I could really use some help here please.
VPS Ubuntu 20.04 postfix 3.4.13 and dovecot 2.3.7.2
I have an email address: smoker1@sizzelicks.com mailto:smoker1@sizzelicks.com on the VPS.
When I try to log into the smoker1@sizzelicks.com mailto:smoker1@sizzelicks.com mailbox from Thunderbird I see that it's connected but then get a message saying the server disconnected saying:
"The server may have gone down or there may have been an network problem"
When I look at syslog on the VPS I see this:
Dec 8 23:03:34 softlinksys dovecot: imap-login: Login: user=smoker1@sizzelicks.com,
Dec 8 23:03:34 softlinksys dovecot: imap(smoker1@sizzelicks.com)<4981><pvGof6rShPRDCAOq>: Connection closed (No commands sent)
When a spammer tried to log in (s.petersqwe@softlinksys.com mailto:s.petersqwe@softlinksys.com not our email address) the log shows this:
Dec 8 23:16:51 softlinksys dovecot: imap-login: Disconnected (auth failed, 1 attempts in 4 secs): user=
So I see the difference: imap-login: Login: user=
Clearly, I'm successfully logging into the mailbox - yes?
BUT - immediately afterward the server disconnects with 'No commands sent'.
It looks to me like dovecot expects 'commands' that Thunderbird isn't sending. Is this correct?
Thunderbird queries for messages (or it's supposed to). The response & log is the same if I click ‘Get Messages’.
Also, I’ve sent numerous messages to smoker1@sizzelicks.com mailto:smoker1@sizzelicks.com . They do not bounce and I don’t get an email saying it couldn’t be delivered.
However, nothing is added to the logs from postfix about it.
Why is dovecot disconnecting? How can I fix this problem?
-----Original Message----- From: dovecot dovecot-bounces@dovecot.org On Behalf Of Alexander Dalloz Sent: Wednesday, December 8, 2021 5:53 PM To: dovecot@dovecot.org Subject: Re: Mailbox connection fails: Connection closed (No commands sent) Help please
Am 08.12.2021 um 01:46 schrieb Robert L Mathews:
On 12/7/21 2:49 PM, Alexander Dalloz wrote:
Use a not expired certificate.
$ openssl s_client -connect 194.163.45.150:993
CONNECTED(00000003)
depth=3 O = Digital Signature Trust Co., CN = DST Root CA X3 verify
error:num=10:certificate has expired notAfter=Sep 30 14:01:15 2021
GMT
That error's happening because you (Alexander) are using an old
openssl version that has the problem described on:
https://www.openssl.org/blog/blog/2021/09/13/LetsEncryptRootCertExpire https://www.openssl.org/blog/blog/2021/09/13/LetsEncryptRootCertExpire
/
That's not the problem that the original poster is having unless
Thunderbird also has the same problem, which it may; see:
https://community.letsencrypt.org/t/note-regarding-transition-to-r3-in https://community.letsencrypt.org/t/note-regarding-transition-to-r3-in
termediate-with-firefox-or-thunderbird/140049
https://www.arcanoae.com/adding-lets-encrypts-new-root-and-intermediat https://www.arcanoae.com/adding-lets-encrypts-new-root-and-intermediat
e-certificates-to-mozilla-applications/
In any case, this works fine with OpenSSL 1.1 or later:
$ openssl s_client -connect mail.sizzelicks.com:993
...
- OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE
LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot (Ubuntu) ready.
Confirmed, my fault.
# openssl s_client -connect 194.163.45.150:993
CONNECTED(00000003)
Can't use SSL_get_servername
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R3 verify return:1
depth=0 CN = aecperformance.com
verify return:1
Certificate chain
0 s:CN = aecperformance.com
i:C = US, O = Let's Encrypt, CN = R3
1 s:C = US, O = Let's Encrypt, CN = R3
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
2 s:C = US, O = Internet Security Research Group, CN = ISRG Root X1
i:O = Digital Signature Trust Co., CN = DST Root CA X3
Alexander