'where clause' > Mar 14 19:51:03 mut-mx-1 dovecot: auth: Debug: userdb out: FAIL#0111 > > So, I guess that I need to add a disableindexer-worker column in my database but I can't find any documentation about > that nor any reference about disableindexer-worker in source code. I'm lost AND disableindexer-worker = 'n' comes to my guess the other possible value is 'y' so just add the missing column the question before you did not understand was still the hint "provide your configuration with masked internal passwords" as it is usual -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From CMarcus at Media-Brokers.com Wed Mar 5 12:07:58 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 05 Mar 2014 07:07:58 -0500 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: References: <53160B93.4020207@Media-Brokers.com> Message-ID: <5317139E.3070809@Media-Brokers.com> On 3/4/2014 4:00 PM, Muzaffer Tolga Ozses wrote: > On 4 March 2014 19:21, Charles Marcus wrote: >> On 3/3/2014 8:43 PM, Aleve Sicofante wrote: >>> I wish to know if someone knows an IMAP client (desktop or webmail) using >>> Dovecot's virtual mailboxes as server-side search folders. >> I'm also interested in this. What I'd really like to see is support in >> Thunderbird for this. >> >> Thunderbird already has support for virtual folders, but I'd love to see >> this support extended to server-side virtual folders - ie, so Thunderbird >> could create and manage them directly on the server. > Could you elaborate? I'm using virtual mailboxes, but I'm not sure if > that's what you're talking about. If you mean no system accounts, that's my > setup. Please don't top-post... Yes, dovecot's 'virtual mailboxes' is essentially the same thing conceptually as Thunderbird's 'Virtual Folders', but dovecot does it server-side (and all clients automatically see the virtual mailboxes as if they were real folders). Thunderbird does it client side, so it is *much* less efficient, and it is local only to that instance of Thunderbird (so, no other clients see those virtual folders). Hmmm... I could have sworn I opened a bug about this way back when dovecot added support for this, but I guess I didn't... So, I just did... feel free to go vote for it: https://bugzilla.mozilla.org/show_bug.cgi?id=979846 -- Best regards, Charles From sca at andreasschulze.de Fri Mar 14 20:49:49 2014 From: sca at andreasschulze.de (Andreas Schulze) Date: Fri, 14 Mar 2014 21:49:49 +0100 Subject: [Dovecot] Compile Metadata for 2.2.9 In-Reply-To: <58E0030D-5F3D-42AC-8545-168811BE4E29@4lin.net> References: <58E0030D-5F3D-42AC-8545-168811BE4E29@4lin.net> Message-ID: <20140314214949.Horde.CN6by16aOqccKv-wD9DBdw1@horde.andreasschulze.de> Denny Fuchs: > Do I need Dovecot 2.2.10 to compile successful ? if depends on your needs. dovecot support IMAP METADATA Extension (RFC 5464) out of the box. at least I do not need a separate source package anymore. I have this with dovecot-2.2.12: --- snip imap_metadata = yes mail_attribute_dict = file:Maildir/dovecot-metadata --- snap together with "mail_location = maildir:~/Maildir" dovecot create it's operational files at the usual location. works perfect with my horde ... Andreas From aellert at numeezy.com Fri Mar 14 21:33:49 2014 From: aellert at numeezy.com (Alexandre Ellert) Date: Fri, 14 Mar 2014 22:33:49 +0100 Subject: [Dovecot] FTS solr : body search gives mysql error In-Reply-To: <532352DE.6070101@thelounge.net> References: <525DBEC3-D855-4D58-A879-0DF92E1A4748@numeezy.com> <95C9ABA2-6516-4296-83F4-816BB6AA8691@numeezy.com> <8425F461-B81D-42D3-9141-9A71B86533BA@numeezy.com> <532352DE.6070101@thelounge.net> Message-ID: <8DDC9016-7C57-4C1D-8560-5792F00BE4A3@numeezy.com> I've add the column disableindexer-worker : alter table mail_user add `disableindexer-worker` enum('n','y') default 'n'; But the problem remain the same. I finally found why, here is my dovecot-sql.conf : password_query = SELECT password FROM mail_user WHERE (login = '%u' OR email = '%u') AND disable%Ls = 'n' user_query = SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE (login = '%u' OR email = '%u') AND disable%Ls = 'n' The problem is in the query : disable%Ls I don't have any indexer-worker defined in my configuration. Maybe I can do an override to stop execute user_query and password_query for indexer-worker ? (solr search seems working fine) # 2.2.12.0: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4 auth_debug = yes auth_mechanisms = plain login base_dir = /var/run/dovecot/ hostname = mail.numeezy.com imap_capability = +XLIST lda_mailbox_autocreate = yes listen = 188.165.154.169 login_greeting = Ready. mail_gid = 5000 mail_location = maildir:/var/vmail/%d/%n/Maildir mail_plugins = quota mail_log notify fts fts_solr mail_privileged_group = mail mail_uid = 5000 namespace inbox { inbox = yes location = mailbox Drafts { auto = subscribe special_use = \Drafts } mailbox Junk { auto = subscribe special_use = \Junk } mailbox Sent { auto = subscribe special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { auto = subscribe special_use = \Trash } mailbox name { special_use = \Drafts \Junk \Sent \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf driver = sql } plugin { antispam_backend = mailtrain antispam_mail_notspam = --ham antispam_mail_sendmail = /usr/local/bin/sa-learn-pipe.sh antispam_mail_spam = --spam antispam_spam = Junk antispam_trash = Trash fts = solr fts_autoindex = yes fts_solr = break-imap-search url=http://127.0.0.1:8080/solr/ mail_log_events = delete expunge mailbox_delete mail_log_fields = uid box msgid from subject quota = dict:user::file:/var/vmail/%d/%n/.quotausage quota_grace = 10%% quota_rule = Trash:storage=+200M quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u sieve = /var/vmail/%d/%n/.sieve sieve_before = /etc/dovecot/sieve_before sieve_vacation_send_from_recipient = yes } postmaster_address = postmaster at numeezy.com protocols = imap pop3 service auth-worker { user = vmail } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } user = dovecot } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } process_limit = 500 service_count = 1 } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } service_count = 1 } service quota-warning { executable = script /usr/local/bin/quota-warning.sh unix_listener quota-warning { mode = 0666 user = vmail } user = vmail } ssl_cert = a ?crit : > Am 14.03.2014 19:58, schrieb Alexandre Ellert: >> With auth_debug = yes, I see that the MySQL querie change when fts solr is enabled, it adds : AND disableindexer-worker = 'n' >> Here is the full query : >> >> Mar 14 19:51:03 mut-mx-1 dovecot: auth: Debug: master in: USER#0111#011user at domain.com#011service=indexer-worker >> Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Debug: sql(user at domain.com): SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE (login = 'user at domain.com' OR email = 'user at domain.com') AND disableindexer-worker = 'n' >> Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Warning: mysql: Query failed, retrying: Unknown column 'disableindexer' in 'where clause' >> Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Error: sql(user at domain.com): User query failed: Unknown column 'disableindexer' in 'where clause' >> Mar 14 19:51:03 mut-mx-1 dovecot: auth: Debug: userdb out: FAIL#0111 >> >> So, I guess that I need to add a disableindexer-worker column in my database but I can't find any documentation about >> that nor any reference about disableindexer-worker in source code. I'm lost > > AND disableindexer-worker = 'n' comes to my guess the other possible value is 'y' > so just add the missing column > > the question before you did not understand was still the hint "provide > your configuration with masked internal passwords" as it is usual > From asicofante at gmail.com Sat Mar 15 01:43:46 2014 From: asicofante at gmail.com (Aleve Sicofante) Date: Sat, 15 Mar 2014 02:43:46 +0100 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: <5317139E.3070809@Media-Brokers.com> References: <53160B93.4020207@Media-Brokers.com> <5317139E.3070809@Media-Brokers.com> Message-ID: 2014-03-05 13:07 GMT+01:00 Charles Marcus : > On 3/4/2014 4:00 PM, Muzaffer Tolga Ozses wrote: > >> On 4 March 2014 19:21, Charles Marcus wrote: >> >>> On 3/3/2014 8:43 PM, Aleve Sicofante wrote: >>> >>>> I wish to know if someone knows an IMAP client (desktop or webmail) >>>> using >>>> Dovecot's virtual mailboxes as server-side search folders. >>>> >>> > I'm also interested in this. What I'd really like to see is support in >>> Thunderbird for this. >>> >>> Thunderbird already has support for virtual folders, but I'd love to see >>> this support extended to server-side virtual folders - ie, so Thunderbird >>> could create and manage them directly on the server. >>> >> > Could you elaborate? I'm using virtual mailboxes, but I'm not sure if >> that's what you're talking about. If you mean no system accounts, that's >> my >> setup. >> > > Please don't top-post... > > Yes, dovecot's 'virtual mailboxes' is essentially the same thing > conceptually as Thunderbird's 'Virtual Folders', but dovecot does it > server-side (and all clients automatically see the virtual mailboxes as if > they were real folders). > > Thunderbird does it client side, so it is *much* less efficient, and it is > local only to that instance of Thunderbird (so, no other clients see those > virtual folders). > > Hmmm... I could have sworn I opened a bug about this way back when dovecot > added support for this, but I guess I didn't... > > So, I just did... feel free to go vote for it: > > https://bugzilla.mozilla.org/show_bug.cgi?id=979846 > OK. Subscribed and voted, but the bug should point to "where to start" in Dovecot's documentation. Which point would that be? Is it documented how to remotely manage virtual mailboxes? According to Michael Slusarzthis is not possible and we're misinterpreting the use of virtual mailboxes by Dovecot... Who's right? From kjonca at o2.pl Sat Mar 15 09:03:05 2014 From: kjonca at o2.pl (Kamil =?iso-8859-2?Q?Jo=F1ca?=) Date: Sat, 15 Mar 2014 10:03:05 +0100 Subject: [Dovecot] Strange difference between mails delivered with dovecot-lda and lmtp Message-ID: <87wqfvsuk6.fsf@alfa.kjonca> For a long time I have had configuration where mails were fetched by fetchmail then passed to exim and then passed to dovecot via lmtp. Recently I remove dovecot module and mails are passed from exim to dovecot via dovecot-lda Yesterday I have some kind of accident and lost my .fetchids file so a lot of mails were fetched again. During duplicate hunting I found something strange: messages fetched yesterday (passed to dovecot with lda have additional line) have additional line at the end: for example --8<---------------cut here---------------start------------->8--- diff cur/1392241092.M478532P15313.alfa,S=13668,W=13925:2,a cur/1394814438.M978438P14745.alfa,S=13567,W=13823:2,a 1,6c1,4 < Return-Path: < Delivered-To: < Received: from alfa.kjonca < by alfa.kjonca (Dovecot) with LMTP id p94PDcTp+1LROwAApvcrCQ < for ; Wed, 12 Feb 2014 22:38:12 +0100 < Received: from [127.0.0.1] (port=60632 helo=alfa.kjonca) --- > Return-path: > Envelope-to: kjonca at localhost > Delivery-date: Fri, 14 Mar 2014 17:27:18 +0100 > Received: from [127.0.0.1] (port=45527 helo=alfa.kjonca) 9,10c7,8 < id 1WDhVU-0003ys-75 < for kjonca at localhost; Wed, 12 Feb 2014 22:38:12 +0100 --- > id 1WOUgz-00015z-L0 > for kjonca at localhost; Fri, 14 Mar 2014 17:10:41 +0100 13c11 < for (single-drop); Wed, 12 Feb 2014 22:38:12 +0100 (CET) --- > for (single-drop); Fri, 14 Mar 2014 17:10:41 +0100 (CET) 30c28 < Message-Id: --- > Message-Id: 256a255 > --8<---------------cut here---------------end--------------->8--- I'm somewhat confused with this. Is this normal? -- http://wolnelektury.pl/wesprzyj/teraz/ From linuxmail at 4lin.net Sat Mar 15 10:18:34 2014 From: linuxmail at 4lin.net (Denny Fuchs) Date: Sat, 15 Mar 2014 11:18:34 +0100 Subject: [Dovecot] Compile Metadata for 2.2.9 In-Reply-To: <20140314214949.Horde.CN6by16aOqccKv-wD9DBdw1@horde.andreasschulze.de> References: <58E0030D-5F3D-42AC-8545-168811BE4E29@4lin.net> <20140314214949.Horde.CN6by16aOqccKv-wD9DBdw1@horde.andreasschulze.de> Message-ID: hi, Am 14.03.2014 um 21:49 schrieb Andreas Schulze : > > if depends on your needs. dovecot support IMAP METADATA Extension (RFC 5464) out of the box. > at least I do not need a separate source package anymore. I want to test a Kolab setup, first for private use, later also in the university > I have this with dovecot-2.2.12: > > --- snip > imap_metadata = yes > mail_attribute_dict = file:Maildir/dovecot-metadata > --- snap I thought, it is plugin, so I tried to find it on the disk ... but nothing found on the Debian (regular Wheezy packages) cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 203 bytes Desc: Message signed with OpenPGP using GPGMail URL: From sca at andreasschulze.de Sat Mar 15 11:15:20 2014 From: sca at andreasschulze.de (Andreas Schulze) Date: Sat, 15 Mar 2014 12:15:20 +0100 Subject: [Dovecot] Compile Metadata for 2.2.9 In-Reply-To: References: <58E0030D-5F3D-42AC-8545-168811BE4E29@4lin.net> <20140314214949.Horde.CN6by16aOqccKv-wD9DBdw1@horde.andreasschulze.de> Message-ID: <20140315121520.Horde.hQBxx4n2JYLK0oprggNaKg5@horde.andreasschulze.de> Denny Fuchs: > I want to test a Kolab setup, first for private use, later also in > the university same here but horde, not kolab > I thought, it is plugin, so I tried to find it on the disk ... but > nothing found on the Debian (regular Wheezy packages) I compile the source, no experience with Wheezy packages. But I just checked I do not explicit enable metadata at compiletime. Support started in dovecot-2.2.(5-9)? and 2.2.10 did some fixes. It's simply default and must be configured only. Andreas From alessandro.menti at hotmail.it Sat Mar 15 13:57:05 2014 From: alessandro.menti at hotmail.it (Alessandro Menti) Date: Sat, 15 Mar 2014 14:57:05 +0100 Subject: [Dovecot] Using a Sieve script to handle delivery to public mailboxes Message-ID: Hello everyone, I'm setting up a Postfix+Dovecot stack with virtual domains and public mailboxes. I set up a shared mailbox "office at mydomain.com" as described in the Dovecot Wiki [1], that is: - I created the directory "/var/mail/mydomain.com/public/" and inside it I created the ".office" mailbox; - I added an appropriate ACL to allow the account "president at mydomain.com" to read and edit that mailbox under a public namespace; - I added a Sieve script to handle delivery to the public mailbox (its location is /var/mail/mydomain.com/public/.office/.dovecot.sieve). Some other relevant details about my configuration: - The backend used by Postfix and Dovecot to handle virtual aliases/domains/maps is a MySQL database. Since the virtual user table is used by other applications as well, I decided to keep it "clean" and to make use of another "virtual mailboxes" table (see /etc/dovecot/dovecot-sql.conf.ext below). The password_query setting returns only results from the virtual user table (so that only real users can authenticate on the IMAP server), while the user_query setting returns results from both the virtual user and the virtual mailbox table (so that dovecot-lda can choose the correct mailbox). - The queries saved in password_query and user_query return the correct results when executed manually: the home directory for the "office at mydomain.com" virtual mailbox is set to /var/mail/mydomain.com /public/.office. - Delivery from and to the "president at mydomain.com" account is regular, and that account is able to access the "office at mydomain.com" virtual mailbox (I have tested this by speaking IMAP to the server and by performing a manual check using Thunderbird). I encountered a problem with this setup: when I send a message to the "office at mydomain.com" account, the Postfix logs say it is correctly delivered via Dovecot, but the Sieve script says it can not find the folder "Public/.office". As a consequence, Dovecot creates a new Maildir in /var/mail/mydomain.com/office and delivers the mail there instead of saving it in the correct directory (/var/mail/mydomain.com/public/.office). Is there something I set incorrectly in my configuration? What is causing Dovecot not to recognize the correct mailbox during delivery? Is there a way to list all mailboxes seen by dovecot-lda itself? Thanks, Alessandro Menti [1] http://wiki2.dovecot.org/SharedMailboxes/Public ----- Dovecot and OS version: 2.0.19, Ubuntu 12.04 LTS Output of "dovecot -n": > # 2.0.19: /etc/dovecot/dovecot.conf > # OS: Linux 3.5.0-46-generic i686 Ubuntu 12.04.4 LTS ext4 > auth_mechanisms = plain login > login_greeting = IMAP server ready. > mail_debug = yes > mail_gid = vmail > mail_location = maildir:/var/mail/%d/%n/Maildir > mail_plugins = acl > mail_uid = vmail > namespace { > inbox = yes > location = > prefix = > separator = / > type = private > } > namespace { > list = children > location = maildir:/var/mail/mydomain.com/public > prefix = Public/ > separator = / > subscriptions = no > type = public > } > passdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > plugin { > acl = vfile > sieve = ~/.dovecot.sieve > sieve_before = /var/mail/sieve/ > sieve_dir = ~/sieve > } > postmaster_address = postmaster at mydomain.com > protocols = " imap" > service auth { > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0660 > user = postfix > } > unix_listener auth-userdb { > group = vmail > mode = 0660 > user = dovecot > } > } > ssl_cert = ssl_cipher_list = EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:AES256-SHA256:AES256-SHA:RC4-SHA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS > ssl_key = userdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > protocol lda { > info_log_path = /var/log/dovecot-lda.log > log_path = /var/log/dovecot-lda-errors.log > mail_plugins = acl sieve > } > protocol imap { > mail_plugins = acl imap_acl > } /etc/dovecot/dovecot-sql.conf.ext: > driver = mysql > connect = host=127.0.0.1 dbname=dbname user=username password=password > default_pass_scheme = SHA512-CRYPT > password_query = SELECT email as user, password FROM virtual_users WHERE email='%u'; > user_query = SELECT home FROM virtual_users WHERE email = '%u' UNION SELECT home FROM virtual_shared_mailboxes WHERE email = '%u' Extract from /var/log/mail.log: > Mar 15 11:43:07 phoenix postfix/pickup[1404]: 3BA221FFD1: uid=0 from= > Mar 15 11:43:07 phoenix postfix/cleanup[4871]: 3BA221FFD1: message-id=<20140315104307.3BA221FFD1 at mail.mydomain.com> > Mar 15 11:43:07 phoenix postfix/qmgr[7691]: 3BA221FFD1: from=, size=316, nrcpt=1 (queue active) > Mar 15 11:43:07 phoenix dovecot: auth-worker: mysql(127.0.0.1): Connected to database mailserver > Mar 15 11:43:07 phoenix postfix/pipe[4875]: 3BA221FFD1: to=, relay=dovecot, delay=0.15, delays=0.05/0.03/0/0.07, dsn=2.0.0, status=sent (delivered via dovecot service) > Mar 15 11:43:07 phoenix postfix/qmgr[7691]: 3BA221FFD1: removed Extract from /var/log/dovecot-lda.log: > Mar 15 11:43:07 lda: Debug: Loading modules from directory: /usr/lib/dovecot/modules > Mar 15 11:43:07 lda: Debug: Module loaded: /usr/lib/dovecot/modules/lib01_acl_plugin.so > Mar 15 11:43:07 lda: Debug: Module loaded: /usr/lib/dovecot/modules/lib90_sieve_plugin.so > Mar 15 11:43:07 lda: Debug: auth input: office at mydomain.com home=/var/mail/mydomain.com/public/.office > Mar 15 11:43:07 lda(office at mydomain.com): Debug: Effective uid=1002, gid=999, home=/var/mail/mydomain.com/public/.office > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: No acl_shared_dict setting - shared mailbox listing is disabled > Mar 15 11:43:07 lda(office at mydomain.com): Debug: Namespace : type=private, prefix=, sep=/, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/var/mail/mydomain.com/office/Maildir > Mar 15 11:43:07 lda(office at mydomain.com): Debug: maildir++: root=/var/mail/mydomain.com/office/Maildir, index=, control=, inbox=/var/mail/mydomain.com/office/Maildir, alt= > Mar 15 11:43:07 lda(office at mydomain.com): Debug: Namespace : /var/mail/mydomain.com/office/Maildir doesn't exist yet, using default permissions > Mar 15 11:43:07 lda(office at mydomain.com): Debug: Namespace : Using permissions from /var/mail/mydomain.com/office/Maildir: mode=0700 gid=-1 > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: initializing backend with data: vfile > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: acl username = office at mydomain.com > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: owner = 1 > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: Global ACL directory: (none) > Mar 15 11:43:07 lda(office at mydomain.com): Debug: Namespace : type=public, prefix=Public/, sep=/, inbox=no, hidden=no, list=children, subscriptions=no location=maildir:/var/mail/mydomain.com/public > Mar 15 11:43:07 lda(office at mydomain.com): Debug: maildir++: root=/var/mail/mydomain.com/public, index=, control=, inbox=, alt= > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: initializing backend with data: vfile > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: acl username = office at mydomain.com > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: owner = 0 > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: Global ACL directory: (none) > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: No acl_shared_dict setting - shared mailbox listing is disabled > Mar 15 11:43:07 lda(office at mydomain.com): Debug: none: root=, index=, control=, inbox=, alt= > Mar 15 11:43:07 lda(office at mydomain.com): Debug: Destination address: office at mydomain.com (source: user at hostname) > Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: include: sieve_global_dir is not set; it is currently not possible to include `:global' scripts. > Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: using sieve path for user's script: /var/mail/mydomain.com/public/.office/.dovecot.sieve > Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: opening script /var/mail/mydomain.com/public/.office/.dovecot.sieve > Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: script binary /var/mail/mydomain.com/public/.office/.dovecot.svbin successfully loaded > Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: binary save: not saving binary /var/mail/mydomain.com/public/.office/.dovecot.svbin, because it is already stored > Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: executing script from /var/mail/mydomain.com/public/.office/.dovecot.svbin > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: reading file /var/mail/mydomain.com/public/.office/dovecot-acl > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: file /var/mail/mydomain.com/public/dovecot-acl not found > Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: file /var/mail/mydomain.com/office/Maildir/dovecot-acl not found > Mar 15 11:43:07 lda(office at mydomain.com): Info: sieve: msgid=<20140315104307.3BA221FFD1 at mail.mydomain.com>: stored mail into mailbox 'INBOX' Extract from /var/mail/mydomain.com/public/.office/.dovecot.sieve.log: > sieve: info: started log at Mar 15 11:43:07. > error: msgid=<20140315104307.3BA221FFD1 at mail.mydomain.com>: failed to store into mailbox 'Public/office': Mailbox doesn't exist: office. Listing of /var/mail/mydomain.com/public/.office: > $ sudo ls /var/mail/mydomain.com/public/.office -lA > total 56 > drwxr-x--- 2 vmail vmail 4096 mar 14 17:14 cur > -rw-r--r-- 1 root root 98 mar 9 18:05 dovecot-acl > -rw-r----- 1 vmail vmail 18432 mar 15 10:36 dovecot.index.cache > -rw-r----- 1 vmail vmail 1088 mar 15 10:36 dovecot.index.log > -rw-r--r-- 1 vmail vmail 0 mar 14 21:50 dovecot-shared > -rw-r--r-- 1 root root 50 mar 15 11:42 .dovecot.sieve > -rw------- 1 vmail vmail 188 mar 15 11:43 .dovecot.sieve.log > -rw-r--r-- 1 vmail vmail 124 mar 15 11:42 .dovecot.svbin > -rw-r----- 1 vmail vmail 98 mar 14 17:13 dovecot-uidlist > drwxr-x--- 2 vmail vmail 4096 mar 14 16:25 new > drwxr-x--- 2 vmail vmail 4096 mar 15 08:48 tmp Contents of /var/mail/mydomain.com/public/.office/.dovecot.sieve: > require "fileinto"; > fileinto "Public/office"; ACL for the "office" shared mailbox: > $ sudo cat /var/mail/mydomain.com/public/.office/dovecot-acl > user=president at mydomain.com lrwstipe Transcript of an IMAP session listing all folders: > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN] IMAP server ready. > a01 LOGIN president at mydomain.com password > a01 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS ACL RIGHTS=texk] Logged in > a02 LIST "" "*" > * LIST (\HasNoChildren) "/" "Infected Items" > * LIST (\HasNoChildren) "/" "Recycle Bin" > * LIST (\HasNoChildren) "/" "Spam" > * LIST (\HasNoChildren) "/" "Trash" > * LIST (\HasNoChildren) "/" "Drafts" > * LIST (\HasNoChildren) "/" "Sent Mail" > * LIST (\HasNoChildren) "/" "INBOX" > * LIST (\HasNoChildren) "/" "Public/office" > a02 OK List completed. > a03 LOGOUT > * BYE Logging out > a03 OK Logout completed. From aellert at numeezy.com Sat Mar 15 14:45:07 2014 From: aellert at numeezy.com (Alexandre Ellert) Date: Sat, 15 Mar 2014 15:45:07 +0100 Subject: [Dovecot] FTS solr : body search gives mysql error In-Reply-To: <8DDC9016-7C57-4C1D-8560-5792F00BE4A3@numeezy.com> References: <525DBEC3-D855-4D58-A879-0DF92E1A4748@numeezy.com> <95C9ABA2-6516-4296-83F4-816BB6AA8691@numeezy.com> <8425F461-B81D-42D3-9141-9A71B86533BA@numeezy.com> <532352DE.6070101@thelounge.net> <8DDC9016-7C57-4C1D-8560-5792F00BE4A3@numeezy.com> Message-ID: <9E943C5A-F1FD-4817-BAD0-9609B812C7CA@numeezy.com> I finally found the problem : 1. add column disableindexer-worker : alter table mail_user add `disableindexer-worker` enum('n','y') default 'n'; 2. modify dovecot-sql.conf with backtick around disable%Ls : user_query = SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE (login = '%u' OR email = '%u') AND `disable%Ls` = 'n' Le 14 mars 2014 ? 22:33, Alexandre Ellert a ?crit : > I've add the column disableindexer-worker : > alter table mail_user add `disableindexer-worker` enum('n','y') default 'n'; > > But the problem remain the same. > > I finally found why, here is my dovecot-sql.conf : > password_query = SELECT password FROM mail_user WHERE (login = '%u' OR email = '%u') AND disable%Ls = 'n' > user_query = SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE (login = '%u' OR email = '%u') AND disable%Ls = 'n' > > The problem is in the query : disable%Ls > > I don't have any indexer-worker defined in my configuration. Maybe I can do an override to stop execute user_query and password_query for indexer-worker ? (solr search seems working fine) > > # 2.2.12.0: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4 > auth_debug = yes > auth_mechanisms = plain login > base_dir = /var/run/dovecot/ > hostname = mail.numeezy.com > imap_capability = +XLIST > lda_mailbox_autocreate = yes > listen = 188.165.154.169 > login_greeting = Ready. > mail_gid = 5000 > mail_location = maildir:/var/vmail/%d/%n/Maildir > mail_plugins = quota mail_log notify fts fts_solr > mail_privileged_group = mail > mail_uid = 5000 > namespace inbox { > inbox = yes > location = > mailbox Drafts { > auto = subscribe > special_use = \Drafts > } > mailbox Junk { > auto = subscribe > special_use = \Junk > } > mailbox Sent { > auto = subscribe > special_use = \Sent > } > mailbox "Sent Messages" { > special_use = \Sent > } > mailbox Trash { > auto = subscribe > special_use = \Trash > } > mailbox name { > special_use = \Drafts \Junk \Sent \Trash > } > prefix = > } > passdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > plugin { > antispam_backend = mailtrain > antispam_mail_notspam = --ham > antispam_mail_sendmail = /usr/local/bin/sa-learn-pipe.sh > antispam_mail_spam = --spam > antispam_spam = Junk > antispam_trash = Trash > fts = solr > fts_autoindex = yes > fts_solr = break-imap-search url=http://127.0.0.1:8080/solr/ > mail_log_events = delete expunge mailbox_delete > mail_log_fields = uid box msgid from subject > quota = dict:user::file:/var/vmail/%d/%n/.quotausage > quota_grace = 10%% > quota_rule = Trash:storage=+200M > quota_warning = storage=95%% quota-warning 95 %u > quota_warning2 = storage=80%% quota-warning 80 %u > sieve = /var/vmail/%d/%n/.sieve > sieve_before = /etc/dovecot/sieve_before > sieve_vacation_send_from_recipient = yes > } > postmaster_address = postmaster at numeezy.com > protocols = imap pop3 > service auth-worker { > user = vmail > } > service auth { > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0660 > user = postfix > } > unix_listener auth-userdb { > group = vmail > mode = 0600 > user = vmail > } > user = dovecot > } > service imap-login { > inet_listener imap { > port = 143 > } > inet_listener imaps { > port = 993 > ssl = yes > } > process_limit = 500 > service_count = 1 > } > service pop3-login { > inet_listener pop3 { > port = 110 > } > inet_listener pop3s { > port = 995 > ssl = yes > } > service_count = 1 > } > service quota-warning { > executable = script /usr/local/bin/quota-warning.sh > unix_listener quota-warning { > mode = 0666 > user = vmail > } > user = vmail > } > ssl_cert = ssl_key = userdb { > args = /etc/dovecot/dovecot-sql.conf > driver = sql > } > protocol lda { > mail_plugins = quota mail_log notify fts fts_solr sieve > } > protocol imap { > mail_max_userip_connections = 80 > mail_plugins = quota mail_log notify fts fts_solr imap_quota antispam > } > protocol pop3 { > mail_max_userip_connections = 30 > mail_plugins = quota mail_log notify fts fts_solr > } > > > Le 14 mars 2014 ? 20:05, Reindl Harald a ?crit : > >> Am 14.03.2014 19:58, schrieb Alexandre Ellert: >>> With auth_debug = yes, I see that the MySQL querie change when fts solr is enabled, it adds : AND disableindexer-worker = 'n' >>> Here is the full query : >>> >>> Mar 14 19:51:03 mut-mx-1 dovecot: auth: Debug: master in: USER#0111#011user at domain.com#011service=indexer-worker >>> Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Debug: sql(user at domain.com): SELECT email as user, maildir as home, CONCAT('maildir:', maildir, '/Maildir') as mail, uid, gid, CONCAT('*:storage=', quota, 'B') AS quota_rule, CONCAT(maildir, '/.sieve') as sieve FROM mail_user WHERE (login = 'user at domain.com' OR email = 'user at domain.com') AND disableindexer-worker = 'n' >>> Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Warning: mysql: Query failed, retrying: Unknown column 'disableindexer' in 'where clause' >>> Mar 14 19:51:03 mut-mx-1 dovecot: auth-worker(10769): Error: sql(user at domain.com): User query failed: Unknown column 'disableindexer' in 'where clause' >>> Mar 14 19:51:03 mut-mx-1 dovecot: auth: Debug: userdb out: FAIL#0111 >>> >>> So, I guess that I need to add a disableindexer-worker column in my database but I can't find any documentation about >>> that nor any reference about disableindexer-worker in source code. I'm lost >> >> AND disableindexer-worker = 'n' comes to my guess the other possible value is 'y' >> so just add the missing column >> >> the question before you did not understand was still the hint "provide >> your configuration with masked internal passwords" as it is usual >> > From nikoamia at gmail.com Sun Mar 16 02:09:46 2014 From: nikoamia at gmail.com (Nikolay Amiantov) Date: Sun, 16 Mar 2014 06:09:46 +0400 Subject: [Dovecot] postfix2-antispam segfault Message-ID: Hello, I've got a segfault with postfix2-antispam. Versions: Linux: Arch Linux x86_64 Dovecot: 2.2.11 Antispam: latest hg (revision 51) Antispam configuration: antispam_backend = dspam antispam_allow_append_to_spam = YES antispam_spam = Spam;Junk antispam_trash = trash;Trash antispam_signature = X-DSPAM-Signature antispam_signature_missing = error antispam_dspam_binary = /usr/bin/dspamc antispam_dspam_args = --user;%Ln;--deliver=spam,innocent;--source=error;--signature=%%s antispam_dspam_spam = --class=spam antispam_dspam_notspam = --class=innocent antispam_dspam_result_header = X-DSPAM-Result mail_plugins = antispam fts fts_lucene GDB log with lmtp commands: http://bpaste.net/show/s2Ol7YyQH0a72QpyK9YN/ Bug is easily reproducible, ask my if you need additional information. Thanks for your hard work on the dovecot, Nikolay. From nikoamia at gmail.com Sun Mar 16 02:23:30 2014 From: nikoamia at gmail.com (Nikolay Amiantov) Date: Sun, 16 Mar 2014 06:23:30 +0400 Subject: [Dovecot] dovecot2-antispam segfault Message-ID: I'm sorry for messing up postfix and dovecot in the title, I have a good lack of sleep today. ^_^ 16 ????? 2014 ?. 6:09 ???????????? "Nikolay Amiantov" ???????: > Hello, > I've got a segfault with postfix2-antispam. > Versions: > Linux: Arch Linux x86_64 > Dovecot: 2.2.11 > Antispam: latest hg (revision 51) > > Antispam configuration: > antispam_backend = dspam > antispam_allow_append_to_spam = YES > antispam_spam = Spam;Junk > antispam_trash = trash;Trash > antispam_signature = X-DSPAM-Signature > antispam_signature_missing = error > antispam_dspam_binary = /usr/bin/dspamc > antispam_dspam_args = > --user;%Ln;--deliver=spam,innocent;--source=error;--signature=%%s > antispam_dspam_spam = --class=spam > antispam_dspam_notspam = --class=innocent > antispam_dspam_result_header = X-DSPAM-Result > mail_plugins = antispam fts fts_lucene > > GDB log with lmtp commands: http://bpaste.net/show/s2Ol7YyQH0a72QpyK9YN/ > > Bug is easily reproducible, ask my if you need additional information. > Thanks for your hard work on the dovecot, > Nikolay. > From gedalya at gedalya.net Sun Mar 16 02:36:25 2014 From: gedalya at gedalya.net (Gedalya) Date: Sat, 15 Mar 2014 22:36:25 -0400 Subject: [Dovecot] dovecot2-antispam segfault In-Reply-To: References: Message-ID: <53250E29.3000302@gedalya.net> The antispam plugin is meant to take effect when messages are moved in and out of certain folders via IMAP. It makes no sense in lmtp context and should not be loaded. >From http://hg.dovecot.org/dovecot-antispam-plugin/raw-file/tip/doc/dovecot-antispam.7.txt : INSTALLATION Open your dovecot configuration file (usually /etc/dovecot/dovecot.conf) and add the antispam plugin to the imap protocol section: protocol imap { mail_plugins = $mail_plugins antispam } If you set it up that way, you won't have this problem, although it's better for a segfault not to occur in any case. On 03/15/2014 10:23 PM, Nikolay Amiantov wrote: > I'm sorry for messing up postfix and dovecot in the title, I have a good > lack of sleep today. ^_^ > 16 ????? 2014 ?. 6:09 ???????????? "Nikolay Amiantov" > ???????: > >> Hello, >> I've got a segfault with postfix2-antispam. >> Versions: >> Linux: Arch Linux x86_64 >> Dovecot: 2.2.11 >> Antispam: latest hg (revision 51) >> >> Antispam configuration: >> antispam_backend = dspam >> antispam_allow_append_to_spam = YES >> antispam_spam = Spam;Junk >> antispam_trash = trash;Trash >> antispam_signature = X-DSPAM-Signature >> antispam_signature_missing = error >> antispam_dspam_binary = /usr/bin/dspamc >> antispam_dspam_args = >> --user;%Ln;--deliver=spam,innocent;--source=error;--signature=%%s >> antispam_dspam_spam = --class=spam >> antispam_dspam_notspam = --class=innocent >> antispam_dspam_result_header = X-DSPAM-Result >> mail_plugins = antispam fts fts_lucene >> >> GDB log with lmtp commands: http://bpaste.net/show/s2Ol7YyQH0a72QpyK9YN/ >> >> Bug is easily reproducible, ask my if you need additional information. >> Thanks for your hard work on the dovecot, >> Nikolay. >> From greminn at gmail.com Sun Mar 16 08:02:37 2014 From: greminn at gmail.com (Simon) Date: Sun, 16 Mar 2014 21:02:37 +1300 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: On Thursday, March 13, 2014, Steffen Kaiser wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thu, 13 Mar 2014, Simon wrote: > > Ive taken a look at this and cant quite figure out what is going on here. >> I have tested all the SQL permissions, and also changed the unix_listener >> auth-userdb mode to 0666 (as instructed elsewhere to try and solve this >> issue), but cannot seem to work out what the issue is. >> > > what happens if you connect to that socket manually, e.g.: > > # sudo -u socat - UNIX:/usr/local/dovecot/var/ > run/dovecot/auth-userdb > VERSION 1 1 > SPID 1746 > > Maybe first try as root, then with the partucular users. > Thanks for the reply! I tried this as root and got the following: [root at vmail1 ~]# socat - UNIX:/usr/local/dovecot/var/run/dovecot/auth-userdb 2014/03/16 20:57:05 socat[24404] E connect(3, AF=1 "/usr/local/dovecot/var/run/dovecot/auth-userdb", 48): Connection refused Seems a bit wierd that I can't connect as root? Simon From michael at bigmichi1.de Sun Mar 16 08:52:42 2014 From: michael at bigmichi1.de (Michael Cramer) Date: Sun, 16 Mar 2014 09:52:42 +0100 Subject: [Dovecot] panic with 2.2.10 and GETMETADATA In-Reply-To: <20131223214451.GA5549@solar.andreasschulze.de> References: <20131223174003.Horde.WM_BZlgIhPZU5WlyudM6BQ1@horde.bigmichi1.de> <20131223214451.GA5549@solar.andreasschulze.de> Message-ID: <20140316095242.Horde.doSKajqWCROt45-6XXtB_g9@horde.bigmichi1.de> Zitat von Andreas Schulze : > Am 23.12.2013 17:40 schrieb Michael Cramer: >> 10-mail.conf:mail_attribute_dict = >> file:/srv/vmail/dovecot/metadata/%d/%n/attributes >> 20-imap.conf:imap_metadata = yes > nothing more here but no no segfault. > > I had also strange problems while using horde. > They went away after I cleaned *all* files refrerenced by mail_attribute_dict > and the "metadata Mailbox" created by horde. > >> #0 0x00007f174b6bdf77 in raise () from /lib/x86_64-linux-gnu/libc.so.6 > Oh, 32bit OS here. > > Andreas still have this segfault with 2.2.12 bt full #0 0x00007f83bc38ff77 in __GI_raise (sig=sig at entry=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:56 resultvar = 0 pid = 370 selftid = 370 #1 0x00007f83bc3935e8 in __GI_abort () at abort.c:90 save_stage = 2 act = {__sigaction_handler = {sa_handler = 0x189ddf0, sa_sigaction = 0x189ddf0}, sa_mask = {__val = {1, 0, 140203785202805, 1, 0, 25773232, 140203775098088, 140733279288321, 0, 0, 140203785230117, 0, 140203776038656, 140203781939744, 25774392, 140733279287980}}, sa_flags = 1024, sa_restorer = 0x7f83bc3a7134 <_IO_vfprintf_internal+18868>} sigs = {__val = {32, 0 }} #2 0x00007f83bc77fb56 in default_fatal_finish (type=, status=status at entry=0) at failures.c:193 backtrace = 0x18944e8 "/usr/lib/dovecot/libdovecot.so.0(+0x5eb60) [0x7f83bc77fb60] -> /usr/lib/dovecot/libdovecot.so.0(+0x5ec3e) [0x7f83bc77fc3e] -> /usr/lib/dovecot/libdovecot.so.0(i_fatal+0) [0x7f83bc73ac6e] -> dovecot/im"... #3 0x00007f83bc77fc3e in i_internal_fatal_handler (ctx=0x7fff051ebc40, format=, args=) at failures.c:657 status = 0 #4 0x00007f83bc73ac6e in i_panic (format=format at entry=0x422fa0 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:267 ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0} args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fff051ebd30, reg_save_area = 0x7fff051ebc70}} #5 0x0000000000415c17 in client_command_free (_cmd=_cmd at entry=0x7fff051ebd58) at imap-client.c:634 cmd = 0x18cec90 client = 0x18ce0b0 state = CLIENT_COMMAND_STATE_WAIT_INPUT __FUNCTION__ = "client_command_free" #6 0x0000000000415d8a in client_command_input (cmd=0x0) at imap-client.c:783 client = 0x18ce0b0 command = __FUNCTION__ = "client_command_input" #7 0x0000000000415e15 in client_command_input (cmd=0x18cec90) at imap-client.c:841 client = 0x18ce0b0 command = __FUNCTION__ = "client_command_input" #8 0x0000000000416115 in client_handle_next_command (remove_io_r=, client=0x18ce0b0) at imap-client.c:879 No locals. #9 client_handle_input (client=client at entry=0x18ce0b0) at imap-client.c:891 _data_stack_cur_id = 3 remove_io = false handled_commands = false __FUNCTION__ = "client_handle_input" #10 0x00000000004164a2 in client_input (client=0x18ce0b0) at imap-client.c:933 cmd = 0x18b2518 output = 0x18ceae0 bytes = 92 __FUNCTION__ = "client_input" #11 0x00007f83bc78fc37 in io_loop_call_io (io=0x18cebb0) at ioloop.c:388 ioloop = 0x189b730 t_id = 2 #12 0x00007f83bc7909c7 in io_loop_handler_run (ioloop=ioloop at entry=0x189b730) at ioloop-epoll.c:220 ctx = 0x189c3c0 list = 0x189ddf0 io = tv = {tv_sec = 29, tv_usec = 999219} events_count = msecs = ret = 1 i = 0 call = __FUNCTION__ = "io_loop_handler_run" #13 0x00007f83bc78f7d8 in io_loop_run (ioloop=0x189b730) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #14 0x00007f83bc73fe63 in master_service_run (service=0x189b5c0, callback=callback at entry=0x41edf0 ) at master-service.c:566 No locals. #15 0x000000000040b06f in main (argc=1, argv=0x189b390) at main.c:400 set_roots = {0x426c60 , 0x0} login_set = {auth_socket_path = 0x1893048 "\001", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x41f1a0 , failure_callback = 0x41eed0 , request_auth_token = 1} service_flags = storage_service_flags = username = 0x0 c = From nikoamia at gmail.com Sun Mar 16 11:21:43 2014 From: nikoamia at gmail.com (Nikolay Amiantov) Date: Sun, 16 Mar 2014 15:21:43 +0400 Subject: [Dovecot] dovecot2-antispam segfault In-Reply-To: <53250E29.3000302@gedalya.net> References: <53250E29.3000302@gedalya.net> Message-ID: Thanks, that worked! My bad for not reading documentation close enough. Segfaults should ideally not occur, though. Nikolay. From HFlor at gmx.de Mon Mar 17 06:07:09 2014 From: HFlor at gmx.de (Hardy Flor) Date: Mon, 17 Mar 2014 07:07:09 +0100 Subject: [Dovecot] purgewith doveadm without user (public mailbox) Message-ID: <5326910D.3060102@gmx.de> Hello, how I can in a public mailbox (mdbox), without user associated, the command 'doveadm purge ...' can run? From HFlor at gmx.de Mon Mar 17 06:29:34 2014 From: HFlor at gmx.de (Hardy Flor) Date: Mon, 17 Mar 2014 07:29:34 +0100 Subject: [Dovecot] mdbox-files not approximately 2 MB Message-ID: <5326964E.1050306@gmx.de> Hello, there are copies with different size in 3 mailboxes of the user sequentially about 3800 emails. why not something 2MB files? After the big file "m.00000034" with 14MB follow very many small ... ------------------------------------- doveconf: # 2.2.12: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4 mail_attachment_dir = /var/mail/attachments mail_attachment_hash = %{md5} mail_attachment_min_size = 16 k mail_location = mdbox:/var/mail/user/%n mdbox_rotate_interval = 1 weeks mdbox_rotate_size = 2 M ------------------------------------- directory: root at xxx:/var/mail/user/xxx/storage# ls -al insgesamt 76532 drwx--S--- 2 vmail mail 4096 M?r 16 13:52 . drwx--S--- 6 vmail mail 4096 M?r 16 12:10 .. -rw------- 1 vmail mail 74360 M?r 16 12:39 dovecot.map.index -rw------- 1 vmail mail 25204 M?r 16 13:52 dovecot.map.index.log -rw------- 1 vmail mail 63544 M?r 16 12:39 dovecot.map.index.log.2 -rw------- 1 vmail mail 2092921 M?r 16 12:15 m.00000001 -rw------- 1 vmail mail 2086746 M?r 16 12:15 m.00000002 -rw------- 1 vmail mail 2084182 M?r 16 12:15 m.00000003 -rw------- 1 vmail mail 2096826 M?r 16 12:15 m.00000004 -rw------- 1 vmail mail 1882666 M?r 16 12:15 m.00000005 -rw------- 1 vmail mail 1903965 M?r 16 12:15 m.00000006 -rw------- 1 vmail mail 2091169 M?r 16 12:15 m.00000007 -rw------- 1 vmail mail 2086396 M?r 16 12:15 m.00000008 -rw------- 1 vmail mail 507205 M?r 16 12:16 m.00000009 -rw------- 1 vmail mail 2031456 M?r 16 12:17 m.00000010 -rw------- 1 vmail mail 2095697 M?r 16 12:17 m.00000011 -rw------- 1 vmail mail 1689071 M?r 16 12:17 m.00000012 -rw------- 1 vmail mail 2092124 M?r 16 12:17 m.00000013 -rw------- 1 vmail mail 1950602 M?r 16 12:17 m.00000014 -rw------- 1 vmail mail 2092215 M?r 16 12:17 m.00000015 -rw------- 1 vmail mail 2087463 M?r 16 12:17 m.00000016 -rw------- 1 vmail mail 2079795 M?r 16 12:17 m.00000017 -rw------- 1 vmail mail 2014121 M?r 16 12:17 m.00000018 -rw------- 1 vmail mail 2081893 M?r 16 12:17 m.00000019 -rw------- 1 vmail mail 2092088 M?r 16 12:17 m.00000020 -rw------- 1 vmail mail 2090508 M?r 16 12:17 m.00000021 -rw------- 1 vmail mail 1929296 M?r 16 12:17 m.00000022 -rw------- 1 vmail mail 2067685 M?r 16 12:17 m.00000023 -rw------- 1 vmail mail 1745743 M?r 16 12:20 m.00000024 -rw------- 1 vmail mail 866452 M?r 16 12:20 m.00000025 -rw------- 1 vmail mail 296379 M?r 16 12:20 m.00000026 -rw------- 1 vmail mail 433541 M?r 16 12:39 m.00000027 -rw------- 1 vmail mail 92526 M?r 16 12:39 m.00000028 -rw------- 1 vmail mail 19094 M?r 16 12:39 m.00000029 -rw------- 1 vmail mail 106837 M?r 16 12:39 m.00000030 -rw------- 1 vmail mail 162012 M?r 16 12:39 m.00000031 -rw------- 1 vmail mail 412080 M?r 16 13:51 m.00000032 -rw------- 1 vmail mail 1715868 M?r 16 13:51 m.00000033 -rw------- 1 vmail mail 14433784 M?r 16 13:51 m.00000034 -rw------- 1 vmail mail 3280 M?r 16 13:51 m.00000035 -rw------- 1 vmail mail 6308 M?r 16 13:51 m.00000036 -rw------- 1 vmail mail 534274 M?r 16 13:51 m.00000037 -rw------- 1 vmail mail 378719 M?r 16 13:51 m.00000038 -rw------- 1 vmail mail 458528 M?r 16 13:51 m.00000039 -rw------- 1 vmail mail 192504 M?r 16 13:51 m.00000040 -rw------- 1 vmail mail 1277766 M?r 16 13:51 m.00000041 -rw------- 1 vmail mail 33417 M?r 16 13:51 m.00000042 -rw------- 1 vmail mail 142866 M?r 16 13:51 m.00000043 -rw------- 1 vmail mail 113529 M?r 16 13:51 m.00000044 -rw------- 1 vmail mail 55888 M?r 16 13:51 m.00000045 -rw------- 1 vmail mail 673504 M?r 16 13:51 m.00000046 -rw------- 1 vmail mail 430738 M?r 16 13:51 m.00000047 -rw------- 1 vmail mail 218494 M?r 16 13:51 m.00000048 -rw------- 1 vmail mail 96165 M?r 16 13:51 m.00000049 -rw------- 1 vmail mail 8370 M?r 16 13:51 m.00000050 -rw------- 1 vmail mail 29251 M?r 16 13:51 m.00000051 -rw------- 1 vmail mail 394680 M?r 16 13:51 m.00000052 -rw------- 1 vmail mail 674892 M?r 16 13:51 m.00000053 -rw------- 1 vmail mail 1076919 M?r 16 13:51 m.00000054 -rw------- 1 vmail mail 258806 M?r 16 13:51 m.00000055 -rw------- 1 vmail mail 60069 M?r 16 13:51 m.00000056 -rw------- 1 vmail mail 297891 M?r 16 13:51 m.00000057 -rw------- 1 vmail mail 92772 M?r 16 13:51 m.00000058 -rw------- 1 vmail mail 129272 M?r 16 13:51 m.00000059 -rw------- 1 vmail mail 56073 M?r 16 13:51 m.00000060 -rw------- 1 vmail mail 528260 M?r 16 13:51 m.00000061 -rw------- 1 vmail mail 29468 M?r 16 13:51 m.00000062 -rw------- 1 vmail mail 3250 M?r 16 13:51 m.00000063 -rw------- 1 vmail mail 96445 M?r 16 13:51 m.00000064 -rw------- 1 vmail mail 337663 M?r 16 13:51 m.00000065 -rw------- 1 vmail mail 187505 M?r 16 13:51 m.00000066 -rw------- 1 vmail mail 98839 M?r 16 13:51 m.00000067 -rw------- 1 vmail mail 5294 M?r 16 13:51 m.00000068 -rw------- 1 vmail mail 28276 M?r 16 13:51 m.00000069 -rw------- 1 vmail mail 67950 M?r 16 13:52 m.00000070 -rw------- 1 vmail mail 704457 M?r 16 13:52 m.00000071 -rw------- 1 vmail mail 1410205 M?r 16 13:52 m.00000072 -rw------- 1 vmail mail 736330 M?r 16 13:52 m.00000073 -rw------- 1 vmail mail 616992 M?r 16 13:52 m.00000074 From HFlor at gmx.de Mon Mar 17 06:38:55 2014 From: HFlor at gmx.de (Hardy Flor) Date: Mon, 17 Mar 2014 07:38:55 +0100 Subject: [Dovecot] mdbox-files over 2 MB Message-ID: <5326987F.3060403@gmx.de> Hello, I received an e-mail, this includes 9 forwarding, each with a file. These files are not removed from the e-mail and stored in the attachments-directory, although they are larger than 16 KB. For all files the "Content-Transfer-Encoding: base64" is set. The email is stored in completely in "m.00000034" ------------------------------------- doveconf: # 2.2.12: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 ext4 mail_attachment_dir = /var/mail/attachments mail_attachment_hash = %{md5} mail_attachment_min_size = 16 k mail_location = mdbox:/var/mail/user/%n mdbox_rotate_interval = 1 weeks mdbox_rotate_size = 2 M ------------------------------------- directory: root at xxx:/var/mail/user/xxx/storage# ls -al ... -rw------- 1 vmail mail 14433784 M?r 16 13:51 m.00000034 ... From CMarcus at Media-Brokers.com Mon Mar 17 10:26:31 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 17 Mar 2014 06:26:31 -0400 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: References: <53160B93.4020207@Media-Brokers.com> <5317139E.3070809@Media-Brokers.com> Message-ID: <5326CDD7.2010304@Media-Brokers.com> On 3/14/2014 9:43 PM, Aleve Sicofante wrote: > 2014-03-05 13:07 GMT+01:00 Charles Marcus: >> Yes, dovecot's 'virtual mailboxes' is essentially the same thing >> conceptually as Thunderbird's 'Virtual Folders', but dovecot does it >> server-side (and all clients automatically see the virtual mailboxes as if >> they were real folders). >> >> Thunderbird does it client side, so it is *much* less efficient, and it is >> local only to that instance of Thunderbird (so, no other clients see those >> virtual folders). >> >> Hmmm... I could have sworn I opened a bug about this way back when dovecot >> added support for this, but I guess I didn't... >> >> So, I just did... feel free to go vote for it: >> >> https://bugzilla.mozilla.org/show_bug.cgi?id=979846 > OK. Subscribed and voted, but the bug should point to "where to start" in > Dovecot's documentation. Ok, but... where would that be? I don't see a 'Where to start' to point to... And, well, if subscribed and voted, you could easily add that yourself, no? ;) > Which point would that be? Is it documented how to > remotely manage virtual mailboxes? According to Michael > Slusarzthis > is not possible and we're misinterpreting the use of virtual mailboxes > by Dovecot... > > Who's right? Since I am not a google+ subscriber (and have no desire to become one), and cannot read whatever you're talking about, I have no clue. It's never a good idea to link to protected content for things like this. -- Best regards, Charles From alanm at sics.se Mon Mar 17 10:35:47 2014 From: alanm at sics.se (Alan McGinlay) Date: Mon, 17 Mar 2014 11:35:47 +0100 Subject: [Dovecot] dsync Error: Mailbox INBOX: Save commit failed: Mailbox was deleted under us In-Reply-To: <03454832c5fda5e994c48dd46012518b@sics.se> References: <03454832c5fda5e994c48dd46012518b@sics.se> Message-ID: On 2014-01-31 10:51, Alan McGinlay - SICS wrote: > Hi, > > I am doing a mass migration of users from Cyrus imap on a solaris > server to dovecot 1:2.2.9-1ubuntu1 and am getting this weird issue > with dsync if I try to do a "full" sync. Debug output below: > > dsync(user at example.com): Error: Mailbox INBOX: Save commit failed: > Mailbox was deleted under us > dsync(user at example.com): Debug: brain M: out box 'INBOX' > recv_state=recv_last_common send_state=done changed=1 > dsync(user at example.com): Debug: brain M: out state=sync_mails > changed=1 > dsync(user at example.com): Debug: brain S: in state=sync_mails > dsync(user at example.com): Debug: brain S: in box 'INBOX' > recv_state=recv_last_common send_state=done > dsync(user at example.com): Debug: brain S: out box 'INBOX' > recv_state=recv_last_common send_state=done changed=0 > dsync(user at example.com): Debug: brain S: out state=sync_mails > changed=0 > dsync(user at example.com): Debug: imapc(10.10.10.10:143): Disconnected > [2]+ Killed /usr/bin/dsync -v -o mail_fsync=never > backup -R -f -u user at example.com imapc: > > (I changed the domain / ip here of course) > > I notice that it does the IMAP sync for a while and then shows > connecting info for pop3 (I have configuration for both imap and pop). > The user in question has never connected with POP. > > imap migration config: > > imapc_host = 10.10.10.10 > imapc_user = %u > imapc_master_user = cyrusadmin > imapc_password = blahblahblahpasswordhere > imapc_features = rfc822.size > imapc_features = $imapc_features #fetch-headers > mail_prefetch_count = 20 > > pop configuration: > > pop3c_host = pop.example.com > pop3c_user = %u > pop3c_master_user = cyrusadmin > pop3c_password = blahblahblahpasswordhere > > namespace { > prefix = POP3-MIGRATION-NS/ > location = pop3c: > list = no > hidden = yes > } > protocol doveadm { > mail_plugins = $mail_plugins pop3_migration > } > plugin { > pop3_migration_mailbox = POP3-MIGRATION-NS/INBOX > } > > Thanks in advance for any pointers on this! > > /Alan Still having this issue, if anyone has any ideas I would really appreciate it! It's putting a serious crimp in my migration plans :| From CMarcus at Media-Brokers.com Mon Mar 17 10:59:59 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 17 Mar 2014 06:59:59 -0400 Subject: [Dovecot] Is replication broken? In-Reply-To: References: <5321CAB8.9000200@Media-Brokers.com> Message-ID: <5326D5AF.6020902@Media-Brokers.com> On 3/13/2014 2:27 PM, IT geek 31 wrote: > I found this: > > http://wiki2.dovecot.org/Migration/MailFormat > > But I think that is hinting at going mbox ---> Maildir ---> mdbox. Not > ideal. Look at the three sentences directly before the examples there. It specifically says: "With dsync you can convert between any two mailbox formats that Dovecot supports. As much of the mailbox state is preserved as possible. Typically it's everything. See Tools/Dsync for full documentation, here are only a couple of examples: " So... a) You can convert between ANY TWO mail,box formats and b) The following examples are ONLY TWO. What you are supposed to do is extrapolate. -- Best regards, Charles From itgeek31 at googlemail.com Mon Mar 17 12:50:36 2014 From: itgeek31 at googlemail.com (IT geek 31) Date: Mon, 17 Mar 2014 13:50:36 +0100 Subject: [Dovecot] Is replication broken? In-Reply-To: <5326D5AF.6020902@Media-Brokers.com> References: <5321CAB8.9000200@Media-Brokers.com> <5326D5AF.6020902@Media-Brokers.com> Message-ID: > > Look at the three sentences directly before the examples there. It > specifically says: > > "With dsync you can convert between any two mailbox formats that Dovecot > supports. As much of the mailbox state is preserved as possible. Typically > it's everything. See Tools/Dsync > for full documentation, here are only a couple of examples: " > > So... > > a) You can convert between ANY TWO mail,box formats > > and > > b) The following examples are ONLY TWO. > > What you are supposed to do is extrapolate. > Thank you for clearing that up for me. It might have been quicker to type "Yeah buddy, it can convert any two mailbox formats". But hey, why be succinct when you can be patronising? :-) I'll give it a whirl now. Thanks, -Mark From asicofante at gmail.com Mon Mar 17 16:16:20 2014 From: asicofante at gmail.com (Aleve Sicofante) Date: Mon, 17 Mar 2014 17:16:20 +0100 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: <5326CDD7.2010304@Media-Brokers.com> References: <53160B93.4020207@Media-Brokers.com> <5317139E.3070809@Media-Brokers.com> <5326CDD7.2010304@Media-Brokers.com> Message-ID: > > OK. Subscribed and voted, but the bug should point to "where to start" in >> Dovecot's documentation. >> > > Ok, but... where would that be? I don't see a 'Where to start' to point > to... > > And, well, if subscribed and voted, you could easily add that yourself, > no? ;) > I haven't got a clue, that's why I was asking and not directly you, just everyone. > Since I am not a google+ subscriber (and have no desire to become one), > and cannot read whatever you're talking about, I have no clue. > > It's never a good idea to link to protected content for things like this. > I just copied and pasted the name of the guy and it came with the link. Sorry. You can read what he says in this very thread. I'm not a google+ user either. He just says Dovecot's virtual mailboxes are intended for admins only, not for clients. It doesn't sound logical, but that's what he says. From azurit at pobox.sk Mon Mar 17 20:09:26 2014 From: azurit at pobox.sk (azurIt) Date: Mon, 17 Mar 2014 21:09:26 +0100 Subject: [Dovecot] =?utf-8?q?Sieve_escape_user_input?= Message-ID: <20140317210926.BD34DA99@pobox.sk> Hi, i'm having problems with escaping user input in sieve scripts. I'm using 'variables' extension and i can't find out how to escape character '$' - i tried '\$' and '$$' but nothing helps. Any ideas? Thanks. azur From slusarz at curecanti.org Mon Mar 17 20:14:37 2014 From: slusarz at curecanti.org (Michael M Slusarz) Date: Mon, 17 Mar 2014 14:14:37 -0600 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: References: <53160B93.4020207@Media-Brokers.com> <5317139E.3070809@Media-Brokers.com> <5326CDD7.2010304@Media-Brokers.com> Message-ID: <20140317141437.Horde.XiORk0Eu-MOa1PxsUO_40Q8@bigworm.curecanti.org> Quoting Aleve Sicofante : >> >> OK. Subscribed and voted, but the bug should point to "where to start" in >>> Dovecot's documentation. >>> >> >> Ok, but... where would that be? I don't see a 'Where to start' to point >> to... >> >> And, well, if subscribed and voted, you could easily add that yourself, >> no? ;) This isn't going to happen in thunderbird, outside of someone writing code for thunderbird to login to the dovecot server (via SSH with an admin/root password), find the dovecot config files on the server (which will vary based on each server), edit the dovecot config non-interactively, and then be be able to restart the dovecot server to make the changes stick (which, again, will vary based on each server). I would guess there is about a none percent chance of that occurring. > You can read what he says in this very thread. I'm not a google+ user > either. He just says Dovecot's virtual mailboxes are intended for admins > only, not for clients. It doesn't sound logical, but that's what he says. This is exactly what I said previously in this thread. And it is a 100% accurate statement. The ONLY way this can be implemented client-side is if there are some sort of standardized IMAP commands that the client can use to alter the mailboxes. There isn't. In general, IMAP 4 doesn't allow a command to work on multiple mailboxes at a single time (outside of MULTISEARCH... but that's one reason why MULTISEARCH is experimental and really hasn't provoked much interest). That's why virtual mailboxes don't conceptually work very well as a server-level entity and instead make much more sense as a client-level feature. michael From asicofante at gmail.com Mon Mar 17 21:44:52 2014 From: asicofante at gmail.com (Aleve Sicofante) Date: Mon, 17 Mar 2014 22:44:52 +0100 Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: <20140317141437.Horde.XiORk0Eu-MOa1PxsUO_40Q8@bigworm.curecanti.org> References: <53160B93.4020207@Media-Brokers.com> <5317139E.3070809@Media-Brokers.com> <5326CDD7.2010304@Media-Brokers.com> <20140317141437.Horde.XiORk0Eu-MOa1PxsUO_40Q8@bigworm.curecanti.org> Message-ID: 2014-03-17 21:14 GMT+01:00 Michael M Slusarz : > Quoting Aleve Sicofante : > > >>> OK. Subscribed and voted, but the bug should point to "where to start" >>> in >>> >>>> Dovecot's documentation. >>>> >>>> >>> Ok, but... where would that be? I don't see a 'Where to start' to point >>> to... >>> >>> And, well, if subscribed and voted, you could easily add that yourself, >>> no? ;) >>> >> > This isn't going to happen in thunderbird, outside of someone writing code > for thunderbird to login to the dovecot server (via SSH with an admin/root > password), find the dovecot config files on the server (which will vary > based on each server), edit the dovecot config non-interactively, and then > be be able to restart the dovecot server to make the changes stick (which, > again, will vary based on each server). I would guess there is about a > none percent chance of that occurring. > > > You can read what he says in this very thread. I'm not a google+ user >> either. He just says Dovecot's virtual mailboxes are intended for admins >> only, not for clients. It doesn't sound logical, but that's what he says. >> > > This is exactly what I said previously in this thread. And it is a 100% > accurate statement. > > The ONLY way this can be implemented client-side is if there are some sort > of standardized IMAP commands that the client can use to alter the > mailboxes. There isn't. > > In general, IMAP 4 doesn't allow a command to work on multiple mailboxes > at a single time (outside of MULTISEARCH... but that's one reason why > MULTISEARCH is experimental and really hasn't provoked much interest). > That's why virtual mailboxes don't conceptually work very well as a > server-level entity and instead make much more sense as a client-level > feature. > > michael > I don't know who designed the dovecot virtual mailboxes, but they make VERY LITTLE sense as admin only. On the other hand, virtual mailboxes on the server but managed by the client, make A LOT of sense. IMAP is expandable. I don't see a reason why Dovecot can't make extensions to the protocol to allow that. That's exactly what Google made to their IMAP servers and it works wonderfully. As a matter of fact, I guess that's what Dovecot could use: an IMAP extension that manages labels/virtual folders/search folders, right from the client. From morrisonli at 126.com Mon Mar 17 21:58:47 2014 From: morrisonli at 126.com (morrison) Date: Tue, 18 Mar 2014 05:58:47 +0800 (CST) Subject: [Dovecot] versioning of mailbox index files Message-ID: <4345949e.dd88.144d20ddb40.Coremail.morrisonli@126.com> Hi, I am wondering if dovecot assigns version information in mailbox index files so that by which version of dovecot the index files are created can be determined. Our existing mail service used dovecot 2.2.4 with lots of active mail users. When upgraded to 2.2.10, imap processes aborted all the time due to the corrupted index files (the problem was fixed in dovecot 2.2.5). After investigation, I found that this annoying problem could be avoid by deleting index files before opening a mailbox. Now the problem is how I could know if the index files are created by a version newer than 2.2.4. Thanks, Morrison From skdovecot at smail.inf.fh-brs.de Tue Mar 18 07:51:27 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 18 Mar 2014 08:51:27 +0100 (CET) Subject: [Dovecot] Any client out there taking advantage of Dovecot's virtual mailboxes? In-Reply-To: References: <53160B93.4020207@Media-Brokers.com> <5317139E.3070809@Media-Brokers.com> <5326CDD7.2010304@Media-Brokers.com> <20140317141437.Horde.XiORk0Eu-MOa1PxsUO_40Q8@bigworm.curecanti.org> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 17 Mar 2014, Aleve Sicofante wrote: > 2014-03-17 21:14 GMT+01:00 Michael M Slusarz : > >> Quoting Aleve Sicofante : >> >> >>>> OK. Subscribed and voted, but the bug should point to "where to start" >>>> in >>>> >>>>> Dovecot's documentation. >>>>> >>>>> >>>> Ok, but... where would that be? I don't see a 'Where to start' to point >>>> to... >>>> >>>> And, well, if subscribed and voted, you could easily add that yourself, >>>> no? ;) >>>> >>> >> This isn't going to happen in thunderbird, outside of someone writing code >> for thunderbird to login to the dovecot server (via SSH with an admin/root >> password), find the dovecot config files on the server (which will vary >> based on each server), edit the dovecot config non-interactively, and then >> be be able to restart the dovecot server to make the changes stick (which, >> again, will vary based on each server). I would guess there is about a >> none percent chance of that occurring. >> >> >> You can read what he says in this very thread. I'm not a google+ user >>> either. He just says Dovecot's virtual mailboxes are intended for admins >>> only, not for clients. It doesn't sound logical, but that's what he says. >>> >> >> This is exactly what I said previously in this thread. And it is a 100% >> accurate statement. >> >> The ONLY way this can be implemented client-side is if there are some sort >> of standardized IMAP commands that the client can use to alter the >> mailboxes. There isn't. >> >> In general, IMAP 4 doesn't allow a command to work on multiple mailboxes >> at a single time (outside of MULTISEARCH... but that's one reason why >> MULTISEARCH is experimental and really hasn't provoked much interest). >> That's why virtual mailboxes don't conceptually work very well as a >> server-level entity and instead make much more sense as a client-level >> feature. >> >> michael >> > > I don't know who designed the dovecot virtual mailboxes, but they make VERY > LITTLE sense as admin only. On the other hand, virtual mailboxes on the Somebody paid for them or convinced Timo by other means, so they make sense in some environment. At least one springs into my mind easily: POP3-users on IMAP boxes. Also, they make very sense - as Michael pointed out - to merge a hierarchie of mailboxes in order to allow _each_ IMAP client access them, e.g. search through. Otherwise the client had to do it. > server but managed by the client, make A LOT of sense. IMAP is expandable. > I don't see a reason why Dovecot can't make extensions to the protocol to > allow that. That's exactly what Google made to their IMAP servers and it > works wonderfully. > > As a matter of fact, I guess that's what Dovecot could use: an IMAP > extension that manages labels/virtual folders/search folders, right from > the client. There had been a thread talking about exactly that: Server-side virtual mailboxes that select messages based on keywords (labels / tags), which is possible with the KEYWORD search command. However, you would need some process (cron job, plugin, post login scripting) that sets up the config when a new keyword is created by the client. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUyf6/3D1/YhP6VMHAQIQywf/ZPJcUoarCENhapI8PzO2ztJNG5rvvXyD dYf5bS3BiiL5P9RlQVjeRG5jTlfM4UslhN2sRH8G0zcFEj3HIRgVT9CIUQ2KWGAO QJf7Ffy7q/zhM/fq/dzoZBC+3TmTblEOvyGkv8PrWSOjSvD7Am2+6pHebSe0dzzr oimNVkcWEgV2aiuo1oPS90G0v2xQFbDgH6xx0Ac0gD8q8l84+8BPaah/4yBUHjky wJv+whBict/xiQCxe5tIqGng54dMwaRMVQdz5szq5ZI7RLwIl7HAc963VSNBRHMj 8KU5UYTwslHNcmeAz9QqJPCr2/UwSq0mvlnE66z3cAdQpFYS0wARcg== =PFXy -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Tue Mar 18 07:53:07 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Tue, 18 Mar 2014 08:53:07 +0100 (CET) Subject: [Dovecot] versioning of mailbox index files In-Reply-To: <4345949e.dd88.144d20ddb40.Coremail.morrisonli@126.com> References: <4345949e.dd88.144d20ddb40.Coremail.morrisonli@126.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 18 Mar 2014, morrison wrote: > I am wondering if dovecot assigns version information in mailbox index files so that by which version of dovecot the index files are created can be determined. > > Our existing mail service used dovecot 2.2.4 with lots of active mail users. When upgraded to 2.2.10, imap processes aborted all the time due to the corrupted index files (the problem was fixed in dovecot 2.2.5). After investigation, I found that this annoying problem could be avoid by deleting index files before opening a mailbox. Now the problem is how I could know if the index files are created by a version newer than 2.2.4. I think not, but what about deleting all index files, that are older than the day you've installed the new Dovecot version? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUyf7Y3D1/YhP6VMHAQL3LggAkNcRa2frK5XOSHYTffH26s8s1+FR6Jx0 68FmVZvO/e3R0O7GUcaencfOhFVlTQBWMvtg5URnb2PjngZEPeqbH+gtZ3cDrEDC MSKuzTn9Ph7X9xQYhhbHp3x/lBRXyJAi5YHeCDPAcfUjYqobMUWMr27HZftIaDyH RcDCKambOuQ/XbyvmAkPWq8CKTLZDwL41IN2tPvfdfGhYfuAcl8MrWfgxL1OT/Po 9Eb18rnHB+97Z1atolqfUfu4ni6yqQY+TIvNeem2R1OjUBDkfU9IhTJ87lv2cmLP hOeJU9+FPwlKEj1/Gv+n1wE9JUltuaA3BDxXknlTsZ4/o4txpL0zlA== =liX7 -----END PGP SIGNATURE----- From Daniel-128 at gmx.de Tue Mar 18 12:45:36 2014 From: Daniel-128 at gmx.de (Daniel Thielemann) Date: Tue, 18 Mar 2014 13:45:36 +0100 Subject: [Dovecot] When does the replication run normally? In-Reply-To: <5316067E.6040300@rvijay.me> References: , <5316067E.6040300@rvijay.me> Message-ID: Hey Vijay, no I had no repsonese, so thank you very much for your reply. Iam still fighting with this problem. I used the command to check my replication, but it confuses me a bit: --- date Tue Mar 18 13:43:09 CET 2014 doveadm replicator status '*' username priority fast sync full sync failed john at domain.net none 04:05:23 04:05:23 - jack at domain.net none 04:05:23 04:05:23 - --- Could u explain me pls what these times mean? Is that the sheduled time of the next run or the time of the last run? Thanks in advance Daniel > Gesendet: Dienstag, 04. M?rz 2014 um 17:59 Uhr > Von: "Vijay Rajah" > An: dovecot at dovecot.org > Betreff: Re: [Dovecot] When does the replication run normally? > > Daniel, > > Not sure if you had any response. > > There are 2 types of replication. (I'm assuming you have setup some sort > of replication using dsync and are using 2.2+ version of dovecot) > > 1. Fast replication -- Only syncs new mails > 2. Full replication. -- Does a FULL sync, and validates the currently > replicated mails. > > The fast replication occurs whenever a mail arrives for a user. > > The full replication occurs based on "replication_full_sync_interval" > setting in your config. The default for "replication_full_sync_interval" > is 24 Hrs. (2.2rc2+) > > to check the status of replication use > > doveadm replicator status '*' -- This will give replication stats for > all the users. (do not do this if you have a lot of users :-) ). > > > -Thanks > Vijay > > PS: I'm not an expert on Dovecot. This is based on my personal experience. > > > On 28/02/14 2:25 PM, Daniel Thielemann wrote: > > Hi, > > > > I got my manual dsync finally working and can replicate mails by initiate it from comandline (doveadm sync -u mail at domain.dom -d), > > but it does not run by itself (per dovecot replication). When does dovecot invoke the replication normally? > > > > Thanks in advance > > > > Daniel > From azurit at pobox.sk Fri Mar 14 06:48:45 2014 From: azurit at pobox.sk (azurIt) Date: Fri, 14 Mar 2014 07:48:45 +0100 Subject: [Dovecot] =?utf-8?q?Sieve_vacation_attach_original_message?= Message-ID: <20140314074845.35499420@pobox.sk> Hi, is it, somehow, possible to attach the original message to the vacation autoreply? Thank you. azur From b.jerzman at mw.mil.pl Fri Mar 14 10:17:29 2014 From: b.jerzman at mw.mil.pl (bart) Date: Fri, 14 Mar 2014 03:17:29 -0700 (PDT) Subject: [Dovecot] NFS not responding generates authantication crash Message-ID: <1394792249320-47155.post@n4.nabble.com> I am facing dovecot authentication problems caused by unresponding NFS server. If there is even short break in communication with NFS server keeping maildirs, the dovecot generates the avalanche of processes (dovecot/imap and dovecot/pop3). The real number of connections was about 50 and after the problems occurs it rises to 1000. After about 3 hours the limit of connections is filled up: dovecot: master: Warning: service(auth): client_limit (1000) reached, client connections are being dropped and next: imap-login: Warning: Auth process not responding, delayed sending greeting pop3-login: Warning: Error sending handshake to auth server: Broken pipe imap-login: Warning: Error sending handshake to auth server: Broken pipe When the mail storage was local there was no such problem. After moving to NFS storage the problem arised when trying to make backup with dump (we switched to rsync then) or now if NFS is not responding for a while. My dovecot conf for NFS is in accordane with: http://wiki2.dovecot.org/NFS mmap_disable = yes dotlock_use_excl = no # only needed with NFSv2, NFSv3+ supports O_EXCL and it's faster mail_fsync = always mail_nfs_storage = no mail_nfs_index = no NFS shares are connected with no special parameters. Can something be done on dovecot configuration to prevent from generating those dovecot connections processes? Or is it the problem with NFS configuration? -- View this message in context: http://dovecot.2317879.n4.nabble.com/NFS-not-responding-generates-authantication-crash-tp47155.html Sent from the Dovecot mailing list archive at Nabble.com. From goudal at enseirb-matmeca.fr Fri Mar 14 16:59:22 2014 From: goudal at enseirb-matmeca.fr (=?iso-8859-1?Q?Fr=E9d=E9ric_Goudal?=) Date: Fri, 14 Mar 2014 17:59:22 +0100 Subject: [Dovecot] Problem with trying to use dsync with ldap userdb Message-ID: Hello, I'm trying to use dsync on a dovecot 2.2.12 I'm using an ldap database as a user database with the following configuration : auth_bind = yes ldap_version = 3 auth_bind_userdn = uid=%u,ou=People,dc=ipb,dc=fr user_attrs = uidNumber=uid,gidNumber=gid But I keet having the following errors : 2014-03-14 17:53:37 doveadm(XXX): Debug: user XXX: Auth PASS lookup returned temporary failure: reason=Configured passdbs don't support crentials lookups 2014-03-14 17:53:37 doveadm(XXX): Debug: auth input: reason=Configured passdbs don't support crentials lookups 2014-03-14 17:53:37 doveadm(XXX): Error: sync: /usr/local/var/run/dovecot/auth-userdb: Configured passdbs don't support crentials lookups (to see if user is proxied, because doveadm_port is set) I have been hunting through the doc for the last hours and I don't find what to change. I found something about adding set INSECURE_SETUID=1 export INSECUURE_SETUID before checkpassword-reply launch, but it does not change anything... Btw my two server have use the users uid from the ldap, but don't allow user login on the servers where only admin can log in. Does somebody has an idea where to dig ? f.g. From askforstatus at gmail.com Mon Mar 17 08:57:55 2014 From: askforstatus at gmail.com (askforstatus) Date: Mon, 17 Mar 2014 01:57:55 -0700 (PDT) Subject: [Dovecot] Imap user via proxy with starttls - how to rawlogs on proxy ? Message-ID: Hello, Is there any way to log user imap dialog with starttls when going via dovecot acting as imap proxy ? My intention is to log each and every user command similar to rawlogs feature. As per my current imap proxy config pre-login working like a charm but post-login is not possible due as i think the nature of proxy feature. Any idea ? Regards -- View this message in context: http://dovecot.2317879.n4.nabble.com/Imap-user-via-proxy-with-starttls-how-to-rawlogs-on-proxy-tp47180.html Sent from the Dovecot mailing list archive at Nabble.com. From spyros.tsiolis at hotmail.com Tue Mar 18 12:27:45 2014 From: spyros.tsiolis at hotmail.com (Spyros Tsiolis) Date: Tue, 18 Mar 2014 12:27:45 +0000 Subject: [Dovecot] dovecot for centos ? Message-ID: Hello all, I was wondering which version is better for Centos v6.x. CentOS v6.5 comes with dovecot v2.0.9 as default. Should I go ahead with this or go for the latest ? (v2.2.10 / v2.211 / v2.2.12, btw what's the diferrence between the three ?) s. From jtam.home at gmail.com Tue Mar 18 23:17:56 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Tue, 18 Mar 2014 16:17:56 -0700 (PDT) Subject: [Dovecot] Sieve vacation attach original message In-Reply-To: References: Message-ID: "azurIt" writes: > is it, somehow, possible to attach the original message to the vacation > autoreply? Hmm. Allowing a sender control over both the recipient (via spoofing), and the content seems like perfect recipe to turn your mail server into a spam relay cannon. If you do do this, you should hedge this by only allowing it from known trusted senders (e.g. local network). Joseph Tam From stephan at rename-it.nl Wed Mar 19 00:43:47 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 19 Mar 2014 01:43:47 +0100 Subject: [Dovecot] Sieve vacation attach original message In-Reply-To: <20140314074845.35499420@pobox.sk> References: <20140314074845.35499420@pobox.sk> Message-ID: <5328E843.1010102@rename-it.nl> On 3/14/2014 7:48 AM, azurIt wrote: > Hi, > > is it, somehow, possible to attach the original message to the vacation autoreply? Thank you. Not currently. The exttracttext extension could be used for that (http://tools.ietf.org/html/rfc5703), but it is not supported at the moment. Also, this would be limited by the maximum variable size. Regards, Stephan. From stephan at rename-it.nl Wed Mar 19 00:48:33 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 19 Mar 2014 01:48:33 +0100 Subject: [Dovecot] Sieve escape user input In-Reply-To: <20140317210926.BD34DA99@pobox.sk> References: <20140317210926.BD34DA99@pobox.sk> Message-ID: <5328E961.8030803@rename-it.nl> On 3/17/2014 9:09 PM, azurIt wrote: > Hi, > > i'm having problems with escaping user input in sieve scripts. I'm using 'variables' extension and i can't find out how to escape character '$' - i tried '\$' and '$$' but nothing helps. Any ideas? Thanks. Two options: http://tools.ietf.org/html/rfc5229#section-3.1 http://tools.ietf.org/html/rfc5228#section-2.4.2.4 Both are arguably a bit ugly. Regards, Stephan. From stephan at rename-it.nl Wed Mar 19 00:56:33 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 19 Mar 2014 01:56:33 +0100 Subject: [Dovecot] Using a Sieve script to handle delivery to public mailboxes In-Reply-To: References: Message-ID: <5328EB41.7080109@rename-it.nl> On 3/15/2014 2:57 PM, Alessandro Menti wrote: > Hello everyone, > I'm setting up a Postfix+Dovecot stack with virtual domains and public > mailboxes. [...] > I encountered a problem with this setup: when I send a message to the > "office at mydomain.com" account, the Postfix logs say it is correctly > delivered via Dovecot, but the Sieve script says it can not find the > folder "Public/.office". As a consequence, Dovecot creates a new > Maildir in /var/mail/mydomain.com/office and delivers the mail there > instead of saving it in the correct directory > (/var/mail/mydomain.com/public/.office). > > Is there something I set incorrectly in my configuration? What is > causing Dovecot not to recognize the correct mailbox during delivery? > Is there a way to list all mailboxes seen by dovecot-lda itself? K > Logout completed. I must say I haven't tried using Sieve with public folders so far. However, I cannot quite imagine why this wouldn't work. Can you successfully append messages to the public folder through IMAP? Regards, Stephan. From azurit at pobox.sk Wed Mar 19 05:25:18 2014 From: azurit at pobox.sk (azurIt) Date: Wed, 19 Mar 2014 06:25:18 +0100 Subject: [Dovecot] =?utf-8?q?Sieve_vacation_attach_original_message?= In-Reply-To: <5328E843.1010102@rename-it.nl> References: <20140314074845.35499420@pobox.sk> <5328E843.1010102@rename-it.nl> Message-ID: <20140319062518.4156B11A@pobox.sk> > Od: Stephan Bosch > Komu: azurIt , > D?tum: 19.03.2014 01:45 > Predmet: Re: [Dovecot] Sieve vacation attach original message > >On 3/14/2014 7:48 AM, azurIt wrote: >> Hi, >> >> is it, somehow, possible to attach the original message to the vacation autoreply? Thank you. > >Not currently. The exttracttext extension could be used for that >(http://tools.ietf.org/html/rfc5703), but it is not supported at the >moment. Also, this would be limited by the maximum variable size. I tried a different solution but come accross a bug (or a feature?). I used a ':mime' option to 'vacation' command to create a multi-part vacation message which will include the original message. Unfortunately i didn't find a way how to include all headers but there should be a solution for including the body of the original message - using a 'body' extension. So i tried to save body into variable with this: if body :matches "*" { set "OriginalBody" "${1}"; } The 'if' is True but nothing is saved into the variable. Any hints? azur From azurit at pobox.sk Wed Mar 19 05:43:08 2014 From: azurit at pobox.sk (azurIt) Date: Wed, 19 Mar 2014 06:43:08 +0100 Subject: [Dovecot] =?utf-8?q?Sieve_vacation_attach_original_message?= In-Reply-To: <5328E843.1010102@rename-it.nl> References: <20140314074845.35499420@pobox.sk> <5328E843.1010102@rename-it.nl> Message-ID: <20140319064308.AFA11F44@pobox.sk> > Od: Stephan Bosch > Komu: azurIt , > D?tum: 19.03.2014 01:45 > Predmet: Re: [Dovecot] Sieve vacation attach original message > >On 3/14/2014 7:48 AM, azurIt wrote: >> Hi, >> >> is it, somehow, possible to attach the original message to the vacation autoreply? Thank you. > >Not currently. The exttracttext extension could be used for that >(http://tools.ietf.org/html/rfc5703), but it is not supported at the >moment. Also, this would be limited by the maximum variable size. Will this extension be included in Dovecot? If yes, approximately when (month? year? 10 years?). Thank you. azur From steffen.templin at open-xchange.com Wed Mar 19 06:30:00 2014 From: steffen.templin at open-xchange.com (Steffen Templin) Date: Wed, 19 Mar 2014 07:30:00 +0100 Subject: [Dovecot] Dovecot crashes on large search result sets in virtual folders when using fts-solr Message-ID: <53293968.7070105@open-xchange.com> Hi Devs, I experience reproducible crashes when searching in a virtual folder with fts-solr activated. The crashes occur only, if the folder contains a large number of mails and the result set of the search is also large. If the result set is small, no crash occurs. This happens on Debian Wheezy with versions 2.1.7 and 2.2.9. My goal was it to setup the possibility for cross-folder fulltext search. Therefore dovecot was setup with fts-solr, which seems to work fine in most cases. A virtual folder "test" in a namespace "virtual" was created and configured to return all mails from all mailboxes in the default namespace (with empty prefix). It was configured like this: /etc/dovecot/virtual/test/dovecot-virtual: * all It's also reproducible with: INBOX all The test user only has the standard mail folders (Sent, Drafts, Trash) beside the INBOX and of course the folder "virtual.test". INBOX contains about 10.000 mails, the other folders are empty. "virtual.test" correctly referrs to all mails of the INBOX. Searching within the INBOX returns the desired results without any problems. Performing the same search within "virtual.test" fails and dovecot crashes. However, if the result set is small, no crash occurs. My test mails are imported from the ubuntu mailing list. Therefore the term "ubuntu" produces a large result set. See attachments for further details, they all refer to the same crash, reproduced with version 2.2.9 (from the Debian Backports repository): - config.txt: dovecot -n - gdb_backtrace.txt: The gdb backtrace of the attached core dump - log.txt: A logfile extract from the crash - protocol_output.txt: The telnet session that caused the crash Don't hesitate to ask for further details. Thanks and best regards, Steffen -------------- next part -------------- * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN] Dovecot ready. . login steffen at dovecot.devel.open-xchange.com secret . OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS SPECIAL-USE BINARY MOVE SEARCH=FUZZY] Logged in . select virtual.test * FLAGS (\Answered \Flagged \Deleted \Seen \Draft $cl_0) * OK [PERMANENTFLAGS (\Answered \Flagged \Deleted \Seen \Draft $cl_0 \*)] Flags permitted. * 10004 EXISTS * 0 RECENT * OK [UNSEEN 3] First unseen. * OK [UIDVALIDITY 1395144608] UIDs valid * OK [UIDNEXT 30025] Predicted next UID * OK [NOMODSEQ] No permanent modsequences . OK [READ-WRITE] Select completed (0.025 secs). . search text steffen * SEARCH 1 2 3 4 5 6 7 9 . OK Search completed (0.008 secs). . search text ubuntu closed -------------- next part -------------- Mar 18 16:50:40 imap(steffen at dovecot.devel.open-xchange.com): Panic: file fts-search.c: line 79 (level_scores_add_vuids): assertion failed: (array_count(&vuids_arr) == array_count(&br->scores)) Mar 18 16:50:40 imap(steffen at dovecot.devel.open-xchange.com): Error: Raw backtrace: /usr/lib/dovecot/libdovecot.so.0(+0x68adf) [0xb75c5adf] -> /usr/lib/dovecot/libdovecot.so.0(+0x68b61) [0xb75c5b61] -> /usr/lib/dovecot/libdovecot.so.0(i_fatal+0) [0xb75786f9] -> /usr/lib/dovecot/modules/lib20_fts_plugin.so(+0x9aca) [0xb73c2aca] -> /usr/lib/dovecot/modules/lib20_fts_plugin.so(fts_search_lookup+0xce) [0xb73c2b9e] -> /usr/lib/dovecot/modules/lib20_fts_plugin.so(+0xba19) [0xb73c4a19] -> /usr/lib/dovecot/libdovecot-storage.so.0(mailbox_search_init+0x5f) [0xb76aea7f] -> dovecot/imap(imap_search_start+0x74) [0xb778e304] -> dovecot/imap(cmd_search+0xfe) [0xb778147e] -> dovecot/imap(command_exec+0x3a) [0xb7787cca] -> dovecot/imap(+0x16b36) [0xb7786b36] -> dovecot/imap(+0x16c79) [0xb7786c79] -> dovecot/imap(client_handle_input+0x11d) [0xb7786ead] -> dovecot/imap(client_input+0x81) [0xb77872b1] -> /usr/lib/dovecot/libdovecot.so.0(io_loop_call_io+0x44) [0xb75d86a4] -> /usr/lib/dovecot/libdovecot.so.0(io_loop_handler_run+0xee) [0xb75d972e] -> /usr/lib/dovecot/libdovecot.so.0(io_loop_run+0x48) [0xb75d8138] -> /usr/lib/dovecot/libdovecot.so.0(master_service_run+0x2e) [0xb757e4ae] -> dovecot/imap(main+0x2f8) [0xb7779d08] -> /lib/i386-linux-gnu/i686/cmov/libc.so.6(__libc_start_main+0xe6) [0xb7408e46] -> dovecot/imap(+0x9eb9) [0xb7779eb9] Mar 18 16:50:40 imap(steffen at dovecot.devel.open-xchange.com): Fatal: master: service(imap): child 8142 killed with signal 6 (core dumped) -------------- next part -------------- GNU gdb (GDB) 7.4.1-debian Copyright (C) 2012 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "i486-linux-gnu". For bug reporting instructions, please see: ... Reading symbols from /usr/lib/dovecot/imap...(no debugging symbols found)...done. [New LWP 8142] warning: Can't read pathname for load map: Input/output error. [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/i386-linux-gnu/i686/cmov/libthread_db.so.1". Core was generated by `dovecot/imap'. Program terminated with signal 6, Aborted. #0 0xb7751424 in __kernel_vsyscall () (gdb) bt full #0 0xb7751424 in __kernel_vsyscall () No symbol table info available. #1 0xb741c941 in raise () from /lib/i386-linux-gnu/i686/cmov/libc.so.6 No symbol table info available. #2 0xb741fd72 in abort () from /lib/i386-linux-gnu/i686/cmov/libc.so.6 No symbol table info available. #3 0xb75c5b09 in ?? () from /usr/lib/dovecot/libdovecot.so.0 No symbol table info available. #4 0xb75c5b61 in ?? () from /usr/lib/dovecot/libdovecot.so.0 No symbol table info available. #5 0xb75786f9 in i_panic () from /usr/lib/dovecot/libdovecot.so.0 No symbol table info available. #6 0xb73c2aca in ?? () from /usr/lib/dovecot/modules/lib20_fts_plugin.so No symbol table info available. #7 0xb73c2b9e in fts_search_lookup () from /usr/lib/dovecot/modules/lib20_fts_plugin.so No symbol table info available. #8 0xb73c4a19 in ?? () from /usr/lib/dovecot/modules/lib20_fts_plugin.so No symbol table info available. #9 0xb76aea7f in mailbox_search_init () from /usr/lib/dovecot/libdovecot-storage.so.0 No symbol table info available. #10 0xb778e304 in imap_search_start () No symbol table info available. #11 0xb778147e in cmd_search () No symbol table info available. #12 0xb7787cca in command_exec () No symbol table info available. #13 0xb7786b36 in ?? () No symbol table info available. #14 0xb7786c79 in ?? () No symbol table info available. #15 0xb7786ead in client_handle_input () No symbol table info available. #16 0xb77872b1 in client_input () No symbol table info available. #17 0xb75d86a4 in io_loop_call_io () from /usr/lib/dovecot/libdovecot.so.0 No symbol table info available. #18 0xb75d972e in io_loop_handler_run () from /usr/lib/dovecot/libdovecot.so.0 No symbol table info available. #19 0xb75d8138 in io_loop_run () from /usr/lib/dovecot/libdovecot.so.0 No symbol table info available. #20 0xb757e4ae in master_service_run () from /usr/lib/dovecot/libdovecot.so.0 No symbol table info available. #21 0xb7779d08 in main () No symbol table info available. -------------- next part -------------- # 2.2.9: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-686-pae i686 Debian 7.4 ext4 first_valid_gid = 1337 first_valid_uid = 1337 info_log_path = /var/log/dovecot-info.log log_path = /var/log/dovecot.log mail_location = maildir:/home/vmail/%d/%n mail_plugins = fts fts_solr virtual namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } namespace virtual { location = virtual:/etc/dovecot/virtual:INDEX=~/virtual mailbox test { auto = subscribe special_use = \All } prefix = virtual. separator = . } passdb { args = scheme=SHA1 /etc/dovecot/passwd driver = passwd-file } plugin { fts = solr fts_solr = break-imap-search url=http://localhost:8080/solr/ } protocols = " imap pop3" ssl_cert = References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sat, 15 Mar 2014, Alessandro Menti wrote: Dear Alessandro, see below mail_location, SQL query and debug output ... . IMHO, the behaviour matches your config. > I'm setting up a Postfix+Dovecot stack with virtual domains and public > mailboxes. > > I set up a shared mailbox "office at mydomain.com" as described in the Dovecot > Wiki [1], that is: > - I created the directory "/var/mail/mydomain.com/public/" and inside > it I created the ".office" mailbox; > - I added an appropriate ACL to allow the account > "president at mydomain.com" to read and edit that mailbox under a public > namespace; > - I added a Sieve script to handle delivery to the public mailbox (its > location is /var/mail/mydomain.com/public/.office/.dovecot.sieve). > > Some other relevant details about my configuration: > - The backend used by Postfix and Dovecot to handle virtual > aliases/domains/maps is a MySQL database. Since the virtual user > table is used by other applications as well, I decided to keep it > "clean" and to make use of another "virtual mailboxes" table (see > /etc/dovecot/dovecot-sql.conf.ext below). The password_query setting > returns only results from the virtual user table (so that only real > users can authenticate on the IMAP server), while the user_query > setting returns results from both the virtual user and the virtual > mailbox table (so that dovecot-lda can choose the correct mailbox). > - The queries saved in password_query and user_query return the correct > results when executed manually: the home directory for the > "office at mydomain.com" virtual mailbox is set to /var/mail/mydomain.com > /public/.office. > - Delivery from and to the "president at mydomain.com" account is regular, > and that account is able to access the "office at mydomain.com" virtual > mailbox (I have tested this by speaking IMAP to the server and by > performing a manual check using Thunderbird). > > I encountered a problem with this setup: when I send a message to the > "office at mydomain.com" account, the Postfix logs say it is correctly delivered > via Dovecot, but the Sieve script says it can not find the folder > "Public/.office". As a consequence, Dovecot creates a new Maildir in > /var/mail/mydomain.com/office and delivers the mail there instead of saving > it in the correct directory (/var/mail/mydomain.com/public/.office). > > Is there something I set incorrectly in my configuration? What is causing > Dovecot not to recognize the correct mailbox during delivery? Is there a way > to list all mailboxes seen by dovecot-lda itself? > > Thanks, > Alessandro Menti > > [1] http://wiki2.dovecot.org/SharedMailboxes/Public > ----- > Dovecot and OS version: 2.0.19, Ubuntu 12.04 LTS > Output of "dovecot -n": >> # 2.0.19: /etc/dovecot/dovecot.conf >> # OS: Linux 3.5.0-46-generic i686 Ubuntu 12.04.4 LTS ext4 >> auth_mechanisms = plain login >> login_greeting = IMAP server ready. >> mail_debug = yes >> mail_gid = vmail >> mail_location = maildir:/var/mail/%d/%n/Maildir ^^^ default maillocation /var/mail//office/Maildir >> mail_plugins = acl >> mail_uid = vmail >> namespace { >> inbox = yes >> location = >> prefix = >> separator = / >> type = private >> } >> namespace { >> list = children >> location = maildir:/var/mail/mydomain.com/public >> prefix = Public/ >> separator = / >> subscriptions = no >> type = public >> } >> passdb { >> args = /etc/dovecot/dovecot-sql.conf.ext >> driver = sql >> } >> plugin { >> acl = vfile >> sieve = ~/.dovecot.sieve >> sieve_before = /var/mail/sieve/ >> sieve_dir = ~/sieve >> } >> postmaster_address = postmaster at mydomain.com >> protocols = " imap" >> service auth { >> unix_listener /var/spool/postfix/private/auth { >> group = postfix >> mode = 0660 >> user = postfix >> } >> unix_listener auth-userdb { >> group = vmail >> mode = 0660 >> user = dovecot >> } >> } >> ssl_cert = > ssl_cipher_list = >> EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:AES256-SHA256:AES256-SHA:RC4-SHA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS >> ssl_key = > userdb { >> args = /etc/dovecot/dovecot-sql.conf.ext >> driver = sql >> } >> protocol lda { >> info_log_path = /var/log/dovecot-lda.log >> log_path = /var/log/dovecot-lda-errors.log >> mail_plugins = acl sieve >> } >> protocol imap { >> mail_plugins = acl imap_acl >> } > > /etc/dovecot/dovecot-sql.conf.ext: >> driver = mysql >> connect = host=127.0.0.1 dbname=dbname user=username password=password >> default_pass_scheme = SHA512-CRYPT >> password_query = SELECT email as user, password FROM virtual_users WHERE >> email='%u'; >> user_query = SELECT home FROM virtual_users WHERE email = '%u' UNION SELECT >> home FROM virtual_shared_mailboxes WHERE email = '%u' The UserDB query does _not_ return mail, hence, does not override default mail_location, which does _not_ depend on HOME. > > Extract from /var/log/mail.log: >> Mar 15 11:43:07 phoenix postfix/pickup[1404]: 3BA221FFD1: uid=0 >> from= >> Mar 15 11:43:07 phoenix postfix/cleanup[4871]: 3BA221FFD1: >> message-id=<20140315104307.3BA221FFD1 at mail.mydomain.com> >> Mar 15 11:43:07 phoenix postfix/qmgr[7691]: 3BA221FFD1: >> from=, size=316, nrcpt=1 (queue active) >> Mar 15 11:43:07 phoenix dovecot: auth-worker: mysql(127.0.0.1): Connected >> to database mailserver >> Mar 15 11:43:07 phoenix postfix/pipe[4875]: 3BA221FFD1: >> to=, relay=dovecot, delay=0.15, >> delays=0.05/0.03/0/0.07, dsn=2.0.0, status=sent (delivered via dovecot >> service) >> Mar 15 11:43:07 phoenix postfix/qmgr[7691]: 3BA221FFD1: removed > > Extract from /var/log/dovecot-lda.log: >> Mar 15 11:43:07 lda: Debug: Loading modules from directory: >> /usr/lib/dovecot/modules >> Mar 15 11:43:07 lda: Debug: Module loaded: >> /usr/lib/dovecot/modules/lib01_acl_plugin.so >> Mar 15 11:43:07 lda: Debug: Module loaded: >> /usr/lib/dovecot/modules/lib90_sieve_plugin.so >> Mar 15 11:43:07 lda: Debug: auth input: office at mydomain.com >> home=/var/mail/mydomain.com/public/.office >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: Effective uid=1002, >> gid=999, home=/var/mail/mydomain.com/public/.office ^^ This matches the UserDB query, but is not used by mail location. >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: No acl_shared_dict >> setting - shared mailbox listing is disabled >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: Namespace : type=private, >> prefix=, sep=/, inbox=yes, hidden=no, list=yes, subscriptions=yes >> location=maildir:/var/mail/mydomain.com/office/Maildir ^^ This matches the default mail_location >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: maildir++: >> root=/var/mail/mydomain.com/office/Maildir, index=, control=, >> inbox=/var/mail/mydomain.com/office/Maildir, alt= >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: Namespace : >> /var/mail/mydomain.com/office/Maildir doesn't exist yet, using default >> permissions >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: Namespace : Using >> permissions from /var/mail/mydomain.com/office/Maildir: mode=0700 gid=-1 >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: initializing backend >> with data: vfile >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: acl username = >> office at mydomain.com >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: owner = 1 >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: Global ACL >> directory: (none) >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: Namespace : type=public, >> prefix=Public/, sep=/, inbox=no, hidden=no, list=children, subscriptions=no >> location=maildir:/var/mail/mydomain.com/public >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: maildir++: >> root=/var/mail/mydomain.com/public, index=, control=, inbox=, alt= >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: initializing backend >> with data: vfile >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: acl username = >> office at mydomain.com >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: owner = 0 >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: Global ACL >> directory: (none) >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl: No acl_shared_dict >> setting - shared mailbox listing is disabled >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: none: root=, index=, >> control=, inbox=, alt= >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: Destination address: >> office at mydomain.com (source: user at hostname) >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: include: >> sieve_global_dir is not set; it is currently not possible to include >> `:global' scripts. >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: using sieve path >> for user's script: /var/mail/mydomain.com/public/.office/.dovecot.sieve >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: opening script >> /var/mail/mydomain.com/public/.office/.dovecot.sieve >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: script binary >> /var/mail/mydomain.com/public/.office/.dovecot.svbin successfully loaded >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: binary save: not >> saving binary /var/mail/mydomain.com/public/.office/.dovecot.svbin, because >> it is already stored >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: sieve: executing script >> from /var/mail/mydomain.com/public/.office/.dovecot.svbin >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: reading file >> /var/mail/mydomain.com/public/.office/dovecot-acl >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: file >> /var/mail/mydomain.com/public/dovecot-acl not found >> Mar 15 11:43:07 lda(office at mydomain.com): Debug: acl vfile: file >> /var/mail/mydomain.com/office/Maildir/dovecot-acl not found >> Mar 15 11:43:07 lda(office at mydomain.com): Info: sieve: >> msgid=<20140315104307.3BA221FFD1 at mail.mydomain.com>: stored mail into >> mailbox 'INBOX' > > Extract from /var/mail/mydomain.com/public/.office/.dovecot.sieve.log: >> sieve: info: started log at Mar 15 11:43:07. >> error: msgid=<20140315104307.3BA221FFD1 at mail.mydomain.com>: failed to store >> into mailbox 'Public/office': Mailbox doesn't exist: office. > > Listing of /var/mail/mydomain.com/public/.office: >> $ sudo ls /var/mail/mydomain.com/public/.office -lA >> total 56 >> drwxr-x--- 2 vmail vmail 4096 mar 14 17:14 cur >> -rw-r--r-- 1 root root 98 mar 9 18:05 dovecot-acl >> -rw-r----- 1 vmail vmail 18432 mar 15 10:36 dovecot.index.cache >> -rw-r----- 1 vmail vmail 1088 mar 15 10:36 dovecot.index.log >> -rw-r--r-- 1 vmail vmail 0 mar 14 21:50 dovecot-shared >> -rw-r--r-- 1 root root 50 mar 15 11:42 .dovecot.sieve >> -rw------- 1 vmail vmail 188 mar 15 11:43 .dovecot.sieve.log >> -rw-r--r-- 1 vmail vmail 124 mar 15 11:42 .dovecot.svbin >> -rw-r----- 1 vmail vmail 98 mar 14 17:13 dovecot-uidlist >> drwxr-x--- 2 vmail vmail 4096 mar 14 16:25 new >> drwxr-x--- 2 vmail vmail 4096 mar 15 08:48 tmp > > Contents of /var/mail/mydomain.com/public/.office/.dovecot.sieve: >> require "fileinto"; >> fileinto "Public/office"; > > ACL for the "office" shared mailbox: >> $ sudo cat /var/mail/mydomain.com/public/.office/dovecot-acl >> user=president at mydomain.com lrwstipe > > Transcript of an IMAP session listing all folders: >> * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE >> AUTH=PLAIN AUTH=LOGIN] IMAP server ready. >> a01 LOGIN president at mydomain.com password >> a01 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE >> IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT >> CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC >> ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS ACL RIGHTS=texk] >> Logged in >> a02 LIST "" "*" >> * LIST (\HasNoChildren) "/" "Infected Items" >> * LIST (\HasNoChildren) "/" "Recycle Bin" >> * LIST (\HasNoChildren) "/" "Spam" >> * LIST (\HasNoChildren) "/" "Trash" >> * LIST (\HasNoChildren) "/" "Drafts" >> * LIST (\HasNoChildren) "/" "Sent Mail" >> * LIST (\HasNoChildren) "/" "INBOX" >> * LIST (\HasNoChildren) "/" "Public/office" >> a02 OK List completed. >> a03 LOGOUT >> * BYE Logging out >> a03 OK Logout completed. > - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUylCKXD1/YhP6VMHAQIPJwf/Ti25u4nPcL86QjNGeFjION9OfgNtg/XD HQ1YKLjn6usuIrBJdnNczNdBMvDrOlONmyMLOyVfLaVEREIULCb80QrSbA41eW02 UMUXo+l41QedY2O32AnHN3ugsgOJXcLQLAXsRMqehyQa5BooyWiO6xo9fzkDiqX1 nd38ubYxn2EDIuGAeHwRDtgpX/s25FZeRvsUJrFPvo7eNOePyZY3qfq8m2/LrNet AyDWh3Hon7znj64LOtgr501tuq+HMFOBH40Qmd6kkFZFRwoBxdTDnmv9qrrwVvKx 2T5/hQBzD5LWAKGEF1+MTt00sYzQHoLRzCkfVgaSQjsG1butXRJRlQ== =xKsq -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Wed Mar 19 07:15:21 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 19 Mar 2014 08:15:21 +0100 (CET) Subject: [Dovecot] Using a Sieve script to handle delivery to public mailboxes In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 19 Mar 2014, Steffen Kaiser wrote: > IMHO, the behaviour matches your config. If my assumption in my previous message is correct, you will have some options: a) have UserDB return "mail", b) make mail_location depend on home via ~ c) create a symlink default location -> public d) forward office to some other user where you use "fileinto Public/office" e) ... - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUylECXD1/YhP6VMHAQLf4gf8CgYvrxmeMcsFSHzo96cAfVjG9PeovQ+q x64muAIY+dm5UtsIQVU/1Ou8Srrq426J2znGAfY1WGsuAGNp9hKswPJxCYevJv7U sXb46EQShtxo6kj98eewc0avD7C9EA076b+dl0ETyvIRklKNcjsGgrHuL6PGgM8D WTF3FINwP7uKOr8BDi5ILS93arS0OFzLspLcpu6y59Z+uc0OKlf6aV9NKLD+iUsP wy3lx73TBneqhuUTpLUekZ2DWYnibNJeupHkb2mQte3u+uCISE7oDodhyaS9hii0 SLawE8I7e8jcfjUOp3k3AGzQoikgLOeptYge64748ppiR3YinT7nrg== =ETqR -----END PGP SIGNATURE----- From sca at andreasschulze.de Wed Mar 19 07:32:41 2014 From: sca at andreasschulze.de (Andreas Schulze) Date: Wed, 19 Mar 2014 08:32:41 +0100 Subject: [Dovecot] Sieve vacation attach original message In-Reply-To: References: Message-ID: <20140319083241.Horde.8fBwFvWpd7c_cuHPxH8dhQ2@horde.andreasschulze.de> Joseph Tam: > "azurIt" writes: > >> is it, somehow, possible to attach the original message to the vacation >> autoreply? > > Hmm. Allowing a sender control over both the recipient (via spoofing), > and the content seems like perfect recipe to turn your mail server into > a spam relay cannon. I would like to use such feature too. (build a "ECHO Service") There where some discussions how to reply the body using sieve some months ago. (http://dovecot.org/list/dovecot/2013-September/092359.html) But I found no solution fitting my needs. Andreas From stephan at rename-it.nl Wed Mar 19 08:10:24 2014 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 19 Mar 2014 09:10:24 +0100 Subject: [Dovecot] Sieve vacation attach original message In-Reply-To: <20140319064308.AFA11F44@pobox.sk> References: <20140314074845.35499420@pobox.sk> <5328E843.1010102@rename-it.nl> <20140319064308.AFA11F44@pobox.sk> Message-ID: <532950F0.4000107@rename-it.nl> On 3/19/2014 6:43 AM, azurIt wrote: >> Od: Stephan Bosch >> Komu: azurIt , >> D?tum: 19.03.2014 01:45 >> Predmet: Re: [Dovecot] Sieve vacation attach original message >> >> On 3/14/2014 7:48 AM, azurIt wrote: >>> Hi, >>> >>> is it, somehow, possible to attach the original message to the vacation autoreply? Thank you. >> Not currently. The exttracttext extension could be used for that >> (http://tools.ietf.org/html/rfc5703), but it is not supported at the >> moment. Also, this would be limited by the maximum variable size. > > Will this extension be included in Dovecot? If yes, approximately when (month? year? 10 years?). Thank you. It is not high up my list, so it can easily take a year. I've seen some more interest for it though, so I may implement it sooner. Particularly, the required foreverypart extension is not easily implemented. Regards, Stephan. From CMarcus at Media-Brokers.com Mon Mar 17 13:30:25 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 17 Mar 2014 09:30:25 -0400 Subject: [Dovecot] Is replication broken? In-Reply-To: References: <5321CAB8.9000200@Media-Brokers.com> <5326D5AF.6020902@Media-Brokers.com> Message-ID: <5326F8F1.1050001@Media-Brokers.com> On 3/17/2014 8:50 AM, IT geek 31 wrote: > It might have been quicker to type "Yeah buddy, it can convert any two > mailbox formats". Actually, it would have been much quicker had you simply read the text that I ended up pointing out to you, without wasting everyone else's time making it painfully obvious that you didn't bother to actually read it. > But hey, why be succinct when you can be patronising?:-) Actually asked another way, "why should I waste time rtfm when I can just be lazy and waste everyone else's time with questions that I could otherwise easily answer myself?"... Sorry, but it is a pet peeve of mine when someone provides an answer that makes it painfully obvious that they didn't even *try* to answer the question themself. From papier at sdv.fr Wed Mar 19 14:27:03 2014 From: papier at sdv.fr (Laurent Papier) Date: Wed, 19 Mar 2014 15:27:03 +0100 Subject: [Dovecot] possible quota bug ? In-Reply-To: <52f7bbc019275_69938ee20342597c@a4-weasel7.mail> References: <52eac45a9cc88_4ee222883073570@a4-weasel3.mail> <52f7bbc019275_69938ee20342597c@a4-weasel7.mail> Message-ID: <20140319152703.2e2ffe66@titanium.sdv.fr> Le Sun, 09 Feb 2014 15:32:48 -0200 fernando.figaro at uol.com.br ?crit: > Hi Timo, > > I'm posting more info about this issue: > > Sent a message from gmail, delivered via lmtp/lda/sieve > > -rw------- 1 vmail vmail 1187 Feb 9 15:14 1391966051.M730051P32575.LAB-STO-V-01,S=2392,W=2440 > > The message was compressed (gz) > > Maildirsize: > 1073741824S > 51505 31 > 2392 1 > > Move message from INBOX to TRASH > > Feb 9 15:15:45 LAB-LMB-V-01 dovecot: imap(xxx): copy from INBOX: box=INBOX.Trash, uid=27, msgid=, size=1187 > Feb 9 15:15:45 LAB-LMB-V-01 dovecot: imap(xxx): expunge: box=INBOX, uid=32, msgid=, size=2392 > > Maildirsize: > 1073741824S > 51505 31 > 2392 1 > 1187 1 > -2392 -1 Hi, Timo has fixed this issue. dovecot 2.2: http://hg.dovecot.org/dovecot-2.2/rev/30fb6e95b110 dovecot 2.1: http://hg.dovecot.org/dovecot-2.1/rev/2799cc960c0d -- Laurent Papier From alessandro.menti at hotmail.it Wed Mar 19 15:09:17 2014 From: alessandro.menti at hotmail.it (Alessandro Menti) Date: Wed, 19 Mar 2014 16:09:17 +0100 Subject: [Dovecot] Using a Sieve script to handle delivery to public mailboxes In-Reply-To: References: Message-ID: Il 19/03/2014 08:15, Steffen Kaiser ha scritto: > On Wed, 19 Mar 2014, Steffen Kaiser wrote: > >> IMHO, the behaviour matches your config. > > If my assumption in my previous message is correct, you will have some > options: > > a) have UserDB return "mail", > b) make mail_location depend on home via ~ > c) create a symlink default location -> public > d) forward office to some other user where you use > "fileinto Public/office" > e) ... > > -- Steffen Kaiser > > Thanks - I mistakenly thought for some unknown reason that returning just "home" from the UserDB query had effect on the user's mail location as well. I added a "mail" column to the database tables and edited the userdb_query to make it return "user" as well - now everything is fine. Thank you very much again for your help! Alessandro Menti -- A neutron walks into a bar and asks how much for a drink. The bartender replies "for you, no charge". -- Sheldon Cooper, The Big Bang Theory From morrisonli at 126.com Wed Mar 19 15:12:51 2014 From: morrisonli at 126.com (morrison) Date: Wed, 19 Mar 2014 23:12:51 +0800 (CST) Subject: [Dovecot] versioning of mailbox index files Message-ID: <6a4f3742.cd58.144dae6ee82.Coremail.morrisonli@126.com> My current approach is to introduce a index version file .dovecot.index.version in each mailbox and hooks mailbox_allocated event via my own plugin. If the version file does not exist or exist but with version number which need to be upgraded, index files in that mailbox are removed. I also tried to hook mailbox_opened() event and found that event was too late (index was loaded already). The side effect of hooking mailbox_allocated is that the event fires not only by 'select' command. 'list' command can also trigger a lot of mailbox_allocated events. Are there any better hook points I can use for this purpose? Thanks, From daniel.reynolds at providenceday.org Wed Mar 19 21:47:16 2014 From: daniel.reynolds at providenceday.org (Daniel Reynolds) Date: Wed, 19 Mar 2014 17:47:16 -0400 Subject: [Dovecot] Password hashing issue Message-ID: Hello, First off, thanks in advance for all of your help. Now to my issue: I am setting up my first email server. It will be for just me and a few other people. I am using an Amazon EC2 server running Ubuntu 12.04. My MTA is postfix. As I said, this is my first time setting up an email server, so I am following a guide that Arstechnia has published (link ). My issue comes when I try to create a hashed of my passwords. I have tried entering the command, "doveadm pw -s SSHA512". When I do this, I get the error message, "doveconf: Fatal: Error in configuration file /etc/dovecot/conf.d/99-mail-stack-delivery.conf line 6: Unknown setting: ssl_client_ca_dir". I have tried running that command with sudo and as root, but I still get the exact same error message. I had configured /etc/dovecot/conf.d/99-mail-stack-delivery.conf earlier on, and line 6 of that document says, "ssl_client_ca_dir = /etc/ssl/certs" which is exactly what the ars guide told me it should say. What have I done wrong? Thanks again, Daniel From gedalya at gedalya.net Wed Mar 19 22:14:07 2014 From: gedalya at gedalya.net (Gedalya) Date: Wed, 19 Mar 2014 18:14:07 -0400 Subject: [Dovecot] Password hashing issue In-Reply-To: References: Message-ID: <532A16AF.8010108@gedalya.net> On 03/19/2014 05:47 PM, Daniel Reynolds wrote: > doveconf: Fatal: Error in configuration file > /etc/dovecot/conf.d/99-mail-stack-delivery.conf line 6: Unknown setting: > ssl_client_ca_dir ssl_client_ca_dir was added in dovecot 2.2, are you running that? The page you referred to seems to contain instructions on installing dovecot 2.2 from a ppa. From me at rvijay.me Fri Mar 21 07:21:45 2014 From: me at rvijay.me (Vijay Rajah) Date: Fri, 21 Mar 2014 12:51:45 +0530 Subject: [Dovecot] Dovecot + roundcube -- Password Change Message-ID: <532BE889.8000809@rvijay.me> Hello, I'm using Postfix + Dovecot (2.2.6) + roundcube 0.8.x + mysql. The roundcube webserver is hosted on a different server than the Dovecot. The dovecot itself is a replicated 2 node configuration. I would like to allow users to change the password from roundcube interface. All the examples I have seen, assume that roundcube runs in the same server as dovecot. Is there an example / documentation to enable this to work, applying reasonable security measures. -Thanks Vijay From rs at sys4.de Fri Mar 21 07:56:04 2014 From: rs at sys4.de (Robert Schetterer) Date: Fri, 21 Mar 2014 08:56:04 +0100 Subject: [Dovecot] Dovecot + roundcube -- Password Change In-Reply-To: <532BE889.8000809@rvijay.me> References: <532BE889.8000809@rvijay.me> Message-ID: <532BF094.1050007@sys4.de> Am 21.03.2014 08:21, schrieb Vijay Rajah: > Hello, > > I'm using Postfix + Dovecot (2.2.6) + roundcube 0.8.x + mysql. > > The roundcube webserver is hosted on a different server than the > Dovecot. The dovecot itself is a replicated 2 node configuration. > > I would like to allow users to change the password from roundcube > interface. All the examples I have seen, assume that roundcube runs in > the same server as dovecot. > > Is there an example / documentation to enable this to work, applying > reasonable security measures. > > -Thanks > Vijay depends where your password is stored, or what auth mech do you use i.e with running on seperate sql server, configure roundcube to change pass there, for sure your roundcube must be able to connect to external sql server, so specially have a look at your firewall rules, ideally a secondary private net is used for sql traffic perhaps look at http://trac.roundcube.net/browser/github/plugins/password but i am no expert in roundcube, if this is the right plugin, for problems as their list Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From milan.cvetkovic at mpathix.com Fri Mar 21 14:50:25 2014 From: milan.cvetkovic at mpathix.com (Milan Cvetkovic) Date: Fri, 21 Mar 2014 10:50:25 -0400 Subject: [Dovecot] Debian Wheezy Dovecot Replication no updates on message deposit Message-ID: <532C51B1.70306@mpathix.com> Hi, I am trying to setup dovecot replication based on: http://wiki2.dovecot.org/Replication http://www.dovecot.org/list/dovecot/2013-January/087674.html I know that 2.1.7 is dated, but I would refrain from upgrading, if not necessary. The problem I have is pretty much same as the one described in http://www.dovecot.org/list/dovecot/2013-January/087674.html: I have vmail user on both systems, setup with ssh public key logins with empty passphrase. Apparently, dsync happens only on periodic updates. If a message is deposited on one server, it will only propagate to the other once a while. Thanks, Milan. Here is doveconf -n output: # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 auth_mechanisms = plain login mail_location = maildir:~/Maildir mail_plugins = " notify replication" managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { mail_replica = remote:vmail at 192.168.108.138 sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = " imap sieve pop3" replication_full_sync_interval = 1 hours service aggregator { fifo_listener replication-notify-fifo { user = vmail } unix_listener replication-notify { user = vmail } } service auth { unix_listener auth-client { mode = 0660 user = Debian-exim } } service config { unix_listener config { user = vmail } } service doveadm { user = vmail } service replicator { process_min_avail = 1 unix_listener replicator-doveadm { mode = 0600 } } ssl_cert = References: <532C51B1.70306@mpathix.com> Message-ID: <532C5B97.90409@Media-Brokers.com> On 3/21/2014 10:50 AM, Milan Cvetkovic wrote: > I know that 2.1.7 is dated, but I would refrain from upgrading, if not > necessary. Since dsync was always buggy in pre 2.2 releases, and was completely rewritten for 2.2, I'd say it has now become 'necessary' to update, if you are experiencing dsync issues. -- Best regards, Charles From milan.cvetkovic at mpathix.com Fri Mar 21 16:00:04 2014 From: milan.cvetkovic at mpathix.com (Milan Cvetkovic) Date: Fri, 21 Mar 2014 12:00:04 -0400 Subject: [Dovecot] Debian Wheezy Dovecot Replication no updates on message deposit In-Reply-To: <532C5B97.90409@Media-Brokers.com> References: <532C51B1.70306@mpathix.com> <532C5B97.90409@Media-Brokers.com> Message-ID: <532C6204.90402@mpathix.com> So, configuration I have should work in 2.2 ? Thanks, Milan. Charles Marcus wrote: > On 3/21/2014 10:50 AM, Milan Cvetkovic wrote: >> I know that 2.1.7 is dated, but I would refrain from upgrading, if not >> necessary. > > Since dsync was always buggy in pre 2.2 releases, and was completely > rewritten for 2.2, I'd say it has now become 'necessary' to update, if > you are experiencing dsync issues. > From tj at terramar.net Fri Mar 21 16:29:05 2014 From: tj at terramar.net (Thomas Johnson) Date: Fri, 21 Mar 2014 09:29:05 -0700 Subject: [Dovecot] Dovecot/Django authentication Message-ID: <993D24B1-25C2-4ADE-AE10-D3414181AC9A@terramar.net> We've got an application in django that has passwords stored in both sha1 and pbkdf2_sha256 form. We need dovecot to be able to authenticate against the django database (we can't modify django to store passwords in dovecot's form, I'm afraid). Has anyone done a dovecot authentication plugin to support these password forms (and/or any other forms that django supports)? Thanks- Tom From CMarcus at Media-Brokers.com Fri Mar 21 16:59:09 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Fri, 21 Mar 2014 12:59:09 -0400 Subject: [Dovecot] Debian Wheezy Dovecot Replication no updates on message deposit In-Reply-To: <532C6204.90402@mpathix.com> References: <532C51B1.70306@mpathix.com> <532C5B97.90409@Media-Brokers.com> <532C6204.90402@mpathix.com> Message-ID: <532C6FDD.4020403@Media-Brokers.com> On 3/21/2014 12:00 PM, Milan Cvetkovic wrote: > Charles Marcus wrote: >> On 3/21/2014 10:50 AM, Milan Cvetkovic >> wrote: >>> I know that 2.1.7 is dated, but I would refrain from upgrading, if not >>> necessary. >> >> Since dsync was always buggy in pre 2.2 releases, and was completely >> rewritten for 2.2, I'd say it has now become 'necessary' to update, if >> you are experiencing dsync issues. > So, configuration I have should work in 2.2 ? Didn't get that far. The point is you are wasting time trying to get it to work in 2.1... -- Best regards, Charles From jtam.home at gmail.com Fri Mar 21 22:07:15 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Fri, 21 Mar 2014 15:07:15 -0700 (PDT) Subject: [Dovecot] Dovecot/Django authentication In-Reply-To: References: Message-ID: Thomas Johnson writes: > We've got an application in django that has passwords stored in both > sha1 and pbkdf2_sha256 form. We need dovecot to be able to > authenticate against the django database (we can't modify django to > store passwords in dovecot's form, I'm afraid). > > Has anyone done a dovecot authentication plugin to support these > password forms (and/or any other forms that django supports)? You can always fall back on http://wiki2.dovecot.org/AuthDatabase/CheckPassword to implement any wild and woolly scheme you got going. Joseph Tam From daniel.reynolds at providenceday.org Fri Mar 21 22:34:43 2014 From: daniel.reynolds at providenceday.org (Daniel Reynolds) Date: Fri, 21 Mar 2014 18:34:43 -0400 Subject: [Dovecot] Where can I find a stable PPA? Message-ID: Hello, As the subject says, where can I find a stable PPA of Dovecot v2.2 for Ubuntu 12.04? I found this , but the description says, "...I declare them as unstable." For obvious reasons, I don't want to use this. What should I do? Thanks, Daniel From gedalya at gedalya.net Fri Mar 21 23:05:19 2014 From: gedalya at gedalya.net (Gedalya) Date: Fri, 21 Mar 2014 19:05:19 -0400 Subject: [Dovecot] Where can I find a stable PPA? In-Reply-To: References: Message-ID: <532CC5AF.2070707@gedalya.net> On 03/21/2014 06:34 PM, Daniel Reynolds wrote: > Hello, > > As the subject says, where can I find a stable PPA of Dovecot v2.2 for > Ubuntu 12.04? > > I found this , but the > description says, "...I declare them as unstable." > > For obvious reasons, I don't want to use this. > > What should I do? > > Thanks, > > Daniel Try to take a look at https://build.opensuse.org/project/repository_state/home:sbosch:dovecot-2.2/xUbuntu_12.04 as linked from http://wiki2.dovecot.org/PrebuiltBinaries#Ubuntu These are automatically built packages and are designated as unstable. This refers to the fact that new packages are built automatically when new commits are added to the source code repository. If a new commit introduced a bug, then the new binary package will be buggy. What you can do is to just try it and see if it works well in your configuration, and then put the packages on hold and don't just upgrade them. You can test new builds in a test environment. Sometimes "unstable" should be read as "potentially unstable but not necessarily". There need not be anything inherently dangerous in a particular build of the packages, it's more about a convenient channel of distribution which you seem to be lacking, for dovecot 2.2. From michael at bigmichi1.de Sat Mar 22 08:09:29 2014 From: michael at bigmichi1.de (Michael Cramer) Date: Sat, 22 Mar 2014 09:09:29 +0100 Subject: [Dovecot] Where can I find a stable PPA? In-Reply-To: References: Message-ID: <20140322090929.Horde.4pHVVSxG5iBlmUqRDsZITQ3@horde.bigmichi1.de> Zitat von Daniel Reynolds : > Hello, > > As the subject says, where can I find a stable PPA of Dovecot v2.2 for > Ubuntu 12.04? > > I found this , but the > description says, "...I declare them as unstable." > > For obvious reasons, I don't want to use this. > > What should I do? > > Thanks, > > Daniel you can use my repo here: https://launchpad.net/~bigmichi1/+archive/dovecot there i provide the latest released versions without any modifications From pch at myzel.net Sat Mar 22 10:27:30 2014 From: pch at myzel.net (Peter Chiochetti) Date: Sat, 22 Mar 2014 11:27:30 +0100 Subject: [Dovecot] Where can I find a stable PPA? In-Reply-To: <20140322090929.Horde.4pHVVSxG5iBlmUqRDsZITQ3@horde.bigmichi1.de> References: <20140322090929.Horde.4pHVVSxG5iBlmUqRDsZITQ3@horde.bigmichi1.de> Message-ID: <532D6592.8040005@myzel.net> Am 2014-03-22 09:09, schrieb Michael Cramer: > Zitat von Daniel Reynolds : > >> Hello, >> >> As the subject says, where can I find a stable PPA of Dovecot v2.2 for >> Ubuntu 12.04? >> >> Daniel > > you can use my repo here: https://launchpad.net/~bigmichi1/+archive/dovecot > there i provide the latest released versions without any modifications +1 for integration into the ubuntu system I use this, thank you very much Michael -- peter From daniel.reynolds at providenceday.org Sat Mar 22 11:37:16 2014 From: daniel.reynolds at providenceday.org (Daniel Reynolds) Date: Sat, 22 Mar 2014 07:37:16 -0400 Subject: [Dovecot] Where can I find a stable PPA? In-Reply-To: <532D6592.8040005@myzel.net> References: <20140322090929.Horde.4pHVVSxG5iBlmUqRDsZITQ3@horde.bigmichi1.de> <532D6592.8040005@myzel.net> Message-ID: Thanks for all the help! On Mar 22, 2014 6:27 AM, "Peter Chiochetti" wrote: > Am 2014-03-22 09:09, schrieb Michael Cramer: > >> Zitat von Daniel Reynolds : >> >> Hello, >>> >>> As the subject says, where can I find a stable PPA of Dovecot v2.2 for >>> Ubuntu 12.04? >>> >>> Daniel >>> >> >> you can use my repo here: https://launchpad.net/~ >> bigmichi1/+archive/dovecot >> there i provide the latest released versions without any modifications >> > > +1 for integration into the ubuntu system > > I use this, thank you very much Michael > > -- > peter > From greminn at gmail.com Mon Mar 24 03:14:17 2014 From: greminn at gmail.com (Simon) Date: Mon, 24 Mar 2014 16:14:17 +1300 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: Hi All, Ive been googling the crap out of this but still cant seem to make it work.. any assistance would be really appreciated thanks! :) Simon On Sun, Mar 16, 2014 at 9:02 PM, Simon wrote: > > > On Thursday, March 13, 2014, Steffen Kaiser > wrote: > >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> On Thu, 13 Mar 2014, Simon wrote: >> >> Ive taken a look at this and cant quite figure out what is going on >>> here. I have tested all the SQL permissions, and also changed the >>> unix_listener auth-userdb mode to 0666 (as instructed elsewhere to try and >>> solve this issue), but cannot seem to work out what the issue is. >>> >> >> what happens if you connect to that socket manually, e.g.: >> >> # sudo -u socat - UNIX:/usr/local/dovecot/var/ >> run/dovecot/auth-userdb >> VERSION 1 1 >> SPID 1746 >> >> Maybe first try as root, then with the partucular users. >> > > Thanks for the reply! I tried this as root and got the following: > > [root at vmail1 ~]# socat - > UNIX:/usr/local/dovecot/var/run/dovecot/auth-userdb > 2014/03/16 20:57:05 socat[24404] E connect(3, AF=1 > "/usr/local/dovecot/var/run/dovecot/auth-userdb", 48): Connection refused > > Seems a bit wierd that I can't connect as root? > > Simon > From skdovecot at smail.inf.fh-brs.de Mon Mar 24 08:08:34 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 24 Mar 2014 09:08:34 +0100 (CET) Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 24 Mar 2014, Simon wrote: > Hi All, Ive been googling the crap out of this but still cant seem to make > it work.. any assistance would be really appreciated thanks! :) > > On Sun, Mar 16, 2014 at 9:02 PM, Simon wrote: >> On Thursday, March 13, 2014, Steffen Kaiser >> wrote: >>> On Thu, 13 Mar 2014, Simon wrote: >>> >>> Ive taken a look at this and cant quite figure out what is going on >>>> here. I have tested all the SQL permissions, and also changed the >>>> unix_listener auth-userdb mode to 0666 (as instructed elsewhere to try and >>>> solve this issue), but cannot seem to work out what the issue is. >>>> >>> >>> what happens if you connect to that socket manually, e.g.: >>> >>> # sudo -u socat - UNIX:/usr/local/dovecot/var/ >>> run/dovecot/auth-userdb >>> VERSION 1 1 >>> SPID 1746 >>> >>> Maybe first try as root, then with the partucular users. >>> >> >> Thanks for the reply! I tried this as root and got the following: >> >> [root at vmail1 ~]# socat - >> UNIX:/usr/local/dovecot/var/run/dovecot/auth-userdb >> 2014/03/16 20:57:05 socat[24404] E connect(3, AF=1 >> "/usr/local/dovecot/var/run/dovecot/auth-userdb", 48): Connection refused >> >> Seems a bit wierd that I can't connect as root? Actually, "Connection refused" is not "Permission denied", I would say that: a) Dovecot is not running, b) Dovecot is not configured to listen on that socket, c) Dovecot died when you've connect d) SELinux, AppArmor, ... prevent access -> but I would expect "Permission denied" in that cases, too Check: lsof -c dovecot|grep auth-userdb dovecot 12600 root 56u unix 0xffff88003f94ed00 0t0 48261 /var/run/dovecot2.2/auth-userdb - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUy/oAnD1/YhP6VMHAQLEEQf/TopegsHb+TJ/t7LBr9WUmRDCwsLxCI7P Ctw8FRODVns7pFQZYkdytQ/klKVnxPY8TGXr58FAGJO+vIKAH0h7yCRzhfrIu2cP rBRTqFXubJ6AuqDnspYQu/hA5tr1O0SSDJKQ5e25kbStMMpSCVaHcMVah/KeZZZC sWScIt7BYkGRUPkwQOdbAbQZzmHvCCL6T/e71abK/dOgj3Pxw0kNCtQlvsAxLCdi 5eqymWXV4DNwrdrJtt89cGjCFX4jmFHngUpxE3SWRjQgtnJj5vDr3rnb0sEKwiOd 3OX8iTavRpapMIh83sTg32rs4zqrJZHv2nCWjh071coN8eAeTTX0Nw== =fIM7 -----END PGP SIGNATURE----- From tom at whyscream.net Mon Mar 24 08:10:51 2014 From: tom at whyscream.net (Tom Hendrikx) Date: Mon, 24 Mar 2014 09:10:51 +0100 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> Message-ID: <532FE88B.1020302@whyscream.net> On 03/24/2014 04:14 AM, Simon wrote: > On Sun, Mar 16, 2014 at 9:02 PM, Simon wrote: > >> >> >> On Thursday, March 13, 2014, Steffen Kaiser >> wrote: >> >>> -----BEGIN PGP SIGNED MESSAGE----- >>> Hash: SHA1 >>> >>> On Thu, 13 Mar 2014, Simon wrote: >>> >>> Ive taken a look at this and cant quite figure out what is going on >>>> here. I have tested all the SQL permissions, and also changed the >>>> unix_listener auth-userdb mode to 0666 (as instructed elsewhere to try and >>>> solve this issue), but cannot seem to work out what the issue is. >>>> >>> >>> what happens if you connect to that socket manually, e.g.: >>> >>> # sudo -u socat - UNIX:/usr/local/dovecot/var/ >>> run/dovecot/auth-userdb >>> VERSION 1 1 >>> SPID 1746 >>> >>> Maybe first try as root, then with the partucular users. >>> >> >> Thanks for the reply! I tried this as root and got the following: >> >> [root at vmail1 ~]# socat - >> UNIX:/usr/local/dovecot/var/run/dovecot/auth-userdb >> 2014/03/16 20:57:05 socat[24404] E connect(3, AF=1 >> "/usr/local/dovecot/var/run/dovecot/auth-userdb", 48): Connection refused >> >> Seems a bit wierd that I can't connect as root? >> > Hi All, Ive been googling the crap out of this but still cant seem to make > it work.. any assistance would be really appreciated thanks! :) > Please don't top-post... Some ideas: 1) Show full output of 'doveconf -n' 2) How do permissions of the socket look like? Show full output of 'ls -al /usr/local/dovecot/var/run/dovecot/' 3) Do you use SElinux or some other access control system? Any output in syslog/kernel logging? Tom -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 901 bytes Desc: OpenPGP digital signature URL: From info at innova-studios.com Mon Mar 24 11:34:33 2014 From: info at innova-studios.com (=?iso-8859-1?Q?J=FCrgen_Ladst=E4tter?=) Date: Mon, 24 Mar 2014 12:34:33 +0100 Subject: [Dovecot] Weird Authentication behaviour Message-ID: <065501cf4755$07e16d00$17a44700$@innova-studios.com> Hi guys, we use dovecot 2.0.9 and authentication against a mysql database. Everything works fine, but we found some weird behavior ? when the password is e.g. ?testpass? you also authenticate successfully with ?testpass123? or ?testpassNOT?. Whatever comes after the correct password doesn?t matter, the authentication is still successful. Here are the used configs: // auth-sql.conf.ext passdb { driver = sql args = /etc/dovecot/dovecot-sql.conf.ext } userdb { driver = static args = uid=vmail gid=vmail home=/data/mail/%d/%n } // dovecot-sql.conf.ext driver = mysql connect = host=[IP] dbname=[DB] user=[USER] password=[PASS] default_pass_scheme = CRYPT password_query = SELECT `password`, `login` AS `user` FROM `v_email_accounts` WHERE `login`='%u' // 10-auth.conf disable_plaintext_auth = no auth_mechanisms = plain !include auth-sql.conf.ext // 10-master.conf default_process_limit = 1000 default_client_limit = 3003 default_vsz_limit = 1024M service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } service_count = 0 vsz_limit = 1024M } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } service lmtp { unix_listener lmtp { } } service imap { vsz_limit = 1024M process_limit = 2048 } service pop3 { process_limit = 2048 } service auth { unix_listener auth-userdb { user = vmail group = vmail } client_limit = 8096 } service auth-worker { } service dict { unix_listener dict { } } Thanks in advance for your help! From gedalya at gedalya.net Mon Mar 24 11:47:24 2014 From: gedalya at gedalya.net (Gedalya) Date: Mon, 24 Mar 2014 07:47:24 -0400 Subject: [Dovecot] Weird Authentication behaviour In-Reply-To: <065501cf4755$07e16d00$17a44700$@innova-studios.com> References: <065501cf4755$07e16d00$17a44700$@innova-studios.com> Message-ID: <53301B4C.60302@gedalya.net> On 03/24/2014 07:34 AM, J?rgen Ladst?tter wrote: > Hi guys, > > > > we use dovecot 2.0.9 and authentication against a mysql database. Everything > works fine, but we found some weird behavior ? when the password is e.g. > ?testpass? you also authenticate successfully with ?testpass123? or > ?testpassNOT?. Whatever comes after the correct password doesn?t matter, the > authentication is still successful. .. > default_pass_scheme = CRYPT > http://wiki2.dovecot.org/Authentication/PasswordSchemes -- CRYPT: Traditional DES-crypted password in /etc/passwd (e.g. "pass" = vpvKh.SaNbR6s) Dovecot uses libc's crypt() function, which means that CRYPT is usually able to recognize MD5-CRYPT and possibly also other password schemes. See all of the *-CRYPT schemes at the top of this page. >>>>>>> *The traditional DES-crypt scheme only uses the first 8 characters of the password, the rest are ignored.* Other schemes may have other password length limitations (if they limit the password length at all). From h.reindl at thelounge.net Mon Mar 24 12:30:10 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Mon, 24 Mar 2014 13:30:10 +0100 Subject: [Dovecot] Weird Authentication behaviour In-Reply-To: <53301B4C.60302@gedalya.net> References: <065501cf4755$07e16d00$17a44700$@innova-studios.com> <53301B4C.60302@gedalya.net> Message-ID: <53302552.8040005@thelounge.net> Am 24.03.2014 12:47, schrieb Gedalya: > On 03/24/2014 07:34 AM, J?rgen Ladst?tter wrote: >> we use dovecot 2.0.9 and authentication against a mysql database. Everything >> works fine, but we found some weird behavior ? when the password is e.g. >> ?testpass? you also authenticate successfully with ?testpass123? or >> ?testpassNOT?. Whatever comes after the correct password doesn?t matter, the >> authentication is still successful. > .. >> default_pass_scheme = CRYPT >> > http://wiki2.dovecot.org/Authentication/PasswordSchemes -- > > CRYPT: Traditional DES-crypted password in /etc/passwd (e.g. "pass" = vpvKh.SaNbR6s) > > Dovecot uses libc's crypt() function, which means that CRYPT is usually able to recognize MD5-CRYPT and possibly > also other password schemes. See all of the *-CRYPT schemes at the top of this page. >>>>>>>> > *The traditional DES-crypt scheme only uses the first 8 characters of the password, the rest are ignored.* Other > schemes may have other password length limitations (if they limit the password length at all) my passwords have 19 chars and my linux login does not accept only the first 8 ones, that's the state for many years now frankly 8 chars is laughable, i recently wrote a PHP library to generate secure random passwords and for 100000 passwords get 13 collisions is way to much given that that means you have a collision every 8000 tries which means not you need 8000 in a real world attack GENERATED: 100000 COLLISIONS: 13 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From sb.ninja at gmail.com Sat Mar 22 00:33:29 2014 From: sb.ninja at gmail.com (SB Code Ninja) Date: Fri, 21 Mar 2014 19:33:29 -0500 Subject: [Dovecot] Case-sensitive INBOX or client issue? Message-ID: I am using dovecot as an IMAP server for a Cisco product (Cisco Agent Desktop by Calabrio) and noticed some odd behavior when trying to access emails. The mail is delivered to the main INBOX, then a Cisco server moves it to a directory within the INBOX based on the queue it is meant for. Here is the directory structure of the Maildir: Maildir/INBOX Maildir/INBOX/tmp Maildir/INBOX/63 Maildir/INBOX/63/tmp Maildir/INBOX/63/dovecot.index.cache Maildir/INBOX/63/cur Maildir/INBOX/63/cur/1395445673.M548066P32100.uc-util,S=6403:2, Maildir/INBOX/63/dovecot.index.log Maildir/INBOX/63/dovecot-uidlist Maildir/INBOX/63/maildirfolder Maildir/INBOX/63/new Maildir/INBOX/dovecot.index.cache Maildir/INBOX/cur Maildir/INBOX/dovecot.index.log Maildir/INBOX/dovecot-uidlist Maildir/INBOX/62 Maildir/INBOX/62/tmp Maildir/INBOX/62/dovecot.index.cache Maildir/INBOX/62/cur Maildir/INBOX/62/cur/1395445491.M591207P32114.uc-util,S=6380:2, Maildir/INBOX/62/dovecot.index.log Maildir/INBOX/62/dovecot-uidlist Maildir/INBOX/62/maildirfolder Maildir/INBOX/62/new Maildir/INBOX/new Email is delivered to INBOX then gets moved to INBOX/62 or INBOX/63. The desktop software is then supposed to read the email and process it. I did a packet capture of the conversation and saw the following: IMAP Response: * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE AUTH=PLAIN] Dovecot ready. IMAP Request: A0 AUTHENTICATE PLAIN IMAP Response: + IMAP Request: IMAP Response: A0 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT IDLE CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS] Logged in IMAP Request: A1 LIST "" Inbox/63 IMAP Response: A1 OK List completed. IMAP Request: A2 CREATE Inbox/63 IMAP Response: A2 NO [ALREADYEXISTS] Mailbox exists. If I login manually and do 'LIST "" INBOX/63' it works fine, but not with "Inbox/63". I was under the impression that INBOX was not case-sensitive. Is this a bug or is the client doing something silly? Thanks, Henry dovecot -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-amd64 x86_64 Debian 6.0.7 disable_plaintext_auth = no mail_location = maildir:~/Maildir:LAYOUT=fs namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { driver = pam } protocols = " imap" ssl = no ssl_cert = References: Message-ID: <53302D42.7040602@thelounge.net> Am 22.03.2014 01:33, schrieb SB Code Ninja: > IMAP Response: * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS > ID ENABLE AUTH=PLAIN] Dovecot ready. > IMAP Request: A0 AUTHENTICATE PLAIN > IMAP Response: + > IMAP Request: > IMAP Response: A0 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS > ID ENABLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND > UNSELECT IDLE CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 > CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH > LIST-STATUS] Logged in > IMAP Request: A1 LIST "" Inbox/63 > IMAP Response: A1 OK List completed. > IMAP Request: A2 CREATE Inbox/63 > IMAP Response: A2 NO [ALREADYEXISTS] Mailbox exists. > > If I login manually and do 'LIST "" INBOX/63' it works fine, but not with > "Inbox/63". I was under the impression that INBOX was not case-sensitive. > Is this a bug or is the client doing something silly? by RFC folder names are *not* case-sensitive, if dovecot handles them case-sensitive it is a bug, however there are broken clients as well if anybody ever struggeled with different MS Outlook versions and no new mails displayed just rename 'Inbox' to 'INBOX' on the server -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From skdovecot at smail.inf.fh-brs.de Mon Mar 24 13:11:43 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 24 Mar 2014 14:11:43 +0100 (CET) Subject: [Dovecot] Case-sensitive INBOX or client issue? In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 21 Mar 2014, SB Code Ninja wrote: > If I login manually and do 'LIST "" INBOX/63' it works fine, but not with > "Inbox/63". I was under the impression that INBOX was not case-sensitive. As far as I know that applies to INBOX, but not its children, see RFC1730 sec. 9. "Formal Syntax" mailbox ::= "INBOX" / astring ;; INBOX is case-insensitive; other names may be ;; case-sensitive depending on implementation. For a workaround see: http://wiki2.dovecot.org/Plugins/MailboxAlias > Is this a bug or is the client doing something silly? > mail_location = maildir:~/Maildir:LAYOUT=fs - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUzAvD3D1/YhP6VMHAQLZ+wgAohQ2DQ0outoOhUvD+ZnPpNj236FIiEIN vYtGKL665E6ef1mSEZC87yanb5zNzQVEDfCsFbYL0dFSP2OofYvxBBACp7iLMxod wq70qutUEWjMfgMK0eP5XLjYsrzYFpjWRDcglULhr6U/mvgUg8AFbzv5ajw75Q4i LgrEbhn4LBVy68ERVY4J33zP3NZAlSjDGs+759F1mSnEet1n7hJt7P4wenpU5YM+ Lr7sonp4xRf4gF2dTtotJCHTaREkr/wD0ZQpuud3WXOgNI+bSoyShMCuWHpdnOAg 86i0XtozqKOtYJNlowF6pWa5jL+VKC2lsvCn3QwFcF0r57r1C+MzSA== =rnPm -----END PGP SIGNATURE----- From luca at fantacast.it Mon Mar 24 13:23:56 2014 From: luca at fantacast.it (Luca Corti) Date: Mon, 24 Mar 2014 14:23:56 +0100 Subject: [Dovecot] Dovecot/Django authentication In-Reply-To: <993D24B1-25C2-4ADE-AE10-D3414181AC9A@terramar.net> References: <993D24B1-25C2-4ADE-AE10-D3414181AC9A@terramar.net> Message-ID: Il 2014-03-21 17:29 Thomas Johnson ha scritto: > Has anyone done a dovecot authentication plugin to support these > password forms (and/or any other forms that django supports)? You could use a checkpassword script to authenticate against django. The interface is fairly simple. http://wiki2.dovecot.org/AuthDatabase/CheckPassword?action=show&redirect=PasswordDatabase%2FCheckPassword ciao Luca From bind at enas.net Mon Mar 24 14:44:16 2014 From: bind at enas.net (Urban Loesch) Date: Mon, 24 Mar 2014 15:44:16 +0100 Subject: [Dovecot] imap: Error: mmap() failed with file ... dovecot.index.cache: Cannot allocate memory Message-ID: <533044C0.4090502@enas.net> Hi, since some days (about 10) I get the following error in mail error log many, many times: ... dovecot: imap(user at domain.com pid:32769 session:): Error: mmap() failed with file /home/dovecotindex/domain.com/user/mailboxes/Trash /dovecot.index.cache: Cannot allocate memory .... It's always the same "dovecot.index.cache" file and only for the same heavily used account. The account is currently used from about 10 different clients with imap at the sime time. I checked the size of the index cache file and it seems very big: total 2,7G -rw------- 1 mailstore mailstore 464 M?r 24 14:36 dovecot.index -rw------- 1 mailstore mailstore 464 M?r 24 14:36 dovecot.index.backup -rw------- 1 mailstore mailstore 2,7G M?r 24 14:19 dovecot.index.cache -rw------- 1 mailstore mailstore 140 M?r 24 14:45 dovecot.index.log -rw------- 1 mailstore mailstore 89K M?r 24 14:36 dovecot.index.log.2 About 2,7 GB? To solve the problem temporarily, I removed the index files from the index Trash folder and Dovecot initialized an index rebuild. Now the size of the index files are small: total 28K -rw------- 1 mailstore mailstore 512 M?r 24 14:47 dovecot.index -rw------- 1 mailstore mailstore 20K M?r 24 15:28 dovecot.index.cache -rw------- 1 mailstore mailstore 1,2K M?r 24 15:28 dovecot.index.log But why could the index cache file be so big? Many thanks Urban From bourek at thinline.cz Mon Mar 24 15:05:32 2014 From: bourek at thinline.cz (Jiri Bourek) Date: Mon, 24 Mar 2014 16:05:32 +0100 Subject: [Dovecot] Weird Authentication behaviour In-Reply-To: <53302552.8040005@thelounge.net> References: <065501cf4755$07e16d00$17a44700$@innova-studios.com> <53301B4C.60302@gedalya.net> <53302552.8040005@thelounge.net> Message-ID: <533049BC.9040108@thinline.cz> Reindl Harald wrote: > > Am 24.03.2014 12:47, schrieb Gedalya: >> On 03/24/2014 07:34 AM, J?rgen Ladst?tter wrote: >>> we use dovecot 2.0.9 and authentication against a mysql database. Everything >>> works fine, but we found some weird behavior ? when the password is e.g. >>> ?testpass? you also authenticate successfully with ?testpass123? or >>> ?testpassNOT?. Whatever comes after the correct password doesn?t matter, the >>> authentication is still successful. >> .. >>> default_pass_scheme = CRYPT >>> >> http://wiki2.dovecot.org/Authentication/PasswordSchemes -- >> >> CRYPT: Traditional DES-crypted password in /etc/passwd (e.g. "pass" = vpvKh.SaNbR6s) >> >> Dovecot uses libc's crypt() function, which means that CRYPT is usually able to recognize MD5-CRYPT and possibly >> also other password schemes. See all of the *-CRYPT schemes at the top of this page. >>>>>>>>> >> *The traditional DES-crypt scheme only uses the first 8 characters of the password, the rest are ignored.* Other >> schemes may have other password length limitations (if they limit the password length at all) > > my passwords have 19 chars and my linux login does not accept only > the first 8 ones, that's the state for many years now Because libc's crypt() was extended to support other encryption algorithms and your distribution chose to use them. (in Debian see for example /etc/login.defs, variable ENCRYPT_METHOD) That doesn't change the fact you can still use crypt() with DES encryption. For example, htpasswd still does that by default (or at least was doing that few months ago), you can recofigure your Linux login to do it as well and obviously you can configure Dovecot the same way. > > frankly 8 chars is laughable, i recently wrote a PHP library to > generate secure random passwords and for 100000 passwords get > 13 collisions is way to much given that that means you have > a collision every 8000 tries which means not you need 8000 > in a real world attack > > GENERATED: 100000 > COLLISIONS: 13 > Yes, AFAIK DES encryption is obsolete for very long time and if you know hash, it's quite easy to generate a secret which will match the hash (so security-wise database with DES encrypted passwords is pretty much no better than database with plaintext passwords) For the author of top post: Dovecot does what you told it to do. If you want to change this, it'll be a bit of a problem. If you by any chance have plaintext passwords for your accounts (and you shouldn't have them), you can pass them to doveadm pw -s SHA512-CRYPT -p plaintext and store what comes out to your DB. If you don't have them, there's a way using postlogin script - http://wiki2.dovecot.org/PostLoginScripting , see http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes This method will however convert scheme for _first_ password that allows someone to login. So you can expect complaints from your users who use their account from two devices with different passwords (with difference after 8th character.) They will login from one device, password scheme changes and the other device will be locked out. From greminn at gmail.com Mon Mar 24 19:55:54 2014 From: greminn at gmail.com (Simon) Date: Tue, 25 Mar 2014 08:55:54 +1300 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: <532FE88B.1020302@whyscream.net> References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> <532FE88B.1020302@whyscream.net> Message-ID: On Mon, Mar 24, 2014 at 9:10 PM, Tom Hendrikx wrote: >> [root at vmail1 ~]# socat - > >> UNIX:/usr/local/dovecot/var/run/dovecot/auth-userdb > >> 2014/03/16 20:57:05 socat[24404] E connect(3, AF=1 > >> "/usr/local/dovecot/var/run/dovecot/auth-userdb", 48): Connection > refused > >> > >> Seems a bit wierd that I can't connect as root? > >> > > Hi All, Ive been googling the crap out of this but still cant seem to > make > > it work.. any assistance would be really appreciated thanks! :) > > > > Please don't top-post... > Hi There, Sorry about that ;) > > Some ideas: > > 1) Show full output of 'doveconf -n' > http://pastebin.com/wsUt0eEF > 2) How do permissions of the socket look like? Show full output of 'ls > -al /usr/local/dovecot/var/run/dovecot/' > http://pastebin.com/pCazAVUz > 3) Do you use SElinux or some other access control system? Any output in > syslog/kernel logging? /etc/selinux/config was set to permissive, so i set to disabled. Apart from the mail.log output in my pastbin above - there is no more logging that i can find. Thanks! Simon From CMarcus at Media-Brokers.com Mon Mar 24 20:00:38 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 24 Mar 2014 16:00:38 -0400 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> <532FE88B.1020302@whyscream.net> Message-ID: <53308EE6.4050904@Media-Brokers.com> On 3/24/2014 3:55 PM, Simon wrote: >> Some ideas: >> >> 1) Show full output of 'doveconf -n' > http://pastebin.com/wsUt0eEF One more thing... please don't use pastebin... it breaks archives (eventually). Just copy/paste the output directly into the email body (this goes for logs too)... -- Best regards, Charles From greminn at gmail.com Mon Mar 24 23:10:47 2014 From: greminn at gmail.com (Simon) Date: Tue, 25 Mar 2014 12:10:47 +1300 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: <53308EE6.4050904@Media-Brokers.com> References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> <532FE88B.1020302@whyscream.net> <53308EE6.4050904@Media-Brokers.com> Message-ID: On Tue, Mar 25, 2014 at 9:00 AM, Charles Marcus wrote: > One more thing... please don't use pastebin... it breaks archives > (eventually). > > Just copy/paste the output directly into the email body (this goes for > logs too)... Oh sorry :( Mar 13 09:50:44 vmail1 postfix/pipe[31090]: 5D4FFA1057: to=< account1 at thedomainname.com>, relay=dovecot, delay=135007, delays=135006/0.03/0/1, dsn=4.3.0, status=deferred (temporary failure) Mar 13 09:55:43 vmail1 postfix/qmgr[1486]: 5220B9FE50: from=< account2 at thedomainname.com, size=2787, nrcpt=1 (queue active) Mar 13 09:55:43 vmail1 dovecot: lda: Debug: Loading modules from directory: /usr/local/dovecot/lib/dovecot Mar 13 09:55:43 vmail1 dovecot: lda: Debug: Module loaded: /usr/local/dovecot/lib/dovecot/lib10_quota_plugin.so Mar 13 09:55:43 vmail1 dovecot: lda: Debug: Module loaded: /usr/local/dovecot/lib/dovecot/lib90_sieve_plugin.so Mar 13 09:55:44 vmail1 dovecot: lda: Error: userdb lookup: connect(/usr/local/dovecot/var/run/dovecot/auth-userdb) failed: Connection refused Mar 13 09:55:44 vmail1 dovecot: lda: Fatal: Internal error occurred. Refer to server log for more information. Mar 13 09:55:44 vmail1 postfix/pipe[31212]: 5220B9FE50: to=< account1 at thedomainname.com>, relay=dovecot, delay=136173, delays=136171/0.03/0/1.1, dsn=4.3.0, status=deferred (temporary failure) [root at vmail1 vmail]# dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-431.el6.centos.plus.x86_64 x86_64 CentOS release 6.5 (Final) xfs auth_debug = yes auth_debug_passwords = yes auth_mechanisms = plain login digest-md5 cram-md5 auth_verbose = yes debug_log_path = /var/log/dovecot.log mail_debug = yes mail_location = maildir:/var/vmail/%d/%n/Maildir mbox_write_locks = fcntl passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { quota = maildir:User quota quota_rule = *:storage=512M quota_rule2 = Trash:storage=+10%% quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=50%% quota-warning 50 %u } service auth { unix_listener auth-userdb { group = vmail mode = 0666 user = vmail } } service quota-warning { executable = script /var/vmail/quota-warning.sh unix_listener quota-warning { user = vmail } user = dovecot } ssl_cert = /usr/local/dovecot/etc/dovecot/dovecot.conf drwxr-xr-x. 2 root root 4096 Jul 13 2013 empty srw-rw-rw-. 1 root root 0 Jul 18 2013 imap-urlauth srw-------. 1 dovecot root 0 Jul 18 2013 imap-urlauth-worker srw-rw-rw-. 1 root root 0 Jul 18 2013 indexer srw-------. 1 dovecot root 0 Jul 18 2013 indexer-worker srw-------. 1 root root 0 Jul 18 2013 ipc srw-------. 1 root root 0 Jul 18 2013 log-errors drwxr-x---. 2 root dovenull 4096 Jul 18 2013 login -rw-r--r--. 1 root root 40 Jul 18 2013 mounts srw-------. 1 vmail root 0 Jul 18 2013 quota-warning srw-------. 1 root root 0 Jul 18 2013 replication-notify prw-------. 1 root root 0 Jul 18 2013 replication-notify-fifo srw-------. 1 dovecot root 0 Jul 18 2013 replicator srw-rw-rw-. 1 root root 0 Jul 18 2013 ssl-params srw-------. 1 root root 0 Jul 18 2013 stats prw-------. 1 root root 0 Jul 18 2013 stats-mail drwxr-x---. 2 root dovenull 4096 Jul 18 2013 token-login From mtrainer at westnet.com.au Tue Mar 25 03:02:56 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Tue, 25 Mar 2014 11:02:56 +0800 Subject: [Dovecot] Direct groups of users to pairs of backend servers Message-ID: Hi All, I am using dovecot in the Director setup with multiple proxy and backend mailstores and user information stored in LDAP.? I am aware users can be directed to a single backend server.? It would be useful to be able to direct groups of users to pairs of backend servers to give some fault tolerance against NFS issues and make the whole thing more scalable.??? Otherwise each backend mailstore will need all the NFS mounts and the whole cluster will be affected if one NFS mount has an issue.? I am not sure if this possible with the current dovecot implementation?? If not it would be a great enhancement. Thanks Murray From dev at stean.ch Tue Mar 25 06:47:43 2014 From: dev at stean.ch (dev at stean.ch) Date: Tue, 25 Mar 2014 07:47:43 +0100 Subject: [Dovecot] Getting second quota limit out of database Message-ID: <20140325074743.16794jiv86y510o4@www.coolbox.ch> Hello there, I am working with dovecot v2.2.12, and have setup a user and domain quota by using a quota/quota_rule for user and quota2/quota2_rule for the domain. This works fine when the limit configuration for both is stored inside dovecot configuration files. However, I would like to have the limits configurable on a user and domain base, and that data is stored inside my SQL database. Getting the user quota out of a database with SQL works fine, as documented with "SELECT whatever AS quota_rule FROM mytable", I extended my query to return quota2_rule too, but dovecot did not really do something with that value in the end, the domain limit was set to 0, as visible through the logs and with doveadm quota get ... Any idea or hint how I could get dovecot to read the limit for the domains out of my SQL database ? Thanks, Stephan From stan at hardwarefreak.com Tue Mar 25 07:06:37 2014 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Tue, 25 Mar 2014 02:06:37 -0500 Subject: [Dovecot] Direct groups of users to pairs of backend servers In-Reply-To: References: Message-ID: <53312AFD.3020702@hardwarefreak.com> On 3/24/2014 10:02 PM, Murray Trainer wrote: > Hi All, > > I am using dovecot in the Director setup with multiple proxy and > backend mailstores and user information stored in LDAP. I am aware > users can be directed to a single backend server. It would be useful > to be able to direct groups of users to pairs of backend servers to > give some fault tolerance against NFS issues and make the whole thing > more scalable. Your description says you currently have a "shared nothing" storage architecture. You can't get any more scalable than that. To enable "groups of users" to be directed to "pairs of backend servers" you'll need each member of the pair to mount the NFS path of the partner server. Then you will have two different mailbox locations to deal with. Do you have per user mailbox paths configured in LDAP? You will have to do that for this "pairing" to work. > Otherwise each backend mailstore will need all > the NFS mounts and the whole cluster will be affected if one NFS mount > has an issue. The whole cluster will not be affected. Only users whose mail in on the problem mount will be affected. This is no different that your current setup in that regard. > I am not sure if this possible with the current > dovecot implementation? If not it would be a great enhancement. So, in a nutshell, you want Dovecot to be able to overcome faults in your NFS architecture because you did not build in redundancy? Is this correct? Why are you concerned about NFS mount failures? Most folks running NFS Dovecot clusters share a single mount with all mailboxes among all the cluster nodes. You seem to have multiple mounts, one for each backend node. If mount failures were a common occurrence, we'd see frequent reports of that. But we don't. Did you home brew your NFS servers and they're not reliable? Cheers, -- Stan From amandy_lda at outlook.com Tue Mar 25 08:04:08 2014 From: amandy_lda at outlook.com (ldaamandy) Date: Tue, 25 Mar 2014 08:04:08 +0000 Subject: [Dovecot] Disconnected (auth failed, 1 attempts) Message-ID: hi : i just install dovecot-2 and start ok but login failed for test-user . i turn on all debug options , the debug info follow: "Mar 25 14:40:10 cs2c dovecot: imap-login: Disconnected (auth failed, 1 attempts): user=, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured" and the info of input->w_buffer is : cp01 CAPABILITY a001 LOGIN "q1 at t.com" "q1q1q1q1" the auth of dovecot.conf: >>>>>>>>>>>>>>>>>>>>> passdb { args = /etc/dovecot.master driver = passwd-file master = yes pass = yes } passdb { args = /etc/dovecot-memcached.conf driver = dict } userdb { args = /etc/dovecot-memcached.conf driver = dict } [root at cs2c log]# telnet 127.0.0.1 11211 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. get q1 at t.com_imap VALUE q1 at t.com_imap 0 205 {"username":"q1 at t.com","password":"{CRYPT}$1$d5ef98b7$brWKOJiUiqII3DysGzsfl\/","home":"\/test\/mail","mail":"maildir:\/t.com\/q1 at t.com","quota_rule2":"*:messages=11111","quota_rule":"*:bytes=11650727936"} END >>>>>>>>>>>>>>>>>>>>>>>>>>>>>> The relevant code is: >>>>>>>>>>>>>login-common/client-common.c<<<<<<< bool client_read(struct client *client) { switch (i_stream_read(client->input)) { //w_buffer:cp01 CAPABILITY a001 LOGIN "q1 at t.com" "q1q1q1q1" case -2: /* buffer full */ client_send_line(client, CLIENT_CMD_REPLY_BYE, "Input buffer full, aborting"); client_destroy(client, "Disconnected: Input buffer full"); return FALSE; case -1: /* disconnected */ client_destroy(client, "Disconnected"); //debug infomation return FALSE; case 0: /* nothing new read */ return TRUE; default: /* something was read */ return TRUE; } } >>>>>>>>>>imap-login/client.c<<<<<<<<<< static void imap_client_input(struct client *client) { struct imap_client *imap_client = (struct imap_client *)client; if (!client_read(client)) return; client_ref(client); o_stream_cork(imap_client->common.output); for (;;) { if (!auth_client_is_connected(auth_client)) { /* we're not currently connected to auth process - don't allow any commands */ client_send_line(client, CLIENT_CMD_REPLY_STATUS, AUTH_SERVER_WAITING_MSG); if (client->to_auth_waiting != NULL) timeout_remove(&client->to_auth_waiting); client->input_blocked = TRUE; break; } else { if (!client_handle_input(imap_client)) break; } } o_stream_uncork(imap_client->common.output); client_unref(&client); } >>>>>>>>>>>>>>other-dovecot.conf>>>>>>>>>>>>>>>>>>>>>>>>>>>> .......... protocols = pop3 imap service auth { unix_listener /var/spool/postfix/dovecot-auth { group = postfix mode = 0666 user = postfix } unix_listener auth-master { group = testmail mode = 0666 user = testmail } user = testmail } service imap-login { service_count = 1 } service imap { drop_priv_before_exec = no executable = /usr/libexec/dovecot/imap } service pop3-login { service_count = 1 } service pop3 { drop_priv_before_exec = yes executable = /usr/libexec/dovecot/pop3 } ssl_cert = References: <20140325074743.16794jiv86y510o4@www.coolbox.ch> Message-ID: <53315349.8090208@thinline.cz> dev at stean.ch wrote: > Hello there, > > I am working with dovecot v2.2.12, and have setup a user and domain > quota by using a quota/quota_rule for user and quota2/quota2_rule for > the domain. > > This works fine when the limit configuration for both is stored inside > dovecot configuration files. However, I would like to have the limits > configurable on a user and domain base, and that data is stored inside > my SQL database. > > Getting the user quota out of a database with SQL works fine, as documented > with "SELECT whatever AS quota_rule FROM mytable", I extended my query > to return quota2_rule too, but dovecot did not really do something with > that value in the end, the domain limit was set to 0, as visible through > the logs and with doveadm quota get ... > > Any idea or hint how I could get dovecot to read the limit for the domains > out of my SQL database ? > > Thanks, Stephan Works here with 2.2.9 (Debian). Snippet from userdb SQL query: user_query = SELECT ... '*:bytes=' || domains.quota_size || 'M:messages=' || domains.quota_files as quota_rule, '*:bytes=' || mailboxes.quota_size || 'M:messages=' || mailboxes.quota_files as quota2_rule ... Using quota backend "fs" for both (user quota for mailbox, group quota for domain) plugin { quota = fs:Domain quota:group:inode_per_mail quota2 = fs:Mailbox quota:user:inode_per_mail } From boyd.yang at gmail.com Tue Mar 25 10:28:46 2014 From: boyd.yang at gmail.com (boyd yang) Date: Tue, 25 Mar 2014 18:28:46 +0800 Subject: [Dovecot] Dovecot mail-filter cannot work with large email about 700k Message-ID: Hi All I configured dovecot 2.1.7 with mail-filter plugin. It works well for small emails like server k big.(7k) But it failed with larger emails about 700k. The scripts hang out, and the mail-filter-out process does not exist and always in ps. It does not work even I use "cat" in mail-filter-out.sh. Where to set the size limit for mail-filter? Do you know how to fix this? This bug also exists in 2.2.12. Thanks! From CMarcus at Media-Brokers.com Tue Mar 25 11:15:46 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 25 Mar 2014 07:15:46 -0400 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> <532FE88B.1020302@whyscream.net> <53308EE6.4050904@Media-Brokers.com> Message-ID: <53316562.6020709@Media-Brokers.com> On 3/24/2014 7:10 PM, Simon wrote: > Mar 13 09:55:44 vmail1 dovecot: lda: Error: userdb lookup: > connect(/usr/local/dovecot/var/run/dovecot/auth-userdb) failed: Connection > refused So, your SQL userdb is refusing connections from dovecot... Fix this... -- Best regards, Charles From kjonca at o2.pl Tue Mar 25 12:43:27 2014 From: kjonca at o2.pl (Kamil =?iso-8859-2?Q?Jo=F1ca?=) Date: Tue, 25 Mar 2014 13:43:27 +0100 Subject: [Dovecot] [LMTP] sieve filter does not drop privilleges? Message-ID: <87mwgeih3k.fsf@alfa.kjonca> I have (user) sieve filter in my home dir. This filter uses "vnd.dovecot.filter" extension to call some shell scripts. These scrips creates some temporary files. Strange thing: whent sieve is called via dovecot-lda - these files are created by user "kjonca" when sieve is called via lmtp - these files are created by root. Is there any way to drop privilleges where lmtp passing messages to sieve? KJ -- http://wolnelektury.pl/wesprzyj/teraz/ From mtrainer at westnet.com.au Tue Mar 25 13:18:06 2014 From: mtrainer at westnet.com.au (Murray Trainer) Date: Tue, 25 Mar 2014 21:18:06 +0800 Subject: [Dovecot] Direct groups of users to pairs of backend servers In-Reply-To: <53312AFD.3020702@hardwarefreak.com> References: <53312AFD.3020702@hardwarefreak.com> Message-ID: <5331820E.20307@westnet.com.au> On 25/03/14 15:06, Stan Hoeppner wrote: > On 3/24/2014 10:02 PM, Murray Trainer wrote: >> Hi All, >> >> I am using dovecot in the Director setup with multiple proxy and >> backend mailstores and user information stored in LDAP. I am aware >> users can be directed to a single backend server. It would be useful >> to be able to direct groups of users to pairs of backend servers to >> give some fault tolerance against NFS issues and make the whole thing >> more scalable. > Your description says you currently have a "shared nothing" storage > architecture. You can't get any more scalable than that. To enable > "groups of users" to be directed to "pairs of backend servers" you'll > need each member of the pair to mount the NFS path of the partner server. > > Then you will have two different mailbox locations to deal with. Do you > have per user mailbox paths configured in LDAP? You will have to do > that for this "pairing" to work. > >> Otherwise each backend mailstore will need all >> the NFS mounts and the whole cluster will be affected if one NFS mount >> has an issue. > The whole cluster will not be affected. Only users whose mail in on the > problem mount will be affected. This is no different that your current > setup in that regard. > >> I am not sure if this possible with the current >> dovecot implementation? If not it would be a great enhancement. > So, in a nutshell, you want Dovecot to be able to overcome faults in > your NFS architecture because you did not build in redundancy? Is this > correct? > > Why are you concerned about NFS mount failures? Most folks running NFS > Dovecot clusters share a single mount with all mailboxes among all the > cluster nodes. You seem to have multiple mounts, one for each backend > node. If mount failures were a common occurrence, we'd see frequent > reports of that. But we don't. Did you home brew your NFS servers and > they're not reliable? > > Cheers, Hi Stan, Sorry I didn't properly explain my setup. The backend mailstores each have the same set of 5 NFS mounts from EMC VNX storage where the mailboxes are located. We don't use share NFS filesystems directly between mailstores. There is no relation between the number of NFS mounts and backend mailstores. We are talking about migrating a large amount of users and mailboxes - 100,000+ and 50TB+ and don't want to put that all on one NFS filesystem. We want to break it down into redundant parts so that all the mailstores don't stop functioning if there is a problem with the one NFS filesystem. Our NFS storage should be pretty reliable but the email below on this list about a week ago made me concerned about all our mailstores hanging if there is a problem with one of the NFS mounts. Hence the query about breaking up the NFS mounts into groups per pair of mailstores. We will eventually set mail servers and redundant EMC storage between separate data centres and use pNFS which will make the whole thing more fault tolerant but that won't happen for a while. Thanks for your response. Murray > [Dovecot] NFS not responding generates authantication crash >I am facing dovecot authentication problems caused by unresponding NFS >server. If there is even short break in communication with NFS server >keeping maildirs, the dovecot generates the avalanche of processes >(dovecot/imap and dovecot/pop3). The real number of connections was about 50 >and after the problems occurs it rises to 1000. After about 3 hours the >limit of connections is filled up: >dovecot: master: Warning: service(auth): client_limit (1000) reached, >client connections are being dropped >and next: >imap-login: Warning: Auth process not responding, delayed sending greeting >pop3-login: Warning: Error sending handshake to auth server: Broken pipe >imap-login: Warning: Error sending handshake to auth server: Broken pipe From boyd.yang at gmail.com Tue Mar 25 13:20:14 2014 From: boyd.yang at gmail.com (boyd yang) Date: Tue, 25 Mar 2014 21:20:14 +0800 Subject: [Dovecot] mail-filter cannot work with large email about 700k Message-ID: Hi All I configured dovecot 2.1.7 with mail-filter plugin. It works well for small emails like server k big.(7k) But it failed with larger emails about 700k. The scripts hang out, and the mail-filter-out process does not exist and always in ps. It does not work even I use "cat" in mail-filter-out.sh. Where to set the size limit for mail-filter? Do you know how to fix this? This bug also exists in 2.2.12. Thanks! From boyd.yang at gmail.com Tue Mar 25 14:41:52 2014 From: boyd.yang at gmail.com (boyd yang) Date: Tue, 25 Mar 2014 22:41:52 +0800 Subject: [Dovecot] mail-filter cannot work with large email about 700k In-Reply-To: References: Message-ID: Figured it out. It need a temp file. On Tue, Mar 25, 2014 at 9:20 PM, boyd yang wrote: > Hi All > > I configured dovecot 2.1.7 with mail-filter plugin. > It works well for small emails like server k big.(7k) > > But it failed with larger emails about 700k. > > The scripts hang out, and the mail-filter-out process does not exist and > always in ps. > > It does not work even I use "cat" in mail-filter-out.sh. > > Where to set the size limit for mail-filter? > > Do you know how to fix this? > This bug also exists in 2.2.12. > > Thanks! > From milan.cvetkovic at mpathix.com Tue Mar 25 19:28:04 2014 From: milan.cvetkovic at mpathix.com (Milan Cvetkovic) Date: Tue, 25 Mar 2014 15:28:04 -0400 Subject: [Dovecot] Dovecot replication, no updates on message deposit Message-ID: <5331D8C4.4070307@mpathix.com> Hi, I am trying to setup dovecot replication based on: http://wiki2.dovecot.org/Replication All mailboxes share the same UNIX userid ('vmail'), and I setup ssh-key based login for this account in both directions. As LDA exim4 is configured to use dovecot deliver LDA. Here is the relevant config from exim: /usr/lib/dovecot/deliver -d $local_part -f $sender_address -a $original_local_part@$original_domain When a message is deposited to a mailbox, it does not get replicated. The log is silent: Mar 25 15:00:20 mx02 dovecot: master: Dovecot v2.2.9 starting up (core dumps disabled) Mar 25 15:01:05 mx02 dovecot: lda(user.name): msgid=unspecified: saved mail to INBOX The output from doveconf -n is attached. Any help is appreciated, Thanks, Milan. -------------- next part -------------- # 2.2.9: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 auth_mechanisms = plain login mail_location = maildir:~/Maildir mail_plugins = " notify replication" managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { mail_replica = remote:vmail at 192.168.108.136 sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = " imap sieve pop3" replication_full_sync_interval = 1 hours service aggregator { fifo_listener replication-notify-fifo { user = vmail } unix_listener replication-notify { user = vmail } } service auth { unix_listener auth-client { mode = 0660 user = Debian-exim } } service replicator { process_min_avail = 1 unix_listener replicator-doveadm { mode = 0600 } } ssl_cert = References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> <532FE88B.1020302@whyscream.net> <53308EE6.4050904@Media-Brokers.com> <53316562.6020709@Media-Brokers.com> Message-ID: On Wed, Mar 26, 2014 at 12:15 AM, Charles Marcus wrote: > On 3/24/2014 7:10 PM, Simon wrote: > >> Mar 13 09:55:44 vmail1 dovecot: lda: Error: userdb lookup: >> connect(/usr/local/dovecot/var/run/dovecot/auth-userdb) failed: >> Connection >> refused >> > > So, your SQL userdb is refusing connections from dovecot... > > Fix this... Thanks Charles, I have looked into this and tried to fix permissions but still have the same issue. I have tried changing the permissions on the auth-userdb to 0666 (see below) as well as setting the permissions of /usr/local/dovecot/var/run/dovecot/ to 777 just for testing.. but still get the same error (also below). I feel im barking up the wrong tree here in terms of what i need todo to fix the issue... but cant see the wood for the tress here :) Would i be able to ask you to outline in basic how i go about fixing this? service auth { unix_listener auth-userdb { mode = 0667 user = vmail group = vmail } } Mar 26 09:01:43 vmail1 dovecot: lda: Error: userdb lookup: connect(/usr/local/dovecot/var/run/dovecot/auth-userdb) failed: Connection refused Mar 26 09:01:43 vmail1 dovecot: lda: Fatal: Internal error occurred. Refer to server log for more information. Many thanks! Simon From dev at stean.ch Tue Mar 25 20:47:59 2014 From: dev at stean.ch (dev at stean.ch) Date: Tue, 25 Mar 2014 21:47:59 +0100 Subject: [Dovecot] Getting second quota limit out of database In-Reply-To: <53315349.8090208@thinline.cz> References: <20140325074743.16794jiv86y510o4@www.coolbox.ch> <53315349.8090208@thinline.cz> Message-ID: <20140325214759.21952p0xwd266b28@www.coolbox.ch> Jiri, thanks for the hint. It works now, no idea what I did wrong yesterday. Quoting Jiri Bourek : > dev at stean.ch wrote: >> Hello there, >> >> I am working with dovecot v2.2.12, and have setup a user and domain >> quota by using a quota/quota_rule for user and quota2/quota2_rule for >> the domain. >> >> This works fine when the limit configuration for both is stored inside >> dovecot configuration files. However, I would like to have the limits >> configurable on a user and domain base, and that data is stored inside >> my SQL database. >> >> Getting the user quota out of a database with SQL works fine, as documented >> with "SELECT whatever AS quota_rule FROM mytable", I extended my query >> to return quota2_rule too, but dovecot did not really do something with >> that value in the end, the domain limit was set to 0, as visible through >> the logs and with doveadm quota get ... >> >> Any idea or hint how I could get dovecot to read the limit for the domains >> out of my SQL database ? >> >> Thanks, Stephan > > Works here with 2.2.9 (Debian). Snippet from userdb SQL query: > > user_query = SELECT ... > '*:bytes=' || domains.quota_size || 'M:messages=' || > domains.quota_files as quota_rule, > '*:bytes=' || mailboxes.quota_size || 'M:messages=' || > mailboxes.quota_files as quota2_rule > ... > > Using quota backend "fs" for both (user quota for mailbox, group > quota for domain) > > plugin { > quota = fs:Domain quota:group:inode_per_mail > quota2 = fs:Mailbox quota:user:inode_per_mail > } > From marion at lmpa.univ-littoral.fr Tue Mar 25 21:11:36 2014 From: marion at lmpa.univ-littoral.fr (marion) Date: Tue, 25 Mar 2014 22:11:36 +0100 Subject: [Dovecot] pb with setting quota_rule=backend quota=fs for quota-warning Message-ID: <517976DF-4684-4696-B1A3-071C91907445@lmpa.univ-littoral.fr> Hello my config is debian wheezy with dovecot v.2.1.17-2., plugin quota /imap_quota is ok : I can read the real filesystem user quota for each different user with - doveadmin quota get - thunderbird - SOGo my problem is to configure quota-warning message : 1) if no quota_rule is defined then my dovecot-debug.log looks like Mar 25 18:28:02 imap(testuser): Debug:Quota warning: bytes=0 (80%) messages=0 ... 2) As soon as I set quota_rule = *:storage=1G , quota root is correctly defined, and quota-warning messages are sent according to the ratio I defined (cf below 90-quota.conf) with THIS limit (1G) , the same for all users and that?s not what I expect when I set individual quota... 3)And If define something like: quota_rule = * : backend (or backend=%q or ?) dovecot definitively hangs with a) doveadm quota get -u testuser doveadm(testuser): Error: user testuser: Initialization failed: Failed to initialize quota: Invalid quota root quota: Invalid rule *:backend: Unknown rule limit name: backend b) even my login in SOGo hangs /var/mail/mail.err Mar 25 21:56:22 biwa dovecot: imap(testuser): Error: user testuser: Initialization failed: Failed to initialize quota: Invalid quota root quota: Invalid rule *:backend: Unknown rule limit name: backend Is there a way ( a variable ?) to link the real filesystem quota limit with the quota_warning process ? ? something like quota_rule = *:storage=%VAR ? 90-quota.conf ------------------- plugin { quota_warning = storage=80%% quota-warning 80 %u quota_warning2 = storage=90%% quota-warning 90 %u } plugin { quota =fs } service quota-warning { executable = script /etc/dovecot/myconfig/quota-warning.sh unix_listener quota-warning { mode =0666 } } Thank you in advance best regards, Philippe ______________ Philippe Marion From jtam.home at gmail.com Tue Mar 25 21:17:17 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Tue, 25 Mar 2014 14:17:17 -0700 (PDT) Subject: [Dovecot] Disconnected (auth failed, 1 attempts) In-Reply-To: References: Message-ID: ldaamandy writes: > {"username":"q1 at t.com","password":"{CRYPT}$1$d5ef98b7$brWKOJiUiqII3DysGzsfl\/", ... Dovecot uses the uses the native crypt() which ought to recognize $1$ hashes, but maybe try changing it to "{MD5-CRYPT}". http://wiki2.dovecot.org/Authentication/PasswordSchemes Joseph Tam From stan at hardwarefreak.com Tue Mar 25 21:51:47 2014 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Tue, 25 Mar 2014 16:51:47 -0500 Subject: [Dovecot] Direct groups of users to pairs of backend servers In-Reply-To: <5331820E.20307@westnet.com.au> References: <53312AFD.3020702@hardwarefreak.com> <5331820E.20307@westnet.com.au> Message-ID: <5331FA73.6080603@hardwarefreak.com> On 3/25/2014 8:18 AM, Murray Trainer wrote: > On 25/03/14 15:06, Stan Hoeppner wrote: >> On 3/24/2014 10:02 PM, Murray Trainer wrote: >>> Hi All, >>> >>> I am using dovecot in the Director setup with multiple proxy and >>> backend mailstores and user information stored in LDAP. I am aware >>> users can be directed to a single backend server. It would be useful >>> to be able to direct groups of users to pairs of backend servers to >>> give some fault tolerance against NFS issues and make the whole thing >>> more scalable. >> Your description says you currently have a "shared nothing" storage >> architecture. You can't get any more scalable than that. To enable >> "groups of users" to be directed to "pairs of backend servers" you'll >> need each member of the pair to mount the NFS path of the partner server. >> >> Then you will have two different mailbox locations to deal with. Do you >> have per user mailbox paths configured in LDAP? You will have to do >> that for this "pairing" to work. >> >>> Otherwise each backend mailstore will need all >>> the NFS mounts and the whole cluster will be affected if one NFS mount >>> has an issue. >> The whole cluster will not be affected. Only users whose mail in on the >> problem mount will be affected. This is no different that your current >> setup in that regard. >> >>> I am not sure if this possible with the current >>> dovecot implementation? If not it would be a great enhancement. >> So, in a nutshell, you want Dovecot to be able to overcome faults in >> your NFS architecture because you did not build in redundancy? Is this >> correct? >> >> Why are you concerned about NFS mount failures? Most folks running NFS >> Dovecot clusters share a single mount with all mailboxes among all the >> cluster nodes. You seem to have multiple mounts, one for each backend >> node. If mount failures were a common occurrence, we'd see frequent >> reports of that. But we don't. Did you home brew your NFS servers and >> they're not reliable? >> >> Cheers, > Hi Stan, > > Sorry I didn't properly explain my setup. >>>> The backend mailstores each have the same set of 5 NFS mounts from >>>> EMC VNX storage where the mailboxes are located... >>>> There is no relation between the number of NFS >>>> mounts and backend mailstores. Surely you see the contradiction here. You're talking in present tense. Have you already set this up, or is this 5 mounts per mailbox host simply a potential architectural idea right now? > We are talking about migrating a large > amount of users and mailboxes - 100,000+ and 50TB+ and don't want to put > that all on one NFS filesystem. We want to break it down into redundant > parts so that all the mailstores don't stop functioning if there is a > problem with the one NFS filesystem. Sounds reasonable. But you just traded horses, going from "mount point down" to "NFS filesystem" problem. By that do you mean the actual EMC proprietary filesystem that is exported? Filesystem as in run fsck if broken? And if so, you're simply wanting to mirror those filesystems within the EMC, create a different export for each, and have two servers in a "pair" each mount one of these mirrored filesystems? Never heard of such a thing... > Our NFS storage should be pretty > reliable but the email below on this list about a week ago made me > concerned about all our mailstores hanging if there is a problem with > one of the NFS mounts. Mounts are client side. Exports are server side. If a mount hangs only that client host has a problem. Are you concerned about a mount failing or an export failing? > Hence the query about breaking up the NFS mounts > into groups per pair of mailstores. You need to explain this concept in technical detail. As stated it makes no sense, because both NFSv3 and v4 support export failover. Surely the EMC supports this. Actually, in v4 mode, is -must- because it's part of the protocol itself. > We will eventually set mail servers > and redundant EMC storage between separate data centres and use pNFS > which will make the whole thing more fault tolerant but that won't > happen for a while. > > Thanks for your response. > > Murray > >> [Dovecot] NFS not responding generates authantication crash >>I am facing dovecot authentication problems caused by unresponding NFS >>server. If there is even short break in communication with NFS server >>keeping maildirs, the dovecot generates the avalanche of processes >>(dovecot/imap and dovecot/pop3). The real number of connections was > about 50 >>and after the problems occurs it rises to 1000. After about 3 hours the >>limit of connections is filled up: >>dovecot: master: Warning: service(auth): client_limit (1000) reached, >>client connections are being dropped >>and next: >>imap-login: Warning: Auth process not responding, delayed sending greeting >>pop3-login: Warning: Error sending handshake to auth server: Broken pipe >>imap-login: Warning: Error sending handshake to auth server: Broken pipe NFSv4 has a 90 second failover grace period. If the user above was using NFSv4 clustering this breakage would not have happened, at least not to this degree. Cheers, Stan From dovecotadmin at silverservers.com Wed Mar 26 00:30:10 2014 From: dovecotadmin at silverservers.com (DCA) Date: Tue, 25 Mar 2014 17:30:10 -0700 (PDT) Subject: [Dovecot] Trying to get Centos5 set up with dovecot Message-ID: <1301304650.50324.1395793810870.JavaMail.root@silverservers.com> Greetings, It seems I'm having some trouble getting this message into the list. I have used this dovecot list before. I am trying to set up dovecot to replace an older POP3 server in an existing set up. Currently the server uses sendmail to handle incoming mail. users are in /etc/mail and their incoming eMail lands in the /var/mail/username in /var/mail the username file is owned by username:mail I have dovecot configured to create the imap folders in /home/username/mail/ on existing accounts login attempts fail with errors such as: chown /home/username/mail/.imap/INBOX failed: Operation not permitted egid=500(username), group based on /var/mail/username mkdir /home/username/mail/imap/INBOX failed: Operation not permitted. Everything seems to work as expected but only if I add "username" into the "mail" group OR if I have all mailboxes chowned to username:username Is there any way to tell dovecot to ignore the group ownership of /var/mail/username and focus instead on using username:username for everything in /home/username ? If I have to add every user to the mail group I can but this seems messy. Thanks! From skdovecot at smail.inf.fh-brs.de Wed Mar 26 06:19:22 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Wed, 26 Mar 2014 07:19:22 +0100 (CET) Subject: [Dovecot] Trying to get Centos5 set up with dovecot In-Reply-To: <1301304650.50324.1395793810870.JavaMail.root@silverservers.com> References: <1301304650.50324.1395793810870.JavaMail.root@silverservers.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 25 Mar 2014, DCA wrote: > > I am trying to set up dovecot to replace an older POP3 server in an existing set up. > Currently the server uses sendmail to handle incoming mail. users are in /etc/mail and their incoming eMail lands in the /var/mail/username > in /var/mail the username file is owned by username:mail > > I have dovecot configured to create the imap folders in /home/username/mail/ > on existing accounts login attempts fail with errors such as: > chown /home/username/mail/.imap/INBOX failed: Operation not permitted egid=500(username), group based on /var/mail/username > mkdir /home/username/mail/imap/INBOX failed: Operation not permitted. > > Everything seems to work as expected but only if I add "username" into the "mail" group OR if I have all mailboxes chowned to username:username > Is there any way to tell dovecot to ignore the group ownership of /var/mail/username and focus instead on using username:username for everything in /home/username ? Post your doveconf -n and a sample of your account configuration: uid, gid, home. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUzJxa3D1/YhP6VMHAQKTBggAvmAGwuv8Ccl4Z92+t7WXQwti9IaiEuJD vsPo7Y8dyIf4YXKoT+9i2Xyw2HKAE/OTeM4hLmsLOSQFz3tbPBj2/W61e4NvHJNw MvyFmJ3a1bU5HipPvVShOhlRKWyeQeAv0/Fa2LC5GBKHpZJ17YcLEPaAJq5E9zCc sVnIgTUjzEWs01/Z8ATlGJ0ba33hzo0JNNDUnU9bMpypgjMuJojez3NQAZYBk4Qp SYnwIamtlHSm/znPC1k5KjEkwdUNYfgX10ywq34T0fUc93CBZYBNhhh27HiNDuHU 0sMQG7xjcvOdAjPuQ03cEFvqRNxW15Xftsdq0HM5W48JQnmblWv1vg== =Pf6W -----END PGP SIGNATURE----- From mlnospam at yahoo.com Wed Mar 26 07:00:18 2014 From: mlnospam at yahoo.com (ML mail) Date: Wed, 26 Mar 2014 00:00:18 -0700 (PDT) Subject: [Dovecot] IMAP proxy with master user and CRAM-MD5 auth mechanism Message-ID: <1395817218.55310.YahooMailNeo@web162501.mail.bf1.yahoo.com> Hello, I would like to know if it possible to have a dovecot IMAP proxy frontend where CRAM-MD5 can be used as auth mechanism (assuming I would be using a master user/password on the dovecot IMAP backend/mailbox)? I have read a few times the following http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy page but somehow it is still unclear to me if the IMAP proxy then needs to have all the users and passwords in its proxy table in the database? Unfortunately there are no examples for that case. Also with this case scenario is it possible to store the users' passwords in CRAM-MD5 format? Any pointers or documentation to such a scenario would be great. Thanks and regards M.L. From jcea at jcea.es Wed Mar 26 08:05:09 2014 From: jcea at jcea.es (Jesus Cea) Date: Wed, 26 Mar 2014 09:05:09 +0100 Subject: [Dovecot] Not backing up cache files Message-ID: <53328A35.4000907@jcea.es> I am using mdbox for dovecot storage. I wonder if I could skip "dovecot.index.cache" files and, in general, "*.cache" files when doing mail backup. Those files are big and change frequently. What I feel from reading documentation [1][2] is that they could be dropped in the backups, to be recreated on the fly if needed. But I would like expert confirmation. [1] http://wiki2.dovecot.org/IndexFiles [2] http://wiki2.dovecot.org/Design/Indexes/Cache Thanks!. -- Jes?s Cea Avi?n _/_/ _/_/_/ _/_/_/ jcea at jcea.es - http://www.jcea.es/ _/_/ _/_/ _/_/ _/_/ _/_/ Twitter: @jcea _/_/ _/_/ _/_/_/_/_/ jabber / xmpp:jcea at jabber.org _/_/ _/_/ _/_/ _/_/ _/_/ "Things are not so easy" _/_/ _/_/ _/_/ _/_/ _/_/ _/_/ "My name is Dump, Core Dump" _/_/_/ _/_/_/ _/_/ _/_/ "El amor es poner tu felicidad en la felicidad de otro" - Leibniz -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 538 bytes Desc: OpenPGP digital signature URL: From jtam.home at gmail.com Wed Mar 26 09:37:06 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Wed, 26 Mar 2014 02:37:06 -0700 (PDT) Subject: [Dovecot] Trying to get Centos5 set up with dovecot In-Reply-To: References: Message-ID: DCA writes: > I am trying to set up dovecot to replace an older POP3 server in an existing set up. > Currently the server uses sendmail to handle incoming mail. users are in /etc/mail and their incoming eMail lands in the /var/mail/username > in /var/mail the username file is owned by username:mail > > I have dovecot configured to create the imap folders in /home/username/mail/ > on existing accounts login attempts fail with errors such as: > chown /home/username/mail/.imap/INBOX failed: Operation not permitted egid=500(username), group based on /var/mail/username > mkdir /home/username/mail/imap/INBOX failed: Operation not permitted. > > Everything seems to work as expected but only if I add "username" into the "mail" group OR if I have all mailboxes chowned to username:username > Is there any way to tell dovecot to ignore the group ownership of /var/mail/username and focus instead on using username:username for everything in /home/username ? > > If I have to add every user to the mail group I can but this seems messy. Geez, I must have answered the same query 3 or 4 times. I need to write an entry in wiki somewhere: http://www.dovecot.org/list/dovecot/2013-August/092299.html Joseph Tam From CMarcus at Media-Brokers.com Wed Mar 26 11:01:44 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 26 Mar 2014 07:01:44 -0400 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> <532FE88B.1020302@whyscream.net> <53308EE6.4050904@Media-Brokers.com> <53316562.6020709@Media-Brokers.com> Message-ID: <5332B398.2060400@Media-Brokers.com> On 3/25/2014 4:08 PM, Simon wrote: > On Wed, Mar 26, 2014 at 12:15 AM, Charles Marcus > wrote: >> On 3/24/2014 7:10 PM, Simon wrote: >>> Mar 13 09:55:44 vmail1 dovecot: lda: Error: userdb lookup: >>> connect(/usr/local/dovecot/var/run/dovecot/auth-userdb) failed: >>> Connection refused >> So, your SQL userdb is refusing connections from dovecot... >> >> Fix this... > Thanks Charles, I have looked into this and tried to fix permissions but > still have the same issue. I have tried changing the permissions on the > auth-userdb to 0666 (see below) as well as setting the permissions of > /usr/local/dovecot/var/run/dovecot/ to 777 just for testing. You misunderstood... I didn't say the filesystem permissions were wrong. Your SQL SERVER is refusing the connection. The user (vmail) you are using to connect to the SQL server doesn't have permission to talk to it. This needs to be fixed IN THE SQL SERVER ACCESS PERMISSIONS for the 'vmail' user. -- Best regards, Charles From nmilas at noa.gr Wed Mar 26 11:30:41 2014 From: nmilas at noa.gr (Nikolaos Milas) Date: Wed, 26 Mar 2014 13:30:41 +0200 Subject: [Dovecot] Dovecot Replication setup Message-ID: <5332BA61.3040800@noa.gr> Hi, I am trying to setup a master/master replication with dsync (according to the first part of: http://wiki2.dovecot.org/Replication). Sorry if this question sounds foolish, but I would like to ask/confirm whether the indicated setup is required on *both* servers participating in the master/master replication. It seems to me that both need it, but I would like to confirm, just in case. Both servers are running 2.2.12 on CentOS x86_64 (5.10 and 6.5 respectively) and users are virtual over ldap. I might have more questions in the near future, but this is a starting point. Please clarify. Best regards, Nick From mlnospam at yahoo.com Wed Mar 26 15:30:05 2014 From: mlnospam at yahoo.com (ML mail) Date: Wed, 26 Mar 2014 08:30:05 -0700 (PDT) Subject: [Dovecot] IMAP proxy with master user and CRAM-MD5 auth mechanism In-Reply-To: <981B2338-8AA9-438A-A558-42041CC5EBCE@webinabox.net.au> References: <1395817218.55310.YahooMailNeo@web162501.mail.bf1.yahoo.com> <981B2338-8AA9-438A-A558-42041CC5EBCE@webinabox.net.au> Message-ID: <1395847805.38432.YahooMailNeo@web162506.mail.bf1.yahoo.com> Hi Trent, Thanks for your exhaustive explanation now it is clear. What was unclear to me was the fact that the IMAP proxy server has to take care of the authentication in this case of using a master user and therefore it needs access to the passwords (in my case stored in the mailbox table in PostgreSQL). I still have two open questions: 1) Do I really need the userdb on my IMAP proxy config as you mention in your mail? In my understanding the passdb should be enough (which in my case will use a SQL query joining the result of my proxy and mailbox tables). 2) Is this correct that the IMAP backend (the mailbox server) in this case scenario has to use PLAIN authentication and can NOT use CRAM-MD5? Regards,ML From piotr.rotter at active24.pl Wed Mar 26 15:31:57 2014 From: piotr.rotter at active24.pl (Piotr Rotter) Date: Wed, 26 Mar 2014 16:31:57 +0100 Subject: [Dovecot] Auth service panic Message-ID: <5332F2ED.8040405@active24.pl> Hello, I have dovecot director on one server and today I notice 146 times the same problem. Log below. I try restart dovecot and mysql (auth-db backend) but with no effect. Please help. If any other information is needed I send it. My dovecot version is 2.1.15. 2014-03-26T16:15:28+01:00 r1 dovecot: auth: Fatal: master: service(auth): child 9883 killed with signal 6 (core dumps disabled) 2014-03-26T16:15:43+01:00 r1 dovecot: auth: Panic: file passdb-blocking.c: line 124 (passdb_blocking_lookup_credentials): assertion failed: (auth_stream_is_empty(request->extra_fields) || request->master_user != NULL) 2014-03-26T16:15:43+01:00 r1 dovecot: auth: Error: Raw backtrace: /usr/lib64/dovecot/libdovecot.so.0(+0x4469a) [0x7fdb06e1469a] -> /usr/lib64/dovecot/libdovecot.so.0(+0x446de) [0x7fdb06e146de] -> /usr/lib64/dovecot/libdovecot.so.0(+0x1c0ea) [0x7fdb06dec0ea] -> dovecot/auth [34 wait, 1 passdb, 0 userdb](passdb_blocking_verify_plain+0) [0x41f593] -> dovecot/auth [34 wait, 1 passdb, 0 userdb](auth_request_lookup_credentials+0x104) [0x413c41] -> dovecot/auth [34 wait, 1 passdb, 0 userdb]() [0x41c202] -> dovecot/auth [34 wait, 1 passdb, 0 userdb]() [0x4139e6] -> dovecot/auth [34 wait, 1 passdb, 0 userdb](auth_request_lookup_credentials_callback+0x6a) [0x413abb] -> dovecot/auth [34 wait, 1 passdb, 0 userdb](passdb_handle_credentials+0x50) [0x41f389] -> dovecot/auth [34 wait, 1 passdb, 0 userdb]() [0x41f82e] -> dovecot/auth [34 wait, 1 passdb, 0 userdb]() [0x41798f] -> /usr/lib64/dovecot/libdovecot.so.0(io_loop_call_io+0x27) [0x7fdb06e1f68c] -> /usr/lib64/dovecot/libdovecot.so.0(io_loop_handler_run+0x9e) [0x7fdb06e204ee] -> /usr/lib64/dovecot/libdovecot.so.0(io_loop_run+0x27) [0x7fdb06e1f645] -> /usr/lib64/dovecot/libdovecot.so.0(master_service_run+0x13) [0x7fdb06e0d348] -> dovecot/auth [34 wait, 1 passdb, 0 userdb](main+0x380) [0x41a396] -> /lib64/libc.so.6(__libc_start_main+0xfd) [0x7fdb062ced2d] -> dovecot/auth [34 wait, 1 passdb, 0 userdb]() [0x40ced9] 2014-03-26T16:15:43+01:00 r1 dovecot: auth: Fatal: master: service(auth): child 18546 killed with signal 6 (core dumps disabled) From lists at luigirosa.com Wed Mar 26 16:46:16 2014 From: lists at luigirosa.com (Luigi Rosa) Date: Wed, 26 Mar 2014 17:46:16 +0100 Subject: [Dovecot] sieve mailbox in IMAP mailboxes Message-ID: <53330458.8010009@luigirosa.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I have installed latest pigeonhole-sieve Everything works as expected but in IMAP folders I have a "dovecot" folder with a "sieve" subfolder Mail storage is maildir. I remember a setting that tells dovecot to ignore directories and do not display them as IMAP folders, but I acannot find it. Any hints? # 2.2.10: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-431.5.1.el6.centos.plus.i686 i686 CentOS release 6.5 (Final) ext4 auth_cache_negative_ttl = 0 auth_cache_size = 1 M auth_cache_ttl = 5 hours auth_failure_delay = 3 secs auth_mechanisms = plain login digest-md5 cram-md5 base_dir = /var/run/dovecot/ disable_plaintext_auth = no lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes login_greeting = Ready. mail_location = maildir:/var/spool/mail/%u/ mailbox_list_index = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { inbox = yes location = mailbox Bozze { special_use = \Drafts } mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox "Posta eliminata" { special_use = \Trash } mailbox "Posta inviata" { special_use = \Sent } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } postmaster_address = logwatch at meti.it protocols = imap pop3 lmtp sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } ssl_cert = References: <53330458.8010009@luigirosa.com> Message-ID: <533307B6.1010703@gedalya.net> On 03/26/2014 12:46 PM, Luigi Rosa wrote: > mail_location = maildir:/var/spool/mail/%u/ You didn't include your SQL files, so I don't now if you return userdb fields there, but anyway, you seem to have the home directory and mail_location set to the same place. You need to have home set to e.g. maildir:/var/spool/mail/%u/ and mail_location set to maildir:/var/spool/mail/%u/Maildir, a subdirectory of home, or just set the home directory to a different place altogether. Very important: the maildir directory should contain maildir files ONLY. The home directory is for everything else, such as sieve. From gedalya at gedalya.net Wed Mar 26 17:06:38 2014 From: gedalya at gedalya.net (Gedalya) Date: Wed, 26 Mar 2014 13:06:38 -0400 Subject: [Dovecot] sieve mailbox in IMAP mailboxes In-Reply-To: <533307B6.1010703@gedalya.net> References: <53330458.8010009@luigirosa.com> <533307B6.1010703@gedalya.net> Message-ID: <5333091E.8070702@gedalya.net> On 03/26/2014 01:00 PM, Gedalya wrote: > You need to have home set to e.g. maildir:/var/spool/mail/%u/ Sorry, obviously: home set to e.g. /var/spool/mail/%u/ Just see http://wiki2.dovecot.org/MailLocation#line-113 http://wiki2.dovecot.org/VirtualUsers/Home From leolistas at solutti.com.br Wed Mar 26 17:58:42 2014 From: leolistas at solutti.com.br (Leonardo Rodrigues) Date: Wed, 26 Mar 2014 14:58:42 -0300 Subject: [Dovecot] Not backing up cache files In-Reply-To: <53328A35.4000907@jcea.es> References: <53328A35.4000907@jcea.es> Message-ID: <53331552.7070601@solutti.com.br> i'm not the expert you're looking for, so dont take my word as one. And i'm basically using Maildir instead of mdbox ... Anyway, i have dropped 'dovecot.index*' from some backups, full and incremental ones, action which made me save some Gbs of space on them. I already restored some accounts from these backups and had absolutely no problem at all ! Em 26/03/14 05:05, Jesus Cea escreveu: > I am using mdbox for dovecot storage. > > I wonder if I could skip "dovecot.index.cache" files and, in general, > "*.cache" files when doing mail backup. Those files are big and change > frequently. What I feel from reading documentation [1][2] is that they > could be dropped in the backups, to be recreated on the fly if needed. > > But I would like expert confirmation. > > -- Atenciosamente / Sincerily, Leonardo Rodrigues Solutti Tecnologia http://www.solutti.com.br Minha armadilha de SPAM, N?O mandem email gertrudes at solutti.com.br My SPAMTRAP, do not email it From gedalya at gedalya.net Wed Mar 26 18:16:38 2014 From: gedalya at gedalya.net (Gedalya) Date: Wed, 26 Mar 2014 14:16:38 -0400 Subject: [Dovecot] Not backing up cache files In-Reply-To: <53328A35.4000907@jcea.es> References: <53328A35.4000907@jcea.es> Message-ID: <53331986.2030406@gedalya.net> On 03/26/2014 04:05 AM, Jesus Cea wrote: > What I feel from reading documentation [1][2] is that they > could be dropped in the backups, to be recreated on the fly if needed. If you are using maildir, then yes, that's my understanding too, those files don't contain data that doesn't exist anywhere else. But beware that if you end up restoring many or all mailboxes at the same time, without indexes, then you will have lots of I/O activity for a while, as all of your users log in and the indexes are recreated. In some situations this might be overwhelming, depending on your workload/hardware. From CMarcus at Media-Brokers.com Wed Mar 26 19:32:08 2014 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 26 Mar 2014 15:32:08 -0400 Subject: [Dovecot] Not backing up cache files In-Reply-To: <53331986.2030406@gedalya.net> References: <53328A35.4000907@jcea.es> <53331986.2030406@gedalya.net> Message-ID: <53332B38.1030002@Media-Brokers.com> On 3/26/2014 2:16 PM, Gedalya wrote: > On 03/26/2014 04:05 AM, Jesus Cea wrote: >> What I feel from reading documentation [1][2] is that they >> could be dropped in the backups, to be recreated on the fly if needed. > If you are using maildir, then yes, that's my understanding too, those > files don't contain data that doesn't exist anywhere else. But beware > that if you end up restoring many or all mailboxes at the same time, > without indexes, then you will have lots of I/O activity for a while, > as all of your users log in and the indexes are recreated. In some > situations this might be overwhelming, depending on your > workload/hardware. > Both of the responses to your question apparently missed that you are using mdbox. Obviously you can NOT ignore/delete the index files for dbox storage formats, but I'm not sure about the cache files. I *think* you can ignore them, but I'd have to defer to someone else for a definitive answer, and I'm definitely interested in the answer to this too since I'm considering migrating to mdbox myself. -- Best regards, Charles From blake1024 at gmail.com Wed Mar 26 20:47:39 2014 From: blake1024 at gmail.com (Blake McBride) Date: Wed, 26 Mar 2014 15:47:39 -0500 Subject: [Dovecot] Help connecting from remote client (no auth attempts) Message-ID: Greetings, I am running 64 bit Ubuntu server 10.04.04, postfix 2.7.0, and dovecot 1.2.9. I installed the dovecot-postfix package so the two would be configured to work together. >From localhost I can send and receive email to/from arbitrary remote sites without any problems. I wish to send & receive email from my (remote) desktop via Thunderbird through that sever. When I attempt to configure Thunderbird I get the following on mail.log: Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth attempts): rip=74.179.230.177, lip=192.168.168.53 Mar 26 15:04:51 booklion dovecot: last message repeated 2 times Mar 26 15:04:51 booklion dovecot: pop3-login: Aborted login (no auth attempts): rip=74.179.230.177, lip=192.168.168.53 Mar 26 15:04:51 booklion dovecot: last message repeated 3 times Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth attempts): rip=74.179.230.177, lip=192.168.168.53 ... For now, I just want to control access through the normal passwd/shadow mechanism. I set in dovecot.conf: disable_plaintext_auth = no ssl = yes passdb shadow { } userdb passwd { } I don't know what else to try. Help would really be appreciated. Blake McBride From h.reindl at thelounge.net Wed Mar 26 20:52:31 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Wed, 26 Mar 2014 21:52:31 +0100 Subject: [Dovecot] Help connecting from remote client (no auth attempts) In-Reply-To: References: Message-ID: <53333E0F.4040707@thelounge.net> Am 26.03.2014 21:47, schrieb Blake McBride: > Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth > attempts): rip=74.179.230.177, lip=192.168.168.53 > Mar 26 15:04:51 booklion dovecot: last message repeated 2 times > Mar 26 15:04:51 booklion dovecot: pop3-login: Aborted login (no auth > attempts): rip=74.179.230.177, lip=192.168.168.53 > Mar 26 15:04:51 booklion dovecot: last message repeated 3 times > Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth > attempts): rip=74.179.230.177, lip=192.168.168.53 what auth-mechs have you configured and how is TB configured? "no auth attempts" in most cases indicates the client don't agree with the auth-mechs offered by the server (PLAUN, LOGIN, CRAM-MD5, LMTP) in doubt try that in dovecot.conf auth_mechanisms = CRAM-MD5 DIGEST-MD5 APOP LOGIN PLAIN -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From blake1024 at gmail.com Wed Mar 26 21:02:10 2014 From: blake1024 at gmail.com (Blake McBride) Date: Wed, 26 Mar 2014 16:02:10 -0500 Subject: [Dovecot] Help connecting from remote client (no auth attempts) In-Reply-To: <53333E0F.4040707@thelounge.net> References: <53333E0F.4040707@thelounge.net> Message-ID: Thanks for the help!! I added the auth_mech.. line and reset dovecot but got the same error message. dovecot -n # 1.2.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-57-server x86_64 Ubuntu 10.04.4 LTS log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s managesieve ssl_cert_file: /etc/ssl/certs/ssl-mail.pem ssl_key_file: /etc/ssl/private/ssl-mail.key ssl_cipher_list: ALL:!LOW:!SSLv2:ALL:!aNULL:!ADH:!eNULL:!EXP:RC4+RSA:+HIGH:+MEDIUM login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login login_executable(managesieve): /usr/lib/dovecot/managesieve-login mail_privileged_group: mail mail_location: maildir:~/Maildir mbox_write_locks: fcntl dotlock mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(pop3): /usr/lib/dovecot/pop3 mail_executable(managesieve): /usr/lib/dovecot/managesieve mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve imap_client_workarounds(default): outlook-idle delay-newmail imap_client_workarounds(imap): outlook-idle delay-newmail imap_client_workarounds(pop3): imap_client_workarounds(managesieve): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh pop3_client_workarounds(managesieve): lda: postmaster_address: postmaster mail_plugins: sieve quota_full_tempfail: yes deliver_log_format: msgid=%m: %$ rejection_reason: Your message to <%t> was automatically rejected:%n%r auth default: mechanisms: plain login debug: yes debug_passwords: yes passdb: driver: shadow userdb: driver: passwd socket: type: listen client: path: /var/spool/postfix/private/dovecot-auth mode: 432 user: postfix group: postfix plugin: sieve: ~/.dovecot.sieve sieve_dir: ~/sieve On Wed, Mar 26, 2014 at 3:52 PM, Reindl Harald wrote: > > > Am 26.03.2014 21:47, schrieb Blake McBride: > > Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth > > attempts): rip=74.179.230.177, lip=192.168.168.53 > > Mar 26 15:04:51 booklion dovecot: last message repeated 2 times > > Mar 26 15:04:51 booklion dovecot: pop3-login: Aborted login (no auth > > attempts): rip=74.179.230.177, lip=192.168.168.53 > > Mar 26 15:04:51 booklion dovecot: last message repeated 3 times > > Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth > > attempts): rip=74.179.230.177, lip=192.168.168.53 > > what auth-mechs have you configured and how is TB configured? > "no auth attempts" in most cases indicates the client don't agree > with the auth-mechs offered by the server (PLAUN, LOGIN, CRAM-MD5, LMTP) > > in doubt try that in dovecot.conf > auth_mechanisms = CRAM-MD5 DIGEST-MD5 APOP LOGIN PLAIN > > From blake1024 at gmail.com Wed Mar 26 21:26:27 2014 From: blake1024 at gmail.com (Blake McBride) Date: Wed, 26 Mar 2014 16:26:27 -0500 Subject: [Dovecot] Help connecting from remote client (no auth attempts) In-Reply-To: References: <53333E0F.4040707@thelounge.net> Message-ID: I found I was enabling the options you requested in the wrong place. After fixing it I get: Mar 26 16:21:03 booklion dovecot: Dovecot v1.2.9 starting up (core dumps disabled) Mar 26 16:21:04 booklion dovecot: auth(default): Fatal: APOP mechanism can't be supported with given passdbs Mar 26 16:21:04 booklion dovecot: dovecot: Fatal: Auth process died too early - shutting down Mar 26 16:22:31 booklion dovecot: Dovecot v1.2.9 starting up (core dumps disabled) Mar 26 16:22:31 booklion dovecot: auth(default): Fatal: DIGEST-MD5 mechanism can't be supported with given passdbs Mar 26 16:22:31 booklion dovecot: dovecot: Fatal: Auth process died too early - shutting down Mar 26 16:23:21 booklion dovecot: Dovecot v1.2.9 starting up (core dumps disabled) Mar 26 16:23:21 booklion dovecot: auth(default): Fatal: CRAM-MD5 mechanism can't be supported with given passdbs Mar 26 16:23:21 booklion dovecot: dovecot: Fatal: Auth process died too early - shutting down On Wed, Mar 26, 2014 at 4:02 PM, Blake McBride wrote: > Thanks for the help!! > > I added the auth_mech.. line and reset dovecot but got the same error > message. > > dovecot -n > # 1.2.9: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-57-server x86_64 Ubuntu 10.04.4 LTS > log_timestamp: %Y-%m-%d %H:%M:%S > protocols: imap pop3 imaps pop3s managesieve > ssl_cert_file: /etc/ssl/certs/ssl-mail.pem > ssl_key_file: /etc/ssl/private/ssl-mail.key > ssl_cipher_list: > ALL:!LOW:!SSLv2:ALL:!aNULL:!ADH:!eNULL:!EXP:RC4+RSA:+HIGH:+MEDIUM > login_dir: /var/run/dovecot/login > login_executable(default): /usr/lib/dovecot/imap-login > login_executable(imap): /usr/lib/dovecot/imap-login > login_executable(pop3): /usr/lib/dovecot/pop3-login > login_executable(managesieve): /usr/lib/dovecot/managesieve-login > mail_privileged_group: mail > mail_location: maildir:~/Maildir > mbox_write_locks: fcntl dotlock > mail_executable(default): /usr/lib/dovecot/imap > mail_executable(imap): /usr/lib/dovecot/imap > mail_executable(pop3): /usr/lib/dovecot/pop3 > mail_executable(managesieve): /usr/lib/dovecot/managesieve > mail_plugin_dir(default): /usr/lib/dovecot/modules/imap > mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap > mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 > mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve > imap_client_workarounds(default): outlook-idle delay-newmail > imap_client_workarounds(imap): outlook-idle delay-newmail > imap_client_workarounds(pop3): > imap_client_workarounds(managesieve): > pop3_client_workarounds(default): > pop3_client_workarounds(imap): > pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh > pop3_client_workarounds(managesieve): > lda: > postmaster_address: postmaster > mail_plugins: sieve > quota_full_tempfail: yes > deliver_log_format: msgid=%m: %$ > rejection_reason: Your message to <%t> was automatically rejected:%n%r > auth default: > mechanisms: plain login > debug: yes > debug_passwords: yes > passdb: > driver: shadow > userdb: > driver: passwd > socket: > type: listen > client: > path: /var/spool/postfix/private/dovecot-auth > mode: 432 > user: postfix > group: postfix > plugin: > sieve: ~/.dovecot.sieve > sieve_dir: ~/sieve > > > > On Wed, Mar 26, 2014 at 3:52 PM, Reindl Harald wrote: > >> >> >> Am 26.03.2014 21:47, schrieb Blake McBride: >> > Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth >> > attempts): rip=74.179.230.177, lip=192.168.168.53 >> > Mar 26 15:04:51 booklion dovecot: last message repeated 2 times >> > Mar 26 15:04:51 booklion dovecot: pop3-login: Aborted login (no auth >> > attempts): rip=74.179.230.177, lip=192.168.168.53 >> > Mar 26 15:04:51 booklion dovecot: last message repeated 3 times >> > Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth >> > attempts): rip=74.179.230.177, lip=192.168.168.53 >> >> what auth-mechs have you configured and how is TB configured? >> "no auth attempts" in most cases indicates the client don't agree >> with the auth-mechs offered by the server (PLAUN, LOGIN, CRAM-MD5, LMTP) >> >> in doubt try that in dovecot.conf >> auth_mechanisms = CRAM-MD5 DIGEST-MD5 APOP LOGIN PLAIN >> >> > From tom at whyscream.net Thu Mar 27 04:16:38 2014 From: tom at whyscream.net (Tom Hendrikx) Date: Thu, 27 Mar 2014 05:16:38 +0100 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: <5332B398.2060400@Media-Brokers.com> References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> <532FE88B.1020302@whyscream.net> <53308EE6.4050904@Media-Brokers.com> <53316562.6020709@Media-Brokers.com> <5332B398.2060400@Media-Brokers.com> Message-ID: <5333A626.8020700@whyscream.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 26-03-14 12:01, Charles Marcus wrote: > On 3/25/2014 4:08 PM, Simon wrote: >> On Wed, Mar 26, 2014 at 12:15 AM, Charles Marcus >> wrote: >>> On 3/24/2014 7:10 PM, Simon wrote: >>>> Mar 13 09:55:44 vmail1 dovecot: lda: Error: userdb lookup: >>>> connect(/usr/local/dovecot/var/run/dovecot/auth-userdb) >>>> failed: Connection refused > >>> So, your SQL userdb is refusing connections from dovecot... >>> >>> Fix this... > >> Thanks Charles, I have looked into this and tried to fix >> permissions but still have the same issue. I have tried changing >> the permissions on the auth-userdb to 0666 (see below) as well as >> setting the permissions of /usr/local/dovecot/var/run/dovecot/ to >> 777 just for testing. > > You misunderstood... > > I didn't say the filesystem permissions were wrong. > > Your SQL SERVER is refusing the connection. > > The user (vmail) you are using to connect to the SQL server doesn't > have permission to talk to it. > > This needs to be fixed IN THE SQL SERVER ACCESS PERMISSIONS for > the 'vmail' user. > Charles, auth-worker would have logged errors about sql access if that was an issue. lda doesn't do sql queries by itself, it sends the queries to the auth socket instead, and that fails. The socket is not usable, as was already observed upthread by doing tests as root using socat. I'm still opting for selinux/apparmor/rsbac/etc issues here. Simon, are you sure you're not missing any logging on that? I'm not really experienced in thoose systems, but everytime I run into issues with them , they sure fill my logs with all kinds of cryptic stuff ;) Tom -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJTM6YiAAoJEJPfMZ19VO/1+kQQAIacvfL2gQLlVOmavsgM2lBT N5sJTVdhXPXPJ/xzjH5X+nHZ2Y4G1FBkuMakv1t1ltrbS/KYmEIcaZTeNFlqKeD+ UJtucYi9aaLKzpCAz2ZvlX7ferUz3duvUssp6qWFzwTPPr/Gk+JwtG23C+FxSKac G/HtJXbC4KJc8dz8tJmY8XyI8mzbnjNzxJ+Xa1Gml/1sdjvv9J/xjwDEPoGfGCb/ XYK35wqshzyOgzmp1kPGvqrTAZYRW3enG7pHvqtq9rMVbyHqoFjVIdOkl8GNxWnj l6DB9E/2+Z9P7os40jwmb77kL7GgOGDMwWbtiHJAnESbF5aYuXmQhwTBFAfTBbty AwuqbbXOBMuG9QcV3j5gYA6KccEcX+7ulqMNFJ4vpcVdSl+SrFp06nQMhfwn4jyg uPvkrqmgrJCfQ6prSoQxHTaC+2J1Cv9ftRwKSwReaRmzCOOCq/muI7ltq++9hY8u z4dxLUFAXexCx9wf71TOOiTbKeo9iuLZMS+HXZn7vYeQt7y+ziCQWU5ZrSmL73nC zqv3TR+ap9x5qVQpK7EoGlMOpa4uKGykztCAmaOwR8y5FSnaw9+d3Cfxmy1PkYLI fLm0VHk4uOMrbps8oLfAYSXX3cgOeoGt9Ixni/Ce+me9Cdsid1wf0dczKYTX5X41 XkFPhM4OPiHq5RBzml0M =1vTO -----END PGP SIGNATURE----- From jtam.home at gmail.com Thu Mar 27 10:27:44 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Thu, 27 Mar 2014 03:27:44 -0700 (PDT) Subject: [Dovecot] Weird Authentication behaviour In-Reply-To: References: Message-ID: Reindl Harald writes: > frankly 8 chars is laughable, i recently wrote a PHP library to > generate secure random passwords and for 100000 passwords get > 13 collisions is way to much given that that means you have > a collision every 8000 tries which means not you need 8000 > in a real world attack (Off-topic) Not that I disagree with the conclusion that 8 character passwords are weak by todays standards, but there seems to be something wrong with your generator (weak PRNG? limited character set?). 13 collisions in 10^5 passwords is terrible, even by 1980 Unix standards. The keyspace for an 8-character alphanumeric password is 62^8, and assuming a random selection of keys, you would need to generate 17,397,806 keys before expecting a 50% probability of finding one collision: (Ref: http://en.wikipedia.org/wiki/Birthday_problem#Cast_as_a_collision_problem) p=0.5, d=62^8, n=sqrt(2*62^8*log(1/(1-0.5)) ~= 1.7E7 A hash collision (again, assuming crypt is a halfway decent hasher) is even more unlikely, as the hash space is even larger (4096 salts * 64^11). Jiri Bourek added > Yes, AFAIK DES encryption is obsolete for very long time and if you know > hash, it's quite easy to generate a secret which will match the hash ... Quite easy? Maybe if you could find a crypt rainbow tables for crypt(). Go ahead and invert "LXE5F6d8FPOa.". Joseph Tam From h.reindl at thelounge.net Thu Mar 27 10:37:23 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 27 Mar 2014 11:37:23 +0100 Subject: [Dovecot] Weird Authentication behaviour In-Reply-To: References: Message-ID: <5333FF63.8090908@thelounge.net> Am 27.03.2014 11:27, schrieb Joseph Tam: > > Reindl Harald writes: > >> frankly 8 chars is laughable, i recently wrote a PHP library to >> generate secure random passwords and for 100000 passwords get >> 13 collisions is way to much given that that means you have >> a collision every 8000 tries which means not you need 8000 >> in a real world attack > > (Off-topic) > > Not that I disagree with the conclusion that 8 character passwords are > weak by todays standards, but there seems to be something wrong with > your generator (weak PRNG? limited character set?). 13 collisions in > 10^5 passwords is terrible, even by 1980 Unix standards * Intel IvyBridge with rngd * haveged -w 3072 -v 1 * SURELY a limited character set because mail-clients don't handle any char $internal_random = openssl_random_pseudo_bytes(15) . microtime() . serialize($_SERVER) . serialize($_REQUEST) . serialize($_ENV) . uniqid('', true) . openssl_random_pseudo_bytes(15) * that is not the problem and a lot of high random crap * but you can't use that for passwords * after hash_pbkdf2('sha256', $internal_random, mcrypt_create_iv(16, MCRYPT_DEV_URANDOM), 20, $length) you are limited to low chars and number, so you need to randomly uppercase some chars and randomly insert acceptable special chars like array('_','#','*','-','&','!','?','.',',','=') -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From blake1024 at gmail.com Thu Mar 27 14:34:17 2014 From: blake1024 at gmail.com (Blake McBride) Date: Thu, 27 Mar 2014 09:34:17 -0500 Subject: [Dovecot] Help connecting from remote client (no auth attempts) In-Reply-To: <53333E0F.4040707@thelounge.net> References: <53333E0F.4040707@thelounge.net> Message-ID: I don't know what TB is. On Wed, Mar 26, 2014 at 3:52 PM, Reindl Harald wrote: > > > Am 26.03.2014 21:47, schrieb Blake McBride: > > Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth > > attempts): rip=74.179.230.177, lip=192.168.168.53 > > Mar 26 15:04:51 booklion dovecot: last message repeated 2 times > > Mar 26 15:04:51 booklion dovecot: pop3-login: Aborted login (no auth > > attempts): rip=74.179.230.177, lip=192.168.168.53 > > Mar 26 15:04:51 booklion dovecot: last message repeated 3 times > > Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth > > attempts): rip=74.179.230.177, lip=192.168.168.53 > > what auth-mechs have you configured and how is TB configured? > "no auth attempts" in most cases indicates the client don't agree > with the auth-mechs offered by the server (PLAUN, LOGIN, CRAM-MD5, LMTP) > > in doubt try that in dovecot.conf > auth_mechanisms = CRAM-MD5 DIGEST-MD5 APOP LOGIN PLAIN > > From h.reindl at thelounge.net Thu Mar 27 14:38:33 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 27 Mar 2014 15:38:33 +0100 Subject: [Dovecot] Help connecting from remote client (no auth attempts) In-Reply-To: References: <53333E0F.4040707@thelounge.net> Message-ID: <533437E9.7030408@thelounge.net> ThunderBird if you choose "encrypted password" it's in fact CRAM-MD5 that is different in different mail-clients some let you choose the auth-mech, some have a default and the some doing the right chosse the actual best one available announced by the server Am 27.03.2014 15:34, schrieb Blake McBride: > I don't know what TB is. > > On Wed, Mar 26, 2014 at 3:52 PM, Reindl Harald wrote: >> Am 26.03.2014 21:47, schrieb Blake McBride: >>> Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth >>> attempts): rip=74.179.230.177, lip=192.168.168.53 >>> Mar 26 15:04:51 booklion dovecot: last message repeated 2 times >>> Mar 26 15:04:51 booklion dovecot: pop3-login: Aborted login (no auth >>> attempts): rip=74.179.230.177, lip=192.168.168.53 >>> Mar 26 15:04:51 booklion dovecot: last message repeated 3 times >>> Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth >>> attempts): rip=74.179.230.177, lip=192.168.168.53 >> >> what auth-mechs have you configured and how is TB configured? >> "no auth attempts" in most cases indicates the client don't agree >> with the auth-mechs offered by the server (PLAUN, LOGIN, CRAM-MD5, LMTP) >> >> in doubt try that in dovecot.conf >> auth_mechanisms = CRAM-MD5 DIGEST-MD5 APOP LOGIN PLAIN -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From dovecot.pkoch at dfgh.net Thu Mar 27 15:04:38 2014 From: dovecot.pkoch at dfgh.net (dovecot.pkoch at dfgh.net) Date: Thu, 27 Mar 2014 16:04:38 +0100 Subject: [Dovecot] %{orig_user} missing in checkpassword-Script Message-ID: Hi everybody, I'm using SSL client certificates or checkpassword scripts to authenticate our users. If a user sent a client certificate from his smartcard my checkpasswort will ignore the password, if he does not sent a client certificate but uses his OTP-token then my checkwassword script will check wether the password is a correct one time password. My problem is: the AUTH_USER variable will either contain the username that was configured in the mailclient (if auth_ssl_username_from_cert=false) or the username from the certificate (if auth_ssl_username_from_cert=true). I would like to compare both values, i.e. the %{user} Dovecot-variable and the %{orig_user} Dovecot-variable. But the environment of a checkpassword-script has only one of them. Any ideas? I tried to change the source and found the routine where all the AUTH_xxx environment variables are created. But the %{orig_user] variable was empty at that point, so no AUTH_ORIG_USER variable is created. I'm afraight that whenever the %{user}-Variable is replaced by the UID from the client certificate (due to auth_ssl_username_from_cert=true), the original value of %{user} is NOT copied into %{orig_user} Can someone more familiar with the dovecot source check this please or give me a hint where to look further Kind regards Peter Koch From paolo.brocchi at staff.aruba.it Thu Mar 27 15:09:02 2014 From: paolo.brocchi at staff.aruba.it (paolo.brocchi12) Date: Thu, 27 Mar 2014 08:09:02 -0700 (PDT) Subject: [Dovecot] lmtpd configuration Message-ID: <1395932942676-47284.post@n4.nabble.com> Hi all, i have my home.conf : mydatabase XXXX myuser XXXX mypasswd XXXX myhosts be1XX be2XX [lmtpd] where mail conditions status = 0 user name passwd 'passwd' home home quota quota_limit_bytes uid 497 gid 497 table UTENTI on mysql database the home is home: /data/mail/BE01/........ i would like to have home:/data/mail/DRBE01 How can i change my home.conf? Thanks you Paolo -- View this message in context: http://dovecot.2317879.n4.nabble.com/lmtpd-configuration-tp47284.html Sent from the Dovecot mailing list archive at Nabble.com. From blake1024 at gmail.com Thu Mar 27 15:33:17 2014 From: blake1024 at gmail.com (Blake McBride) Date: Thu, 27 Mar 2014 10:33:17 -0500 Subject: [Dovecot] Help connecting from remote client (no auth attempts) In-Reply-To: <533437E9.7030408@thelounge.net> References: <53333E0F.4040707@thelounge.net> <533437E9.7030408@thelounge.net> Message-ID: Thanks. The current version of Thunderbird auto-detects connection parameters - presumably by trying every combination. All I give is an email address and a password. They also have a manual configuration that I spent a lot of time with. I was never able to do any better than their auto-config. I've spent two days on this now. During all my trial and error tests I got the ability to receive email to work. Trying to get send to work, after a bunch of trials, I just re-installed the whole thing to start over with a clean slate. I installed a different config. One that had postfix and dovecot pre-configured to work together. That is what I am using now. Given my experience with all this, I feel confident that Thunderbird is not a factor in the problem. I have a lot of experience as a programmer but I've only messed with email servers a couple of times over the years. (sendmail in the past.) Each time, unfortunately, it turns into a week-long, trial and effort in order to get it working - never knowing what made it work or what it is even doing. In terms of the config, I really don't know what I am doing. I think what I want is clear text passwords sent over an SSL connection. Isn't that secure? I don't know the difference between SSL and that TTSL thing. I really don't care how it is setup. I just want it to be reasonably secure and simple. When installing the dovecot-postfix package on Ubuntu, it is preconfigured to work and it does. It just doesn't allow an external client to send & receive through it. It would be great to have a step-by-step guide to get this, very common need, setup. I see questions about this all over the net but there is no clear answer. Usually people just say they got it working but either son't know or don't fully tell what they did to fix it. I've got to believe that postfix and dovecot form a great email solution that works well. While it may be easy to setup for someone who is an email expert, it is utterly daunting to someone who is not. I really appreciate your help. I don't think the problem has anything to do with Thunderbird. It has got to be in the dovecot and postfix config. I am just don't know what to do to determine where the problem is and how to fix it. I would thing that config dumps and log files would give everything needed, but I don't understand them. Assistance from someone with a lot more experience and understanding can make all the difference. Thanks. Blake On Thu, Mar 27, 2014 at 9:38 AM, Reindl Harald wrote: > ThunderBird > > if you choose "encrypted password" it's in fact CRAM-MD5 > that is different in different mail-clients > > some let you choose the auth-mech, some have a default > and the some doing the right chosse the actual best one > available announced by the server > > Am 27.03.2014 15:34, schrieb Blake McBride: > > I don't know what TB is. > > > > On Wed, Mar 26, 2014 at 3:52 PM, Reindl Harald >wrote: > >> Am 26.03.2014 21:47, schrieb Blake McBride: > >>> Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth > >>> attempts): rip=74.179.230.177, lip=192.168.168.53 > >>> Mar 26 15:04:51 booklion dovecot: last message repeated 2 times > >>> Mar 26 15:04:51 booklion dovecot: pop3-login: Aborted login (no auth > >>> attempts): rip=74.179.230.177, lip=192.168.168.53 > >>> Mar 26 15:04:51 booklion dovecot: last message repeated 3 times > >>> Mar 26 15:04:51 booklion dovecot: imap-login: Aborted login (no auth > >>> attempts): rip=74.179.230.177, lip=192.168.168.53 > >> > >> what auth-mechs have you configured and how is TB configured? > >> "no auth attempts" in most cases indicates the client don't agree > >> with the auth-mechs offered by the server (PLAUN, LOGIN, CRAM-MD5, LMTP) > >> > >> in doubt try that in dovecot.conf > >> auth_mechanisms = CRAM-MD5 DIGEST-MD5 APOP LOGIN PLAIN > > From h.reindl at thelounge.net Thu Mar 27 15:41:22 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Thu, 27 Mar 2014 16:41:22 +0100 Subject: [Dovecot] Help connecting from remote client (no auth attempts) In-Reply-To: References: <53333E0F.4040707@thelounge.net> <533437E9.7030408@thelounge.net> Message-ID: <533446A2.808@thelounge.net> Am 27.03.2014 16:33, schrieb Blake McBride: > In terms of the config, I really don't know what I am doing. I think what > I want is clear text passwords sent over an SSL connection. Isn't that > secure? I don't know the difference between SSL and that TTSL thing. I > really don't care how it is setup. I just want it to be reasonably secure > and simple. if you don't care you unlikely will get it secure sorry but you can't have both at the same time * don't care and don't understand * get a secure and clean mailserver setup hire somebody or learn your daywork, having a public mailserver brings *great* responsibility *not only* for you, for the whole internet! -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From blake1024 at gmail.com Thu Mar 27 16:09:13 2014 From: blake1024 at gmail.com (Blake McBride) Date: Thu, 27 Mar 2014 11:09:13 -0500 Subject: [Dovecot] Help connecting from remote client (no auth attempts) In-Reply-To: <533446A2.808@thelounge.net> References: <53333E0F.4040707@thelounge.net> <533437E9.7030408@thelounge.net> <533446A2.808@thelounge.net> Message-ID: What I meant by "don't care" is that there are, presumably, many secure options. I "don't care" about which one. I just want something simple to configure. Having a working understanding of SSL, I understand that sending unencrypted text over an SSL connection is reasonably secure. I do it everyday with SSH. I shouldn't need, nor does Thunderbird require, CRAM-MD5 or DIGEST-MD5. I was hoping to get some assistance from someone for whom dovecot is their "daywork". My "daywork" presumably includes things not in your "daywork". I can surely learn the system, and wouldn't need anyone's help, but that would detract from other things more important to me that I have a lot of expertise in. Presumably, I would return the favor when someone asks for my help in areas I have expertise in. We can either help each other with our respective expertise, or we can tell each other to learn it themselves. On Thu, Mar 27, 2014 at 10:41 AM, Reindl Harald wrote: > > Am 27.03.2014 16:33, schrieb Blake McBride: > > In terms of the config, I really don't know what I am doing. I think what > > I want is clear text passwords sent over an SSL connection. Isn't that > > secure? I don't know the difference between SSL and that TTSL thing. I > > really don't care how it is setup. I just want it to be reasonably secure > > and simple. > > if you don't care you unlikely will get it secure > sorry but you can't have both at the same time > > * don't care and don't understand > * get a secure and clean mailserver setup > > hire somebody or learn your daywork, having a public > mailserver brings *great* responsibility *not only* > for you, for the whole internet! > > From felix.sipma at no-log.org Mon Mar 24 12:56:21 2014 From: felix.sipma at no-log.org (=?utf-8?B?RsOpbGl4?= Sipma) Date: Mon, 24 Mar 2014 13:56:21 +0100 Subject: [Dovecot] dsync in a cronjob to replace offlineimap In-Reply-To: <20140214205157.GA26316@localhost> References: <20140214205157.GA26316@localhost> Message-ID: <20140324125621.GB24914@capeo> Hi, I'm in the exact same situation: trying to use a state file in a cron sync job on my laptop, it quickly becomes corrupted... Is there a way to use incremental replication in this use case (sync between server and laptop)? Thanks, -- F?lix -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: Digital signature URL: From talldarkandstrange at me.com Wed Mar 26 14:08:03 2014 From: talldarkandstrange at me.com (medicineme) Date: Wed, 26 Mar 2014 07:08:03 -0700 (PDT) Subject: [Dovecot] Authentication woes, passwd standard install Message-ID: <1395842883385-47265.post@n4.nabble.com> I have two users working fine. Tried to add a third and it refuses to accept log on details. I've stripped everything back to default config, and still only the first two users are accepted! Can't understand it and it's driving me crazy. I've deleted and created the user a thousand times, and opened the config up as wide as possible. I'm obviously doing something stupid but what! # OS: Linux 3.2.0-4-686-pae i686 Debian 7.2 auth_mechanisms = plain login digest-md5 rpa base_dir = /var/run/dovecot/ disable_plaintext_auth = no login_trusted_networks = 10.0.0.0/8 passdb { driver = pam } protocols = imap service auth { user = root } ssl_cert = References: <5331D8C4.4070307@mpathix.com> Message-ID: <533458A9.7000308@mpathix.com> If anyone is interested - I found the problem in my setup: > protocol lda { > mail_plugins = " sieve" > } needs to have both "replication" and "notify" protocol lda { mail_plugins = " sieve replication notify" } Maybe it is just me, but the Replication wiki page is not detailed enough. I had lots of problems trying to figure out which process runs on which machine, and in the context of which user. For example, the first note mentions that "doveadm user '*'" has to work. It does not the context when this command would be running. This is important, because it takes 2 steps to configure it properly: - to make sure the command runs at all - configure the userdb properly - to make sure the UNIX user account which would be running it has the right to do it. As a result, there are couple of posts on this list bumping up permissions to various sockets/fifos in /var/run/dovecot directory, probably in attempts to let 'vmail' user run "doveadm user '*'". And I still don't know if 'vmail' user runs it or not... Milan exim is configured to use dovecot's deliver as LDA. Milan Cvetkovic wrote: > Hi, > > I am trying to setup dovecot replication based on: > > http://wiki2.dovecot.org/Replication > > All mailboxes share the same UNIX userid ('vmail'), and I setup ssh-key > based login for this account in both directions. As LDA exim4 is > configured to use dovecot deliver LDA. Here is the relevant config from > exim: > > /usr/lib/dovecot/deliver -d $local_part -f $sender_address -a > $original_local_part@$original_domain > > > When a message is deposited to a mailbox, it does not get replicated. > The log is silent: > > Mar 25 15:00:20 mx02 dovecot: master: Dovecot v2.2.9 starting up (core > dumps disabled) > Mar 25 15:01:05 mx02 dovecot: lda(user.name): msgid=unspecified: saved > mail to INBOX > > The output from doveconf -n is attached. > > Any help is appreciated, > > Thanks, Milan. > > doveconf-n.txt > > > # 2.2.9: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.4 > auth_mechanisms = plain login > mail_location = maildir:~/Maildir > mail_plugins = " notify replication" > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave > namespace inbox { > inbox = yes > location = > mailbox Drafts { > special_use = \Drafts > } > mailbox Junk { > special_use = \Junk > } > mailbox Sent { > special_use = \Sent > } > mailbox "Sent Messages" { > special_use = \Sent > } > mailbox Trash { > special_use = \Trash > } > prefix = > } > passdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > plugin { > mail_replica = remote:vmail at 192.168.108.136 > sieve = ~/.dovecot.sieve > sieve_dir = ~/sieve > } > protocols = " imap sieve pop3" > replication_full_sync_interval = 1 hours > service aggregator { > fifo_listener replication-notify-fifo { > user = vmail > } > unix_listener replication-notify { > user = vmail > } > } > service auth { > unix_listener auth-client { > mode = 0660 > user = Debian-exim > } > } > service replicator { > process_min_avail = 1 > unix_listener replicator-doveadm { > mode = 0600 > } > } > ssl_cert = ssl_key = userdb { > driver = prefetch > } > userdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > protocol lda { > mail_plugins = " sieve" > } > From jtam.home at gmail.com Thu Mar 27 22:08:07 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Thu, 27 Mar 2014 15:08:07 -0700 (PDT) Subject: [Dovecot] Help connecting from remote client (no auth attempts In-Reply-To: References: Message-ID: Blake McBride writes: > Thanks. The current version of Thunderbird auto-detects connection > parameters - presumably by trying every combination. All I give is an > email address and a password. They also have a manual configuration that I > spent a lot of time with. I was never able to do any better than their > auto-config. That's usually the cause of many problems I see with log entries like yours. It could happen when client and server disagree on using STARTTLS or SSL, so hardwiring your client to use whatever your server supports stops the client from fumbling around (and getting it wrong). > Given my experience with all this, I feel confident that Thunderbird is not > a factor in the problem. A network trace could clear that up, but auto-configure is problematic. > In terms of the config, I really don't know what I am doing. I think what > I want is clear text passwords sent over an SSL connection. Isn't that > secure? I don't know the difference between SSL and that TTSL thing. I > really don't care how it is setup. I just want it to be reasonably secure > and simple. You'll need to know these things in order to understand the problem. The essential difference, as far as your concerned, is that TLS (or STARTTLS or SSLv(some-number-I-forget)) starts out in plain text, then the client issues a command (STARTTLS) to commence the secure (encrypted) communication handshake, whereas SSL dives right in and expects the client to negotiate SSL parameters immediately. These two variations of SSL listen on two distinct ports. If you get these cross up, you'll get the above error log. In my experiments: SSL client -> TLS server port: Aborted login (no auth attempts) TLS client -> SSL server port: client hangs, Disconnected: Inactivity (no auth attempts in 180 secs) SSL/TLS + clear-text password is secure. If you do not use SSL/TLS, you'll have to use CRAM-MD5 or some challenge-response authentication to defeat password snooping. You could use both, but that's overkill. Joseph Tam From nmilas at noa.gr Thu Mar 27 22:17:28 2014 From: nmilas at noa.gr (Nikolaos Milas) Date: Fri, 28 Mar 2014 00:17:28 +0200 Subject: [Dovecot] Dovecot Replication setup In-Reply-To: <5332BA61.3040800@noa.gr> References: <5332BA61.3040800@noa.gr> Message-ID: <5334A378.3030800@noa.gr> On 26/3/2014 1:30 ??, Nikolaos Milas wrote: > I am trying to setup a master/master replication with dsync (according > to the first part of: http://wiki2.dovecot.org/Replication). > > ...I would like to ask/confirm whether the indicated setup is required > on *both*servers participating in the master/master replication. Anyone? If users are going to be able to access any of the two masters directly, and changes will therefore need to propagate on both directions (depending on the point of access), do we need to configure both servers for replication (as above), or doing so will end up in an undesired loop? Please clarify. Thanks, Nick From skdovecot at smail.inf.fh-brs.de Fri Mar 28 07:51:13 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 28 Mar 2014 08:51:13 +0100 (CET) Subject: [Dovecot] Authentication woes, passwd standard install In-Reply-To: <1395842883385-47265.post@n4.nabble.com> References: <1395842883385-47265.post@n4.nabble.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 26 Mar 2014, medicineme wrote: > I have two users working fine. Tried to add a third and it refuses to accept > log on details. > > I've stripped everything back to default config, and still only the first > two users are accepted! Can't understand it and it's driving me crazy. I've > deleted and created the user a thousand times, and opened the config up as > wide as possible. I'm obviously doing something stupid but what! if just the third won't work, something must be wrong with it. What does the log says, when the user logs in? Did you tested the account without client setup via telnet: telnet localhost 143 1 login 3rd_user "password" 2 logout You are using pam, what does /var/log/auth [or whereever PAM logs to] says? Did you've enabled mail_debug and auth_debug for testing? > # OS: Linux 3.2.0-4-686-pae i686 Debian 7.2 Doesn't look like you've used doveconf -n to dump the config, what version of Dovecot are you using? > auth_mechanisms = plain login digest-md5 rpa > base_dir = /var/run/dovecot/ > disable_plaintext_auth = no > login_trusted_networks = 10.0.0.0/8 > passdb { > driver = pam > } > protocols = imap > service auth { > user = root > } > ssl_cert = ssl_key = userdb { > driver = passwd > } > > > > > -- > View this message in context: http://dovecot.2317879.n4.nabble.com/Authentication-woes-passwd-standard-install-tp47265.html > Sent from the Dovecot mailing list archive at Nabble.com. > - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUzUp8nD1/YhP6VMHAQJIlggAiOcaI57NsjvKz8sCseXKWcTsRn8Gyd9G AldyFIg2QcP6++Vb27W5MXfXBmkKvtaKyv7DPr6eU+WBLw7b6J/PW+LcP0rZ3PwA 8ftjmfjK0iifLPYLevcd2+79q6Z/YiHXSZW49EFMQwafDds9WbxZG6INKu2/jqBm ad6kFkBIl/Px5KJgGf3vO7cqGsa72tImkXJr7QZw6UvxISe3OXBZw7CbbIeuGi6p 6ENDeZjmctkylUsjx7bj26BLKjTFevb97mjbTz9IGxNOqgWUcJvVfXJ1OKY77UR+ N1j36EOGrQ9nq2vr6+E19rIv28IWwQf7EN9KoEvxvCbvh5/J7Pm1Eg== =h6QH -----END PGP SIGNATURE----- From skdovecot at smail.inf.fh-brs.de Fri Mar 28 07:52:11 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 28 Mar 2014 08:52:11 +0100 (CET) Subject: [Dovecot] Help connecting from remote client (no auth attempts In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 27 Mar 2014, Joseph Tam wrote: > Blake McBride writes: > >> Thanks. The current version of Thunderbird auto-detects connection >> parameters - presumably by trying every combination. All I give is an >> email address and a password. They also have a manual configuration that I >> spent a lot of time with. I was never able to do any better than their >> auto-config. > > That's usually the cause of many problems I see with log entries like yours. > It could happen when client and server disagree on using STARTTLS or SSL, > so hardwiring your client to use whatever your server supports stops the > client from fumbling around (and getting it wrong). I have to agree, that automagic stuff fails often. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUzUqK3D1/YhP6VMHAQK6TwgAhFNC2Whe3zI2ElvH58bpVQaS7yw+BsG8 fgTk9RVdbujBfvTl/mEbRWrSz7pfxgxk8P3GufCvOy5Jmasny6RB1bScXQgRMJ1k MVLvypwW9y/nFn4WELm0CWvwzxMvCIl69vA9Bc+xSyRrbW68iVDxYlrFvf1j95xQ v/zaHPIRiPHIo7ZUpKg94BAtw/e5uXj/xxjj7/hcWyf4ylHv8NfIMPliIfs1y0Xm jLoiWx23lrT6HYs76P5MOgnAhTJF6FKOHuJ1Z9qr5KdhwTeIOSdh0Lv/k/zSAI/k LFP8sH6WAckTilJ8yzR/eM4O5j8hb2uAzn+nj5dmEEoZjvP53h4TVQ== =a4fs -----END PGP SIGNATURE----- From bind at enas.net Fri Mar 28 08:04:00 2014 From: bind at enas.net (Urban Loesch) Date: Fri, 28 Mar 2014 09:04:00 +0100 Subject: [Dovecot] Crash in pop3 with version 2.2.12 Message-ID: <53352CF0.5000404@enas.net> Hi, today I upgraded to version 2.2.12 under Debian Squeeze. I saw some people on the list they had the same problems with version 2.2.11, but which should have been fixed in version 2.2.12. My logfile shows: .. Mar 28 08:25:01 mailstore dovecot: pop3-login: Login: user=
    , method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=34568, secured, session= Mar 28 08:25:06 mailstore dovecot: pop3(ul at domain.net pid:34568 session:): Fatal: master: service(pop3): child 34568 killed with signal 11 (core dumped) ... I made some more dubugging and I found that the pop3 process crashed on the "uidl" command. Here my output from telnet session: .. root at mailstore: # telnet localhost 110 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. +OK Dovecot ready. user ul at domain.net +OK pass PASS +OK Logged in. list +OK 5 messages: 1 3492 2 21924 3 3525 4 3472 5 3273 . uidl Connection closed by foreign host. ... Listing massages or retrieving messages works normally. Only on "uidl" command the services crashes. I made a backtrace. -----> start backtrace <----- Core was generated by `dovecot/pop3'. Program terminated with signal 11, Segmentation fault. #0 0x00007f9dd8ca488d in vfprintf () from /lib/libc.so.6 (gdb) bt full #0 0x00007f9dd8ca488d in vfprintf () from /lib/libc.so.6 No symbol table info available. #1 0x00007f9dd8cc6732 in vsnprintf () from /lib/libc.so.6 No symbol table info available. #2 0x00007f9dd904d0db in str_vprintfa (str=0x11aa4f8, fmt=0x409184 "%u %s", args=0x7ffffab4fff0) at str.c:155 args2 = {{gp_offset = 16, fp_offset = 48, overflow_arg_area = 0x7ffffab500e0, reg_save_area = 0x7ffffab50010}} init_size = 4231558 pos = 0 ret = ret2 = __FUNCTION__ = "str_vprintfa" #3 0x00000000004055ff in client_send_line (client=0x11d1e50, fmt=) at pop3-client.c:678 str = 0x11aa4f8 _data_stack_cur_id = 4 va = {{gp_offset = 32, fp_offset = 48, overflow_arg_area = 0x7ffffab500e0, reg_save_area = 0x7ffffab50010}} ret = __FUNCTION__ = "client_send_line" #4 0x00000000004073cd in list_uidls_saved_iter (client=0x11d1e50, ctx=0x11da3c0) at pop3-commands.c:666 found = true #5 list_uids_iter (client=0x11d1e50, ctx=0x11da3c0) at pop3-commands.c:693 str = permanent_uidl = found = failed = #6 0x0000000000407d88 in cmd_uidl (client=0x11d1e50, name=, args=0x408880 "") at pop3-commands.c:874 ctx = 0x0 seq = #7 client_command_execute (client=0x11d1e50, name=, args=0x408880 "") at pop3-commands.c:938 No locals. #8 0x0000000000405870 in client_handle_input (client=0x11d1e50) at pop3-client.c:739 _data_stack_cur_id = 3 line = args = 0x408880 "" ret = #9 0x00007f9dd903c3d6 in io_loop_call_io (io=0x11d2760) at ioloop.c:388 ioloop = 0x11b2740 t_id = 2 #10 0x00007f9dd903d45f in io_loop_handler_run (ioloop=) at ioloop-epoll.c:220 ctx = 0x11b2aa0 event = 0x11b3900 list = 0x11b44d0 io = 0x51 tv = {tv_sec = 9, tv_usec = 999326} msecs = ret = 1 i = 0 call = false __FUNCTION__ = "io_loop_handler_run" #11 0x00007f9dd903c348 in io_loop_run (ioloop=0x11b2740) at ioloop.c:412 __FUNCTION__ = "io_loop_run" #12 0x00007f9dd8fea953 in master_service_run (service=0x11b25d0, callback=0x409186) at master-service.c:566 No locals. #13 0x0000000000404ac7 in main (argc=1, argv=0x11b2390) at main.c:277 set_roots = {0x4094e0, 0x0} login_set = {auth_socket_path = 0x11aa050 "/var/run/dovecot/auth-master", postlogin_socket_path = 0x0, postlogin_timeout_secs = 60, callback = 0x404ca0 , failure_callback = 0x404c50 , request_auth_token = 0} service_flags = storage_service_flags = MAIL_STORAGE_SERVICE_FLAG_DISALLOW_ROOT username = 0x0 c = (gdb) quit -----> end backtrace <----- And at least my pop3 configuration part: -----> start config <----- protocol pop3 { mail_plugins = " quota mail_log notify acl zlib stats" pop3_client_workarounds = outlook-no-nuls oe-ns-eoh pop3_lock_session = yes pop3_logout_format = bytes_sent=%o top=%t/%p, retr=%r/%b, del=%d/%m, size=%s uidl_hash=%u session=<%{session}> pop3_reuse_xuidl = yes } -----> end config <----- Setting "pop3_reuse_xuidl = no" has noe effect. Always the same crash. Thanks and regards Urban Loesch From nmilas at noa.gr Fri Mar 28 09:58:22 2014 From: nmilas at noa.gr (Nikolaos Milas) Date: Fri, 28 Mar 2014 11:58:22 +0200 Subject: [Dovecot] dsync replication questions Message-ID: <533547BE.8080003@noa.gr> I am running two servers with Dovecot v2.2.12 on CentOS x86_64 (5.10 and 6.5 respectively) and users are virtual over ldap. I have setup our main internal server (vmail.example.com) with dsync replication according to the first part of http://wiki2.dovecot.org/Replication. The second one (vmail1.example.com) will be the failover server which we want to be a real-time mirror (but can be manipulated directly and it should propagate changes back to vmail.example.com). When I started the server (vmail.example.com), mirroring started and completed fine (after a few hours). However, since then, I am not seeing a continued mirroring between the two. I would expect changes to one of the masters to be propagated in real time to the other - which does not happen. If I manually run (on vmail.example.com): dsync -u imaptester mirror ssh -l root vmail1.example.com dsync -u imaptester then these two accounts are synced. Question 1: Shouldn't mirroring continue automatically in real time (having configured it as in the first part of http://wiki2.dovecot.org/Replication)? If not, what should I do to enable such a real-time (or near-real-time) sync? Note that I have not configured "replication_dsync_parameters" as noted at the above page. Question 2: Where can I find documentation about "replication_dsync_parameters" and about "the doveadm sync command" (referred to at the same page)? I have not been able to locate such a documentation/wiki page. Question 2a: What do options "-d -N -l 30 -U" signify in "replication_dsync_parameters = -d -N -l 30 -U"? Thanks, Nick From spyros.tsiolis at hotmail.com Fri Mar 28 09:58:45 2014 From: spyros.tsiolis at hotmail.com (Spyros Tsiolis) Date: Fri, 28 Mar 2014 09:58:45 +0000 Subject: [Dovecot] struggling with dovecot v2.2 Message-ID: Hello all, Long time, no write :-) I am building a spanking, wonderful new mail server. I am very excited about this, since I am going to use the new dovecot v2.2.12 !! However, last time I did this (and documented it), I was working with v1.2. I consulted my notes and it seems there are huge differences between v1.2 and v2.2. So my question is, would anyone know if there's a "quick start" guide for v2.2 ? tia, s. From nmilas at noa.gr Fri Mar 28 10:23:15 2014 From: nmilas at noa.gr (Nikolaos Milas) Date: Fri, 28 Mar 2014 12:23:15 +0200 Subject: [Dovecot] struggling with dovecot v2.2 In-Reply-To: References: Message-ID: <53354D93.9030207@noa.gr> On 28/3/2014 11:58 ??, Spyros Tsiolis wrote: > So my question is, would anyone know if there's a "quick start" > guide for v2.2 ? How about: * http://wiki2.dovecot.org/Upgrading/2.0 * http://wiki2.dovecot.org/BasicConfiguration ...? Cheers, Nick From azurit at pobox.sk Fri Mar 28 10:30:33 2014 From: azurit at pobox.sk (azurIt) Date: Fri, 28 Mar 2014 11:30:33 +0100 Subject: [Dovecot] =?utf-8?q?How_are_messages_send_by_sieve?= Message-ID: <20140328113033.6C1FDCAF@pobox.sk> Hi, i would like to ask how _exactly_ are messages send using sieve filters, for example vacation responses. Which SMTP server is used? Where can i find log files? How should i debug delivery problems? Thank you. azur From skdovecot at smail.inf.fh-brs.de Fri Mar 28 10:49:00 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Fri, 28 Mar 2014 11:49:00 +0100 (CET) Subject: [Dovecot] How are messages send by sieve In-Reply-To: <20140328113033.6C1FDCAF@pobox.sk> References: <20140328113033.6C1FDCAF@pobox.sk> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 28 Mar 2014, azurIt wrote: > i would like to ask how _exactly_ are messages send using sieve filters, Check out the sources :-) Check out 15-lda.conf, too: # Binary to use for sending mails. #sendmail_path = /usr/sbin/sendmail # If non-empty, send mails via this SMTP host[:port] instead of sendmail. #submission_host = > for example vacation responses. Which SMTP server is used? Where can i > find log files? How should i debug delivery problems? Thank you. the log files are located at the same place where the compiled sieve script is located. - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUzVTnXD1/YhP6VMHAQLXnAf8CmdPk/UCFIALmtlChpCv/nLU91JEPGq7 R26ReaV3K1n78XJoKxcVA9RUYhBhZ+KdHQS7YlBgz7nmmwxlwSV8bZikBQ+JcZn8 sOewujXo1DStVC6DmMaI7KJv5iPlvepBj1ntq1tvbU13chFe6pi9+uhv0wF4JtJ4 LvKRov/2e/Lw5BZq9W3HHzXqJEQrHENoT2mMbJvUapBriMkwGbtbQIEYmoNGro0Z RrxAAevTxI7zMQ9+watvbuOYSg0sivyMozCRoSu1iDEYiTu5XuNsjlWNetpPVWB3 HFyNfUsdU0zsH1362ZT0RqtjVcA8XJJjZDFN4isXktyq9ONg7MlwRg== =MXHV -----END PGP SIGNATURE----- From alanm at sics.se Fri Mar 28 11:22:17 2014 From: alanm at sics.se (Alan McGinlay) Date: Fri, 28 Mar 2014 12:22:17 +0100 Subject: [Dovecot] Panic: file ostream-lzma.c: line 147: unreached. Dovecot 2.2.12 with zlib/XZ compression Message-ID: <2c23b410e3d24f3ba1e126cf05de5bcd@sics.se> While migrating users from Cyrus IMAP v2.3.14 to Dovecot 2.2.12 (compiled from source) dsync aborts with a backtrace on some (maybe 15 out of 800) mail accounts: (same error happens wiht or without -f flag) dsync -D -v -o mail_fsync=never mirror -f -R -u user at domain imapc: dsync(user at domain.com): Debug: brain M: in state=sync_mails dsync(user at domain.com): Debug: brain M: in box 'Privat/Jerry' recv_state=mails send_state=done dsync(user at domain.com): Debug: brain M: import mail uid 55 guid dsync(user at domain.com): Debug: brain M: Import Privat/Jerry: Import mail body for GUID= UID=55 dsync(user at domain.com): Panic: file ostream-lzma.c: line 147: unreached dsync(user at domain.com): Error: Raw backtrace: /usr/local/lib/dovecot/libdovecot.so.0(+0x68d4f) [0x7fb79ac26d4f] -> /usr/local/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x2a) [0x7fb79ac26e2a] -> /usr/local/lib/dovecot/libdovecot.so.0(i_fatal+0) [0x7fb79abe03b9] -> /usr/local/lib/dovecot/lib20_zlib_plugin.so(+0x5ca7) [0x7fb799fd0ca7] -> /usr/local/lib/dovecot/libdovecot.so.0(o_stream_flush+0x4d) [0x7fb79ac4039d] -> /usr/local/lib/dovecot/libdovecot.so.0(o_stream_nflush+0xf) [0x7fb79ac4085f] -> /usr/local/lib/dovecot/libdovecot.so.0(o_stream_nfinish+0x9) [0x7fb79ac408a9] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(maildir_save_finish+0x2b1) [0x7fb79aedb771] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_save_finish+0x64) [0x7fb79af0ed44] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_storage_copy+0xa2) [0x7fb79af06c72] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(maildir_copy+0x51) [0x7fb79aed7b81] -> /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_copy+0x5e) [0x7fb79af0eeae] -> dsync() [0x430dc2] -> dsync(dsync_brain_sync_mails+0x276) [0x42f256] -> dsync(dsync_brain_run+0x353) [0x42b8c3] -> dsync() [0x4296b2] -> dsync() [0x411dc7] -> dsync(doveadm_mail_try_run+0x260) [0x412a90] -> dsync(main+0x3f0) [0x4119b0] -> /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xed) [0x7fb79a81f76d] -> dsync() [0x411bad] Aborted I tried reconstructing the users mailbox on the cyrus server but it made no difference to the sync Dovecot compiled with: ./configure --with-ssl --with-mysql --with-solr --with-zlib --with-bzlib --with-libcap --with-lzma --with-ldap --with-pam As you can see, I have made very few configuration changes to get this far: # 2.2.12: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 3.2.0-60-virtual x86_64 Ubuntu 12.04.4 LTS xfs imapc_features = rfc822.size fetch-headers imapc_host = oldmail.domain.com imapc_master_user = imapc_password = imapc_user = %u mail_gid = vmail mail_location = maildir:/var/vmail/domains/%d/%1n/%n/Maildir mail_plugins = zlib mail_prefetch_count = 50 mail_uid = vmail mailbox_list_index = yes namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = separator = / } passdb { args = /etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { zlib_save = xz zlib_save_level = 6 } service auth-worker { user = $default_internal_user } ssl_cert = ssl_key = userdb { driver = prefetch } userdb { args = /etc/dovecot/dovecot-ldap.conf.ext driver = ldap } I have looked at the source code referenced in the error and my limited knowledge got me looking for LZMA compress error codes but I couldn't find anything really :( Please help! From rs at sys4.de Fri Mar 28 11:28:05 2014 From: rs at sys4.de (Robert Schetterer) Date: Fri, 28 Mar 2014 12:28:05 +0100 Subject: [Dovecot] Panic: file ostream-lzma.c: line 147: unreached. Dovecot 2.2.12 with zlib/XZ compression In-Reply-To: <2c23b410e3d24f3ba1e126cf05de5bcd@sics.se> References: <2c23b410e3d24f3ba1e126cf05de5bcd@sics.se> Message-ID: <53355CC5.2030905@sys4.de> Am 28.03.2014 12:22, schrieb Alan McGinlay: > While migrating users from Cyrus IMAP v2.3.14 to Dovecot 2.2.12 are you on latest patchlevel ? see http://hg.dovecot.org/dovecot-2.2/ there are some dsync fixes since 2.2.12 > (compiled from source) dsync aborts with a backtrace on some (maybe 15 > out of 800) mail accounts: > > (same error happens wiht or without -f flag) > > dsync -D -v -o mail_fsync=never mirror -f -R -u user at domain imapc: > > > dsync(user at domain.com): Debug: brain M: in state=sync_mails > dsync(user at domain.com): Debug: brain M: in box 'Privat/Jerry' > recv_state=mails send_state=done > dsync(user at domain.com): Debug: brain M: import mail uid 55 guid > dsync(user at domain.com): Debug: brain M: Import Privat/Jerry: Import mail > body for GUID= UID=55 > dsync(user at domain.com): Panic: file ostream-lzma.c: line 147: unreached > dsync(user at domain.com): Error: Raw backtrace: > /usr/local/lib/dovecot/libdovecot.so.0(+0x68d4f) [0x7fb79ac26d4f] -> > /usr/local/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x2a) > [0x7fb79ac26e2a] -> /usr/local/lib/dovecot/libdovecot.so.0(i_fatal+0) > [0x7fb79abe03b9] -> /usr/local/lib/dovecot/lib20_zlib_plugin.so(+0x5ca7) > [0x7fb799fd0ca7] -> > /usr/local/lib/dovecot/libdovecot.so.0(o_stream_flush+0x4d) > [0x7fb79ac4039d] -> > /usr/local/lib/dovecot/libdovecot.so.0(o_stream_nflush+0xf) > [0x7fb79ac4085f] -> > /usr/local/lib/dovecot/libdovecot.so.0(o_stream_nfinish+0x9) > [0x7fb79ac408a9] -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(maildir_save_finish+0x2b1) [0x7fb79aedb771] > -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_save_finish+0x64) > [0x7fb79af0ed44] -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_storage_copy+0xa2) > [0x7fb79af06c72] -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(maildir_copy+0x51) > [0x7fb79aed7b81] -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_copy+0x5e) > [0x7fb79af0eeae] -> dsync() [0x430dc2] -> > dsync(dsync_brain_sync_mails+0x276) [0x42f256] -> > dsync(dsync_brain_run+0x353) [0x42b8c3] -> dsync() [0x4296b2] -> dsync() > [0x411dc7] -> dsync(doveadm_mail_try_run+0x260) [0x412a90] -> > dsync(main+0x3f0) [0x4119b0] -> > /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xed) [0x7fb79a81f76d] > -> dsync() [0x411bad] > Aborted > > I tried reconstructing the users mailbox on the cyrus server but it made > no difference to the sync > > Dovecot compiled with: > > ./configure --with-ssl --with-mysql --with-solr --with-zlib --with-bzlib > --with-libcap --with-lzma --with-ldap --with-pam > > As you can see, I have made very few configuration changes to get this far: > > # 2.2.12: /usr/local/etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-60-virtual x86_64 Ubuntu 12.04.4 LTS xfs > imapc_features = rfc822.size fetch-headers > imapc_host = oldmail.domain.com > imapc_master_user = > imapc_password = > imapc_user = %u > mail_gid = vmail > mail_location = maildir:/var/vmail/domains/%d/%1n/%n/Maildir > mail_plugins = zlib > mail_prefetch_count = 50 > mail_uid = vmail > mailbox_list_index = yes > namespace inbox { > inbox = yes > location = > mailbox Drafts { > special_use = \Drafts > } > mailbox Junk { > special_use = \Junk > } > mailbox Sent { > special_use = \Sent > } > mailbox "Sent Messages" { > special_use = \Sent > } > mailbox Trash { > special_use = \Trash > } > prefix = > separator = / > } > passdb { > args = /etc/dovecot/dovecot-ldap.conf.ext > driver = ldap > } > plugin { > zlib_save = xz > zlib_save_level = 6 > } > service auth-worker { > user = $default_internal_user > } > ssl_cert = > ssl_key = > userdb { > driver = prefetch > } > userdb { > args = /etc/dovecot/dovecot-ldap.conf.ext > driver = ldap > } > > I have looked at the source code referenced in the error and my limited > knowledge got me looking for LZMA compress error codes but I couldn't > find anything really :( > > Please help! Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein From alanm at sics.se Fri Mar 28 12:14:57 2014 From: alanm at sics.se (Alan McGinlay) Date: Fri, 28 Mar 2014 13:14:57 +0100 Subject: [Dovecot] Panic: file ostream-lzma.c: line 147: unreached. Dovecot 2.2.12 with zlib/XZ compression In-Reply-To: <53355CC5.2030905@sys4.de> References: <2c23b410e3d24f3ba1e126cf05de5bcd@sics.se> <53355CC5.2030905@sys4.de> Message-ID: <50f25cb28b06e27455535af80180969a@sics.se> On 2014-03-28 12:28, Robert Schetterer wrote: > Am 28.03.2014 12:22, schrieb Alan McGinlay: > While migrating users from Cyrus IMAP v2.3.14 to Dovecot 2.2.12 > > are you on latest patchlevel ? I used this link: http://www.dovecot.org/releases/2.2/dovecot-2.2.12.tar.gz. Don't really want to run absolute bleeding edge code, I assume you meant the nightly releases? Thanks > > see > > http://hg.dovecot.org/dovecot-2.2/ > > there are some dsync fixes since 2.2.12 > > > (compiled from source) dsync aborts with a backtrace on some (maybe 15 > out of 800) mail accounts: > > (same error happens wiht or without -f flag) > > dsync -D -v -o mail_fsync=never mirror -f -R -u user at domain imapc: > > > dsync(user at domain.com): Debug: brain M: in state=sync_mails > dsync(user at domain.com): Debug: brain M: in box 'Privat/Jerry' > recv_state=mails send_state=done > dsync(user at domain.com): Debug: brain M: import mail uid 55 guid > dsync(user at domain.com): Debug: brain M: Import Privat/Jerry: Import > mail > body for GUID= UID=55 > dsync(user at domain.com): Panic: file ostream-lzma.c: line 147: > unreached > dsync(user at domain.com): Error: Raw backtrace: > /usr/local/lib/dovecot/libdovecot.so.0(+0x68d4f) [0x7fb79ac26d4f] -> > /usr/local/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x2a) > [0x7fb79ac26e2a] -> /usr/local/lib/dovecot/libdovecot.so.0(i_fatal+0) > [0x7fb79abe03b9] -> > /usr/local/lib/dovecot/lib20_zlib_plugin.so(+0x5ca7) > [0x7fb799fd0ca7] -> > /usr/local/lib/dovecot/libdovecot.so.0(o_stream_flush+0x4d) > [0x7fb79ac4039d] -> > /usr/local/lib/dovecot/libdovecot.so.0(o_stream_nflush+0xf) > [0x7fb79ac4085f] -> > /usr/local/lib/dovecot/libdovecot.so.0(o_stream_nfinish+0x9) > [0x7fb79ac408a9] -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(maildir_save_finish+0x2b1) > [0x7fb79aedb771] > -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_save_finish+0x64) > [0x7fb79af0ed44] -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(mail_storage_copy+0xa2) > [0x7fb79af06c72] -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(maildir_copy+0x51) > [0x7fb79aed7b81] -> > /usr/local/lib/dovecot/libdovecot-storage.so.0(mailbox_copy+0x5e) > [0x7fb79af0eeae] -> dsync() [0x430dc2] -> > dsync(dsync_brain_sync_mails+0x276) [0x42f256] -> > dsync(dsync_brain_run+0x353) [0x42b8c3] -> dsync() [0x4296b2] -> > dsync() > [0x411dc7] -> dsync(doveadm_mail_try_run+0x260) [0x412a90] -> > dsync(main+0x3f0) [0x4119b0] -> > /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xed) > [0x7fb79a81f76d] > -> dsync() [0x411bad] > Aborted > > I tried reconstructing the users mailbox on the cyrus server but it > made > no difference to the sync > > Dovecot compiled with: > > ./configure --with-ssl --with-mysql --with-solr --with-zlib > --with-bzlib > --with-libcap --with-lzma --with-ldap --with-pam > > As you can see, I have made very few configuration changes to get this > far: > > # 2.2.12: /usr/local/etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-60-virtual x86_64 Ubuntu 12.04.4 LTS xfs > imapc_features = rfc822.size fetch-headers > imapc_host = oldmail.domain.com > imapc_master_user = > imapc_password = > imapc_user = %u > mail_gid = vmail > mail_location = maildir:/var/vmail/domains/%d/%1n/%n/Maildir > mail_plugins = zlib > mail_prefetch_count = 50 > mail_uid = vmail > mailbox_list_index = yes > namespace inbox { > inbox = yes > location = > mailbox Drafts { > special_use = \Drafts > } > mailbox Junk { > special_use = \Junk > } > mailbox Sent { > special_use = \Sent > } > mailbox "Sent Messages" { > special_use = \Sent > } > mailbox Trash { > special_use = \Trash > } > prefix = > separator = / > } > passdb { > args = /etc/dovecot/dovecot-ldap.conf.ext > driver = ldap > } > plugin { > zlib_save = xz > zlib_save_level = 6 > } > service auth-worker { > user = $default_internal_user > } > ssl_cert = > ssl_key = > userdb { > driver = prefetch > } > userdb { > args = /etc/dovecot/dovecot-ldap.conf.ext > driver = ldap > } > > I have looked at the source code referenced in the error and my > limited > knowledge got me looking for LZMA compress error codes but I couldn't > find anything really :( > > Please help! From alanm at sics.se Fri Mar 28 13:45:05 2014 From: alanm at sics.se (Alan McGinlay) Date: Fri, 28 Mar 2014 14:45:05 +0100 Subject: [Dovecot] basic dsync wrapper for migration from another server Message-ID: Hi, I cobbled together this somewhat shoddy Bash script to migrate email accounts from our Cyrus server to a new dovecot system. Feel free to use, or laugh at it as you wish :) #!/bin/bash ## # Migrate email accounts via IMAP from one server to another ## trap "kill 0" SIGINT workdir=/root/migrate # Load list of users into array. The file "migration_map" should contain one user at domain.tld per line. mapfile userList < $workdir/migration_map # Number of symultanious migrations num=10 index=0 # Loop over the array of user accounts function process_userlist { procs=$(ps aux | grep "dsync" | grep -v "grep" | wc -l) # Perform $num operations at a time for the length of the userList while [[ $procs -lt $num ]] && [[ ${#userList[@]} -gt $index ]]; do procs=$(ps aux | grep "dsync" | grep -v "grep" | wc -l) dsync -o mail_fsync=never mirror -f -R -u ${userList[$index]} imapc:& echo "procs: $procs user: ${userList[$index]} index: $index" let index++ done } # Until the userList is empty, keep going until [ ${#userList[@]} -eq $index ]; do process_userlist done exit 0 From alanm at sics.se Fri Mar 28 13:46:14 2014 From: alanm at sics.se (Alan McGinlay) Date: Fri, 28 Mar 2014 14:46:14 +0100 Subject: [Dovecot] Panic: file ostream-lzma.c: line 147: unreached. Dovecot 2.2.12 with zlib/XZ compression In-Reply-To: <50f25cb28b06e27455535af80180969a@sics.se> References: <2c23b410e3d24f3ba1e126cf05de5bcd@sics.se> <53355CC5.2030905@sys4.de> <50f25cb28b06e27455535af80180969a@sics.se> Message-ID: <8f6f0843280566a0e78aa8a27310398c@sics.se> On 2014-03-28 13:14, Alan McGinlay wrote: > On 2014-03-28 12:28, Robert Schetterer wrote: > Am 28.03.2014 12:22, schrieb Alan McGinlay: > While migrating users from Cyrus IMAP v2.3.14 to Dovecot 2.2.12 > > are you on latest patchlevel ? > > I used this link: > http://www.dovecot.org/releases/2.2/dovecot-2.2.12.tar.gz. Don't > really want to run absolute bleeding edge code, I assume you meant the > nightly releases? > > Thanks > > > see > > http://hg.dovecot.org/dovecot-2.2/ > > there are some dsync fixes since 2.2.12 I changed to bz2 instead of xz and it works now. Thanks for the help! From teemu.huovila at dovecot.fi Fri Mar 28 14:03:42 2014 From: teemu.huovila at dovecot.fi (Teemu Huovila) Date: Fri, 28 Mar 2014 16:03:42 +0200 Subject: [Dovecot] Crash in pop3 with version 2.2.12 In-Reply-To: <53352CF0.5000404@enas.net> References: <53352CF0.5000404@enas.net> Message-ID: <5335813E.6030501@dovecot.fi> Thats my bad. This commit should fix it http://hg.dovecot.org/dovecot-2.2/rev/b0359910ec96. Thanks for reporting it. Teemu Huovila From bind at enas.net Fri Mar 28 16:12:57 2014 From: bind at enas.net (Urban Loesch) Date: Fri, 28 Mar 2014 17:12:57 +0100 Subject: [Dovecot] Crash in pop3 with version 2.2.12 In-Reply-To: <5335813E.6030501@dovecot.fi> References: <53352CF0.5000404@enas.net> <5335813E.6030501@dovecot.fi> Message-ID: <53359F89.6080400@enas.net> Hi, thanks for your fast help. Now pop3 works again without error. Thanks Urban Am 28.03.2014 15:03, schrieb Teemu Huovila: > Thats my bad. This commit should fix it http://hg.dovecot.org/dovecot-2.2/rev/b0359910ec96. Thanks for reporting it. > > Teemu Huovila > From bourek at thinline.cz Fri Mar 28 16:38:43 2014 From: bourek at thinline.cz (Jiri Bourek) Date: Fri, 28 Mar 2014 17:38:43 +0100 Subject: [Dovecot] Deduplicate not processing all messages - bug? Message-ID: <5335A593.5080305@thinline.cz> Hello, I'm trying to create automated backup recovery using "doveadm import" and "doveadm deduplicate". During testing I noticed that deduplicate only deletes some duplicates and has to be called multiple times to find them all. Here's what I've been trying (in shell commands): First, expunge inbox (the end result is the same even if you delete only some messages): # doveadm expunge -u test mailbox inbox all # ls /home/mailboxes/test/cur | wc -l 0 Then import data from backup - twice, so duplicates are created (again, if you don't delete all messages and call import only once, resulting behaviour is the same.) # doveadm import -u test maildir:/home/test "" mailbox INBOX # doveadm import -u test maildir:/home/test "" mailbox INBOX # ls /home/mailboxes/test/cur | wc -l 1046 Then try to deduplicate # doveadm deduplicate -u test mailbox INBOX # ls /home/mailboxes/test/cur | wc -l 1040 And again # doveadm deduplicate -u test mailbox INBOX # ls /home/mailboxes/test/cur | wc -l 1029 And so on until the message count holds on 523 Each repetition removes 10 - 30 duplicates so eventually all duplicates are removed if "doveadm deduplicate" is called enough times in a row. I also noticed that when I repeat the test, import the backup again and call deduplicate, the steps - how many messages are removed at one time - are the same. That is I start with 1046 messages in the mailbox, after first run there's 1040, then 1029 and so on. My guess would be the behaviour depends on what is stored in the mailbox, but that's pretty much all I can figure out on my own at this time. My question is - is this intended behaviour, ie. are you supposed to run doveadm deduplicate as long as the number of messages in the mailbox keeps changing? Or is it a bug? Tried to Google for the answer but no luck, so thanks for any answers. Tested on Dovecot version 2.2.9 and 2.2.12 (both from Debian repositories.) From frank at moltke28.B.Shuttle.DE Fri Mar 28 16:41:24 2014 From: frank at moltke28.B.Shuttle.DE (Frank Elsner) Date: Fri, 28 Mar 2014 17:41:24 +0100 Subject: [Dovecot] basic dsync wrapper for migration from another server In-Reply-To: References: Message-ID: <20140328174124.732780371cb2ce2f8979cf08@moltke28.B.Shuttle.DE> On Fri, 28 Mar 2014 14:45:05 +0100 Alan McGinlay wrote: > Hi, > > I cobbled together this somewhat shoddy Bash script to migrate email > accounts from our Cyrus server to a new dovecot system. Feel free to > use, or laugh at it as you wish :) I do want to rate your script but do you know http://www.cyrus2dovecot.sw.fu-berlin.de Kind regards, Frank -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From frank at moltke28.B.Shuttle.DE Fri Mar 28 16:42:32 2014 From: frank at moltke28.B.Shuttle.DE (Frank Elsner) Date: Fri, 28 Mar 2014 17:42:32 +0100 Subject: [Dovecot] basic dsync wrapper for migration from another server In-Reply-To: <20140328174124.732780371cb2ce2f8979cf08@moltke28.B.Shuttle.DE> References: <20140328174124.732780371cb2ce2f8979cf08@moltke28.B.Shuttle.DE> Message-ID: <20140328174232.24a24cecee11a56a1c3fd430@moltke28.B.Shuttle.DE> On Fri, 28 Mar 2014 17:41:24 +0100 Frank Elsner wrote: > On Fri, 28 Mar 2014 14:45:05 +0100 Alan McGinlay wrote: > > Hi, > > > > I cobbled together this somewhat shoddy Bash script to migrate email > > accounts from our Cyrus server to a new dovecot system. Feel free to > > use, or laugh at it as you wish :) > > I do want to rate your script but do you know ^ insert "not" here! --Frank -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From nmilas at noa.gr Fri Mar 28 20:40:23 2014 From: nmilas at noa.gr (Nikolaos Milas) Date: Fri, 28 Mar 2014 22:40:23 +0200 Subject: [Dovecot] dsync replication questions In-Reply-To: <533547BE.8080003@noa.gr> References: <533547BE.8080003@noa.gr> Message-ID: <5335DE37.2060304@noa.gr> On 28/3/2014 11:58 ??, Nikolaos Milas wrote: > When I started the server (vmail.example.com), mirroring started and > completed fine (after a few hours). > > However, since then, I am not seeing a continued mirroring between the > two. I would expect changes to one of the masters to be propagated in > real time to the other - which does not happen. > > If I manually run (on vmail.example.com): > > dsync -u imaptester mirror ssh -l root vmail1.example.com dsync -u > imaptester > > then these two accounts are synced. I am trying to figure out whether replication plugin is configured correctly (- I guess something is wrong). I have (in vmail.example.com dovecot.conf): dsync_remote_cmd = ssh -l root vmail1.example.com doveadm dsync-server -u%u plugin { mail_replica = remote:vmail at vmail1.example.com } The question here is, in: mail_replica = remote:vmail at vmail1.example.com the reference: "vmail@" refers to the virtual user under whom accounts live in the remote system (which I have assumed), or something else? Also, in the aggregator service, is there something wrong? service aggregator { fifo_listener replication-notify-fifo { user = vmail } unix_listener replication-notify { user = vmail } } Note that I am not using Director. Follows the whole configuration on the main master, for your reference (I've only changed the true domain name). Dovecot conf on the mirror server is exactly the same without the replication bits. Please advise. Thanks, Nick ====================================================================== # 2.2.12: dovecot.conf protocols = imap pop3 login_greeting = Org POP/IMAP Srv XAPITI XPICTOY mail_location = maildir:~/Maildir/ mail_gid = 500 mail_uid = 500 auth_mechanisms = plain login auth_username_format = %Lu auth_verbose = yes auth_debug = no disable_plaintext_auth = no mail_plugins = quota notify replication protocol imap { imap_client_workarounds = "delay-newmail" mail_plugins = quota imap_quota } protocol pop3 { mail_max_userip_connections = 3 mail_plugins = quota pop3_client_workarounds = outlook-no-nuls oe-ns-eoh pop3_uidl_format = %08Xu%08Xv } protocol lda { auth_socket_path = /var/run/dovecot/auth-master info_log_path = log_path = mail_plugins = quota postmaster_address = sysadmin at example.com sendmail_path = /usr/lib/sendmail } userdb { args = /etc/dovecot/dovecot-usrdb-ldap.conf driver = ldap } passdb { args = /etc/dovecot/dovecot-passdb-ldap.conf driver = ldap } dsync_remote_cmd = ssh -l root vmail1.example.com doveadm dsync-server -u%u plugin { mail_replica = remote:vmail at vmail1.example.com } plugin { quota = maildir:User quota quota_rule = *:storage=4G quota_rule2 = Trash:storage=+3%% quota_warning = storage=75%% quota-warning 75 %u quota_warning2 = storage=90%% quota-warning 90 %u } service quota-warning { executable = script /opt/mail1.sh user = vmail unix_listener quota-warning { user = vmail } } service aggregator { fifo_listener replication-notify-fifo { user = vmail } unix_listener replication-notify { user = vmail } } service replicator { unix_listener replicator-doveadm { mode = 0600 } } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { group = vmail mode = 0660 user = vmail } user = root } service imap-login { service_count = 1 vsz_limit = 64 M } service pop3-login { service_count = 1 vsz_limit = 64 M } service replicator { process_min_avail = 1 } ssl_ca = References: <53328A35.4000907@jcea.es> Message-ID: <53365B31.20201@jcea.es> On 26/03/14 09:05, Jesus Cea wrote: > I am using mdbox for dovecot storage. > > I wonder if I could skip "dovecot.index.cache" files and, in general, > "*.cache" files when doing mail backup. Those files are big and change > frequently. What I feel from reading documentation [1][2] is that they > could be dropped in the backups, to be recreated on the fly if needed. > > But I would like expert confirmation. > > [1] http://wiki2.dovecot.org/IndexFiles > [2] http://wiki2.dovecot.org/Design/Indexes/Cache 1. I stopped "dovecot". 2. I did a ZFS snapshot (play safe!), and disabled incoming messages. 3. I deleted ALL "dovecot.index.cache" (one per mailbox, I have about 500 mailboxes) without any apparent effect. 4. I started dovecot. 5. I moved around with apparently no side-effects. Cache are recreated, small size, growing as you download messages. I still would love an authoritative answer. -- Jes?s Cea Avi?n _/_/ _/_/_/ _/_/_/ jcea at jcea.es - http://www.jcea.es/ _/_/ _/_/ _/_/ _/_/ _/_/ Twitter: @jcea _/_/ _/_/ _/_/_/_/_/ jabber / xmpp:jcea at jabber.org _/_/ _/_/ _/_/ _/_/ _/_/ "Things are not so easy" _/_/ _/_/ _/_/ _/_/ _/_/ _/_/ "My name is Dump, Core Dump" _/_/_/ _/_/_/ _/_/ _/_/ "El amor es poner tu felicidad en la felicidad de otro" - Leibniz -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 538 bytes Desc: OpenPGP digital signature URL: From alanm at sics.se Sat Mar 29 11:48:29 2014 From: alanm at sics.se (Alan McGinlay) Date: Sat, 29 Mar 2014 12:48:29 +0100 Subject: [Dovecot] basic dsync wrapper for migration from another server In-Reply-To: <20140328174124.732780371cb2ce2f8979cf08@moltke28.B.Shuttle.DE> References: <20140328174124.732780371cb2ce2f8979cf08@moltke28.B.Shuttle.DE> Message-ID: <1ad0042c1c369f8d3fcfd5130f324409@sics.se> On 2014-03-28 17:41, Frank Elsner wrote: > On Fri, 28 Mar 2014 14:45:05 +0100 Alan McGinlay wrote: > Hi, > > I cobbled together this somewhat shoddy Bash script to migrate email > accounts from our Cyrus server to a new dovecot system. Feel free to > use, or laugh at it as you wish :) > > I do want to rate your script but do you know > http://www.cyrus2dovecot.sw.fu-berlin.de > > Kind regards, > Frank Hi! Thanks, yeah I tried that one. Had quite a lot of issues with it and have finally got a complete migration working with dsync so i'm happy :) From mihai at badici.ro Sat Mar 29 21:07:37 2014 From: mihai at badici.ro (Mihai Badici) Date: Sat, 29 Mar 2014 23:07:37 +0200 Subject: [Dovecot] still issues with metadata support Message-ID: <1538580.iCFukjetRg@arhivio> On dovecot 2.2.12 compiled from source I use ActiveSync with kolab-syncroton. When running a test i have this imap log: [29-Mar-2014 22:58:25 +0200]: [F658] S: A0004 OK Getmetadata completed. [29-Mar-2014 22:58:25 +0200]: [F658] C: A0005 SETMETADATA INBOX (/private/vendor/kolab/activesync "{\"DEVICE\":{\"601099122\":{\"ID\": \"a5daac4806642a1cfeceb53aea32e86218c4d512\",\"TYPE\": \"TestActiveSyncConnectivity\",\"ALIAS\":null}},\"FOLDER\":{\"601099122\": {\"S\":1}}}") [29-Mar-2014 22:58:26 +0200]: [F658] S: A0005 OK Setmetadata completed. [29-Mar-2014 22:58:26 +0200]: [F658] C: A0006 GETMETADATA "*" (/private/vendor/kolab/activesync) [29-Mar-2014 22:58:26 +0200]: [F658] S: A0006 NO Mailbox doesn't exist: * [29-Mar-2014 22:58:26 +0200]: [F658] C: A0007 GETMETADATA "*" (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) [29-Mar-2014 22:58:26 +0200]: [F658] S: A0007 NO Mailbox doesn't exist: * [29-Mar-2014 22:58:26 +0200]: [F658] C: A0008 GETMETADATA "*" (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) [29-Mar-2014 22:58:26 +0200]: [F658] S: A0008 NO Mailbox doesn't exist: * [29-Mar-2014 22:58:26 +0200]: [F658] C: A0009 GETMETADATA "*" (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) [29-Mar-2014 22:58:26 +0200]: [F658] S: A0009 NO Mailbox doesn't exist: * [29-Mar-2014 22:58:26 +0200]: [F658] C: A0010 GETMETADATA "*" (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) [29-Mar-2014 22:58:26 +0200]: [F658] S: A0010 NO Mailbox doesn't exist: * [29-Mar-2014 22:58:26 +0200]: [F658] C: A0011 GETMETADATA "*" (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) [29-Mar-2014 22:58:26 +0200]: [F658] S: A0011 NO Mailbox doesn't exist: * It looks like GETMETADATA "*" is still not expanded , even we have this part of code in cmd-getmetadata.c: else if (strchr(mailbox, '*') == NULL && strchr(mailbox, '%') == NULL) { ns = client_find_namespace(cmd, &mailbox); if (ns == NULL) return TRUE; return cmd_getmetadata_mailbox(ctx, ns, mailbox); } else { /* wildcards in mailbox name. this isn't supported by RFC 5464, but it was in the earlier drafts and is already used by some software (Horde). */ const char *patterns[2]; patterns[0] = mailbox; patterns[1] = NULL; -- Mihai B?dici http://mihai.badici.ro From dwain.blazej at gmail.com Sat Mar 29 21:51:15 2014 From: dwain.blazej at gmail.com (Dwain Blazej) Date: Sat, 29 Mar 2014 14:51:15 -0700 Subject: [Dovecot] [Bug] doveadm pw Fatal: open(/etc/dovecot/dovecot.conf) failed: Permission denied Message-ID: dovecot --version => 2.1.7 When I as a normal user the command: doveadm pw -s sha512-crypt -p example_password the command exit with return code 89 and the message doveconf: Fatal: open(/etc/dovecot/dovecot.conf) failed: Permission denied If I make Dovecot's configuration files world readable the error goes away. Please remove configuration file dependencies from "doveadm pw". From h.reindl at thelounge.net Sat Mar 29 22:06:17 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Sat, 29 Mar 2014 23:06:17 +0100 Subject: [Dovecot] [Bug] doveadm pw Fatal: open(/etc/dovecot/dovecot.conf) failed: Permission denied In-Reply-To: References: Message-ID: <533743D9.3010904@thelounge.net> Am 29.03.2014 22:51, schrieb Dwain Blazej: > dovecot --version => 2.1.7 > > When I as a normal user the command: > > doveadm pw -s sha512-crypt -p example_password > > the command exit with return code 89 and the message > > doveconf: Fatal: open(/etc/dovecot/dovecot.conf) failed: Permission denied > > If I make Dovecot's configuration files world readable the error goes away what about calling administrative commands not as normal user? > Please remove configuration file dependencies from "doveadm pw" and how is it supposed to work without the configuration? how do you come to the conclusion that a command called "doveadm" is supposed to be started as non-admin? -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From nmilas at noa.gr Sat Mar 29 22:23:36 2014 From: nmilas at noa.gr (Nikolaos Milas) Date: Sun, 30 Mar 2014 00:23:36 +0200 Subject: [Dovecot] dsync replication questions In-Reply-To: <5335DE37.2060304@noa.gr> References: <533547BE.8080003@noa.gr> <5335DE37.2060304@noa.gr> Message-ID: <533747E8.4060302@noa.gr> On 28/3/2014 10:40 ??, Nikolaos Milas wrote: > When I started the server (vmail.example.com), mirroring started and > completed fine (after a few hours). > > However, since then, I am not seeing a continued mirroring between the > two. I would expect changes to one of the masters to be propagated in > real time to the other - which does not happen. Hi, I found this older thread: http://comments.gmane.org/gmane.mail.imap.dovecot/69148 which provided the solution to my issues (I had to enable the replication plugin on pop3/imap/lda services). Things seem to be working fine now. I only wish dsync logging were a bit more verbose; I don't know how this can be done. If anyone knows, I would appreciate this info. Case closed for now. Best regards, Nick From gedalya at gedalya.net Sat Mar 29 22:55:57 2014 From: gedalya at gedalya.net (Gedalya) Date: Sat, 29 Mar 2014 18:55:57 -0400 Subject: [Dovecot] [Bug] doveadm pw Fatal: open(/etc/dovecot/dovecot.conf) failed: Permission denied In-Reply-To: <533743D9.3010904@thelounge.net> References: <533743D9.3010904@thelounge.net> Message-ID: <53374F7D.2020309@gedalya.net> On 03/29/2014 06:06 PM, Reindl Harald wrote: > > Am 29.03.2014 22:51, schrieb Dwain Blazej: >> dovecot --version => 2.1.7 >> >> When I as a normal user the command: >> >> doveadm pw -s sha512-crypt -p example_password >> >> the command exit with return code 89 and the message >> >> doveconf: Fatal: open(/etc/dovecot/dovecot.conf) failed: Permission denied >> >> If I make Dovecot's configuration files world readable the error goes away > what about calling administrative commands not as normal user? > >> Please remove configuration file dependencies from "doveadm pw" > and how is it supposed to work without the configuration? > > how do you come to the conclusion that a command called "doveadm" > is supposed to be started as non-admin? > > Not directly related (and I don't disagree), but this brings to my attention that doveadm seems to be missing a -c option to load an alternative config file. As for creating a password hash, just do it with a perl one-liner or something like that, see for example Crypt::Passwd::XS or Crypt::Password From nmilas at noa.gr Sun Mar 30 09:47:22 2014 From: nmilas at noa.gr (Nikolaos Milas) Date: Sun, 30 Mar 2014 12:47:22 +0300 Subject: [Dovecot] pop3 mailbox mirroring issues using dsync Message-ID: <5337E82A.1040001@noa.gr> Hello, I have setup v2.2.12 to mirror mailboxes between our main mail server (vmail.example.com) and a failover server (vmail1.example.com). The problem I have is the behavior of mailboxes used on the main server (*vmail*) over POP3. I have setup an IMAP account on the failover server (*vmail1*) on such a mailbox: the mailbox is used on vmail using POP3 and the same is monitored on vmail1 using IMAP. It's mailbox *userx*(in Maildir format). I notice that all mail coming in userx mailbox on vmail, is correctly replicated on vmail1, but when it is downloaded from vmail over POP3 (and the mailbox there remains empty), the same mailbox on vmail1 is not updated to be emptied (automatically) as well, but it is accumulating mail forever (which is real problem on the mirror server). Is there a setting to enable correct mirroring of a POP3 mailbox (to empty the respective mailbox on the failover server) when mail is downloaded from it or something else should be done in this respect? Please explain. I quote below the full current config on the main server. Thanks in advance, Nick ====================================================================== # 2.2.12: dovecot.conf protocols = imap pop3 login_greeting = Org POP/IMAP Srv XAPITI XPICTOY mail_location = maildir:~/Maildir/ mail_gid = 500 mail_uid = 500 auth_mechanisms = plain login auth_username_format = %Lu auth_verbose = yes auth_debug = no disable_plaintext_auth = no mail_plugins = quota notify replication protocol imap { imap_client_workarounds = "delay-newmail" mail_plugins = quota imap_quota notify replication } protocol pop3 { mail_max_userip_connections = 3 mail_plugins = quota notify replication pop3_client_workarounds = outlook-no-nuls oe-ns-eoh pop3_uidl_format = %08Xu%08Xv } protocol lda { auth_socket_path = /var/run/dovecot/auth-master info_log_path = log_path = mail_plugins = quota notify replication postmaster_address = sysadmin at example.com sendmail_path = /usr/lib/sendmail } userdb { args = /etc/dovecot/dovecot-usrdb-ldap.conf driver = ldap } passdb { args = /etc/dovecot/dovecot-passdb-ldap.conf driver = ldap } dsync_remote_cmd = ssh -l root vmail1.example.com doveadm dsync-server -u%u plugin { mail_replica = remote:vmail at vmail1.example.com } plugin { quota = maildir:User quota quota_rule = *:storage=4G quota_rule2 = Trash:storage=+3%% quota_warning = storage=75%% quota-warning 75 %u quota_warning2 = storage=90%% quota-warning 90 %u } service quota-warning { executable = script /opt/mail1.sh user = vmail unix_listener quota-warning { user = vmail } } service aggregator { fifo_listener replication-notify-fifo { user = vmail } unix_listener replication-notify { user = vmail } } service replicator { unix_listener replicator-doveadm { mode = 0600 } } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { group = vmail mode = 0660 user = vmail } user = root } service imap-login { service_count = 1 vsz_limit = 64 M } service pop3-login { service_count = 1 vsz_limit = 64 M } service replicator { process_min_avail = 1 } ssl_ca = References: <5337E82A.1040001@noa.gr> Message-ID: <53387766.40600@noa.gr> On 30/3/2014 12:47 ??, Nikolaos Milas wrote: > I notice that all mail coming in userx mailbox on vmail, is correctly > replicated on vmail1, but when it is downloaded from vmail over POP3 > (and the mailbox there remains empty), the same mailbox on vmail1 is > not updated to be emptied (automatically) as well, but it is > accumulating mail forever (which is real problem on the mirror server). In fact, I observed that in the end the mirrored mailbox does get emptied, but in cases there might be a significant time lag until that happens. This is not so important in our use case, but it makes it more difficult to monitor the situation. By the way, can we increase verbosity of dsync process to log what is happening? I am not seeing anything dsync-related in dovecot logs (on either side), although things are working OK. Thanks, Nick From mihai at badici.ro Sun Mar 30 20:28:10 2014 From: mihai at badici.ro (Mihai Badici) Date: Sun, 30 Mar 2014 23:28:10 +0300 Subject: [Dovecot] still issues with metadata support In-Reply-To: <1538580.iCFukjetRg@arhivio> References: <1538580.iCFukjetRg@arhivio> Message-ID: <14698572.azraqzCXu8@arhivio> I't's still unclear for me why but I have two servers, one using Slackware 14.0 and the second one using Slackware 14.1 I use the same slackbuild script to build the package; but I have that issue only when building on Slackware 14.1 I copied the package from 14.0 to 14.1 and replaced the one built localy; 01 getmetadata "*" (/private/kolab/activesync) * METADATA Default (/private/kolab/activesync NIL) * METADATA Contacts (/private/kolab/activesync NIL) * METADATA Calendar (/private/kolab/activesync NIL) * METADATA Trash (/private/kolab/activesync NIL) * METADATA INBOX (/private/kolab/activesync NIL) So it can be an issue generated by the compiler or some newest library. It also works on Debian ( but is not compiled by me) On slack 14.1 i have gcc version 4.8.2 (GCC) If is usefull: ldd /usr/sbin/dovecot linux-gate.so.1 (0xffffe000) libcap.so.2 => /lib/libcap.so.2 (0xb7717000) libdovecot.so.0 => /usr/lib/dovecot/libdovecot.so.0 (0xb7643000) libc.so.6 => /lib/libc.so.6 (0xb74b8000) libattr.so.1 => /lib/libattr.so.1 (0xb74b3000) libdl.so.2 => /lib/libdl.so.2 (0xb74ad000) librt.so.1 => /lib/librt.so.1 (0xb74a4000) /lib/ld-linux.so.2 (0xb7738000) libpthread.so.0 => /lib/libpthread.so.0 (0xb748a000) On Saturday 29 March 2014 23:07:37 you wrote: > On dovecot 2.2.12 compiled from source I use ActiveSync with > kolab-syncroton. When running a test i have this imap log: > > > [29-Mar-2014 22:58:25 +0200]: [F658] S: A0004 OK Getmetadata completed. > [29-Mar-2014 22:58:25 +0200]: [F658] C: A0005 SETMETADATA INBOX > (/private/vendor/kolab/activesync "{\"DEVICE\":{\"601099122\":{\"ID\": > \"a5daac4806642a1cfeceb53aea32e86218c4d512\",\"TYPE\": > \"TestActiveSyncConnectivity\",\"ALIAS\":null}},\"FOLDER\":{\"601099122\": > {\"S\":1}}}") > [29-Mar-2014 22:58:26 +0200]: [F658] S: A0005 OK Setmetadata completed. > [29-Mar-2014 22:58:26 +0200]: [F658] C: A0006 GETMETADATA "*" > (/private/vendor/kolab/activesync) > [29-Mar-2014 22:58:26 +0200]: [F658] S: A0006 NO Mailbox doesn't exist: * > [29-Mar-2014 22:58:26 +0200]: [F658] C: A0007 GETMETADATA "*" > (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) > [29-Mar-2014 22:58:26 +0200]: [F658] S: A0007 NO Mailbox doesn't exist: * > [29-Mar-2014 22:58:26 +0200]: [F658] C: A0008 GETMETADATA "*" > (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) > [29-Mar-2014 22:58:26 +0200]: [F658] S: A0008 NO Mailbox doesn't exist: * > [29-Mar-2014 22:58:26 +0200]: [F658] C: A0009 GETMETADATA "*" > (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) > [29-Mar-2014 22:58:26 +0200]: [F658] S: A0009 NO Mailbox doesn't exist: * > [29-Mar-2014 22:58:26 +0200]: [F658] C: A0010 GETMETADATA "*" > (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) > [29-Mar-2014 22:58:26 +0200]: [F658] S: A0010 NO Mailbox doesn't exist: * > [29-Mar-2014 22:58:26 +0200]: [F658] C: A0011 GETMETADATA "*" > (/private/vendor/kolab/folder-type /shared/vendor/kolab/folder-type) > [29-Mar-2014 22:58:26 +0200]: [F658] S: A0011 NO Mailbox doesn't exist: * > > > It looks like GETMETADATA "*" is still not expanded , even we have this > part of code in cmd-getmetadata.c: > > else if (strchr(mailbox, '*') == NULL && > strchr(mailbox, '%') == NULL) { > ns = client_find_namespace(cmd, &mailbox); > if (ns == NULL) > return TRUE; > return cmd_getmetadata_mailbox(ctx, ns, mailbox); > } else { > /* wildcards in mailbox name. this isn't supported by RFC > 5464, > but it was in the earlier drafts and is already used by > some software (Horde). */ > const char *patterns[2]; > patterns[0] = mailbox; patterns[1] = NULL; -- Mihai B?dici http://mihai.badici.ro From greminn at gmail.com Sun Mar 30 22:34:32 2014 From: greminn at gmail.com (Simon) Date: Mon, 31 Mar 2014 11:34:32 +1300 Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: <5333A626.8020700@whyscream.net> References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> <532FE88B.1020302@whyscream.net> <53308EE6.4050904@Media-Brokers.com> <53316562.6020709@Media-Brokers.com> <5332B398.2060400@Media-Brokers.com> <5333A626.8020700@whyscream.net> Message-ID: On Thu, Mar 27, 2014 at 5:16 PM, Tom Hendrikx wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > On 26-03-14 12:01, Charles Marcus wrote: > > On 3/25/2014 4:08 PM, Simon wrote: > >> On Wed, Mar 26, 2014 at 12:15 AM, Charles Marcus > >> wrote: > >>> On 3/24/2014 7:10 PM, Simon wrote: > >>>> Mar 13 09:55:44 vmail1 dovecot: lda: Error: userdb lookup: > >>>> connect(/usr/local/dovecot/var/run/dovecot/auth-userdb) > >>>> failed: Connection refused > > > >>> So, your SQL userdb is refusing connections from dovecot... > >>> > >>> Fix this... > > > >> Thanks Charles, I have looked into this and tried to fix > >> permissions but still have the same issue. I have tried changing > >> the permissions on the auth-userdb to 0666 (see below) as well as > >> setting the permissions of /usr/local/dovecot/var/run/dovecot/ to > >> 777 just for testing. > > > > You misunderstood... > > > > I didn't say the filesystem permissions were wrong. > > > > Your SQL SERVER is refusing the connection. > > > > The user (vmail) you are using to connect to the SQL server doesn't > > have permission to talk to it. > > > > This needs to be fixed IN THE SQL SERVER ACCESS PERMISSIONS for > > the 'vmail' user. > > > > Charles, auth-worker would have logged errors about sql access if that > was an issue. lda doesn't do sql queries by itself, it sends the > queries to the auth socket instead, and that fails. > I agree here.. Charles im my email i mentioned that i understood you were talking about SQL permissions, i have tested this and the user can connect and perform all SQL queries. This is what i did to test this: [root at vmail1 ~]# su vmail [vmail at vmail1 root]$ mysql -u DBUSER -pDBPASS -h DBHOST mysql> use DBNAME; Reading table information for completion of table and column names You can turn off this feature to get a quicker startup with -A Database changed mysql> SELECT CONCAT('/var/vmail/',CONCAT(SUBSTRING_INDEX(email,'@',-1),'/',SUBSTRING_INDEX(email,'@',1))) AS home, 5000 AS uid, 5000 AS gid, CONCAT('*:storage=',quota) AS quota_rule FROM mail_users WHERE email='test at testdomain.co.nz'; +--------------------------------+------+------+------------------+ | home | uid | gid | quota_rule | +--------------------------------+------+------+------------------+ | /var/vmail/testdomain.co.nz/test | 5000 | 5000 | *:storage=1000MB | +--------------------------------+------+------+------------------+ 1 row in set (0.02 sec) mysql> SELECT email as user, password FROM mail_users WHERE email=' test at testdomain.co.nz'; +---------------------+----------+ | user | password | +---------------------+----------+ | test at testdomain.co.nz | THEPASSWORD | +---------------------+----------+ 1 row in set (0.00 sec) mysql> exit > The socket is not usable, as was already observed upthread by doing > tests as root using socat. I'm still opting for > selinux/apparmor/rsbac/etc issues here. > I have disabled selinux completely "SELINUX=disabled" in /etc/selinux/config :) > Simon, are you sure you're not missing any logging on that? I'm not > really experienced in thoose systems, but everytime I run into issues > with them , they sure fill my logs with all kinds of cryptic stuff ;) I have checked with this and this is the only logging i can see on the issue (out of all logs in /var/log/) Mar 31 11:32:31 vmail1 dovecot: lda: Debug: Loading modules from directory: /usr/local/dovecot/lib/dovecot Mar 31 11:32:31 vmail1 dovecot: lda: Debug: Module loaded: /usr/local/dovecot/lib/dovecot/lib10_quota_plugin.so Mar 31 11:32:31 vmail1 dovecot: lda: Debug: Module loaded: /usr/local/dovecot/lib/dovecot/lib90_sieve_plugin.so Mar 31 11:32:32 vmail1 dovecot: lda: Error: userdb lookup: connect(/usr/local/dovecot/var/run/dovecot/auth-userdb) failed: Connection refused Mar 31 11:32:32 vmail1 dovecot: lda: Fatal: Internal error occurred. Refer to server log for more information. Simon From alec at alec.pl Mon Mar 31 06:09:20 2014 From: alec at alec.pl (A.L.E.C) Date: Mon, 31 Mar 2014 08:09:20 +0200 Subject: [Dovecot] still issues with metadata support In-Reply-To: <14698572.azraqzCXu8@arhivio> References: <1538580.iCFukjetRg@arhivio> <14698572.azraqzCXu8@arhivio> Message-ID: <53390690.3060508@alec.pl> On 03/30/2014 10:28 PM, Mihai Badici wrote: > 01 getmetadata "*" (/private/kolab/activesync) > * METADATA Default (/private/kolab/activesync NIL) > * METADATA Contacts (/private/kolab/activesync NIL) > * METADATA Calendar (/private/kolab/activesync NIL) > * METADATA Trash (/private/kolab/activesync NIL) > * METADATA INBOX (/private/kolab/activesync NIL) BTW, I think it would be better if the response would just skip folders with NIL data. I didn't check if it is specified in RFC. -- Aleksander 'A.L.E.C' Machniak LAN Management System Developer [http://lms.org.pl] Roundcube Webmail Developer [http://roundcube.net] --------------------------------------------------- PGP: 19359DC1 @@ GG: 2275252 @@ WWW: http://alec.pl From mihai at badici.ro Mon Mar 31 06:30:30 2014 From: mihai at badici.ro (Mihai Badici) Date: Mon, 31 Mar 2014 09:30:30 +0300 Subject: [Dovecot] still issues with metadata support In-Reply-To: <53390690.3060508@alec.pl> References: <1538580.iCFukjetRg@arhivio> <14698572.azraqzCXu8@arhivio> <53390690.3060508@alec.pl> Message-ID: <3449136.FGRLHocd2c@arhivio> On Monday 31 March 2014 08:09:20 A.L.E.C wrote: > On 03/30/2014 10:28 PM, Mihai Badici wrote: > > 01 getmetadata "*" (/private/kolab/activesync) > > * METADATA Default (/private/kolab/activesync NIL) > > * METADATA Contacts (/private/kolab/activesync NIL) > > * METADATA Calendar (/private/kolab/activesync NIL) > > * METADATA Trash (/private/kolab/activesync NIL) > > * METADATA INBOX (/private/kolab/activesync NIL) > > BTW, I think it would be better if the response would just skip folders > with NIL data. I didn't check if it is specified in RFC. In this case the request in incorrect ( /private/kolab/activesync), should be /private/vendor/kolab/activesync) but I think you right. I just typed a "random" name in IMAP session to see if it enumerate folders. At the end, I have no fully functional ActiveSync installation with dovecot 2.2.12 ( the old metadata plugin works in previous installations, 2.2.4 for example) - so should be more problems. But this issue it's really strange - and because it appears on the newest operating system we can expect to have it in the future also on other systems. -- Mihai B?dici http://mihai.badici.ro From skdovecot at smail.inf.fh-brs.de Mon Mar 31 06:37:01 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 31 Mar 2014 08:37:01 +0200 (CEST) Subject: [Dovecot] Connection refused userdb lookup ..dovecot/auth-userdb In-Reply-To: References: <831C5383-75E3-46C6-8689-0118BD26D680@gmail.com> <53216498.41af0e0a.6c31.ffff86d1SMTPIN_ADDED_BROKEN@mx.google.com> <532FE88B.1020302@whyscream.net> <53308EE6.4050904@Media-Brokers.com> <53316562.6020709@Media-Brokers.com> <5332B398.2060400@Media-Brokers.com> <5333A626.8020700@whyscream.net> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 31 Mar 2014, Simon wrote: >>>>> On 3/24/2014 7:10 PM, Simon wrote: >>>>>> Mar 13 09:55:44 vmail1 dovecot: lda: Error: userdb lookup: >>>>>> connect(/usr/local/dovecot/var/run/dovecot/auth-userdb) >>>>>> failed: Connection refused What's the output of: lsof -c dovecot|grep auth-userdb ? - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUzkNDXD1/YhP6VMHAQKS3Af+IIz0Y9Y0aKk72Aj712PXM2QMhN44Vfkd 5ZGIKjPeO525PpfcZzClAqcDL5wt690TM1C/Ii9b2wVKjQDU1miJJbJpbokrLga/ jqTN+1JGbR/dacuT//tyc1nn5ivTnigLgGgbFIJP2kenhyMuHSeKqoOPYT9xd1Ha z4FLnGOeIdIkgTmS2ue1XPIGTZnmO6WmhPT6TevMTcfFDl0C5CZJEOOv+oh3a5C1 /277Nk/Lj2mk+orHtCWxN3xe4u8ZE4PfMsBhLYefa2++pSKj+7yo/Y/J0t3NFEkp vVXcCW0B2SnC+lwSmJBFYUECzIsz+tKdN61utMrA/OhIihoN/Zoavg== =kYuY -----END PGP SIGNATURE----- From teemu.huovila at dovecot.fi Mon Mar 31 07:34:35 2014 From: teemu.huovila at dovecot.fi (Teemu Huovila) Date: Mon, 31 Mar 2014 10:34:35 +0300 Subject: [Dovecot] possible quota bug ? In-Reply-To: <20140313171200.4820acb6@titanium.sdv.fr> References: <52eac45a9cc88_4ee222883073570@a4-weasel3.mail> <52f7bbc019275_69938ee20342597c@a4-weasel7.mail> <20140313171200.4820acb6@titanium.sdv.fr> Message-ID: <53391A8B.60808@dovecot.fi> On 03/13/2014 06:12 PM, Laurent Papier wrote: > Le Sun, 09 Feb 2014 15:32:48 -0200 > fernando.figaro at uol.com.br ?crit: > > Hi, > no solution just a confirmation of the bug. lz4 compression here. > > Clean maildir directory generated with 'doveadm backup'. So S=..,W=.. are correct. > > Moving this mail file from inbox to trash: > -rw------- 1 maildir maildir 5165 Mar 13 17:01 1394726488.M954102P27201.dev-nc-pxe.sdv.fr,S=7590,W=7640:2,Sa > > # cat maildirsize > 12582910S,30C > 108394 10 > 5165 1 > -7590 -1 > >> Hi Timo, >> >> I'm posting more info about this issue: >> >> Sent a message from gmail, delivered via lmtp/lda/sieve >> >> -rw------- 1 vmail vmail 1187 Feb 9 15:14 1391966051.M730051P32575.LAB-STO-V-01,S=2392,W=2440 >> >> The message was compressed (gz) >> >> Maildirsize: >> 1073741824S >> 51505 31 >> 2392 1 >> >> Move message from INBOX to TRASH >> >> Feb 9 15:15:45 LAB-LMB-V-01 dovecot: imap(xxx): copy from INBOX: box=INBOX.Trash, uid=27, msgid=, size=1187 >> Feb 9 15:15:45 LAB-LMB-V-01 dovecot: imap(xxx): expunge: box=INBOX, uid=32, msgid=, size=2392 >> >> Maildirsize: >> 1073741824S >> 51505 31 >> 2392 1 >> 1187 1 >> -2392 -1 >> >> > > Hello This problem should be fixed by http://hg.dovecot.org/dovecot-2.2/rev/30fb6e95b110 but there is also another issue in Maildir+zlib (relating to received timestamp), that I have not found a fix for yet. Teemu Huovila From ramon.orru at babel.it Mon Mar 31 07:52:06 2014 From: ramon.orru at babel.it (=?ISO-8859-15?Q?Ramon_Orr=F9?=) Date: Mon, 31 Mar 2014 09:52:06 +0200 Subject: [Dovecot] maildir backup Message-ID: <53391EA6.10002@babel.it> Hi everybody, I'm trying to backup a dovecot instance, and i'm looking for a method to "snapshot" dovecot maildir in a properly way, and backup whole snapshot in a second step (tar). I read about dsync, end, if i'm not going wrong, it dumps correctly also dovecot indexes; is it the tool i need? Thank you for any hint. Ramon From ihab_mishriki at hotmail.com Mon Mar 31 08:21:28 2014 From: ihab_mishriki at hotmail.com (ihab) Date: Mon, 31 Mar 2014 01:21:28 -0700 (PDT) Subject: [Dovecot] check the user number Message-ID: <1396254088281-47327.post@n4.nabble.com> There is a way to check the number of user using the system at anytime -- View this message in context: http://dovecot.2317879.n4.nabble.com/check-the-user-number-tp47327.html Sent from the Dovecot mailing list archive at Nabble.com. From dar at darklajid.de Mon Mar 31 08:24:40 2014 From: dar at darklajid.de (Benjamin Podszun) Date: Mon, 31 Mar 2014 10:24:40 +0200 Subject: [Dovecot] check the user number In-Reply-To: <1396254088281-47327.post@n4.nabble.com> References: <1396254088281-47327.post@n4.nabble.com> Message-ID: <362a6804-c8ba-4da5-b110-eaaa84507e6d@darklajid.de> On Monday, March 31, 2014 10:21:28 AM CEST, ihab wrote: > There is a way to check the number of user using the system at anytime doveadm who comes to mind? What are you looking for? /Ben From skdovecot at smail.inf.fh-brs.de Mon Mar 31 08:46:13 2014 From: skdovecot at smail.inf.fh-brs.de (Steffen Kaiser) Date: Mon, 31 Mar 2014 10:46:13 +0200 (CEST) Subject: [Dovecot] check the user number In-Reply-To: <1396254088281-47327.post@n4.nabble.com> References: <1396254088281-47327.post@n4.nabble.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 31 Mar 2014, ihab wrote: > There is a way to check the number of user using the system at anytime a) http://wiki2.dovecot.org/Statistics b) doveadm who c) ps - -- Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUzkrVXD1/YhP6VMHAQI58ggA5x6Y+0dLBFSPqSoQ4TIDn6KRD2xUv4WB 1wQe61i65k6lGPmNVm5Q4TrvH2bLR/cSPXejRLW6SD8OuORKa/t3F4bY/lGkfAC5 Zi68BWrzF3aSYM5OMlKMRJgG8+Uu8bed3F6jQXKSRfGirU7C57eT+L5ovnyHzf3/ tlPMxRXk51rhRbLgBP7bIqZ9yq42EoZCdAukwfQblr2v+wnGSt0X2kIKF9LUwu4W 6YhxSEqf9A+PqqV8Ukik+f25SyNc8JIpaUq3B3G5laydOnrjyMNaxTgHMJZcuhR7 r3Bz1T3Vlnq1EU66XenBhQZcqx+jGdsyhWJQNB0XrSaK1IY5VJk41w== =K4n0 -----END PGP SIGNATURE----- From srf at sanger.ac.uk Mon Mar 31 09:03:52 2014 From: srf at sanger.ac.uk (Simon Fraser) Date: Mon, 31 Mar 2014 10:03:52 +0100 Subject: [Dovecot] dsync replication questions In-Reply-To: <533547BE.8080003@noa.gr> References: <533547BE.8080003@noa.gr> Message-ID: <1396256632.19039.33.camel@ubu101751> On Fri, 2014-03-28 at 11:58 +0200, Nikolaos Milas wrote: > Question 2a: What do options "-d -N -l 30 -U" signify in > "replication_dsync_parameters = -d -N -l 30 -U"? I'd also be interested to know the answer to this part. I found mention of the '-f' option, and adding '-f' to that list appears to have fixed a replication race condition I was having, but I can't find out a note of what it does. Simon. -- The Wellcome Trust Sanger Institute is operated by Genome Research Limited, a charity registered in England with number 1021457 and a company registered in England with number 2742969, whose registered office is 215 Euston Road, London, NW1 2BE. From nmilas at noa.gr Mon Mar 31 10:15:19 2014 From: nmilas at noa.gr (Nikolaos Milas) Date: Mon, 31 Mar 2014 13:15:19 +0300 Subject: [Dovecot] Dovecot Replication setup In-Reply-To: <5334A378.3030800@noa.gr> References: <5332BA61.3040800@noa.gr> <5334A378.3030800@noa.gr> Message-ID: <53394037.3050209@noa.gr> On 28/3/2014 12:17 ??, Nikolaos Milas wrote: > On 26/3/2014 1:30 ??, Nikolaos Milas wrote: > >> I am trying to setup a master/master replication with dsync >> (according to the first part of: http://wiki2.dovecot.org/Replication). >> >> ...I would like to ask/confirm whether the indicated setup is >> required on *both*servers participating in the master/master >> replication. > Answering my own question (after our test deployment), I can tell now that it is enough to set up the main server with the replication configuration. I don't know if setting up the second master (the mirrored one) with replication config as well would cause conflicts/loops/issues. Nick From nmilas at noa.gr Mon Mar 31 15:07:48 2014 From: nmilas at noa.gr (Nikolaos Milas) Date: Mon, 31 Mar 2014 18:07:48 +0300 Subject: [Dovecot] maildir backup In-Reply-To: <53391EA6.10002@babel.it> References: <53391EA6.10002@babel.it> Message-ID: <533984C4.3020005@noa.gr> On 31/3/2014 10:52 ??, Ramon Orr? wrote: > Hi everybody, I'm trying to backup a dovecot instance, and i'm looking > for a method to "snapshot" dovecot maildir in a properly way, and > backup whole snapshot in a second step (tar). I read about dsync, end, > if i'm not going wrong, it dumps correctly also dovecot indexes; is it > the tool i need? Thank you for any hint. Ramon > You could use dsync Replication (http://wiki2.dovecot.org/Replication) to another server. Then, you already have a real time backup! If you need a consistent backup instance, I guess you could stop the mirror server for a while to tar your mail directory. Someone else may confirm whether the above process is right indeed and/or suggest other options. All the best, Nick From lists at luigirosa.com Mon Mar 31 15:12:26 2014 From: lists at luigirosa.com (Luigi Rosa) Date: Mon, 31 Mar 2014 17:12:26 +0200 Subject: [Dovecot] sieve mailbox in IMAP mailboxes In-Reply-To: <533307B6.1010703@gedalya.net> References: <53330458.8010009@luigirosa.com> <533307B6.1010703@gedalya.net> Message-ID: <533985DA.7090407@luigirosa.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Gedalya said the following on 26/03/2014 18:00: > On 03/26/2014 12:46 PM, Luigi Rosa wrote: >> mail_location = maildir:/var/spool/mail/%u/ > You didn't include your SQL files, so I don't now if you return userdb > fields there, but anyway, you seem to have the home directory and > mail_location set to the same place. You need to have home set to e.g. > maildir:/var/spool/mail/%u/ and mail_location set to > maildir:/var/spool/mail/%u/Maildir, a subdirectory of home, or just set the > home directory to a different place altogether. Very important: the maildir > directory should contain maildir files ONLY. The home directory is for > everything else, such as sieve. That was the problem, thank you for your help. I modified the SQL query to return a different path for the "home directory" and moved the sieve directories into the new path Ciao, luigi - -- / +--[Luigi Rosa]-- \ Sometimes, when your cat is washing himself, he will stop and stare at you as if he just remembered something. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBAgAGBQJTOYXVAAoJEO5WT/qgw4yKP5AQAJghYHsw6hgcO5Wh6jFN2b3J N3OYvBggLBQWIJSyq4d+lcWJQWyGie8bUYKLOjt4AhxSsVkT002nWVw+d6fKRTDX qppW45UHUzBpve3twPd+B4N+7XNfhnF6yyLaCY12P5yVKWms8CYWfnqU3ir9wRAT toJlEoW2nWf6Md+LHyN6e8fPHRI9PQChkwVGqmsCLjx47IY2loiO4dm1II6Q67kH z0cXyG3DuvjkJR2lRMGF+/5xA9Yg4+pF3zEVa8HIakCBmVXJMEQlDUiat+Q5H4HI xUL6dPQO0xQPcPKeWf4qMYUOQ3iXG3JyhpP5TSUkYo+xBifJsvlFgemiBb2BeOGd Gwx+3VqFBHJEZ5ESeyk7suLpEWB5liOsDNJEPusYPw9kye4WghYErT7X1LBi6DMw usAGxs8uIySOW38k+Kq8g7bCIGkmsQcmEw6fSoKnaxgiloPAogE71T73IirekDhB opTcaCvDyAeD247wDhmHg+4vQpU0hKNUuw7XwsUBzvVaBl8wjE+X7sFLtwDxflsR YJa1j6/dnyTZ614nK1f+gZIhwIAw3tejO6HOcrLbTYsFpWUFPvtM7wYGokIEtQos WpqbUL1rirtYlcuAY3zVgDJuxi3jaDt5SMvqvGORXvzfpu+186yBVZoDupMKKtlB v5rD7x85nLRvugR2N+Fj =3kyx -----END PGP SIGNATURE----- From leolistas at solutti.com.br Mon Mar 31 17:57:26 2014 From: leolistas at solutti.com.br (Leonardo Rodrigues) Date: Mon, 31 Mar 2014 14:57:26 -0300 Subject: [Dovecot] maildir backup In-Reply-To: <533984C4.3020005@noa.gr> References: <53391EA6.10002@babel.it> <533984C4.3020005@noa.gr> Message-ID: <5339AC86.8080405@solutti.com.br> Em 31/03/14 12:07, Nikolaos Milas escreveu: > On 31/3/2014 10:52 ??, Ramon Orr? wrote: > >> Hi everybody, I'm trying to backup a dovecot instance, and i'm >> looking for a method to "snapshot" dovecot maildir in a properly way, >> and backup whole snapshot in a second step (tar). I read about dsync, >> end, if i'm not going wrong, it dumps correctly also dovecot indexes; >> is it the tool i need? Thank you for any hint. Ramon >> > > You could use dsync Replication (http://wiki2.dovecot.org/Replication) > to another server. Then, you already have a real time backup! > > If you need a consistent backup instance, I guess you could stop the > mirror server for a while to tar your mail directory. or you can use rsync for that ... get your slave server to rsync from the master one and, after rsync is finished, you can tar the folders and have a perfectly valid snapshot of your Maildirs ! -- Atenciosamente / Sincerily, Leonardo Rodrigues Solutti Tecnologia http://www.solutti.com.br Minha armadilha de SPAM, N?O mandem email gertrudes at solutti.com.br My SPAMTRAP, do not email it From noloader at gmail.com Mon Mar 31 20:13:23 2014 From: noloader at gmail.com (Jeffrey Walton) Date: Mon, 31 Mar 2014 16:13:23 -0400 Subject: [Dovecot] Specifying passwd-file with virtual domains? Message-ID: I'm trying to use virtual domains and I'm suffering a disconnect. I have two domains - foo.com and bar.com. On the filesystem, they are located at /var/mail/foo.com/ and /var/mail/bar.com/. Users are located at /var/mail/foo.com/john/, /var/mail/bar.com/jane/, etc. There are two password files with : entries. The scheme is {PLAIN}. They are located at /var/mail/foo.com/users and /var/mail/bar.com/users. According to the wiki, these are passwd-file databases (http://wiki2.dovecot.org/AuthDatabase/PasswdFile). I specified the following in my dovecot.conf. passdb { args = /var/mail/%d/users driver = passwd-file } Attempts to use the configuration result in an authentication failure. Here's an entry from dovecot.log when the failure happens: Mar 31 16:04:12 imap-login: Info: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=127.0.0.1, lip=127.0.1.1, secured, session= What exactly goes where to have Dovecot use the 'users' files to authenticate users? Thanks in advance and my apologies for the question. Two days of blog posts, mini-HowTo's and mailing lists has only help me discover ways to do things incorrectly. ********** # dovecot --version 2.1.7 # doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-686-pae i686 Debian 7.4 disable_plaintext_auth = no log_path = /var/log/dovecot.log login_trusted_networks = 127.0.0.1 mail_location = mbox:~/mail:INBOX=/var/mail/%u namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } ... prefix = } passdb { args = /var/mail/%d/users driver = passwd-file } passdb { driver = pam } plugin { sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = " imap pop3" ssl_cert = My dovecot.conf has the following: # No results when searching the wiki disable_plaintext_auth = no # http://wiki2.dovecot.org/Authentication/Mechanisms auth_mechanisms = plain login digest-md5 cram-md5 When I attempt to run imapsync, I receive an error: Host2: says it has NO CAPABILITY for AUTHENTICATE LOGIN imapsync also dumps the helo string, and it is missing: Host2: * OK [CAPABILITY IMAP4rev1 LITERAL+ ... STARTTLS AUTH=PLAIN] Dovecot ready. I've restarted the dovecot service with 'service dovecot restart' and even rebooted the machine. There is nothing reported in any on the log files (/var/mail/dovecot.log and /var/log/mail.). Any ideas why dovecot is not honoring the setting in its config file? ********** # dovecot --version 2.1.7 # doveconf -n # 2.1.7: /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-4-686-pae i686 Debian 7.4 disable_plaintext_auth = no log_path = /var/log/dovecot.log mail_location = mbox:~/mail:INBOX=/var/mail/%u namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } ... prefix = } passdb { args = /var/mail/%d/users driver = passwd-file } passdb { driver = pam } plugin { sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = " imap pop3" ssl_cert = References: Message-ID: <5339E09D.3000407@thelounge.net> Am 31.03.2014 23:37, schrieb Jeffrey Walton: > My dovecot.conf has the following: > > # No results when searching the wiki > disable_plaintext_auth = no > > # http://wiki2.dovecot.org/Authentication/Mechanisms > auth_mechanisms = plain login digest-md5 cram-md5 > > When I attempt to run imapsync, I receive an error: > > Host2: says it has NO CAPABILITY for AUTHENTICATE LOGIN > > imapsync also dumps the helo string, and it is missing: > > Host2: * OK [CAPABILITY IMAP4rev1 LITERAL+ ... STARTTLS > AUTH=PLAIN] Dovecot ready. > > I've restarted the dovecot service with 'service dovecot restart' and > even rebooted the machine. > > There is nothing reported in any on the log files > (/var/mail/dovecot.log and /var/log/mail.). > > Any ideas why dovecot is not honoring the setting in its config file? and the settings are *really* in /etc/dovecot/dovecot.conf or in some ".d"-folder which may or may not be included? > ********** > > # dovecot --version > 2.1.7 > # doveconf -n > # 2.1.7: /etc/dovecot/dovecot.conf > # OS: Linux 3.2.0-4-686-pae i686 Debian 7.4 > disable_plaintext_auth = no > log_path = /var/log/dovecot.log > mail_location = mbox:~/mail:INBOX=/var/mail/%u > namespace inbox { > inbox = yes > location = > mailbox Drafts { > special_use = \Drafts > } > ... > prefix = > } > passdb { > args = /var/mail/%d/users > driver = passwd-file > } > passdb { > driver = pam > } > plugin { > sieve = ~/.dovecot.sieve > sieve_dir = ~/sieve > } > protocols = " imap pop3" > ssl_cert = ssl_key = userdb { > driver = passwd > } > -- Reindl Harald the lounge interactive design GmbH A-1060 Vienna, Hofm?hlgasse 17 CTO / CISO / Software-Development m: +43 (676) 40 221 40, p: +43 (1) 595 3999 33 icq: 154546673, http://www.thelounge.net/ http://www.thelounge.net/signature.asc.what.htm -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: From noloader at gmail.com Mon Mar 31 21:47:25 2014 From: noloader at gmail.com (Jeffrey Walton) Date: Mon, 31 Mar 2014 17:47:25 -0400 Subject: [Dovecot] Dovecot not honoring configuration settings (auth failure) In-Reply-To: <5339E09D.3000407@thelounge.net> References: <5339E09D.3000407@thelounge.net> Message-ID: On Mon, Mar 31, 2014 at 5:39 PM, Reindl Harald wrote: > > > Am 31.03.2014 23:37, schrieb Jeffrey Walton: >> My dovecot.conf has the following: >> >> # No results when searching the wiki >> disable_plaintext_auth = no >> >> # http://wiki2.dovecot.org/Authentication/Mechanisms >> auth_mechanisms = plain login digest-md5 cram-md5 >> >> When I attempt to run imapsync, I receive an error: >> >> Host2: says it has NO CAPABILITY for AUTHENTICATE LOGIN >> >> imapsync also dumps the helo string, and it is missing: >> >> Host2: * OK [CAPABILITY IMAP4rev1 LITERAL+ ... STARTTLS >> AUTH=PLAIN] Dovecot ready. >> >> I've restarted the dovecot service with 'service dovecot restart' and >> even rebooted the machine. >> >> There is nothing reported in any on the log files >> (/var/mail/dovecot.log and /var/log/mail.). >> >> Any ideas why dovecot is not honoring the setting in its config file? > > and the settings are *really* in /etc/dovecot/dovecot.conf > or in some ".d"-folder which may or may not be included? I believe they are in /etc/dovecot/dovecot.conf: # cat /etc/dovecot/dovecot.conf | grep -i auth_ auth_mechanisms = plain login digest-md5 cram-md5 #auth_proxy_self = Jeff From h.reindl at thelounge.net Mon Mar 31 22:04:26 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 01 Apr 2014 00:04:26 +0200 Subject: [Dovecot] Fwd: Dovecot not honoring configuration settings (auth failure) In-Reply-To: <5339E602.7020507@thelounge.net> References: <5339E602.7020507@thelounge.net> Message-ID: <5339E66A.5030602@thelounge.net> boah how i hate that "reply all" attitude leading to break "reply to list" and leads in off-list replies -------- Original-Nachricht -------- Betreff: Re: [Dovecot] Dovecot not honoring configuration settings (auth failure) Datum: Tue, 01 Apr 2014 00:02:42 +0200 Von: Reindl Harald Organisation: the lounge interactive design An: noloader at gmail.com Am 31.03.2014 23:47, schrieb Jeffrey Walton: > On Mon, Mar 31, 2014 at 5:39 PM, Reindl Harald wrote: >> >> Am 31.03.2014 23:37, schrieb Jeffrey Walton: >>> My dovecot.conf has the following: >>> >>> # No results when searching the wiki >>> disable_plaintext_auth = no >>> >>> # http://wiki2.dovecot.org/Authentication/Mechanisms >>> auth_mechanisms = plain login digest-md5 cram-md5 >>> >>> When I attempt to run imapsync, I receive an error: >>> >>> Host2: says it has NO CAPABILITY for AUTHENTICATE LOGIN >>> >>> imapsync also dumps the helo string, and it is missing: >>> >>> Host2: * OK [CAPABILITY IMAP4rev1 LITERAL+ ... STARTTLS >>> AUTH=PLAIN] Dovecot ready. >>> >>> I've restarted the dovecot service with 'service dovecot restart' and >>> even rebooted the machine. >>> >>> There is nothing reported in any on the log files >>> (/var/mail/dovecot.log and /var/log/mail.). >>> >>> Any ideas why dovecot is not honoring the setting in its config file? >> >> and the settings are *really* in /etc/dovecot/dovecot.conf >> or in some ".d"-folder which may or may not be included? > I believe they are in /etc/dovecot/dovecot.conf: > > # cat /etc/dovecot/dovecot.conf | grep -i auth_ > auth_mechanisms = plain login digest-md5 cram-md5 my local machine is configured like below for years and it works well, post the whole config-file and strip only what is really needed to keep secret # provided services protocols = imap # configure ssl ssl = yes ssl_cert = From milan.cvetkovic at mpathix.com Mon Mar 31 22:06:47 2014 From: milan.cvetkovic at mpathix.com (Milan Cvetkovic) Date: Mon, 31 Mar 2014 18:06:47 -0400 Subject: [Dovecot] Fwd: Dovecot not honoring configuration settings (auth failure) In-Reply-To: <5339E66A.5030602@thelounge.net> References: <5339E602.7020507@thelounge.net> <5339E66A.5030602@thelounge.net> Message-ID: <5339E6F7.7000806@mpathix.com> If you dont want to help, you better not send a response at all. Reindl Harald wrote: > boah how i hate that "reply all" attitude leading to break > "reply to list" and leads in off-list replies > > > -------- Original-Nachricht -------- > Betreff: Re: [Dovecot] Dovecot not honoring configuration settings (auth failure) > Datum: Tue, 01 Apr 2014 00:02:42 +0200 > Von: Reindl Harald > Organisation: the lounge interactive design > An: noloader at gmail.com > > Am 31.03.2014 23:47, schrieb Jeffrey Walton: >> On Mon, Mar 31, 2014 at 5:39 PM, Reindl Harald wrote: >>> >>> Am 31.03.2014 23:37, schrieb Jeffrey Walton: >>>> My dovecot.conf has the following: >>>> >>>> # No results when searching the wiki >>>> disable_plaintext_auth = no >>>> >>>> # http://wiki2.dovecot.org/Authentication/Mechanisms >>>> auth_mechanisms = plain login digest-md5 cram-md5 >>>> >>>> When I attempt to run imapsync, I receive an error: >>>> >>>> Host2: says it has NO CAPABILITY for AUTHENTICATE LOGIN >>>> >>>> imapsync also dumps the helo string, and it is missing: >>>> >>>> Host2: * OK [CAPABILITY IMAP4rev1 LITERAL+ ... STARTTLS >>>> AUTH=PLAIN] Dovecot ready. >>>> >>>> I've restarted the dovecot service with 'service dovecot restart' and >>>> even rebooted the machine. >>>> >>>> There is nothing reported in any on the log files >>>> (/var/mail/dovecot.log and /var/log/mail.). >>>> >>>> Any ideas why dovecot is not honoring the setting in its config file? >>> >>> and the settings are *really* in /etc/dovecot/dovecot.conf >>> or in some ".d"-folder which may or may not be included? >> I believe they are in /etc/dovecot/dovecot.conf: >> >> # cat /etc/dovecot/dovecot.conf | grep -i auth_ >> auth_mechanisms = plain login digest-md5 cram-md5 > > my local machine is configured like below for years and it works > > well, post the whole config-file and strip only what is really needed to keep secret > > # provided services > protocols = imap > > # configure ssl > ssl = yes > ssl_cert = ssl_key = ssl_cipher_list = > ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES2$ > ssl_prefer_server_ciphers = yes > ssl_parameters_regenerate = 0 > > # configure imap-proxy > service imap-login { > inet_listener imap { > address = * > port = 143 > } > inet_listener imaps { > address = * > port = 993 > } > vsz_limit = 128M > service_count = 0 > process_min_avail = 1 > process_limit = 1 > client_limit = 200 > } > > # default settings > imap_capability = IMAP4 IMAP4rev1 ACL RIGHTS=texk NAMESPACE CHILDREN SORT QUOTA > THREAD=ORDEREDSUBJECT UNSELECT I$ > login_greeting = > login_log_format_elements = %u %r %m %c > login_log_format = %{login_status}: %s > pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > mail_max_userip_connections = 100 > auth_mechanisms = CRAM-MD5 DIGEST-MD5 APOP LOGIN PLAIN SCRAM-SHA-1 > disable_plaintext_auth = no > shutdown_clients = no > version_ignore = yes > From jtam.home at gmail.com Mon Mar 31 22:29:08 2014 From: jtam.home at gmail.com (Joseph Tam) Date: Mon, 31 Mar 2014 15:29:08 -0700 (PDT) Subject: [Dovecot] Dovecot not honoring configuration settings (auth failure) In-Reply-To: References: Message-ID: Jeffrey Walton writes: > I specified the following in my dovecot.conf. > > passdb { > args = /var/mail/%d/users > driver = passwd-file > } > > Attempts to use the configuration result in an authentication failure. > Here's an entry from dovecot.log when the failure happens: > > Mar 31 16:04:12 imap-login: Info: Disconnected (auth failed, 1 > attempts in 5 secs): user=, method=PLAIN, rip=127.0.0.1, > lip=127.0.1.1, secured, session= Just to confirm, your specified in the passdb corresponds to what is being authenticated (i.e. client is authenticating as "jeff at foo.com", not "jeff")? Otherwise, you'll need to add domains to your passdb, or configure "username_format=%n" Joseph Tam From h.reindl at thelounge.net Mon Mar 31 22:44:23 2014 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 01 Apr 2014 00:44:23 +0200 Subject: [Dovecot] Fwd: Dovecot not honoring configuration settings (auth failure) In-Reply-To: <5339E6F7.7000806@mpathix.com> References: <5339E602.7020507@thelounge.net> <5339E66A.5030602@thelounge.net> <5339E6F7.7000806@mpathix.com> Message-ID: <5339EFC7.9050908@thelounge.net> Am 01.04.2014 00:06, schrieb Milan Cvetkovic: > If you dont want to help, you better not send a response at all. did i ask you and why don't you just scroll down? if i don't want to help i would not post configs > Reindl Harald wrote: >> boah how i hate that "reply all" attitude leading to break >> "reply to list" and leads in off-list replies >> >> -------- Original-Nachricht -------- >> Betreff: Re: [Dovecot] Dovecot not honoring configuration settings (auth failure) >> Datum: Tue, 01 Apr 2014 00:02:42 +0200 >> Von: Reindl Harald >> Organisation: the lounge interactive design >> An: noloader at gmail.com >> >> Am 31.03.2014 23:47, schrieb Jeffrey Walton: >>> On Mon, Mar 31, 2014 at 5:39 PM, Reindl Harald wrote: >>>> >>>> Am 31.03.2014 23:37, schrieb Jeffrey Walton: >>>>> My dovecot.conf has the following: >>>>> >>>>> # No results when searching the wiki >>>>> disable_plaintext_auth = no >>>>> >>>>> # http://wiki2.dovecot.org/Authentication/Mechanisms >>>>> auth_mechanisms = plain login digest-md5 cram-md5 >>>>> >>>>> When I attempt to run imapsync, I receive an error: >>>>> >>>>> Host2: says it has NO CAPABILITY for AUTHENTICATE LOGIN >>>>> >>>>> imapsync also dumps the helo string, and it is missing: >>>>> >>>>> Host2: * OK [CAPABILITY IMAP4rev1 LITERAL+ ... STARTTLS >>>>> AUTH=PLAIN] Dovecot ready. >>>>> >>>>> I've restarted the dovecot service with 'service dovecot restart' and >>>>> even rebooted the machine. >>>>> >>>>> There is nothing reported in any on the log files >>>>> (/var/mail/dovecot.log and /var/log/mail.). >>>>> >>>>> Any ideas why dovecot is not honoring the setting in its config file? >>>> >>>> and the settings are *really* in /etc/dovecot/dovecot.conf >>>> or in some ".d"-folder which may or may not be included? >>> I believe they are in /etc/dovecot/dovecot.conf: >>> >>> # cat /etc/dovecot/dovecot.conf | grep -i auth_ >>> auth_mechanisms = plain login digest-md5 cram-md5 >> >> my local machine is configured like below for years and it works >> >> well, post the whole config-file and strip only what is really needed to keep secret >> >> # provided services >> protocols = imap >> >> # configure ssl >> ssl = yes >> ssl_cert = > ssl_key = > ssl_cipher_list = >> ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES2$ >> ssl_prefer_server_ciphers = yes >> ssl_parameters_regenerate = 0 >> >> # configure imap-proxy >> service imap-login { >> inet_listener imap { >> address = * >> port = 143 >> } >> inet_listener imaps { >> address = * >> port = 993 >> } >> vsz_limit = 128M >> service_count = 0 >> process_min_avail = 1 >> process_limit = 1 >> client_limit = 200 >> } >> >> # default settings >> imap_capability = IMAP4 IMAP4rev1 ACL RIGHTS=texk NAMESPACE CHILDREN SORT QUOTA >> THREAD=ORDEREDSUBJECT UNSELECT I$ >> login_greeting = >> login_log_format_elements = %u %r %m %c >> login_log_format = %{login_status}: %s >> pop3_client_workarounds = outlook-no-nuls oe-ns-eoh >> mail_max_userip_connections = 100 >> auth_mechanisms = CRAM-MD5 DIGEST-MD5 APOP LOGIN PLAIN SCRAM-SHA-1 >> disable_plaintext_auth = no >> shutdown_clients = no >> version_ignore = yes -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 246 bytes Desc: OpenPGP digital signature URL: