forgot to reply all.
---------- Forwarded message --------- From: Larry Rosenman <larryrtx@gmail.com> Date: Mon, Apr 15, 2019 at 5:58 AM Subject: Re: SOLR/Index? To: John Fawcett <john@voipsupport.it>
the local users (myself, my wife, a friend) can authenticate EITHER as <username> or <username>@lerctr.org.
switching to all virtual users is NOT going to happen.
If I login to roundcube with <user>@lerctr.org it finds the autoindexed mail.
So, if I make everyone always authenticate as <user>@lerctr.org we should be fine.
and change my script to do doveadm -u <user>@<domain> instead of depending on the local user running the cron job.
question: Is there some way to have dovecot change what it sees to be <user>@lerctr.org when they login as <user>?
On Mon, Apr 15, 2019 at 5:54 AM John Fawcett via dovecot < dovecot@dovecot.org> wrote:
On 15/04/2019 11:38, Larry Rosenman via dovecot wrote:
⌂63% [ler@thebighonker.lerctr.org:~] $ grep fts1970 mail/INBOX ⌂67% [ler@thebighonker.lerctr.org:~] 1 $ mail -s "test fts1970" ler@lerctr.org test fts1970
test fts1970 . EOT [ler@thebighonker.lerctr.org:~] $ mailq [ler@thebighonker.lerctr.org:~] $ grep fts1970 mail/INBOX Subject: test fts1970 test fts1970 test fts1970
Apr 15 04:29:03 thebighonker exim[49528]: 1hFxvD-000Csq-P6 <= ler@lerctr.org U=ler P=local S=388 Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(49364): Connect from local Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(ler@lerctr.org/49364): save: box=INBOX, uid=175402, msgid=< E1hFxvD-000Csq-P6@thebighonker.lerctr.org>, size=640, vsize=660, from=Larry Rosenman <ler@lerctr.org>, subject=test fts1970, flags=() Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(ler@lerctr.org/49364): sieve: msgid=<E1hFxvD-000Csq-P6@thebighonker.lerctr.org>: stored mail into mailbox 'INBOX' (subject=test fts1970 from=ler@lerctr.org size=660) Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(49364): Disconnect from local: Client has quit the connection (state=READY) Apr 15 04:29:03 thebighonker exim[49535]: 1hFxvD-000Csq-P6 => ler < ler@lerctr.org> R=localuser T=dovecot_lmtp S=404 C="250 2.0.0 < ler@lerctr.org> 6ACWMN9OtFzUwAAAu+mOrA Saved" QT=0s DT=0s Apr 15 04:29:03 thebighonker exim[49535]: 1hFxvD-000Csq-P6 Completed QT=0s Apr 15 04:29:03 thebighonker dovecot[2507]: indexer-worker( ler@lerctr.org/49366): Indexed 1 messages in INBOX (UIDs 175402..175402)
⌂81% [ler@thebighonker.lerctr.org:~] $ doveadm search mailbox INBOX body 'fts1970' ⌂83% [ler@thebighonker.lerctr.org:~] $
⌂65% [ler@thebighonker.lerctr.org:~] 75 $ doveadm search -u ler@lerctr.org mailbox INBOX body 'fts1970' a53a143be44bda5bd4830000bbe98eac 175402 [ler@thebighonker.lerctr.org:~] $ doveadm index -q INBOX [ler@thebighonker.lerctr.org:~] $ doveadm search mailbox INBOX body 'fts1970' [ler@thebighonker.lerctr.org:~] $ doveadm fts rescan [ler@thebighonker.lerctr.org:~] $ doveadm index -q INBOX [ler@thebighonker.lerctr.org:~] $ doveadm search mailbox INBOX body 'fts1970' a53a143be44bda5bd4830000bbe98eac 175402 [ler@thebighonker.lerctr.org:~] $ doveadm search -u ler@lerctr.org mailbox INBOX body 'fts1970' a53a143be44bda5bd4830000bbe98eac 175402 [ler@thebighonker.lerctr.org:~] $
So, yes, your hypothesis is correct.
Question: How can I make it consistent?
I have a script that runs on the first of the month that does archiving, and I have similar issues in that namespace: ⌂67% [ler@thebighonker.lerctr.org:~] $ cat bin/archive-mail #!/bin/sh PATH=$PATH:/usr/local/bin #Expects to be run after midnight on the first of the month # to archive all the previous months mail #Date Run: TODAY=
date "+%Y-%m-%d"#last month in YYYY/MM YEAR_LAST_MONTH=date -v-1d "+%Y/%m"#1st of last month as 01-Mon-YYYY FIRST_LAST_MONTH=date -v-1d "+01-%b-%Y"echo 'TODAY=' ${TODAY} echo 'YEAR_LAST_MONTH=' ${YEAR_LAST_MONTH} echo 'FIRST_LAST_MONTH=' ${FIRST_LAST_MONTH} # get a list of all the mailboxes with at least one real message doveadm -f tab mailbox status vsize \* 2>/dev/null | sed -e 1d | sort -k 1,1 | awk 'BEGIN {FS="\t"} {if ($2 > 0) print $1}' | while read i do echodatestart ${i} doveadm mailbox create "ARCHIVE/${YEAR_LAST_MONTH}/${i}" doveadm -f tab mailbox status messages "${i}" doveadm move "ARCHIVE/${YEAR_LAST_MONTH}/${i}" mailbox
"${i}" BEFORE ${TODAY} SINCE ${FIRST_LAST_MONTH} doveadm -f tab mailbox status messages "${i}" echodatedone ${i} done ⌂64% [ler@thebighonker.lerctr.org:~] $The Exim config can be provided as well if necessary.
ler & ler@lerctr.org *ARE THE SAME MAILBOX*
At the moment it looks as though you have two sets of emails indexed in solr. One is indexed under username (the one you are running mannually and apparently the one used by roundcube too, but that's to be verified) and another set being indexed by autoindex = yes option using the full email address. Once you've got it working as you require, then you may want to clean out solr and reindex with just one of them just to reduce volumes.
Your setup seems to have a mix of users from mysql and from /etc/passwd. Not sure if your mysql users are all mapped to real users or they have their own mailboxes with domain included. Your solution will depend on what you really need and if the setup is working correctly you may not want to tweak it too much or other things may start breaking.
The simplest thing that comes to mind (providing your manually indexed mails show up in roundcube searches) is just to turn off autoindex and schedule indexing from cron. As things stand I believe autoindex works well with virtual users username@domain. You'll probably need to start off with a rescan if you do this.
If you can swith to all virtual users without local users then probably you can use autoindex, but I can understand that may not be possible. For sure I'd recommend doing it in a test environment first so you can be sure of the configuration and then look at migrating your existing mailboxes over to virtual users.
John
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
On 2019/04/15 06:59, Larry Rosenman via dovecot wrote:
forgot to reply all.
---------- Forwarded message --------- From: *Larry Rosenman* <larryrtx@gmail.com <mailto:larryrtx@gmail.com>> Date: Mon, Apr 15, 2019 at 5:58 AM Subject: Re: SOLR/Index? To: John Fawcett <john@voipsupport.it <mailto:john@voipsupport.it>>
the local users (myself, my wife, a friend) can authenticate EITHER as <username> or <username>@lerctr.org <http://lerctr.org>.
switching to all virtual users is NOT going to happen.
If I login to roundcube with <user>@lerctr.org <http://lerctr.org> it finds the autoindexed mail.
So, if I make everyone always authenticate as <user>@lerctr.org <http://lerctr.org> we should be fine.
and change my script to do doveadm -u <user>@<domain> instead of depending on the local user running the cron job.
question: Is there some way to have dovecot change what it sees to be <user>@lerctr.org <http://lerctr.org> when they login as <user>?
FWIW, when I switched all users to be virtual to let the handful of people who had been logging in as <username> not have to switch to <username>@example.com I created a second passdb entry which points to different sql.conf file which automatically appends this specific domain, thereby letting them type in <username> but getting logged in as <username>@example.com so my dovecot logs always show <username>@example.com. Not sure if this helps you get around your issue.
.jh
On Mon, Apr 15, 2019 at 5:54 AM John Fawcett via dovecot <dovecot@dovecot.org <mailto:dovecot@dovecot.org>> wrote:
On 15/04/2019 11:38, Larry Rosenman via dovecot wrote:⌂63% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ grep fts1970 mail/INBOX ⌂67% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] 1 $ mail -s "test fts1970" ler@lerctr.org <mailto:ler@lerctr.org> test fts1970 test fts1970 . EOT [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ mailq [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ grep fts1970 mail/INBOX Subject: test fts1970 test fts1970 test fts1970 Apr 15 04:29:03 thebighonker exim[49528]: 1hFxvD-000Csq-P6 <= ler@lerctr.org <mailto:ler@lerctr.org> U=ler P=local S=388 Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(49364): Connect from local Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(ler@lerctr.org/49364 <http://ler@lerctr.org/49364>): save: box=INBOX, uid=175402, msgid=<E1hFxvD-000Csq-P6@thebighonker.lerctr.org <mailto:E1hFxvD-000Csq-P6@thebighonker.lerctr.org>>, size=640, vsize=660, from=Larry Rosenman <ler@lerctr.org <mailto:ler@lerctr.org>>, subject=test fts1970, flags=() Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(ler@lerctr.org/49364 <http://ler@lerctr.org/49364>): sieve: msgid=<E1hFxvD-000Csq-P6@thebighonker.lerctr.org <mailto:E1hFxvD-000Csq-P6@thebighonker.lerctr.org>>: stored mail into mailbox 'INBOX' (subject=test fts1970 from=ler@lerctr.org <mailto:ler@lerctr.org> size=660) Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(49364): Disconnect from local: Client has quit the connection (state=READY) Apr 15 04:29:03 thebighonker exim[49535]: 1hFxvD-000Csq-P6 => ler <ler@lerctr.org <mailto:ler@lerctr.org>> R=localuser T=dovecot_lmtp S=404 C="250 2.0.0 <ler@lerctr.org <mailto:ler@lerctr.org>> 6ACWMN9OtFzUwAAAu+mOrA Saved" QT=0s DT=0s Apr 15 04:29:03 thebighonker exim[49535]: 1hFxvD-000Csq-P6 Completed QT=0s Apr 15 04:29:03 thebighonker dovecot[2507]: indexer-worker(ler@lerctr.org/49366 <http://ler@lerctr.org/49366>): Indexed 1 messages in INBOX (UIDs 175402..175402) ⌂81% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ doveadm search mailbox INBOX body 'fts1970' ⌂83% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ ⌂65% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] 75 $ doveadm search -u ler@lerctr.org <mailto:ler@lerctr.org> mailbox INBOX body 'fts1970' a53a143be44bda5bd4830000bbe98eac 175402 [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ doveadm index -q INBOX [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ doveadm search mailbox INBOX body 'fts1970' [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ doveadm fts rescan [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ doveadm index -q INBOX [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ doveadm search mailbox INBOX body 'fts1970' a53a143be44bda5bd4830000bbe98eac 175402 [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ doveadm search -u ler@lerctr.org <mailto:ler@lerctr.org> mailbox INBOX body 'fts1970' a53a143be44bda5bd4830000bbe98eac 175402 [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ So, yes, your hypothesis is correct. Question: How can I make it consistent? I have a script that runs on the first of the month that does archiving, and I have similar issues in that namespace: ⌂67% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ cat bin/archive-mail #!/bin/sh PATH=$PATH:/usr/local/bin #Expects to be run after midnight on the first of the month # to archive all the previous months mail #Date Run: TODAY=`date "+%Y-%m-%d"` #last month in YYYY/MM YEAR_LAST_MONTH=`date -v-1d "+%Y/%m"` #1st of last month as 01-Mon-YYYY FIRST_LAST_MONTH=`date -v-1d "+01-%b-%Y"` echo 'TODAY=' ${TODAY} echo 'YEAR_LAST_MONTH=' ${YEAR_LAST_MONTH} echo 'FIRST_LAST_MONTH=' ${FIRST_LAST_MONTH} # get a list of all the mailboxes with at least one real message doveadm -f tab mailbox status vsize \* 2>/dev/null | sed -e 1d | sort -k 1,1 | awk 'BEGIN {FS="\t"} {if ($2 > 0) print $1}' | while read i do echo `date` start ${i} doveadm mailbox create "ARCHIVE/${YEAR_LAST_MONTH}/${i}" doveadm -f tab mailbox status messages "${i}" doveadm move "ARCHIVE/${YEAR_LAST_MONTH}/${i}" mailbox \ "${i}" BEFORE ${TODAY} SINCE ${FIRST_LAST_MONTH} doveadm -f tab mailbox status messages "${i}" echo `date` done ${i} done ⌂64% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ The Exim config can be provided as well if necessary. ler & ler@lerctr.org <mailto:ler@lerctr.org> *ARE THE SAME MAILBOX*At the moment it looks as though you have two sets of emails indexed in solr. One is indexed under username (the one you are running mannually and apparently the one used by roundcube too, but that's to be verified) and another set being indexed by autoindex = yes option using the full email address. Once you've got it working as you require, then you may want to clean out solr and reindex with just one of them just to reduce volumes. Your setup seems to have a mix of users from mysql and from /etc/passwd. Not sure if your mysql users are all mapped to real users or they have their own mailboxes with domain included. Your solution will depend on what you really need and if the setup is working correctly you may not want to tweak it too much or other things may start breaking. The simplest thing that comes to mind (providing your manually indexed mails show up in roundcube searches) is just to turn off autoindex and schedule indexing from cron. As things stand I believe autoindex works well with virtual users username@domain. You'll probably need to start off with a rescan if you do this. If you can swith to all virtual users without local users then probably you can use autoindex, but I can understand that may not be possible. For sure I'd recommend doing it in a test environment first so you can be sure of the configuration and then look at migrating your existing mailboxes over to virtual users. John-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com <mailto:larryrtx@gmail.com> US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com <mailto:larryrtx@gmail.com> US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
These are REAL local users, authenticated via PAM....
On Mon, Apr 15, 2019 at 6:26 AM Johan Huldtgren via dovecot < dovecot@dovecot.org> wrote:
On 2019/04/15 06:59, Larry Rosenman via dovecot wrote:
forgot to reply all.
---------- Forwarded message --------- From: *Larry Rosenman* <larryrtx@gmail.com <mailto:larryrtx@gmail.com>> Date: Mon, Apr 15, 2019 at 5:58 AM Subject: Re: SOLR/Index? To: John Fawcett <john@voipsupport.it <mailto:john@voipsupport.it>>
the local users (myself, my wife, a friend) can authenticate EITHER as <username> or <username>@lerctr.org <http://lerctr.org>.
switching to all virtual users is NOT going to happen.
If I login to roundcube with <user>@lerctr.org <http://lerctr.org> it finds the autoindexed mail.
So, if I make everyone always authenticate as <user>@lerctr.org < http://lerctr.org> we should be fine.
and change my script to do doveadm -u <user>@<domain> instead of depending on the local user running the cron job.
question: Is there some way to have dovecot change what it sees to be <user>@lerctr.org <http://lerctr.org> when they login as <user>?
FWIW, when I switched all users to be virtual to let the handful of people who had been logging in as <username> not have to switch to <username>@example.com I created a second passdb entry which points to different sql.conf file which automatically appends this specific domain, thereby letting them type in <username> but getting logged in as <username>@example.com so my dovecot logs always show <username>@ example.com. Not sure if this helps you get around your issue.
.jh
On Mon, Apr 15, 2019 at 5:54 AM John Fawcett via dovecot < dovecot@dovecot.org <mailto:dovecot@dovecot.org>> wrote:
On 15/04/2019 11:38, Larry Rosenman via dovecot wrote:⌂63% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ grep fts1970 mail/INBOX
⌂67% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] 1 $ mail -s "test fts1970" ler@lerctr.org <mailto:ler@lerctr.org>
test fts1970 test fts1970 . EOT [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>]$ mailq
[ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>]$ grep fts1970 mail/INBOX
Subject: test fts1970 test fts1970 test fts1970 Apr 15 04:29:03 thebighonker exim[49528]: 1hFxvD-000Csq-P6 <=ler@lerctr.org <mailto:ler@lerctr.org> U=ler P=local S=388
Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(49364): Connectfrom local
Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(ler@lerctr.org/49364 <http://ler@lerctr.org/49364>): save: box=INBOX, uid=175402, msgid=<E1hFxvD-000Csq-P6@thebighonker.lerctr.org <mailto: E1hFxvD-000Csq-P6@thebighonker.lerctr.org>>, size=640, vsize=660, from=Larry Rosenman <ler@lerctr.org <mailto:ler@lerctr.org>>, subject=test fts1970, flags=()
Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(ler@lerctr.org/49364 <http://ler@lerctr.org/49364>): sieve: msgid=< E1hFxvD-000Csq-P6@thebighonker.lerctr.org <mailto: E1hFxvD-000Csq-P6@thebighonker.lerctr.org>>: stored mail into mailbox 'INBOX' (subject=test fts1970 from=ler@lerctr.org <mailto:ler@lerctr.org> size=660)
Apr 15 04:29:03 thebighonker dovecot[2507]: lmtp(49364): Disconnectfrom local: Client has quit the connection (state=READY)
Apr 15 04:29:03 thebighonker exim[49535]: 1hFxvD-000Csq-P6 => ler <ler@lerctr.org <mailto:ler@lerctr.org>> R=localuser T=dovecot_lmtp S=404 C="250 2.0.0 <ler@lerctr.org <mailto:ler@lerctr.org>> 6ACWMN9OtFzUwAAAu+mOrA Saved" QT=0s DT=0s
Apr 15 04:29:03 thebighonker exim[49535]: 1hFxvD-000Csq-P6Completed QT=0s
Apr 15 04:29:03 thebighonker dovecot[2507]: indexer-worker(ler@lerctr.org/49366 <http://ler@lerctr.org/49366>): Indexed 1 messages in INBOX (UIDs 175402..175402)
⌂81% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ doveadm search mailbox INBOX body 'fts1970'
⌂83% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $
⌂65% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] 75 $ doveadm search -u ler@lerctr.org <mailto:ler@lerctr.org> mailbox INBOX body 'fts1970'
a53a143be44bda5bd4830000bbe98eac 175402 [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>]$ doveadm index -q INBOX
[ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>]$ doveadm search mailbox INBOX body 'fts1970'
[ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>]$ doveadm fts rescan
[ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>]$ doveadm index -q INBOX
[ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>]$ doveadm search mailbox INBOX body 'fts1970'
a53a143be44bda5bd4830000bbe98eac 175402 [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>]$ doveadm search -u ler@lerctr.org <mailto:ler@lerctr.org> mailbox INBOX body 'fts1970'
a53a143be44bda5bd4830000bbe98eac 175402 [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>]$
So, yes, your hypothesis is correct. Question: How can I make it consistent? I have a script that runs on the first of the month that doesarchiving, and I have similar issues in that namespace:
⌂67% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $ cat bin/archive-mail
#!/bin/sh PATH=$PATH:/usr/local/bin #Expects to be run after midnight on the first of the month # to archive all the previous months mail #Date Run: TODAY=`date "+%Y-%m-%d"` #last month in YYYY/MM YEAR_LAST_MONTH=`date -v-1d "+%Y/%m"` #1st of last month as 01-Mon-YYYY FIRST_LAST_MONTH=`date -v-1d "+01-%b-%Y"` echo 'TODAY=' ${TODAY} echo 'YEAR_LAST_MONTH=' ${YEAR_LAST_MONTH} echo 'FIRST_LAST_MONTH=' ${FIRST_LAST_MONTH} # get a list of all the mailboxes with at least one real message doveadm -f tab mailbox status vsize \* 2>/dev/null | sed -e 1d | sort -k 1,1 | awk 'BEGIN {FS="\t"} {if ($2 > 0) print $1}' | while read i do echo `date` start ${i} doveadm mailbox create "ARCHIVE/${YEAR_LAST_MONTH}/${i}" doveadm -f tab mailbox status messages "${i}" doveadm move "ARCHIVE/${YEAR_LAST_MONTH}/${i}" mailbox \ "${i}" BEFORE ${TODAY} SINCE ${FIRST_LAST_MONTH} doveadm -f tab mailbox status messages "${i}" echo `date` done ${i} done ⌂64% [ler@thebighonker.lerctr.org:~ <mailto:ler@thebighonker.lerctr.org:~>] $
The Exim config can be provided as well if necessary. ler & ler@lerctr.org <mailto:ler@lerctr.org> *ARE THE SAME MAILBOX*At the moment it looks as though you have two sets of emails indexedin solr. One is indexed under username (the one you are running mannually and apparently the one used by roundcube too, but that's to be verified) and another set being indexed by autoindex = yes option using the full email address. Once you've got it working as you require, then you may want to clean out solr and reindex with just one of them just to reduce volumes.
Your setup seems to have a mix of users from mysql and from/etc/passwd. Not sure if your mysql users are all mapped to real users or they have their own mailboxes with domain included. Your solution will depend on what you really need and if the setup is working correctly you may not want to tweak it too much or other things may start breaking.
The simplest thing that comes to mind (providing your manuallyindexed mails show up in roundcube searches) is just to turn off autoindex and schedule indexing from cron. As things stand I believe autoindex works well with virtual users username@domain. You'll probably need to start off with a rescan if you do this.
If you can swith to all virtual users without local users thenprobably you can use autoindex, but I can understand that may not be possible. For sure I'd recommend doing it in a test environment first so you can be sure of the configuration and then look at migrating your existing mailboxes over to virtual users.
John-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com <mailto: larryrtx@gmail.com> US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com <mailto: larryrtx@gmail.com> US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
On 15/04/2019 12:59, Larry Rosenman via dovecot wrote:
forgot to reply all.
---------- Forwarded message --------- From: *Larry Rosenman* <larryrtx@gmail.com <mailto:larryrtx@gmail.com>> Date: Mon, Apr 15, 2019 at 5:58 AM Subject: Re: SOLR/Index? To: John Fawcett <john@voipsupport.it <mailto:john@voipsupport.it>>
the local users (myself, my wife, a friend) can authenticate EITHER as <username> or <username>@lerctr.org <http://lerctr.org>.
switching to all virtual users is NOT going to happen.
If I login to roundcube with <user>@lerctr.org <http://lerctr.org> it finds the autoindexed mail.
So, if I make everyone always authenticate as <user>@lerctr.org <http://lerctr.org> we should be fine.
and change my script to do doveadm -u <user>@<domain> instead of depending on the local user running the cron job.
question: Is there some way to have dovecot change what it sees to be <user>@lerctr.org <http://lerctr.org> when they login as <user>?
Dovecot is very configurable, but it can also take some time, effort and testing to get the configuration you want. Personally I don't mix user types since it takes out an element of complexity.
For your case you might find it useful to look into auth_default_realm
that can specify a domain name when one is not supplied.
https://wiki2.dovecot.org/DomainLost
Other things that might be useful: there is a method for returning a "user" field from the userdb query or passdb query which will change the username. Or there is another setting that can overriding values of fields returned by the userdb.
https://wiki.dovecot.org/UserDatabase
Hope it helps!
John
Again, this doesn't help with doveadm running as the local user, and also doesn't help with the PAM authentication.
passdb { driver = pam #[session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=20] #[cache_key=<key>] [<service name>] args = failure_show_msg=yes session=yes max_requests=20 skip = authenticated }
How can I default the domain for PAM authentication? (I've set auth_default_realm and it doesn't help in this case).
# System users (NSS, /etc/passwd, or similiar). In many systems nowadays this # uses Name Service Switch, which is configured in /etc/nsswitch.conf. userdb { # <doc/wiki/AuthDatabase.Passwd.txt> driver = passwd-file # [blocking=no] args = username_format=%Ln /etc/passwd #override_fields = user=%Ln /etc #name = %Ln
# Override fields from passwd #override_fields = home=/home/virtual/%u #skip = found }
On Mon, Apr 15, 2019 at 6:31 AM John Fawcett via dovecot < dovecot@dovecot.org> wrote:
On 15/04/2019 12:59, Larry Rosenman via dovecot wrote:
forgot to reply all.
---------- Forwarded message --------- From: Larry Rosenman <larryrtx@gmail.com> Date: Mon, Apr 15, 2019 at 5:58 AM Subject: Re: SOLR/Index? To: John Fawcett <john@voipsupport.it>
the local users (myself, my wife, a friend) can authenticate EITHER as <username> or <username>@lerctr.org.
switching to all virtual users is NOT going to happen.
If I login to roundcube with <user>@lerctr.org it finds the autoindexed mail.
So, if I make everyone always authenticate as <user>@lerctr.org we should be fine.
and change my script to do doveadm -u <user>@<domain> instead of depending on the local user running the cron job.
question: Is there some way to have dovecot change what it sees to be <user>@lerctr.org when they login as <user>?
Dovecot is very configurable, but it can also take some time, effort and testing to get the configuration you want. Personally I don't mix user types since it takes out an element of complexity.
For your case you might find it useful to look into auth_default_realm
that can specify a domain name when one is not supplied.
https://wiki2.dovecot.org/DomainLost
Other things that might be useful: there is a method for returning a "user" field from the userdb query or passdb query which will change the username. Or there is another setting that can overriding values of fields returned by the userdb.
https://wiki.dovecot.org/UserDatabase
Hope it helps!
John
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
On 15/04/2019 13:43, Larry Rosenman via dovecot wrote:
Again, this doesn't help with doveadm running as the local user, and also doesn't help with the PAM authentication.
passdb { driver = pam #[session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=20] #[cache_key=<key>] [<service name>] args = failure_show_msg=yes session=yes max_requests=20 skip = authenticated }
How can I default the domain for PAM authentication? (I've set auth_default_realm and it doesn't help in this case).
Larry
I guess I don't understand enough about your setup or what is not now working.
My understanding was that everything is now working when logging in as user@domain, but that you would like to login as user and have dovecot treat that as though you had logged in as user@domain, but at this point I admit I may have misinterpreted your emails.
What's also not clear for me is the purpose in your setup of the three passdb methods (sql, static, and pam) and two userdb methods (sql and passwd-file). That's why I've pointed you to the docs and I'm hestitant to give specific advice that may leave you worse off. Others on the list may have more insights.
John
I have normal system users, some and some virtual domains (2 different flavors).
I have this job that runs from cron on my own userid to archive mail I want Dovecot to use my system password for mail authentication. I, therefore, use PAM to authenticate system users Everything works great, modulo getting the auto-index to be visible using RoundCube (which if I log into roundcube using <user>@<domain> it does). by default if I'm logged in as my normal OS user, default doveadm commands (as issued from the shell or from my archive script) use the user I'm logged in as *WITHOUT A DOMAIN*.
I want to default PAM auth'd users to append @lerctr.org (DOMAIN) to the OS user.
On Mon, Apr 15, 2019 at 7:34 AM John Fawcett via dovecot < dovecot@dovecot.org> wrote:
On 15/04/2019 13:43, Larry Rosenman via dovecot wrote:
Again, this doesn't help with doveadm running as the local user, and also doesn't help with the PAM authentication.
passdb { driver = pam #[session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=20] #[cache_key=<key>] [<service name>] args = failure_show_msg=yes session=yes max_requests=20 skip = authenticated }
How can I default the domain for PAM authentication? (I've set auth_default_realm and it doesn't help in this case).
Larry
I guess I don't understand enough about your setup or what is not now working.
My understanding was that everything is now working when logging in as user@domain, but that you would like to login as user and have dovecot treat that as though you had logged in as user@domain, but at this point I admit I may have misinterpreted your emails.
What's also not clear for me is the purpose in your setup of the three passdb methods (sql, static, and pam) and two userdb methods (sql and passwd-file). That's why I've pointed you to the docs and I'm hestitant to give specific advice that may leave you worse off. Others on the list may have more insights.
John
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
On 15/04/2019 16:05, Larry Rosenman via dovecot wrote:
I have normal system users, some and some virtual domains (2 different flavors).
I have this job that runs from cron on my own userid to archive mail I want Dovecot to use my system password for mail authentication. I, therefore, use PAM to authenticate system users Everything works great, modulo getting the auto-index to be visible using RoundCube (which if I log into roundcube using <user>@<domain> it does). by default if I'm logged in as my normal OS user, default doveadm commands (as issued from the shell or from my archive script) use the user I'm logged in as *WITHOUT A DOMAIN*.
I want to default PAM auth'd users to append @lerctr.org <http://lerctr.org> (DOMAIN) to the OS user.
when they log in to roundcube as the OS user, right?
John
yes, either with or without the domain.
On Mon, Apr 15, 2019 at 9:33 AM John Fawcett via dovecot < dovecot@dovecot.org> wrote:
On 15/04/2019 16:05, Larry Rosenman via dovecot wrote:
I have normal system users, some and some virtual domains (2 different flavors).
I have this job that runs from cron on my own userid to archive mail I want Dovecot to use my system password for mail authentication. I, therefore, use PAM to authenticate system users Everything works great, modulo getting the auto-index to be visible using RoundCube (which if I log into roundcube using <user>@<domain> it does). by default if I'm logged in as my normal OS user, default doveadm commands (as issued from the shell or from my archive script) use the user I'm logged in as *WITHOUT A DOMAIN*.
I want to default PAM auth'd users to append @lerctr.org (DOMAIN) to the OS user.
when they log in to roundcube as the OS user, right?
John
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
On 15/04/2019 16:34, Larry Rosenman via dovecot wrote:
yes, either with or without the domain.
On Mon, Apr 15, 2019 at 9:33 AM John Fawcett via dovecot <dovecot@dovecot.org <mailto:dovecot@dovecot.org>> wrote:
On 15/04/2019 16:05, Larry Rosenman via dovecot wrote:I have normal system users, some and some virtual domains (2 different flavors). I have this job that runs from cron on my own userid to archive mail I want Dovecot to use my system password for mail authentication. I, therefore, use PAM to authenticate system users Everything works great, modulo getting the auto-index to be visible using RoundCube (which if I log into roundcube using <user>@<domain> it does). by default if I'm logged in as my normal OS user, default doveadm commands (as issued from the shell or from my archive script) use the user I'm logged in as *WITHOUT A DOMAIN*. I want to default PAM auth'd users to append @lerctr.org <http://lerctr.org> (DOMAIN) to the OS user.when they log in to roundcube as the OS user, right? John-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com <mailto:larryrtx@gmail.com> US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
So if all works fine when you specify user@domain in roundcube, but you want to be able to specify only username in roundcube and have roundcube login as user@domain, then one solution would be to configure roundcube to add a default domain to bare usernames. As far as I remember (it's a while since I used roundcube) it is one of the configuration options.
John
On 4/15/2019, 6:59:59 AM, Larry Rosenman via dovecot <dovecot@dovecot.org> wrote:
If I login to roundcube with <user>@lerctr.org <http://lerctr.org> it finds the autoindexed mail.
So, if I make everyone always authenticate as <user>@lerctr.org <http://lerctr.org> we should be fine.
You can configure roundcube to always use the fqdn...
Aki (via private chat) told me about adding override_fields = domain=lerctr.org
to my PAM passdb, and /etc/passwd userdb.
This solves the problem nicely.
On Mon, Apr 15, 2019 at 2:30 PM Tanstaafl via dovecot <dovecot@dovecot.org> wrote:
On 4/15/2019, 6:59:59 AM, Larry Rosenman via dovecot <dovecot@dovecot.org> wrote:
If I login to roundcube with <user>@lerctr.org <http://lerctr.org> it finds the autoindexed mail.
So, if I make everyone always authenticate as <user>@lerctr.org <http://lerctr.org> we should be fine.
You can configure roundcube to always use the fqdn...
-- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 (c) E-Mail: larryrtx@gmail.com US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106
participants (4)
-
Johan Huldtgren
-
John Fawcett
-
Larry Rosenman
-
Tanstaafl