trouble with ssl disable in centos 7 with version 1.0 1.2 and 3.10

Aki Tuomi aki.tuomi at open-xchange.com
Fri Oct 19 09:44:03 EEST 2018 

On 18.10.2018 20.43, Joseph Harth wrote:
> I am trying to use dovecot without ssl in centos 7. It works with imap
> but I am not able to make it work with pop3. Pop3 only works with
> ssl=yes. I can use dovecot in centos 4 ok.  I get the same error with
> thunderbird and outlook. But for some reason it works when I telnet to
> port 110 and do retr 1. I was able to work pam and shadow passwords.
>
> this is the output that does not work with tls disabled
>
> Oct 18 13:30:17 auth: Debug: Loading modules from directory:
> /usr/lib64/dovecot/auth
> Oct 18 13:30:17 auth: Debug: Module loaded:
> /usr/lib64/dovecot/auth/lib20_auth_var_expand_crypt.so
> Oct 18 13:30:17 auth: Debug: Module loaded:
> /usr/lib64/dovecot/auth/libdriver_sqlite.so
> Oct 18 13:30:17 auth: Debug: Read auth token secret from
> /var/run/dovecot/auth-token-secret.dat
> Oct 18 13:30:17 auth: Debug: auth client connected (pid=22513)
> Oct 18 13:30:17 auth: Debug: client in: AUTH    1       PLAIN 
>  service=pop3    session=WXv1I4R4FOXAqAAK        lip=192.168.0.37     
>   rip=192.168.0.10    lport=110        rport=58644
> Oct 18 13:30:17 auth: Debug: client passdb out: CONT    1
> Oct 18 13:30:17 auth: Debug: client in: CONT    1       == (previous
> base64 data may contain sensitive data)
> Oct 18 13:30:17 auth-worker(22515): Debug: Loading modules from
> directory: /usr/lib64/dovecot/auth
> Oct 18 13:30:17 auth-worker(22515): Debug: Module loaded:
> /usr/lib64/dovecot/auth/lib20_auth_var_expand_crypt.so
> Oct 18 13:30:17 auth-worker(22515): Debug: Module loaded:
> /usr/lib64/dovecot/auth/libdriver_sqlite.so
> Oct 18 13:30:17 auth-worker(22515): Debug:
> shadow(joe2,192.168.0.10,<WXv1I4R4FOXAqAAK>): lookup
> Oct 18 13:30:17 auth: Debug: client passdb out: OK      1       user=joe2
> Oct 18 13:30:17 auth: Debug: master in: REQUEST 2718302209      22513 
>  1       05eac7a2917ce3bc1f0f359b21b138e6        session_pid=22516
> Oct 18 13:30:17 auth-worker(22515): Debug:
> passwd(joe2,192.168.0.10,<WXv1I4R4FOXAqAAK>): lookup
> Oct 18 13:30:17 auth: Debug: master userdb out: USER    2718302209   
>   joe2    system_groups_user=joe2 uid=660 gid=661 home=/home/joe2
> Oct 18 13:30:17 pop3(joe2)<22516><WXv1I4R4FOXAqAAK>: Debug: Effective
> uid=660, gid=661, home=/home/joe2
> Oct 18 13:30:17 pop3(joe2)<22516><WXv1I4R4FOXAqAAK>: Debug: Namespace
> inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, list=yes,
> subscriptions=yes location=mbox:~/mail/:INBOX=/var/mail/joe2
> Oct 18 13:30:17 pop3(joe2)<22516><WXv1I4R4FOXAqAAK>: Debug: fs:
> root=/home/joe2/mail, index=, indexpvt=, control=,
> inbox=/var/mail/joe2, alt=
> Oct 18 13:30:17 pop3(joe2)<22516><WXv1I4R4FOXAqAAK>: Debug: Mailbox
> INBOX: Mailbox opened because: POP3 INBOX
> Oct 18 13:30:17 pop3(joe2)<22516><WXv1I4R4FOXAqAAK>: Debug: Mailbox
> INBOX: UID 30: Opened mail because: access
> Oct 18 13:30:17 pop3(joe2)<22516><WXv1I4R4FOXAqAAK>: Debug: Mailbox
> INBOX: UID 30: Opened mail because: RETR
>
>
> This is the output with TLS and it works
>
> Oct 18 13:30:32 auth: Debug: auth client connected (pid=22542)
> Oct 18 13:30:33 auth: Debug: client in: AUTH    1       PLAIN 
>  service=pop3    secured=tls     session=44feJIR4FeXAqAAK       
> lip=192.168.0.37        rip=192.168.0.10     lport=110     
>  rport=58645     ssl_cipher=ECDHE-RSA-AES128-GCM-SHA256 
> ssl_cipher_bits=128     ssl_pfs=ECDH    ssl_protocol=TLSv1.2
> Oct 18 13:30:33 auth: Debug: client passdb out: CONT    1
> Oct 18 13:30:33 auth: Debug: client in: CONT    1       == (previous
> base64 data may contain sensitive data)
> Oct 18 13:30:33 auth-worker(22515): Debug:
> shadow(joe2,192.168.0.10,<44feJIR4FeXAqAAK>): lookup
> Oct 18 13:30:33 auth: Debug: client passdb out: OK      1       user=joe2
> Oct 18 13:30:33 auth: Debug: master in: REQUEST 4165992449      22542 
>  1       cb03b70f92c0c5c030e25a39ea4b8518        session_pid=22543
> Oct 18 13:30:33 auth-worker(22515): Debug:
> passwd(joe2,192.168.0.10,<44feJIR4FeXAqAAK>): lookup
> Oct 18 13:30:33 auth: Debug: master userdb out: USER    4165992449   
>   joe2    system_groups_user=joe2 uid=660 gid=661 home=/home/joe2
> Oct 18 13:30:33 pop3(joe2)<22543><44feJIR4FeXAqAAK>: Debug: Effective
> uid=660, gid=661, home=/home/joe2
> Oct 18 13:30:33 pop3(joe2)<22543><44feJIR4FeXAqAAK>: Debug: Namespace
> inbox: type=private, prefix=, sep=, inbox=yes, hidden=no, list=yes,
> subscriptions=yes location=mbox:~/mail/:INBOX=/var/mail/joe2
> Oct 18 13:30:33 pop3(joe2)<22543><44feJIR4FeXAqAAK>: Debug: fs:
> root=/home/joe2/mail, index=, indexpvt=, control=,
> inbox=/var/mail/joe2, alt=
> Oct 18 13:30:33 pop3(joe2)<22543><44feJIR4FeXAqAAK>: Debug: Mailbox
> INBOX: Mailbox opened because: POP3 INBOX
> Oct 18 13:30:33 pop3(joe2)<22543><44feJIR4FeXAqAAK>: Debug: Mailbox
> INBOX: UID 30: Opened mail because: access
> Oct 18 13:30:33 pop3(joe2)<22543><44feJIR4FeXAqAAK>: Debug: Mailbox
> INBOX: UID 30: Opened mail because: RETR
> Oct 18 13:30:33 pop3(joe2)<22543><44feJIR4FeXAqAAK>: Debug: Mailbox
> INBOX: UID 31: Opened mail because: access
> Oct 18 13:30:33 pop3(joe2)<22543><44feJIR4FeXAqAAK>: Debug: Mailbox
> INBOX: UID 31: Opened mail because: RETR
>
>
>
>

Does it crash? If so, can you try enabling core dumps?

Aki

More information about the dovecot mailing list