On 04/04/18 23:10, Kevin Cummings wrote: I’m in the process of upgrading an old server from Fedora 21 to something more modern. Now, Dovecot won’t let any client login to get their email.
PAM audit_log_acct_message() failed: Operation not permitted imap-login: Disconnected (AUTH failed, 2 attempts in 10 secs): user=<username>, method=PLAIN, rip=192.168.1.94 lip=192.168.1.94, TLS, session=<sessionid>
# 2.3.1 (8e2f634): /etc/dovecot/dovecot.conf
# OS: Linux 4.4.14-200.fc22.x86_64 x86_64 Fedora release 22 (Twenty Two)
# Hostname: kjchome.homeip.net http://kjchome.homeip.net
mbox_write_locks = fcntl
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = \Drafts}
mailbox Junk {
special_use = \Junk}
mailbox Sent {
special_use = \Sent}
mailbox "Sent Messages" {
special_use = \Sent}
mailbox Trash {
special_use = \Trash}
prefix =
}
passdb {
driver = pam
}
ssl = required
ssl_cert =
ssl_cipher_list = PROFILE=SYSTEM
ssl_dh = # hidden, use -P to show it
ssl_key = # hidden, use -P to show it
userdb {
driver = passwd
}
What ened up working for me.
I ended up downgrading to version 2.2.25 as packaged by city-fan.org
That worked.
Then, at the urging of the packager, I re-installed 2.3.1 (from the same repository), but replaced the dovecot.service file with the one from 2.2.35.
[Always did a systemctl daemon-reload; systemctl restart dovecot between attemptsz]
That worked.
Next he had me comment out the line that starts:
CapabilityBoundingSet=
That also worked
-- Kevin J. Cummings cummings@kjchome.homeip.net cummings@kjc386.framingham.ma.us kjchome@icloud.com Registered Linux User #1232 (http://www.linuxcounter.net/)