define auth timeout

Daniel Betz dbetz at df.eu
Wed Feb 8 10:21:37 UTC 2017


Hello list,

when reloading dovecot via "doveadm reload" it throws me tons of errors like this:
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 imap: Error: net_connect_unix(/run/dovecot/auth-master) failed: Resource temporarily unavailable

this is so long, till all client logins time out:
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8576.416 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8574.736 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 13163.1758 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 13163.1760 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 13163.1761 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 13163.1762 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8566.121 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8583.1702 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: login(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8582.1834 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: plain(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8576.340 timed out after 150 secs, state=3
Feb 08 10:57:30 server1 dovecot[18243]: Feb 08 10:57:30 auth: Error: login(mail at adress,xx.xx.xx.xx.<xxxxxxxxxxxx>): Request 8576.335 timed out after 150 secs, state=3

I have searched for this timeout in dovecot config, but havent found something.
Can you tell me how to define this timeout, or is this an LDAP timeout in userdb/passdb and dovecot-ldap.conf ?

Or better, how to prevent this failures?
I can see them sometimes in the log too w/o reloading.

Regards,
Daniel


dovecot-ldap.conf:



uris = ldapi://%2Fvar%2Frun%2Fldapi

dn = cn=xxxxxxx,o=domain,c=com

dnpass = xxxxxxxxxxxxx

auth_bind = no

ldap_version = 3

base = o=domain,c=com

user_attrs = mail=user,mailMessageStore=home,\ mailQuota=quota_rule=*:storage=%$

iterate_filter= (|(mailHost=server1.domain.com)(mailHost=popserver1.domain.com))

user_filter = (&(accountstatus=active)(|(uid=%u)(mail=%u)))

pass_attrs = mail=user,userPassword=password,=proxy_maybe=y,mailHost=host,=destuser=%u[%r]

pass_filter = (&(accountstatus=active)(|(uid=%u)(mail=%u)))



dovecot.conf:
# 2.2.25 (7be1766): /usr/local/dovecot2/etc/dovecot/dovecot.conf
# OS: Linux 3.10.0-327.36.3.el7.x86_64 x86_64 CentOS Linux release 7.2.1511 (Core)
auth_cache_negative_ttl = 1 mins
auth_cache_size = 64 M
auth_cache_ttl = 2 hours
auth_mechanisms = plain login
auth_username_chars =
auth_verbose = yes
base_dir = /var/run/dovecot/
debug_log_path = /dev/null
default_login_user = dovecot
disable_plaintext_auth = no
doveadm_password =  # hidden, use -P to show it
doveadm_port = 12345
first_valid_gid = 1001
first_valid_uid = 1001
info_log_path = /var/log/dovecot/messages
lda_mailbox_autocreate = yes
lda_original_recipient_header = X-Envelope-To
log_path = /dev/stderr
login_log_format_elements = user=[%u] method=%m rip=%r lip=%l %c
mail_gid = 1001
mail_location = mdbox:~:INDEX=%h/INDEX
mail_plugins = " notify replication stats"
mail_uid = 1001
mbox_write_locks = fcntl
namespace {
  inbox = yes
  location =
  mailbox Drafts {
    auto = no
    special_use = \Drafts
  }
  mailbox "Gesendete Elemente" {
    auto = no
    special_use = \Sent
  }
  mailbox "Infizierte Objekte" {
    auto = no
    special_use = \Junk
  }
  mailbox Sent {
    auto = no
    special_use = \Sent
  }
  mailbox "Sent Messages" {
    auto = no
    special_use = \Sent
  }
  mailbox Spam {
    auto = no
    special_use = \Junk
  }
  mailbox Trash {
    auto = no
    special_use = \Trash
  }
  prefix =
  separator = .
  type = private
}
namespace inbox {
  hidden = yes
  inbox = no
  list = no
  location =
  prefix = INBOX.
  separator = .
}
passdb {
  args = /usr/local/dovecot2/etc/dovecot/dovecot-ldap.conf
  driver = ldap
}
passdb {
  args = /usr/local/dovecot2/etc/dovecot/dovecot-ldap2.conf
  driver = ldap
}
plugin {
  quota = dict:User quota::file:%h/mdbox/dovecot-quota
  quota_warning = storage=85%% quota-warning 85 %u
  stats_refresh = 30 secs
  stats_track_cmds = yes
}
replication_max_conns = 30
sendmail_path = /usr/local/exim/bin/exim
service aggregator {
  fifo_listener replication-notify-fifo {
    mode = 0666
    user = popuser
  }
  unix_listener replication-notify {
    mode = 0666
    user = popuser
  }
}
service anvil {
  client_limit = 60000
}
service auth {
  client_limit = 60000
  unix_listener auth-userdb {
    mode = 0666
    user = popuser
  }
  unix_listener auth {
    mode = 0666
    user = popuser
  }
}
service config {
  unix_listener config {
    user = popuser
  }
}
service dict {
  unix_listener dict {
    mode = 0666
    user = popuser
  }
}
service doveadm {
  inet_listener {
    port = 12345
  }
  user = popuser
}
service imap-login {
  chroot = login
  client_limit = 600
  process_limit = 100
  process_min_avail = 16
  service_count = 0
}
service imap {
  executable = /usr/local/dovecot2/libexec/dovecot/imap
  process_limit = 250000
}
service ipc {
  client_limit = 60000
  unix_listener ipc {
    mode = 0650
    user = dovecot
  }
  unix_listener login/ipc-proxy {
    mode = 0650
    user = dovecot
  }
}
service lmtp {
  unix_listener lmtp {
    mode = 0666
    user = popuser
  }
}
service pop3-login {
  chroot = login
  client_limit = 600
  process_limit = 100
  process_min_avail = 16
  service_count = 0
}
service pop3 {
  executable = /usr/local/dovecot2/libexec/dovecot/pop3
  process_limit = 250000
}
service replicator {
  unix_listener replicator-doveadm {
    mode = 0600
    user = popuser
  }
}
service stats {
  fifo_listener stats-mail {
    mode = 0600
    user = popuser
  }
}
ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
ssl_protocols = TLSv1.2 TLSv1.1 TLSv1 !SSLv3 !SSLv2
userdb {
  args = /usr/local/dovecot2/etc/dovecot/dovecot-ldap.conf
  driver = ldap
}
verbose_proctitle = yes
protocol doveadm {
  mail_plugin_dir = /usr/local/dovecot2/lib/dovecot/
  mail_plugins = quota
  passdb {
    args = /usr/local/dovecot2/etc/dovecot/dovecot-doveadm.conf
    driver = ldap
    name =
  }
  userdb {
    args = /usr/local/dovecot2/etc/dovecot/dovecot-doveadm.conf
    driver = ldap
    name =
  }
}
protocol lda {
  info_log_path = /var/log/dovecot-lda
  log_path = /var/log/dovecot-lda
  log_timestamp = "%b %d %H:%M:%S "
  mail_plugin_dir = /usr/local/dovecot2/lib/dovecot/
  mail_plugins = quota
  postmaster_address = %u
}
protocol imap {
  imap_client_workarounds =
  mail_max_userip_connections = 100
  mail_plugin_dir = /usr/local/dovecot2/lib/dovecot/
  mail_plugins = quota imap_quota stats imap_stats
}
protocol pop3 {
  mail_plugin_dir = /usr/local/dovecot2/lib/dovecot/
  mail_plugins = quota stats
  pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
  pop3_enable_last = yes
  pop3_fast_size_lookups = yes
  pop3_reuse_xuidl = no
  pop3_uidl_format = %g
}
local xx.xx.xx.54 {
  protocol imap {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
  }
}
local xx.xx.xx.54 {
  protocol pop3 {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
  }
}
local xx.xx.xx.55 {
  protocol imap {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert2.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert2.key
  }
}
local xx.xx.xx.55 {
  protocol pop3 {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert2.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert2.key
  }
}
local xx.xx.xx.56 {
  protocol imap {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert3.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert3.key
  }
}
local xx.xx.xx.56 {
  protocol pop3 {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert3.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert3.key
  }
}
local xxx:xxx:xxx::::fa {
  protocol imap {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
  }
}
local xxx:xxx:xxx::::fa {
  protocol pop3 {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert1.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert1.key
  }
}
local xxx:xxx:xxx::::fb {
  protocol imap {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert2.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert2.key
  }
}
local xxx:xxx:xxx::::fb {
  protocol pop3 {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert2.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert2.key
  }
}
local xxx:xxx:xxx::::fc {
  protocol imap {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert3.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert3.key
  }
}
local xxx:xxx:xxx::::fc {
  protocol pop3 {
    ssl_cert = </usr/local/dovecot2/etc/dovecot/certs/cert3.crt
    ssl_key = </usr/local/dovecot2/etc/dovecot/certs/cert3.key
  }
}




More information about the dovecot mailing list