Dovecot 2.2.27 & windows 10 outlook (no auth attempts in 0 secs) error.
Aki Tuomi
aki.tuomi at dovecot.fi
Mon Dec 12 17:42:00 UTC 2016
On 12.12.2016 16:21, Mart Pirita wrote:
> Edit: When using win8, then logs started appear in dovecot.rawlog. But
> as win10 gives error in ssl level, before user authentication, then no
> debug logs will be written into user dovecot.rawlog folder.
>
> So how to debug this ssl issue?
>
>
> Aki Tuomi wrote:
>> https://wiki2.dovecot.org/Debugging/Rawlog
>>
>> can you try this to get rawlogs to find out what happens?
>>
>> Aki
> I'm bit confused, how this rawlog works. I did:
>
> doveadm user -u kaka
> userdb: kaka
> user : kaka
> system_groups_user: kaka
> uid : 566
> gid : 566
> home : /home/kaka
>
> ls -al /home/kaka
> total 16
> drwx------ 4 kaka kaka 4096 Dec 12 15:36 .
> drwxr-xr-x 12 root root 4096 Dec 12 12:41 ..
> drwx------ 2 kaka kaka 4096 Dec 12 12:41 dovecot.rawlog
> drwx------ 2 kaka kaka 4096 Dec 12 12:41 Maildir
>
> Added into dovecot.conf:
>
> protocol imap {
> rawlog_dir = /tmp/rawlog/%u
> }
>
> service imap {
> executable = imap postlogin
> }
>
> service postlogin {
> executable = script-login -d rawlog
> unix_listener postlogin {
> }
> }
>
> But /tmp/rawlog/kaka/ and /home/kaka/dovecot.rawlog/ are empty. What did
> I miss?
>
>
> The whole conf:
>
> listen = *
> plugin {
> mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename
> mail_log_group_events = no
> mail_log_fields = uid box msgid size from subject vsize
> }
> login_log_format_elements = %u %r %m %c
> service imap-login {
> inet_listener imap {
> port = 0
> }
> inet_listener imaps {
> port = 993
> ssl = yes
> }
> }
> service pop3-login {
> inet_listener pop3 {
> port = 110
> }
> inet_listener pop3s {
> port = 995
> ssl = yes
> }
> }
> service lmtp {
> unix_listener lmtp {
> }
> }
> service imap {
> executable = imap postlogin
> }
> service pop3 {
> }
> service postlogin {
> executable = script-login -d rawlog
> unix_listener postlogin {
> }
> }
> service auth {
> unix_listener auth-userdb {
> }
> unix_listener /var/spool/postfix/private/auth {
> mode = 0666
> user = postfix
> group = postfix
> }
> }
> service auth-worker {
> }
> service dict {
> unix_listener dict {
> }
> }
> disable_plaintext_auth = no
> auth_cache_size = 1024
> auth_cache_ttl = 1 hour
> auth_cache_negative_ttl = 1 hour
> auth_failure_delay = 60 secs
> auth_mechanisms = plain login
> passdb {
> driver = pam
> args = cache_key=%u%r%s *
> }
> userdb {
> driver = passwd
> }
> mail_location = maildir:~/Maildir
> mail_plugin_dir = /usr/lib/dovecot
> mail_plugins = $mail_plugins mail_log notify
> maildir_very_dirty_syncs = yes
> protocol imap {
> mail_max_userip_connections = 90
> imap_logout_format = bytes=%i/%o
> imap_client_workarounds = tb-extra-mailbox-sep delay-newmail
> rawlog_dir = /tmp/rawlog/%u
> }
> protocol pop3 {
> pop3_logout_format = bytes=%i/%o, del=%d/%m, size=%s
> mail_max_userip_connections = 9
> pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
> }
> ssl_cert = </etc/ssl/certs/dovecot.pem
> ssl_key = </etc/ssl/private/dovecot.pem
> ssl_parameters_regenerate = 0
> ssl_protocols = !SSLv2 !SSLv3
> plugin {
> }
> plugin {
> }
> plugin {
> }
> plugin {
> }
> plugin {
> }
> plugin {
> }
> plugin {
> }
>
>
This sounds like issue with SSL itself. Is your certificate self-signed
or issued by some trusted CA?
Aki
More information about the dovecot
mailing list