Re: [Dovecot] dovecot: imap-login: Aborted login

22 Jul 2013 · *:pop3s *:*

      here is the dovecot -n dump
dovecot -n
# 2.0.19: /etc/dovecot/dovecot.conf
# OS: Linux 3.8.13-xxxx-grs-ipv6-64-vps x86_64 Ubuntu 12.04.2 LTS ext3
auth_mechanisms = plain login
mail_location = maildir:/var/mail/vhosts/%d/%n
mail_privileged_group = mail
passdb {
args = /etc/dovecot/dovecot-sql.conf.ext
driver = sql
}
protocols = imap pop3 lmtp
service auth-worker {
user = vmail
}
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0666
user = postfix
}
unix_listener auth-userdb {
mode = 0600
user = vmail
}
user = dovecot
}
service imap-login {
inet_listener imap {
port = 0
}
}
service lmtp {
unix_listener /var/spool/postfix/private/dovecot-lmtp {
group = postfix
mode = 0600
user = postfix
}
}
service pop3-login {
inet_listener pop3 {
port = 0
}
}
ssl = required
ssl_cert = 
netstat -la -pute | grep dovecot
tcp        0      0 *:pop3s *:*                     LISTEN

root       12974 5098/dovecot
tcp        0      0 *:imaps *:*                     LISTEN

root       12989 5098/dovecot
tcp6       0      0 [::]:pop3s [::]:*                  LISTEN

root       12975 5098/dovecot
tcp6       0      0 [::]:imaps [::]:*                  LISTEN

root       12990 5098/dovecot
I dont like the "port = 0"  but thats what was mentionned in the tutorial
so I changed /etc/dovecot/conf.d/10-master.conf
/
service imap-login {
inet_listener imap {
port = 143
}
...
}
service pop3-login {
inet_listener pop3 {
port = 110
}
...
}
now
netstat -la -pute | grep dovecot
tcp        0      0 *:pop3s                 *:*                     LISTEN      root       162828      8341/dovecot
tcp        0      0 *:pop3                  *:*                     LISTEN      root       162826      8341/dovecot
tcp        0      0 *:imap2                 *:*                     LISTEN      root       162845      8341/dovecot
tcp        0      0 *:imaps                 *:*                     LISTEN      root       162847      8341/dovecot
tcp6       0      0 [::]:pop3s              [::]:*                  LISTEN      root       162829      8341/dovecot
tcp6       0      0 [::]:pop3               [::]:*                  LISTEN      root       162827      8341/dovecot
tcp6       0      0 [::]:imap2              [::]:*                  LISTEN      root       162846      8341/dovecot
tcp6       0      0 [::]:imaps              [::]:*                  LISTEN      root       162848      8341/dovecot
telnet localhost 110
Trying 127.0.0.1...
Connected to localhost.localdomain.
Escape character is '^]'.
+OK Dovecot ready.
user adnane@mailer.adnane.me
+OK
pass mypasseword
+OK Logged in.
LIST
+OK 0 messages:
root@mailer:~# telnet  mailer.adnane.me 143
Trying 2001:41d0:52:200::326...
Connected to mailer.adnane.me.
Escape character is '^]'.

OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
1 login adnane@mailer.adnane.me mypassword
1 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS] Logged in
2 logout
BYE Logging out
2 OK Logout completed.
Connection closed by foreign host.

/
/but for thunderbird I got this in logs
Jul 22 22:32:53 mailer dovecot: pop3-login: Disconnected (tried to use
disabled plaintext auth): rip=196.217.182.199, lip=5.135.151.43
Jul 22 22:36:04 mailer dovecot: pop3(adnane@mailer.adnane.me):
Disconnected: Logged out top=0/0, retr=0/0, del=0/0, size=0
On 07/22/2013 08:36 AM, Steffen Kaiser wrote:
...
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Mon, 22 Jul 2013, Adnane wrote:
...
I think the issue is with authentication
root@mailer:~# tail -f /var/log/syslogJul
Jul 22 03:34:41 mailer dovecot:imap-login: Disconnected (no auth
attempts): rip=41.251.155.145, lip=5.135.151.43, TLS
Jul 22 03:35:02 mailer dovecot: imap-login: Disconnected (no auth
attempts): rip=41.251.155.145, lip=5.135.151.43, TLS handshaking:
Disconnected
Jul 22 03:35:02 mailer dovecot: imap-login: Disconnected (no auth
attempts): rip=41.251.155.145, lip=5.135.151.43, TLS handshaking:
Disconnected
Jul 22 03:35:03 mailer dovecot: imap-login: Disconnected (no auth
attempts): rip=41.251.155.145, lip=5.135.151.43, TLS: Disconnected
There is "no auth attempts", so you do not have an issue with
authentication.
Because of the "TLS handshaking: Disconnected" it looks like the
connection gets cut during the initial TLS handshake. To debug this,
first increare logging, then try from localhost without encryption, e.g.:
telnet localhost 143
1 login "loginname" "password"
and watch the human friendly output. Terminate the IMAP connection via
2 logout
Maybe that client does not like your SSL cert and drops the connection
thereof? Or maybe a firewall thinks it has to fiddle in, e.g. change
Thunderbird to use SSL on port 993 instead of STARTTLS on 143.
Kind regards,

-- Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQEVAwUBUezg/13r2wJMiz2NAQKjkQf+MSiRcG8h4C3cdH2uKQNvc4K1UkJVmPjx
tZvsBQmMQB0kY9y9GC9YiDKKCx3Cua6lxQ89Mbh4UDkjWdIV6T617QXT55HglLoY
+fS1vVAIjCQlOD42GW1W8XKrQN9mfzCDw2CvdtMX8weiXPvsMA0ZMT/m5ZCWOtzR
8eP1Jjd8APuTPQqYg13+vWBSWNOfeyeY69m3loqKAuSw4ntSRglx5qlMrK8IRSji
MHXkX2HJmbSV+iFstDRvbqVRWkJCGj6mzt+N34HU3py1H5zxiCjOSF9Q3UkU4psO
7xIGEDHbIrLpAca+6B2ZRIcfU0BgRAsvmcLLogqH40G/F7edud9YGw==
=9TD0
-----END PGP SIGNATURE-----