define auth timeout
Daniel Betz
dbetz at df.eu
Wed Feb 8 10:21:37 UTC 2017
Hello list,
when reloading dovecot via "doveadm reload" it throws me tons of errors like this:
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable
this is so long, till all client logins time out:
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8576.416 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8574.736 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 13163.1758 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 13163.1760 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 13163.1761 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 13163.1762 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8566.121 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8583.1702 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: login(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8582.1834 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8576.340 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: login(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8576.335 timed out after 150 secs, state=3
I have searched for this timeout in dovecot config, but havent found something.
Can you tell me how to define this timeout, or is this an LDAP timeout in userdb/passdb and dovecot-ldap.conf ?
Or better, how to prevent this failures?
I can see them sometimes in the log too w/o reloading.
Regards,
Daniel
dovecot-ldap.conf:
uris = ldapi://%2Fvar%2Frun%2Fldapi
dn = cn=xxxxxxx,o=domain,c=com
dnpass = xxxxxxxxxxxxx
auth_bind = no
ldap_version = 3
base = o=domain,c=com
user_attrs = mail=user,mailMessageStore=home,\ mailQuota=quota_rule=*:storage=%$
iterate_filter= (|(mailHost=server1.domain.com)(mailHost=popserver1.domain.com))
user_filter = (&(accountstatus=active)(|(uid=%u)(mail=%u)))
pass_attrs = mail=user,userPassword=password,=proxy_maybe=y,mailHost=host,=destuser=%u[%r]
pass_filter = (&(accountstatus=active)(|(uid=%u)(mail=%u)))
dovecot.conf:
# 2.2.25 (7be1766): /usr/local/dovecot2/etc/dovecot/dovecot.conf
# OS: Linux 3.10.0-327.36.3.el7.x86_64 x86_64 CentOS Linux release 7.2.1511 (Core)
auth_cache_negative_ttl = 1 mins
auth_cache_size = 64 M
auth_cache_ttl = 2 hours
auth_mechanisms = plain login
auth_username_chars =
auth_verbose = yes
base_dir = /var/run/dovecot/
debug_log_path = /dev/null
default_login_user = dovecot
disable_plaintext_auth = no
doveadm_password = # hidden, use -P to show it
doveadm_port = 12345
first_valid_gid = 1001
first_valid_uid = 1001
info_log_path = /var/log/dovecot/messages
lda_mailbox_autocreate = yes
lda_original_recipient_header = X-Envelope-To
log_path = /dev/stderr
login_log_format_elements = user=[%u] method=%m rip=%r lip=%l %c
mail_gid = 1001
mail_location = mdbox:~:INDEX=%h/INDEX
mail_plugins = " notify replication stats"
mail_uid = 1001
mbox_write_locks = fcntl
namespace {
inbox = yes
location =
mailbox Drafts {
auto = no
special_use = \Drafts
}
mailbox "Gesendete Elemente" {
auto = no
special_use = \Sent
}
mailbox "Infizierte Objekte" {
auto = no
special_use = \Junk
}
mailbox Sent {
auto = no
special_use = \Sent
}
mailbox "Sent Messages" {
auto = no
special_use = \Sent
}
mailbox Spam {
auto = no
special_use = \Junk
}
mailbox Trash {
auto = no
special_use = \Trash
}
prefix =
separator = .
type = private
}
namespace inbox {
hidden = yes
inbox = no
list = no
location =
prefix = INBOX.
separator = .
}
passdb {
args = /usr/local/dovecot2/etc/dovecot/dovecot-ldap.conf
driver = ldap
}
passdb {
args = /usr/local/dovecot2/etc/dovecot/dovecot-ldap2.conf
driver = ldap
}
plugin {
quota = dict:User quota::file:%h/mdbox/dovecot-quota
quota_warning = storage=85%% quota-warning 85 %u
stats_refresh = 30 secs
stats_track_cmds = yes
}
replication_max_conns = 30
sendmail_path = /usr/local/exim/bin/exim
service aggregator {
fifo_listener replication-notify-fifo {
mode = 0666
user = popuser
}
unix_listener replication-notify {
mode = 0666
user = popuser
}
}
service anvil {
client_limit = 60000
}
service auth {
client_limit = 60000
unix_listener auth-userdb {
mode = 0666
user = popuser
}
unix_listener auth {
mode = 0666
user = popuser
}
}
service config {
unix_listener config {
user = popuser
}
}
service dict {
unix_listener dict {
mode = 0666
user = popuser
}
}
service doveadm {
inet_listener {
port = 12345
}
user = popuser
}
service imap-login {
chroot = login
client_limit = 600
process_limit = 100
process_min_avail = 16
service_count = 0
}
service imap {
executable = /usr/local/dovecot2/libexec/dovecot/imap
process_limit = 250000
}
service ipc {
client_limit = 60000
unix_listener ipc {
mode = 0650
user = dovecot
}
unix_listener login/ipc-proxy {
mode = 0650
user = dovecot
}
}
service lmtp {
unix_listener lmtp {
mode = 0666
user = popuser
}
}
service pop3-login {
chroot = login
client_limit = 600
process_limit = 100
process_min_avail = 16
service_count = 0
}
service pop3 {
executable = /usr/local/dovecot2/libexec/dovecot/pop3
process_limit = 250000
}
service replicator {
unix_listener replicator-doveadm {
mode = 0600
user = popuser
}
}
service stats {
fifo_listener stats-mail {
mode = 0600
user = popuser
}
}
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
ssl_protocols = TLSv1.2 TLSv1.1 TLSv1 !SSLv3 !SSLv2
userdb {
args = /usr/local/dovecot2/etc/dovecot/dovecot-ldap.conf
driver = ldap
}
verbose_proctitle = yes
protocol doveadm {
mail_plugin_dir = /usr/local/dovecot2/lib/dovecot/
mail_plugins = quota
passdb {
args = /usr/local/dovecot2/etc/dovecot/dovecot-doveadm.conf
driver = ldap
name =
}
userdb {
args = /usr/local/dovecot2/etc/dovecot/dovecot-doveadm.conf
driver = ldap
name =
}
}
protocol lda {
info_log_path = /var/log/dovecot-lda
log_path = /var/log/dovecot-lda
log_timestamp = "%b %d %H:%M:%S "
mail_plugin_dir = /usr/local/dovecot2/lib/dovecot/
mail_plugins = quota
postmaster_address = %u
}
protocol imap {
imap_client_workarounds =
mail_max_userip_connections = 100
mail_plugin_dir = /usr/local/dovecot2/lib/dovecot/
mail_plugins = quota imap_quota stats imap_stats
}
protocol pop3 {
mail_plugin_dir = /usr/local/dovecot2/lib/dovecot/
mail_plugins = quota stats
pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
pop3_enable_last = yes
pop3_fast_size_lookups = yes
pop3_reuse_xuidl = no
pop3_uidl_format = %g
}
local xx.xx.xx.54 {
protocol imap {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
}
}
local xx.xx.xx.54 {
protocol pop3 {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
}
}
local xx.xx.xx.55 {
protocol imap {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert2.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert2.key
}
}
local xx.xx.xx.55 {
protocol pop3 {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert2.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert2.key
}
}
local xx.xx.xx.56 {
protocol imap {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert3.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert3.key
}
}
local xx.xx.xx.56 {
protocol pop3 {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert3.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert3.key
}
}
local xxx:xxx:xxx::::fa {
protocol imap {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
}
}
local xxx:xxx:xxx::::fa {
protocol pop3 {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
}
}
local xxx:xxx:xxx::::fb {
protocol imap {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert2.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert2.key
}
}
local xxx:xxx:xxx::::fb {
protocol pop3 {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert2.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert2.key
}
}
local xxx:xxx:xxx::::fc {
protocol imap {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert3.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert3.key
}
}
local xxx:xxx:xxx::::fc {
protocol pop3 {
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert3.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert3.key
}
}
More information about the dovecot
mailing list