Dovecot not listening when testing connection
Hi,
This is my environment:
SMTP: Exim 4.89 with Mailscanner 5.0.3
IMAP: Dovecot 2.2.10
At the moment I'm just trying to test out my Dovecot to check if it's listening on port 993.
*netstat -tuln:* Shows that my machine is listening on ports 143 and 993.
*telnet localhost 993: *This is my issue, I get the following message:
# telnet localhost 993 Trying ::1... Connected to localhost. Escape character is '^]'. Connection closed by foreign host.
According to the wiki.dovecot test installation page I should be getting this instead:
https://wiki.dovecot.org/TestInstallation
Trying 127.0.0.1... Connected to localhost. Escape character is '^]'.
- OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE STARTTLS AUTH=PLAIN] Dovecot ready.
When I run doveconf this is what I get:
# doveconf protocols listen protocols = imap pop3 lmtp listen = *, ::
Does anyone have an idea of what I'm missing here? Thanks.
-- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of this information by persons or entities other than the intended recipient is prohibited. If you receive this in error, please contact the sender and delete this material from any computer.
Cantella does not permit execution of trades requested by email. Please call to ensure prompt execution of orders, as we are not responsible for orders transmitted through email.
Investing involves risk and you may incur a profit or a loss. Please carefully consider investment objectives, risks, charges, and expenses before investing. Cantella & Co., Inc. does not provide legal or tax advice. For legal or tax advice, please seek the services of a qualified professional. The performance data featured represents past performance, which is no guarantee of future results. Mutual funds and UITs are sold by prospectus only. Please carefully consider the fund's investment objective, risks, charges and expenses applicable to a continued investment in the fund before investing. For this and other information, call or write for a free prospectus, or view one online. Read it carefully before you invest or send money.
Fixed income is subject to availability and change in price. Bonds are subject to market and interest rate risk if sold prior to maturity. Interest rate increases can cause the price of a debt security to decrease. Interest income may be subject to federal, state, local, and/or alternative minimum tax.
In accordance with industry regulations, all messages are retained and are subject to monitoring.
This message has been scanned for viruses and dangerous content and is believed to be clean.
Securities offered through Cantella & Co., Inc., Member FINRA/SIPC. Home Office: 28 State St 40th Floor, Boston, MA 02109 Telephone: (800)652-8358
You won't have that "* OK [CAPA....]" message by doing telnet on port 993, as this is a secure port and the connection is encrypted. Either you need to use something as openssl or gnutls to test it that way, or telnet to imap port 143 (not encrypted).
On Thu, Apr 20, 2017 at 11:33 AM, Alvaro Lacerda <alacerda@cantella.com> wrote:
Hi,
This is my environment:
SMTP: Exim 4.89 with Mailscanner 5.0.3
IMAP: Dovecot 2.2.10
At the moment I'm just trying to test out my Dovecot to check if it's listening on port 993.
*netstat -tuln:* Shows that my machine is listening on ports 143 and 993.
*telnet localhost 993: *This is my issue, I get the following message:
# telnet localhost 993 Trying ::1... Connected to localhost. Escape character is '^]'. Connection closed by foreign host.
According to the wiki.dovecot test installation page I should be getting this instead:
https://wiki.dovecot.org/TestInstallation
Trying 127.0.0.1... Connected to localhost. Escape character is '^]'.
- OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE STARTTLS AUTH=PLAIN] Dovecot ready.
When I run doveconf this is what I get:
# doveconf protocols listen protocols = imap pop3 lmtp listen = *, ::
Does anyone have an idea of what I'm missing here? Thanks.
-- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of this information by persons or entities other than the intended recipient is prohibited. If you receive this in error, please contact the sender and delete this material from any computer.
Cantella does not permit execution of trades requested by email. Please call to ensure prompt execution of orders, as we are not responsible for orders transmitted through email.
Investing involves risk and you may incur a profit or a loss. Please carefully consider investment objectives, risks, charges, and expenses before investing. Cantella & Co., Inc. does not provide legal or tax advice. For legal or tax advice, please seek the services of a qualified professional. The performance data featured represents past performance, which is no guarantee of future results. Mutual funds and UITs are sold by prospectus only. Please carefully consider the fund's investment objective, risks, charges and expenses applicable to a continued investment in the fund before investing. For this and other information, call or write for a free prospectus, or view one online. Read it carefully before you invest or send money. Fixed income is subject to availability and change in price. Bonds are subject to market and interest rate risk if sold prior to maturity. Interest rate increases can cause the price of a debt security to decrease. Interest income may be subject to federal, state, local, and/or alternative minimum tax.
In accordance with industry regulations, all messages are retained and are subject to monitoring. This message has been scanned for viruses and dangerous content and is believed to be clean. Securities offered through Cantella & Co., Inc., Member FINRA/SIPC. Home Office: 28 State St 40th Floor, Boston, MA 02109 Telephone: (800)652-8358
Hi Webert -- Thanks for the quick reply and observation.
When I try "telnet localhost 143" I get the same result. It does connect but then the connection is dropped.
# telnet localhost 143 Trying ::1... Connected to localhost. Escape character is '^]'. Connection closed by foreign host.
I never get the "* OK [CAPA....]"
Thanks,
On 04/20/2017 10:41 AM, Webert de Souza Lima wrote:
You won't have that "* OK [CAPA....]" message by doing telnet on port 993, as this is a secure port and the connection is encrypted. Either you need to use something as openssl or gnutls to test it that way, or telnet to imap port 143 (not encrypted).
On Thu, Apr 20, 2017 at 11:33 AM, Alvaro Lacerda <alacerda@cantella.com <mailto:alacerda@cantella.com>> wrote:
Hi, This is my environment: SMTP: Exim 4.89 with Mailscanner 5.0.3 IMAP: Dovecot 2.2.10 At the moment I'm just trying to test out my Dovecot to check if it's listening on port 993. *netstat -tuln:* Shows that my machine is listening on ports 143 and 993. *telnet localhost 993: *This is my issue, I get the following message: # telnet localhost 993 Trying ::1... Connected to localhost. Escape character is '^]'. Connection closed by foreign host. According to the wiki.dovecot test installation page I should be getting this instead: https://wiki.dovecot.org/TestInstallation <https://wiki.dovecot.org/TestInstallation> Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE STARTTLS AUTH=PLAIN] Dovecot ready. When I run doveconf this is what I get: # doveconf protocols listen protocols = imap pop3 lmtp listen = *, :: Does anyone have an idea of what I'm missing here? Thanks. -- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of this information by persons or entities other than the intended recipient is prohibited. If you receive this in error, please contact the sender and delete this material from any computer. Cantella does not permit execution of trades requested by email. Please call to ensure prompt execution of orders, as we are not responsible for orders transmitted through email. Investing involves risk and you may incur a profit or a loss. Please carefully consider investment objectives, risks, charges, and expenses before investing. Cantella & Co., Inc. does not provide legal or tax advice. For legal or tax advice, please seek the services of a qualified professional. The performance data featured represents past performance, which is no guarantee of future results. Mutual funds and UITs are sold by prospectus only. Please carefully consider the fund's investment objective, risks, charges and expenses applicable to a continued investment in the fund before investing. For this and other information, call or write for a free prospectus, or view one online. Read it carefully before you invest or send money. Fixed income is subject to availability and change in price. Bonds are subject to market and interest rate risk if sold prior to maturity. Interest rate increases can cause the price of a debt security to decrease. Interest income may be subject to federal, state, local, and/or alternative minimum tax. In accordance with industry regulations, all messages are retained and are subject to monitoring. This message has been scanned for viruses and dangerous content and is believed to be clean. Securities offered through Cantella & Co., Inc., Member FINRA/SIPC. Home Office: 28 State St 40th Floor, Boston, MA 02109 Telephone: (800)652-8358 <tel:%28800%29652-8358>
-- Alvaro Lacerda Cantella IT Department Cantella & Co., Inc. (617)224-1415
-- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of this information by persons or entities other than the intended recipient is prohibited. If you receive this in error, please contact the sender and delete this material from any computer.
Cantella does not permit execution of trades requested by email. Please call to ensure prompt execution of orders, as we are not responsible for orders transmitted through email.
Investing involves risk and you may incur a profit or a loss. Please carefully consider investment objectives, risks, charges, and expenses before investing. Cantella & Co., Inc. does not provide legal or tax advice. For legal or tax advice, please seek the services of a qualified professional. The performance data featured represents past performance, which is no guarantee of future results. Mutual funds and UITs are sold by prospectus only. Please carefully consider the fund's investment objective, risks, charges and expenses applicable to a continued investment in the fund before investing. For this and other information, call or write for a free prospectus, or view one online. Read it carefully before you invest or send money.
Fixed income is subject to availability and change in price. Bonds are subject to market and interest rate risk if sold prior to maturity. Interest rate increases can cause the price of a debt security to decrease. Interest income may be subject to federal, state, local, and/or alternative minimum tax.
In accordance with industry regulations, all messages are retained and are subject to monitoring.
This message has been scanned for viruses and dangerous content and is believed to be clean.
Securities offered through Cantella & Co., Inc., Member FINRA/SIPC. Home Office: 28 State St 40th Floor, Boston, MA 02109 Telephone: (800)652-8358
On Thu, 20 Apr 2017, Alvaro Lacerda wrote:
When I try "telnet localhost 143" I get the same result. It does connect but then the connection is dropped.
# telnet localhost 143 Trying ::1... Connected to localhost. Escape character is '^]'. Connection closed by foreign host.
I never get the "* OK [CAPA....]"
What does the syslog show?
-- B. Reino
Hi B. Reino,
These are my dovecot logs. It looks like this error pops up every time I run "telnet localhost 143"
Apr 20 11:11:39 imap-login: Fatal: Couldn't parse private ssl_key: error:0906D06C:PEM routines:PEM_read_bio:no start line: Expecting: ANY PRIVATE KEY Apr 20 11:11:39 master: Error: service(imap-login): command startup failed, throttling for 60 secs
On 04/20/2017 10:52 AM, B. Reino wrote:
On Thu, 20 Apr 2017, Alvaro Lacerda wrote:
When I try "telnet localhost 143" I get the same result. It does connect but then the connection is dropped.
# telnet localhost 143 Trying ::1... Connected to localhost. Escape character is '^]'. Connection closed by foreign host.
I never get the "* OK [CAPA....]"
What does the syslog show?
-- B. Reino
-- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of this information by persons or entities other than the intended recipient is prohibited. If you receive this in error, please contact the sender and delete this material from any computer.
Cantella does not permit execution of trades requested by email. Please call to ensure prompt execution of orders, as we are not responsible for orders transmitted through email.
Investing involves risk and you may incur a profit or a loss. Please carefully consider investment objectives, risks, charges, and expenses before investing. Cantella & Co., Inc. does not provide legal or tax advice. For legal or tax advice, please seek the services of a qualified professional. The performance data featured represents past performance, which is no guarantee of future results. Mutual funds and UITs are sold by prospectus only. Please carefully consider the fund's investment objective, risks, charges and expenses applicable to a continued investment in the fund before investing. For this and other information, call or write for a free prospectus, or view one online. Read it carefully before you invest or send money.
Fixed income is subject to availability and change in price. Bonds are subject to market and interest rate risk if sold prior to maturity. Interest rate increases can cause the price of a debt security to decrease. Interest income may be subject to federal, state, local, and/or alternative minimum tax.
In accordance with industry regulations, all messages are retained and are subject to monitoring.
This message has been scanned for viruses and dangerous content and is believed to be clean.
Securities offered through Cantella & Co., Inc., Member FINRA/SIPC. Home Office: 28 State St 40th Floor, Boston, MA 02109 Telephone: (800)652-8358
On Thu, 20 Apr 2017, Alvaro Lacerda wrote:
These are my dovecot logs. It looks like this error pops up every time I run "telnet localhost 143"
Apr 20 11:11:39 imap-login: Fatal: Couldn't parse private ssl_key: error:0906D06C:PEM routines:PEM_read_bio:no start line: Expecting: ANY PRIVATE KEY Apr 20 11:11:39 master: Error: service(imap-login): command startup failed, throttling for 60 secs
OK. Can you post the output of # doveconf -n|grep ssl
Cheers, Bernardo.
Hi, here's my result for
# doveconf -n|grep ssl
ssl = yes ssl = required ssl_cert = /etc/exim/ssl/wildcard_cantella_com.crt.chained ssl_cipher_list = ALL:!LOW:!SSLv2:SSLv3:!EXP:!aNULL ssl_key = /etc/exim/ssl/wildcard_cantella_com.key verbose_ssl = yes
On 04/20/2017 11:27 AM, B. Reino wrote:
On Thu, 20 Apr 2017, Alvaro Lacerda wrote:
These are my dovecot logs. It looks like this error pops up every time I run "telnet localhost 143"
Apr 20 11:11:39 imap-login: Fatal: Couldn't parse private ssl_key: error:0906D06C:PEM routines:PEM_read_bio:no start line: Expecting: ANY PRIVATE KEY Apr 20 11:11:39 master: Error: service(imap-login): command startup failed, throttling for 60 secs
OK. Can you post the output of # doveconf -n|grep ssl
Cheers, Bernardo.
-- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of this information by persons or entities other than the intended recipient is prohibited. If you receive this in error, please contact the sender and delete this material from any computer.
Cantella does not permit execution of trades requested by email. Please call to ensure prompt execution of orders, as we are not responsible for orders transmitted through email.
Investing involves risk and you may incur a profit or a loss. Please carefully consider investment objectives, risks, charges, and expenses before investing. Cantella & Co., Inc. does not provide legal or tax advice. For legal or tax advice, please seek the services of a qualified professional. The performance data featured represents past performance, which is no guarantee of future results. Mutual funds and UITs are sold by prospectus only. Please carefully consider the fund's investment objective, risks, charges and expenses applicable to a continued investment in the fund before investing. For this and other information, call or write for a free prospectus, or view one online. Read it carefully before you invest or send money.
Fixed income is subject to availability and change in price. Bonds are subject to market and interest rate risk if sold prior to maturity. Interest rate increases can cause the price of a debt security to decrease. Interest income may be subject to federal, state, local, and/or alternative minimum tax.
In accordance with industry regulations, all messages are retained and are subject to monitoring.
This message has been scanned for viruses and dangerous content and is believed to be clean.
Securities offered through Cantella & Co., Inc., Member FINRA/SIPC. Home Office: 28 State St 40th Floor, Boston, MA 02109 Telephone: (800)652-8358
On Thu, 20 Apr 2017, Alvaro Lacerda wrote:
ssl = yes ssl = required ssl_cert = /etc/exim/ssl/wildcard_cantella_com.crt.chained ssl_cipher_list = ALL:!LOW:!SSLv2:SSLv3:!EXP:!aNULL ssl_key = /etc/exim/ssl/wildcard_cantella_com.key verbose_ssl = yes
I guess you didn't read https://wiki2.dovecot.org/SSL/DovecotConfiguration
Change ssl_cert and ssl_key so it reads like: ssl_cert = </etc/exim/ssl/wildcard_cantella_com.crt.chained ssl_key = </etc/exim/ssl/wildcard_cantella_com.key
Notice the "<" before the path.
The rest (ssl, ssl_cipher_list) is OK (but check if in the end ssl is "yes" or "required" and pick one).
Good luck! Bernardo.
On 04/20/2017 11:27 AM, B. Reino wrote:
On Thu, 20 Apr 2017, Alvaro Lacerda wrote:
These are my dovecot logs. It looks like this error pops up every time I run "telnet localhost 143"
Apr 20 11:11:39 imap-login: Fatal: Couldn't parse private ssl_key: error:0906D06C:PEM routines:PEM_read_bio:no start line: Expecting: ANY PRIVATE KEY Apr 20 11:11:39 master: Error: service(imap-login): command startup failed, throttling for 60 secs
OK. Can you post the output of # doveconf -n|grep ssl
Cheers, Bernardo.
-- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of this information by persons or entities other than the intended recipient is prohibited. If you receive this in error, please contact the sender and delete this material from any computer.
Cantella does not permit execution of trades requested by email. Please call to ensure prompt execution of orders, as we are not responsible for orders transmitted through email.
Investing involves risk and you may incur a profit or a loss. Please carefully consider investment objectives, risks, charges, and expenses before investing. Cantella & Co., Inc. does not provide legal or tax advice. For legal or tax advice, please seek the services of a qualified professional. The performance data featured represents past performance, which is no guarantee of future results. Mutual funds and UITs are sold by prospectus only. Please carefully consider the fund's investment objective, risks, charges and expenses applicable to a continued investment in the fund before investing. For this and other information, call or write for a free prospectus, or view one online. Read it carefully before you invest or send money. Fixed income is subject to availability and change in price. Bonds are subject to market and interest rate risk if sold prior to maturity. Interest rate increases can cause the price of a debt security to decrease. Interest income may be subject to federal, state, local, and/or alternative minimum tax.
In accordance with industry regulations, all messages are retained and are subject to monitoring. This message has been scanned for viruses and dangerous content and is believed to be clean. Securities offered through Cantella & Co., Inc., Member FINRA/SIPC. Home Office: 28 State St 40th Floor, Boston, MA 02109 Telephone: (800)652-8358
Hi Bernardo -- Thank you so much! After I changed my input I also got an error when trying to test through telnet, but that was because I was missing the dovecot-mysql package as well. Thanks again, cheers.
Alvaro
On 04/20/2017 12:00 PM, B. Reino wrote:
On Thu, 20 Apr 2017, Alvaro Lacerda wrote:
ssl = yes ssl = required ssl_cert = /etc/exim/ssl/wildcard_cantella_com.crt.chained ssl_cipher_list = ALL:!LOW:!SSLv2:SSLv3:!EXP:!aNULL ssl_key = /etc/exim/ssl/wildcard_cantella_com.key verbose_ssl = yes
I guess you didn't read https://wiki2.dovecot.org/SSL/DovecotConfiguration
Change ssl_cert and ssl_key so it reads like: ssl_cert = </etc/exim/ssl/wildcard_cantella_com.crt.chained ssl_key = </etc/exim/ssl/wildcard_cantella_com.key
Notice the "<" before the path.
The rest (ssl, ssl_cipher_list) is OK (but check if in the end ssl is "yes" or "required" and pick one).
Good luck! Bernardo.
On 04/20/2017 11:27 AM, B. Reino wrote:
On Thu, 20 Apr 2017, Alvaro Lacerda wrote:
These are my dovecot logs. It looks like this error pops up every time I run "telnet localhost 143"
Apr 20 11:11:39 imap-login: Fatal: Couldn't parse private ssl_key: error:0906D06C:PEM routines:PEM_read_bio:no start line: Expecting: ANY PRIVATE KEY Apr 20 11:11:39 master: Error: service(imap-login): command startup failed, throttling for 60 secs
OK. Can you post the output of # doveconf -n|grep ssl
Cheers, Bernardo.
-- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of this information by persons or entities other than the intended recipient is prohibited. If you receive this in error, please contact the sender and delete this material from any computer.
Cantella does not permit execution of trades requested by email.
Please call to ensure prompt execution of orders, as we are not responsible for orders transmitted through email.Investing involves risk and you may incur a profit or a loss. Please carefully consider investment objectives, risks, charges, and expenses before investing. Cantella & Co., Inc. does not provide legal or tax advice. For legal or tax advice, please seek the services of a qualified professional. The performance data featured represents past performance, which is no guarantee of future results. Mutual funds and UITs are sold by prospectus only. Please carefully consider the fund's investment objective, risks, charges and expenses applicable to a continued investment in the fund before investing. For this and other information, call or write for a free prospectus, or view one online. Read it carefully before you invest or send money. Fixed income is subject to availability and change in price. Bonds are subject to market and interest rate risk if sold prior to maturity. Interest rate increases can cause the price of a debt security to decrease. Interest income may be subject to federal, state, local, and/or alternative minimum tax.
In accordance with industry regulations, all messages are retained and are subject to monitoring. This message has been scanned for viruses and dangerous content and is believed to be clean. Securities offered through Cantella & Co., Inc., Member FINRA/SIPC. Home Office: 28 State St 40th Floor, Boston, MA 02109 Telephone: (800)652-8358
-- Alvaro Lacerda Cantella IT Department Cantella & Co., Inc. (617)224-1415
-- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of this information by persons or entities other than the intended recipient is prohibited. If you receive this in error, please contact the sender and delete this material from any computer.
Cantella does not permit execution of trades requested by email. Please call to ensure prompt execution of orders, as we are not responsible for orders transmitted through email.
Investing involves risk and you may incur a profit or a loss. Please carefully consider investment objectives, risks, charges, and expenses before investing. Cantella & Co., Inc. does not provide legal or tax advice. For legal or tax advice, please seek the services of a qualified professional. The performance data featured represents past performance, which is no guarantee of future results. Mutual funds and UITs are sold by prospectus only. Please carefully consider the fund's investment objective, risks, charges and expenses applicable to a continued investment in the fund before investing. For this and other information, call or write for a free prospectus, or view one online. Read it carefully before you invest or send money.
Fixed income is subject to availability and change in price. Bonds are subject to market and interest rate risk if sold prior to maturity. Interest rate increases can cause the price of a debt security to decrease. Interest income may be subject to federal, state, local, and/or alternative minimum tax.
In accordance with industry regulations, all messages are retained and are subject to monitoring.
This message has been scanned for viruses and dangerous content and is believed to be clean.
Securities offered through Cantella & Co., Inc., Member FINRA/SIPC. Home Office: 28 State St 40th Floor, Boston, MA 02109 Telephone: (800)652-8358
participants (3)
-
Alvaro Lacerda
-
B. Reino
-
Webert de Souza Lima