Hi,
I am running dovecot 2.3.7.2 on ubuntu, and have a replication setup.
I noticed that managesieve doesn't seem to be working. On my backup MX, doing a telnet to 4190 gets me the proper greetings, but doing the same on my main server just gave me the normal telnet "Escape character is..."
I get the following info on the server:
root@d0ba5bb19b6b:/# doveadm service status managesieve name: managesieve process_count: 0 process_avail: 0 process_limit: 1024 client_limit: 1 throttle_secs: 0 exit_failure_last: 0 exit_failures_in_sec: 0 last_drop_warning: 0 listen_pending: n listening: y doveadm_stop: n
But when attempting to connect, it doesn't work.
Any advice?
Best, Francis
On 08/09/2022 12:29 EEST Francis Augusto Medeiros-Logeay r_f@med-lo.eu wrote:
Hi,
I am running dovecot 2.3.7.2 on ubuntu, and have a replication setup.
I noticed that managesieve doesn't seem to be working. On my backup MX, doing a telnet to 4190 gets me the proper greetings, but doing the same on my main server just gave me the normal telnet "Escape character is..."
I get the following info on the server:
root@d0ba5bb19b6b:/# doveadm service status managesieve name: managesieve process_count: 0 process_avail: 0 process_limit: 1024 client_limit: 1 throttle_secs: 0 exit_failure_last: 0 exit_failures_in_sec: 0 last_drop_warning: 0 listen_pending: n listening: y doveadm_stop: n
But when attempting to connect, it doesn't work.
Any advice?
Best, Francis
Can you send doveconf -n, please?
Aki
Here it is # 2.3.7.2 (3c910f64b): /etc/dovecot/dovecot.conf # Pigeonhole version 0.5.7.2 () # OS: Linux 5.4.0-109-generic x86_64 Ubuntu 20.04.4 LTS nfs # Hostname: d0ba5bb19b6b auth_mechanisms = plain login default_vsz_limit = 1 G doveadm_password = # hidden, use -P to show it doveadm_port = REDACTED first_valid_uid = 5000 haproxy_trusted_networks = 172.18.0.0/16 last_valid_uid = 5000 log_path = /var/log/dovecot.log mail_gid = vmail mail_location = maildir:/var/mail/vmail/%d/%n:INDEX=/var/mail/vmail-index/index/%d/%n:CONTROL=/var/mail/vmail-index/control/%d/%n mail_plugins = quota notify replication fts fts_solr mail_privileged_group = mail mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date index ihave duplicate mime foreverypart extracttext imapsieve vnd.dovecot.imapsieve namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Spam { auto = subscribe special_use = \Junk } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { fts = solr fts_autoindex = yes fts_solr = url=http://172.18.0.16:8983/solr/dovecot/ imapsieve_mailbox1_before = file:/var/mail/vmail/mail/sieve/global/report-spam.sieve imapsieve_mailbox1_causes = COPY imapsieve_mailbox1_name = Spam imapsieve_mailbox2_before = file:/var/mail/vmail/mail/sieve/global/report-ham.sieve imapsieve_mailbox2_causes = COPY imapsieve_mailbox2_from = * imapsieve_mailbox2_name = Archive mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size mail_replica = tcp:REDACTED setting_name = value sieve = file:/var/mail/vmail/mail/sieve/%d/%n/scripts;active=/var/mail/vmail/mail/sieve/%d/%n/active-script.sieve sieve_before = /var/mail/vmail/mail/sieve/global/spam-global.sieve sieve_execute_bin_dir = /usr/bin sieve_global_extensions = +vnd.dovecot.pipe +vnd.dovecot.execute sieve_pipe_bin_dir = /var/mail/vmail/mail/sieve/global/scripts sieve_plugins = sieve_imapsieve sieve_extprograms } protocols = " imap lmtp sieve pop3" replication_max_conns = 300 service aggregator { fifo_listener replication-notify-fifo { mode = 0666 user = vmail } unix_listener replication-notify { mode = 0666 user = vmail } } service auth-worker { user = vmail } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } } service config { unix_listener config { user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = vmail } } service doveadm { client_limit = 1 idle_kill = 0 inet_listener { port = REDACTED ssl = no } process_limit = 0 process_min_avail = 0 user = vmail } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0600 user = postfix } } service managesieve-login { inet_listener sieve { address = 172.18.0.10 port = 4190 ssl = yes } } service managesieve { process_limit = 1024 } service replicator { client_limit = 0 drop_priv_before_exec = no idle_kill = 4294967295 secs process_limit = 1 process_min_avail = 0 service_count = 0 unix_listener replicator-doveadm { group = vmail mode = 0666 user = dovecot } vsz_limit = 8 G } ssl = required ssl_cert =
Thanks,
Francis
On 8 Sep 2022, at 11:29, Francis Augusto Medeiros-Logeay r_f@med-lo.eu wrote:
Hi,
I am running dovecot 2.3.7.2 on ubuntu, and have a replication setup.
I noticed that managesieve doesn't seem to be working. On my backup MX, doing a telnet to 4190 gets me the proper greetings, but doing the same on my main server just gave me the normal telnet "Escape character is..."
I get the following info on the server:
root@d0ba5bb19b6b:/# doveadm service status managesieve name: managesieve process_count: 0 process_avail: 0 process_limit: 1024 client_limit: 1 throttle_secs: 0 exit_failure_last: 0 exit_failures_in_sec: 0 last_drop_warning: 0 listen_pending: n listening: y doveadm_stop: n
But when attempting to connect, it doesn't work.
Any advice?
Best, Francis
Well, you have configured it to speak SSL. Does openssl s_client -connect host:port work?
Aki
On 08/09/2022 12:44 EEST Francis Augusto Medeiros-Logeay r_f@med-lo.eu wrote:
Here it is # 2.3.7.2 (3c910f64b): /etc/dovecot/dovecot.conf # Pigeonhole version 0.5.7.2 () # OS: Linux 5.4.0-109-generic x86_64 Ubuntu 20.04.4 LTS nfs # Hostname: d0ba5bb19b6b auth_mechanisms = plain login default_vsz_limit = 1 G doveadm_password = # hidden, use -P to show it doveadm_port = REDACTED first_valid_uid = 5000 haproxy_trusted_networks = 172.18.0.0/16 last_valid_uid = 5000 log_path = /var/log/dovecot.log mail_gid = vmail mail_location = maildir:/var/mail/vmail/%d/%n:INDEX=/var/mail/vmail-index/index/%d/%n:CONTROL=/var/mail/vmail-index/control/%d/%n mail_plugins = quota notify replication fts fts_solr mail_privileged_group = mail mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date index ihave duplicate mime foreverypart extracttext imapsieve vnd.dovecot.imapsieve namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Spam { auto = subscribe special_use = \Junk } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { fts = solr fts_autoindex = yes fts_solr = url=http://172.18.0.16:8983/solr/dovecot/ imapsieve_mailbox1_before = file:/var/mail/vmail/mail/sieve/global/report-spam.sieve imapsieve_mailbox1_causes = COPY imapsieve_mailbox1_name = Spam imapsieve_mailbox2_before = file:/var/mail/vmail/mail/sieve/global/report-ham.sieve imapsieve_mailbox2_causes = COPY imapsieve_mailbox2_from = * imapsieve_mailbox2_name = Archive mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size mail_replica = tcp:REDACTED setting_name = value sieve = file:/var/mail/vmail/mail/sieve/%d/%n/scripts;active=/var/mail/vmail/mail/sieve/%d/%n/active-script.sieve sieve_before = /var/mail/vmail/mail/sieve/global/spam-global.sieve sieve_execute_bin_dir = /usr/bin sieve_global_extensions = +vnd.dovecot.pipe +vnd.dovecot.execute sieve_pipe_bin_dir = /var/mail/vmail/mail/sieve/global/scripts sieve_plugins = sieve_imapsieve sieve_extprograms } protocols = " imap lmtp sieve pop3" replication_max_conns = 300 service aggregator { fifo_listener replication-notify-fifo { mode = 0666 user = vmail } unix_listener replication-notify { mode = 0666 user = vmail } } service auth-worker { user = vmail } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } } service config { unix_listener config { user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = vmail } } service doveadm { client_limit = 1 idle_kill = 0 inet_listener { port = REDACTED ssl = no } process_limit = 0 process_min_avail = 0 user = vmail } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0600 user = postfix } } service managesieve-login { inet_listener sieve { address = 172.18.0.10 port = 4190 ssl = yes } } service managesieve { process_limit = 1024 } service replicator { client_limit = 0 drop_priv_before_exec = no idle_kill = 4294967295 secs process_limit = 1 process_min_avail = 0 service_count = 0 unix_listener replicator-doveadm { group = vmail mode = 0666 user = dovecot } vsz_limit = 8 G } ssl = required ssl_cert =
Thanks,
Francis
On 8 Sep 2022, at 11:29, Francis Augusto Medeiros-Logeay r_f@med-lo.eu wrote:
Hi,
I am running dovecot 2.3.7.2 on ubuntu, and have a replication setup.
I noticed that managesieve doesn't seem to be working. On my backup MX, doing a telnet to 4190 gets me the proper greetings, but doing the same on my main server just gave me the normal telnet "Escape character is..."
I get the following info on the server:
root@d0ba5bb19b6b:/# doveadm service status managesieve name: managesieve process_count: 0 process_avail: 0 process_limit: 1024 client_limit: 1 throttle_secs: 0 exit_failure_last: 0 exit_failures_in_sec: 0 last_drop_warning: 0 listen_pending: n listening: y doveadm_stop: n
But when attempting to connect, it doesn't work.
Any advice?
Best, Francis
Yes, it works. I guess it must be Roundcube, after its update. I need to figure out if the configuration has changed. Thanks!
Best, Francis
Well, you have configured it to speak SSL. Does openssl s_client -connect host:port work?
Aki
On 08/09/2022 12:44 EEST Francis Augusto Medeiros-Logeay
https://dovecot.org/mailman/listinfo/dovecot> wrote: Here it is # 2.3.7.2 (3c910f64b): /etc/dovecot/dovecot.conf # Pigeonhole version 0.5.7.2 () # OS: Linux 5.4.0-109-generic x86_64 Ubuntu 20.04.4 LTS nfs # Hostname: d0ba5bb19b6b auth_mechanisms = plain login default_vsz_limit = 1 G doveadm_password = # hidden, use -P to show it doveadm_port = REDACTED first_valid_uid = 5000 haproxy_trusted_networks = 172.18.0.0/16 last_valid_uid = 5000 log_path = /var/log/dovecot.log mail_gid = vmail mail_location = maildir:/var/mail/vmail/%d/%n:INDEX=/var/mail/vmail-index/index/%d/%n:CONTROL=/var/mail/vmail-index/control/%d/%n mail_plugins = quota notify replication fts fts_solr mail_privileged_group = mail mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date index ihave duplicate mime foreverypart extracttext imapsieve vnd.dovecot.imapsieve namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Spam { auto = subscribe special_use = \Junk } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { fts = solr fts_autoindex = yes fts_solr = url=http://172.18.0.16:8983/solr/dovecot/ imapsieve_mailbox1_before = file:/var/mail/vmail/mail/sieve/global/report-spam.sieve imapsieve_mailbox1_causes = COPY imapsieve_mailbox1_name = Spam imapsieve_mailbox2_before = file:/var/mail/vmail/mail/sieve/global/report-ham.sieve imapsieve_mailbox2_causes = COPY imapsieve_mailbox2_from = * imapsieve_mailbox2_name = Archive mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size mail_replica = tcp:REDACTED setting_name = value sieve = file:/var/mail/vmail/mail/sieve/%d/%n/scripts;active=/var/mail/vmail/mail/sieve/%d/%n/active-script.sieve sieve_before = /var/mail/vmail/mail/sieve/global/spam-global.sieve sieve_execute_bin_dir = /usr/bin sieve_global_extensions = +vnd.dovecot.pipe +vnd.dovecot.execute sieve_pipe_bin_dir = /var/mail/vmail/mail/sieve/global/scripts sieve_plugins = sieve_imapsieve sieve_extprograms } protocols = " imap lmtp sieve pop3" replication_max_conns = 300 service aggregator { fifo_listener replication-notify-fifo { mode = 0666 user = vmail } unix_listener replication-notify { mode = 0666 user = vmail } } service auth-worker { user = vmail } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } } service config { unix_listener config { user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = vmail } } service doveadm { client_limit = 1 idle_kill = 0 inet_listener { port = REDACTED ssl = no } process_limit = 0 process_min_avail = 0 user = vmail } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0600 user = postfix } } service managesieve-login { inet_listener sieve { address = 172.18.0.10 port = 4190 ssl = yes } } service managesieve { process_limit = 1024 } service replicator { client_limit = 0 drop_priv_before_exec = no idle_kill = 4294967295 secs process_limit = 1 process_min_avail = 0 service_count = 0 unix_listener replicator-doveadm { group = vmail mode = 0666 user = dovecot } vsz_limit = 8 G } ssl = required ssl_cert = https://dovecot.org/mailman/listinfo/dovecot } protocol imap { mail_plugins = quota notify replication fts fts_solr imap_quota imap_sieve } protocol sieve { managesieve_implementation_string = Dovecot Pigeonhole managesieve_max_line_length = 65536 }
Thanks,
Francis
On 8 Sep 2022, at 11:29, Francis Augusto Medeiros-Logeay
https://dovecot.org/mailman/listinfo/dovecot> wrote: Hi,
I am running dovecot 2.3.7.2 on ubuntu, and have a replication setup.
I noticed that managesieve doesn't seem to be working. On my backup MX, doing a telnet to 4190 gets me the proper greetings, but doing the same on my main server just gave me the normal telnet "Escape character is..."
I get the following info on the server:
root at d0ba5bb19b6b https://dovecot.org/mailman/listinfo/dovecot:/# doveadm service status managesieve name: managesieve process_count: 0 process_avail: 0 process_limit: 1024 client_limit: 1 throttle_secs: 0 exit_failure_last: 0 exit_failures_in_sec: 0 last_drop_warning: 0 listen_pending: n listening: y doveadm_stop: n
But when attempting to connect, it doesn't work.
Any advice?
Best, Francis
On 08.09.2022 12:34, Francis Augusto Medeiros-Logeay wrote:
Yes, it works. I guess it must be Roundcube, after its update. I need to figure out if the configuration has changed.
https://github.com/roundcube/roundcubemail/pull/8670
-- Aleksander Machniak Kolab Groupware Developer [https://kolab.org] Roundcube Webmail Developer [https://roundcube.net]
PGP: 19359DC1 # Blog: https://kolabian.wordpress.com
Thank you Aleksander. I changed the code like it is described on the PR, and it works, but shouldn’t it work with TLS? I tested TLS with openssl towards dovecot, and got no error, why using tis:// didn’t work?
Best, Francis
On 08.09.2022 12:34, Francis Augusto Medeiros-Logeay wrote: Yes, it works. I guess it must be Roundcube, after its update. I need to figure out if the configuration has > > changed.
On 8 Sep 2022, at 12:34, Francis Augusto Medeiros-Logeay r_f@med-lo.eu wrote:
Yes, it works. I guess it must be Roundcube, after its update. I need to figure out if the configuration has changed. Thanks!
Best, Francis
Well, you have configured it to speak SSL. Does openssl s_client -connect host:port work?
Aki
On 08/09/2022 12:44 EEST Francis Augusto Medeiros-Logeay
https://dovecot.org/mailman/listinfo/dovecot> wrote: Here it is # 2.3.7.2 (3c910f64b): /etc/dovecot/dovecot.conf # Pigeonhole version 0.5.7.2 () # OS: Linux 5.4.0-109-generic x86_64 Ubuntu 20.04.4 LTS nfs # Hostname: d0ba5bb19b6b auth_mechanisms = plain login default_vsz_limit = 1 G doveadm_password = # hidden, use -P to show it doveadm_port = REDACTED first_valid_uid = 5000 haproxy_trusted_networks = 172.18.0.0/16 last_valid_uid = 5000 log_path = /var/log/dovecot.log mail_gid = vmail mail_location = maildir:/var/mail/vmail/%d/%n:INDEX=/var/mail/vmail-index/index/%d/%n:CONTROL=/var/mail/vmail-index/control/%d/%n mail_plugins = quota notify replication fts fts_solr mail_privileged_group = mail mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date index ihave duplicate mime foreverypart extracttext imapsieve vnd.dovecot.imapsieve namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Spam { auto = subscribe special_use = \Junk } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { fts = solr fts_autoindex = yes fts_solr = url=http://172.18.0.16:8983/solr/dovecot/ imapsieve_mailbox1_before = file:/var/mail/vmail/mail/sieve/global/report-spam.sieve imapsieve_mailbox1_causes = COPY imapsieve_mailbox1_name = Spam imapsieve_mailbox2_before = file:/var/mail/vmail/mail/sieve/global/report-ham.sieve imapsieve_mailbox2_causes = COPY imapsieve_mailbox2_from = * imapsieve_mailbox2_name = Archive mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size mail_replica = tcp:REDACTED setting_name = value sieve = file:/var/mail/vmail/mail/sieve/%d/%n/scripts;active=/var/mail/vmail/mail/sieve/%d/%n/active-script.sieve sieve_before = /var/mail/vmail/mail/sieve/global/spam-global.sieve sieve_execute_bin_dir = /usr/bin sieve_global_extensions = +vnd.dovecot.pipe +vnd.dovecot.execute sieve_pipe_bin_dir = /var/mail/vmail/mail/sieve/global/scripts sieve_plugins = sieve_imapsieve sieve_extprograms } protocols = " imap lmtp sieve pop3" replication_max_conns = 300 service aggregator { fifo_listener replication-notify-fifo { mode = 0666 user = vmail } unix_listener replication-notify { mode = 0666 user = vmail } } service auth-worker { user = vmail } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } } service config { unix_listener config { user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = vmail } } service doveadm { client_limit = 1 idle_kill = 0 inet_listener { port = REDACTED ssl = no } process_limit = 0 process_min_avail = 0 user = vmail } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0600 user = postfix } } service managesieve-login { inet_listener sieve { address = 172.18.0.10 port = 4190 ssl = yes } } service managesieve { process_limit = 1024 } service replicator { client_limit = 0 drop_priv_before_exec = no idle_kill = 4294967295 secs process_limit = 1 process_min_avail = 0 service_count = 0 unix_listener replicator-doveadm { group = vmail mode = 0666 user = dovecot } vsz_limit = 8 G } ssl = required ssl_cert = https://dovecot.org/mailman/listinfo/dovecot } protocol imap { mail_plugins = quota notify replication fts fts_solr imap_quota imap_sieve } protocol sieve { managesieve_implementation_string = Dovecot Pigeonhole managesieve_max_line_length = 65536 }
Thanks,
Francis
On 8 Sep 2022, at 11:29, Francis Augusto Medeiros-Logeay
https://dovecot.org/mailman/listinfo/dovecot> wrote: Hi,
I am running dovecot 2.3.7.2 on ubuntu, and have a replication setup.
I noticed that managesieve doesn't seem to be working. On my backup MX, doing a telnet to 4190 gets me the proper greetings, but doing the same on my main server just gave me the normal telnet "Escape character is..."
I get the following info on the server:
root at d0ba5bb19b6b https://dovecot.org/mailman/listinfo/dovecot:/# doveadm service status managesieve name: managesieve process_count: 0 process_avail: 0 process_limit: 1024 client_limit: 1 throttle_secs: 0 exit_failure_last: 0 exit_failures_in_sec: 0 last_drop_warning: 0 listen_pending: n listening: y doveadm_stop: n
But when attempting to connect, it doesn't work.
Any advice?
Best, Francis
I tried, it didn’t work. When I disabled ssl on dovecot, used just the ip address on roundcube and disabled TLS, it didn’t work. TLS (explicit) does not work either. But it works somehow if I use the fqdn as the hostname.
Francis Augusto Medeiros-Logeay skrev den 2022-09-08 12:34:Yes, it works. I guess it must be Roundcube, after its update. I need to figure out if the configuration has changed. why ssl on rfc 1918 local non routed networks ?
in roundcbe there is example config for no ssl, if this works why not use it then ?
On 8 Sep 2022, at 13:11, Francis Augusto Medeiros-Logeay r_f@med-lo.eu wrote:
Thank you Aleksander. I changed the code like it is described on the PR, and it works, but shouldn’t it work with TLS? I tested TLS with openssl towards dovecot, and got no error, why using tis:// didn’t work?
Best, Francis
On 08.09.2022 12:34, Francis Augusto Medeiros-Logeay wrote: Yes, it works. I guess it must be Roundcube, after its update. I need to figure out if the configuration has > > changed.
On 8 Sep 2022, at 12:34, Francis Augusto Medeiros-Logeay r_f@med-lo.eu wrote:
Yes, it works. I guess it must be Roundcube, after its update. I need to figure out if the configuration has changed. Thanks!
Best, Francis
Well, you have configured it to speak SSL. Does openssl s_client -connect host:port work?
Aki
On 08/09/2022 12:44 EEST Francis Augusto Medeiros-Logeay
https://dovecot.org/mailman/listinfo/dovecot> wrote: Here it is # 2.3.7.2 (3c910f64b): /etc/dovecot/dovecot.conf # Pigeonhole version 0.5.7.2 () # OS: Linux 5.4.0-109-generic x86_64 Ubuntu 20.04.4 LTS nfs # Hostname: d0ba5bb19b6b auth_mechanisms = plain login default_vsz_limit = 1 G doveadm_password = # hidden, use -P to show it doveadm_port = REDACTED first_valid_uid = 5000 haproxy_trusted_networks = 172.18.0.0/16 last_valid_uid = 5000 log_path = /var/log/dovecot.log mail_gid = vmail mail_location = maildir:/var/mail/vmail/%d/%n:INDEX=/var/mail/vmail-index/index/%d/%n:CONTROL=/var/mail/vmail-index/control/%d/%n mail_plugins = quota notify replication fts fts_solr mail_privileged_group = mail mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date index ihave duplicate mime foreverypart extracttext imapsieve vnd.dovecot.imapsieve namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Spam { auto = subscribe special_use = \Junk } mailbox Trash { special_use = \Trash } prefix = } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { fts = solr fts_autoindex = yes fts_solr = url=http://172.18.0.16:8983/solr/dovecot/ imapsieve_mailbox1_before = file:/var/mail/vmail/mail/sieve/global/report-spam.sieve imapsieve_mailbox1_causes = COPY imapsieve_mailbox1_name = Spam imapsieve_mailbox2_before = file:/var/mail/vmail/mail/sieve/global/report-ham.sieve imapsieve_mailbox2_causes = COPY imapsieve_mailbox2_from = * imapsieve_mailbox2_name = Archive mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size mail_replica = tcp:REDACTED setting_name = value sieve = file:/var/mail/vmail/mail/sieve/%d/%n/scripts;active=/var/mail/vmail/mail/sieve/%d/%n/active-script.sieve sieve_before = /var/mail/vmail/mail/sieve/global/spam-global.sieve sieve_execute_bin_dir = /usr/bin sieve_global_extensions = +vnd.dovecot.pipe +vnd.dovecot.execute sieve_pipe_bin_dir = /var/mail/vmail/mail/sieve/global/scripts sieve_plugins = sieve_imapsieve sieve_extprograms } protocols = " imap lmtp sieve pop3" replication_max_conns = 300 service aggregator { fifo_listener replication-notify-fifo { mode = 0666 user = vmail } unix_listener replication-notify { mode = 0666 user = vmail } } service auth-worker { user = vmail } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { group = vmail mode = 0600 user = vmail } } service config { unix_listener config { user = vmail } } service dict { unix_listener dict { group = vmail mode = 0660 user = vmail } } service doveadm { client_limit = 1 idle_kill = 0 inet_listener { port = REDACTED ssl = no } process_limit = 0 process_min_avail = 0 user = vmail } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0600 user = postfix } } service managesieve-login { inet_listener sieve { address = 172.18.0.10 port = 4190 ssl = yes } } service managesieve { process_limit = 1024 } service replicator { client_limit = 0 drop_priv_before_exec = no idle_kill = 4294967295 secs process_limit = 1 process_min_avail = 0 service_count = 0 unix_listener replicator-doveadm { group = vmail mode = 0666 user = dovecot } vsz_limit = 8 G } ssl = required ssl_cert = https://dovecot.org/mailman/listinfo/dovecot } protocol imap { mail_plugins = quota notify replication fts fts_solr imap_quota imap_sieve } protocol sieve { managesieve_implementation_string = Dovecot Pigeonhole managesieve_max_line_length = 65536 }
Thanks,
Francis
On 8 Sep 2022, at 11:29, Francis Augusto Medeiros-Logeay
https://dovecot.org/mailman/listinfo/dovecot> wrote: Hi,
I am running dovecot 2.3.7.2 on ubuntu, and have a replication setup.
I noticed that managesieve doesn't seem to be working. On my backup MX, doing a telnet to 4190 gets me the proper greetings, but doing the same on my main server just gave me the normal telnet "Escape character is..."
I get the following info on the server:
root at d0ba5bb19b6b https://dovecot.org/mailman/listinfo/dovecot:/# doveadm service status managesieve name: managesieve process_count: 0 process_avail: 0 process_limit: 1024 client_limit: 1 throttle_secs: 0 exit_failure_last: 0 exit_failures_in_sec: 0 last_drop_warning: 0 listen_pending: n listening: y doveadm_stop: n
But when attempting to connect, it doesn't work.
Any advice?
Best, Francis
I actually have a theory now, after reading this on Dovecot’s documentation:
"Regardless of the value for listener’s ssl setting, some services will still try to initialize encryption if global ssl is on. This is for example done to accommodate STARTTLS commands for IMAP/SUBMISSION/LMTP protocols. In other words, ssl is truly disabled only when global ssl is turned off.»
Could this be an explanation as to why roundcube only connects successfully to managesieve when configured to connect to the hostname that’s on my ssl certificates, even when I turn ssl off?
Best,
Francis
On 8 Sep 2022, at 19:55, Francis Augusto Medeiros-Logeay r_f@med-lo.eu wrote:
I tried, it didn’t work. When I disabled ssl on dovecot, used just the ip address on roundcube and disabled TLS, it didn’t work. TLS (explicit) does not work either. But it works somehow if I use the fqdn as the hostname.
Francis Augusto Medeiros-Logeay skrev den 2022-09-08 12:34:Yes, it works. I guess it must be Roundcube, after its update. I need to figure out if the configuration has changed. why ssl on rfc 1918 local non routed networks ?
in roundcbe there is example config for no ssl, if this works why not use it then ?
On September 8, 2022 8:21:13 PM GMT+02:00, Francis Augusto Medeiros-Logeay r_f@med-lo.eu wrote:
I actually have a theory now, after reading this on Dovecot’s documentation:
"Regardless of the value for listener’s ssl setting, some services will still try to initialize encryption if global ssl is on. This is for example done to accommodate STARTTLS commands for IMAP/SUBMISSION/LMTP protocols. In other words, ssl is truly disabled only when global ssl is turned off.»
Could this be an explanation as to why roundcube only connects successfully to managesieve when configured to connect to the hostname that’s on my ssl certificates, even when I turn ssl off? No, you have to tell roundcube in it's configuration to not check the name on the certificate. This was on this mailinglist a few months back, check this and the following messages https://www.mail-archive.com/dovecot@dovecot.org/msg86397.html
Christian Kivalo
Francis Augusto Medeiros-Logeay skrev den 2022-09-08 12:34:
Yes, it works. I guess it must be Roundcube, after its update. I need to figure out if the configuration has changed.
why ssl on rfc 1918 local non routed networks ?
in roundcbe there is example config for no ssl, if this works why not use it then ?
participants (5)
-
Aki Tuomi
-
Aleksander Machniak
-
Benny Pedersen
-
Christian Kivalo
-
Francis Augusto Medeiros-Logeay