http://dovecot.org/releases/2.2/dovecot-2.2.19.tar.gz http://dovecot.org/releases/2.2/dovecot-2.2.19.tar.gz.sig
- pop3_deleted_flag has been broken since v2.2.10. Using it would cause buffer overflows, which could be exploitable. However, this bug would have become visible quite soon after users had deleted some POP3 mails, because the pop3 processes would have started crashing all the time even in normal use.
- "doveadm director flush" command has a changed meaning now: It safely moves users to their wanted backends, instead of simply forgetting the mapping entirely and leaving the existing connections untouched. Use -F parameter to get the original unsafe behavior.
- Added imap-hibernate processes (see imap_hibernate_timeout setting). IDLEing IMAP connections can be hibernated, which saves memory.
- Optimized tracking mailboxes' vsizes (= sum of all messages' sizes). If mailbox_list_index=yes, it's also stored in there. This makes it very efficient to look up vsizes for all mailboxes.
- Added a quota "count" backend, which uses the mailbox vsizes to get the current quota usage. It requires using the new quota_vsizes=yes setting, which tracks the messages' "virtual sizes" rather than "physical sizes". Their distiction is minor and mostly irrelevant nowadays (if mail sizes should be counted with LF or CRLF newlines).
- "doveadm director up/down" commands added. The monitoring script should be using these commands instead of changing the vhost count. This allows admin to manually disable a server by changing the vhost count to 0 without the monitoring script changing it back.
- Added support for HAProxy protocol: http://wiki2.dovecot.org/HAProxy
- Added push-notification plugin framework, which can be used to easily implement push notifications to various backends. Implemented "ox" backend for notifying Open-Xchange via HTTP/json.
- imap_logout_format supports more variables now, e.g. number of deleted messages.
- pop3: Added pop3_delete_type setting (related to pop3_deleted_flag).
- plugin { fts_enforced=yes } setting now fails body searches unless it can be done via the full text search engine.
- Added %{passdb:*} and %{userdb:*} variables to various places
- auth: Added ":protected" suffix for passdb and userdb fields. If used, the field doesn't overwrite an existing field.
- IMAP/POP3 proxy: If a backend server dies, avoid client reconnection spikes by slowly disconnecting clients over time. This is enabled by setting login_proxy_max_disconnect_delay=secs passdb extra field.
- imap: Added new read-only METADATA entries: /private/specialuse, /shared/comment, /shared/admin
- imap: If client disconnects in the middle of a command, log how long the command had been running.
- mdbox: Rebuilding could have caused message's reference count to overflow the 16bit number in some situations, causing problems when trying to expunge the duplicates.
- Various search fixes (fts, solr, tika, lib-charset, indexer)
- Various virtual plugin fixes
- Various fixes and optimizations to dsync, imapc and pop3-migration
- imap: Various RFC compliancy and crash fixes to NOTIFY
Am 02.10.2015 um 18:13 schrieb Timo Sirainen:
http://dovecot.org/releases/2.2/dovecot-2.2.19.tar.gz http://dovecot.org/releases/2.2/dovecot-2.2.19.tar.gz.sig
Thanks Timo!
Am 02.10.2015 um 18:13 schrieb Timo Sirainen:
- Added imap-hibernate processes (see imap_hibernate_timeout setting). IDLEing IMAP connections can be hibernated, which saves memory.
Hm, i have
Couldn't hibernate imap client: Couldn't export state: COMPRESS enabled
does this mean if zlib plugin is enabled, hibernate dont works ?
Best Regards MfG Robert Schetterer
-- [*] sys4 AG
http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München
Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein
On 02 Oct 2015, at 23:28, Robert Schetterer rs@sys4.de wrote:
Am 02.10.2015 um 18:13 schrieb Timo Sirainen:
- Added imap-hibernate processes (see imap_hibernate_timeout setting). IDLEing IMAP connections can be hibernated, which saves memory.
Hm, i have
Couldn't hibernate imap client: Couldn't export state: COMPRESS enabled
does this mean if zlib plugin is enabled, hibernate dont works ?
imap_zlib plugin enables COMPRESS. If COMPRESS is used, it can't currently be hibernated. The plan to get this fixed in future means moving the COMPRESS handling code to imap-login process similar to how SSL is handled. But this then needs some post-login communication between imap and imap-login processes, which is a bit larger change.
Am 03.10.2015 um 10:50 schrieb Timo Sirainen:
On 02 Oct 2015, at 23:28, Robert Schetterer rs@sys4.de wrote:
Am 02.10.2015 um 18:13 schrieb Timo Sirainen:
- Added imap-hibernate processes (see imap_hibernate_timeout setting). IDLEing IMAP connections can be hibernated, which saves memory.
Hm, i have
Couldn't hibernate imap client: Couldn't export state: COMPRESS enabled
does this mean if zlib plugin is enabled, hibernate dont works ?
imap_zlib plugin enables COMPRESS. If COMPRESS is used, it can't currently be hibernated. The plan to get this fixed in future means moving the COMPRESS handling code to imap-login process similar to how SSL is handled. But this then needs some post-login communication between imap and imap-login processes, which is a bit larger change.
Thx Timo, for explain, perhaps this should be in the wiki, meanwhile
Best Regards MfG Robert Schetterer
-- [*] sys4 AG
http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München
Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein
Am 02.10.2015 um 18:13 schrieb Timo Sirainen:
- Added imap-hibernate processes (see imap_hibernate_timeout setting). IDLEing IMAP connections can be hibernated, which saves memory.
here is my config to enable the new function:
imap_hibernate_timeout = 60s service imap-hibernate { unix_listener imap-hibernate { user = vmail } } service imap { unix_listener imap-master { mode = 0666 } }
using this settings, one thunderbird connected to an otherwise idle mailbox, I have there processes: 10312 ? Ss 0:00 /usr/sbin/dovecot -F 10316 ? S 0:00 \_ dovecot/anvil [10 connections] 10317 ? S 0:00 \_ dovecot/log 10319 ? S 0:00 \_ dovecot/config 10329 ? S 0:00 \_ dovecot/imap-hibernate [10 connections] 10350 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10351 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10366 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10369 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10372 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10374 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10377 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10379 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10382 ? S 0:01 \_ dovecot/imap-login [1 connections (1 TLS)] 10385 ? S 0:01 \_ dovecot/imap-login [1 connections (1 TLS)] 11744 ? S 0:00 \_ dovecot/ssl-params 11746 ? S 0:00 \_ dovecot/lmtp
is it OK that there are still 10 separte imap-login processes? are there concerns setting the mode for /var/run/dovecot/imap-master from 0600 to 0666? and are there suggestions for imap_hibernate_timeout?
Thanks, Andreas
On 03 Oct 2015, at 01:35, A. Schulze sca@andreasschulze.de wrote:
Am 02.10.2015 um 18:13 schrieb Timo Sirainen:
- Added imap-hibernate processes (see imap_hibernate_timeout setting). IDLEing IMAP connections can be hibernated, which saves memory.
using this settings, one thunderbird connected to an otherwise idle mailbox, I have there processes: 10312 ? Ss 0:00 /usr/sbin/dovecot -F 10316 ? S 0:00 \_ dovecot/anvil [10 connections] 10317 ? S 0:00 \_ dovecot/log 10319 ? S 0:00 \_ dovecot/config 10329 ? S 0:00 \_ dovecot/imap-hibernate [10 connections] 10350 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10351 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10366 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10369 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10372 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10374 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10377 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10379 ? S 0:00 \_ dovecot/imap-login [1 connections (1 TLS)] 10382 ? S 0:01 \_ dovecot/imap-login [1 connections (1 TLS)] 10385 ? S 0:01 \_ dovecot/imap-login [1 connections (1 TLS)] 11744 ? S 0:00 \_ dovecot/ssl-params 11746 ? S 0:00 \_ dovecot/lmtp
is it OK that there are still 10 separte imap-login processes?
That's a separate issue. Switch to high-performance mode described in http://wiki2.dovecot.org/LoginProcess
are there concerns setting the mode for /var/run/dovecot/imap-master from 0600 to 0666?
Ideally avoid that. You can probably just do:
service imap { unix_listener imap-master { mode = 0600 user = vmail } }
and are there suggestions for imap_hibernate_timeout?
I'm interested in some good answers to this too :) Although in future it'll likely become automatic/dynamic.
participants (3)
-
A. Schulze
-
Robert Schetterer
-
Timo Sirainen