10-ssl.conf: Unknown setting: ssl / debian 1:2.2.13-12~deb8u

Matthias Sitte matthias at familie-sitte.org
Mon Jun 5 12:42:27 EEST 2017


Aki,

is it possible to have doveconf print the current section upon error?
Like, change the following error message

May 13 13:38:32 mail dovecot[2178]: doveconf: Fatal: Error in
configuration file /etc/dovecot/conf.d/10-ssl.conf line 61: Unknown
setting: ssl

to something like

May 13 13:38:32 mail dovecot[2178]: doveconf: Fatal: Error in
configuration file /etc/dovecot/conf.d/10-ssl.conf line 61: Unknown
setting: ssl (in config section "imap-login")

That would have made it a bit easier to spot the misconfiguration.

Best,
Matthias

On 06/05/2017 09:51 AM, Aki Tuomi wrote:
> Can you create file /etc/dovecot/conf.d/10-ssl.conf
>
> and type in 'ssl = yes'
>
> and nothing else? does it work after this? leave the default_vsz_limit
> off for now.
>
> Aki
>
>
> On 05.06.2017 10:34, Aki Tuomi wrote:
>> Can you remove the offending settings, and then send it?
>>
>> Aki
>>
>>
>> On 05.06.2017 10:30, Sophie Loewenthal wrote:
>>> # doveconf -a 
>>> # 2.2.13: /etc/dovecot/dovecot.conf
>>> doveconf: Fatal: Error in configuration file
>>> /etc/dovecot/conf.d/10-ssl.conf line 6: Unknown setting: ssl
>>> doveconf: Error: managesieve-login: dump-capability process returned 89
>>> doveconf: Fatal: Error in configuration file
>>> /etc/dovecot/conf.d/10-master.conf line 35: Invalid size:
>>> $default_vsz_limit
>>>
>>>
>>> # grep default_vsz_limit /etc/dovecot/conf.d/10-master.conf
>>> default_vsz_limit = 128M
>>>   vsz_limit = $default_vsz_limit
>>> #  vsz_limit = $default_vsz_limit
>>>
>>>
>>>> On 5 Jun 2017, at 09:16, Aki Tuomi <aki.tuomi at dovecot.fi
>>>> <mailto:aki.tuomi at dovecot.fi>> wrote:
>>>>
>>>> Ok, and can you provide, as attachment, output of "doveconf -a"?
>>>>
>>>> Aki
>>>>
>>>> On 05.06.2017 10:08, Sophie Loewenthal wrote:
>>>>> Hi Aki,
>>>>>
>>>>> # dovecot --build-options
>>>>> Build options: ioloop=epoll notify=inotify ipv6 openssl
>>>>> io_block_size=8192
>>>>> Mail storages: shared mdbox sdbox maildir mbox cydir imapc pop3c raw
>>>>> fail
>>>>> SQL driver plugins: mysql postgresql sqlite
>>>>> Passdb: checkpassword ldap pam passwd passwd-file shadow sql
>>>>> Userdb: checkpassword ldap(plugin) nss passwd prefetch passwd-file sql
>>>>>
>>>>>
>>>>>
>>>>> --
>>>>>
>>>>> On June 5, 2017 8:59:08 AM CEST, Aki Tuomi <aki.tuomi at dovecot.fi
>>>>> <mailto:aki.tuomi at dovecot.fi>> wrote:
>>>>>> Can you provide output of
>>>>>>
>>>>>> dovecot --build-options
>>>>>>
>>>>>> Aki
>>>>>>
>>>>>> On 04.06.2017 12:10, Sophie Loewenthal wrote:
>>>>>>> Hi Stefan,
>>>>>>>
>>>>>>> My apologies for the long delay.  Been ill.
>>>>>>>
>>>>>>> I tried this and had an error,
>>>>>>>
>>>>>>>
>>>>>>> # mv /etc/dovecot/conf.d/10-ssl.conf
>>>>>> /etc/dovecot/conf.d/10-ssl.conf.bak
>>>>>>> # cp -p  /usr/share/dovecot/conf.d/10-ssl.conf /etc/dovecot/conf.d/
>>>>>>> # /etc/init.d/dovecot restart
>>>>>>>
>>>>>>> /var/log/daemon.log
>>>>>>> Jun  4 11:05:55 mail systemd[1]: Starting Dovecot IMAP/POP3 email
>>>>>> server...
>>>>>>> Jun  4 11:05:55 mail systemd[1]: Started Dovecot IMAP/POP3 email
>>>>>> server.
>>>>>>> Jun  4 11:05:55 mail dovecot[969]: doveconf: Fatal: Error in
>>>>>> configuration file /etc/dovecot/conf.d/10-ssl.conf line 6: Unknown
>>>>>> setting: ssl
>>>>>>> Jun  4 11:05:55 mail dovecot[969]: doveconf: Error:
>>>>>> managesieve-login: dump-capability process returned 89
>>>>>>> Jun  4 11:05:55 mail dovecot[969]: doveconf: Fatal: Error in
>>>>>> configuration file /etc/dovecot/conf.d/10-ssl.conf line 6: Unknown
>>>>>> setting: ssl
>>>>>>> Jun  4 11:05:55 mail systemd[1]: dovecot.service: main process
>>>>>> exited, code=exited, status=89/n/a
>>>>>>> Jun  4 11:05:55 mail systemd[1]: Unit dovecot.service entered failed
>>>>>> state.
>>>>>>>> On 18 May 2017, at 23:40, S. Kremer <sk71 at gmx.de
>>>>>>>> <mailto:sk71 at gmx.de>> wrote:
>>>>>>>>
>>>>>>>> Hi Sophie
>>>>>>>>
>>>>>>>> did you try the following steps?
>>>>>>>>
>>>>>>>> 1. rename /etc/dovecot/conf.d/10-ssl.conf to
>>>>>>>> /etc/dovecot/conf.d/10-ssl.conf.bak
>>>>>>>> 2. copy /usr/share/dovecot/conf.d/10-ssl.conf to
>>>>>> /etc/dovecot/conf.d/
>>>>>>>> 3. restart dovecot
>>>>>>>>
>>>>>>>> what happens? start dovecot normally?
>>>>>>>>
>>>>>>>> if so
>>>>>>>>
>>>>>>>> make a new cert with /usr/share/dovecot/mkcert.sh
>>>>>>>>
>>>>>>>> and do changes in /etc/dovecot/conf.d/10-ssl.conf
>>>>>>>>
>>>>>>>> ssl = yes
>>>>>>>> ssl_cert = </etc/dovecot/dovecot.pem
>>>>>>>> ssl_key = </etc/dovecot/private/dovecot.pem
>>>>>>>>
>>>>>>>> then restart dovecot. What happens now?
>>>>>>>>
>>>>>>>>
>>>>>>>> Best regards
>>>>>>>> Stefan
>>>>>>>>
>>>>>>>>
>>>>>>>> Am 18.05.2017 um 22:01 schrieb Sophie Loewenthal:
>>>>>>>>> Hi,
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> I've been trying to get dovecot2 running and kept having this error
>>>>>> message:
>>>>>>>>> May 13 13:38:32 mail systemd[1]: Started Dovecot IMAP/POP3 email
>>>>>> server.
>>>>>>>>> May 13 13:38:32 mail dovecot[2178]: doveconf: Fatal: Error in
>>>>>> configuration file /etc/dovecot/conf.d/10-ssl.conf line 61: Unknown
>>>>>> setting: ssl
>>>>>>>>> # dovecot --build-options
>>>>>>>>> Build options: ioloop=epoll notify=inotify ipv6 openssl
>>>>>> io_block_size=8192
>>>>>>>>> Mail storages: shared mdbox sdbox maildir mbox cydir imapc pop3c
>>>>>> raw fail
>>>>>>>>> SQL driver plugins: mysql postgresql sqlite
>>>>>>>>> Passdb: checkpassword ldap pam passwd passwd-file shadow sql
>>>>>>>>> Userdb: checkpassword ldap(plugin) nss passwd prefetch passwd-file
>>>>>> sql
>>>>>>>>> # openssl version
>>>>>>>>> OpenSSL 1.0.1t  3 May 2016
>>>>>>>>>
>>>>>>>>> This package is from from Debian repos with version number
>>>>>> 1:2.2.13-12~deb8u amd64
>>>>>>>>> In case I had inadvertently entered some invisible charaters in
>>>>>> 10-ssl.conf, I deleted and typed this out. Not copy-pasted:
>>>>>>>>> # >10-ssl.conf
>>>>>>>>> # cat 10-ssl.conf
>>>>>>>>> # echo 'ssl = required' >10-ssl.conf
>>>>>>>>> # echo 'ssl_key  = </etc/ssl/private/xxx.key' >>10-ssl.conf
>>>>>>>>> # echo 'ssl_cert = </etc/ssl/private/xxx.pem' >>10-ssl.conf
>>>>>>>>>
>>>>>>>>> I’ve done usual searching online for a week and read some dox, but
>>>>>> cannot see what I’ve missed out.
>>>>>>>>> Any ideas? Please?
>>>>>>>>>
>>>>>>>>> Thanks,
>>>>>>>>> Sophie
>>>>>>>>>


More information about the dovecot mailing list