Thanks *so much* for all your help.

Another complete rebuild and I think I’ve finally got it.

I was able to log into mail.sizzelicks.com for smoker1@sizzelicks.com this time with no trouble.

I sent an email to smoker1@sizzelicks.com from a gmail account and was able to retrieve it in Thunderbird.

I replied to the gmail email and in gmail.com I got the response.

 

Now I can add email accounts to the database for any of our domains and they work!

I've added responses below.

 

-----Original Message-----
From: owner-postfix-users@postfix.org <owner-postfix-users@postfix.org> On Behalf Of raf
Sent: Thursday, December 9, 2021 1:07 AM
To: postfix-users@postfix.org
Subject: Re: virtual mailbox domains??

 

On Tue, Dec 07, 2021 at 10:25:44AM -0500, postfix@aecperformance.com wrote:

 

> Sorry I sent this from the wrong email address.

>

> VPS Ubuntu 20.04 postfix 3.4.13 and dovecot 2.3.7.2

>

> I'm making progress but still not there.

>

> Any help would be greatly appreciated.

>

> I'm getting the errors:

>

> warning: SASL: Connect to private/auth failed: Connection refused

>

> fatal: no SASL authentication mechanisms

>

>

> I have a param in main.cf: smtpd_sasl_path = private/auth

>

> I do not have a folder /etc/postfix/private/auth

>

> I do have a folder /etc/postfix/auth but nothing is in it.

>

> How can I fix this error?

 

The reference to private/auth is referring to dovecot's authentication socket under postfix's chroot directory.

It's in /var/spool/postfix/private/auth, not /etc/postfix.

 

You have set that up in dovecot's config:

 

  service auth {

    unix_listener /var/spool/postfix/private/auth {

      group = postfix

      mode = 0666

      user = postfix

    }

    unix_listener auth-userdb {

      mode = 0600

      user = vmail

    }

    user = dovecot

  }

 

My version of that looks like:

 

  service auth {

    unix_listener /var/spool/postfix/private/auth {

      mode = 0666

    }

  }

 

So it looks like that should be OK.

Does /var/spool/postfix/private/auth exist?

Mine has root as owner/group. Yours should have postfix as owner/group. But that shouldn't matter as long as the mode is 0666.

I must of changed the mode to 0660 but per your suggestion I changed it to 0666. Thanks.

Yes it does exist.

ls -l /var/spool/postfix/private/auth

srw-rw---- 1 postfix postfix 0 Dec  8 21:50 /var/spool/postfix/private/auth

 

 

If not, check dovecot's log messages for problems with it.

But I don't know what to look for. The dovecot mailing list folks might be more useful for that.

 

It should exist and be used by dovecot. If you have lsof installed, you can check that:

 

  > sudo lsof /var/spool/postfix/private/auth

  COMMAND     PID    USER   FD   TYPE             DEVICE SIZE/OFF     NODE NAME

  dovecot   17341    root   53u  unix 0xffff8e43c69f7400      0t0 16873340 /var/spool/postfix/private/auth type=STREAM

  auth    1521507 dovecot   13u  unix 0xffff8e43c69f7400      0t0 16873340 /var/spool/postfix/private/auth type=STREAM

  auth    1521507 dovecot   21u  unix 0xffff8e43c417c800      0t0 69451443 /var/spool/postfix/private/auth type=STREAM

  auth    1521507 dovecot   22u  unix 0xffff8e43c9fc2400      0t0 69453124 /var/spool/postfix/private/auth type=STREAM

 

sudo lsof /var/spool/postfix/private/auth

COMMAND  PID USER   FD   TYPE             DEVICE SIZE/OFF       NODE NAME

dovecot 4550 root   58u  unix 0x0000000000000000      0t0 1305802532 /var/spool/postfix/private/auth type=STREAM

 

Something else that might or might not be a (different) problem is that the TLS certificate at mail.sizzlelicks.com doesn't certify the domain mail.sizzlelicks.com. Its list of domains contains sizzelicks.com and www.sizzelicks.com but not mail.sizzelicks.com. That might cause problems with Thunderbird trying to connect for IMAPS. I think you reported such an error message earlier. So you might want to add the mail.sizzelicks.com domain to that certificate. But that's not related to the failure to connect to the dovecot auth socket.

 

You are correct and I sure wish I saw *this*  a week ago😊.

I did a rebuild due to lots of trouble trying to add the certs.

Now I’ve got it all back up with the certificates for all of the mail.mydomain.com  MX records.

THANK YOU

 

 

cheers,

raf

 

> -----Original Message-----

> From: owner-postfix-users@postfix.org

> <mailto:owner-postfix-users@postfix.org

> <owner-postfix-users@postfix.org

> <mailto:owner-postfix-users@postfix.org> > On Behalf Of Wietse Venema

> Sent: Monday, December 6, 2021 11:04 AM

> To: Postfix users <postfix-users@postfix.org

> <mailto:postfix-users@postfix.org> >

> Subject: Re: virtual mailbox domains??

>

>

>  <mailto:postfix@aecperformance.com> postfix@aecperformance.com:

>

> > Command: sudo postfix status

>

> > postfix/postfix-script: the Postfix mail system is running: PID:

> > 38284

>

>

> Good.

>

>

> > I attempted to send an email to  <mailto:smoker1@sizzelicks.com>

> smoker1@sizzelicks.com

>

> > < <mailto:smoker1@sizzelicks.com> mailto:smoker1@sizzelicks.com> .

> > It

> bounced.

>

>

> What is the Postfix logging for this? Be sure to include more than

> only the delivery error (i.e. logging from pickup or smtpd; cleanup; qmgr; ...).

>

>

> This is the first problem that you need to fix.

>

>

> > In the log I see a few attempts to connect from spammers. I do not

> > see

>

> > my laptop IP or anything at all about what I did.

>

>

> That is the second problem to fix. I suspect a firewalling or routing

> problem.

>

>

>                 Wietse

>