Dovecot 2.2.27 & windows 10 outlook (no auth attempts in 0 secs) error.

Eric Broch ebroch at whitehorsetc.com
Mon Dec 12 18:06:14 UTC 2016



On 12/12/2016 10:42 AM, Aki Tuomi wrote:
>
>
> On 12.12.2016 16:21, Mart Pirita wrote:
>> Edit: When using win8, then logs started appear in dovecot.rawlog. But
>> as win10 gives error in ssl level, before user authentication, then no
>> debug logs will be written into user dovecot.rawlog folder.
>>
>> So how to debug this ssl issue?
>>
>>
>> Aki Tuomi wrote:
>>> https://wiki2.dovecot.org/Debugging/Rawlog
>>>
>>> can you try this to get rawlogs to find out what happens?
>>>
>>> Aki
>> I'm bit confused, how this rawlog works. I did:
>>
>> doveadm user -u kaka
>> userdb: kaka
>>    user      : kaka
>>    system_groups_user: kaka
>>    uid       : 566
>>    gid       : 566
>>    home      : /home/kaka
>>
>> ls -al /home/kaka
>> total 16
>> drwx------    4 kaka     kaka         4096 Dec 12 15:36 .
>> drwxr-xr-x   12 root     root         4096 Dec 12 12:41 ..
>> drwx------    2 kaka     kaka         4096 Dec 12 12:41 dovecot.rawlog
>> drwx------    2 kaka     kaka         4096 Dec 12 12:41 Maildir
>>
>> Added into dovecot.conf:
>>
>> protocol imap {
>>    rawlog_dir = /tmp/rawlog/%u
>> }
>>
>> service imap {
>>    executable = imap postlogin
>> }
>>
>> service postlogin {
>>    executable = script-login -d rawlog
>>    unix_listener postlogin {
>>    }
>> }
>>
>> But /tmp/rawlog/kaka/ and /home/kaka/dovecot.rawlog/ are empty. What did
>> I miss?
>>
>>
>> The whole conf:
>>
>> listen = *
>> plugin {
>> mail_log_events = delete undelete expunge copy mailbox_delete 
>> mailbox_rename
>> mail_log_group_events = no
>> mail_log_fields = uid box msgid size from subject vsize
>> }
>> login_log_format_elements = %u %r %m %c
>> service imap-login {
>>    inet_listener imap {
>>      port = 0
>>    }
>>    inet_listener imaps {
>>      port = 993
>>      ssl = yes
>>    }
>> }
>> service pop3-login {
>>    inet_listener pop3 {
>>     port = 110
>>    }
>>    inet_listener pop3s {
>>      port = 995
>>      ssl = yes
>>    }
>> }
>> service lmtp {
>>    unix_listener lmtp {
>>    }
>> }
>> service imap {
>>    executable = imap postlogin
>> }
>> service pop3 {
>> }
>> service postlogin {
>>    executable = script-login -d rawlog
>>      unix_listener postlogin {
>>    }
>> }
>> service auth {
>>    unix_listener auth-userdb {
>>    }
>>    unix_listener /var/spool/postfix/private/auth {
>>      mode = 0666
>>      user = postfix
>>      group = postfix
>>    }
>> }
>> service auth-worker {
>> }
>> service dict {
>>    unix_listener dict {
>>    }
>> }
>> disable_plaintext_auth = no
>> auth_cache_size = 1024
>> auth_cache_ttl = 1 hour
>> auth_cache_negative_ttl = 1 hour
>> auth_failure_delay = 60 secs
>> auth_mechanisms = plain login
>> passdb {
>>    driver = pam
>> args = cache_key=%u%r%s *
>> }
>> userdb {
>>   driver = passwd
>> }
>> mail_location = maildir:~/Maildir
>> mail_plugin_dir = /usr/lib/dovecot
>> mail_plugins = $mail_plugins mail_log notify
>> maildir_very_dirty_syncs = yes
>> protocol imap {
>>    mail_max_userip_connections = 90
>>    imap_logout_format = bytes=%i/%o
>>    imap_client_workarounds = tb-extra-mailbox-sep delay-newmail
>>      rawlog_dir = /tmp/rawlog/%u
>> }
>> protocol pop3 {
>>    pop3_logout_format = bytes=%i/%o, del=%d/%m, size=%s
>>    mail_max_userip_connections = 9
>>    pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
>> }
>> ssl_cert = </etc/ssl/certs/dovecot.pem
>> ssl_key = </etc/ssl/private/dovecot.pem
>> ssl_parameters_regenerate = 0
>> ssl_protocols = !SSLv2 !SSLv3
>> plugin {
>> }
>> plugin {
>> }
>> plugin {
>> }
>> plugin {
>> }
>> plugin {
>> }
>> plugin {
>> }
>> plugin {
>> }
>>
>>
>
> This sounds like issue with SSL itself. Is your certificate 
> self-signed or issued by some trusted CA?
>
> Aki
I don't mean to but in but my dovecot-2.2.27 running on CentOS 6/CentOS 
7 with Outlook 2007/2013 is working just fine.
Also, Outlook doesn't allow storage of a certificate like Thunderbird 
but it does allow you to accept it (every time one opens Outlook) and open.


More information about the dovecot mailing list