[Dovecot] MANAGESIEVE patch v7 for dovecot 1.0.3 and TLS
Hi,
I allow only TLS/SSL connection to dovecot. The managesieve doesn't work with TLS but it works without it.
gladiac@magrathea:~> gnutls-cli -p 2000 -s --insecure -V milliways.cynapses.org Resolving 'milliways.cynapses.org'... Connecting to '213.239.217.124:2000'...
Simple Client Mode:
Received[194]: "IMPLEMENTATION" "dovecot" "SASL" "PLAIN" "SIEVE" "fileinto reject envelope vacation imapflags notify subaddress relational comparator-i;ascii-numeric regex" "STARTTLS" OK "Dovecot ready." STARTTLS
Sent: 9 bytes
Received[33]: OK "Begin TLS negotiation now."
Let me know if you need more information.
Thanks,
-- andreas-- http://www.cynapses.org/ - cybernetic synapses
Hi Andreas,
Andreas Schneider schreef:
I allow only TLS/SSL connection to dovecot. The managesieve doesn't work with TLS but it works without it.
gladiac@magrathea:~> gnutls-cli -p 2000 -s --insecure -V milliways.cynapses.org Resolving 'milliways.cynapses.org'... Connecting to '213.239.217.124:2000'...
Simple Client Mode:
Received[194]: "IMPLEMENTATION" "dovecot" "SASL" "PLAIN" "SIEVE" "fileinto reject envelope vacation imapflags notify subaddress relational comparator-i;ascii-numeric regex" "STARTTLS" OK "Dovecot ready." STARTTLS
Sent: 9 bytes
Received[33]: OK "Begin TLS negotiation now."
Did you press Ctrl-D at this point? It is necessary to start the TLS transcation at your end using gnutls-cli. Tests using gnutls-cli were described earlier:
http://dovecot.org/list/dovecot/2007-August/024470.html http://dovecot.org/list/dovecot/2007-August/024934.html
I presume you are using gnutls-cli because some other client is failing
on TLS. If you want me to help you, I need more information about your
server setup (e.g. dovecot -n and logs that might be iteresting), but
most importantly the client you are using.
Regards,
Stephan.
Stephan Bosch wrote:
Hi Andreas,
Hi Stephan,
Did you press Ctrl-D at this point? It is necessary to start the TLS transcation at your end using gnutls-cli. Tests using gnutls-cli were described earlier:
http://dovecot.org/list/dovecot/2007-August/024470.html http://dovecot.org/list/dovecot/2007-August/024934.html
I presume you are using gnutls-cli because some other client is failing on TLS. If you want me to help you, I need more information about your server setup (e.g.
dovecot -nand logs that might be iteresting), but most importantly the client you are using.
I didn't do the CTRL+D. I can login with gnutls-ci now, but the Client I use doesn't work. It is the sieve plugin version 0.1.4 for Thunderbird from http://sieve.mozdev.org/.
The client authenticates with the server and then hangs forever.
It works if I disable TLS.
LOG OUTPUT:
dovecot: 2007-08-27 13:54:14 Info: managesieve-login: Login: user=mail@cynapses.org, method=PLAIN, rip=84.156.111.120, lip=213.239.217.124, TLS dovecot: 2007-08-27 13:54:14 Info: MANAGESIEVE(mail@cynapses.org): Effective uid=150, gid=12 dovecot: 2007-08-27 13:54:14 Info: MANAGESIEVE(mail@cynapses.org): sieve storage: Using active sieve script path: /srv/mail/homes/mail@cynapses.org//.dovecot.sieve dovecot: 2007-08-27 13:54:14 Info: MANAGESIEVE(mail@cynapses.org): sieve storage: Using mail-data: maildir:/srv/mail/mail@cynapses.org/ dovecot: 2007-08-27 13:54:14 Info: MANAGESIEVE(mail@cynapses.org): sieve storage: Using sieve script storage path: /srv/mail/mail@cynapses.org/ dovecot: 2007-08-27 13:54:14 Info: MANAGESIEVE(mail@cynapses.org): sieve storage: Relative path to sieve storage in active link: /srv/mail/mail@cynapses.org/
DOVECOT CONFIGURATIION:
# 1.0.3: /etc/dovecot/dovecot.conf base_dir: /var/run/dovecot/ log_path: /var/log/dovecot.log info_log_path: /var/log/dovecot-info.log log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap imaps managesieve listen(default): * listen(imap): * listen(managesieve): *:2000 ssl_cert_file: /etc/ssl/certs/milliways.pem ssl_key_file: /etc/ssl/private/milliways.key login_dir(default): /var/run/dovecot//login login_dir(imap): /var/run/dovecot//login login_dir(managesieve): login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(managesieve): /usr/lib/dovecot/managesieve-login first_valid_uid: 150 last_valid_uid: 150 mail_extra_groups: mail mail_location: maildir:/srv/mail/%u mail_debug: yes maildir_copy_with_hardlinks: yes mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(managesieve): /usr/lib/dovecot/managesieve mail_plugin_dir(default): /usr/lib64/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib64/dovecot/modules/imap mail_plugin_dir(managesieve): /usr/lib64/dovecot/modules/managesieve auth default: passdb: driver: sql args: /etc/dovecot/dovecot-sql.conf userdb: driver: sql args: /etc/dovecot/dovecot-sql.conf socket: type: listen client: path: /var/spool/postfix/private/auth mode: 432 user: postfix group: postfix master: path: /var/run/dovecot/auth-master mode: 384 user: vmail group: mail
Regards,
Stephan.
Thanks for help,
-- andreas-- http://www.cynapses.org/ - cybernetic synapses
Hello Andreas,
Andreas Schneider wrote:
Stephan Bosch wrote:
Did you press Ctrl-D at this point? It is necessary to start the TLS transcation at your end using gnutls-cli. Tests using gnutls-cli were described earlier:
http://dovecot.org/list/dovecot/2007-August/024470.html http://dovecot.org/list/dovecot/2007-August/024934.html
I presume you are using gnutls-cli because some other client is failing on TLS. If you want me to help you, I need more information about your server setup (e.g.
dovecot -nand logs that might be iteresting), but most importantly the client you are using.I didn't do the CTRL+D. I can login with gnutls-ci now, but the Client I use doesn't work. It is the sieve plugin version 0.1.4 for Thunderbird from http://sieve.mozdev.org/.
This is a known issue and caused by the sieve plugin: http://dovecot.org/list/dovecot/2007-August/024942.html
I finally reported it this morning. I will keep you uprised of any developments.
Regards,
Stephan.
- Stephan Bosch stephan@rename-it.nl [2007-08-27 17:49]:
Hello Andreas,
Andreas Schneider wrote:
Stephan Bosch wrote:
Did you press Ctrl-D at this point? It is necessary to start the TLS transcation at your end using gnutls-cli. Tests using gnutls-cli were described earlier:
http://dovecot.org/list/dovecot/2007-August/024470.html http://dovecot.org/list/dovecot/2007-August/024934.html
I presume you are using gnutls-cli because some other client is failing on TLS. If you want me to help you, I need more information about your server setup (e.g.
dovecot -nand logs that might be iteresting), but most importantly the client you are using.I didn't do the CTRL+D. I can login with gnutls-ci now, but the Client I use doesn't work. It is the sieve plugin version 0.1.4 for Thunderbird from http://sieve.mozdev.org/.
This is a known issue and caused by the sieve plugin: http://dovecot.org/list/dovecot/2007-August/024942.html
I finally reported it this morning. I will keep you uprised of any developments.
No news so far I guess? http://sieve.mozdev.org/ still lists 0.1.4 as the latest version :-(
Regards, Wolfram Schlich wschlich@gentoo.org Gentoo Linux * http://dev.gentoo.org/~wschlich/
participants (3)
-
Andreas Schneider
-
Stephan Bosch
-
Wolfram Schlich