[Dovecot] Proxy setup & upgrade from 1.0.3 to 1.1.7
Hi guys!
I hope somebody can help me with my problem:
We have a server running dovecot and proxying IMAPS connections to our internal network. This worked so far very good until we upgraded the server to a new SUSE Linux version and with it dovecot from version 1.0.3 to 1.1.7.
My guess is that something changed in the way dovecot reads the user file as the configuration stayed the same:
dovecot.conf:
base_dir = /var/run/dovecot/ protocols = imaps disable_plaintext_auth = yes ssl_cert_file = /<pathtocertificate> ssl_key_file = /<pathtocertificate> ssl_disable = no ssl_listen = 80.149.64.98:993 log_path = /var/log/dovecot.log login_dir = /var/run/dovecot/login login_process_per_connection = yes login_processes_count = 3 login_greeting = main.xbdx.de IMAP What can we do for you? imap_client_workarounds = tb-extra-mailbox-sep mail_debug = no auth_debug = yes auth_cache_size = 4096 auth_cache_ttl = 7200 auth_worker_max_count = 30 auth default { userdb static { args = uid=5000 gid=5000 } passdb { driver = passwd-file args = /etc/dovecot/dovecot.passdb } socket listen { client { path = /var/spool/postfix/private/auth mode = 0660 user = postfix group = postfix } } mechanisms = plain login user = root count = 1 }
dovecot.passdb:
testuser1:::::::host=<internalip> port=143 nodelay=y nologin=y proxy=y testuser2:::::::host=<internalip> port=143 nodelay=y nologin=y proxy=y
dovecot.log:
dovecot: Oct 06 10:37:26 Info: Dovecot v1.1.7 starting up dovecot: Oct 06 10:37:26 Info: auth(default): passwd-file /etc/dovecot/dovecot.passdb: Read 2 users dovecot: Oct 06 10:37:27 Info: auth(default): new auth connection: pid=8135 dovecot: Oct 06 10:37:27 Info: auth(default): new auth connection: pid=8136 dovecot: Oct 06 10:37:27 Info: auth(default): new auth connection: pid=8137 dovecot: Oct 06 10:37:39 Info: auth(default): new auth connection: pid=8139 dovecot: Oct 06 10:37:39 Info: auth(default): client in: AUTH 1 PLAIN service=imap secured lip=80.149.64.98 rip=217.91.33.32 lport=993 rport=61752 resp=<hidden> dovecot: Oct 06 10:37:39 Info: auth(default): cache(adrian.wojcicki,217.91.33.32): miss dovecot: Oct 06 10:37:39 Info: auth(default): passwd-file(testuser1,217.91.33.32): lookup: user=testuser1 file=/etc/dovecot/dovecot.passdb dovecot: Oct 06 10:37:39 Info: auth(default): passwd-file(testuser1,217.91.33.32): Password mismatch dovecot: Oct 06 10:37:41 Info: auth(default): client out: FAIL 1 user=testuser1 host=<internalip> port=143 nologin proxy pass=<hidden> dovecot: Oct 06 10:37:41 Info: imap-login: Aborted login (auth failed, 1 attempts): user=<testuser1>, method=PLAIN, rip=217.91.33.32, lip=80.149.64.98, TLS
Thanks! Adrian
On Oct 6, 2009, at 5:54 AM, Adrian Wojcicki | Unternehmensberatung
Wojcicki wrote:
We have a server running dovecot and proxying IMAPS connections to
our internal network. This worked so far very good until we upgraded
the server to a new SUSE Linux version and with it dovecot from
version 1.0.3 to 1.1.7.My guess is that something changed in the way dovecot reads the user
file as the configuration stayed the same: .. testuser1:::::::host=<internalip> port=143 nodelay=y nologin=y proxy=y .. dovecot: Oct 06 10:37:39 Info: auth(default): passwd- file(testuser1,217.91.33.32): Password mismatch
Yes, nowadays you need to add nopassword=y also. http://wiki.dovecot.org/Upgrading/1.1 also mentions other things that could affect you.
That helped, it works again. Thanks!
Timo Sirainen schrieb:
On Oct 6, 2009, at 5:54 AM, Adrian Wojcicki | Unternehmensberatung Wojcicki wrote:
We have a server running dovecot and proxying IMAPS connections to our internal network. This worked so far very good until we upgraded the server to a new SUSE Linux version and with it dovecot from version 1.0.3 to 1.1.7.
My guess is that something changed in the way dovecot reads the user file as the configuration stayed the same: .. testuser1:::::::host=<internalip> port=143 nodelay=y nologin=y proxy=y .. dovecot: Oct 06 10:37:39 Info: auth(default): passwd-file(testuser1,217.91.33.32): Password mismatch
Yes, nowadays you need to add nopassword=y also. http://wiki.dovecot.org/Upgrading/1.1 also mentions other things that could affect you.
participants (2)
-
Adrian Wojcicki | Unternehmensberatung Wojcicki
-
Timo Sirainen