- dovecot - dovecot.org

[Dovecot] Problem with opening ports in alpha5 ?
by Bruce A. Mallett 07 Jan '09

07 Jan '09

If I leave the "listen" value as the default in /etc/dovecot.conf I'll get a message similar to the following on each port that it tries to open during startup: # dovecot -F Fatal: listen(::, 143) failed: Address already in use If I set either: listen = * or listen = [::] then it will start up fine. Perhaps it is as though the code tries to open the port twice for both ip4 and ip6? - Bruce

2 6

[Dovecot] Apple patches 11-14
by Mike Abbott 07 Jan '09

07 Jan '09

These are the last patches for now, and they're small. The base for each of them is dovecot-1.1.7 + Apple patches 9 and 10, again not because of a logical dependency but just because these patches change parts of the earlier patches. Patch #11 adds a few dtrace providers to key points in the code. We are still validating the correct placement and usefulness of these. One cool thing about dtrace is that when not in use the hooks literally are just a couple of no-op instructions. Patch #12 increases many listen queue sizes to handle high loads better. The new values are not necessarily the best possible values but they do allow more throughput. Patch #13 makes dovecot adapt to dynamic host identity changes upon config reload. Patch #14 covers three miscellaneous changes, to support more file descriptors and an "unlimited" number of mail processes, and a different default mail user. That's all our patches for now!

3 5

[Dovecot] Obtaining the chroot-cage directory of the mailstore
by Stefan Jurisch 07 Jan '09

07 Jan '09

Hello, I'd like to find a function in the sourcecode which enables me to get the chroot-path of the mailstore, so I can concatenate it with the result of mail_storage_get_mailbox_path to get the full path of a mailbox within the filesystem. Does such a function exist? Who can help me? Thanks in advance. Stefan -- SIEGNETZ.IT GmbH { w3o-services } Schneppenkauten 1a D-57076 Siegen Tel.: 0271 68193-0 Fax: 0271 68193-29 Geschäftsführer: Oliver Seitz Handelsregister-Nummer: HRB4838 Registergericht: Amtsgericht Siegen -------------------------------- Das Wort “WINDOWS” stammt aus einem alten Sioux-Dialekt und bedeutet: “Weißer Mann starrt durch Glasscheibe auf Sanduhr.” -------------------------------- -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.

2 2

[Dovecot] Bug Report on Expire PlugIn (update)
by Jörg Leis 07 Jan '09

07 Jan '09

I did the same thing on the console and this is what happens: bash-3.2$ openssl s_client -connect example.com:993 CONNECTED(00000003) [...] Server certificate -----BEGIN CERTIFICATE----- [...] -----END CERTIFICATE----- [...] CA --- No client certificate CA names sent --- SSL handshake has read 4595 bytes and written 322 bytes --- New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA Server public key is 2048 bit Compression: NONE Expansion: NONE SSL-Session: [...] --- * OK Dovecot ready . login admin(a)example.com secret . OK Logged in. . select INBOX * FLAGS (\Answered \Flagged \Deleted \Seen \Draft KMAILFORWARDED KMAILTODO KMAILWATCHED KMAILIGNORED $FORWARDED $TODO $WATCHED $IGNORED NonJunk) * OK [PERMANENTFLAGS (\Answered \Flagged \Deleted \Seen \Draft KMAILFORWARDED KMAILTODO KMAILWATCHED KMAILIGNORED $FORWARDED $TODO $WATCHED $IGNORED NonJunk \*)] Flags permitted. * 4 EXISTS * 0 RECENT * OK [UNSEEN 1] First unseen. * OK [UIDVALIDITY 1230136990] UIDs valid * OK [UIDNEXT 77] Predicted next UID . OK [READ-WRITE] Select completed. . copy 1 Trash closed

1 0

[Dovecot] IMAP Folder permissions
by Stuart Gall 07 Jan '09

07 Jan '09

Hello, Happy new year. I have a dovecot with exim installation. I am using virtual users for mail and IMAP. When dovecot creates a folder from imap user the permissions are rwx------ I need them to be rwxrwx--- Is there a way to change this in the configuration file ? TIA Stuart Stuart Gall ------------------------------------------------------------------------ ---------- There are three sorts of mathematician: those that can count and those that can't. ------------------------------------------------------------------------ ----------

2 1

[Dovecot] writing a dovecot plugin / segfault
by Stefan Jurisch 07 Jan '09

07 Jan '09

Hi together, I am new to this list and new to dovecot itself. I have to write a plugin that implements some ACL-voodoo to be used instead of the standard ACL stuff of dovecot (it shall allow just application-driven folder-sharing - no more, no less). Though I started programming with C, my last experiences are some days old, but now I have written the function sekeletons and the registration function with the 'register-command"-calls etc. The makefile-stuff I copied from the imap-quota-plugin and modified it, so all appearances of "lib11_imap_quota_plugin..." and similar are now found as "lib11_folderacl_plugin..." and so on. In short words: I think I have done all nessessary mods to the source (I tried it some days ago with a slightly older version of dovecot, and until I did some unknown thing, it worked quite well...) to make the whole thing work. One example function is (just testing at the moment): /* MYRIGHTS <folder>: retreive the rights of the current folder */ static bool cmd_myrights(struct client_command_context *cmd) { struct mail_storage *storage; struct mailbox *folder; const char *folder_name; string_t *response; /* read argument: <folder> */ if (!client_read_string_args(cmd, 1, &folder_name)) return FALSE; /* work done from here... */ /* for the moment, do a dummy response */ str_append(response, "* MYRIGHTS "); str_append(response, folder_name); str_append(response, " lrswipcda"); client_send_line(cmd->client, str_c(response)); client_send_tagline(cmd, "OK Completed."); return TRUE; } But when testing via "telnet localhost 143" and doing a "20 myrights INBOX" the imap thread just crashes and does not give any answer. in /var/log/messages I only find something like the following entry: Jan 5 13:40:12 kungfu kernel: imap[8991]: segfault at 4 ip 080d5c67 sp bf82b040 error 4 in imap[8048000+b8000] Maybe somebody can tell me, what this is? If needed, I also post the complete code itself somewhere. Thanks in advance. Stefan -- SIEGNETZ.IT GmbH { w3o-services } Schneppenkauten 1a D-57076 Siegen Tel.: 0271 68193-0 Fax: 0271 68193-29 Geschäftsführer: Oliver Seitz Handelsregister-Nummer: HRB4838 Registergericht: Amtsgericht Siegen -------------------------------- Das Wort “WINDOWS” stammt aus einem alten Sioux-Dialekt und bedeutet: “Weißer Mann starrt durch Glasscheibe auf Sanduhr.” -------------------------------- -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.

1 1

[Dovecot] mbox "Next message unexpectedly lost" bug fixed
by Timo Sirainen 07 Jan '09

07 Jan '09

Good news, everyone! The most annoying bug in v1.1 series should finally be fixed by these patches: http://hg.dovecot.org/dovecot-1.1/rev/f28348c5201e http://hg.dovecot.org/dovecot-1.1/rev/74c47fcfb420 http://hg.dovecot.org/dovecot-1.1/rev/a28520d26b5a http://hg.dovecot.org/dovecot-1.1/rev/539f8d983285 http://hg.dovecot.org/dovecot-1.1/rev/9b7af230f9f0 They also make sure that mbox is never read while it's not locked. I think that could have happened in some situations with v1.1. Hopefully mbox handling will now finally be as stable in v1.1 as it was in v1.0. I'll make a new v1.1 release after seeing what bug fixes are coming from Apple, so probably next week.

3 3

[Dovecot] New SSL certificate problem
by Stewart Dean 05 Jan '09

05 Jan '09

Our DC has been using a Verisign certificate. Over the past year, we've been using a Digicert Wildcard Plus certificate for almost all of our machines, and I wanted to switched over our DC mailserver. I used the following command to generate the CSR and key: openssl req -new -newkey rsa:1024 -nodes -out star_bard_edu.csr -keyout star_bard_edu.key -subj "/C=US/ST=NY/L=ourtown/O=Bard College IT/OU=Bard College /CN=*.bard.edu" The resultant CSR verified and I submitted it to digicert and got back our cert, plus their intermediate and Trusted root certs. I killed the root instance of dovecot and waited for all the children to die I put together the intermediate cert (first) and our cert (second) into /usr/ssl/certs/dovecot.pem I put the key star_bard_edu.key in /var/ssl/private/dovecot.pem I restarted dovecot, but the imap login instances didn't appear, so I shifted back to the original combined cert file and key, restarted dovecot and it came up OK I check the syslog and saw these error messages: Jan 5 10:19:49 mercury mail:err|error dovecot: imap-login: Can't load private k ey file /var/ssl/private/dovecot.pem: error:0B080074:x509 certificate routines:X 509_check_private_key:key values mismatch Jan 5 10:19:49 mercury mail:err|error last message repeated 8 times Jan 5 10:19:49 mercury mail:err|error dovecot: child 4051108 (login) returned e rror 89 Jan 5 10:19:49 mercury mail:err|error dovecot: child 4231382 (login) returned e rror 89 I checked my key and it has the same time stamp as my CSR, so I didn't somehow get the wrong key. Both the old and new key are 600; if the old one works based on perms, the new one should too. Would some kind soul tell me what I'm missing? Or is there a problem using wild card certificate with DC? Is there an openssl command to verify the key. Or is it that the key is unencrypted? -- ==== Once upon a time, the Internet was a friendly, neighbors-helping-neighbors small town, and no one locked their doors. Now it's like an apartment in Bed-Stuy: you need three heavy duty pick-proof locks, one of those braces that goes from the lock to the floor, and bars on the windows.... ==== Stewart Dean, Unix System Admin, Bard College, New York 12504 sdean(a)bard.edu voice: 845-758-7475, fax: 845-758-7035

2 2

[Dovecot] login fails when username has apostrophe
by Karl Latiss 05 Jan '09

05 Jan '09

Hi I've added the apostrophe character to auth_username_chars however authentication still fails. I'm using LDAP with the following details: dovecot version 1.1.7 openldap client library 2.4.11 With auth_verbose = yes and auth_debug = yes set I see the following in the logs. Note the initial escaped apostrophe and the subsequent escaped escape in the filter! ----- start log ----- Jan 5 16:15:05 www-example1 dovecot: auth(default): client in: AUTH 1 PLAIN service=imap lip=10.1.1.180 rip=10.3.96.60 lport=143 rport=48733 resp=<hidden> Jan 5 16:15:05 www-example1 dovecot: auth(default): ldap(julie.o \'reilly(a)example.com,10.3.96.60) pass search: base=dc=example, dc=com scope=subtree filter=(&(objectClass=qmailUser)(uid=julie.o\\'reilly)) field s=mail,userPassword Jan 5 16:15:05 www-example1 dovecot: auth(default): ldap(julie.o \'reilly(a)example.com,10.3.96.60) unknown user Jan 5 16:15:07 www-example1 dovecot: auth(default): client out: FAIL 1 user=julie.o\'reilly(a)example.com failed, 1 attempts): user=<julie.o\'reilly(a)example.com>, method=PLAIN, rip=10.3.96.60, lip=10.1.1.180 ----- end log ----- Users without apostrophes can authenticate successfully. If I've missed anything please let me know. # dovecot -n # 1.1.7: /usr/local/etc/dovecot.conf # OS: FreeBSD 7.0-RELEASE amd64 ufs protocols: imap listen: 10.1.1.180 ssl_disable: yes disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable: /usr/local/libexec/dovecot/imap-login login_greeting_capability: yes verbose_proctitle: yes first_valid_uid: 999 first_valid_gid: 999 mail_privileged_group: mail mail_uid: 999 mail_gid: 999 mail_location: maildir:/usr/home/vmail/%Ld/%Ln imap_client_workarounds: delay-newmail netscape-eoh tb-extra-mailbox-sep auth default: mechanisms: plain login username_chars: abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@' username_format: %Lu passdb: driver: ldap args: /usr/local/etc/dovecot-ldap.conf userdb: driver: ldap args: /usr/local/etc/dovecot-ldap.conf socket: type: listen client: path: /var/run/dovecot/auth-client mode: 432 master: path: /var/run/dovecot/auth-master mode: 384 user: vmail # grep -v '^ *$#.*$\?$' dovecot-ldap.conf uris = ldap://www-example1:389 dn = uid=xxxx,dc=example,dc=com dnpass = xxxx sasl_bind = no tls = no auth_bind = no ldap_version = 3 base = dc=example, dc=com user_attrs = homeDirectory=home=/usr/home/vmail/%L $,mailMessageStore=mail=maildir:/usr/home/vmail/%L$,=uid=999,=gid=999 user_filter = (&(objectClass=qmailUser)(uid=%n)) pass_attrs = mail=user,userPassword=password pass_filter = (&(objectClass=qmailUser)(uid=%n)) default_pass_scheme = PLAIN -- Karl Latiss <klatiss(a)nextdigital.com> Next Digital

1 0

[Dovecot] Permission to distribute Dovecot run file
by Rick Widmer 05 Jan '09

05 Jan '09

I am working on updating the Shupp toaster, http://shupp.org/toaster/ a set of files and instructions for installing qmail, vpopmail, qmailadmin and squirrelmail. Two of my most important goals are switching the imap program from courier to Dovecot, and closer integration with OpenSuSE. (Which I run my mail servers on.) To follow the style of the toaster I need a place where I can obtain the init.d script from http://wiki.dovecot.org/DovecotInit I would prefer to have permission to host the file myself so I don't have to worry about creating patches if there is ever a need for my run file to be different from yours. If that is not acceptable, would you please either provide a URL where I can download just the run file, or include it in the distribution. Thanks, Rick

3 2