From jk at jkart.de Wed Jun 1 01:02:35 2011 From: jk at jkart.de (Jim Knuth) Date: Wed, 01 Jun 2011 00:02:35 +0200 Subject: [Dovecot] Segmentation fault again In-Reply-To: <4DE22AF4.9060803@localhost.localdomain.org> References: <4DE0D02C.4060807@jkart.de> <4DE21BFA.4020300@jkart.de> <4DE22684.6070806@localhost.localdomain.org> <4DE2291E.1070803@jkart.de> <4DE22AF4.9060803@localhost.localdomain.org> Message-ID: <4DE5657B.5000905@jkart.de> am 29.05.11 13:16 schrieb Pascal Volk : > On 05/29/2011 01:08 PM Jim Knuth wrote: >> am 29.05.11 12:57 schrieb Pascal Volk >> : >>> Which attachment? >> >> I`ve send already with the first post. >> Whatever. here again. > > When you compare them??, you will see the difference. > >>> Upgrading to v2.0.13 may also solve your problem. >> >> That is V 2.0.13 > > Yeah, the backtrace looks different and I'm sure, Timo will fix the > problem soon. I`ve upgrade today of 2:2.0.13-0~auto+32 and the error is already present. :-/ doveconf -n # 2.0.13 (9ae30e5d6935): /etc/dovecot/dovecot.conf # OS: Linux 2.6.29.4 i686 Debian wheezy/sid > > > Regards, > Pascal > -- > [1] > http://dovecot.org/pipermail/dovecot/attachments/20110409/245be60b/attachment.txt > [2] > http://dovecot.org/pipermail/dovecot/attachments/20110529/f2b2ffd0/attachment-0001.txt -- Mit freundlichen Gr??en, with kind regards, Jim Knuth --------- Politik kann man in diesem Lande definieren als die Durchsetzung wirtschaftlicher Zwecke mit Hilfe der Gesetzgebung. (Kurt Tucholsky) From kgc at corp.sonic.net Wed Jun 1 03:17:35 2011 From: kgc at corp.sonic.net (Kelsey Cummings) Date: Tue, 31 May 2011 17:17:35 -0700 Subject: [Dovecot] Client IP log variable for proxy/director setups? In-Reply-To: <20110527190025.GH70065@corp.sonic.net> References: <20110527190025.GH70065@corp.sonic.net> Message-ID: <20110601001735.GI81678@corp.sonic.net> On Fri, May 27, 2011 at 12:00:25PM -0700, Kelsey Cummings wrote: > Timo - it would be very convenient if we could get a variable that held > the real client ip for use in logging with director/proxy setups. It's > clearly already passed around in client->user->remote_ip but at this point, > I don't see anyway to get it into the logs and it would take me ages to > figure out the Right place to add it since client->user doesn't seem to > be available in client-common.c: get_var_expand_table(..). Perhaps I'm > missing something obvious? Something so obvious as it already doing it. I have NFC what I did when I "tested" this the first time around and concluded that the director server's ip was showing up in %r. Sorry! -- Kelsey Cummings - kgc at corp.sonic.net sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 Santa Rosa, CA 95407 From imap at tnde.org Wed Jun 1 12:17:28 2011 From: imap at tnde.org (imap at tnde.org) Date: Wed, 1 Jun 2011 05:17:28 -0400 Subject: [Dovecot] Unknown setting: dbox_attachment_dir In-Reply-To: <4DE3DFA3.2080708@localhost.localdomain.org> References: <6aa4663f8f159b8334230cb285386628.squirrel@emailmg.dot5hosting.com> <4DE3DFA3.2080708@localhost.localdomain.org> Message-ID: <02d276025fc9032f6ef10a7e6fe29180.squirrel@emailmg.dot5hosting.com> > On 05/30/2011 02:18 PM imap at tnde.org wrote: >> Starting Dovecot Imap: doveconf: Fatal: Error in configuration file >> /etc/dovecot/dovecot.conf line 89: Unknown setting: dbox_attachment_dir > > ,--[ conf.d/10-mail.conf:319-330 ]-- > | ## > | ## Mail attachments > | ## > | > | # sdbox and mdbox support saving mail attachments to external files, > which > | # also allows single instance storage for them. Other backends don't > support > | # this for now. > | > | # WARNING: This feature hasn't been tested much yet. Use at your own > risk. > | > | # Directory root where to store mail attachments. Disabled, if empty. > | #mail_attachment_dir = > `-- Ahh, thanks! The dangers of googling for reference information.... From dirk.jahnke-zumbusch at desy.de Wed Jun 1 12:25:40 2011 From: dirk.jahnke-zumbusch at desy.de (Jahnke-Zumbusch, Dirk) Date: Wed, 1 Jun 2011 11:25:40 +0200 Subject: [Dovecot] Dovecot 2 + Director: IMAP+GSSAPI and LMTP-proxying Message-ID: <7C0189D0CDB51646B7814F4377D356F5015364A9@ADXV4.win.desy.de> Hi all, I have a setup of some nodes running Dovecot 2.0.13 and Postfix 2.5.6 with storage in NFS and authentication happening with PAM. Poking around in the wiki, I tried out different possibilities but now I am stuck -- and are hoping for your (enlightening) comments and tips. My planned setup for IMAP and LMTP is like this: IMAP ==== 1. A loadbalancer directs new sessions to a Dovecot-Director instance; this extra amount of traffic routing is mostly done for automatic handling in case of a failing Director node; this works fine, the same IP will end always on the same backend, but user-based Directory proxying seems more appropriate, especially taking the NFS-setup and the delivery process into account 2. Then the Director decides where to direct the user's session; this works fine when I let the backend servers do the authentication work 3. The backend Dovecot server will happily provide the user's e-mail For now my section for the passdb in the Director instance is passdb { driver = static args = proxy=y nopassword=y } So the backend will do the authentication of the session. But this setup inhibits using Kerberos, as the TGT is not forwarded to the backend server. I would very much like to provide GSSAPI/Kerberos authentication, which already works fine with the backend servers being directly connected by mail clients. The backend servers are using the PAM driver. I could not figure out, how to setup the passdb entry for the director instance to use PAM (this way enabling GSSAPI/Kerberos) and also giving back the necessary "proxy=y" to make director proxying the IMAP session. Is this setup feasible at all? LMTP ==== 1. Postfix accepts incoming e-mail and decides, which e-mail will go the LMTP-way to be deliverd into a Dovecot mailbox with something like virtual_transport = lmtp:inet:DOVECOT-DIRECTORS-IP:LMTP-PORT-ABC 2. the Dovecot Director instance accepts the LMTP connections and will proxy this to the appropriate==user's current backend server For now Postfix delivers e-mails using LMTP to the _backend_ w/o proxying and everything like SIEVE-filtering works fine: virtual_transport = lmtp:inet:DOVECOT-BACKENDS-IP:LMTP-PORT-XYZ But when I use the Director's IP/Port combination for LMTP, I see an error "554 5.4.6 Proxying loops to itself". Where may I specify the port number of the backend server's LMTP-port? I suspect that the missing port number implies that the receiving LMTP-backend server uses the same port and so this would lead to a loop, hence the loop error?! I browsed the Wiki and the archives but still cannot find the information I am looking for. Any hints on that? Cheers, Dirk And here's the director.conf (via doveconf -n): # 2.0.13: /dovecot/code/etc/dovecot-director/director.conf # OS: SunOS 5.10 sun4v auth_debug = yes auth_verbose = yes base_dir = /var/run/director/ debug_log_path = /var/adm/dovecot-director.debug director_mail_servers = director_servers = lmtp_proxy = yes login_greeting = Dovecot Director ready. mail_debug = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = proxy=y nopassword=y driver = static } protocols = imap lmtp service auth-worker { user = root } service auth { client_limit = 6000 unix_listener auth-userdb { mode = 0644 user = vmail } } service director { fifo_listener login/proxy-notify { mode = 0666 } inet_listener { port = 9090 } unix_listener director-userdb { mode = 0600 } unix_listener login/director { mode = 0666 } } service imap-login { executable = imap-login director inet_listener imap { port = 10143 } inet_listener imaps { port = 10993 ssl = yes } process_min_avail = 1 } service imap { process_limit = 1024 } service lmtp { inet_listener lmtp { address = port = 24242 } } ssl_cert = References: <7C0189D0CDB51646B7814F4377D356F5015364A9@ADXV4.win.desy.de> Message-ID: Hi again, minutes after posting I found something for my LMTP-question: > Where may I specify the port number of the backend server's > LMTP-port? I suspect that the missing port number implies that > the receiving LMTP-backend server uses the same port and so > this would lead to a loop, hence the loop error?! Just add "port=" in the passdb section like: passdb { args = proxy=y nopassword=y port=25252 driver = static } So I am worrying about the IMAP+GSSAPI part... Cheers, Dirk -- Dirk Jahnke-Zumbusch Deutsches Elektronen-Synchrotron DESY IT Information Fabrics Member of the Helmholtz Association D-22603 Hamburg Notkestrasse 85 / 22607 Hamburg T: +49-40-899.81760 F: +49-40-899.41760 dirk.jahnke-zumbusch at desy.de From sf.rique at gmail.com Wed Jun 1 16:43:43 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Wed, 1 Jun 2011 10:43:43 -0300 Subject: [Dovecot] Squat Question! Message-ID: Hello folks, I use dovecot squat for indexing. I use to have fts_squat = partial=4 full=4 But i change to fts_squat = partial=4 full=8 My question is, do i need to delete older indexes to have it consistenly, or dovecot is able "update" the indexes or it sees that it is broken and rebuild it all? Other question, is there an comand line to update the indexes ? Thanks a lot! []'sf.rique From marcin at mejor.pl Wed Jun 1 16:57:03 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Wed, 01 Jun 2011 15:57:03 +0200 Subject: [Dovecot] Squat Question! In-Reply-To: References: Message-ID: <4DE6452F.4080706@mejor.pl> W dniu 01.06.2011 15:43, Henrique Fernandes pisze: > My question is, do i need to delete older indexes to have it consistenly, or > dovecot is able "update" the indexes or it sees that it is broken and > rebuild it all? I don't know. > Other question, is there an comand line to update the indexes ? Use doveadm: doveadm index -A "*" Regards From sf.rique at gmail.com Wed Jun 1 17:01:51 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Wed, 1 Jun 2011 11:01:51 -0300 Subject: [Dovecot] Squat Question! In-Reply-To: <4DE6452F.4080706@mejor.pl> References: <4DE6452F.4080706@mejor.pl> Message-ID: Thanks for the second question, but in wich version the index comanda was implement? I will look it! I use # 2.0.6: /etc/dovecot/dovecot.conf And it does not have, it might be time to update dovecot! # doveadm index -v -u user at example INBOX usage: doveadm [-Dv] [-f ] [] altmove [-u |-A] auth [-a ] [-x ] [] config [doveconf parameters] director add|flush|map|remove|status dump [-t ] expunge [-u |-A] fetch [-u |-A] force-resync [-u |-A] help import [-u |-A] kick [-a ] [-f] [|] log find|reopen|test mailbox create|delete|list|mutf7|rename|status|subscribe|unsubscribe penalty [-a ] [] purge [-u |-A] pw [-l] [-p plaintext] [-r rounds] [-s scheme] [-u user] [-V] quota get|recalc reload search [-u |-A] sis deduplicate|find stop user [-a ] [-x ] [...] who [-a ] [-1] [] [] []'sf.rique 2011/6/1 Marcin Miros?aw > W dniu 01.06.2011 15:43, Henrique Fernandes pisze: > > My question is, do i need to delete older indexes to have it consistenly, > or > > dovecot is able "update" the indexes or it sees that it is broken and > > rebuild it all? > > I don't know. > > > Other question, is there an comand line to update the indexes ? > > Use doveadm: doveadm index -A "*" > > Regards > From sf.rique at gmail.com Wed Jun 1 17:04:56 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Wed, 1 Jun 2011 11:04:56 -0300 Subject: [Dovecot] Squat Question! In-Reply-To: References: <4DE6452F.4080706@mejor.pl> Message-ID: Doveadm index was impolemented in 2.013 The most important changes since v2.0.12: + Added "doveadm index" command to add unindexed messages into index/cache. If full text search is enabled, it also adds unindexed messages to the fts database. I might update dovecot! Willl look for any trouble i might have! Thanks! Still looking for: > My question is, do i need to delete older indexes to have it consistenly, or > dovecot is able "update" the indexes or it sees that it is broken and > rebuild it all? After changing the fts parameter! []'sf.rique On Wed, Jun 1, 2011 at 11:01 AM, Henrique Fernandes wrote: > Thanks for the second question, but in wich version the index comanda was > implement? I will look it! > > I use # 2.0.6: /etc/dovecot/dovecot.conf > > And it does not have, it might be time to update dovecot! > > # doveadm index -v -u user at example INBOX > usage: doveadm [-Dv] [-f ] [] > > altmove [-u |-A] > auth [-a ] [-x ] [] > config [doveconf parameters] > director add|flush|map|remove|status > dump [-t ] > expunge [-u |-A] > fetch [-u |-A] > force-resync [-u |-A] > help > import [-u |-A] > > kick [-a ] [-f] [|] > log find|reopen|test > mailbox create|delete|list|mutf7|rename|status|subscribe|unsubscribe > penalty [-a ] [] > purge [-u |-A] > pw [-l] [-p plaintext] [-r rounds] [-s scheme] [-u user] [-V] > quota get|recalc > reload > search [-u |-A] > sis deduplicate|find > stop > user [-a ] [-x ] [...] > who [-a ] [-1] [] [] > > > > > []'sf.rique > > > 2011/6/1 Marcin Miros?aw > >> W dniu 01.06.2011 15:43, Henrique Fernandes pisze: >> > My question is, do i need to delete older indexes to have it >> consistenly, or >> > dovecot is able "update" the indexes or it sees that it is broken and >> > rebuild it all? >> >> I don't know. >> >> > Other question, is there an comand line to update the indexes ? >> >> Use doveadm: doveadm index -A "*" >> >> Regards >> > > From sm at resistor.net Thu Jun 2 01:18:37 2011 From: sm at resistor.net (SM) Date: Wed, 01 Jun 2011 15:18:37 -0700 Subject: [Dovecot] DOVECOT v2.0.11 using SIEVE not working In-Reply-To: <0E815C7A028A4130BF0B1971E7FBD260@HPDC7600> References: <4DC4F568.5070204@rename-it.nl> <2895CA51FD8B45F0B15340E98A94FE23@HPDC7600> <6E84D0F28EC34394B1E2E4EA1ED5B154@HPDC7600> <1304962872.10421.119.camel@hurina> <0E815C7A028A4130BF0B1971E7FBD260@HPDC7600> Message-ID: <6.2.5.6.2.20110601150944.02f9c270@resistor.net> Hi Matt, At 09:46 10-05-2011, Matt Mc Namara wrote: >1. Does anyone have a working configuration using sendmail, dovecot >and sieve for filters? sendmail.mc: FEATURE(`local_procmail', `/usr/local/libexec/dovecot/deliver',`/usr/local/libexec/dovecot/deliver -d $u') MODIFY_MAILER_FLAGS(`LOCAL', `-f') MAILER(procmail) dovecot.conf: plugin { # The path to the user's main active script. sieve = ~/.dovecot.sieve ... } protocol lda { mail_plugins = sieve } protocol lmtp { mail_plugins = sieve } service managesieve-login { inet_listener sieve { port = 4190 } ... } protocol sieve { ... } Regards, -sm From kgc at corp.sonic.net Thu Jun 2 02:59:31 2011 From: kgc at corp.sonic.net (Kelsey Cummings) Date: Wed, 1 Jun 2011 16:59:31 -0700 Subject: [Dovecot] doveadm "-S " option enabled in 2.0.8? In-Reply-To: <1293709973.5021.47.camel@hurina> References: <6891057E-C9A9-47D1-92F3-3A3A9B5B09D3@geneseo.edu> <1293709973.5021.47.camel@hurina> Message-ID: <20110601235931.GK30313@corp.sonic.net> On Thu, Dec 30, 2010 at 01:52:53PM +0200, Timo Sirainen wrote: > On Tue, 2010-12-21 at 14:55 -0500, David Warden wrote: > > > But when I try to get my quota on a different local IP using the -S flag to doveadm: > > > > doveadm quota get -u warden -S 137.238.2.244:143 > > The purpose of -S is completely different. It's about connecting to > another doveadm instance. There's currently no way to set IP for doveadm > queries. Just to bump an old thread. Timo, I think this would be a great feature to add. It would allow people to pull stats (and system health) directly out of dovecot rather than having to run agents on the dovecot servers to get the info into some other transport like SNMP. -- Kelsey Cummings - kgc at corp.sonic.net sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 Santa Rosa, CA 95407 From kgc at corp.sonic.net Thu Jun 2 03:29:33 2011 From: kgc at corp.sonic.net (Kelsey Cummings) Date: Wed, 1 Jun 2011 17:29:33 -0700 Subject: [Dovecot] director monitoring? Message-ID: <20110602002933.GL30313@corp.sonic.net> I'm working the kinks of a new director based setup for the eventual migration away from courier. At this point, with everything basically working I'm trying to ensure that things are properly monitored and I've run into an issue. There doesn't appear to be a way to get dovecot to tell if it is (or is not) connected and properly synced with the other director servers in the ring apart from the logs. It seems like this is an important piece of information -- without it, it isn't apparent how you would be able to tell if your director servers have lost track of each other. I'm also curious what people are doing to health check their director servers when they are running load balancing upstream of them as well. It doesn't seem like it is a good idea to let the load balancers check all the way through to the real servers since a failure on the target real server could end up leading to a director being dropped from the pool (if so, it is most likely that the other directors would be dropped as well.) Otherwise, the health check failure tolerance at the load balancer must be greater than the tolerance for failure of the real servers on the director- a dead director could end up in the pool for longer than desired, or anyway, long enough to be sure that it isn't a transient failure on the real server behind it. A better method would seem to be for the load balancers to query the director for the number of active back-end servers and, so long as it was over a given threshold, to assume that the director is otherwise able to do its job and rely on external monitoring to pickup internal failures where dovecot isn't able to successfully proxy the connection to one of the real servers. So, how are people doing this in the real world? -- Kelsey Cummings - kgc at corp.sonic.net sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 Santa Rosa, CA 95407 From hmoreno at gmv.com Thu Jun 2 11:13:03 2011 From: hmoreno at gmv.com (=?iso-8859-1?Q?H=E9ctor_Moreno_Blanco?=) Date: Thu, 2 Jun 2011 10:13:03 +0200 Subject: [Dovecot] [dovecot] notifications when delivery fails Message-ID: Hello Timo, We have dovecot 1.2.13. Is there any way to send notifications to the postmaster when a delivery fails? For example, when the dovecot index are corrupted and the mail is not sent to the user (the user who sent the message receives an error informing that the mail has not sent). Thank you very much in advanced. H?ctor Moreno Blanco. ______________________ This message including any attachments may contain confidential information, according to our Information Security Management System, and intended solely for a specific individual to whom they are addressed. Any unauthorised copy, disclosure or distribution of this message is strictly forbidden. If you have received this transmission in error, please notify the sender immediately and delete it. ______________________ Este mensaje, y en su caso, cualquier fichero anexo al mismo, puede contener informacion clasificada por su emisor como confidencial en el marco de su Sistema de Gestion de Seguridad de la Informacion siendo para uso exclusivo del destinatario, quedando prohibida su divulgacion copia o distribucion a terceros sin la autorizacion expresa del remitente. Si Vd. ha recibido este mensaje erroneamente, se ruega lo notifique al remitente y proceda a su borrado. Gracias por su colaboracion. ______________________ From cor at xs4all.nl Thu Jun 2 11:37:23 2011 From: cor at xs4all.nl (Cor Bosman) Date: Thu, 2 Jun 2011 10:37:23 +0200 Subject: [Dovecot] director monitoring? In-Reply-To: <20110602002933.GL30313@corp.sonic.net> References: <20110602002933.GL30313@corp.sonic.net> Message-ID: <5F82D09D-38E9-4FC0-8660-AC7AFFEBD04B@xs4all.nl> We use a setup as seen on http://grab.by/agCb for about 30.000 simultaneous(!) imap connections. We have 2 Foundry loadbalancers. They check the health of the directors. We have 3 directors, and each one runs Brandon's poolmon script (https://github.com/brandond/poolmon). This script removes real servers out of the director pool. The dovecot imap servers are monitored with nagios just to tell us when they're down. This setup has been absolutely rock solid for us. I have not touched the whole system since november and we have not seen any more corruption of meta data, which is the whole reason for the directors. Kudos to Timo for fixing this difficult problem. Cor From btodger at yahoo.com Thu Jun 2 12:17:05 2011 From: btodger at yahoo.com (Bert Todger) Date: Thu, 2 Jun 2011 02:17:05 -0700 (PDT) Subject: [Dovecot] Baffled after upgrade Message-ID: <470786.3549.qm@web130210.mail.mud.yahoo.com> Hello all, I have just upgraded my Fedora 13 system to F15. With it came a shiny new dovecot 2.0.13 (Details of dovecot -n below). The configuration is different from the dovecot 1.something that I had been used to with F13, but I managed to get it working and all was well... Without changing anything related to dovecot (as far as I know), after a reboot, dovecot stopped working. I did a bit of digging, upped the verbosity of logging and found this in the logs: =======8<================================================================= Jun 02 09:58:21 auth: Debug: passwd-file /etc/passwd.dovecot: Read 3 users Jun 02 09:58:21 auth: Debug: auth client connected (pid=16699) Jun 02 09:58:21 auth: Debug: client in: AUTH 1 PLAIN service=imap secured lip=192.168.2.2 rip=192.168.2.2 lport=993 rport=33960 Jun 02 09:58:21 auth: Debug: client out: CONT 1 Jun 02 09:58:21 auth: Debug: client in: CONT 1 AG1hcmsAaWxIYWFkSFA= Jun 02 09:58:21 auth: Debug: Loading modules from directory: /usr/lib/dovecot/auth Jun 02 09:58:21 auth: Debug: Module loaded: /usr/lib/dovecot/auth/libauthdb_ldap.so Jun 02 09:58:21 auth: Debug: Module loaded: /usr/lib/dovecot/auth/libdriver_sqlite.so Jun 02 09:58:21 auth: Debug: Module loaded: /usr/lib/dovecot/auth/libmech_gssapi.so Jun 02 09:58:21 auth: Debug: passwd-file /etc/passwd.dovecot: Read 3 users Jun 02 09:58:21 auth: Debug: pam(mark,192.168.2.2): lookup service=dovecot Jun 02 09:58:21 auth: Debug: pam(mark,192.168.2.2): #1/1 style=1 msg=Password: Jun 02 09:58:23 auth: Info: pam(mark,192.168.2.2): pam_authenticate() failed: Authentication failure (password mismatch?) (given password: mypass) Jun 02 09:58:23 auth: Debug: passwd-file(mark,192.168.2.2): lookup: user=mark file=/etc/passwd.dovecot Jun 02 09:58:23 auth: Debug: client out: OK 1 user=mark Jun 02 09:58:23 auth: Debug: master in: REQUEST 1125646337 16699 1 69152b70b5461508ad2a3eb02942b883 Jun 02 09:58:23 auth: Debug: passwd(mark,192.168.2.2): lookup Jun 02 09:58:23 auth: Debug: master out: USER 1125646337 mark system_groups_user=mark uid=500 gid=500 home=/home/mark Jun 02 09:58:23 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.2.2, lip=192.168.2.2, mpid=16705, TLS =========8<=============================================================== Now it's entirely possible that I simply don't properly understand the password authentication process. I have PLAIN passwords set in /etc/passwd.dovecot which it seems to be reading OK, my /etc/dovecot/conf.d/auth-passwdfile.conf.ext file contains just =========8<============================================= passdb { driver = passwd-file args = scheme=PLAIN username_format=%u /etc/passwd.dovecot } =========8<============================================= and nothing else. ...and as I said - it *was* working fine. I am puzzled by the reference to PAM authentication in the logs and in the dovecot -n output. Should I comment out all references to PAM? (in auth-system.conf.ext?) I and my family access mail through a variety of means, using Evolution on the home network, mobile devices (eg iPhone), webmail (using squirrelmail configured to access dovecot) and over ssh (using mutt). I don't necessarily want my (or their) email passwords to be the same as our PAM logon passwords (and at the moment they're not). So for me PLAIN has been the best solution up until now. What is my best (and simplest) solution? Thanks in advance Mark # dovecot -n # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.38.6-27.fc15.i686.PAE i686 Fedora release 15 (Lovelock) auth_debug = yes auth_debug_passwords = yes auth_verbose = yes auth_verbose_passwords = plain log_path = /var/log/dovecot mbox_write_locks = fcntl passdb { driver = pam } passdb { args = scheme=PLAIN username_format=%u /etc/passwd.dovecot driver = passwd-file } ssl_cert = References: <470786.3549.qm@web130210.mail.mud.yahoo.com> Message-ID: <4DE7709C.1030002@localhost.localdomain.org> On 06/02/2011 11:17 AM Bert Todger wrote: > ? > Should I comment out all references to PAM? (in auth-system.conf.ext?) Comment them out when you don't use PAM. Regards, Pascal -- The trapper recommends today: face1e55.1115313 at localdomain.org From marcin at mejor.pl Thu Jun 2 17:48:11 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Thu, 02 Jun 2011 16:48:11 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql Message-ID: <4DE7A2AB.9090607@mejor.pl> Hello! I'd like to setup quota for for virtualusers, i'm using both maildir++ and mdbox as storage, and i'm using postgresql to keep users. I'm keeping all users data in one table: [...] login text NOT NULL, domain text, password text, quota_mb integer NOT NULL DEFAULT 0 [... other columns ...] i'd like to keep present quota in such two columns: quota_dict_bytes integer NOT NULL DEFAULT 0, quota_dict_messages integer NOT NULL DEFAULT 0 I read wiki a little and it looks i can't define own sql queries, they appear to be hardcoded. Am i wrong? Is it possible to write own queries to get/set quota using such table schema? Or maybe there is diffrent way to track quota for diffrent storages? Regards! Marcin From duane at duanemail.org Thu Jun 2 19:40:10 2011 From: duane at duanemail.org (Duane Hill) Date: Thu, 2 Jun 2011 11:40:10 -0500 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE7A2AB.9090607@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> Message-ID: <235720313.20110602114010@duanemail.org> Thursday, June 2, 2011, 9:48:11 AM, Marcin wrote: > Hello! > I'd like to setup quota for for virtualusers, i'm using both maildir++ > and mdbox as storage, and i'm using postgresql to keep users. > I'm keeping all users data in one table: > [...] > login text NOT NULL, > domain text, > password text, > quota_mb integer NOT NULL DEFAULT 0 > [... other columns ...] > i'd like to keep present quota in such two columns: > quota_dict_bytes integer NOT NULL DEFAULT 0, > quota_dict_messages integer NOT NULL DEFAULT 0 > I read wiki a little and it looks i can't define own sql queries, they > appear to be hardcoded. Am i wrong? Is it possible to write own queries > to get/set quota using such table schema? Or maybe there is diffrent way > to track quota for diffrent storages? > Regards! > Marcin I'm using mysql here with everything being served out of a single users table. I would think you should be able to do that from a pgsql table as well. Here's my password_query and user_query: password_query = \ SELECT username AS user, password, \ '/var/mail/mailhost/%d/%n' AS userdb_home, \ 'maildir:/var/mail/mailhost/%d/%n' AS userdb_mail, \ 1002 AS userdb_uid, 6 AS userdb_gid, \ 'dict:user::proxy::quota' AS userdb_quota, \ CONCAT('*:bytes=',max_bytes,':messages=',max_msgs) AS userdb_quota_rule, \ 'Trash:bytes=+32M' AS userdb_quota_rule2, \ 'Spam:bytes=+32M' AS userdb_quota_rule3 \ FROM users \ WHERE username = '%u' AND active = 1 user_query = \ SELECT '/var/mail/mailhost/%d/%n' AS home, \ 'maildir:/var/mail/mailhost/%d/%n' AS mail, \ 1002 AS uid, 6 AS gid, \ 'dict:user::proxy::quota' AS quota, \ CONCAT('*:bytes=',max_bytes,':messages=',max_msgs) AS quota_rule, \ 'Trash:bytes=+32M' AS quota_rule2, \ 'Spam:bytes=+32M' AS quota_rule3 \ FROM users \ WHERE username = '%u' AND active = 1 -- Best regards, Duane mailto:duane at duanemail.org From dovecot at killfile.de Thu Jun 2 21:56:58 2011 From: dovecot at killfile.de (Marcus Jodorf) Date: Thu, 2 Jun 2011 20:56:58 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <235720313.20110602114010@duanemail.org> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> Message-ID: <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> Duane Hill wrote: Am 02.06.2011 um 18:40 schrieb Duane Hill: >> I read wiki a little and it looks i can't define own sql queries, they >> appear to be hardcoded. Am i wrong? Is it possible to write own queries >> to get/set quota using such table schema? No problem. > I'm using mysql here with everything being served out of a single > users table. I would think you should be able to do that from a pgsql > table as well. [...] > user_query = \ > SELECT '/var/mail/mailhost/%d/%n' AS home, \ > 'maildir:/var/mail/mailhost/%d/%n' AS mail, \ > 1002 AS uid, 6 AS gid, \ > 'dict:user::proxy::quota' AS quota, \ > CONCAT('*:bytes=',max_bytes,':messages=',max_msgs) AS quota_rule, \ > 'Trash:bytes=+32M' AS quota_rule2, \ > 'Spam:bytes=+32M' AS quota_rule3 \ > FROM users \ > WHERE username = '%u' AND active = As an example I do it with postgres like this: I create a view with suitable data from my different tables in postgres: ----------------------- CREATE VIEW dovecot_user AS SELECT users.userid, users.domain, users.uid, users.gid, '*:storage='||ROUND(users.quota/1024) AS quota_rule, '/home/vhosts/'||users.domain||'/'||users.userid AS home, domains.mailhost, users.active FROM users, domains WHERE users.domain = domains.domain; grant select on dovecot_user to imapd; ----------------------- And then I just tell dovecot to use it accordingly: password_query= SELECT password FROM users WHERE userid = '%n' AND domain = '%d' user_query = SELECT home, uid, gid, quota_rule FROM dovecot_user WHERE userid = '%n' AND domain = '%d' AND mailhost='blah' How your table looks in detail is not really important for setting up quotas. Basically all you need to do is to generate quota_rule fields in your query and see to it that it delivers suitable data for the user_query. Duane did this in his example above by using a little more lengthy queries (BTW: Is there a reason for the redundancy in the password_query?) and I do this by using a database view and keeping the dovecot user_query itself a little simpler. Hope this helps. Marcus From kgc at corp.sonic.net Thu Jun 2 22:29:10 2011 From: kgc at corp.sonic.net (Kelsey Cummings) Date: Thu, 2 Jun 2011 12:29:10 -0700 Subject: [Dovecot] director monitoring? In-Reply-To: <5F82D09D-38E9-4FC0-8660-AC7AFFEBD04B@xs4all.nl> References: <20110602002933.GL30313@corp.sonic.net> <5F82D09D-38E9-4FC0-8660-AC7AFFEBD04B@xs4all.nl> Message-ID: <20110602192910.GB76245@corp.sonic.net> On Thu, Jun 02, 2011 at 10:37:23AM +0200, Cor Bosman wrote: > We use a setup as seen on http://grab.by/agCb for about 30.000 simultaneous(!) imap connections. This might as well be a diagram of my network, although, if I remember, you're running quite a few more netapps clusters than I am. ;) > We have 2 Foundry loadbalancers. They check the health of the directors. We have 3 directors, and each one runs Brandon's poolmon script (https://github.com/brandond/poolmon). This script removes real servers out of the director pool. The dovecot imap servers are monitored with nagios just to tell us when they're down. I'm using a hacked up version of poolmon. The only important changes are that it actually logs into the real server rather than just making a connection to it and that has heuristics to prevent the real servers from flapping and added a timeout to scan_host so if a real server blocks after the connection is established it won't hang indefinitely. > This setup has been absolutely rock solid for us. I have not touched the whole system since november and we have not seen any more corruption of meta data, which is the whole reason for the directors. Kudos to Timo for fixing this difficult problem. That is always good to hear! I'd be a lot happier if I was able to monitor the directors and make sure that they were connected and correctly synced with eachother - even as a protection from human error rather than anticipated software failure. -- Kelsey Cummings - kgc at corp.sonic.net sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 Santa Rosa, CA 95407 From ecasarero at gmail.com Thu Jun 2 23:41:56 2011 From: ecasarero at gmail.com (Eduardo Casarero) Date: Thu, 2 Jun 2011 17:41:56 -0300 Subject: [Dovecot] Problems in auth when switching from PLAIN-MD5 Message-ID: Hi, i am running dovecot 2.0.11 (with mysql backend) and until now using PLAIN-MD5 as pass default_pass_scheme everything was working fine. However i wanted to change the pass_scheme to something stronger than plain-md5, so i started by reading the wiki. I found this: http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes But when i comment out "default_pass_scheme" and i create the pass with the {SHA256.hex} prefix i see this in the logs: auth: Error: sql(xxx at xxxxxx.com,10.21.1.1): Password in passdb is not in expected scheme SHA256.hex I tried with several algorithms, but it seems to be something in my config that it's only working with plain-md5. the auth_mechanism is plain with ssl/tls. Maybe someone can give me a hint of where to see o which config file review. Thanks in advance. Eduardo. From arekm at maven.pl Fri Jun 3 00:20:28 2011 From: arekm at maven.pl (Arkadiusz Miskiewicz) Date: Thu, 2 Jun 2011 23:20:28 +0200 Subject: [Dovecot] 2.0: deliver run from multiple uids and configuration files Message-ID: <201106022320.28423.arekm@maven.pl> I'm trying to run deliver from exim transport in a way that it doesn't need to query userdb AND doesn't need to read configuration files. The problem is that config files are readable for root only and if I run deliver with multiple UIDs then I would have to allow reading config files for everyone. Of course that's not a option because configs contain database passwords and such stuff. I wonder if it is possible to avoid reading config files by deliver? The only solution I see it to run deliver via sudo which doesn't look nice. -- Arkadiusz Mi?kiewicz PLD/Linux Team arekm / maven.pl http://ftp.pld-linux.org/ From duane at duanemail.org Fri Jun 3 10:14:51 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 3 Jun 2011 02:14:51 -0500 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> Message-ID: <3810249746.20110603021451@duanemail.org> Hello Marcus, Thursday, June 2, 2011, 1:56:58 PM, you wrote: > Duane Hill wrote: > Am 02.06.2011 um 18:40 schrieb Duane Hill: >>> I read wiki a little and it looks i can't define own sql queries, they >>> appear to be hardcoded. Am i wrong? Is it possible to write own queries >>> to get/set quota using such table schema? > No problem. >> I'm using mysql here with everything being served out of a single >> users table. I would think you should be able to do that from a pgsql >> table as well. > [...] >> user_query = \ >> SELECT '/var/mail/mailhost/%d/%n' AS home, \ >> 'maildir:/var/mail/mailhost/%d/%n' AS mail, \ >> 1002 AS uid, 6 AS gid, \ >> 'dict:user::proxy::quota' AS quota, \ >> CONCAT('*:bytes=',max_bytes,':messages=',max_msgs) AS quota_rule, \ >> 'Trash:bytes=+32M' AS quota_rule2, \ >> 'Spam:bytes=+32M' AS quota_rule3 \ >> FROM users \ >> WHERE username = '%u' AND active = > As an example I do it with postgres like this: > I create a view with suitable data from my different tables in postgres: > ----------------------- > CREATE VIEW dovecot_user AS > SELECT users.userid, users.domain, users.uid, users.gid, > '*:storage='||ROUND(users.quota/1024) AS quota_rule, > '/home/vhosts/'||users.domain||'/'||users.userid AS home, > domains.mailhost, users.active FROM users, domains > WHERE users.domain = domains.domain; > grant select on dovecot_user to imapd; > ----------------------- > And then I just tell dovecot to use it accordingly: > password_query= SELECT password FROM users WHERE userid = '%n' AND domain = '%d' > user_query = SELECT home, uid, gid, quota_rule FROM dovecot_user > WHERE userid = '%n' AND domain = '%d' AND mailhost='blah' > How your table looks in detail is not really important for setting up quotas. > Basically all you need to do is to generate quota_rule fields in > your query and see to it that it delivers suitable data for the user_query. > Duane did this in his example above by using a little more lengthy > queries (BTW: Is there a reason for the redundancy in the > password_query?) and I do this by using a database view and keeping > the dovecot user_query itself a little simpler. Isn't the redundancy suppose to be if you are using prefetch? If not, correct me. > Hope this helps. > Marcus -- Best regards, Duane mailto:duane at duanemail.org From marcin at mejor.pl Fri Jun 3 12:05:21 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Fri, 03 Jun 2011 11:05:21 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> Message-ID: <4DE8A3D1.5030806@mejor.pl> Marcus, Duane, thanks for replies! I'll answer in one mail. In your config (Duane) quota is defined as 'dict:user::proxy::quota' it needs dictionary to be configured ( http://wiki2.dovecot.org/Quota/Dict ) if i understood correctly. In config snip from Marcus i can't find definition of "quota", what kind of backend are you using? maildir? Regards! From andreas.schulze at datev.de Fri Jun 3 12:09:23 2011 From: andreas.schulze at datev.de (Andreas Schulze) Date: Fri, 3 Jun 2011 11:09:23 +0200 Subject: [Dovecot] LMTP/Sieve/sendmail path Message-ID: <20110603090922.GA4468@spider.services.datevnet.de> Hello, I have a system using postfix multi instance feature. The first, main postfix-instance is a nullclient as suggested by http://www.postfix.org/MULTI_INSTANCE_README.html#split The second instance is for real use. Postfix receive mail and handover them to the dovecot lmtp server. Thats working. The lmtp server supports sieve. One account has activated a vacation rule. So while delivering a mail to this account, dovecot creates a new mail based on the vacation rules. *This one* fail. It is injected in the main postfix instance, which is wrong in this case. I tried to start dovecot with an additional environment MAIL_CONFIG=/etc/postfix-instance2 and enabled alternate_config_directories in main.cf of the first insance. ( http://www.postfix.org/postconf.5.html#alternate_config_directories ) I also configured the userdb to return an extrafield userdb_mail_config=/etc/postfix-instance2. But all produce strance postfix errors I never saw in my last 6 years as postfix-admin. Would it be possible to configure dovecot lmtp server to use an external smtp-server to submit new mails ? Any other Ideas ? Thanks Andreas -- Andreas Schulze Internetdienste | P252 DATEV eG 90329 N?rnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196 E-Mail info @datev.de | Internet www.datev.de Sitz: 90429 N?rnberg, Paumgartnerstr. 6-14 | Registergericht N?rnberg, GenReg Nr.70 Vorstand Prof. Dieter Kempf (Vorsitzender) Dipl.-Kfm. Wolfgang Stegmann (stellvertretender Vorsitzender) Dipl.-Kfm. Michael Leistenschneider J?rg Rabe v. Pappenheim Dipl.-Vw. Eckhard Schwarzer Vorsitzender des Aufsichtsrates: Reinhard Verholen From robert at schetterer.org Fri Jun 3 12:32:58 2011 From: robert at schetterer.org (Robert Schetterer) Date: Fri, 03 Jun 2011 11:32:58 +0200 Subject: [Dovecot] LMTP/Sieve/sendmail path In-Reply-To: <20110603090922.GA4468@spider.services.datevnet.de> References: <20110603090922.GA4468@spider.services.datevnet.de> Message-ID: <4DE8AA4A.3020406@schetterer.org> Am 03.06.2011 11:09, schrieb Andreas Schulze: > Hello, > > I have a system using postfix multi instance feature. > The first, main postfix-instance is a nullclient as suggested by > http://www.postfix.org/MULTI_INSTANCE_README.html#split > > The second instance is for real use. Postfix receive mail and handover them > to the dovecot lmtp server. > > Thats working. > > The lmtp server supports sieve. One account has activated a vacation rule. > So while delivering a mail to this account, dovecot creates a new mail based on the vacation rules. > > *This one* fail. It is injected in the main postfix instance, which is wrong in this case. > > I tried to start dovecot with an additional environment MAIL_CONFIG=/etc/postfix-instance2 > and enabled alternate_config_directories in main.cf of the first insance. > ( http://www.postfix.org/postconf.5.html#alternate_config_directories ) > I also configured the userdb to return an extrafield userdb_mail_config=/etc/postfix-instance2. > > But all produce strance postfix errors I never saw in my last 6 years as postfix-admin. > > Would it be possible to configure dovecot lmtp server to use an external smtp-server to submit > new mails ? > > Any other Ideas ? > > Thanks > Andreas > i guess you should ask at the postfix mail list cause this should be could fixed with postfix anyway there is http://www.acme.com/software/mini_sendmail/ ---sni Add -s flag to let you specify an SMTP server ---- maybe you can use it as workaround -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From aperezaranda at yaco.es Fri Jun 3 13:30:05 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Fri, 3 Jun 2011 12:30:05 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= Message-ID: Hi all, I'm using dovecot 2.0.9 and I have a config like this: dovecot.conf: passdb { args = /etc/dovecot/conf.d/passwd-ldap.conf driver = ldap } mail_plugins = $mail_plugins quota plugin { autocreate = INBOX.SPAM autocreate2 = INBOX.NoSPAM autosubscribe = INBOX.SPAM autosubscribe2 = INBOX.NoSPAM quota = maildir } protocol imap { mail_plugins = $mail_plugins imap_quota autocreate } And in passwd-ldap.conf I have some like this to add extra plugins: user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins With this. I can see that dovecot load all plugins from settings, but in the user session, I can get only the plugins that I have selected in mailPlugins field If i check some like this: mailPlugins=mail_plugins=$mail_plugins %$, The imap session user is aborted after login. How can I add extra plugins by ldap without put on ldap all user plugins? -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From dg at dguhl.org Fri Jun 3 13:51:04 2011 From: dg at dguhl.org (Dennis Guhl) Date: Fri, 3 Jun 2011 12:51:04 +0200 Subject: [Dovecot] LMTP/Sieve/sendmail path In-Reply-To: <20110603090922.GA4468@spider.services.datevnet.de> References: <20110603090922.GA4468@spider.services.datevnet.de> Message-ID: <20110603105104.GA2293@laptop-dg.leere.eu> On Fri, Jun 03, 2011 at 11:09:23AM +0200, Andreas Schulze wrote: > Hello, > > I have a system using postfix multi instance feature. > The first, main postfix-instance is a nullclient as suggested by If you call the default instance (as in http://www.postfix.org/MULTI_INSTANCE_README.html#default_instance) the "first, main postfix-instance" and this is the null-client instance, configured as sugested in the walk-through (http://www.postfix.org/MULTI_INSTANCE_README.html#quick), this should work. What happens if you invoke sendmail manually, what happens to messages from cronjobs? > http://www.postfix.org/MULTI_INSTANCE_README.html#split > > The second instance is for real use. Postfix receive mail and > handover them to the dovecot lmtp server. > > Thats working. > > The lmtp server supports sieve. One account has activated a vacation > rule. So while delivering a mail to this account, dovecot creates a > new mail based on the vacation rules. > > *This one* fail. It is injected in the main postfix instance, which > is wrong in this case. Why is this wrong? The vacation message is a locally generated message and as this should go to the null-client. > I tried to start dovecot with an additional environment > MAIL_CONFIG=/etc/postfix-instance2 I doubt this will affect the sendmail call from sieves vacation plugin. > and enabled alternate_config_directories in main.cf of the first > insance. You should not alter the config_directory for the default instance. > ( http://www.postfix.org/postconf.5.html#alternate_config_directories > ) I also configured the userdb to return an extrafield > ) userdb_mail_config=/etc/postfix-instance2. Does this even exist? > But all produce strance postfix errors I never saw in my last 6 > years as postfix-admin. > > Would it be possible to configure dovecot lmtp server to use an > external smtp-server to submit new mails ? > > Any other Ideas ? If none of the above pointers help, go to the postfix-users list and follow the guidelines in http://www.postfix.org/DEBUG_README.html#mail when reporting the problem. Dennis From tss at iki.fi Fri Jun 3 14:49:36 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:49:36 +0300 Subject: [Dovecot] LMTP/Sieve/sendmail path In-Reply-To: <20110603090922.GA4468@spider.services.datevnet.de> References: <20110603090922.GA4468@spider.services.datevnet.de> Message-ID: <1307101776.10421.544.camel@hurina> On Fri, 2011-06-03 at 11:09 +0200, Andreas Schulze wrote: > Would it be possible to configure dovecot lmtp server to use an external smtp-server to submit > new mails ? v2.0.10+: + Added submission_host setting to send mails via SMTP instead of via sendmail binary. From tss at iki.fi Fri Jun 3 14:50:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:50:41 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: Message-ID: <1307101841.10421.545.camel@hurina> On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: > And in passwd-ldap.conf I have some like this to add extra plugins: > > user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins This completely overrides mail_plugins setting.. > With this. I can see that dovecot load all plugins from settings, but > in the user session, I can get only the plugins that I have selected > in mailPlugins field > > If i check some like this: > mailPlugins=mail_plugins=$mail_plugins %$, $mail_plugins variable works only inside dovecot.conf while the settings are being parsed. > The imap session user is aborted after login. > > > How can I add extra plugins by ldap without put on ldap all user plugins? The best you can do now is: mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ i.e. list the global plugins in here as well as in the global mail_plugins setting. From tss at iki.fi Fri Jun 3 14:51:22 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:51:22 +0300 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE7A2AB.9090607@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> Message-ID: <1307101882.10421.546.camel@hurina> On Thu, 2011-06-02 at 16:48 +0200, Marcin Miros?aw wrote: > i'd like to keep present quota in such two columns: > quota_dict_bytes integer NOT NULL DEFAULT 0, > quota_dict_messages integer NOT NULL DEFAULT 0 > > I read wiki a little and it looks i can't define own sql queries, they > appear to be hardcoded. Am i wrong? Is it possible to write own queries > to get/set quota using such table schema? Or maybe there is diffrent way > to track quota for diffrent storages? You can't define your own SQL queries for dict quota. Besides being able to do such query, there's the problem that when recalculating quota it's done by deleting a row and inserting it back. You wouldn't want to do that for your users table. Making this work some other way could be tricky with PostgreSQL. It's quite an ugly trigger already, because there's no easy "ON DUPLICATE KEY UPDATE .." feature in PostgreSQL as there is for MySQL. From tss at iki.fi Fri Jun 3 14:54:48 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:54:48 +0300 Subject: [Dovecot] 2.0: deliver run from multiple uids and configuration files In-Reply-To: <201106022320.28423.arekm@maven.pl> References: <201106022320.28423.arekm@maven.pl> Message-ID: <1307102088.10421.549.camel@hurina> On Thu, 2011-06-02 at 23:20 +0200, Arkadiusz Miskiewicz wrote: > I'm trying to run deliver from exim transport in a way that it doesn't need to > query userdb AND doesn't need to read configuration files. > > The problem is that config files are readable for root only and if I run > deliver with multiple UIDs then I would have to allow reading config files for > everyone. Of course that's not a option because configs contain database > passwords and such stuff. Database passwords should be in in the dovecot-sql.conf.ext or something, which LDA (or doveconf, really) doesn't even try to read. If there are other secrets, you could put them to a separate file, which you: !include_try /etc/dovecot/secrets.conf LDA will just ignore it. > I wonder if it is possible to avoid reading config files by deliver? With -O parameter it doesn't read config, but I don't really recommend that.. From tss at iki.fi Fri Jun 3 14:58:53 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:58:53 +0300 Subject: [Dovecot] Problems in auth when switching from PLAIN-MD5 In-Reply-To: References: Message-ID: <1307102333.10421.552.camel@hurina> On Thu, 2011-06-02 at 17:41 -0300, Eduardo Casarero wrote: > Hi, i am running dovecot 2.0.11 (with mysql backend) and until now using > PLAIN-MD5 as pass default_pass_scheme everything was working fine. However i > wanted to change the pass_scheme to something stronger than plain-md5, so i > started by reading the wiki. > > I found this: http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes > > But when i comment out "default_pass_scheme" and You don't need to comment it out. Although I guess then the default is still PLAIN-MD5. > i create the pass with the > {SHA256.hex} prefix i see this in the logs: > > auth: Error: sql(xxx at xxxxxx.com,10.21.1.1): Password in passdb is not in > expected scheme SHA256.hex Show an example of a stored password? From tss at iki.fi Fri Jun 3 15:08:28 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:08:28 +0300 Subject: [Dovecot] [dovecot] notifications when delivery fails In-Reply-To: References: Message-ID: <1307102908.10421.557.camel@hurina> On Thu, 2011-06-02 at 10:13 +0200, H?ctor Moreno Blanco wrote: > Hello Timo, > > We have dovecot 1.2.13. Is there any way to send notifications to the > postmaster when a delivery fails? Create a script. Instead of running deliver directly, run something like: #!/bin/sh deliver $* err=$? if [ $err != 0 ]; then echo failed | mail postmaster fi exit $err > For example, when the dovecot index are corrupted and the mail is not > sent to the user (the user who sent the message receives an error > informing that the mail has not sent). This should never happen. The worst that can happen is that deliver returns temporary failure and its delivery is attempted again. Although if deliver crashes, some MTAs treat it as hard failure rather than temporary. You could prevent that with a wrapper script too. From tss at iki.fi Fri Jun 3 15:13:37 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:13:37 +0300 Subject: [Dovecot] doveadm "-S " option enabled in 2.0.8? In-Reply-To: <20110601235931.GK30313@corp.sonic.net> References: <6891057E-C9A9-47D1-92F3-3A3A9B5B09D3@geneseo.edu> <1293709973.5021.47.camel@hurina> <20110601235931.GK30313@corp.sonic.net> Message-ID: <1307103217.10421.562.camel@hurina> On Wed, 2011-06-01 at 16:59 -0700, Kelsey Cummings wrote: > On Thu, Dec 30, 2010 at 01:52:53PM +0200, Timo Sirainen wrote: > > On Tue, 2010-12-21 at 14:55 -0500, David Warden wrote: > > > > > But when I try to get my quota on a different local IP using the -S flag to doveadm: > > > > > > doveadm quota get -u warden -S 137.238.2.244:143 > > > > The purpose of -S is completely different. It's about connecting to > > another doveadm instance. There's currently no way to set IP for doveadm > > queries. > > Just to bump an old thread. Timo, I think this would be a great feature > to add. It would allow people to pull stats (and system health) > directly out of dovecot rather than having to run agents on the dovecot > servers to get the info into some other transport like SNMP. That feature is already there! service doveadm { inet_listener { port = 12345 } } doveadm_password = foobar Now you can use e.g.: doveadm -S 4.3.2.1:12345 quota get -u foobar There's no security in there though, the password is sent in plain text. For more security you could also just use "ssh 4.3.2.1 doveadm .." From tss at iki.fi Fri Jun 3 15:15:00 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:15:00 +0300 Subject: [Dovecot] Squat Question! In-Reply-To: References: Message-ID: <1307103300.10421.563.camel@hurina> On Wed, 2011-06-01 at 10:43 -0300, Henrique Fernandes wrote: > Hello folks, > > I use dovecot squat for indexing. > > I use to have > > fts_squat = partial=4 full=4 > > But i change to > fts_squat = partial=4 full=8 > > My question is, do i need to delete older indexes to have it consistenly, or > dovecot is able "update" the indexes or it sees that it is broken and > rebuild it all? You need to delete squat indexes first. From aperezaranda at yaco.es Fri Jun 3 15:17:44 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Fri, 3 Jun 2011 14:17:44 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1307101841.10421.545.camel@hurina> References: <1307101841.10421.545.camel@hurina> Message-ID: OK thanks. It isn't pretty but is running. 2011/6/3 Timo Sirainen : > On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: > >> And in passwd-ldap.conf I have some like this to add extra plugins: >> >> user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins > > This completely overrides mail_plugins setting.. > >> With this. I can see that dovecot load all plugins from settings, but >> in the user session, I can get only the plugins that I have selected >> in mailPlugins field >> >> If i check some like this: >> ? mailPlugins=mail_plugins=$mail_plugins %$, > > $mail_plugins variable works only inside dovecot.conf while the settings > are being parsed. > >> The imap session user is aborted after login. >> >> >> How can I add extra plugins by ldap without put on ldap all user plugins? > > The best you can do now is: > > mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ > > i.e. list the global plugins in here as well as in the global > mail_plugins setting. > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From tss at iki.fi Fri Jun 3 15:22:39 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:22:39 +0300 Subject: [Dovecot] Dovecot 2 + Director: IMAP+GSSAPI and LMTP-proxying In-Reply-To: <7C0189D0CDB51646B7814F4377D356F5015364A9@ADXV4.win.desy.de> References: <7C0189D0CDB51646B7814F4377D356F5015364A9@ADXV4.win.desy.de> Message-ID: <1307103759.10421.567.camel@hurina> On Wed, 2011-06-01 at 11:25 +0200, Jahnke-Zumbusch, Dirk wrote: > For now my section for the passdb in the Director instance is > > passdb { > driver = static > args = proxy=y nopassword=y > } > > So the backend will do the authentication of the session. But this setup > inhibits using Kerberos, as the TGT is not forwarded to the backend > server. Right.. > I would very much like to provide GSSAPI/Kerberos authentication, which > already works fine with the backend servers being directly connected by > mail clients. The backend servers are using the PAM driver. > > I could not figure out, how to setup the passdb entry for the director > instance to use PAM (this way enabling GSSAPI/Kerberos) and also giving > back the necessary "proxy=y" to make director proxying the IMAP session. PAM doesn't enable clients to use GSSAPI/Kerberos authentication. The client would still be doing a plaintext user+password authentication. So I don't think using PAM+Kerberos on director is useful for anything. For real Kerberos auth you'd need to use Dovecot's own GSSAPI authentication. But yeah, there's currently no way to return proxy=y from GSSAPI either, because it doesn't use any passdb.. From tss at iki.fi Fri Jun 3 15:27:38 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:27:38 +0300 Subject: [Dovecot] Segmentation fault again In-Reply-To: <4DE0D02C.4060807@jkart.de> References: <4DE0D02C.4060807@jkart.de> Message-ID: <1307104058.10421.568.camel@hurina> On Sat, 2011-05-28 at 12:36 +0200, Jim Knuth wrote: > Hi, > > I have the following report after a cron job again? > > /root/tools/expunge: Zeile 3: 4869 Speicherzugriffsfehler doveadm > expunge -A mailbox Spam savedbefore 5d > /root/tools/expunge: Zeile 5: 4915 Speicherzugriffsfehler doveadm > expunge -A mailbox Papierkorb savedbefore 4d http://hg.dovecot.org/dovecot-2.0/rev/0e1254dcf86b should fix it. From tss at iki.fi Fri Jun 3 15:29:28 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:29:28 +0300 Subject: [Dovecot] dbox single instance storage maintenance In-Reply-To: References: Message-ID: <1307104168.10421.570.camel@hurina> On Tue, 2011-05-31 at 08:53 -0700, Daniel Miller wrote: > Does the "doveadm purge" operation delete unused attachments? With mdbox, yeah. With sdbox they're deleted immediately when the last message pointing to an attachment is expunged. From tss at iki.fi Fri Jun 3 15:34:17 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:34:17 +0300 Subject: [Dovecot] shared folders "invisible" on new setup In-Reply-To: References: Message-ID: <1307104457.10421.573.camel@hurina> On Tue, 2011-05-31 at 15:36 +0200, Torsten Harenberg wrote: > mailserver# doveadm mailbox subscribe -u harenber public.fb8 .. > namespace { > list = children > location = maildir:/var/mail/public:INDEX=~/public > prefix = public. > separator = . > subscriptions = no > type = public > } Looks like doveadm mailbox subscribe ignores the subscriptions=no setting. It's a bit difficult to fix, since all the difficult code is in imap-specific code.. Looks like I need to move it elsewhere, maybe for v2.1.. > But I cannot access this "fb8" folder with any client. Alpine says that the public folder is empty: Try: doveadm acl debug -u harenber public.fb8 From harenberg at physik.uni-wuppertal.de Fri Jun 3 15:37:49 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Fri, 3 Jun 2011 14:37:49 +0200 Subject: [Dovecot] shared folders "invisible" on new setup In-Reply-To: <1307104457.10421.573.camel@hurina> References: <1307104457.10421.573.camel@hurina> Message-ID: <8F70E6B5-2E7F-4A2F-B67C-9F8679E25521@physik.uni-wuppertal.de> Thanks Timo... Am 03.06.2011 um 14:34 schrieb Timo Sirainen: > > doveadm acl debug -u harenber public.fb8 mailserver# doveadm acl debug -u harenber public.fb8 doveadm(harenber): Error: Can't open mailbox public.fb8: Mailbox doesn't exist: fb8 mailserver# Or do I miss here something: mailserver# cd /var/mail/public/fb8/ mailserver# ls -al total 58 drwxrwxrwx 5 root mail 512 May 31 12:03 . drwxrwxrwx 3 root mail 512 May 31 15:27 .. drwxrwxrwx 2 root mail 512 May 31 10:16 cur -rwxrwxrwx 1 root mail 54 May 31 11:46 dovecot-acl -rwxrwxrwx 1 root mail 97 May 31 10:16 dovecot-keywords -rwxrwxrwx 1 root mail 0 May 31 12:01 dovecot-shared -rwxrwxrwx 1 root mail 19228 May 31 10:16 dovecot-uidlist drwxrwxrwx 2 root mail 23040 May 31 10:16 new -rw-r--r-- 1 root mail 5 May 31 12:03 subscriptions drwxrwxrwx 2 root mail 512 May 31 10:16 tmp (Content has been copied with the cyrus2dovecot.pl script). Best regards, Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> From tss at iki.fi Fri Jun 3 15:45:18 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:45:18 +0300 Subject: [Dovecot] shared folders "invisible" on new setup In-Reply-To: <8F70E6B5-2E7F-4A2F-B67C-9F8679E25521@physik.uni-wuppertal.de> References: <1307104457.10421.573.camel@hurina> <8F70E6B5-2E7F-4A2F-B67C-9F8679E25521@physik.uni-wuppertal.de> Message-ID: <1307105118.10421.578.camel@hurina> On Fri, 2011-06-03 at 14:37 +0200, Torsten Harenberg wrote: > mailserver# doveadm acl debug -u harenber public.fb8 > doveadm(harenber): Error: Can't open mailbox public.fb8: Mailbox doesn't exist: fb8 > mailserver# > > Or do I miss here something: > > mailserver# cd /var/mail/public/fb8/ Yeah, either rename this to /var/mail/public/.fb8/ or add :LAYOUT=fs to namespace location. From tss at iki.fi Fri Jun 3 15:54:05 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:54:05 +0300 Subject: [Dovecot] solr substring schema.xml In-Reply-To: References: Message-ID: <1307105645.10421.579.camel@hurina> On Sun, 2011-05-29 at 02:09 -0700, Daniel Miller wrote: > I'm trying a modified schema.xml with solr - it appears I now have > substring searches! How large are your indexes compared to mailbox size? From tss at iki.fi Fri Jun 3 16:00:06 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:00:06 +0300 Subject: [Dovecot] Bug: Fixed a duplicate In-Reply-To: <4DE14A0D.6030704@tomsommer.dk> References: <4DE14A0D.6030704@tomsommer.dk> Message-ID: <1307106006.10421.583.camel@hurina> On Sat, 2011-05-28 at 21:16 +0200, Tom Sommer wrote: > I restored a dovecot mailserver today, and when I started the server > again, the logs filled up with "Fixed a duplicate" warnings. > > This in itself it not a problem, the problem is that it appears the fix > is not done correct. You shouldn't have restored an old maildir on top of an existing maildir. That is the main problem. The same mails had different flags (=different filenames), and Dovecot just renamed one of the files to make sure no mails got accidentally lost. In your case it should have just deleted the duplicates, but there's no such feature yet. Dovecot works exactly as intended here. The full explanation is more complex than I want to type right now. From tss at iki.fi Fri Jun 3 16:04:51 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:04:51 +0300 Subject: [Dovecot] unexpected subfolder locaton in Maildir/.INBOX.subfolder In-Reply-To: <20110526235943.GC848@coulmann.de> References: <20110526235943.GC848@coulmann.de> Message-ID: <1307106291.10421.584.camel@hurina> On Fri, 2011-05-27 at 01:59 +0200, wulf wrote: > Maildir/.subfolder already exists > if I connect to imap://user at host/INBOX.subfolder > I get "folder not found" You'd access it as imap://user at host/subfolder. Or alternatively you can create a namespace with INBOX. prefix. http://wiki.dovecot.org/Namespaces From harenberg at physik.uni-wuppertal.de Fri Jun 3 16:04:57 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Fri, 3 Jun 2011 15:04:57 +0200 Subject: [Dovecot] shared folders "invisible" on new setup In-Reply-To: <1307105118.10421.578.camel@hurina> References: <1307104457.10421.573.camel@hurina> <8F70E6B5-2E7F-4A2F-B67C-9F8679E25521@physik.uni-wuppertal.de> <1307105118.10421.578.camel@hurina> Message-ID: <26078C89-CCA6-4AED-A050-53D35EADD57A@physik.uni-wuppertal.de> Am 03.06.2011 um 14:45 schrieb Timo Sirainen: > Yeah, either rename this to /var/mail/public/.fb8/ or add :LAYOUT=fs to > namespace location. Ahh.. that worked :) Thanks a lot!!! I think I wouldn't have found it. Best regards, Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> From sf.rique at gmail.com Fri Jun 3 16:09:11 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Fri, 3 Jun 2011 10:09:11 -0300 Subject: [Dovecot] Squat Question! In-Reply-To: <1307103300.10421.563.camel@hurina> References: <1307103300.10421.563.camel@hurina> Message-ID: If i don't what happen? []'sf.rique On Fri, Jun 3, 2011 at 9:15 AM, Timo Sirainen wrote: > On Wed, 2011-06-01 at 10:43 -0300, Henrique Fernandes wrote: > > Hello folks, > > > > I use dovecot squat for indexing. > > > > I use to have > > > > fts_squat = partial=4 full=4 > > > > But i change to > > fts_squat = partial=4 full=8 > > > > My question is, do i need to delete older indexes to have it consistenly, > or > > dovecot is able "update" the indexes or it sees that it is broken and > > rebuild it all? > > You need to delete squat indexes first. > > > From tss at iki.fi Fri Jun 3 16:10:52 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:10:52 +0300 Subject: [Dovecot] v2.0.13 released In-Reply-To: References: Message-ID: <1307106652.10421.588.camel@hurina> On Sun, 2011-05-29 at 23:39 -0400, Sean Donelan wrote: > After configure and compiling dovecot-2.0.13, running "make check" fails > on a few tests on sparc/solaris > > net_is_in_network(11) ................................................ : FAILED > net_is_in_network(12) ................................................ : FAILED > The failing tests are for > { "255.255.255.255", "128.0.0.0", 1, TRUE }, > { "255.255.255.255", "127.0.0.0", 1, FALSE } I can't reproduce this. Both 32bit and 64bit works. SunOS shodan 5.10 Generic_144488-07 sun4u sparc SUNW,Sun-Fire-V240 gcc version 3.4.3 (csl-sol210-3_4-branch+sol_rpath) From tss at iki.fi Fri Jun 3 16:12:38 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:12:38 +0300 Subject: [Dovecot] Squat Question! In-Reply-To: References: <1307103300.10421.563.camel@hurina> Message-ID: <1307106758.10421.590.camel@hurina> I'm guessing that it can't find old mails because when you search e.g. "abcde" it thinks it should exist there, but it doesn't since previously you had limited it to 4 chars. On Fri, 2011-06-03 at 10:09 -0300, Henrique Fernandes wrote: > If i don't what happen? > > []'sf.rique > > > On Fri, Jun 3, 2011 at 9:15 AM, Timo Sirainen wrote: > > > On Wed, 2011-06-01 at 10:43 -0300, Henrique Fernandes wrote: > > > Hello folks, > > > > > > I use dovecot squat for indexing. > > > > > > I use to have > > > > > > fts_squat = partial=4 full=4 > > > > > > But i change to > > > fts_squat = partial=4 full=8 > > > > > > My question is, do i need to delete older indexes to have it consistenly, > > or > > > dovecot is able "update" the indexes or it sees that it is broken and > > > rebuild it all? > > > > You need to delete squat indexes first. > > > > > > From duane at duanemail.org Fri Jun 3 16:16:35 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 3 Jun 2011 08:16:35 -0500 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE8A3D1.5030806@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> <4DE8A3D1.5030806@mejor.pl> Message-ID: <932029863.20110603081635@duanemail.org> Hello Marcin, Friday, June 3, 2011, 4:05:21 AM, you wrote: > Marcus, Duane, thanks for replies! > I'll answer in one mail. > In your config (Duane) quota is defined as 'dict:user::proxy::quota' it > needs dictionary to be configured ( > http://wiki2.dovecot.org/Quota/Dict > ) if i understood correctly. > In config snip from Marcus i can't find definition of "quota", what kind > of backend are you using? maildir? > Regards! Sorry. I'm using maildir. And I do have dict set up: ... dict { quota = mysql:/usr/local/etc/dovecot/dovecot-dict-sql.conf.ext } ... service dict { unix_listener dict { group = mail mode = 0600 user = vmail } } ... -- Best regards, Duane mailto:duane at duanemail.org From marcin at mejor.pl Fri Jun 3 16:17:27 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Fri, 03 Jun 2011 15:17:27 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <1307101882.10421.546.camel@hurina> References: <4DE7A2AB.9090607@mejor.pl> <1307101882.10421.546.camel@hurina> Message-ID: <4DE8DEE7.8060608@mejor.pl> W dniu 03.06.2011 13:51, Timo Sirainen pisze: Helo Timo! > You can't define your own SQL queries for dict quota. Besides being able > to do such query, there's the problem that when recalculating quota it's > done by deleting a row and inserting it back. You wouldn't want to do > that for your users table. Yes...:) I don't know internals in dovecot, mayby it will be nonsensical what i'll say. Could it be better to set NULL instead delete of row? Or let user can define own queries e.g.: DICT_QUOTA_DEL= ... DICT_QUOTA_INSERT= DICT_QUOTA_OTHER_ACTIONS= and do byself all internals proper for database (create trigger or do something else). > Making this work some other way could be > tricky with PostgreSQL. It's quite an ugly trigger already, because > there's no easy "ON DUPLICATE KEY UPDATE .." feature in PostgreSQL as > there is for MySQL. Meseems only Mysql (from popular db) has such "feature":) Regards! From tss at iki.fi Fri Jun 3 16:40:22 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:40:22 +0300 Subject: [Dovecot] This is appear a fts bug In-Reply-To: References: Message-ID: <1307108422.10421.595.camel@hurina> On Fri, 2011-05-27 at 10:44 +0200, Antonio Perez-Aranda wrote: > I have checked this on dovecot 2.0.9 and 2.0.13 with fts-solr without patching. > > If you execute the follow IMAP script, then the imap process die by > and a "assert" > > . select "inbox." This is the first bug. It shouldn't have succeeded. Fixed now in hg. But another way to trigger this bug is to have e.g. a public namespace with "Public." prefix. If you now select "Public" it still crashes here: > When the log in dovecot says: > (fts_backend_solr_init): assertion failed: (*box_name != '\0') I wonder if this works correctly simply by removing the assert check.. I'd guess Solr can compare empty strings just as well as non-empty strings? From tss at iki.fi Fri Jun 3 16:47:54 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:47:54 +0300 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE8DEE7.8060608@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> <1307101882.10421.546.camel@hurina> <4DE8DEE7.8060608@mejor.pl> Message-ID: <1307108874.10421.601.camel@hurina> On Fri, 2011-06-03 at 15:17 +0200, Marcin Miros?aw wrote: > W dniu 03.06.2011 13:51, Timo Sirainen pisze: > Helo Timo! > > You can't define your own SQL queries for dict quota. Besides being able > > to do such query, there's the problem that when recalculating quota it's > > done by deleting a row and inserting it back. You wouldn't want to do > > that for your users table. > Yes...:) > I don't know internals in dovecot, mayby it will be nonsensical what > i'll say. Could it be better to set NULL instead delete of row? The problem is that updates don't work then: mails=> insert into foo values (null); mails=> update foo set bar=bar+1; UPDATE 1 mails=> select * from foo; bar ----- (1 row) The whole problem is how to atomically increase/decrease a value in SQL, when the row may or may not exist. Of course it could be assumed that the row always exists and this would become a lot simpler. Hmm. That would basically require a whole new dict backend that used different SQL queries. > Or let user can define own queries e.g.: > DICT_QUOTA_DEL= ... > DICT_QUOTA_INSERT= > DICT_QUOTA_OTHER_ACTIONS= It's not that simple. From tss at iki.fi Fri Jun 3 16:51:06 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:51:06 +0300 Subject: [Dovecot] Error: file_dotlock_create failed: Permission denied In-Reply-To: <37522.151.25.103.156.1306324170.squirrel@nexaima.net> References: <37522.151.25.103.156.1306324170.squirrel@nexaima.net> Message-ID: <1307109066.10421.602.camel@hurina> On Wed, 2011-05-25 at 13:49 +0200, M. Fioretti wrote: > May 25 13:36:06 polaris dovecot: imap(marco): Error: > file_dotlock_open(/home/z/email/marco/dovecot.index.log) failed: > Permission denied (euid=500(marco) egid=500(marco) missing +w perm: > /home/z/email/marco, euid is not dir owner) /home/z/email/marco isn't owned by marco? Alternatively you have SELinux enabled, which is preventing this. From sf.rique at gmail.com Fri Jun 3 16:44:37 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Fri, 3 Jun 2011 10:44:37 -0300 Subject: [Dovecot] Squat Question! In-Reply-To: <1307106758.10421.590.camel@hurina> References: <1307103300.10421.563.camel@hurina> <1307106758.10421.590.camel@hurina> Message-ID: Ohh.. ok, i already got back to the original, I was just worried to see if it would break anything! Thanks []'sf.rique On Fri, Jun 3, 2011 at 10:12 AM, Timo Sirainen wrote: > I'm guessing that it can't find old mails because when you search e.g. > "abcde" it thinks it should exist there, but it doesn't since previously > you had limited it to 4 chars. > > On Fri, 2011-06-03 at 10:09 -0300, Henrique Fernandes wrote: > > If i don't what happen? > > > > []'sf.rique > > > > > > On Fri, Jun 3, 2011 at 9:15 AM, Timo Sirainen wrote: > > > > > On Wed, 2011-06-01 at 10:43 -0300, Henrique Fernandes wrote: > > > > Hello folks, > > > > > > > > I use dovecot squat for indexing. > > > > > > > > I use to have > > > > > > > > fts_squat = partial=4 full=4 > > > > > > > > But i change to > > > > fts_squat = partial=4 full=8 > > > > > > > > My question is, do i need to delete older indexes to have it > consistenly, > > > or > > > > dovecot is able "update" the indexes or it sees that it is broken and > > > > rebuild it all? > > > > > > You need to delete squat indexes first. > > > > > > > > > > > > From tss at iki.fi Fri Jun 3 17:25:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:25:33 +0300 Subject: [Dovecot] dsync: Invalid mailbox first_recent_uid In-Reply-To: <4DDF43F7.8020707@vitalwerks.com> References: <4DDF43F7.8020707@vitalwerks.com> Message-ID: <1307111133.10421.604.camel@hurina> On Thu, 2011-05-26 at 23:25 -0700, David Jonas wrote: > > dsync-local(djonas at vitalwerks.com): Error: Invalid mailbox input from > worker server: Invalid mailbox first_recent_uid > > The local uid is 8989 and the remote uid is 89. I added "first_valid_uid > = 89" to the local conf but to no avail. Local version is 2.0.12, remote > is 2.0.1. That's actually the problem. They talk slightly different protocols.. I guess I should have added a version number to the protocol. Although even then you would have only gotten "protocol version mismatch" error. You could simply copy v2.0.12's dsync to the remote server and it should work fine, as long as you're not using any plugins. From tss at iki.fi Fri Jun 3 17:27:34 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:27:34 +0300 Subject: [Dovecot] doveadm segfault In-Reply-To: References: Message-ID: <1307111254.10421.605.camel@hurina> On Thu, 2011-05-26 at 08:46 -0500, Joan Moreau wrote: > > Hi, > > Using HG latest version, I get the following in the dmesg : > > > [38041.387112] doveadm[20515]: segfault at 8 ip 000000000040f51d sp > 00007fffb774c010 error 4 in doveadm[400000+2a000] > [38041.397966] I guess you're calling doveadm somewhere. Maybe in a cronjob? Maybe it's the same bug I fixed today: http://hg.dovecot.org/dovecot-2.0/rev/0e1254dcf86b From tss at iki.fi Fri Jun 3 17:29:49 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:29:49 +0300 Subject: [Dovecot] passdb: password contains illegal chars question In-Reply-To: <201105261121.12894.tkrah@fachschaft.imn.htwk-leipzig.de> References: <201105261121.12894.tkrah@fachschaft.imn.htwk-leipzig.de> Message-ID: <1307111389.10421.607.camel@hurina> On Thu, 2011-05-26 at 11:21 +0200, Torsten Krah wrote: > Hi, > > some question about passdb backend: > > I'll receive this (using dovecot 2.0.13, pgsql passdb backend) for some users: > > mail dovecot: auth: passdb(account-username,127.0.0.1): Attempted login with > password having illegal chars > > Password schema ist crypt-md5. > So what "chars" does dovecot not like (why?) and whats the preferred way to fix > this? There are very few illegal characters for password. They're all control characters, so no real user should be using them: \001, TAB, CR and LF. From tss at iki.fi Fri Jun 3 17:39:29 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:39:29 +0300 Subject: [Dovecot] New IPC features : any configuration doc ? In-Reply-To: <443189154fbbbd1add631a3c1173528a@grosjo.net> References: <94c726cbd87ddd67a42c1cf30d3d42aa@grosjo.net> <669AFB3A-2CAE-4D00-AA55-36361EF871A3@iki.fi> <443189154fbbbd1add631a3c1173528a@grosjo.net> Message-ID: <1307111969.10421.609.camel@hurina> On Tue, 2011-05-24 at 16:38 -0500, Joan Moreau wrote: > That shall appear in the doc somewhere, as "default_login_user" is > not a mandatory field, or you shall make this field mandatory I thought it practically was mandatory already.. I guess you managed to get around it. :) In next version it's explicitly required: doveconf: Fatal: Error in configuration file /usr/local/etc/dovecot/dovecot.conf: default_login_user doesn't exist: foobar Same for default_internal_user. From tss at iki.fi Fri Jun 3 17:42:24 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:42:24 +0300 Subject: [Dovecot] Dovecot 1.2 with MySQL limit Trash folder In-Reply-To: References: Message-ID: <1307112144.10421.611.camel@hurina> On Tue, 2011-05-24 at 20:29 +0200, Damien Robinet wrote: > Hi All, > > I need your help to limit the size of the Trash folder. > I want to exclude the Trash folder in my user quota. But I do not want > the Trash folder can not exceed 10M for example. > I can manage to exclude the size of the Trash folder. But I can not > limit the size of the folder. > > On my test, I've bytes=512000 for the Trash folder. > But the user can move more that 512000B on the Trash folder ... Dovecot doesn't support per-folder quotas. This bytes=512000 means that you're giving the user 512000 bytes on top of the actual quota. That's why it's in newer versions actually called "bytes=+512000" to make it clearer. From tss at iki.fi Fri Jun 3 17:46:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:46:33 +0300 Subject: [Dovecot] slow squat fts index creation In-Reply-To: <89758552-27E7-4A1F-9705-22506AE812D2@in.ter.net> References: <89758552-27E7-4A1F-9705-22506AE812D2@in.ter.net> Message-ID: <1307112393.10421.615.camel@hurina> On Tue, 2011-05-24 at 17:01 +0200, Cor Bosman wrote: > Hi all, ive been playing with squat indexes. Up to about 300.000 emails in a single mailbox this was working flawlessly. The search index file is about 500MB at that time. Ive now added some more emails, and at 450.000 or so emails im seeing a serious problem with squat index creation. It takes...f o r e v e r . The .tmp file is being so slowly, it will probably take 2-3 hours to create. Upto this point it took maybe a minute. > > Im doing this in an openvz container, so theoretically i may be hitting some openvz resource limit. But ive upped all the limits and dont see any improvements. I dont see any resources starvation either. > > Could there be some dovecot issue when the search index reaches say 1GB? (im estimating that it's now trying to save about 1GB search index). Initially squat just builds a large unorganized index. The last step is the organization. This is the main problem with Squat's indexing speed. The file is mmaped() and the accessed in pretty random order. As long as you have enough memory to keep all of this mmaped data in physical memory this works pretty fast, but otherwise the kernel starts page faulting like crazy and it takes forever. That's why the Squat has this code: /* Tell the kernel we're going to use the uidlist data, so it loads it into memory and keeps it there. */ (void)madvise(uidlist->mmap_base, uidlist->mmap_size, MADV_WILLNEED); /* It also speeds up a bit for us to sequentially load everything into memory, although at least Linux catches up quite fast even without this code. Compiler can quite easily optimize away this entire for loop, but volatile seems to help with gcc 4.2. */ for (i = 0; i < uidlist->mmap_size; i += page_size) ((const volatile char *)uidlist->data)[i]; From ecasarero at gmail.com Fri Jun 3 17:53:16 2011 From: ecasarero at gmail.com (Eduardo Casarero) Date: Fri, 3 Jun 2011 11:53:16 -0300 Subject: [Dovecot] Problems in auth when switching from PLAIN-MD5 In-Reply-To: <1307102333.10421.552.camel@hurina> References: <1307102333.10421.552.camel@hurina> Message-ID: 2011/6/3 Timo Sirainen > On Thu, 2011-06-02 at 17:41 -0300, Eduardo Casarero wrote: > > Hi, i am running dovecot 2.0.11 (with mysql backend) and until now using > > PLAIN-MD5 as pass default_pass_scheme everything was working fine. > However i > > wanted to change the pass_scheme to something stronger than plain-md5, so > i > > started by reading the wiki. > > > > I found this: http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes > > > > But when i comment out "default_pass_scheme" and > > You don't need to comment it out. Although I guess then the default is > still PLAIN-MD5. > > > i create the pass with the > > {SHA256.hex} prefix i see this in the logs: > > > > auth: Error: sql(xxx at xxxxxx.com,10.21.1.1): Password in passdb is not in > > expected scheme SHA256.hex > > Show an example of a stored password? > > > i tried with '{SSHA256.hex}acb600a04d0816cd3242a5489e3ac39b4f9f7c9dedacbd754f93c769ac4829e1db7fae58' (generated with the php script from the wiki) and i also tried with: doveadm pw -s SHA -u user at domain.com {SHA}kLF2K2vi+AxTEJ7kOZqXbjNnYhE= With both examples i got the error "Password in passdb is not in expected scheme", the select query is a simple select. Thanks again! From ifoutch at webley.com Fri Jun 3 18:56:48 2011 From: ifoutch at webley.com (Ian Foutch) Date: Fri, 3 Jun 2011 10:56:48 -0500 Subject: [Dovecot] Running a dovecot cluster with mixed versions? Message-ID: <4D658C20-C29E-45FE-A180-AFA721F625F4@webley.com> I have been trying to find information and possible issues with running a cluster of dovecot server with different versions without any luck. We have an existing cluster with dovecot v1.1.10 and tried migrating to a new cluster with dovecot v2.0.12. We ran into some issues when we moved traffic to the new cluster and have been unable to reproduce it in our own testing. We may need to put real usage on the new servers but would like to be able to do this by adding newer servers into the existing cluster. What are the potential issues with doing this? Thanks, --Ian This message and any attachments to it are intended only for the addressee(s) identified above and may contain CONFIDENTIAL information. It is not intended for transmission to, or receipt by, any unauthorized persons. If you are not an intended recipient or an agent responsible for delivering it to an intended recipient, you have received this e-mail in error and any dissemination, distribution, or copying of this message or any attachment to it is strictly prohibited. If you have received this email in error, please (i) do not read it, (ii) reply to the sender that you received the message in error, and (iii) erase or destroy the message from your system. From tss at iki.fi Fri Jun 3 19:02:35 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 19:02:35 +0300 Subject: [Dovecot] Problems in auth when switching from PLAIN-MD5 In-Reply-To: References: <1307102333.10421.552.camel@hurina> Message-ID: <1307116955.10421.617.camel@hurina> On Fri, 2011-06-03 at 11:53 -0300, Eduardo Casarero wrote: > i tried with > '{SSHA256.hex}acb600a04d0816cd3242a5489e3ac39b4f9f7c9dedacbd754f93c769ac4829e1db7fae58' > (generated with the php script from the wiki) and i also tried with: > > doveadm pw -s SHA -u user at domain.com > > {SHA}kLF2K2vi+AxTEJ7kOZqXbjNnYhE= > > With both examples i got the error "Password in passdb is not in expected > scheme", the select query is a simple select. I don't see any reason why those wouldn't work. Set auth_debug_passwords=yes and show the logs when trying to log in? From tss at iki.fi Fri Jun 3 19:08:04 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 19:08:04 +0300 Subject: [Dovecot] Running a dovecot cluster with mixed versions? In-Reply-To: <4D658C20-C29E-45FE-A180-AFA721F625F4@webley.com> References: <4D658C20-C29E-45FE-A180-AFA721F625F4@webley.com> Message-ID: <1307117284.10421.622.camel@hurina> On Fri, 2011-06-03 at 10:56 -0500, Ian Foutch wrote: > I have been trying to find information and possible issues with > running a cluster of dovecot server with different versions without > any luck. > > We have an existing cluster with dovecot v1.1.10 and tried migrating > to a new cluster with dovecot v2.0.12. We ran into some issues when > we moved traffic to the new cluster and have been unable to reproduce > it in our own testing. We may need to put real usage on the new > servers but would like to be able to do this by adding newer servers > into the existing cluster. > > What are the potential issues with doing this? Are they sharing mail files? It's similar to upgrading/downgrading then: v2.0 can read index files created by v1.1, but once v2.0 has done changes it's not a good idea for v1.1 to try to read the indexes anymore. Another possibility would have been to do this more gradually: First upgrade to v1.2.17. There are no problems with v1.1.10 reading its index files. After this upgrade to v2.0. v1.2.17 has no problems reading v2.0's index files. From grenouille at c-base.org Fri Jun 3 19:21:01 2011 From: grenouille at c-base.org (wulf) Date: Fri, 3 Jun 2011 18:21:01 +0200 Subject: [Dovecot] unexpected subfolder locaton in Maildir/.INBOX.subfolder In-Reply-To: <1307106291.10421.584.camel@hurina> References: <20110526235943.GC848@coulmann.de> <1307106291.10421.584.camel@hurina> Message-ID: <20110603162058.GL17706@coulmann.de> Hi Timo, thanks for response. On Fri, Jun 03, 2011 at 04:04:51PM +0300, Timo Sirainen wrote: > You'd access it as imap://user at host/subfolder. that was clear, but I want to make sure clients don't need reconfiguration after migration. > Or alternatively you can create a namespace with INBOX. prefix. > http://wiki.dovecot.org/Namespaces I don't know the namespace concept before. That's the hint I'm looking for. And there is special a paragraph about my case: Backwards Compatibility: Courier IMAP You can continue using the same INBOX. namespace as Courier: ... Best Wulf++ From gouravjoshi at gmail.com Fri Jun 3 20:27:35 2011 From: gouravjoshi at gmail.com (=?UTF-8?B?4KSX4KWM4KSw4KS1IOCknOCli+CktuClgA==?=) Date: Fri, 3 Jun 2011 22:57:35 +0530 Subject: [Dovecot] Using Dovecot new version 2.0.13 facing issues. Message-ID: Hi, I have configured POP-IMAP server with dovecot 2.0.13 with mysql support. When I am running load test on the same I face issue on IMAP connections. I get "dovecot: imap-login: Error: fd_send(imap, 15) failed: Interrupted system call" followed by "dovecot: imap-login: Internal login failure" in log files. Below is my dovecot -n output; ========================================================= # 2.0.13: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 2.6.18-238.el5 x86_64 CentOS release 5.6 (Final) auth_socket_path = /usr/local/var/run/dovecot/auth-userdb auth_verbose = yes disable_plaintext_auth = no first_valid_gid = 99 first_valid_uid = 99 listen = * mail_fsync = always mail_location = maildir:~/Maildir:INDEX=/indexes/%h:CONTROL=/indexes/%h mail_nfs_index = yes mail_nfs_storage = yes mmap_disable = yes passdb { args = /usr/local/etc/dovecot/dovecot-mysql.conf driver = sql } protocols = imap pop3 service auth { unix_listener auth-userdb { group = nobody mode = 0600 user = nobody } } ssl = no syslog_facility = local1 userdb { args = /usr/local/etc/dovecot/dovecot-mysql.conf driver = sql } protocol imap { mail_max_userip_connections = 1500 } protocol pop3 { mail_max_userip_connections = 800 pop3_client_workarounds = outlook-no-nuls pop3_lock_session = yes pop3_no_flag_updates = yes pop3_uidl_format = %08Xu%08Xv } ========================================================= Please help I want to move this server in live environment. Have a nice time, Gourav Joshi Have a look at www.linuxquestions.in From dmiller at amfes.com Fri Jun 3 20:40:45 2011 From: dmiller at amfes.com (Daniel Miller) Date: Fri, 03 Jun 2011 10:40:45 -0700 Subject: [Dovecot] solr substring schema.xml In-Reply-To: <1307105645.10421.579.camel@hurina> References: <4DE20D49.5040507@amfes.com> <1307105645.10421.579.camel@hurina> Message-ID: On 6/3/2011 5:54 AM, Timo Sirainen wrote: > On Sun, 2011-05-29 at 02:09 -0700, Daniel Miller wrote: > >> I'm trying a modified schema.xml with solr - it appears I now have >> substring searches! > How large are your indexes compared to mailbox size? > du -c -b /var/mail/domain = 4913315733 du -c -b /var/mail/attachments = 29672490629 du -c -b /var/mail/solr = 12809981456 at the moment, I have an hourly cronjob - doveadm search -A text zyxabcxyz > /dev/null java -Ddata=args -jar /raid/mail/solr/exampledocs/post.jar \ '' > /dev/null java -Ddata=args -jar /raid/mail/solr/exampledocs/post.jar \ '' > /dev/null -- Daniel L. Miller, VP - Engineering, SET AM Fire & Electronic Services, Inc. [AMFES] dmiller at amfes.com 702-312-5276 From jk at jkart.de Fri Jun 3 21:58:39 2011 From: jk at jkart.de (Jim Knuth) Date: Fri, 03 Jun 2011 20:58:39 +0200 Subject: [Dovecot] Segmentation fault again In-Reply-To: <1307104058.10421.568.camel@hurina> References: <4DE0D02C.4060807@jkart.de> <1307104058.10421.568.camel@hurina> Message-ID: <4DE92EDF.6090105@jkart.de> am 03.06.11 14:27 schrieb Timo Sirainen : > On Sat, 2011-05-28 at 12:36 +0200, Jim Knuth wrote: >> Hi, >> >> I have the following report after a cron job again? >> >> /root/tools/expunge: Zeile 3: 4869 Speicherzugriffsfehler doveadm >> expunge -A mailbox Spam savedbefore 5d >> /root/tools/expunge: Zeile 5: 4915 Speicherzugriffsfehler doveadm >> expunge -A mailbox Papierkorb savedbefore 4d > > http://hg.dovecot.org/dovecot-2.0/rev/0e1254dcf86b should fix it. > > thank you. It`s right. -- Mit freundlichen Gr??en, with kind regards, Jim Knuth --------- Der Pessimist ist jemand, der vorzeitig die Wahrheit erz?hlt. (Cyrano de Bergerac) From jinfengming at gmail.com Sat Jun 4 04:51:56 2011 From: jinfengming at gmail.com (Jin FengMing) Date: Sat, 04 Jun 2011 09:51:56 +0800 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error Message-ID: <4DE98FBC.203@gmail.com> Hi all, I'm not so sure it is about to dovecot, but any thoughts will be appreciated. I have an email account configured as IMAP(dovecot-1.2.10) via outlook 2010. If I'm creating a *new* mailbox folder, for example "ttt", and *copying* a mail into *that* mailbox folder, then an error message window will be displayed. The problem caused by C:UID FETCH 0 (UID FLAGS RFC822.SIZE BODY.PEEK[HEADER] INTERNALDATE) S:3mgc BAD Error in IMAP command UID FETCH: Invalid uidset The dovecot's rawlog 20100101-060322-5491.in: 54nc IDLE DONE uh4m SELECT "INBOX.ttt" 37ax IDLE DONE 5dtr FETCH 1 (UID) 3mgc UID FETCH 0 (UID FLAGS RFC822.SIZE BODY.PEEK[HEADER] INTERNALDATE) 28kc IDLE DONE msxw CLOSE tuis IDLE DONE a6rl SELECT "INBOX.ttt" 59oj FETCH 1 (UID) k26b UID FETCH 1 (UID FLAGS) z8su IDLE DONE 20100101-060322-5491.out: * OK [RAWLOG TIMESTAMP] 2010-01-01 06:03:22 7u95 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT IDLE CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS] Logged in + idling 54nc OK Idle completed. * FLAGS (\Answered \Flagged \Deleted \Seen \Draft) * OK [PERMANENTFLAGS (\Answered \Flagged \Deleted \Seen \Draft \*)] Flags permitted. * 0 EXISTS * 0 RECENT * OK [UIDVALIDITY 1262323866] UIDs valid * OK [UIDNEXT 1] Predicted next UID * OK [NOMODSEQ] No permanent modsequences uh4m OK [READ-WRITE] Select completed. + idling * 1 EXISTS 37ax OK Idle completed. * 1 FETCH (UID 1) 5dtr OK Fetch completed. 3mgc BAD Error in IMAP command UID FETCH: Invalid uidset + idling 28kc OK Idle completed. msxw OK Close completed. + idling tuis OK Idle completed. * FLAGS (\Answered \Flagged \Deleted \Seen \Draft) * OK [PERMANENTFLAGS (\Answered \Flagged \Deleted \Seen \Draft \*)] Flags permitted. * 1 EXISTS * 0 RECENT * OK [UIDVALIDITY 1262323866] UIDs valid * OK [UIDNEXT 2] Predicted next UID * OK [NOMODSEQ] No permanent modsequences a6rl OK [READ-WRITE] Select completed. * 1 FETCH (UID 1) 59oj OK Fetch completed. * 1 FETCH (UID 1 FLAGS (\Seen)) k26b OK Fetch completed. + idling z8su OK Idle completed. From djonas at vitalwerks.com Sat Jun 4 04:58:23 2011 From: djonas at vitalwerks.com (David Jonas) Date: Fri, 03 Jun 2011 18:58:23 -0700 Subject: [Dovecot] dsync: Invalid mailbox first_recent_uid In-Reply-To: <1307111133.10421.604.camel@hurina> References: <4DDF43F7.8020707@vitalwerks.com> <1307111133.10421.604.camel@hurina> Message-ID: <4DE9913F.5060900@vitalwerks.com> On 6/3/11 7:25 AM, Timo Sirainen wrote: > On Thu, 2011-05-26 at 23:25 -0700, David Jonas wrote: >> dsync-local(djonas at vitalwerks.com): Error: Invalid mailbox input from >> worker server: Invalid mailbox first_recent_uid >> >> The local uid is 8989 and the remote uid is 89. I added "first_valid_uid >> = 89" to the local conf but to no avail. Local version is 2.0.12, remote >> is 2.0.1. > That's actually the problem. They talk slightly different protocols.. I > guess I should have added a version number to the protocol. Although > even then you would have only gotten "protocol version mismatch" error. I had no idea that would be an issue. A protocol version mismatch error actually would have helped me figure it out without bugging you on the list. I upgraded the remote server to 2.0.12 and had no problems with the sync. > You could simply copy v2.0.12's dsync to the remote server and it should > work fine, as long as you're not using any plugins. Thanks! From maciej.uhlig at us.edu.pl Sat Jun 4 13:11:07 2011 From: maciej.uhlig at us.edu.pl (Maciej Uhlig) Date: Sat, 04 Jun 2011 12:11:07 +0200 Subject: [Dovecot] sieve script tracing Message-ID: <4DEA04BB.2040405@us.edu.pl> Could it be possible to trace Sieve script using method other than "enotify", i.e. to write a message to syslog using some action? MU From CMarcus at Media-Brokers.com Sat Jun 4 15:35:53 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Sat, 04 Jun 2011 08:35:53 -0400 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error In-Reply-To: <4DE98FBC.203@gmail.com> References: <4DE98FBC.203@gmail.com> Message-ID: <4DEA26A9.5030809@Media-Brokers.com> On 2011-06-03 9:51 PM, Jin FengMing wrote: > Hi all, I'm not so sure it is about to dovecot, but any thoughts will > be appreciated. > I have an email account configured as IMAP(dovecot-1.2.10) via outlook > 2010. If I'm creating a *new* mailbox folder, for example "ttt", and > *copying* a mail into *that* mailbox folder, then an error message > window will be displayed. It is customary before reporting a problem to upgrade to the latest version to see if it is already fixed - especially when testing with a considerably outdated version... Current versions are: 1.2.17 (of the 1.2 branch) and 2.0.13 (current stable branch)... Output of dovecot -n is also recommended (so we don't have to guess about your config settings)... -- Best regards, Charles From jinfengming at gmail.com Sat Jun 4 16:03:47 2011 From: jinfengming at gmail.com (Jin FengMing) Date: Sat, 04 Jun 2011 21:03:47 +0800 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error In-Reply-To: <4DEA26A9.5030809@Media-Brokers.com> References: <4DE98FBC.203@gmail.com> <4DEA26A9.5030809@Media-Brokers.com> Message-ID: <4DEA2D33.4030309@gmail.com> On 6/4/2011 20:35, Charles Marcus wrote: > On 2011-06-03 9:51 PM, Jin FengMing wrote: >> Hi all, I'm not so sure it is about to dovecot, but any thoughts will >> be appreciated. >> I have an email account configured as IMAP(dovecot-1.2.10) via outlook >> 2010. If I'm creating a *new* mailbox folder, for example "ttt", and >> *copying* a mail into *that* mailbox folder, then an error message >> window will be displayed. > It is customary before reporting a problem to upgrade to the latest > version to see if it is already fixed - especially when testing with a > considerably outdated version... Sorry about that the missing information: I have tried 1.2.11 ~ 1.2.17, but sadly not help out. > > Current versions are: 1.2.17 (of the 1.2 branch) and 2.0.13 (current > stable branch)... Will try to 2.0.13... > Output of dovecot -n is also recommended (so we don't have to guess > about your config settings)... > here it is: # 1.2.10: /usr/local/etc/dovecot.conf # OS: Linux 2.6.38-8-generic i686 Ubuntu 11.04 listen: *:143 ssl: no disable_plaintext_auth: no login_dir: /usr/local/var/run/dovecot/login login_executable: /usr/local/libexec/dovecot/imap-login login_process_per_connection: no login_max_processes_count: 1 login_max_connections: 24 max_mail_processes: 24 verbose_proctitle: yes mail_location: maildir:~/Maildir:INDEX=MEMORY mail_debug: yes imap_capability: IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT IDLE CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS auth default: mechanisms: plain login passdb: driver: passwd-file args: scheme=plain username_format=%u /usr/local/etc/imap.passwd userdb: driver: static args: uid=jinfm gid=jinfm home=/home/jinfm/vmail/%u socket: type: listen From johnw.mail at gmail.com Sat Jun 4 16:48:31 2011 From: johnw.mail at gmail.com (johnw) Date: Sat, 04 Jun 2011 21:48:31 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot Message-ID: <4DEA37AF.4040202@gmail.com> i want to chroot lmtp with sieve, but have some problem, look like lmtp can not load sieve's lib or something. the error message like this: dovecot: lmtp(12799): Fatal: opendir(/usr/local/lib/dovecot) failed: No such file or directory all is work fine, when not config lmtp chroot. can i config lmtp load sieve before chroot? please help, and thank you. From dovecot at killfile.de Sat Jun 4 22:05:19 2011 From: dovecot at killfile.de (Marcus Jodorf) Date: Sat, 4 Jun 2011 21:05:19 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE8A3D1.5030806@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> <4DE8A3D1.5030806@mejor.pl> Message-ID: Marcin Miros?aw wrote: > In config snip from Marcus i can't find definition of "quota", what kind > of backend are you using? maildir? Sorry forgot that. I just use maildir quota. plugin { quota = maildir:User Quota } Timo already wrote about the problem with dict-quota and postgres. Best regards, Marcus From marcin at mejor.pl Sun Jun 5 11:31:53 2011 From: marcin at mejor.pl (=?ISO-8859-2?Q?Marcin_Miros=B3aw?=) Date: Sun, 05 Jun 2011 10:31:53 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <1307108874.10421.601.camel@hurina> References: <4DE7A2AB.9090607@mejor.pl> <1307101882.10421.546.camel@hurina> <4DE8DEE7.8060608@mejor.pl> <1307108874.10421.601.camel@hurina> Message-ID: <4DEB3EF9.80505@mejor.pl> W dniu 2011-06-03 15:47, Timo Sirainen pisze: > On Fri, 2011-06-03 at 15:17 +0200, Marcin Miros?aw wrote: >> DICT_QUOTA_DEL= ... >> DICT_QUOTA_INSERT= >> DICT_QUOTA_OTHER_ACTIONS= > > It's not that simple. If it would be simple, probably it would be done;) Thanks Timo, Duane, Marcus for all replies. Regards, Marcin From stephan at rename-it.nl Sun Jun 5 12:37:32 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Sun, 05 Jun 2011 11:37:32 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEA04BB.2040405@us.edu.pl> References: <4DEA04BB.2040405@us.edu.pl> Message-ID: <4DEB4E5C.20407@rename-it.nl> On 06/04/2011 12:11 PM, Maciej Uhlig wrote: > Could it be possible to trace Sieve script using method other than > "enotify", i.e. to write a message to syslog using some action? > Not currently. There is a vnd.dovecot.debug extension, but that is only available for the command line tools and not for the actual LDA plugin. What is your application? Regards, Stephan. From ivan.rodrigues at gmail.com Sun Jun 5 19:08:00 2011 From: ivan.rodrigues at gmail.com (Ivan Rodrigues) Date: Sun, 5 Jun 2011 13:08:00 -0300 Subject: [Dovecot] Help with Trash setup Message-ID: Folks, I'm trying to setup a mail server just to store my mail, i use fetchmail to retrieve my messages and I want to configure the trash can, can you guys please help me with this mater? Dovecot Version: 1.2.9 No SQL nor LDAP installed dovecot -n # 1.2.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-24-generic-pae i686 Ubuntu 10.04.2 LTS log_timestamp: %Y-%m-%d %H:%M:%S login_dir: /var/run/dovecot/login login_executable: /usr/lib/dovecot/imap-login mail_privileged_group: mail mail_location: maildir:~/Maildir mbox_write_locks: fcntl dotlock mail_plugins: delete_to_trash auth default: passdb: driver: pam userdb: driver: passwd plugin: deleted_to_trash_folder: Trash From xavier at maillard.im Sun Jun 5 23:05:45 2011 From: xavier at maillard.im (Xavier Maillard) Date: Sun, 05 Jun 2011 22:05:45 +0200 Subject: [Dovecot] Help with Trash setup In-Reply-To: References: Message-ID: Hi, On Sun, 5 Jun 2011 13:08:00 -0300, Ivan Rodrigues wrote: > Folks, > > I'm trying to setup a mail server just to store my mail, i use fetchmail to > retrieve my messages and I want to configure the trash can, can you guys > please help me with this mater? I am not an expert (and I do not use this plugin) but: > mail_plugins: delete_to_trash ^^^ shouldn't it be *deleted_to_trash* ? /Xavier From dovecot-ml at makomi.de Sun Jun 5 23:02:25 2011 From: dovecot-ml at makomi.de (=?iso-8859-1?Q?Michael_K=F6hler?=) Date: Sun, 5 Jun 2011 22:02:25 +0200 Subject: [Dovecot] file rights for dictionary file Message-ID: Hi, I use Debian Squeeze and the sources from Stephan Bosch. A few weeks ago I?ve upgraded from 2.0.11 to 2.0.13 and got an error May 29 20:01:53 mailserver dovecot: dict: Error: Can't open configuration file /etc/dovecot/dovecot-dict-sql.conf.ext: Permission denied May 29 20:01:53 mailserver dovecot: dict: Error: Failed to initialize dictionary 'quota' and I could see that /etc/dovecot/dovecot-dict-sql.conf.ext is owning by root:root with 600. After changing to root:root 644 all works, but after each upgrade all files in /etc/dovecot will be set to 600. Is it a problem of the dovecot package or should I do some changes to config to allow dovecot reading the dict file? Here is my config: # 2.0.13 (9ae30e5d6935): /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-xen-amd64 x86_64 Debian 6.0.1 ext3 auth_mechanisms = plain login cram-md5 dict { quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext } first_valid_uid = 106 lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes mail_location = maildir:/var/mail/%d/%u mail_plugins = quota managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { autocreate = Sent Messages autocreate2 = Deleted Messages autocreate3 = Drafts autosubscribe = Sent Messages autosubscribe2 = Deleted Messages autosubscribe3 = Drafts quota = dict:User quota::proxy::quota quota_rule2 = Deleted Messages:storage=+1GB sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap lmtp service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } } service dict { unix_listener dict { group = mail mode = 0660 } } service imap-login { inet_listener imap { port = 0 } inet_listener imaps { port = 993 ssl = yes } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } ssl = required ssl_cert = References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> Message-ID: <4DEBEB90.2080503@us.edu.pl> W dniu 2011-06-05 11:37, Stephan Bosch pisze: > What is your application? Actually it's something like this: >>> if anyof ( # example #1 allof ( ... anyof ( ... ) ), # example #2 allof ( ... anyof ( ... ) ), # example #3 allof ( ... anyof ( ... ) ), # example #4 allof ( ... ), # example #4a allof ( ... ), # example #5 allof ( ... ), # example #6 allof ( ... ), # example #7 allof ( ... ) ) { discard; } >>> I'd like to know which condition was the actual reason of e-mail discarding. I thought about log message. Regards, MU From dovecot.user at seibercom.net Mon Jun 6 00:16:04 2011 From: dovecot.user at seibercom.net (Jerry) Date: Sun, 5 Jun 2011 17:16:04 -0400 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEBEB90.2080503@us.edu.pl> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> Message-ID: <20110605171604.0372180b@scorpio> On Sun, 05 Jun 2011 22:48:16 +0200 Maciej Uhlig articulated: {snip} > I'd like to know which condition was the actual reason of e-mail > discarding. I thought about log message. An actual way to step through the execution of the code is something that I have been waiting for, for quite awhile. My coding skills are certainly not up to the task of writing such an application and I have not been able to locate one. I have literally spent hours debugging a logic problem with sieve scripts. It ain't fun. ? -- Jerry ? Dovecot.user at seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __________________________________________________________________ From stephan at rename-it.nl Mon Jun 6 01:56:00 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 06 Jun 2011 00:56:00 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEBEB90.2080503@us.edu.pl> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> Message-ID: <4DEC0980.9070105@rename-it.nl> On 6/5/2011 10:48 PM, Maciej Uhlig wrote: > W dniu 2011-06-05 11:37, Stephan Bosch pisze: >> What is your application? > > Actually it's something like this: > > >>> > > if anyof ( > # example #1 > allof ( > ... > anyof ( > ... > ) > ), > # example #2 > allof ( > ... > anyof ( > ... > ) > ), > # example #3 > allof ( > ... > anyof ( > ... > ) > ), > # example #4 > allof ( > ... > ), > # example #4a > allof ( > ... > ), > > # example #5 > allof ( > ... > ), > # example #6 > allof ( > ... > ), > # example #7 > allof ( > ... > ) > ) > { > discard; > } > > >>> > > I'd like to know which condition was the actual reason of e-mail > discarding. I thought about log message. If you have a sample message, you can use the sieve-test tool for that. You can check the individual steps the interpreter takes while processing the message. Refer to the man page for more info. Regards, Stephan. From r.zimmermann at siegnetz.de Mon Jun 6 02:27:43 2011 From: r.zimmermann at siegnetz.de (Ralf Zimmermann) Date: Mon, 06 Jun 2011 01:27:43 +0200 Subject: [Dovecot] doveadm problem with mail_plugins in database Message-ID: <4DEC10EF.3000403@siegnetz.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all, I use this user_query: - -------------------------------%<-------------------------------- user_query = SELECT LOWER(CONCAT(t2.login,'@',t1.name)) AS user,t2.home,t2.mail,5000 AS uid,5000 AS gid,CONCAT('*:storage=',quota_mb,'MB') AS quota_rule,t2.acl_groups,case when '%s'='lda' then 'acl quota sieve' when '%s'='lmtp' then 'acl quota sieve' when '%s'='doveadm' then mail_plugins when '%s'='sieve' then 'acl quota' else t2.mail_plugins end as mail_plugins FROM virtual_users as t2, virtual_domains as t1 WHERE ( t2.login='%n' OR t2.email='%u' ) AND t1.enabled IS true AND t2.enabled IS true AND t1.id=t2.domain_id - -------------------------------%<-------------------------------- When I use some doveadm commands I get this error for example: - -------------------------------%<-------------------------------- # doveadm fetch -u rzimmermann "hdr" savedbefore 3d doveadm(rzimmermann): Error: dlopen(/usr/local/lib/dovecot/lib02_imap_acl_plugin.so) failed: /usr/local/lib/dovecot/lib02_imap_acl_plugin.so: undefined symbol: client_fail_mailbox_name_status doveadm(rzimmermann): Error: Can't load plugin imap_acl_plugin: Plugin is intended to be used only by imap binary (we're doveadm) doveadm(rzimmermann): Fatal: Couldn't load required plugins - -------------------------------%<-------------------------------- Some doveadm commands runs fine. Here a example: - -------------------------------%<-------------------------------- # doveadm user rzimmermann userdb: rzimmermann home : /var/vmail/virtusers/boardfreunde.de/rzimmermann mail : maildir:~/Maildir uid : 5000 gid : 5000 quota_rule: *:storage=4000MB acl_groups: admins,boe-admins mail_plugins: quota imap_quota acl imap_acl autocreate fts fts_squat - -------------------------------%<-------------------------------- If I change the user_query part "'%s'='doveadm' then mail_plugins" to "'%s'='doveadm' then 'acl quota" all works fine, but I get a wrong mail_plugin output: - -------------------------------%<-------------------------------- userdb: rzimmermann home : /var/vmail/virtusers/boardfreunde.de/rzimmermann mail : maildir:~/Maildir uid : 5000 gid : 5000 quota_rule: *:storage=4000MB acl_groups: admins,boe-admins mail_plugins: acl quota - -------------------------------%<-------------------------------- What can I do to get doveadm working with "'%s'='doveadm' then mail_plugins"? Or must I use "'%s'='doveadm' then 'acl quota" in the user_query? I use dovecot 2.0.13. Greets Ralf -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAEBAgAGBQJN7BDnAAoJENVjhbwuX+/H6F4H/ROB/J4/icebgAQdpqQxYgDt PEUR87dlgIufQWT7KVyYVYBxzfjRqk20+f/Djpxy6RGl2jVHajvtOpsovQQz92Dy C1ulagZ2mimhbP8qa6VSh3Ozjv9xASbXDJHEDhSR3i45V0bPFpN1resaP8pHHJkl bdvqrdXlvIdMvJ83fSTcElMdIrmg0wyUJMTB900NVkvndlGO1xs1vtfv2c+PhNDe 9nq9Vs2/uVt7NO6ct/d9tqd57X5fzqxzIvjWWCIyHB38W6KgNFM6TiHI1WtSFsKn 4UOcE9FKmePq17ugaj1yrn0gmOSgU1TqnSjRwEM0xoteUlio2NsuhzFSVojkq9s= =NzcM -----END PGP SIGNATURE----- From dlie76 at yahoo.com.au Mon Jun 6 07:06:35 2011 From: dlie76 at yahoo.com.au (Daminto Lie) Date: Sun, 5 Jun 2011 21:06:35 -0700 (PDT) Subject: [Dovecot] restore lost emails Message-ID: <952654.51089.qm@web113420.mail.gq1.yahoo.com> Hi, I was wondering if anyone might be able to help me with this. I am running Postfix 2.7.0, Dovecot 1.2.9 and squirrelmail. Every week, I perform a back-up on both Postfix and Dovecot (maildir and conf folders). That's good because I have all the emails backed up. And now what I would like to ask is whether or not there are any easy way of restoring e-mails if some emails got deleted by accident or for other reason. So far, I have tried to look up the answer on the Internet but got a bit of vague answer. Any help would be greatly appreciated. Thank you From maciej.uhlig at us.edu.pl Mon Jun 6 11:38:59 2011 From: maciej.uhlig at us.edu.pl (Maciej Uhlig) Date: Mon, 06 Jun 2011 10:38:59 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEC0980.9070105@rename-it.nl> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> <4DEC0980.9070105@rename-it.nl> Message-ID: <4DEC9223.6090807@us.edu.pl> W dniu 2011-06-06 00:56, Stephan Bosch pisze: > > If you have a sample message, you can use the sieve-test tool for > that. You can check the individual steps the interpreter takes while > processing the message. Refer to the man page for more info. > Thanks. It could be really helpful in case of script testing. But I'm rather interested in statistics (which rule most probably causes mail discarding). Regards, MU From mail at tomsommer.dk Mon Jun 6 12:46:03 2011 From: mail at tomsommer.dk (Tom Sommer) Date: Mon, 6 Jun 2011 11:46:03 +0200 Subject: [Dovecot] Bug: Fixed a duplicate In-Reply-To: <1307106006.10421.583.camel@hurina> References: <4DE14A0D.6030704@tomsommer.dk> <1307106006.10421.583.camel@hurina> Message-ID: <2bc4fac0aefdaed93f678a53a1b55b67.squirrel@webmail.dreamcoder.dk> On Fri, June 3, 2011 15:00, Timo Sirainen wrote: > On Sat, 2011-05-28 at 21:16 +0200, Tom Sommer wrote: > >> I restored a dovecot mailserver today, and when I started the server >> again, the logs filled up with "Fixed a duplicate" warnings. >> >> This in itself it not a problem, the problem is that it appears the fix >> is not done correct. > > You shouldn't have restored an old maildir on top of an existing > maildir. That is the main problem. The same mails had different flags > (=different filenames), and Dovecot just renamed one of the files to > make sure no mails got accidentally lost. In your case it should have just > deleted the duplicates, but there's no such feature yet. Dovecot works > exactly as intended here. The full explanation is more complex than I want > to type right now. Would it be possible to set the correct timestamp on the renamed files, so the timestamp remains the same as on the original? // Tom From stephan at rename-it.nl Mon Jun 6 13:08:21 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 06 Jun 2011 12:08:21 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <20110605171604.0372180b@scorpio> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> <20110605171604.0372180b@scorpio> Message-ID: <4DECA715.8040606@rename-it.nl> Op 5-6-2011 23:16, Jerry schreef: > On Sun, 05 Jun 2011 22:48:16 +0200 > Maciej Uhlig articulated: > > {snip} > >> I'd like to know which condition was the actual reason of e-mail >> discarding. I thought about log message. > An actual way to step through the execution of the code is something > that I have been waiting for, for quite awhile. My coding skills are > certainly not up to the task of writing such an application and I have > not been able to locate one. I have literally spent hours debugging a > logic problem with sieve scripts. It ain't fun. ? Have you ever tried the sieve-test command line tool? If that is not adequate, could you provide a description of what you would need instead? Regards, Stephan. From shearwater at gmail.com Mon Jun 6 13:09:54 2011 From: shearwater at gmail.com (Ruan Kendall) Date: Mon, 6 Jun 2011 11:09:54 +0100 Subject: [Dovecot] Subject: IMAP crash on index Message-ID: I'm running Dovecot 1.2.15 as an IMAP server on an up-to-date Debian v6 VM. I've recently upgraded the server from a pretty crusty old Debian v4 installation, though I don't recall exactly which version of Dovecot that would have been running. I guess I could try crawling through the old logs to check if it is likely to be useful. The upgrade seemed to have gone fine and I've been using the new server for about a week, but this morning I'm finding that whilst I can successfully connect to the IMAP server using Mutt, it can't display a mail index and a quick peek at the logs shows the IMAP process falling over: (account and server IP replaced) Jun 6 10:39:27 xen dovecot: Dovecot v1.2.15 starting up (core dumps disabled) Jun 6 10:39:27 xen dovecot: auth-worker(default): mysql: Connected to localhost (mail) Jun 6 10:39:34 xen dovecot: imap-login: Login: user=, method=PLAIN, rip=::1, lip=::1, TLS Jun 6 10:39:35 xen dovecot: IMAP(example at example.org): Panic: file mail-index-view.c: line 264 (view_lookup_seq_range): assertion failed: (first_uid > 0) Jun 6 10:39:35 xen dovecot: IMAP(example at example.org): Raw backtrace: imap() [0x80f0e1e] -> imap() [0x80f0e82] -> imap() [0x80f0809] -> imap() [0x80ceb17] -> imap(mail_index_lookup_seq+0x26) [0x80ce5f6] -> imap() [0x80c481d] -> imap(mail_index_modseq_hdr_update+0x2e) [0x80c48ee] -> imap(mail_index_sync_ext_hdr_update+0xbb) [0x80de91b] -> imap(mail_index_sync_record+0x40f) [0x80cd57f] -> imap(mail_index_sync_map+0x2dd) [0x80cdfed] -> imap(mail_index_map+0x5c7) [0x80c3557] -> imap() [0x80bfd87] -> imap(mail_index_open+0x23f) [0x80c01ff] -> imap(index_storage_mailbox_open+0x71) [0x80abc81] -> imap(maildir_storage_sync_init+0x188) [0x8086c18] -> imap(mailbox_sync+0x31) [0x80b59d1] -> imap(imap_status_get+0x8a) [0x806f0ea] -> imap(cmd_status+0x123) [0x8065dd3] -> imap() [0x8067b5c] -> imap() [0x8067c32] -> imap(client_handle_input+0x175) [0x8067eb5] -> imap(client_input+0x5f) [0x80686ef] -> imap(io_loop_handler_run+0xd6) [0x80f9aa6] -> imap(io_loop_run+0x20) [0x80f8f20] -> imap(main+0x5b4) [0x8070f24] -> /lib/i Jun 6 10:39:35 xen dovecot: IMAP(example at example.org): 76] -> imap() [0x80603a1] Jun 6 10:39:35 xen dovecot: dovecot: child 20617 (imap) killed with signal 6 (core dumps disabled) I've not been able to find any mentions of this error occurring for other people. I've not looked at the source to see what the server is trying to do at this point. Restarting the IMAP service doesn't help. Any suggestions or advice? From aperezaranda at yaco.es Mon Jun 6 13:18:28 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Mon, 6 Jun 2011 12:18:28 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> Message-ID: Umm, it isn't running. If I put plugin imap_quota forced on user_attrs, then IMAP and Dovedm doesn't run correctly. They can load this plugin. Maybe we can do a patch for ldap/config to avoid overwrite "all plugins" enabled and support to append to enabled? 2011/6/3 Antonio Perez-Aranda : > OK thanks. It isn't pretty but is running. > > 2011/6/3 Timo Sirainen : >> On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: >> >>> And in passwd-ldap.conf I have some like this to add extra plugins: >>> >>> user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins >> >> This completely overrides mail_plugins setting.. >> >>> With this. I can see that dovecot load all plugins from settings, but >>> in the user session, I can get only the plugins that I have selected >>> in mailPlugins field >>> >>> If i check some like this: >>> ? mailPlugins=mail_plugins=$mail_plugins %$, >> >> $mail_plugins variable works only inside dovecot.conf while the settings >> are being parsed. >> >>> The imap session user is aborted after login. >>> >>> >>> How can I add extra plugins by ldap without put on ldap all user plugins? >> >> The best you can do now is: >> >> mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ >> >> i.e. list the global plugins in here as well as in the global >> mail_plugins setting. >> >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From tss at iki.fi Mon Jun 6 17:26:35 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:26:35 +0300 Subject: [Dovecot] Subject: IMAP crash on index In-Reply-To: References: Message-ID: <1307370395.10421.666.camel@hurina> On Mon, 2011-06-06 at 11:09 +0100, Ruan Kendall wrote: > Jun 6 10:39:27 xen dovecot: Dovecot v1.2.15 starting up (core dumps disabled) > Jun 6 10:39:35 xen dovecot: IMAP(example at example.org): Panic: file > mail-index-view.c: line 264 (view_lookup_seq_range): assertion failed: > (first_uid > 0) rm dovecot.index* from this user's maildirs should fix the crash. There's a good chance this has already been fixed in v2.0. From tss at iki.fi Mon Jun 6 17:28:24 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:28:24 +0300 Subject: [Dovecot] Bug: Fixed a duplicate In-Reply-To: <2bc4fac0aefdaed93f678a53a1b55b67.squirrel@webmail.dreamcoder.dk> References: <4DE14A0D.6030704@tomsommer.dk> <1307106006.10421.583.camel@hurina> <2bc4fac0aefdaed93f678a53a1b55b67.squirrel@webmail.dreamcoder.dk> Message-ID: <1307370504.10421.667.camel@hurina> On Mon, 2011-06-06 at 11:46 +0200, Tom Sommer wrote: > On Fri, June 3, 2011 15:00, Timo Sirainen wrote: > > On Sat, 2011-05-28 at 21:16 +0200, Tom Sommer wrote: > > > >> I restored a dovecot mailserver today, and when I started the server > >> again, the logs filled up with "Fixed a duplicate" warnings. > >> > >> This in itself it not a problem, the problem is that it appears the fix > >> is not done correct. > > > > You shouldn't have restored an old maildir on top of an existing > > maildir. That is the main problem. The same mails had different flags > > (=different filenames), and Dovecot just renamed one of the files to > > make sure no mails got accidentally lost. In your case it should have just > > deleted the duplicates, but there's no such feature yet. Dovecot works > > exactly as intended here. The full explanation is more complex than I want > > to type right now. > > Would it be possible to set the correct timestamp on the renamed files, so > the timestamp remains the same as on the original? The timestamp is preserved. If you sort the messages by "received date", they are in the same order. From tss at iki.fi Mon Jun 6 17:30:17 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:30:17 +0300 Subject: [Dovecot] restore lost emails In-Reply-To: <952654.51089.qm@web113420.mail.gq1.yahoo.com> References: <952654.51089.qm@web113420.mail.gq1.yahoo.com> Message-ID: <1307370617.10421.669.camel@hurina> On Sun, 2011-06-05 at 21:06 -0700, Daminto Lie wrote: > Hi, > > I was wondering if anyone might be able to help me with this. I am running > Postfix 2.7.0, Dovecot 1.2.9 and squirrelmail. Every week, I perform a back-up > on both Postfix and Dovecot (maildir and conf folders). That's good because I > have all the emails backed up. And now what I would like to ask is whether or > not there are any easy way of restoring e-mails if some emails got deleted by > accident or for other reason. So far, I have tried to look up the answer on the > Internet but got a bit of vague answer. Other than finding and restoring the mail from backups, there's no simple way. Although you could configure Dovecot to do lazy-expunging: http://wiki.dovecot.org/Plugins/Lazyexpunge From tss at iki.fi Mon Jun 6 17:38:21 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:38:21 +0300 Subject: [Dovecot] doveadm problem with mail_plugins in database In-Reply-To: <4DEC10EF.3000403@siegnetz.de> References: <4DEC10EF.3000403@siegnetz.de> Message-ID: <1307371101.10421.675.camel@hurina> On Mon, 2011-06-06 at 01:27 +0200, Ralf Zimmermann wrote: > I use this user_query: .. > # doveadm fetch -u rzimmermann "hdr" savedbefore 3d > > doveadm(rzimmermann): Error: Can't load plugin imap_acl_plugin: Plugin > is intended to be used only by imap binary (we're doveadm) The user_query returns mail_plugins setting that includes imap_acl plugin. Which of course can't be loaded since doveadm isn't imap.. > Some doveadm commands runs fine. Here a example: > > - -------------------------------%<-------------------------------- > # doveadm user rzimmermann The problem happens only for doveadm commands that access mail storage. (The setting is mail_plugins - the plugins are irrelevant for non-mail commands.) > What can I do to get doveadm working with "'%s'='doveadm' then > mail_plugins"? Or must I use "'%s'='doveadm' then 'acl quota" in the > user_query? Well, the way I'd do it is something like (I don't know if this is valid SQL): concat(mail_plugins, case '%s'='lda' then ',sieve' case '%s'='lmtp' then ',sieve' case '%s'='imap' then ',imap_quota' ) AS mail_plugins Assuming everyone is using quota. If not, then change the imap part to check if mail_plugins contains quota and add imap_quota only if it does. From tss at iki.fi Mon Jun 6 17:43:10 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:43:10 +0300 Subject: [Dovecot] file rights for dictionary file In-Reply-To: References: Message-ID: <1307371390.10421.677.camel@hurina> On Sun, 2011-06-05 at 22:02 +0200, Michael K?hler wrote: > I use Debian Squeeze and the sources from Stephan Bosch. A few weeks ago I?ve upgraded from 2.0.11 to 2.0.13 and got an error Well, I haven't done any changes.. > May 29 20:01:53 mailserver dovecot: dict: Error: Can't open configuration file /etc/dovecot/dovecot-dict-sql.conf.ext: Permission denied With the current design this config file is opened late after dropping privileges. > and I could see that /etc/dovecot/dovecot-dict-sql.conf.ext is owning by root:root with 600. After changing to root:root 644 all works, but after each upgrade all files in /etc/dovecot will be set to 600. This config file contains sql password, so it shouldn't be world-readable. Maybe it should be root:dovecot 640, because "dict" process runs as dovecot user by default (and I'd guess dovecot group). From tss at iki.fi Mon Jun 6 17:46:31 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:46:31 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DEA37AF.4040202@gmail.com> References: <4DEA37AF.4040202@gmail.com> Message-ID: <1307371591.10421.680.camel@hurina> On Sat, 2011-06-04 at 21:48 +0800, johnw wrote: > i want to chroot lmtp with sieve, but have some problem, look like lmtp > can not load sieve's lib or something. > the error message like this: > > dovecot: lmtp(12799): Fatal: opendir(/usr/local/lib/dovecot) failed: No > such file or directory > > all is work fine, when not config lmtp chroot. > can i config lmtp load sieve before chroot? Not currently. Or you could put the sieve plugin inside the chroot (and maybe change protocol lmtp { mail_plugins_dir }). From tss at iki.fi Mon Jun 6 17:47:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:47:41 +0300 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error In-Reply-To: <4DE98FBC.203@gmail.com> References: <4DE98FBC.203@gmail.com> Message-ID: <1307371661.10421.681.camel@hurina> On Sat, 2011-06-04 at 09:51 +0800, Jin FengMing wrote: > > I have an email account configured as IMAP(dovecot-1.2.10) via > outlook > 2010. If I'm creating a *new* mailbox folder, for example "ttt", and > *copying* a mail into *that* mailbox folder, then an error message > window will be displayed. > > The problem caused by > C:UID FETCH 0 (UID FLAGS RFC822.SIZE BODY.PEEK[HEADER] INTERNALDATE) > S:3mgc BAD Error in IMAP command UID FETCH: Invalid uidset My guess: This happens with all IMAP servers, and there's nothing an IMAP server can do about it. It's simply wrong to FETCH UID 0. Even if Dovecot gave some reply to it, I don't know if Outlook could handle it. From jinfengming at gmail.com Mon Jun 6 18:05:23 2011 From: jinfengming at gmail.com (Jin FengMing) Date: Mon, 06 Jun 2011 23:05:23 +0800 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error In-Reply-To: <1307371661.10421.681.camel@hurina> References: <4DE98FBC.203@gmail.com> <1307371661.10421.681.camel@hurina> Message-ID: <4DECECB3.4030808@gmail.com> On 6/6/2011 22:47, Timo Sirainen wrote: > On Sat, 2011-06-04 at 09:51 +0800, Jin FengMing wrote: >> >> I have an email account configured as IMAP(dovecot-1.2.10) via >> outlook >> 2010. If I'm creating a *new* mailbox folder, for example "ttt", and >> *copying* a mail into *that* mailbox folder, then an error message >> window will be displayed. >> >> The problem caused by >> C:UID FETCH 0 (UID FLAGS RFC822.SIZE BODY.PEEK[HEADER] INTERNALDATE) >> S:3mgc BAD Error in IMAP command UID FETCH: Invalid uidset > > My guess: This happens with all IMAP servers, and there's nothing an > IMAP server can do about it. It's simply wrong to FETCH UID 0. Even if > Dovecot gave some reply to it, I don't know if Outlook could handle it. > > Thanks for your reply. Hope outlook guys can fix it.[1] [1] http://answers.microsoft.com/en-us/office/forum/office_2010-outlook/bug-outlook2010-uid-fetch-0-uid-flags-rfc822size/13a8610b-bed4-48c1-bd70-d2bc5cb342a7 Best regards. From shearwater at gmail.com Mon Jun 6 18:17:23 2011 From: shearwater at gmail.com (Ruan Kendall) Date: Mon, 6 Jun 2011 16:17:23 +0100 Subject: [Dovecot] Subject: IMAP crash on index In-Reply-To: <1307370395.10421.666.camel@hurina> References: <1307370395.10421.666.camel@hurina> Message-ID: On 6 June 2011 15:26, Timo Sirainen wrote: > > rm dovecot.index* from this user's maildirs should fix the crash. > There's a good chance this has already been fixed in v2.0. > Deleteing the index files doesn't seem to help; firing up mutt shows me a message saying that the index is being rebuilt but once that process has completed the connection closes and the log shows the same error message as before. I did consider testing out v2, but alas there are no convenient packages in any of the stable debian releases. From johnw.mail at gmail.com Mon Jun 6 18:20:19 2011 From: johnw.mail at gmail.com (johnw) Date: Mon, 06 Jun 2011 23:20:19 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307371591.10421.680.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> Message-ID: On Mon, 06 Jun 2011 17:46:31 +0300, Timo Sirainen wrote: > On Sat, 2011-06-04 at 21:48 +0800, johnw wrote: >> i want to chroot lmtp with sieve, but have some problem, look like >> lmtp >> can not load sieve's lib or something. >> the error message like this: >> >> dovecot: lmtp(12799): Fatal: opendir(/usr/local/lib/dovecot) failed: >> No >> such file or directory >> >> all is work fine, when not config lmtp chroot. >> can i config lmtp load sieve before chroot? > > Not currently. Or you could put the sieve plugin inside the chroot > (and > maybe change protocol lmtp { mail_plugins_dir }). after copy those sieve's thing to chroot_dir, and link the userdb socket to chroot_dir. i see the error like this: (lmtp) Couldn't drop privileges: Process is already chrooted, can't un-chroot for this user i already config mail_chroot, should i remove it?(mail_chroot) any how-to document is for lmtp chroot? please help, and thank you. From tss at iki.fi Mon Jun 6 18:27:11 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:27:11 +0300 Subject: [Dovecot] Using Dovecot new version 2.0.13 facing issues. In-Reply-To: References: Message-ID: <1307374031.10421.682.camel@hurina> On Fri, 2011-06-03 at 22:57 +0530, ???? ???? wrote: > Hi, > > I have configured POP-IMAP server with dovecot 2.0.13 with mysql support. > When I am running load test on the same I face issue on IMAP connections. I > get "dovecot: imap-login: Error: fd_send(imap, 15) failed: Interrupted > system call" followed by "dovecot: imap-login: Internal login failure" in > log files. See if these patches help: http://hg.dovecot.org/dovecot-2.0/rev/86e4023d08e4 http://hg.dovecot.org/dovecot-2.0/rev/6fdee880c5dc From tss at iki.fi Mon Jun 6 18:28:13 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:28:13 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> Message-ID: <1307374093.10421.683.camel@hurina> On Mon, 2011-06-06 at 23:20 +0800, johnw wrote: > (lmtp) Couldn't drop privileges: Process is already chrooted, can't > un-chroot for this user > > i already config mail_chroot, should i remove it?(mail_chroot) > any how-to document is for lmtp chroot? protocol !lmtp { mail_chroot = /somewhere } From tss at iki.fi Mon Jun 6 18:29:25 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:29:25 +0300 Subject: [Dovecot] Subject: IMAP crash on index In-Reply-To: References: <1307370395.10421.666.camel@hurina> Message-ID: <1307374165.10421.684.camel@hurina> On Mon, 2011-06-06 at 16:17 +0100, Ruan Kendall wrote: > On 6 June 2011 15:26, Timo Sirainen wrote: > > > > rm dovecot.index* from this user's maildirs should fix the crash. > > There's a good chance this has already been fixed in v2.0. > > > > Deleteing the index files doesn't seem to help; Are you sure you deleted the right index? Each folder has one. This error really should go away with deleting the correct dovecot.index.log file. > firing up mutt shows > me a message saying that the index is being rebuilt That's mutt's index, not Dovecot's. From johnw at wonghome.net Mon Jun 6 18:08:58 2011 From: johnw at wonghome.net (John Wong) Date: Mon, 06 Jun 2011 23:08:58 +0800 Subject: [Dovecot] after upgrade to 2.x, sieve do not create folder Message-ID: after upgrade to 2.x, sieve do not create folder, which do not exist. i remenber(maybe wrong) 1.2.x sieve plugin will create folder, if it do not exist. the sieve log like this failed to store into mailbox 'dovecot': Mailbox doesn't exist: dovecot can i config sieve automatic create the folder? please help, and thank you. From shearwater at gmail.com Mon Jun 6 18:36:17 2011 From: shearwater at gmail.com (Ruan Kendall) Date: Mon, 6 Jun 2011 16:36:17 +0100 Subject: [Dovecot] Subject: IMAP crash on index In-Reply-To: <1307374165.10421.684.camel@hurina> References: <1307370395.10421.666.camel@hurina> <1307374165.10421.684.camel@hurina> Message-ID: Ahh, I'd failed to get rid of the index files in all of the subfolders. My bad. Everything seems to be working fine now. Thanks for your help! On 6 June 2011 16:29, Timo Sirainen wrote: > On Mon, 2011-06-06 at 16:17 +0100, Ruan Kendall wrote: >> On 6 June 2011 15:26, Timo Sirainen wrote: >> > >> > rm dovecot.index* from this user's maildirs should fix the crash. >> > There's a good chance this has already been fixed in v2.0. >> > >> >> Deleteing the index files doesn't seem to help; > > Are you sure you deleted the right index? Each folder has one. This > error really should go away with deleting the correct dovecot.index.log > file. > >> firing up mutt shows >> me a message saying that the index is being rebuilt > > That's mutt's index, not Dovecot's. > > > From johnw.mail at gmail.com Mon Jun 6 18:36:50 2011 From: johnw.mail at gmail.com (johnw) Date: Mon, 06 Jun 2011 23:36:50 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307374093.10421.683.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> Message-ID: <4DECF412.4010704@gmail.com> On 2011?06?06? 23:28, Timo Sirainen wrote: > On Mon, 2011-06-06 at 23:20 +0800, johnw wrote: >> (lmtp) Couldn't drop privileges: Process is already chrooted, can't >> un-chroot for this user >> >> i already config mail_chroot, should i remove it?(mail_chroot) >> any how-to document is for lmtp chroot? > protocol !lmtp { > mail_chroot = /somewhere > } > > doveconf: Fatal: Error in configuration file /etc/dovecot/conf.d/10-master.conf line 50: Unknown setting: mail_chroot From tss at iki.fi Mon Jun 6 18:38:34 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:38:34 +0300 Subject: [Dovecot] after upgrade to 2.x, sieve do not create folder In-Reply-To: References: Message-ID: <1307374714.10421.687.camel@hurina> On Mon, 2011-06-06 at 23:08 +0800, John Wong wrote: > after upgrade to 2.x, sieve do not create folder, which do not exist. > i remenber(maybe wrong) 1.2.x sieve plugin will create folder, if it do > not exist. > > the sieve log like this > failed to store into mailbox 'dovecot': Mailbox doesn't exist: dovecot > > can i config sieve automatic create the folder? The proper way to do this would be to add :create to the Sieve script: fileinto :create "dovecot" But I think lda_mailbox_autocreate=yes might also fix this for you. From tss at iki.fi Mon Jun 6 18:39:11 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:39:11 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DECF412.4010704@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> Message-ID: <1307374751.10421.688.camel@hurina> On Mon, 2011-06-06 at 23:36 +0800, johnw wrote: > On 2011?06?06? 23:28, Timo Sirainen wrote: > > On Mon, 2011-06-06 at 23:20 +0800, johnw wrote: > >> (lmtp) Couldn't drop privileges: Process is already chrooted, can't > >> un-chroot for this user > >> > >> i already config mail_chroot, should i remove it?(mail_chroot) > >> any how-to document is for lmtp chroot? > > protocol !lmtp { > > mail_chroot = /somewhere > > } > > > > > doveconf: Fatal: Error in configuration file > /etc/dovecot/conf.d/10-master.conf line 50: Unknown setting: mail_chroot Did you put it inside service lmtp {} or something? That's different from protocol lmtp {} From duane at duanemail.org Mon Jun 6 18:51:41 2011 From: duane at duanemail.org (Duane Hill) Date: Mon, 6 Jun 2011 10:51:41 -0500 Subject: [Dovecot] after upgrade to 2.x, sieve do not create folder In-Reply-To: <1307374714.10421.687.camel@hurina> References: <1307374714.10421.687.camel@hurina> Message-ID: <365544613.20110606105141@duanemail.org> Monday, June 6, 2011, 10:38:34 AM, Timo wrote: > On Mon, 2011-06-06 at 23:08 +0800, John Wong wrote: >> after upgrade to 2.x, sieve do not create folder, which do not exist. >> i remenber(maybe wrong) 1.2.x sieve plugin will create folder, if it do >> not exist. >> >> the sieve log like this >> failed to store into mailbox 'dovecot': Mailbox doesn't exist: dovecot >> >> can i config sieve automatic create the folder? > The proper way to do this would be to add :create to the Sieve script: > fileinto :create "dovecot" > But I think lda_mailbox_autocreate=yes might also fix this for you. 'lda_mailbox_autocreate = yes' fixed it for me. I also added: lda_mailbox_autosubscribe = yes so the mailbox would be subscribed automatically. -- Best regards, Duane mailto:duane at duanemail.org From ivan.rodrigues at gmail.com Mon Jun 6 19:00:18 2011 From: ivan.rodrigues at gmail.com (Ivan Rodrigues) Date: Mon, 6 Jun 2011 13:00:18 -0300 Subject: [Dovecot] Please HELP, TRASH won't work at all Message-ID: Folks, I'm setting a imap server here to store our mails, no need for quota or anything fancy, we just need trash can to work, when I mark a message to delete, this message to be moved to trash folder. that's all that I need. any thoughts? From johnw.mail at gmail.com Mon Jun 6 19:02:46 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 00:02:46 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307374751.10421.688.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> Message-ID: <4DECFA26.7020704@gmail.com> On 2011?06?06? 23:39, Timo Sirainen wrote: > On Mon, 2011-06-06 at 23:36 +0800, johnw wrote: >> On 2011?06?06? 23:28, Timo Sirainen wrote: >>> On Mon, 2011-06-06 at 23:20 +0800, johnw wrote: >>>> (lmtp) Couldn't drop privileges: Process is already chrooted, can't >>>> un-chroot for this user >>>> >>>> i already config mail_chroot, should i remove it?(mail_chroot) >>>> any how-to document is for lmtp chroot? >>> protocol !lmtp { >>> mail_chroot = /somewhere >>> } >>> >>> >> doveconf: Fatal: Error in configuration file >> /etc/dovecot/conf.d/10-master.conf line 50: Unknown setting: mail_chroot > Did you put it inside service lmtp {} or something? That's different > from protocol lmtp {} > > i added it to 20-lmtp.conf, is it correct? ----------------------------------- ## ## LMTP specific settings ## # Support proxying to other LMTP/SMTP servers by performing passdb lookups. #lmtp_proxy = no # When recipient address includes the detail (e.g. user+detail), try to save # the mail to the detail mailbox. See also recipient_delimiter and # lda_mailbox_autocreate settings. #lmtp_save_to_detail_mailbox = no protocol lmtp { # Space separated list of plugins to load (default is global mail_plugins). mail_plugins = $mail_plugins sieve } protocol !lmtp { mail_chroot = /var/vmail/ } ---------------------------------- then, i still see this error in log: Couldn't drop privileges: Process is already chrooted, can't un-chroot for this user From tss at iki.fi Mon Jun 6 19:09:20 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 19:09:20 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DECFA26.7020704@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> Message-ID: <1307376560.10421.690.camel@hurina> On Tue, 2011-06-07 at 00:02 +0800, johnw wrote: > >>>> i already config mail_chroot, should i remove it?(mail_chroot) > >>>> any how-to document is for lmtp chroot? > >>> protocol !lmtp { > >>> mail_chroot = /somewhere > >>> } > >>> > i added it to 20-lmtp.conf, is it correct? It doesn't matter where you add it, as long as the "doveconf -n" output looks correct. > protocol !lmtp { > mail_chroot = /var/vmail/ > } Looks right. > then, i still see this error in log: > Couldn't drop privileges: Process is already chrooted, can't un-chroot > for this user Is there another mail_chroot setting elsewhere? The important thing is that when you do: doveconf mail_chroot it shows the chroot, but when you do: doveconf -f protocol=lmtp mail_chroot the result should be empty. From johnw.mail at gmail.com Mon Jun 6 19:15:21 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 00:15:21 +0800 Subject: [Dovecot] after upgrade to 2.x, sieve do not create folder In-Reply-To: <1307374714.10421.687.camel@hurina> References: <1307374714.10421.687.camel@hurina> Message-ID: <4DECFD19.30601@gmail.com> On 2011?06?06? 23:38, Timo Sirainen wrote: > On Mon, 2011-06-06 at 23:08 +0800, John Wong wrote: >> after upgrade to 2.x, sieve do not create folder, which do not exist. >> i remenber(maybe wrong) 1.2.x sieve plugin will create folder, if it do >> not exist. >> >> the sieve log like this >> failed to store into mailbox 'dovecot': Mailbox doesn't exist: dovecot >> >> can i config sieve automatic create the folder? > The proper way to do this would be to add :create to the Sieve script: > > fileinto :create "dovecot" > > But I think lda_mailbox_autocreate=yes might also fix this for you. > > yes, lda_mailbox_autocreate = yes, work just fine. thank all. From johnw.mail at gmail.com Mon Jun 6 19:32:43 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 00:32:43 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307376560.10421.690.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> Message-ID: <4DED012B.6080506@gmail.com> On 2011?06?07? 00:09, Timo Sirainen wrote: > On Tue, 2011-06-07 at 00:02 +0800, johnw wrote: >>>>>> i already config mail_chroot, should i remove it?(mail_chroot) >>>>>> any how-to document is for lmtp chroot? >>>>> protocol !lmtp { >>>>> mail_chroot = /somewhere >>>>> } >>>>> >> i added it to 20-lmtp.conf, is it correct? > It doesn't matter where you add it, as long as the "doveconf -n" output > looks correct. > >> protocol !lmtp { >> mail_chroot = /var/vmail/ >> } > Looks right. > >> then, i still see this error in log: >> Couldn't drop privileges: Process is already chrooted, can't un-chroot >> for this user > Is there another mail_chroot setting elsewhere? The important thing is > that when you do: > > doveconf mail_chroot > > it shows the chroot, but when you do: > > doveconf -f protocol=lmtp mail_chroot > > the result should be empty. > when i have mail_chroot = /var/vmail/ in 10-mail.conf both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot result is same: mail_chroot = /var/vmail/ when i remove mail_chroot = /var/vmail/ in 10-mail.conf both result is empty: mail_chroot = i have only one mail_chroot setting in 10-mail.conf, but i also have valid_chroot_dirs = /var/vmail/. is it matter? From tss at iki.fi Mon Jun 6 19:42:28 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 6 Jun 2011 19:42:28 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DED012B.6080506@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> Message-ID: <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> On 6.6.2011, at 19.32, johnw wrote: >> Is there another mail_chroot setting elsewhere? The important thing is >> that when you do: >> >> doveconf mail_chroot >> >> it shows the chroot, but when you do: >> >> doveconf -f protocol=lmtp mail_chroot >> >> the result should be empty. >> > when i have mail_chroot = /var/vmail/ in 10-mail.conf > both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot > result is same: mail_chroot = /var/vmail/ > > when i remove mail_chroot = /var/vmail/ in 10-mail.conf > both result is empty: mail_chroot = Put that mail_chroot setting inside the protocol !lmtp {} section. The settings don't have any hard coded places in the config files. You can put anything anywhere.. > i have only one mail_chroot setting in 10-mail.conf, > but i also have valid_chroot_dirs = /var/vmail/. > is it matter? valid_chroot_dirs is ignored when mail_chroot is set. From johnw.mail at gmail.com Mon Jun 6 19:59:52 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 00:59:52 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> Message-ID: <4DED0788.9070406@gmail.com> On 2011?06?07? 00:42, Timo Sirainen wrote: > On 6.6.2011, at 19.32, johnw wrote: > >>> Is there another mail_chroot setting elsewhere? The important thing is >>> that when you do: >>> >>> doveconf mail_chroot >>> >>> it shows the chroot, but when you do: >>> >>> doveconf -f protocol=lmtp mail_chroot >>> >>> the result should be empty. >>> >> when i have mail_chroot = /var/vmail/ in 10-mail.conf >> both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot >> result is same: mail_chroot = /var/vmail/ >> >> when i remove mail_chroot = /var/vmail/ in 10-mail.conf >> both result is empty: mail_chroot = > Put that mail_chroot setting inside the protocol !lmtp {} section. The settings don't have any hard coded places in the config files. You can put anything anywhere.. > yes, i did it (put the mail_chroot inside the protocol !lmtp { mail_chroot = /var/vmail/ } and no mail_chroot anywhere. but the both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot result is same empty: mail_chroot = then i retry add the mail_chroot = /var/vmail/ in (somewhere)10-mail.conf(i know it can be anywhere), and still have protocol !lmtp { mail_chroot = /var/vmail/ } then the both result is same: mail_chroot = /var/vmail/ i mean the protocol !lmtp { mail_chroot = /var/vmail/ }, look like not working. From CMarcus at Media-Brokers.com Mon Jun 6 20:55:35 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 06 Jun 2011 13:55:35 -0400 Subject: [Dovecot] Please HELP, TRASH won't work at all In-Reply-To: References: Message-ID: <4DED1497.2090709@Media-Brokers.com> On 2011-06-06 12:00 PM, Ivan Rodrigues wrote: > I'm setting a imap server here to store our mails, no need for quota or > anything fancy, we just need trash can to work, when I mark a message to > delete, this message to be moved to trash folder. That is the job of the client... and each client does it differently... -- Best regards, Charles From tss at iki.fi Mon Jun 6 21:41:48 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 6 Jun 2011 21:41:48 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DED0788.9070406@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> Message-ID: <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> On 6.6.2011, at 19.59, johnw wrote: > yes, i did it (put the mail_chroot inside the protocol !lmtp { mail_chroot = /var/vmail/ } > and no mail_chroot anywhere. > > but the both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot > result is same empty: mail_chroot = Oh, looks like doveconf didn't work exactly as I thought :) Small modification to the test then: doveconf -f protocol=imap mail_chroot doveconf -f protocol=lmtp mail_chroot Now it should show the chroot with imap, but not with lmtp. From sf.rique at gmail.com Tue Jun 7 00:45:39 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Mon, 6 Jun 2011 18:45:39 -0300 Subject: [Dovecot] Doveadm index! Message-ID: Hello folks, I recent update my dovecot 2.0.6 to the version 2.0.13 cause i wanted to use dovecot index to build fts squat for users! I noticed that there is no log for the fts build action, it does log all actions to the normal index.cache. Timo, could you add some logging please? And also, if possible an option to cache all mailbox of the users! Thanks a lot! Right now is already helping me a lot. []'sf.rique From dlie76 at yahoo.com.au Tue Jun 7 05:29:38 2011 From: dlie76 at yahoo.com.au (Daminto Lie) Date: Mon, 6 Jun 2011 19:29:38 -0700 (PDT) Subject: [Dovecot] restore lost emails In-Reply-To: <1307370617.10421.669.camel@hurina> References: <952654.51089.qm@web113420.mail.gq1.yahoo.com> <1307370617.10421.669.camel@hurina> Message-ID: <12594.94760.qm@web113414.mail.gq1.yahoo.com> ________________________________ From: Timo Sirainen To: Daminto Lie Cc: dovecot at dovecot.org Sent: Tue, 7 June, 2011 12:30:17 AM Subject: Re: [Dovecot] restore lost emails On Sun, 2011-06-05 at 21:06 -0700, Daminto Lie wrote: > Hi, > > I was wondering if anyone might be able to help me with this. I am running > Postfix 2.7.0, Dovecot 1.2.9 and squirrelmail. Every week, I perform a back-up > on both Postfix and Dovecot (maildir and conf folders). That's good because I > have all the emails backed up. And now what I would like to ask is whether or > not there are any easy way of restoring e-mails if some emails got deleted by > accident or for other reason. So far, I have tried to look up the answer on the > > Internet but got a bit of vague answer. Other than finding and restoring the mail from backups, there's no simple way. Although you could configure Dovecot to do lazy-expunging: http://wiki.dovecot.org/Plugins/Lazyexpunge Thank you for your reply, Timo. OK, but if I want to restore a particular mail from backups, what're the steps involved? What I mean is do I just copy and paste that mail file from backups to the user account maildir folder and what program should I run to synchronize it. Thank you once again From trever.adams at gmail.com Tue Jun 7 07:57:40 2011 From: trever.adams at gmail.com (Trever L. Adams) Date: Mon, 06 Jun 2011 22:57:40 -0600 Subject: [Dovecot] possible bug leading to lmtp crashes In-Reply-To: <4DD5191E.9040606@gmail.com> References: <4DAECAAC.3060903@gmail.com> <4DB58F67.4090600@gmail.com> <4DB6FCF7.9070905@gmail.com> <5D19A866-381B-4CA6-B8FF-0F7BCDA36799@iki.fi> <4DBC3F3F.4030605@gmail.com> <1304957973.10421.101.camel@hurina> <4DCA7C6F.40902@gmail.com> <1305116849.10421.192.camel@hurina> <4DD5191E.9040606@gmail.com> Message-ID: <4DEDAFC4.3080400@gmail.com> On 05/19/2011 07:20 AM, Trever L. Adams wrote: > > May 17 04:01:02 dovecot: auth: Panic: file ../../src/lib/array.h: line > 189 (array_idx_i): assertion failed: (idx * array->element_size < > array->buffer->used) > > This is usually repeated 2 or more times near a crash. On the machine > that doesn't crash, I NEVER see this. On the machines that crash, there > isn't (or doesn't seem to be) a 1:1 correlation. ** THERE IS A 1:1 FOUND LATER ** > > Trever Ok, I think I have figured out the cause, but no the problem in the code. There were three machines TS, PP, ST. TS and ST had identical configurations with auth_username_format = %Lu. PP had it = %u. PP started crashing when I changed it to %Lu. As mentioned the kerberos/ldap setup is Samba4 here. PP had administrator and guest all lower case, ST had administrator but Guest. TS had Administrator and Guest. When I changed all auth_username_format=%u and ST Guest to guest (in userPrincipalName, I didn't mess with anything else), ST and PP stopped having any problems (at least for the last 6 hours even with things like the doveadm calls below which would always have at least one crash). I just changed TS to be administrator and guest and did the doveadm and some other things. No crashes. So, why is this the case when it will deliver (dovecot deliver) the email but will cause crashes some times? I do not know why. And logins work to imaps. The doveadm: doveadm expunge -A mailbox TRASH savedbefore 30d doveadm expunge -A mailbox SPAM savedbefore 30d doveadm expunge -A mailbox SPAM savedbefore 2d SEEN doveadm expunge -A mailbox Dangerous savedbefore 1w doveadm expunge -A mailbox Infected savedbefore 1w (complete backtraces of some things found at: https://bugzilla.redhat.com/show_bug.cgi?id=697325) Thank you, Trever Adams -- "To fall in love is to create a religion that has a fallible god." -- JLB -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From dovecot at lists.wgwh.ch Tue Jun 7 08:43:54 2011 From: dovecot at lists.wgwh.ch (Oli Schacher) Date: Tue, 7 Jun 2011 07:43:54 +0200 Subject: [Dovecot] restore lost emails In-Reply-To: <12594.94760.qm@web113414.mail.gq1.yahoo.com> References: <952654.51089.qm@web113420.mail.gq1.yahoo.com> <1307370617.10421.669.camel@hurina> <12594.94760.qm@web113414.mail.gq1.yahoo.com> Message-ID: <20110607074354.5cdfb6b3@boscos> On Mon, 6 Jun 2011 19:29:38 -0700 (PDT) Daminto Lie wrote: > OK, but if I want to restore a particular mail from backups, what're > the steps involved? What I mean is do I just copy and paste that mail > file from backups to the user account maildir folder and what program > should I run to synchronize it. > exactly, just copy the mail from your backup back into the users maildir (usually into 'cur'). Make sure the permissions of the restored file are correct. No need to synchronize anything, dovecot automatically detects the added message. From johnw.mail at gmail.com Tue Jun 7 10:57:03 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 15:57:03 +0800 Subject: [Dovecot] virtual plugin, delete mail Message-ID: <17fb14bd-cd6b-4524-9e86-71cb67eca550@email.android.com> i use dovecot 2.0.x as imap server,i setup virtual plugin to view all unseen mail. when i delete the mail, it do not delete the real mail, the mail still exist in some mailbox. can i config virtual plugin delete the real mail? please help, and thank you. -- Sent from my Android phone with K-9 Mail. Please excuse my brevity. From f.bonnet at esiee.fr Tue Jun 7 10:58:37 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Tue, 07 Jun 2011 09:58:37 +0200 Subject: [Dovecot] How Dovecot 2 create folders and subfolders ( MBOX format ) with TB ? Message-ID: <4DEDDA2D.1000103@esiee.fr> Hello When creating new IMAP folder with thunderbird and Dovecot configured with the std MBOX format dovecot create a file in mbox format and so it is not possible to create a subfolder of this folder. If you ask to create a NEW subfolder of the form : TOTO/TATA Dovecot create a directory TOTO containing a mbox file TATA. Very useful :-) I suppose the "/" separator is parsed by dovecot then it creates a directory containing the mbox file. Am I right ? From wgillespie+dovecot at es2eng.com Tue Jun 7 11:24:01 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Tue, 07 Jun 2011 02:24:01 -0600 Subject: [Dovecot] How Dovecot 2 create folders and subfolders ( MBOX format ) with TB ? In-Reply-To: <4DEDDA2D.1000103@esiee.fr> References: <4DEDDA2D.1000103@esiee.fr> Message-ID: <4DEDE021.6010508@es2eng.com> On 6/7/2011 1:58 AM, Frank Bonnet wrote: > Hello > > When creating new IMAP folder with thunderbird and Dovecot > configured with the std MBOX format dovecot create a file in > mbox format and so it is not possible to create a subfolder of > this folder. > > If you ask to create a NEW subfolder of the form : TOTO/TATA > Dovecot create a directory TOTO containing a mbox file TATA. > > Very useful :-) > > I suppose the "/" separator is parsed by dovecot then it creates > a directory containing the mbox file. Am I right ? With MBOX, that is correct. You can also just throw a separator at the end, like TOTO/ and it will create a folder that accepts subfolders. Thunderbird is a little buggy in this area though with how it decides to treat them. I submitted a patch last month to help with a bug Timo had found, but of course they haven't done anything about it. https://bugzilla.mozilla.org/show_bug.cgi?id=301714#c15 From f.bonnet at esiee.fr Tue Jun 7 13:39:00 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Tue, 07 Jun 2011 12:39:00 +0200 Subject: [Dovecot] How Dovecot 2 create folders and subfolders ( MBOX format ) with TB ? In-Reply-To: <4DEDE021.6010508@es2eng.com> References: <4DEDDA2D.1000103@esiee.fr> <4DEDE021.6010508@es2eng.com> Message-ID: <4DEDFFC4.5030209@esiee.fr> On 06/07/2011 10:24 AM, Willie Gillespie wrote: > On 6/7/2011 1:58 AM, Frank Bonnet wrote: >> Hello >> >> When creating new IMAP folder with thunderbird and Dovecot >> configured with the std MBOX format dovecot create a file in >> mbox format and so it is not possible to create a subfolder of >> this folder. >> >> If you ask to create a NEW subfolder of the form : TOTO/TATA >> Dovecot create a directory TOTO containing a mbox file TATA. >> >> Very useful :-) >> >> I suppose the "/" separator is parsed by dovecot then it creates >> a directory containing the mbox file. Am I right ? > > With MBOX, that is correct. > You can also just throw a separator at the end, like TOTO/ and it will > create a folder that accepts subfolders. Thunderbird is a little > buggy in this area though with how it decides to treat them. > I submitted a patch last month to help with a bug Timo had found, but > of course they haven't done anything about it. > > https://bugzilla.mozilla.org/show_bug.cgi?id=301714#c15 Do you have any other MUA recommendation ? From johnw.mail at gmail.com Tue Jun 7 14:19:46 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 19:19:46 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> Message-ID: <4DEE0952.3030001@gmail.com> On 2011?06?07? 02:41, Timo Sirainen wrote: > On 6.6.2011, at 19.59, johnw wrote: > >> yes, i did it (put the mail_chroot inside the protocol !lmtp { mail_chroot = /var/vmail/ } >> and no mail_chroot anywhere. >> >> but the both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot >> result is same empty: mail_chroot = > Oh, looks like doveconf didn't work exactly as I thought :) Small modification to the test then: > > doveconf -f protocol=imap mail_chroot > doveconf -f protocol=lmtp mail_chroot > > Now it should show the chroot with imap, but not with lmtp. > yes, like you said root at shell:[/etc/dovecot/conf.d]# doveconf -f protocol=imap mail_chroot mail_chroot = /var/vmail/ root at shell:[/etc/dovecot/conf.d]# doveconf -f protocol=lmtp mail_chroot mail_chroot = but still have the error Couldn't drop privileges: Process is already chrooted, can't un-chroot for this user and lmtp can not delivery mail From varia at e-healthexpert.org Tue Jun 7 14:45:02 2011 From: varia at e-healthexpert.org (Mark Alan) Date: Tue, 7 Jun 2011 12:45:02 +0100 Subject: [Dovecot] How Dovecot 2 create folders and subfolders ( MBOX format ) with TB ? In-Reply-To: <4DEDFFC4.5030209@esiee.fr> References: <4DEDDA2D.1000103@esiee.fr> <4DEDE021.6010508@es2eng.com> <4DEDFFC4.5030209@esiee.fr> Message-ID: <20110607124502.7c15f6f0@e-healthexpert.org> On Tue, 07 Jun 2011 12:39:00 +0200, Frank Bonnet wrote: > > Do you have any other MUA recommendation ? > http://www.claws-mail.org/ From tss at iki.fi Tue Jun 7 15:18:47 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 15:18:47 +0300 Subject: [Dovecot] possible bug leading to lmtp crashes In-Reply-To: <4DEDAFC4.3080400@gmail.com> References: <4DAECAAC.3060903@gmail.com> <4DB58F67.4090600@gmail.com> <4DB6FCF7.9070905@gmail.com> <5D19A866-381B-4CA6-B8FF-0F7BCDA36799@iki.fi> <4DBC3F3F.4030605@gmail.com> <1304957973.10421.101.camel@hurina> <4DCA7C6F.40902@gmail.com> <1305116849.10421.192.camel@hurina> <4DD5191E.9040606@gmail.com> <4DEDAFC4.3080400@gmail.com> Message-ID: <1307449127.10421.700.camel@hurina> On Mon, 2011-06-06 at 22:57 -0600, Trever L. Adams wrote: > On 05/19/2011 07:20 AM, Trever L. Adams wrote: > > > > May 17 04:01:02 dovecot: auth: Panic: file ../../src/lib/array.h: line > > 189 (array_idx_i): assertion failed: (idx * array->element_size < > > array->buffer->used) > > > > This is usually repeated 2 or more times near a crash. On the machine > > that doesn't crash, I NEVER see this. On the machines that crash, there > > isn't (or doesn't seem to be) a 1:1 correlation. ** THERE IS A 1:1 FOUND LATER ** > > > > Trever > Ok, I think I have figured out the cause, but no the problem in the > code. There were three machines TS, PP, ST. TS and ST had identical > configurations with auth_username_format = %Lu. PP had it = %u. PP > started crashing when I changed it to %Lu. I don't see why that would matter, but I think this will help: http://hg.dovecot.org/dovecot-2.0/rev/c0734f08b3f3 From tss at iki.fi Tue Jun 7 16:13:12 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:13:12 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DEE0952.3030001@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> <4DEE0952.3030001@gmail.com> Message-ID: <1307452392.10421.712.camel@hurina> On Tue, 2011-06-07 at 19:19 +0800, johnw wrote: > Couldn't drop privileges: Process is already chrooted, can't un-chroot > for this user > > and lmtp can not delivery mail This'll fix it: http://hg.dovecot.org/dovecot-2.0/rev/ed05316ed441 Also remove the protocol !lmtp {} around mail_chroot. Looks like I already had code that was supposed to handle it, but I had forgotten about it and I had never tested it. From johnw.mail at gmail.com Tue Jun 7 16:13:36 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 21:13:36 +0800 Subject: [Dovecot] lmtp lowercase/uppercase mailbox problem Message-ID: <4DEE2400.8000303@gmail.com> after upgrade to 2.0.x, and change dovecot-lda to dovecot-lmtp as mail deliver. i find the lowercase/uppercase mail box problem, i see some mail is delivery to uppercase mail box, (my mail box is /var/vmail/johnw, now i see some mail in /var/vmail/JOHNW, i use maildir) it did not happen before. (dovecot 1.2.x with dovecot-lda) anyone can point me which config/setting, should i looking for? i use postfix as smtp server, and i use virtual mailuser. both user info is stored in mysql database. please help, and thank you. From tss at iki.fi Tue Jun 7 16:15:34 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:15:34 +0300 Subject: [Dovecot] lmtp lowercase/uppercase mailbox problem In-Reply-To: <4DEE2400.8000303@gmail.com> References: <4DEE2400.8000303@gmail.com> Message-ID: <1307452534.10421.713.camel@hurina> On Tue, 2011-06-07 at 21:13 +0800, johnw wrote: > after upgrade to 2.0.x, and change dovecot-lda to dovecot-lmtp as mail > deliver. > i find the lowercase/uppercase mail box problem, > i see some mail is delivery to uppercase mail box, > (my mail box is /var/vmail/johnw, now i see some mail in > /var/vmail/JOHNW, i use maildir) > it did not happen before. (dovecot 1.2.x with dovecot-lda) > > anyone can point me which config/setting, should i looking for? Easiest fix: auth_username_format = %Lu From johnw.mail at gmail.com Tue Jun 7 16:20:13 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 21:20:13 +0800 Subject: [Dovecot] lmtp lowercase/uppercase mailbox problem In-Reply-To: <1307452534.10421.713.camel@hurina> References: <4DEE2400.8000303@gmail.com> <1307452534.10421.713.camel@hurina> Message-ID: <4DEE258D.5070407@gmail.com> On 2011?06?07? 21:15, Timo Sirainen wrote: > On Tue, 2011-06-07 at 21:13 +0800, johnw wrote: >> after upgrade to 2.0.x, and change dovecot-lda to dovecot-lmtp as mail >> deliver. >> i find the lowercase/uppercase mail box problem, >> i see some mail is delivery to uppercase mail box, >> (my mail box is /var/vmail/johnw, now i see some mail in >> /var/vmail/JOHNW, i use maildir) >> it did not happen before. (dovecot 1.2.x with dovecot-lda) >> >> anyone can point me which config/setting, should i looking for? > Easiest fix: auth_username_format = %Lu > > It work just fine, thank you. From robert at schetterer.org Tue Jun 7 16:23:30 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 07 Jun 2011 15:23:30 +0200 Subject: [Dovecot] uid=error and BUG: Unknown internal error dovecot 2.0.13 Message-ID: <4DEE2652.8060602@schetterer.org> Hi Timo, i have a few ( not really many ) errors like this with lmtp Jun 7 09:41:23 mail02 dovecot: lmtp(11034, user at user.de): DELlOoq+7U0aKwAAZA6IsQ: msgid=<4DEDD502.705020 at ameriton.com>: save failed to INBOX: BUG: Unknown internal error Jun 7 09:36:22 mail01 dovecot: lmtp(26456, user at user.de): save: box=INBOX, uid=error, msgid=, size=7192 any idea ? is it critical, possible to loose mails with this ? system are two postfix/dovecot servers with drbd and ocfs2 store behind load balancers -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From matt at inter7.com Tue Jun 7 16:43:34 2011 From: matt at inter7.com (Matt Brookings) Date: Tue, 07 Jun 2011 08:43:34 -0500 Subject: [Dovecot] Patch for vpopmail roaming users support Message-ID: <4DEE2B06.7000007@inter7.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Timo, here is a patch against the Mercurial repository that fixes and updates the support for roaming users under the vpopmail module. Thanks! - -- /* Matt Brookings GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk3uKwMACgkQIwet2/rgZyyBVACfQJkigTq3dMC9+bk+dhr6UgyW bVIAnA4xtylbGpATJV0f1lgLQMo0RzMS =zrO6 -----END PGP SIGNATURE----- -------------- next part -------------- A non-text attachment was scrubbed... Name: vpopmail-roaming-users.patch Type: text/x-diff Size: 757 bytes Desc: not available URL: From tss at iki.fi Tue Jun 7 16:45:13 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:45:13 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> Message-ID: <1307454313.10421.724.camel@hurina> Hmm. Maybe something generic: Returning "foo" extra field overwrites "foo" setting, but returning "+foo" extra field appends the value to the "foo" setting? See if the attached patch works (untested). On Mon, 2011-06-06 at 12:18 +0200, Antonio Perez-Aranda wrote: > Umm, it isn't running. > > If I put plugin imap_quota forced on user_attrs, then IMAP and Dovedm > doesn't run correctly. They can load this plugin. > > Maybe we can do a patch for ldap/config to avoid overwrite "all > plugins" enabled and support to append to enabled? > > > > 2011/6/3 Antonio Perez-Aranda : > > OK thanks. It isn't pretty but is running. > > > > 2011/6/3 Timo Sirainen : > >> On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: > >> > >>> And in passwd-ldap.conf I have some like this to add extra plugins: > >>> > >>> user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins > >> > >> This completely overrides mail_plugins setting.. > >> > >>> With this. I can see that dovecot load all plugins from settings, but > >>> in the user session, I can get only the plugins that I have selected > >>> in mailPlugins field > >>> > >>> If i check some like this: > >>> mailPlugins=mail_plugins=$mail_plugins %$, > >> > >> $mail_plugins variable works only inside dovecot.conf while the settings > >> are being parsed. > >> > >>> The imap session user is aborted after login. > >>> > >>> > >>> How can I add extra plugins by ldap without put on ldap all user plugins? > >> > >> The best you can do now is: > >> > >> mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ > >> > >> i.e. list the global plugins in here as well as in the global > >> mail_plugins setting. > >> > >> > > > > > > > > -- > > Antonio P?rez-Aranda Alcaide > > aperezaranda at yaco.es > > > > Yaco Sistemas S.L. > > http://www.yaco.es/ > > C/ Rioja 5, 41001 Sevilla > > Tel?fono +34 954 50 00 57 > > Fax +34 954 50 09 29 > > > > > -------------- next part -------------- A non-text attachment was scrubbed... Name: diff Type: text/x-patch Size: 1240 bytes Desc: not available URL: From tss at iki.fi Tue Jun 7 16:47:46 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:47:46 +0300 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <4DEE2B06.7000007@inter7.com> References: <4DEE2B06.7000007@inter7.com> Message-ID: <1307454466.10421.725.camel@hurina> On Tue, 2011-06-07 at 08:43 -0500, Matt Brookings wrote: > Timo, here is a patch against the Mercurial repository that fixes and > updates the support for roaming users under the vpopmail module. OK, but one question: > + /* > + vpopmail 5.4 does not understand IPv6 > + */ > + > + if (!(strcmp(host, "::1"))) > + host = "127.0.0.1"; Does this code really matter? Wouldn't SMTP relay be open from localhost always anyway? From matt at inter7.com Tue Jun 7 16:52:58 2011 From: matt at inter7.com (Matt Brookings) Date: Tue, 07 Jun 2011 08:52:58 -0500 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <1307454466.10421.725.camel@hurina> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> Message-ID: <4DEE2D3A.1060100@inter7.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/07/2011 08:47 AM, Timo Sirainen wrote: > On Tue, 2011-06-07 at 08:43 -0500, Matt Brookings wrote: >> Timo, here is a patch against the Mercurial repository that fixes and >> updates the support for roaming users under the vpopmail module. > > OK, but one question: > >> + /* >> + vpopmail 5.4 does not understand IPv6 >> + */ >> + >> + if (!(strcmp(host, "::1"))) >> + host = "127.0.0.1"; > > Does this code really matter? Wouldn't SMTP relay be open from localhost > always anyway? Unfortunately, the 5.4 branch does not understand "::1" as the loopback, and it parses the value incorrectly, leading to an open relay situation. Not all systems allow localhost to relay via SMTP without authentication. When I have this situation sorted out, I'll send along another patch that either removes this, or uses the new code. - -- /* Matt Brookings GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk3uLToACgkQIwet2/rgZyxZTQCeI53+ejF6gCGPW+3wlSP75YN2 IUQAn31S+tWcw59QzbRqyvjPf4mIsXLL =QI9m -----END PGP SIGNATURE----- From tss at iki.fi Tue Jun 7 16:53:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:53:08 +0300 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DDB7E0C.9090306@wenn.com> References: <4DDB7E0C.9090306@wenn.com> Message-ID: <1307454788.10421.728.camel@hurina> On Tue, 2011-05-24 at 10:44 +0100, Ricardo Branco wrote: > Dovecot 2.0.13 > Centos 5.4 x86_64 2.6.18-164.9.1.el5 (on ESXi) > OS/Logs on local storage, /home all on NFS server for datastore (NFS Store Centos 5.5 x86_64 2.6.18-194.11.1.el5) > Thunderbird 3.1.10 on XP/W7 Desktops > > We are seeing a werid issue where there is a delay of up to a few mins in seeing label updates on messages. > I have confirmed that Thunderbird is sending the update to the server with WireShark, its just additional users > connected to the same mailbox do not see them. Are the two clients connecting to the same Dovecot server? > Marking a message as Seen/Un-Seen happens faster just not labels. > If you have a label set when you mark a message as Seen/Un-Seen the other clients then see the update straight away. I don't see how that could be possible. Did you check with wireshark when Thunderbird received the \Seen flag change or the label change? You could try also if you can manually reproduce this with telnet: telnet localhost 143 a login user pass b select inbox do the same with another session then run "c idle" in first session and in the second one run: c store 1 +flags $Label1 Did it report immediately to the first IDLEing session about the label change? From tss at iki.fi Tue Jun 7 16:57:16 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:57:16 +0300 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <4DEE2D3A.1060100@inter7.com> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> <4DEE2D3A.1060100@inter7.com> Message-ID: <1307455036.10421.730.camel@hurina> On Tue, 2011-06-07 at 08:52 -0500, Matt Brookings wrote: > >> + /* > >> + vpopmail 5.4 does not understand IPv6 > >> + */ > >> + > >> + if (!(strcmp(host, "::1"))) > >> + host = "127.0.0.1"; > > > > Does this code really matter? Wouldn't SMTP relay be open from localhost > > always anyway? > > Unfortunately, the 5.4 branch does not understand "::1" as the loopback, > and it parses the value incorrectly, leading to an open relay situation. > Not all systems allow localhost to relay via SMTP without authentication. Doesn't it also mean that if someone connects via a remote IPv6 address, it again leads to open relay? How about the attached patch instead? -------------- next part -------------- A non-text attachment was scrubbed... Name: diff Type: text/x-patch Size: 737 bytes Desc: not available URL: From johnw.mail at gmail.com Tue Jun 7 17:02:32 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 22:02:32 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307452392.10421.712.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> <4DEE0952.3030001@gmail.com> <1307452392.10421.712.camel@hurina> Message-ID: <4DEE2F78.8030202@gmail.com> On 2011?06?07? 21:13, Timo Sirainen wrote: > On Tue, 2011-06-07 at 19:19 +0800, johnw wrote: >> Couldn't drop privileges: Process is already chrooted, can't un-chroot >> for this user >> >> and lmtp can not delivery mail > This'll fix it: http://hg.dovecot.org/dovecot-2.0/rev/ed05316ed441 > > Also remove the protocol !lmtp {} around mail_chroot. Looks like I > already had code that was supposed to handle it, but I had forgotten > about it and I had never tested it. > > after apply the patch with 2.0.13, and remove the protocol !lmtp {}, the error like this: Couldn't drop privileges: Process is already chrooted to /var/vmail, can't chroot to /var/vmail/ and lmtp still can not delivery mail From matt at inter7.com Tue Jun 7 17:10:13 2011 From: matt at inter7.com (Matt Brookings) Date: Tue, 07 Jun 2011 09:10:13 -0500 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <1307455036.10421.730.camel@hurina> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> <4DEE2D3A.1060100@inter7.com> <1307455036.10421.730.camel@hurina> Message-ID: <4DEE3145.4050801@inter7.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/07/2011 08:57 AM, Timo Sirainen wrote: > On Tue, 2011-06-07 at 08:52 -0500, Matt Brookings wrote: >>>> + /* >>>> + vpopmail 5.4 does not understand IPv6 >>>> + */ >>>> + >>>> + if (!(strcmp(host, "::1"))) >>>> + host = "127.0.0.1"; >>> >>> Does this code really matter? Wouldn't SMTP relay be open from localhost >>> always anyway? >> >> Unfortunately, the 5.4 branch does not understand "::1" as the loopback, >> and it parses the value incorrectly, leading to an open relay situation. >> Not all systems allow localhost to relay via SMTP without authentication. > > Doesn't it also mean that if someone connects via a remote IPv6 address, > it again leads to open relay? How about the attached patch instead? Many systems will be running other qmail and vpopmail services from the ucspi-tcp package which may not be patched to support IPv6. As a result, when connecting to "::1", it will be translated to 127.0.0.1, and as I said before, some systems will not allow localhost to send without authentication. I understand it's introducing a hackish fix into your project, but I will submit a new patch that updates this block of code when a proper solution that will work across the various system configurations is determined. - -- /* Matt Brookings GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk3uMUEACgkQIwet2/rgZyxdcwCfYtq3lkGoFTlviG6t67c8XKMZ 67MAn1ef3Fft0Fpf1W3z3eygPoA5oTwx =neo1 -----END PGP SIGNATURE----- From tss at iki.fi Tue Jun 7 17:15:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 17:15:33 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DEE2F78.8030202@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> <4DEE0952.3030001@gmail.com> <1307452392.10421.712.camel@hurina> <4DEE2F78.8030202@gmail.com> Message-ID: <1307456133.10421.740.camel@hurina> On Tue, 2011-06-07 at 22:02 +0800, johnw wrote: > On 2011?06?07? 21:13, Timo Sirainen wrote: > > On Tue, 2011-06-07 at 19:19 +0800, johnw wrote: > >> Couldn't drop privileges: Process is already chrooted, can't un-chroot > >> for this user > >> > >> and lmtp can not delivery mail > > This'll fix it: http://hg.dovecot.org/dovecot-2.0/rev/ed05316ed441 > > > > Also remove the protocol !lmtp {} around mail_chroot. Looks like I > > already had code that was supposed to handle it, but I had forgotten > > about it and I had never tested it. > > > > > after apply the patch with 2.0.13, and remove the protocol !lmtp {}, the > error like this: > > Couldn't drop privileges: Process is already chrooted to /var/vmail, > can't chroot to /var/vmail/ > > and lmtp still can not delivery mail The trick is to make the strings equal :) mail_chroot = /var/mail without the trailing /. From aperezaranda at yaco.es Tue Jun 7 17:16:23 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Tue, 7 Jun 2011 16:16:23 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1307454313.10421.724.camel@hurina> References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> Message-ID: Greats, I'm working on patch from this morning, but it's very hard to debug on settings-parser How can I enable i_debug on settings-parser.c ? 2011/6/7 Timo Sirainen : > Hmm. Maybe something generic: Returning "foo" extra field overwrites > "foo" setting, but returning "+foo" extra field appends the value to the > "foo" setting? See if the attached patch works (untested). > > On Mon, 2011-06-06 at 12:18 +0200, Antonio Perez-Aranda wrote: >> Umm, it isn't running. >> >> If I put plugin imap_quota forced on user_attrs, then IMAP and Dovedm >> doesn't run correctly. They can load this plugin. >> >> Maybe we can do a patch for ldap/config to avoid overwrite "all >> plugins" enabled and support to append to enabled? >> >> >> >> 2011/6/3 Antonio Perez-Aranda : >> > OK thanks. It isn't pretty but is running. >> > >> > 2011/6/3 Timo Sirainen : >> >> On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: >> >> >> >>> And in passwd-ldap.conf I have some like this to add extra plugins: >> >>> >> >>> user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins >> >> >> >> This completely overrides mail_plugins setting.. >> >> >> >>> With this. I can see that dovecot load all plugins from settings, but >> >>> in the user session, I can get only the plugins that I have selected >> >>> in mailPlugins field >> >>> >> >>> If i check some like this: >> >>> ? mailPlugins=mail_plugins=$mail_plugins %$, >> >> >> >> $mail_plugins variable works only inside dovecot.conf while the settings >> >> are being parsed. >> >> >> >>> The imap session user is aborted after login. >> >>> >> >>> >> >>> How can I add extra plugins by ldap without put on ldap all user plugins? >> >> >> >> The best you can do now is: >> >> >> >> mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ >> >> >> >> i.e. list the global plugins in here as well as in the global >> >> mail_plugins setting. >> >> >> >> >> > >> > >> > >> > -- >> > Antonio P?rez-Aranda Alcaide >> > aperezaranda at yaco.es >> > >> > Yaco Sistemas S.L. >> > http://www.yaco.es/ >> > C/ Rioja 5, 41001 Sevilla >> > Tel?fono +34 954 50 00 57 >> > Fax ? ? ?+34 954 50 09 29 >> > >> >> >> > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From tss at iki.fi Tue Jun 7 17:18:04 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 17:18:04 +0300 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <4DEE3145.4050801@inter7.com> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> <4DEE2D3A.1060100@inter7.com> <1307455036.10421.730.camel@hurina> <4DEE3145.4050801@inter7.com> Message-ID: <1307456284.10421.742.camel@hurina> On Tue, 2011-06-07 at 09:10 -0500, Matt Brookings wrote: > >> Unfortunately, the 5.4 branch does not understand "::1" as the loopback, > >> and it parses the value incorrectly, leading to an open relay situation. > >> Not all systems allow localhost to relay via SMTP without authentication. > > > > Doesn't it also mean that if someone connects via a remote IPv6 address, > > it again leads to open relay? How about the attached patch instead? > > Many systems will be running other qmail and vpopmail services from the > ucspi-tcp package which may not be patched to support IPv6. As a > result, when connecting to "::1", it will be translated to 127.0.0.1, > and as I said before, some systems will not allow localhost to send > without authentication. > > I understand it's introducing a hackish fix into your project, but I > will submit a new patch that updates this block of code when a proper > solution that will work across the various system configurations is > determined. It still seems safer to me to ignore all IPv6 addresses rather than ::1 specifically. And as I understand it works just as well normally with both ways? From tss at iki.fi Tue Jun 7 17:21:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 17:21:41 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> Message-ID: <1307456501.10421.745.camel@hurina> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: > Greats, I'm working on patch from this morning, but it's very hard to > debug on settings-parser I don't think you should need to touch that code. It's a bit difficult for me also to follow.. > How can I enable i_debug on settings-parser.c ? What do you mean? You could add i_debug() calls and it should work just the same as everywhere. Did you try the patch in my previous mail? I think that should be enough. You could then use: user_attrs = .., mailPlugins=+mail_plugins From johnw.mail at gmail.com Tue Jun 7 17:26:10 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 22:26:10 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307456133.10421.740.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> <4DEE0952.3030001@gmail.com> <1307452392.10421.712.camel@hurina> <4DEE2F78.8030202@gmail.com> <1307456133.10421.740.camel@hurina> Message-ID: <4DEE3502.3000000@gmail.com> On 2011?06?07? 22:15, Timo Sirainen wrote: > On Tue, 2011-06-07 at 22:02 +0800, johnw wrote: >> On 2011?06?07? 21:13, Timo Sirainen wrote: >>> On Tue, 2011-06-07 at 19:19 +0800, johnw wrote: >>>> Couldn't drop privileges: Process is already chrooted, can't un-chroot >>>> for this user >>>> >>>> and lmtp can not delivery mail >>> This'll fix it: http://hg.dovecot.org/dovecot-2.0/rev/ed05316ed441 >>> >>> Also remove the protocol !lmtp {} around mail_chroot. Looks like I >>> already had code that was supposed to handle it, but I had forgotten >>> about it and I had never tested it. >>> >>> >> after apply the patch with 2.0.13, and remove the protocol !lmtp {}, the >> error like this: >> >> Couldn't drop privileges: Process is already chrooted to /var/vmail, >> can't chroot to /var/vmail/ >> >> and lmtp still can not delivery mail > The trick is to make the strings equal :) mail_chroot = /var/mail > without the trailing /. > > Ok, i change mail_chroot = /var/vmail/ to mail_chroot = /var/vmail now, lmtp can delivery mail with chroot. thank you. From tss at iki.fi Tue Jun 7 17:28:14 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 17:28:14 +0300 Subject: [Dovecot] uid=error and BUG: Unknown internal error dovecot 2.0.13 In-Reply-To: <4DEE2652.8060602@schetterer.org> References: <4DEE2652.8060602@schetterer.org> Message-ID: <1307456894.10421.748.camel@hurina> On Tue, 2011-06-07 at 15:23 +0200, Robert Schetterer wrote: > Hi Timo, > i have a few ( not really many ) > errors like this with lmtp > > Jun 7 09:41:23 mail02 dovecot: lmtp(11034, user at user.de): > DELlOoq+7U0aKwAAZA6IsQ: msgid=<4DEDD502.705020 at ameriton.com>: save > failed to INBOX: BUG: Unknown internal error Something went wrong. Really shouldn't be happening. > Jun 7 09:36:22 mail01 dovecot: lmtp(26456, user at user.de): save: > box=INBOX, uid=error, > msgid=, > size=7192 Did this also get some error before that log line? Something went wrong with finding the message's UID during saving.. > any idea ? dovecot -n output would help guessing the reason. > is it critical, possible to loose mails with this ? Shouldn't be possible to lose mails. From robert at schetterer.org Tue Jun 7 18:22:08 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 07 Jun 2011 17:22:08 +0200 Subject: [Dovecot] uid=error and BUG: Unknown internal error dovecot 2.0.13 In-Reply-To: <1307456894.10421.748.camel@hurina> References: <4DEE2652.8060602@schetterer.org> <1307456894.10421.748.camel@hurina> Message-ID: <4DEE4220.4070602@schetterer.org> Am 07.06.2011 16:28, schrieb Timo Sirainen: > On Tue, 2011-06-07 at 15:23 +0200, Robert Schetterer wrote: >> Hi Timo, >> i have a few ( not really many ) >> errors like this with lmtp >> >> Jun 7 09:41:23 mail02 dovecot: lmtp(11034, user at user.de): >> DELlOoq+7U0aKwAAZA6IsQ: msgid=<4DEDD502.705020 at ameriton.com>: save >> failed to INBOX: BUG: Unknown internal error > > Something went wrong. Really shouldn't be happening. > >> Jun 7 09:36:22 mail01 dovecot: lmtp(26456, user at user.de): save: >> box=INBOX, uid=error, >> msgid=, >> size=7192 > > Did this also get some error before that log line? Something went wrong > with finding the message's UID during saving.. havent super verbose logging enabled yet, this servers are massive in production with huge logs, lines found out by grep looking deeper by editor to the log i would say mail is stored whatever uid error was before and wasnt reported before ( with this small verbose ) > >> any idea ? > > dovecot -n output would help guessing the reason. # 2.0.13 (e76a3313a46c): /etc/dovecot/dovecot.conf # OS: Linux 2.6.35-25-generic x86_64 Ubuntu 10.04.2 LTS auth_mechanisms = plain login auth_socket_path = /var/run/dovecot/auth-userdb auth_verbose = yes auth_verbose_passwords = plain auth_worker_max_count = 300 default_client_limit = 1024 default_process_limit = 512 dict { quotadict = mysql:/etc/dovecot/dovecot-dict-quota-sql.conf.ext } disable_plaintext_auth = no first_valid_gid = 1001 first_valid_uid = 1001 hostname = host.host.de last_valid_gid = 1001 last_valid_uid = 1001 listen = * login_greeting = imap, pop ready mail_access_groups = vmail mail_fsync = always mail_gid = 1001 mail_location = maildir:~/ mail_nfs_index = yes mail_nfs_storage = yes mail_plugins = fts fts_squat mail_log autocreate notify mail_privileged_group = vmail mail_uid = 1001 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date mmap_disable = yes namespace default { hidden = no inbox = yes list = yes location = prefix = separator = / subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { autocreate = Trash autocreate2 = Junk autocreate3 = Sent autocreate4 = Drafts autocreate5 = Templates autocreate6 = Archives autosubscribe = Trash autosubscribe2 = Junk autosubscribe3 = Sent autosubscribe4 = Drafts autosubscribe5 = Templates autosubscribe6 = Archives fts = squat home = /usr/local/virtual/%d/%u mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size mail_log_group_events = yes quota = dict:::proxy::quotadict quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u sieve = /usr/local/virtual/%d/%u/dovecot.sieve sieve_dir = /usr/local/virtual/%d/%u/sieve } postmaster_address = hostmaster at host.host.de protocols = imap pop3 lmtp sieve sendmail_path = /usr/lib/sendmail service anvil { client_limit = 10000 } service auth-worker { user = root } service auth { client_limit = 10000 unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { group = vmail mode = 0666 user = vmail } } service dict { extra_groups = vmail unix_listener dict { group = vmail mode = 0660 } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } process_min_avail = 64 service_count = 1 } service imap-postlogin { executable = script-login /usr/local/bin/postlogin_imap.sh user = root } service imap { executable = imap imap-postlogin process_limit = 1024 vsz_limit = 256 M } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } vsz_limit = 256 M } service managesieve-login { inet_listener { address = 127.0.0.1 port = 2000 } vsz_limit = 256 M } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } service pop3-postlogin { executable = script-login /usr/local/bin/postlogin_pop3.sh user = root } service pop3 { executable = pop3 pop3-postlogin process_limit = 1024 } service quota-warning { executable = script /usr/local/bin/quota-warning.sh unix_listener quota-warning { mode = 0666 user = vmail } user = vmail } ssl_ca = >> is it critical, possible to loose mails with this ? > > Shouldn't be possible to lose mails. nobody reported it so far > > -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From aperezaranda at yaco.es Tue Jun 7 18:41:19 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Tue, 7 Jun 2011 17:41:19 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1307456501.10421.745.camel@hurina> References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: I just test it and it is running. Greats. 2011/6/7 Timo Sirainen : > On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >> Greats, I'm working on patch from this morning, but it's very hard to >> debug on settings-parser > > I don't think you should need to touch that code. It's a bit difficult > for me also to follow.. > >> How can I enable i_debug on settings-parser.c ? > > What do you mean? You could add i_debug() calls and it should work just > the same as everywhere. > > Did you try the patch in my previous mail? I think that should be > enough. You could then use: > > user_attrs = .., mailPlugins=+mail_plugins > > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From pch0317 at gmail.com Tue Jun 7 22:20:56 2011 From: pch0317 at gmail.com (pch0317) Date: Tue, 07 Jun 2011 20:20:56 +0100 Subject: [Dovecot] Problem with Outlook 2010 Message-ID: <4DEE7A18.70609@gmail.com> Hi, I use dovecot 2.0. I have problem with Outlook 2010. This application freezes for about 2 minutes when I move or delete messages. Other applications such as Outlook Express and Thunderbird work correctly. Has anyone had similar problem? Thanks From robert at schetterer.org Tue Jun 7 22:30:04 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 07 Jun 2011 21:30:04 +0200 Subject: [Dovecot] uid=error and BUG: Unknown internal error dovecot 2.0.13 In-Reply-To: <4DEE4220.4070602@schetterer.org> References: <4DEE2652.8060602@schetterer.org> <1307456894.10421.748.camel@hurina> <4DEE4220.4070602@schetterer.org> Message-ID: <4DEE7C3C.509@schetterer.org> Am 07.06.2011 17:22, schrieb Robert Schetterer: > Am 07.06.2011 16:28, schrieb Timo Sirainen: >> On Tue, 2011-06-07 at 15:23 +0200, Robert Schetterer wrote: >>> Hi Timo, >>> i have a few ( not really many ) >>> errors like this with lmtp >>> >>> Jun 7 09:41:23 mail02 dovecot: lmtp(11034, user at user.de): >>> DELlOoq+7U0aKwAAZA6IsQ: msgid=<4DEDD502.705020 at ameriton.com>: save >>> failed to INBOX: BUG: Unknown internal error >> >> Something went wrong. Really shouldn't be happening. >> >>> Jun 7 09:36:22 mail01 dovecot: lmtp(26456, user at user.de): save: >>> box=INBOX, uid=error, >>> msgid=, >>> size=7192 >> >> Did this also get some error before that log line? Something went wrong >> with finding the message's UID during saving.. > > havent super verbose logging enabled yet, this servers are massive in > production with huge logs, lines found out by grep > looking deeper by editor to the log i would say mail is stored whatever > uid error was before and wasnt reported before ( with this small verbose ) >> >>> any idea ? >> >> dovecot -n output would help guessing the reason. > > # 2.0.13 (e76a3313a46c): /etc/dovecot/dovecot.conf > # OS: Linux 2.6.35-25-generic x86_64 Ubuntu 10.04.2 LTS > auth_mechanisms = plain login > auth_socket_path = /var/run/dovecot/auth-userdb > auth_verbose = yes > auth_verbose_passwords = plain > auth_worker_max_count = 300 > default_client_limit = 1024 > default_process_limit = 512 > dict { > quotadict = mysql:/etc/dovecot/dovecot-dict-quota-sql.conf.ext > } > disable_plaintext_auth = no > first_valid_gid = 1001 > first_valid_uid = 1001 > hostname = host.host.de > last_valid_gid = 1001 > last_valid_uid = 1001 > listen = * > login_greeting = imap, pop ready > mail_access_groups = vmail > mail_fsync = always > mail_gid = 1001 > mail_location = maildir:~/ > mail_nfs_index = yes > mail_nfs_storage = yes > mail_plugins = fts fts_squat mail_log autocreate notify > mail_privileged_group = vmail > mail_uid = 1001 > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include variables body enotify > environment mailbox date > mmap_disable = yes > namespace default { > hidden = no > inbox = yes > list = yes > location = > prefix = > separator = / > subscriptions = yes > type = private > } > passdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > plugin { > autocreate = Trash > autocreate2 = Junk > autocreate3 = Sent > autocreate4 = Drafts > autocreate5 = Templates > autocreate6 = Archives > autosubscribe = Trash > autosubscribe2 = Junk > autosubscribe3 = Sent > autosubscribe4 = Drafts > autosubscribe5 = Templates > autosubscribe6 = Archives > fts = squat > home = /usr/local/virtual/%d/%u > mail_log_events = delete undelete expunge copy mailbox_delete > mailbox_rename > mail_log_fields = uid box msgid size > mail_log_group_events = yes > quota = dict:::proxy::quotadict > quota_warning = storage=95%% quota-warning 95 %u > quota_warning2 = storage=80%% quota-warning 80 %u > sieve = /usr/local/virtual/%d/%u/dovecot.sieve > sieve_dir = /usr/local/virtual/%d/%u/sieve > } > postmaster_address = hostmaster at host.host.de > protocols = imap pop3 lmtp sieve > sendmail_path = /usr/lib/sendmail > service anvil { > client_limit = 10000 > } > service auth-worker { > user = root > } > service auth { > client_limit = 10000 > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0666 > user = postfix > } > unix_listener auth-userdb { > group = vmail > mode = 0666 > user = vmail > } > } > service dict { > extra_groups = vmail > unix_listener dict { > group = vmail > mode = 0660 > } > } > service imap-login { > inet_listener imap { > port = 143 > } > inet_listener imaps { > port = 993 > ssl = yes > } > process_min_avail = 64 > service_count = 1 > } > service imap-postlogin { > executable = script-login /usr/local/bin/postlogin_imap.sh > user = root > } > service imap { > executable = imap imap-postlogin > process_limit = 1024 > vsz_limit = 256 M > } > service lmtp { > unix_listener /var/spool/postfix/private/dovecot-lmtp { > group = postfix > mode = 0660 > user = postfix > } > vsz_limit = 256 M > } > service managesieve-login { > inet_listener { > address = 127.0.0.1 > port = 2000 > } > vsz_limit = 256 M > } > service pop3-login { > inet_listener pop3 { > port = 110 > } > inet_listener pop3s { > port = 995 > ssl = yes > } > } > service pop3-postlogin { > executable = script-login /usr/local/bin/postlogin_pop3.sh > user = root > } > service pop3 { > executable = pop3 pop3-postlogin > process_limit = 1024 > } > service quota-warning { > executable = script /usr/local/bin/quota-warning.sh > unix_listener quota-warning { > mode = 0666 > user = vmail > } > user = vmail > } > ssl_ca = ssl_cert = ssl_key = userdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > verbose_proctitle = yes > protocol lda { > mail_plugins = quota sieve mail_log notify > } > protocol imap { > imap_client_workarounds = delay-newmail > imap_id_log = * > imap_id_send = * > imap_idle_notify_interval = 2 mins > imap_logout_format = bytes=%i/%o > imap_max_line_length = 128 k > mail_max_userip_connections = 100 > mail_plugins = fts fts_squat mail_log autocreate notify quota imap_quota > } > protocol lmtp { > mail_plugins = quota sieve fts fts_squat mail_log notify > } > protocol sieve { > mail_max_userip_connections = 100 > managesieve_implementation_string = Dovecot > managesieve_logout_format = bytes=%i/%o > } > protocol pop3 { > mail_max_userip_connections = 100 > mail_plugins = quota mail_log fts fts_squat notify > pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > pop3_enable_last = yes > pop3_logout_format = top=%t/%p, retr=%r/%b, del=%d/%m, size=%s > pop3_reuse_xuidl = no > pop3_uidl_format = %g > } > >> >>> is it critical, possible to loose mails with this ? >> >> Shouldn't be possible to lose mails. > > nobody reported it so far >> >> > > i have a nearly equal setup with same errors but more rare ( not so much traffic/mailboxes ) here i found with more verbose logging Jun 7 17:47:19 mail01 dovecot: lmtp(3554, user at user.de): Debug: Effective uid=1001, gid=1001, home=/usr/local/virtual/user.de/user at user.de/ Jun 7 17:47:19 mail01 dovecot: lmtp(3554, user at user.de): save: box=INBOX, uid=error, msgid=<42002737.2472109201307461419534.JavaMail.beawl at server.com>, size=11968 other ok logs look like i.e Jun 7 07:24:57 mail01 dovecot: lmtp(24871, user at user.de): Debug: Effective uid=1001, gid=1001, home=/usr/local/virtual/user.de/user at user.de/ Jun 7 07:24:57 mail01 dovecot: lmtp(24871, user at user.de): save: box=INBOX/welcome, uid=1661, msgid=<20110607052457.07E04780040 at www.server.com>, size=10059 perhaps this helps -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From robert at schetterer.org Tue Jun 7 22:35:56 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 07 Jun 2011 21:35:56 +0200 Subject: [Dovecot] Problem with Outlook 2010 In-Reply-To: <4DEE7A18.70609@gmail.com> References: <4DEE7A18.70609@gmail.com> Message-ID: <4DEE7D9C.8090405@schetterer.org> Am 07.06.2011 21:20, schrieb pch0317: > Hi, > > I use dovecot 2.0. > > I have problem with Outlook 2010. This application freezes for about 2 > minutes when I move or delete messages. > Other applications such as Outlook Express and Thunderbird work correctly. > > Has anyone had similar problem? > > > Thanks just tested with outlook 2010 3 or 4 times moving 10 small mails from one imap folder to the other and back no freeze -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From matt at inter7.com Tue Jun 7 23:22:19 2011 From: matt at inter7.com (Matt Brookings) Date: Tue, 07 Jun 2011 15:22:19 -0500 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <1307456284.10421.742.camel@hurina> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> <4DEE2D3A.1060100@inter7.com> <1307455036.10421.730.camel@hurina> <4DEE3145.4050801@inter7.com> <1307456284.10421.742.camel@hurina> Message-ID: <4DEE887B.7000002@inter7.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/07/2011 09:18 AM, Timo Sirainen wrote: > On Tue, 2011-06-07 at 09:10 -0500, Matt Brookings wrote: >>>> Unfortunately, the 5.4 branch does not understand "::1" as the loopback, >>>> and it parses the value incorrectly, leading to an open relay situation. >>>> Not all systems allow localhost to relay via SMTP without authentication. >>> >>> Doesn't it also mean that if someone connects via a remote IPv6 address, >>> it again leads to open relay? How about the attached patch instead? >> >> Many systems will be running other qmail and vpopmail services from the >> ucspi-tcp package which may not be patched to support IPv6. As a >> result, when connecting to "::1", it will be translated to 127.0.0.1, >> and as I said before, some systems will not allow localhost to send >> without authentication. >> >> I understand it's introducing a hackish fix into your project, but I >> will submit a new patch that updates this block of code when a proper >> solution that will work across the various system configurations is >> determined. > > It still seems safer to me to ignore all IPv6 addresses rather than ::1 > specifically. And as I understand it works just as well normally with > both ways? That will be fine. As long as it doesn't pass the IPv6 strings, and the ifdef name is changed, all should work. Thanks! - -- /* Matt Brookings GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk3uiHsACgkQIwet2/rgZyw9PACcDHqW65HrFOn0ICSdOzCDoZRB 4F8AoIbftJIhfH/x8YOf4uKKtIbL3ORs =tskj -----END PGP SIGNATURE----- From ricardo at wenn.com Wed Jun 8 00:54:46 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Tue, 07 Jun 2011 22:54:46 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DDB7E0C.9090306@wenn.com> References: <4DDB7E0C.9090306@wenn.com> Message-ID: <4DEE9E26.2090707@wenn.com> anyone seen this issue, its still plaguing us and also seems to have a knock on affect as our blackberries are seeing messages late On 24/05/2011 10:44, Ricardo Branco wrote: > Dovecot 2.0.13 > Centos 5.4 x86_64 2.6.18-164.9.1.el5 (on ESXi) > OS/Logs on local storage, /home all on NFS server for datastore (NFS > Store Centos 5.5 x86_64 2.6.18-194.11.1.el5) > Thunderbird 3.1.10 on XP/W7 Desktops > > We are seeing a werid issue where there is a delay of up to a few mins > in seeing label updates on messages. > I have confirmed that Thunderbird is sending the update to the server > with WireShark, its just additional users connected to the same > mailbox do not see them. > Marking a message as Seen/Un-Seen happens faster just not labels. > If you have a label set when you mark a message as Seen/Un-Seen the > other clients then see the update straight away. > > From tss at iki.fi Wed Jun 8 02:27:39 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 8 Jun 2011 02:27:39 +0300 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEE9E26.2090707@wenn.com> References: <4DDB7E0C.9090306@wenn.com> <4DEE9E26.2090707@wenn.com> Message-ID: <84458199-4F66-45A4-AB0E-CD72A977119A@iki.fi> I answered this some hours ago. If you don't read all mails to mailing list, don't set the Reply-To: header to mailing list. On 8.6.2011, at 0.54, Ricardo Branco wrote: > anyone seen this issue, its still plaguing us and also seems to have a knock on affect as our blackberries are seeing messages late > > On 24/05/2011 10:44, Ricardo Branco wrote: >> Dovecot 2.0.13 >> Centos 5.4 x86_64 2.6.18-164.9.1.el5 (on ESXi) >> OS/Logs on local storage, /home all on NFS server for datastore (NFS Store Centos 5.5 x86_64 2.6.18-194.11.1.el5) >> Thunderbird 3.1.10 on XP/W7 Desktops >> >> We are seeing a werid issue where there is a delay of up to a few mins in seeing label updates on messages. >> I have confirmed that Thunderbird is sending the update to the server with WireShark, its just additional users connected to the same mailbox do not see them. >> Marking a message as Seen/Un-Seen happens faster just not labels. >> If you have a label set when you mark a message as Seen/Un-Seen the other clients then see the update straight away. >> >> > From martin.benkenstein at fh-zwickau.de Wed Jun 8 03:34:08 2011 From: martin.benkenstein at fh-zwickau.de (Martin Benkenstein) Date: Wed, 08 Jun 2011 02:34:08 +0200 Subject: [Dovecot] deliver doesn't find adress/inbox Message-ID: <4DEEC380.7050703@fh-zwickau.de> I'm trying to make dovecot 1.2.15, deliver, openLDAP, exim and fetchmail work together on an Debian Squeeze (virtual) maschine. The connection between dovecot and LDAP seems to be working, I can logon from Thunderbird (IMAP) and my maildir is created automatically. So far so good. But when I download the mails via fetchmail, it seems that deliver cannot find the correct mailbox for the X-Envelope-To entry in the header. fetchmail downloads all mails for the domain from one account (config below) and hands them over to exim. I configured exim addording to the wiki entry (http://wiki.dovecot.org/LDA/Exim Virtual Users / Single UID). The mail is sent back to the account which is fetched by fetchmail. There is a header entry X-Fetchmail-Warning: no recipient addresses matched declared local names. The fetchmail-log itself is worthless. What am I doing wrong? At which does the system try to look up the mailaddress and fails? Thank you in advance Martin Configuration details: # dovecot -n # 1.2.15: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-686 i686 Debian 6.0.1 ext3 log_path: /var/log/dovecot.log log_timestamp: %Y-%m-%d %H:%M:%S login_dir: /var/run/dovecot/login login_executable: /usr/lib/dovecot/imap-login mail_privileged_group: mail mail_location: maildir:/var/mail/dovecot/%n@%d/maildir/ mbox_write_locks: fcntl dotlock lda: postmaster_address: postfrau at pti857.dyndns.info hostname: pti857.dyndns.info log_path: /var/log/dovecot-deliver-errors.log info_log_path: /var/log/dovecot-deliver.log sendmail_path: /usr/sbin/sendmail auth_socket_path: /var/run/dovecot/auth-master auth default: verbose: yes passdb: driver: ldap args: /etc/dovecot/dovecot-ldap.conf userdb: driver: static args: uid=1002 gid=1002 home=/var/mail/dovecot/%n@%d/home socket: type: listen master: path: /var/run/dovecot/auth-master mode: 384 user: dovecotvmail /etc/dovecot/dovecot-ldap.conf ### hosts = localhost dn = cn=admin,dc=tuced,dc=local dnpass = toor auth_bind = yes ldap_version = 3 base = ou=users, dc=tuced, dc=local /etc/fetchmailrc #### set daemon 300 # Pool every 5 minutes set postmaster root set no bouncemail defaults: timeout 300 antispam -1 batchlimit 100 set no syslog set logfile "/var/log/fetchmail.log" poll mail.domain.de proto pop3 localdomains some.domain.org: envelope "X-Envelope-To:" timeout 30 user postman at some.domain.org password secret is * /etc/exim4/conf.d/transport/30_exim4-config_dovecot_lda ### dovecot_virtual_delivery: driver = pipe command = /usr/local/libexec/dovecot/deliver -d $local_part@$domain -f $sender_address -a $original_local_part@$original_domain message_prefix = message_suffix = delivery_date_add envelope_to_add return_path_add log_output user = dovecotvmail temp_errors = 64 : 69 : 70: 71 : 72 : 73 : 74 : 75 : 78 From r.zimmermann at siegnetz.de Wed Jun 8 11:19:32 2011 From: r.zimmermann at siegnetz.de (Ralf Zimmermann) Date: Wed, 08 Jun 2011 10:19:32 +0200 Subject: [Dovecot] Problem with Outlook 2010 In-Reply-To: <4DEE7A18.70609@gmail.com> References: <4DEE7A18.70609@gmail.com> Message-ID: <4DEF3094.4020701@siegnetz.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/07/2011 09:20 PM, pch0317 wrote: > Hi, > > I use dovecot 2.0. > > I have problem with Outlook 2010. This application freezes for about 2 > minutes when I move or delete messages. > Other applications such as Outlook Express and Thunderbird work correctly. > > Has anyone had similar problem? > > > Thanks We have no problems with Outlook 2010 and dovecot-2.0. Everything works fine. Greets Ralf -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAEBAgAGBQJN7zCTAAoJENVjhbwuX+/Hb+wIAJ8PiULXV4u/L0xByojYMKzS jEyzQh+6w6oIqf64q3wCxo8CFRhUZ+STleH5pHNVlmOdw7jU+PeuJxyVYYyZkjE6 UUpIxtlZDPMq79ODFIXRUAFyXM9gB8UWvBDhjuVDbEuEeYu8g0FfHb5qe9hM1+9D pFaBTOQyZ+bsWdkRxtZ0PoYSfAW0+u6ZBP+vqKMfmul/QPXY/ajquLFNa2it3Hov 3u6W7fj8AsjNWGG5H25Vyc0kWxrKXCN7IQV8N2Xz9sUQqI5cncs8nKbxw+RSth44 FxiVCTllBBX1cAUKVj8Aledf2/aYyPk5PuUcsZXz6QsJx2ys+iLoDrLOY+VCoqk= =No8P -----END PGP SIGNATURE----- From nebano at gmail.com Wed Jun 8 12:16:07 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 11:16:07 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space Message-ID: Hi I migrated to dovecot 2 and I started using lmtp for mail delivery. But I have found this on my logs "save failed to INBOX: Not enough disk space" . There is enougth space on disk. and I am not using quota plugin on lmtp my lmtp conf is as follow: # ## LMTP specific settings ## # Support proxying to other LMTP/SMTP servers by performing passdb lookups. #lmtp_proxy = no # When recipient address includes the detail (e.g. user+detail), try to save # the mail to the detail mailbox. See also recipient_delimiter and # lda_mailbox_autocreate settings. #lmtp_save_to_detail_mailbox = no protocol lmtp { # Space separated list of plugins to load (default is global mail_plugins). #mail_plugins = $mail_plugins mail_plugins = sieve postmaster_address = admin at domain.tld } Any idea please? Thanks From ricardo at wenn.com Wed Jun 8 12:23:04 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 10:23:04 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <1307454788.10421.728.camel@hurina> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> Message-ID: <4DEF3F78.2000509@wenn.com> Yes we have several people connecting to the same mail box on the same server (we only have one dovecot server) We have tried as you suggested and any change is reported from session to session immediately, I guess there is a problem in Thunderbird on updating these in the list. Its as if its waiting for so many FETCH commands or some sort of time limit before it updates as sometimes its slow other times its instant. Ile log a ticket with Mozilla. https://bugzilla.mozilla.org/show_bug.cgi?id=591683 Timo Sirainen wrote, On 07/06/2011 14:53: > On Tue, 2011-05-24 at 10:44 +0100, Ricardo Branco wrote: >> Dovecot 2.0.13 >> Centos 5.4 x86_64 2.6.18-164.9.1.el5 (on ESXi) >> OS/Logs on local storage, /home all on NFS server for datastore (NFS Store Centos 5.5 x86_64 2.6.18-194.11.1.el5) >> Thunderbird 3.1.10 on XP/W7 Desktops >> >> We are seeing a werid issue where there is a delay of up to a few mins in seeing label updates on messages. >> I have confirmed that Thunderbird is sending the update to the server with WireShark, its just additional users >> connected to the same mailbox do not see them. > Are the two clients connecting to the same Dovecot server? > >> Marking a message as Seen/Un-Seen happens faster just not labels. >> If you have a label set when you mark a message as Seen/Un-Seen the other clients then see the update straight away. > I don't see how that could be possible. Did you check with wireshark > when Thunderbird received the \Seen flag change or the label change? You > could try also if you can manually reproduce this with telnet: > > telnet localhost 143 > a login user pass > b select inbox > > do the same with another session then run "c idle" in first session and > in the second one run: > > c store 1 +flags $Label1 > > Did it report immediately to the first IDLEing session about the label > change? > -- Ricardo Branco Senior IT Manager 35 Tileyard Studios, Tileyard Road, London N7 9AH, England Email: ricardo at wenn.com Phone: +44 (0)20 7607 2757 Corp: http://corp.wenn.com Photo: http://photo.wenn.com Web: http://www.wenn.com -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/gif Size: 3768 bytes Desc: not available URL: From marcin at mejor.pl Wed Jun 8 12:26:54 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Wed, 08 Jun 2011 11:26:54 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: <4DEF405E.50005@mejor.pl> W dniu 08.06.2011 11:16, Osvaldo Alvarez Pozo pisze: > Hi > I migrated to dovecot 2 and I started using lmtp for mail delivery. > > > But I have found this on my logs "save failed to INBOX: Not enough disk space" . > > There is enougth space on disk. and I am not using quota plugin on lmtp Hello! And you have free inodes too and you don't have quota on filesystem? I'm asking to be sure:) Regards! From bra at fsn.hu Wed Jun 8 13:11:51 2011 From: bra at fsn.hu (Attila Nagy) Date: Wed, 08 Jun 2011 12:11:51 +0200 Subject: [Dovecot] lda_mailbox_autocreate does not work for lmtp? Message-ID: <4DEF4AE7.2010800@fsn.hu> Hi, I try to deliver into specific folders with the "plus addressing", namely: rcpt to: This works only if the folder exists. If it does not, I get the following error: rcpt to: 501 5.5.4 Unsupported options example-config/conf.d/20-lmtp.conf says: # When recipient address includes the detail (e.g. user+detail), try to save # the mail to the detail mailbox. See also recipient_delimiter and # lda_mailbox_autocreate settings. But it seems it does not work (or I am missing something). Current config (I've also tried to include autocreate plugin into lmtp, without any success) is below: # 2.0.13: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 8.2-STABLE amd64 auth_cache_negative_ttl = 0 auth_cache_size = 100 M auth_cache_ttl = 1 days disable_plaintext_auth = no info_log_path = syslog lda_mailbox_autocreate = yes lmtp_save_to_detail_mailbox = yes log_path = /var/log/dovecot-errors.log mail_fsync = never mail_gid = 999 mail_location = maildir:~/Maildir mail_plugins = " quota" mail_uid = 999 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = /usr/local/etc/dovecot/master-users driver = passwd-file master = yes pass = yes } passdb { args = /usr/local/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { autocreate = INBOX.Trash autocreate2 = INBOX.Drafts autocreate3 = INBOX.Sent autocreate4 = INBOX.Spam autosubscribe = INBOX.Trash autosubscribe2 = INBOX.Drafts autosubscribe3 = INBOX.Sent autosubscribe4 = INBOX.Spam mail_log_events = delete mailbox_delete mail_log_fields = uid box msgid size flags vsize from subject quota = maildir:User quota recipient_delimiter = + sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = pop3 imap lmtp service anvil { client_limit = 8192 } service auth { client_limit = 8192 unix_listener auth-userdb { mode = 0600 user = qmailldap } } service imap-login { client_limit = 1000 process_limit = 100 process_min_avail = 8 service_count = 0 } service imap { client_limit = 8 process_limit = 2048 process_min_avail = 16 service_count = 0 } service lmtp { inet_listener lmtp { port = 24 } user = qmailldap } service managesieve-login { inet_listener sieve { port = 4190 } } service pop3-login { client_limit = 1000 process_limit = 100 process_min_avail = 8 service_count = 0 } service pop3 { client_limit = 8 process_limit = 2048 process_min_avail = 32 service_count = 0 } ssl = no userdb { driver = prefetch } userdb { args = /usr/local/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } verbose_proctitle = yes protocol lmtp { mail_plugins = " quota autocreate mail_log notify sieve" } protocol imap { mail_max_userip_connections = 1024 mail_plugins = " quota imap_quota autocreate mail_log notify" } protocol pop3 { mail_max_userip_connections = 1024 mail_plugins = " quota autocreate" } From trever.adams at gmail.com Wed Jun 8 13:38:06 2011 From: trever.adams at gmail.com (Trever L. Adams) Date: Wed, 08 Jun 2011 04:38:06 -0600 Subject: [Dovecot] possible bug leading to lmtp crashes In-Reply-To: <1307449127.10421.700.camel@hurina> References: <4DAECAAC.3060903@gmail.com> <4DB58F67.4090600@gmail.com> <4DB6FCF7.9070905@gmail.com> <5D19A866-381B-4CA6-B8FF-0F7BCDA36799@iki.fi> <4DBC3F3F.4030605@gmail.com> <1304957973.10421.101.camel@hurina> <4DCA7C6F.40902@gmail.com> <1305116849.10421.192.camel@hurina> <4DD5191E.9040606@gmail.com> <4DEDAFC4.3080400@gmail.com> <1307449127.10421.700.camel@hurina> Message-ID: <4DEF510E.5090104@gmail.com> On 06/07/2011 06:18 AM, Timo Sirainen wrote: > On Mon, 2011-06-06 at 22:57 -0600, Trever L. Adams wrote: >> >> Ok, I think I have figured out the cause, but no the problem in the >> code. There were three machines TS, PP, ST. TS and ST had identical >> configurations with auth_username_format = %Lu. PP had it = %u. PP >> started crashing when I changed it to %Lu. > I don't see why that would matter, but I think this will help: > http://hg.dovecot.org/dovecot-2.0/rev/c0734f08b3f3 > It may be too early to be certain, but in 13 hours I haven't seen a crash on any of the three machines. This indeed may have fixed it all. How strange that various things seemed to be the cause and ... well... weren't. Thank you. I will let you know in about 2 days time if the fix was complete. Again, thank you, Trever -- "Yesterday is gone. Tomorrow is too far for me. Today is what I have, and what I fight for." -- Unknown -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From stephan at rename-it.nl Wed Jun 8 13:50:34 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 08 Jun 2011 12:50:34 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEC9223.6090807@us.edu.pl> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> <4DEC0980.9070105@rename-it.nl> <4DEC9223.6090807@us.edu.pl> Message-ID: <4DEF53FA.5040505@rename-it.nl> On 6/6/2011 10:38 AM, Maciej Uhlig wrote: > W dniu 2011-06-06 00:56, Stephan Bosch pisze: >> >> If you have a sample message, you can use the sieve-test tool for >> that. You can check the individual steps the interpreter takes while >> processing the message. Refer to the man page for more info. >> > > Thanks. It could be really helpful in case of script testing. But I'm > rather interested in statistics (which rule most probably causes mail > discarding). I've made the vnd.dovecot.debug extension available for the LDA Sieve plugin. This allows logging debug messages to the user's personal logfile (typically ~/.dovecot.sieve.log). It's currently only explained in the sieve-test man page. This change will be included in the next release. Regards, Stephan. From bra at fsn.hu Wed Jun 8 14:00:58 2011 From: bra at fsn.hu (Attila Nagy) Date: Wed, 08 Jun 2011 13:00:58 +0200 Subject: [Dovecot] lda_mailbox_autocreate does not work for lmtp? In-Reply-To: <4DEF4AE7.2010800@fsn.hu> References: <4DEF4AE7.2010800@fsn.hu> Message-ID: <4DEF566A.4060206@fsn.hu> On 06/08/11 12:11, Attila Nagy wrote: [a lot of things] Oh crap, it turned out that some binary junk crept into the LMTP sequence I tried with copy-paste... From nebano at gmail.com Wed Jun 8 14:32:31 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 13:32:31 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: Hi again Sorry if I top post, but this problem is urgent as we are losing mails. We have migrate from dovecot 1.4 to dovecot 2.0.12. But from severals now we have found this on our log files. relay=smtp1.huissier-justice.fr[private/dovecot-lmtp], delay=5.4, delays=0.74/0/0.01/4.6, dsn=5.2.2, status=bounced (host mail.domain.tld[private/dovecot-lmtp] said: 552 5.2.2 Not enough disk space (in reply to end of DATA command)) We use maildir on an ocfs2 filesystem shared by 4 serveurs. The partition is not full the output of df -hi is: #df -hi Filesystem Inodes IUsed IFree IUse% Mounted on /dev/mapper/vmail 30M 21M 9.2M 70% /var/vmail We noticed this happens when messages are bigger than 5Mbytes, but are not using quota plugins on dovecot-lmtp this is a part of our dovecot configuration. service lmtp { chroot = client_limit = 0 drop_priv_before_exec = no executable = lmtp extra_groups = group = idle_kill = 0 inet_listener lmtp { address = 127.0.0.1 ::1 port = 24 ssl = no } privileged_group = process_limit = 0 process_min_avail = 0 protocol = lmtp service_count = 0 type = unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } unix_listener lmtp { group = mode = 0666 user = } user = vsz_limit = 0 } protocol lmtp { mail_plugins = sieve postmaster_address = admin at domain.tld In postfix main.cf mailbox_size_limit = 0 virtual_mailbox_limit = 51200000 Any ideas Please? Thanks 2011/6/8 Osvaldo Alvarez Pozo : > Hi > I migrated to dovecot 2 and I started using lmtp for mail delivery. > > > But I have found this on my logs "save failed to INBOX: Not enough disk space" . > > There is enougth space on disk. and I am not using quota plugin on lmtp > > my lmtp conf is as follow: > > # > ## LMTP specific settings > ## > > # Support proxying to other LMTP/SMTP servers by performing passdb lookups. > #lmtp_proxy = no > > # When recipient address includes the detail (e.g. user+detail), try to save > # the mail to the detail mailbox. See also recipient_delimiter and > # lda_mailbox_autocreate settings. > #lmtp_save_to_detail_mailbox = no > > protocol lmtp { > ?# Space separated list of plugins to load (default is global mail_plugins). > ?#mail_plugins = $mail_plugins > mail_plugins = sieve > postmaster_address = admin at domain.tld > } > > Any idea please? > > Thanks > From Ralf.Hildebrandt at charite.de Wed Jun 8 14:35:39 2011 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Wed, 8 Jun 2011 13:35:39 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: <20110608113539.GB7863@charite.de> * Osvaldo Alvarez Pozo : > #df -hi > Filesystem Inodes IUsed IFree IUse% Mounted on > > /dev/mapper/vmail > 30M 21M 9.2M 70% /var/vmail And without -i? -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From nebano at gmail.com Wed Jun 8 14:40:27 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 13:40:27 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <20110608113539.GB7863@charite.de> References: <20110608113539.GB7863@charite.de> Message-ID: Hi the output of df -h is: Filesystem Size Used Avail Use% Mounted on /dev/mapper/vmail 120G 84G 37G 70% /var/vmail Thanks for your help. 2011/6/8 Ralf Hildebrandt : > * Osvaldo Alvarez Pozo : > >> #df -hi >> Filesystem ? ? ? ? ? ?Inodes ? IUsed ? IFree IUse% Mounted on >> >> /dev/mapper/vmail >> ? ? ? ? ? ? ? ? ? ? ? ? 30M ? ? 21M ? ?9.2M ? 70% /var/vmail > > And without -i? > > -- > Ralf Hildebrandt > ?Gesch?ftsbereich IT | Abteilung Netzwerk > ?Charit? - Universit?tsmedizin Berlin > ?Campus Benjamin Franklin > ?Hindenburgdamm 30 | D-12203 Berlin > ?Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 > ?ralf.hildebrandt at charite.de | http://www.charite.de > > From tss at iki.fi Wed Jun 8 14:47:56 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 14:47:56 +0300 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: <1307533676.10421.751.camel@hurina> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: > But I have found this on my logs "save failed to INBOX: Not enough disk space" . This means that a write() (or some other syscall) returned either ENOSPC or EDQUOT error message, or that quota plugin decided user is out of quota. > There is enougth space on disk. and I am not using quota plugin on lmtp What about filesystem quota? > my lmtp conf is as follow: A full doveconf -n output would be better. From tss at iki.fi Wed Jun 8 14:49:39 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 14:49:39 +0300 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: <1307533779.10421.752.camel@hurina> On Wed, 2011-06-08 at 13:32 +0200, Osvaldo Alvarez Pozo wrote: > Hi again > > Sorry if I top post, but this problem is urgent as we are losing mails. > > We have migrate from dovecot 1.4 to dovecot 2.0.12. But from severals > now we have found this on our log files. > > relay=smtp1.huissier-justice.fr[private/dovecot-lmtp], delay=5.4, > delays=0.74/0/0.01/4.6, dsn=5.2.2, status=bounced (host > mail.domain.tld[private/dovecot-lmtp] said: 552 5.2.2 > Not enough disk space (in reply to end of DATA > command)) Also, this is Postfix's log message. What does Dovecot LMTP log about it? From tom at whyscream.net Wed Jun 8 15:04:36 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Wed, 08 Jun 2011 14:04:36 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <1307533676.10421.751.camel@hurina> References: <1307533676.10421.751.camel@hurina> Message-ID: <4DEF6554.5010101@whyscream.net> On 08/06/11 13:47, Timo Sirainen wrote: > On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: > >> But I have found this on my logs "save failed to INBOX: Not enough disk space" . > > This means that a write() (or some other syscall) returned either ENOSPC > or EDQUOT error message, or that quota plugin decided user is out of > quota. > >> There is enougth space on disk. and I am not using quota plugin on lmtp > > What about filesystem quota? > I remember there were similar issues in the past, due to the fact that messages larger than 128kb were temporarily stored on disk in the users homedir. Maybe this is related? >> my lmtp conf is as follow: > > A full doveconf -n output would be better. > OP has not posted complete doveconf -n output, nor a specific version (other than 'dovecot 2'). Please do so. -- Reagrds, Tom From tss at iki.fi Wed Jun 8 15:09:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 15:09:41 +0300 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <1307533676.10421.751.camel@hurina> References: <1307533676.10421.751.camel@hurina> Message-ID: <1307534981.10421.756.camel@hurina> On Wed, 2011-06-08 at 14:47 +0300, Timo Sirainen wrote: > On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: > > > But I have found this on my logs "save failed to INBOX: Not enough disk space" . > > This means that a write() (or some other syscall) returned either ENOSPC > or EDQUOT error message, or that quota plugin decided user is out of > quota. Actually quota plugin gives a different error message. The only possibility I can think of is that ocfs2 has decided to start returning "no disk space" failures when Dovecot tries to create files. Does this happen for every mail delivery? Can you manually create more files? Can you upload messages via IMAP (i.e. is it only LMTP that is the problem? From tss at iki.fi Wed Jun 8 15:11:21 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 15:11:21 +0300 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <4DEF6554.5010101@whyscream.net> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> Message-ID: <1307535081.10421.758.camel@hurina> On Wed, 2011-06-08 at 14:04 +0200, Tom Hendrikx wrote: > > This means that a write() (or some other syscall) returned either ENOSPC > > or EDQUOT error message, or that quota plugin decided user is out of > > quota. > > > >> There is enougth space on disk. and I am not using quota plugin on lmtp > > > > What about filesystem quota? > > > > I remember there were similar issues in the past, due to the fact that > messages larger than 128kb were temporarily stored on disk in the users > homedir. Maybe this is related? That would have given a temporary failure, not an "out of disk space" error. Also nowadays even that doesn't happen, the message is simply read fully into memory. Although I guess it wouldn't hurt to check if /tmp is full (mail_temp_dir defaults to /tmp again). From nebano at gmail.com Wed Jun 8 15:11:53 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 14:11:53 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <4DEF6554.5010101@whyscream.net> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> Message-ID: Hi Tom, it is dovecot 2.0.12 this is the doveconf -n output. There is not file system quota. This is the output of doveconf -n # 2.0.12: /usr/local/dovecot/etc/dovecot/dovecot.conf # OS: Linux 2.6.32-bpo.5-amd64 x86_64 Debian 5.0.5 ocfs2 auth_cache_size = 1 M auth_mechanisms = plain login base_dir = /usr/local/dovecot disable_plaintext_auth = no first_valid_uid = 5000 last_valid_uid = 5000 mail_access_groups = mail mail_gid = 8 mail_location = maildir:/var/vmail/%d/%u/Maildir mail_max_userip_connections = 100 mail_uid = 5000 maildir_very_dirty_syncs = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date mmap_disable = yes passdb { args = /usr/local/dovecot/etc/dovecot/sql.conf driver = sql } plugin { quota = maildir:User quota sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 lmtp sieve service auth { client_limit = 10500 unix_listener /var/spool/postfix/private/auth { group = mail mode = 0660 user = postfix } unix_listener auth-userdb { group = mail mode = 0660 user = postfix } } service imap-login { process_min_avail = 2 service_count = 0 vsz_limit = 128 M } service imap { process_limit = 5000 } service lmtp { inet_listener lmtp { address = 127.0.0.1 ::1 port = 24 } unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } service managesieve-login { inet_listener sieve { port = 4190 } } service pop3-login { process_min_avail = 2 service_count = 0 } service pop3 { process_limit = 5000 } userdb { driver = prefetch } userdb { args = /usr/local/dovecot/etc/dovecot/sql.conf driver = sql } protocol imap { imap_client_workarounds = delay-newmail } protocol pop3 { pop3_client_workarounds = outlook-no-nuls oe-ns-eoh pop3_uidl_format = %08Xu%08Xv } protocol lmtp { mail_plugins = sieve postmaster_address = admin at domain.tld } protocol sieve { managesieve_implementation_string = Dovecot Pigeonhole managesieve_logout_format = bytes=%i/%o managesieve_max_compile_errors = 5 managesieve_max_line_length = 65536 } Thanks 2011/6/8 Tom Hendrikx : > On 08/06/11 13:47, Timo Sirainen wrote: >> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: >> >>> But I have found this on my logs "save failed to INBOX: Not enough disk space" . >> >> This means that a write() (or some other syscall) returned either ENOSPC >> or EDQUOT error message, or that quota plugin decided user is out of >> quota. >> >>> There is enougth space on disk. and I am not using quota plugin on lmtp >> >> What about filesystem quota? >> > > I remember there were similar issues in the past, due to the fact that > messages larger than 128kb were temporarily stored on disk in the users > homedir. Maybe this is related? > >>> my lmtp conf is as follow: >> >> A full doveconf -n output would be better. >> > > OP has not posted complete doveconf -n output, nor a specific version > (other than 'dovecot 2'). Please do so. > > > -- > Reagrds, > ? ? ? ?Tom > From joh.hendriks at gmail.com Wed Jun 8 15:28:58 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Wed, 08 Jun 2011 14:28:58 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> Message-ID: <4DEF6B0A.9020305@gmail.com> Osvaldo Alvarez Pozo schreef: > Hi Tom, > > it is dovecot 2.0.12 this is the doveconf -n output. > > > There is not file system quota. > > This is the output of doveconf -n > > # 2.0.12: /usr/local/dovecot/etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-bpo.5-amd64 x86_64 Debian 5.0.5 ocfs2 > auth_cache_size = 1 M > auth_mechanisms = plain login > base_dir = /usr/local/dovecot > disable_plaintext_auth = no > first_valid_uid = 5000 > last_valid_uid = 5000 > mail_access_groups = mail > mail_gid = 8 > mail_location = maildir:/var/vmail/%d/%u/Maildir > mail_max_userip_connections = 100 > mail_uid = 5000 > maildir_very_dirty_syncs = yes > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include variables body enotify > environment mailbox date > mmap_disable = yes > passdb { > args = /usr/local/dovecot/etc/dovecot/sql.conf > driver = sql > } > plugin { > quota = maildir:User quota > sieve = ~/.dovecot.sieve > sieve_dir = ~/sieve > } > protocols = imap pop3 lmtp sieve > service auth { > client_limit = 10500 > unix_listener /var/spool/postfix/private/auth { > group = mail > mode = 0660 > user = postfix > } > unix_listener auth-userdb { > group = mail > mode = 0660 > user = postfix > } > } > service imap-login { > process_min_avail = 2 > service_count = 0 > vsz_limit = 128 M > } > service imap { > process_limit = 5000 > } > service lmtp { > inet_listener lmtp { > address = 127.0.0.1 ::1 > port = 24 > } > unix_listener /var/spool/postfix/private/dovecot-lmtp { > group = postfix > mode = 0660 > user = postfix > } > } > service managesieve-login { > inet_listener sieve { > port = 4190 > } > } > service pop3-login { > process_min_avail = 2 > service_count = 0 > } > service pop3 { > process_limit = 5000 > } > > userdb { > driver = prefetch > } > > userdb { > args = /usr/local/dovecot/etc/dovecot/sql.conf > driver = sql > } > > protocol imap { > imap_client_workarounds = delay-newmail > } > protocol pop3 { > pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > pop3_uidl_format = %08Xu%08Xv > } > > protocol lmtp { > mail_plugins = sieve > postmaster_address = admin at domain.tld > } > protocol sieve { > managesieve_implementation_string = Dovecot Pigeonhole > managesieve_logout_format = bytes=%i/%o > managesieve_max_compile_errors = 5 > managesieve_max_line_length = 65536 > } > > > Thanks > > 2011/6/8 Tom Hendrikx: >> On 08/06/11 13:47, Timo Sirainen wrote: >>> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: >>> >>>> But I have found this on my logs "save failed to INBOX: Not enough disk space" . >>> This means that a write() (or some other syscall) returned either ENOSPC >>> or EDQUOT error message, or that quota plugin decided user is out of >>> quota. >>> >>>> There is enougth space on disk. and I am not using quota plugin on lmtp >>> What about filesystem quota? >>> >> I remember there were similar issues in the past, due to the fact that >> messages larger than 128kb were temporarily stored on disk in the users >> homedir. Maybe this is related? >> >>>> my lmtp conf is as follow: >>> A full doveconf -n output would be better. >>> >> OP has not posted complete doveconf -n output, nor a specific version >> (other than 'dovecot 2'). Please do so. >> >> >> -- >> Reagrds, >> Tom >> Wild guess, What is the disk space of your /var dir or /var/spool for that matter Or df -h for all mounted filesystems. regards, Johan Hendriks From nebano at gmail.com Wed Jun 8 15:31:12 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 14:31:12 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <1307535081.10421.758.camel@hurina> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <1307535081.10421.758.camel@hurina> Message-ID: Hi according to dovecot -a: mail_temp_dir = /tmp and df -h gives /dev/sda3 942M 18M 877M 2% /tmp Thanks 2011/6/8 Timo Sirainen : > On Wed, 2011-06-08 at 14:04 +0200, Tom Hendrikx wrote: >> > This means that a write() (or some other syscall) returned either ENOSPC >> > or EDQUOT error message, or that quota plugin decided user is out of >> > quota. >> > >> >> There is enougth space on disk. and I am not using quota plugin on lmtp >> > >> > What about filesystem quota? >> > >> >> I remember there were similar issues in the past, due to the fact that >> messages larger than 128kb were temporarily stored on disk in the users >> homedir. Maybe this is related? > > That would have given a temporary failure, not an "out of disk space" > error. Also nowadays even that doesn't happen, the message is simply > read fully into memory. > > Although I guess it wouldn't hurt to check if /tmp is full > (mail_temp_dir defaults to /tmp again). > > > From nebano at gmail.com Wed Jun 8 15:35:36 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 14:35:36 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <4DEF6B0A.9020305@gmail.com> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <4DEF6B0A.9020305@gmail.com> Message-ID: Hi this is the output of df -h Filesystem Size Used Avail Use% Mounted on /dev/sda2 5.5G 1.8G 3.6G 33% / tmpfs 502M 0 502M 0% /lib/init/rw udev 10M 680K 9.4M 7% /dev tmpfs 502M 0 502M 0% /dev/shm /dev/sda1 122M 41M 76M 35% /boot /dev/sda3 942M 18M 877M 2% /tmp /dev/sda6 7.4G 812M 6.3G 12% /var/log /dev/mapper/vmail 120G 84G 37G 70% /var/vmail So /var/spool depends on "/" wich has 3.6G available. Thanks 2011/6/8 Johan Hendriks : > Osvaldo Alvarez Pozo schreef: >> >> Hi Tom, >> >> it is dovecot 2.0.12 this is the doveconf -n output. >> >> >> There is not file system quota. >> >> This is the output of doveconf -n >> >> # 2.0.12: /usr/local/dovecot/etc/dovecot/dovecot.conf >> # OS: Linux 2.6.32-bpo.5-amd64 x86_64 Debian 5.0.5 ocfs2 >> auth_cache_size = 1 M >> auth_mechanisms = plain login >> base_dir = /usr/local/dovecot >> disable_plaintext_auth = no >> first_valid_uid = 5000 >> last_valid_uid = 5000 >> mail_access_groups = mail >> mail_gid = 8 >> mail_location = maildir:/var/vmail/%d/%u/Maildir >> mail_max_userip_connections = 100 >> mail_uid = 5000 >> maildir_very_dirty_syncs = yes >> managesieve_notify_capability = mailto >> managesieve_sieve_capability = fileinto reject envelope >> encoded-character vacation subaddress comparator-i;ascii-numeric >> relational regex imap4flags copy include variables body enotify >> environment mailbox date >> mmap_disable = yes >> passdb { >> ?args = /usr/local/dovecot/etc/dovecot/sql.conf >> ?driver = sql >> } >> plugin { >> ?quota = maildir:User quota >> ?sieve = ~/.dovecot.sieve >> ?sieve_dir = ~/sieve >> } >> protocols = imap pop3 lmtp sieve >> service auth { >> ?client_limit = 10500 >> ?unix_listener /var/spool/postfix/private/auth { >> ? ?group = mail >> ? ?mode = 0660 >> ? ?user = postfix >> ?} >> ?unix_listener auth-userdb { >> ? ?group = mail >> ? ?mode = 0660 >> ? ?user = postfix >> ?} >> } >> service imap-login { >> ?process_min_avail = 2 >> ?service_count = 0 >> ?vsz_limit = 128 M >> } >> service imap { >> ?process_limit = 5000 >> } >> service lmtp { >> ?inet_listener lmtp { >> ? ?address = ?127.0.0.1 ::1 >> ? ?port = 24 >> ?} >> ?unix_listener /var/spool/postfix/private/dovecot-lmtp { >> ? ?group = postfix >> ? ?mode = 0660 >> ? ?user = postfix >> ?} >> } >> service managesieve-login { >> ?inet_listener sieve { >> ? ?port = 4190 >> ?} >> } >> service pop3-login { >> ?process_min_avail = 2 >> ?service_count = 0 >> } >> service pop3 { >> ?process_limit = 5000 >> } >> >> userdb { >> ?driver = prefetch >> } >> >> userdb { >> ?args = /usr/local/dovecot/etc/dovecot/sql.conf >> ?driver = sql >> } >> >> protocol imap { >> ?imap_client_workarounds = delay-newmail >> } >> protocol pop3 { >> ?pop3_client_workarounds = outlook-no-nuls oe-ns-eoh >> ?pop3_uidl_format = %08Xu%08Xv >> } >> >> protocol lmtp { >> ?mail_plugins = sieve >> ?postmaster_address = admin at domain.tld >> } >> protocol sieve { >> ?managesieve_implementation_string = Dovecot Pigeonhole >> ?managesieve_logout_format = bytes=%i/%o >> ?managesieve_max_compile_errors = 5 >> ?managesieve_max_line_length = 65536 >> } >> >> >> Thanks >> >> 2011/6/8 Tom Hendrikx: >>> >>> On 08/06/11 13:47, Timo Sirainen wrote: >>>> >>>> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: >>>> >>>>> But I have found this on my logs "save failed to INBOX: Not enough disk >>>>> space" . >>>> >>>> This means that a write() (or some other syscall) returned either ENOSPC >>>> or EDQUOT error message, or that quota plugin decided user is out of >>>> quota. >>>> >>>>> There is enougth space on disk. and I am not using quota plugin on lmtp >>>> >>>> What about filesystem quota? >>>> >>> I remember there were similar issues in the past, due to the fact that >>> messages larger than 128kb were temporarily stored on disk in the users >>> homedir. Maybe this is related? >>> >>>>> my lmtp conf is as follow: >>>> >>>> A full doveconf -n output would be better. >>>> >>> OP has not posted complete doveconf -n output, nor a specific version >>> (other than 'dovecot 2'). Please do so. >>> >>> >>> -- >>> Reagrds, >>> ? ? ? ?Tom >>> > Wild guess, > What is the disk space of your /var dir or /var/spool for that matter > Or df -h for all mounted filesystems. > > regards, > Johan Hendriks > > From tss at iki.fi Wed Jun 8 15:59:47 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 15:59:47 +0300 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF3F78.2000509@wenn.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> Message-ID: <1307537987.10421.762.camel@hurina> On Wed, 2011-06-08 at 10:23 +0100, Ricardo Branco wrote: Well, this was an interesting message. multipart/alternative where first part was text and second part a GIF image. My email client decided that it preferred showing the GIF image to text (which was its right, as it was an alternative). > User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; > rv:1.9.2.17) > Gecko/20110414 Lightning/1.0b2 Thunderbird/3.1.10 I wonder if it was generated by Thunderbird or something else.. From ricardo at wenn.com Wed Jun 8 16:16:14 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 14:16:14 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <1307537987.10421.762.camel@hurina> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> Message-ID: <4DEF761E.50306@wenn.com> Seems MailScanner signatures are up the swanny again, ive had issues on replys the sig gets put in the wrong areas and it was fixed then broken then fixed, thats applied server server side on outbound emails so not related to this issue. Not everyone in our office runs the Lightning plugin, just a few, the issue happens to people who dont run it. I found the bug on the Mozilla bugtrac and updated so hopfully they will look at it but not much hope. Timo Sirainen wrote, On 08/06/2011 13:59: > On Wed, 2011-06-08 at 10:23 +0100, Ricardo Branco wrote: > > Well, this was an interesting message. multipart/alternative where first > part was text and second part a GIF image. My email client decided that > it preferred showing the GIF image to text (which was its right, as it > was an alternative). > >> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; >> rv:1.9.2.17) >> Gecko/20110414 Lightning/1.0b2 Thunderbird/3.1.10 > I wonder if it was generated by Thunderbird or something else.. > > -- Ricardo Branco Senior IT Manager 35 Tileyard Studios, Tileyard Road, London N7 9AH, England Email: ricardo at wenn.com Phone: +44 (0)20 7607 2757 Corp: http://corp.wenn.com Photo: http://photo.wenn.com Web: http://www.wenn.com -------------- next part -------------- A non-text attachment was scrubbed... Name: wenn_logo_plus_offices.gif Type: image/gif Size: 3768 bytes Desc: not available URL: From nebano at gmail.com Wed Jun 8 16:49:41 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 15:49:41 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <4DEF75AE.4050307@gmail.com> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <4DEF6B0A.9020305@gmail.com> <4DEF75AE.4050307@gmail.com> Message-ID: Hi Doing mail debug I found this dovecot: lmtp(12696, user1 at domain.tld): Error: o_stream_send_istream(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) failed: No space left on device dovecot: lmtp(12696, user1 at domain.tld): Error: o_stream_flush(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) failed: No space left on device So dovecot write in to a tmp folder inside the user Maildir before definitly copying it to new folder. But why it says thereis no space left? 2011/6/8 Johan Hendriks : > Osvaldo Alvarez Pozo schreef: >> >> Hi >> this is the output of df -h >> >> Filesystem ? ? ? ? ? ?Size ?Used Avail Use% Mounted on >> /dev/sda2 ? ? ? ? ? ? 5.5G ?1.8G ?3.6G ?33% / >> tmpfs ? ? ? ? ? ? ? ? 502M ? ? 0 ?502M ? 0% /lib/init/rw >> udev ? ? ? ? ? ? ? ? ? 10M ?680K ?9.4M ? 7% /dev >> tmpfs ? ? ? ? ? ? ? ? 502M ? ? 0 ?502M ? 0% /dev/shm >> /dev/sda1 ? ? ? ? ? ? 122M ? 41M ? 76M ?35% /boot >> /dev/sda3 ? ? ? ? ? ? 942M ? 18M ?877M ? 2% /tmp >> /dev/sda6 ? ? ? ? ? ? 7.4G ?812M ?6.3G ?12% /var/log >> /dev/mapper/vmail >> ? ? ? ? ? ? ? ? ? ? ? 120G ? 84G ? 37G ?70% /var/vmail >> >> So /var/spool depends on "/" wich has 3.6G available. >> >> Thanks >> >> >> 2011/6/8 Johan Hendriks: >>> >>> Osvaldo Alvarez Pozo schreef: >>>> >>>> Hi Tom, >>>> >>>> it is dovecot 2.0.12 this is the doveconf -n output. >>>> >>>> >>>> There is not file system quota. >>>> >>>> This is the output of doveconf -n >>>> >>>> # 2.0.12: /usr/local/dovecot/etc/dovecot/dovecot.conf >>>> # OS: Linux 2.6.32-bpo.5-amd64 x86_64 Debian 5.0.5 ocfs2 >>>> auth_cache_size = 1 M >>>> auth_mechanisms = plain login >>>> base_dir = /usr/local/dovecot >>>> disable_plaintext_auth = no >>>> first_valid_uid = 5000 >>>> last_valid_uid = 5000 >>>> mail_access_groups = mail >>>> mail_gid = 8 >>>> mail_location = maildir:/var/vmail/%d/%u/Maildir >>>> mail_max_userip_connections = 100 >>>> mail_uid = 5000 >>>> maildir_very_dirty_syncs = yes >>>> managesieve_notify_capability = mailto >>>> managesieve_sieve_capability = fileinto reject envelope >>>> encoded-character vacation subaddress comparator-i;ascii-numeric >>>> relational regex imap4flags copy include variables body enotify >>>> environment mailbox date >>>> mmap_disable = yes >>>> passdb { >>>> ?args = /usr/local/dovecot/etc/dovecot/sql.conf >>>> ?driver = sql >>>> } >>>> plugin { >>>> ?quota = maildir:User quota >>>> ?sieve = ~/.dovecot.sieve >>>> ?sieve_dir = ~/sieve >>>> } >>>> protocols = imap pop3 lmtp sieve >>>> service auth { >>>> ?client_limit = 10500 >>>> ?unix_listener /var/spool/postfix/private/auth { >>>> ? ?group = mail >>>> ? ?mode = 0660 >>>> ? ?user = postfix >>>> ?} >>>> ?unix_listener auth-userdb { >>>> ? ?group = mail >>>> ? ?mode = 0660 >>>> ? ?user = postfix >>>> ?} >>>> } >>>> service imap-login { >>>> ?process_min_avail = 2 >>>> ?service_count = 0 >>>> ?vsz_limit = 128 M >>>> } >>>> service imap { >>>> ?process_limit = 5000 >>>> } >>>> service lmtp { >>>> ?inet_listener lmtp { >>>> ? ?address = ?127.0.0.1 ::1 >>>> ? ?port = 24 >>>> ?} >>>> ?unix_listener /var/spool/postfix/private/dovecot-lmtp { >>>> ? ?group = postfix >>>> ? ?mode = 0660 >>>> ? ?user = postfix >>>> ?} >>>> } >>>> service managesieve-login { >>>> ?inet_listener sieve { >>>> ? ?port = 4190 >>>> ?} >>>> } >>>> service pop3-login { >>>> ?process_min_avail = 2 >>>> ?service_count = 0 >>>> } >>>> service pop3 { >>>> ?process_limit = 5000 >>>> } >>>> >>>> userdb { >>>> ?driver = prefetch >>>> } >>>> >>>> userdb { >>>> ?args = /usr/local/dovecot/etc/dovecot/sql.conf >>>> ?driver = sql >>>> } >>>> >>>> protocol imap { >>>> ?imap_client_workarounds = delay-newmail >>>> } >>>> protocol pop3 { >>>> ?pop3_client_workarounds = outlook-no-nuls oe-ns-eoh >>>> ?pop3_uidl_format = %08Xu%08Xv >>>> } >>>> >>>> protocol lmtp { >>>> ?mail_plugins = sieve >>>> ?postmaster_address = admin at domain.tld >>>> } >>>> protocol sieve { >>>> ?managesieve_implementation_string = Dovecot Pigeonhole >>>> ?managesieve_logout_format = bytes=%i/%o >>>> ?managesieve_max_compile_errors = 5 >>>> ?managesieve_max_line_length = 65536 >>>> } >>>> >>>> >>>> Thanks >>>> >>>> 2011/6/8 Tom Hendrikx: >>>>> >>>>> On 08/06/11 13:47, Timo Sirainen wrote: >>>>>> >>>>>> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: >>>>>> >>>>>>> But I have found this on my logs "save failed to INBOX: Not enough >>>>>>> disk >>>>>>> space" . >>>>>> >>>>>> This means that a write() (or some other syscall) returned either >>>>>> ENOSPC >>>>>> or EDQUOT error message, or that quota plugin decided user is out of >>>>>> quota. >>>>>> >>>>>>> There is enougth space on disk. and I am not using quota plugin on >>>>>>> lmtp >>>>>> >>>>>> What about filesystem quota? >>>>>> >>>>> I remember there were similar issues in the past, due to the fact that >>>>> messages larger than 128kb were temporarily stored on disk in the users >>>>> homedir. Maybe this is related? >>>>> >>>>>>> my lmtp conf is as follow: >>>>>> >>>>>> A full doveconf -n output would be better. >>>>>> >>>>> OP has not posted complete doveconf -n output, nor a specific version >>>>> (other than 'dovecot 2'). Please do so. >>>>> >>>>> >>>>> -- >>>>> Reagrds, >>>>> ? ? ? ?Tom >>>>> >>> Wild guess, >>> What is the disk space of your /var dir or /var/spool for that matter >>> Or df -h for all mounted filesystems. >>> >>> regards, >>> Johan Hendriks >>> >>> > Could it be a permission problem? > > mail_gid = 8 > On my system this is the same as mail_uid in your case 5000 > > regards, > Johan > > > From Ralf.Hildebrandt at charite.de Wed Jun 8 16:53:12 2011 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Wed, 8 Jun 2011 15:53:12 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <4DEF6B0A.9020305@gmail.com> <4DEF75AE.4050307@gmail.com> Message-ID: <20110608135312.GR7863@charite.de> * Osvaldo Alvarez Pozo : > Hi > > Doing mail debug I found this > > dovecot: lmtp(12696, user1 at domain.tld): Error: > o_stream_send_istream(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) > failed: No space left on device > > dovecot: lmtp(12696, user1 at domain.tld): Error: > o_stream_flush(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) > failed: No space left on device > > > So dovecot write in to a tmp folder inside the user Maildir before > definitly copying it to new folder. That's how Maildir works, yes. But writing to the tmp directory fails > But why it says thereis no space left? Maybe the OCFS is out of whack? -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From robert at schetterer.org Wed Jun 8 17:18:54 2011 From: robert at schetterer.org (Robert Schetterer) Date: Wed, 08 Jun 2011 16:18:54 +0200 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF761E.50306@wenn.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> Message-ID: <4DEF84CE.7070704@schetterer.org> Am 08.06.2011 15:16, schrieb Ricardo Branco: well i am only seeing your wenn_logo_plus_offices.gif in thunderbird no text at all, for your body text i had to choose header view -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From CMarcus at Media-Brokers.com Wed Jun 8 17:26:33 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 08 Jun 2011 10:26:33 -0400 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF84CE.7070704@schetterer.org> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> Message-ID: <4DEF8699.3000609@Media-Brokers.com> On 2011-06-08 10:18 AM, Robert Schetterer wrote: > Am 08.06.2011 15:16, schrieb Ricardo Branco: > > well i am only seeing your > wenn_logo_plus_offices.gif in thunderbird > no text at all, for your body text i had to choose header view I don't see any body text anywhere, headers or the body, all I see is the logo - I thought he was just messing up sending blank emails... Ricardo, something is seriously broken on your mail system. -- Best regards, Charles From robert at schetterer.org Wed Jun 8 17:31:37 2011 From: robert at schetterer.org (Robert Schetterer) Date: Wed, 08 Jun 2011 16:31:37 +0200 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF8699.3000609@Media-Brokers.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> <4DEF8699.3000609@Media-Brokers.com> Message-ID: <4DEF87C9.8040102@schetterer.org> Am 08.06.2011 16:26, schrieb Charles Marcus: > On 2011-06-08 10:18 AM, Robert Schetterer wrote: >> Am 08.06.2011 15:16, schrieb Ricardo Branco: >> >> well i am only seeing your >> wenn_logo_plus_offices.gif in thunderbird >> no text at all, for your body text i had to choose header view > > I don't see any body text anywhere, headers or the body, all I see is > the logo - I thought he was just messing up sending blank emails... > > Ricardo, something is seriously broken on your mail system. > my bet goes to mailscanner -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From ricardo at wenn.com Wed Jun 8 17:45:33 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 15:45:33 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <1307537987.10421.762.camel@hurina> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> Message-ID: <4DEF8B0D.50804@wenn.com> test Timo Sirainen wrote, On 08/06/2011 13:59: > On Wed, 2011-06-08 at 10:23 +0100, Ricardo Branco wrote: > > Well, this was an interesting message. multipart/alternative where first > part was text and second part a GIF image. My email client decided that > it preferred showing the GIF image to text (which was its right, as it > was an alternative). > >> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; >> rv:1.9.2.17) >> Gecko/20110414 Lightning/1.0b2 Thunderbird/3.1.10 > I wonder if it was generated by Thunderbird or something else.. > > -- Ricardo Branco Senior IT Manager 35 Tileyard Studios, Tileyard Road, London N7 9AH, England Email: ricardo at wenn.com Phone: +44 (0)20 7607 2757 Corp: http://corp.wenn.com Photo: http://photo.wenn.com Web: http://www.wenn.com -------------- next part -------------- A non-text attachment was scrubbed... Name: wenn_logo_plus_offices.gif Type: image/gif Size: 3768 bytes Desc: not available URL: From ricardo at wenn.com Wed Jun 8 17:49:57 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 15:49:57 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF8699.3000609@Media-Brokers.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> <4DEF8699.3000609@Media-Brokers.com> Message-ID: <4DEF8C15.2090306@wenn.com> Right ive turned off my local Thunderbird sig, hopefully this now works. I did several tests against my hotmail/gmail accounts and also other accounts in the office instead of sending to the mailing list and all were received ok, it seems to only go wrong though the maillist. Charles Marcus wrote, On 08/06/2011 15:26: > On 2011-06-08 10:18 AM, Robert Schetterer wrote: >> Am 08.06.2011 15:16, schrieb Ricardo Branco: >> >> well i am only seeing your >> wenn_logo_plus_offices.gif in thunderbird >> no text at all, for your body text i had to choose header view > I don't see any body text anywhere, headers or the body, all I see is > the logo - I thought he was just messing up sending blank emails... > > Ricardo, something is seriously broken on your mail system. > From nebano at gmail.com Wed Jun 8 17:55:36 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 16:55:36 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <20110608135312.GR7863@charite.de> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <4DEF6B0A.9020305@gmail.com> <4DEF75AE.4050307@gmail.com> <20110608135312.GR7863@charite.de> Message-ID: Hi all Apparently is a file system issue.I tried to copy a 10MB file and it failed. I did as follow. su vmail cp /root/huge_file /var/vmail/domain.tld/user1/Maildir/tmp and i got the same result. "No space left on device" So I have to look somewhere else!!! Thanks to you all Thanks for answering me. By 2011/6/8 Ralf Hildebrandt : > * Osvaldo Alvarez Pozo : >> Hi >> >> Doing mail debug I found this >> >> dovecot: lmtp(12696, user1 at domain.tld): Error: >> o_stream_send_istream(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) >> failed: No space left on device >> >> dovecot: lmtp(12696, user1 at domain.tld): Error: >> o_stream_flush(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) >> failed: No space left on device >> >> >> So dovecot write in to a tmp folder inside the user Maildir before >> definitly copying it to new folder. > > That's how Maildir works, yes. But writing to the tmp directory fails > >> But why it says thereis no space left? > Maybe the OCFS is out of whack? > > -- > Ralf Hildebrandt > ?Gesch?ftsbereich IT | Abteilung Netzwerk > ?Charit? - Universit?tsmedizin Berlin > ?Campus Benjamin Franklin > ?Hindenburgdamm 30 | D-12203 Berlin > ?Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 > ?ralf.hildebrandt at charite.de | http://www.charite.de > > From CMarcus at Media-Brokers.com Wed Jun 8 18:09:44 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 08 Jun 2011 11:09:44 -0400 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF8C15.2090306@wenn.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> <4DEF8699.3000609@Media-Brokers.com> <4DEF8C15.2090306@wenn.com> Message-ID: <4DEF90B8.1040809@Media-Brokers.com> Please don't top-post... On 2011-06-08 10:49 AM, Ricardo Branco wrote: > Charles Marcus wrote, On 08/06/2011 15:26: >> On 2011-06-08 10:18 AM, Robert Schetterer wrote: >>> Am 08.06.2011 15:16, schrieb Ricardo Branco: >>> >>> well i am only seeing your >>> wenn_logo_plus_offices.gif in thunderbird >>> no text at all, for your body text i had to choose header view >> I don't see any body text anywhere, headers or the body, all I see is >> the logo - I thought he was just messing up sending blank emails... >> >> Ricardo, something is seriously broken on your mail system. > Right ive turned off my local Thunderbird sig, hopefully this now > works. > > I did several tests against my hotmail/gmail accounts and also other > accounts in the office instead of sending to the mailing list and all > were received ok, it seems to only go wrong though the maillist. Well, we got the body text this time... it certainly isn't the Thunderbird sig itself, because that's what I use (for many many years now), but maybe the sig is triggering something in your mailscanner setup... -- Best regards, Charles From ricardo at wenn.com Wed Jun 8 18:29:27 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 16:29:27 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF90B8.1040809@Media-Brokers.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> <4DEF8699.3000609@Media-Brokers.com> <4DEF8C15.2090306@wenn.com> <4DEF90B8.1040809@Media-Brokers.com> Message-ID: <4DEF9557.3090602@wenn.com> Charles Marcus wrote, On 08/06/2011 16:09: > Please don't top-post... > > On 2011-06-08 10:49 AM, Ricardo Branco wrote: >> Charles Marcus wrote, On 08/06/2011 15:26: >>> On 2011-06-08 10:18 AM, Robert Schetterer wrote: >>>> Am 08.06.2011 15:16, schrieb Ricardo Branco: >>>> >>>> well i am only seeing your >>>> wenn_logo_plus_offices.gif in thunderbird >>>> no text at all, for your body text i had to choose header view >>> I don't see any body text anywhere, headers or the body, all I see is >>> the logo - I thought he was just messing up sending blank emails... >>> >>> Ricardo, something is seriously broken on your mail system. >> Right ive turned off my local Thunderbird sig, hopefully this now >> works. >> >> I did several tests against my hotmail/gmail accounts and also other >> accounts in the office instead of sending to the mailing list and all >> were received ok, it seems to only go wrong though the maillist. > Well, we got the body text this time... it certainly isn't the > Thunderbird sig itself, because that's what I use (for many many years > now), but maybe the sig is triggering something in your mailscanner setup... > The stuff thats going on in the latest TB, you never know if it could. Weird it happens to this mailinglist though and no other reports so far of people not getting emails and as said my tests seemed all ok. Anyway back to the point of the original message, I suspect TB having an issue handling IMAP Tag updates coming from the server. From aperezaranda at yaco.es Wed Jun 8 18:52:28 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Wed, 8 Jun 2011 17:52:28 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1307456501.10421.745.camel@hurina> References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: It must run on dovecot 2.0.13? We are upgrading to 2.0.13 and with this I get the follow message: Jun 8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: +mail_plugins=fts fts_solr?G 2011/6/7 Timo Sirainen : > On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >> Greats, I'm working on patch from this morning, but it's very hard to >> debug on settings-parser > > I don't think you should need to touch that code. It's a bit difficult > for me also to follow.. > >> How can I enable i_debug on settings-parser.c ? > > What do you mean? You could add i_debug() calls and it should work just > the same as everywhere. > > Did you try the patch in my previous mail? I think that should be > enough. You could then use: > > user_attrs = .., mailPlugins=+mail_plugins > > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From dovecot at list-post.mks-mail.de Wed Jun 8 19:22:52 2011 From: dovecot at list-post.mks-mail.de (=?ISO-8859-15?Q?Markus_Sch=F6nhaber?=) Date: Wed, 08 Jun 2011 18:22:52 +0200 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <1307537987.10421.762.camel@hurina> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> Message-ID: <4DEFA1DC.4020408@list-post.mks-mail.de> 08.06.2011 14:59, Timo Sirainen: > Well, this was an interesting message. multipart/alternative where first > part was text and second part a GIF image. To me, it seems the second part is not a GIF but rather a multipart/related which, in turn, contains the GIF as first (and only) part. Maybe that's what confuses some clients. > My email client decided that > it preferred showing the GIF image to text (which was its right, as it > was an alternative). My Thunderbird does so too. RoundCube, OTOH, showes the text. -- Regards mks From delphij at delphij.net Wed Jun 8 23:04:51 2011 From: delphij at delphij.net (Xin LI) Date: Wed, 08 Jun 2011 13:04:51 -0700 Subject: [Dovecot] On-delivery deduplication? Message-ID: <4DEFD5E3.2090702@delphij.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi, A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is their optional "duplicate suppression", which eliminates duplicate message at deliver time, if their envelope sender, recipient and message-id matches. For example, if one subscribes to a mailing list, and someone hit "Reply All" to reply to him, there will be two different SMTP deliveries, one from the replier's server and one from the mailing list. Is it possible to do the same on latest Dovecot? (Looking at the documentation it seems not?) Or is there some better ways to implement the same functionality? Thanks in advance! Cheers, - -- Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! Live free or die -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (FreeBSD) iQEcBAEBCAAGBQJN79XjAAoJEATO+BI/yjfBCO0IAMLNZ9Rkargb6bQqILAcbobt 2ZFb6cO8f4vJu/BPO7Dq3TZoIEmfR+/pbruwgV+FSslTL+5TjkB5Rd5Yb+HYgvZT Qdbk8Jshgq1XBj2MvbLQugHKhNcN37oDI9eGCDPttYe/C4Jb2hh1W+RtqGpfS6ud jXUTUzS4yr7HWRRYcyDMvL4HuG/VnKEuFYmX2T/mT8oHfz5FckIPM+k+0prbgMSx IGTdkKpSMnqYnyUjxQklSmMJ5iJMM7Lr6FMS2c6ORKwG8rD0w1GKrU77saHqJJLQ YJqqIwJcr5753US6Q1Rk4gK+/L4JmJ+2BUXDdNMYBIfPOFjH9nOLlE5HIfSskBg= =fo5J -----END PGP SIGNATURE----- From berni at birkenwald.de Wed Jun 8 23:07:14 2011 From: berni at birkenwald.de (Bernhard Schmidt) Date: Wed, 8 Jun 2011 20:07:14 +0000 (UTC) Subject: [Dovecot] Dovecot 2.0+LMTP: Legal MAIL FROM rejected? Message-ID: Hi, I run Dovecot 2.0.13 fed by Postfix over LMTP. Today it rejected one mail Postfix and Amavis accepted, generating a bounce. It was just a spammail, but I think the sender address is legal according to RFC5321 and should be accepted. I don't like generating bounces, email should be either rejected by postfix/pre-queue-amavis or delivered. Jun 6 12:32:47 mail postfix/qmgr[840]: 991FC240DB: from=, size=8427, nrcpt=1 (queue active) Jun 6 12:32:47 mail amavis[27046]: (27046-06) FWD via SMTP: <"admin -> ,BODY=7BIT 250 2.0.0 Ok, id=27046-06, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as 991FC240DB Jun 6 12:32:47 mail postfix/lmtp[4710]: 991FC240DB: to=, orig_to=, relay=pop3.domain.com[::1]:24, delay=0.24, delays=0.09/0.11/0.03/0.01, dsn=5.5.4, status=bounced (host pop3.domain.com[::1] said: 501 5.5.4 Invalid parameters (in reply to MAIL FROM command)) It looks like dovecot/lmtp does not accept an address with quoted localpart that contains a space mail from:<"admin admin"@kl38000.com> 501 5.5.4 Invalid parameters mail from:<"adminadmin"@kl38000.com> 250 2.1.0 OK mail from:<"admin 250 2.1.0 OK Bernhard From tss at iki.fi Wed Jun 8 23:15:16 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 8 Jun 2011 23:15:16 +0300 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFD5E3.2090702@delphij.net> References: <4DEFD5E3.2090702@delphij.net> Message-ID: <7DA27B3E-64E6-4EB4-A223-FFFD7CDB6E83@iki.fi> On 8.6.2011, at 23.04, Xin LI wrote: > A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is > their optional "duplicate suppression", which eliminates duplicate > message at deliver time, if their envelope sender, recipient and > message-id matches. For example, if one subscribes to a mailing list, > and someone hit "Reply All" to reply to him, there will be two different > SMTP deliveries, one from the replier's server and one from the mailing > list. IMHO that's a good thing. I know some people in this list think they want deduplication, but sometimes when I'm later replying to a message (I've messages over a month old I know need replying) they really would prefer for it to be shown in they inbox when I finally reply to them rather than dovecot list mailbox (which they never end up reading then). > Is it possible to do the same on latest Dovecot? (Looking at the > documentation it seems not?) Or is there some better ways to implement > the same functionality? I'm not planning on implementing anything like that. From hs at schlittermann.de Wed Jun 8 23:48:54 2011 From: hs at schlittermann.de (Heiko Schlittermann) Date: Wed, 8 Jun 2011 22:48:54 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFD5E3.2090702@delphij.net> References: <4DEFD5E3.2090702@delphij.net> Message-ID: <20110608204854.GZ681@jumper.schlittermann.de> Xin LI (Wed Jun 8 22:04:51 2011): (?) > A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is > their optional "duplicate suppression", which eliminates duplicate > message at deliver time, if their envelope sender, recipient and > message-id matches. Not sure, but I *think*, cyrus does dedup based on the message id and recipient only. > For example, if one subscribes to a mailing list, > and someone hit "Reply All" to reply to him, there will be two different > SMTP deliveries, one from the replier's server and one from the mailing > list. If your above statement about the dup detection is true, these two messages will be delivered both, since the envelope sender is likely to differ (most if not all list servers replace the envelope sender for several reasons (bounce detection, SPF passing, ?)) > Is it possible to do the same on latest Dovecot? (Looking at the > documentation it seems not?) Or is there some better ways to implement > the same functionality? And these two messages are no duplicates. They differ in the headers, probably they differ in parts of the body (signature of the list server), EVEN they carry the same message id! A duplicate is a duplicate if the message and its copies are identical. And from MPOV this is very unlikly to happen in common environments. OTOH, if you need such feature, it shouln't be too challenging to write a MDA replacement, that decides about duplicity and finally passes the remaining messages to the Dovecot MDA. -- Heiko :: dresden : linux : SCHLITTERMANN.de GPG Key 48D0359B : 3061 CFBF 2D88 F034 E8D2 7E92 EE4E AC98 48D0 359B -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From tom at whyscream.net Thu Jun 9 00:17:29 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Wed, 08 Jun 2011 23:17:29 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <20110608204854.GZ681@jumper.schlittermann.de> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> Message-ID: <4DEFE6E9.3050603@whyscream.net> On 08/06/11 22:48, Heiko Schlittermann wrote: > Xin LI (Wed Jun 8 22:04:51 2011): > (?) >> A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is >> their optional "duplicate suppression", which eliminates duplicate >> message at deliver time, if their envelope sender, recipient and >> message-id matches. > > Not sure, but I *think*, cyrus does dedup based on the message id and > recipient only. > >> For example, if one subscribes to a mailing list, >> and someone hit "Reply All" to reply to him, there will be two different >> SMTP deliveries, one from the replier's server and one from the mailing >> list. > > If your above statement about the dup detection is true, these two > messages will be delivered both, since the envelope sender is likely to > differ (most if not all list servers replace the envelope sender for > several reasons (bounce detection, SPF passing, ?)) > > >> Is it possible to do the same on latest Dovecot? (Looking at the >> documentation it seems not?) Or is there some better ways to implement >> the same functionality? > > And these two messages are no duplicates. They differ in the headers, > probably they differ in parts of the body (signature of the list > server), EVEN they carry the same message id! > > A duplicate is a duplicate if the message and its copies are identical. > And from MPOV this is very unlikly to happen in common environments. > > OTOH, if you need such feature, it shouln't be too challenging to write > a MDA replacement, that decides about duplicity and finally passes the > remaining messages to the Dovecot MDA. > This happens because the person replying uses either the reply, or the reply-to-all button in his MUA. The MUA should honour the headers of the message it replies to, and most of the time MUAs do that. People who want replies on their messages sent back only to the list, and not to a personal address, should set the reply-to header of their message to the list address: From: me at example.com To: list at example.org Reply-to: list at example.org This should always make a reply going only to list at example.org, whether the person replying uses reply, reply-all or reply-to-list. This can be done by hand, or with a mailclient plugins that does this for all messages that are recognized as mailing list messages. Unfortunately I did not find such a plugin for thunderbird yet... NB I just set the headers in this message per my example above, for you to test. If you hit any reply* button to react on to this message, a decent MUA should not include my personal address as a recipient of your message. -- Regards, Tom From hs at schlittermann.de Thu Jun 9 00:46:25 2011 From: hs at schlittermann.de (Heiko Schlittermann) Date: Wed, 8 Jun 2011 23:46:25 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFE6E9.3050603@whyscream.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> Message-ID: <20110608214625.GC681@jumper.schlittermann.de> Hello Tom, Tom Hendrikx (Wed Jun 8 23:17:29 2011): (?) > > OTOH, if you need such feature, it shouln't be too challenging to write > > a MDA replacement, that decides about duplicity and finally passes the > > remaining messages to the Dovecot MDA. > > > > This happens because the person replying uses either the reply, or the > reply-to-all button in his MUA. The MUA should honour the headers of the > message it replies to, and most of the time MUAs do that. I understand what you're explaining. But I do not understand how it is related to duplicated messages. BTW and OT: the MUA agent I'm using (mutt) knows "list reply" feature, it works independent on From/Reply-To header fields. Using just "reply" in presence of a Reply-To header field, it asks if it's my intention to send the reply to somebody else than the originator. And it knows "group reply", that's the same as "reply all" in other MUA. And finally it knows a "bounce", sometimes known as "resend" - not to be confused with forward. It just lacks a shiny *G*ui. Greetings from Dresden, -- Heiko :: dresden : linux : SCHLITTERMANN.de GPG Key 48D0359B : 3061 CFBF 2D88 F034 E8D2 7E92 EE4E AC98 48D0 359B -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From tom at whyscream.net Thu Jun 9 00:58:29 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Wed, 08 Jun 2011 23:58:29 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <20110608214625.GC681@jumper.schlittermann.de> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> Message-ID: <4DEFF085.1060801@whyscream.net> On 08/06/11 23:46, Heiko Schlittermann wrote: > Hello Tom, > > Tom Hendrikx (Wed Jun 8 23:17:29 2011): > (?) >>> OTOH, if you need such feature, it shouln't be too challenging to write >>> a MDA replacement, that decides about duplicity and finally passes the >>> remaining messages to the Dovecot MDA. >>> >> >> This happens because the person replying uses either the reply, or the >> reply-to-all button in his MUA. The MUA should honour the headers of the >> message it replies to, and most of the time MUAs do that. > > I understand what you're explaining. But I do not understand how it is > related to duplicated messages. The point is that when you set the headers correctly on your message, a reply from someone on your message will not generate a duplicate in the first place, thereby eliminating your problem even before it exists :) -- Regards, Tom From tss at iki.fi Thu Jun 9 01:13:07 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 9 Jun 2011 01:13:07 +0300 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <20110608214625.GC681@jumper.schlittermann.de> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> Message-ID: <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> Only kind of relevant to this thread, but: I hate this whole idea of being able to tell where messages should be replied to. Basically the rule seems to be "don't give me a separate notification if the email reply was sent to me 0-2 weeks after I sent the originating message, but do send it if it was sent after that". Of course no one can know how long you actually bother to follow the mailing list, usually not even you. The only exception are people like me and [2-10] other people who really do follow it year after year. Perhaps I should remove the feature from my patched mailman, although then maybe I'd have to figure out how to implement it for myself to the clients I use.. Oh well. (And while I'm complaining .. I hate just as much the bottom posts with everything quoted than top posts. At least with top posts I see what people are saying, but with bottom posts I have to scroll pagefuls of old text to see it. Try to put something new into the first pageful of the screen..) On 9.6.2011, at 0.46, Heiko Schlittermann wrote: > Hello Tom, > > Tom Hendrikx (Wed Jun 8 23:17:29 2011): > (?) >>> OTOH, if you need such feature, it shouln't be too challenging to write >>> a MDA replacement, that decides about duplicity and finally passes the >>> remaining messages to the Dovecot MDA. >>> >> >> This happens because the person replying uses either the reply, or the >> reply-to-all button in his MUA. The MUA should honour the headers of the >> message it replies to, and most of the time MUAs do that. > > I understand what you're explaining. But I do not understand how it is > related to duplicated messages. > > BTW and OT: the MUA agent I'm using (mutt) knows "list reply" feature, it works > independent on From/Reply-To header fields. Using just "reply" in > presence of a Reply-To header field, it asks if it's my intention to > send the reply to somebody else than the originator. And it knows "group > reply", that's the same as "reply all" in other MUA. And finally it > knows a "bounce", sometimes known as "resend" - not to be confused with > forward. It just lacks a shiny *G*ui. > > Greetings from Dresden, > -- > Heiko :: dresden : linux : SCHLITTERMANN.de > GPG Key 48D0359B : 3061 CFBF 2D88 F034 E8D2 7E92 EE4E AC98 48D0 359B From philip at turmel.org Thu Jun 9 01:47:03 2011 From: philip at turmel.org (Phil Turmel) Date: Wed, 08 Jun 2011 18:47:03 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFF085.1060801@whyscream.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <4DEFF085.1060801@whyscream.net> Message-ID: <4DEFFBE7.7060104@turmel.org> On 06/08/2011 05:58 PM, Tom Hendrikx wrote: [...] > > The point is that when you set the headers correctly on your message, a > reply from someone on your message will not generate a duplicate in the > first place, thereby eliminating your problem even before it exists :) To add a data point, this message was a "reply-to-all" in Thunderbird 3.1.10. It included Tom's address, ignoring the reply-to: header. Considering Thunderbird's popularity, just using a reply-to: header won't solve the duplicate message "problem". This is especially true on open mail lists, like those at kernel.org, where "reply-to-all" is expected of participants. Phil From tom at whyscream.net Thu Jun 9 02:05:08 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Thu, 09 Jun 2011 01:05:08 +0200 Subject: [Dovecot] [OT] On-delivery deduplication? In-Reply-To: <4DEFFBE7.7060104@turmel.org> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <4DEFF085.1060801@whyscream.net> <4DEFFBE7.7060104@turmel.org> Message-ID: <4DF00024.1090506@whyscream.net> On 09/06/11 00:47, Phil Turmel wrote: > On 06/08/2011 05:58 PM, Tom Hendrikx wrote: [...] >> >> The point is that when you set the headers correctly on your >> message, a reply from someone on your message will not generate a >> duplicate in the first place, thereby eliminating your problem even >> before it exists :) > > To add a data point, this message was a "reply-to-all" in Thunderbird > 3.1.10. It included Tom's address, ignoring the reply-to: header. Actually I only set the reply-to header (by hand) on the message in which I said that I did that, and not on the second one, because I am lazy and there is no tb plugin to make my life easier. Please try again on the correct message. > > Considering Thunderbird's popularity, just using a reply-to: header > won't solve the duplicate message "problem". This is especially true > on open mail lists, like those at kernel.org, where "reply-to-all" is > expected of participants. I use Thunderbird too, and I did test what I documented. To be sure, please check the headers of both messages. I don't use this practice often (depends on the ml, and the ppl on it), but some time ago the duplicate issue irritated me enough to spend a good thought at what the real problem was. Just shared my results, especially since they are apparently non-obvious :) But maybe we're getting a bit off-topic. After all this is a list about dovecot and IMAP-related stuff. -- Regards, Tom From philip at turmel.org Thu Jun 9 02:12:40 2011 From: philip at turmel.org (Phil Turmel) Date: Wed, 08 Jun 2011 19:12:40 -0400 Subject: [Dovecot] [OT] On-delivery deduplication? In-Reply-To: <4DF00024.1090506@whyscream.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <4DEFF085.1060801@whyscream.net> <4DEFFBE7.7060104@turmel.org> <4DF00024.1090506@whyscream.net> Message-ID: <4DF001E8.5060709@turmel.org> On 06/08/2011 07:05 PM, Tom Hendrikx wrote: > On 09/06/11 00:47, Phil Turmel wrote: >> On 06/08/2011 05:58 PM, Tom Hendrikx wrote: [...] >>> >>> The point is that when you set the headers correctly on your >>> message, a reply from someone on your message will not generate a >>> duplicate in the first place, thereby eliminating your problem even >>> before it exists :) >> >> To add a data point, this message was a "reply-to-all" in Thunderbird >> 3.1.10. It included Tom's address, ignoring the reply-to: header. > > Actually I only set the reply-to header (by hand) on the message in > which I said that I did that, and not on the second one, because I am > lazy and there is no tb plugin to make my life easier. Please try again > on the correct message. I checked before I sent, and sure enough, it's there. Maybe Timo has set the list to add it. This one of yours has it, too. >> Considering Thunderbird's popularity, just using a reply-to: header >> won't solve the duplicate message "problem". This is especially true >> on open mail lists, like those at kernel.org, where "reply-to-all" is >> expected of participants. > > I use Thunderbird too, and I did test what I documented. To be sure, > please check the headers of both messages. Checked. > I don't use this practice often (depends on the ml, and the ppl on it), > but some time ago the duplicate issue irritated me enough to spend a > good thought at what the real problem was. Just shared my results, > especially since they are apparently non-obvious :) > > But maybe we're getting a bit off-topic. After all this is a list about > dovecot and IMAP-related stuff. True enough. I'll stop here. Phil From gouravjoshi at gmail.com Thu Jun 9 07:54:49 2011 From: gouravjoshi at gmail.com (=?UTF-8?B?4KSX4KWM4KSw4KS1IOCknOCli+CktuClgA==?=) Date: Thu, 9 Jun 2011 10:24:49 +0530 Subject: [Dovecot] Using Dovecot new version 2.0.13 facing issues. Message-ID: > Hi, > > I have configured POP-IMAP server with dovecot 2.0.13 with mysql support. > When I am running load test on the same I face issue on IMAP connections. I > get "dovecot: imap-login: Error: fd_send(imap, 15) failed: Interrupted > system call" followed by "dovecot: imap-login: Internal login failure" in > log files. See if these patches help: http://hg.dovecot.org/dovecot-2.0/rev/86e4023d08e4 http://hg.dovecot.org/dovecot-2.0/rev/6fdee880c5dc Hi Timo, Thanks for the response. The first patch is not getting compiled, where the other one got complied cleanly. Please help on this. Have a nice time, Gourav Joshi Have a look at www.linuxquestions.in From heramba85 at gmail.com Thu Jun 9 11:18:11 2011 From: heramba85 at gmail.com (kenja heramba) Date: Thu, 9 Jun 2011 13:48:11 +0530 Subject: [Dovecot] Regarding Digest-MD5 auth Message-ID: Hi, I am writing a Pop3Client. I use dovecot server as POP3 server in linux and hMailServer in windows. I was just testing digest-md5 auth with dovecot server. I had an observation. After server side verification, server sends a verification code to client. If this fails, how can client send the negative response or does it not exist? When I see packet capture, dovecot server sends +OK Logged in for anything client sends. I may be wrong. Please let me know your thoughts Regards, Heramba From koshikov at gmail.com Thu Jun 9 11:56:55 2011 From: koshikov at gmail.com (Nikita Koshikov) Date: Thu, 9 Jun 2011 11:56:55 +0300 Subject: [Dovecot] sqlite quota dict Message-ID: <20110609115655.1c94ff28@jimbo> Hello Timo, and list followers, Sqlite supports good feature like mysql 'ON DUPLICATE KEY UPDATE' - it calls REPLACE/INSERT OR REPLACE This clause can be added to INSERT query, like: INSERT OR REPLACE INTO table VALUES() REPLACE INTO table VALUES() // alias to previous one Also this can be done during CREATE TABLE syntax, like so: CREATE TABLE quota ( username text not null, bytes integer not null default 0, messages integer not null default 0, primary key (username) ON CONFLICT REPLACE ); So the examples will work: INSERT INTO quota (bytes,username) VALUES ('112497180','foo at spam.dom'); INSERT INTO quota (bytes,username) VALUES ('112497181','foo at spam.dom'); SELECT * FROM quota; foo at spam.dom|112497181|0 But 1 thing to note - if we updating not all fields and column has NOT NULL DEFAULT value, then DEFAULT value will alter current one: INSERT INTO quota (bytes,username) VALUES ('112497180','foo at spam.dom'); INSERT INTO quota (messages,username) VALUES ('1743','foo at spam.dom'); SELECT * FROM quota; foo at spam.dom|0|1743 This can be easily bypassed if INSERT will be: INSERT INTO quota (bytes,messages,username) VALUES ('112497180','1743','foo at spam.dom'); So if dovecot will INSERT values to sql dict in this manner, sqlite can be used for storing quota data. From lists at wildgooses.com Thu Jun 9 13:14:41 2011 From: lists at wildgooses.com (Ed W) Date: Thu, 09 Jun 2011 11:14:41 +0100 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> Message-ID: <4DF09D11.5080001@wildgooses.com> On 08/06/2011 23:13, Timo Sirainen wrote: > (And while I'm complaining .. I hate just as much the bottom posts with everything quoted than top posts. At least with top posts I see what people are saying, but with bottom posts I have to scroll pagefuls of old text to see it. Try to put something new into the first pageful of the screen..) :-) For some reason this always seems to be a massive bone of contention to a whole load of people! Largely those who prefer one way over the other don't seem to recognise that the other bunch also have a valid reason for their preference and the religious wars continue... However! I found a useful plugin for Thunderbird (which I see you don't use, but still). It's called Quote Collapse and basically it does what you might imagine, the indented bits of messages get collapsed to just their first line (for context) and you get a +/- button to expand if you need to read the rest of the context. Personally for me this makes bottom posting readable in general and top posting is fine, and my preference then becomes "interleaved" because it looks quite pretty with the collapsed quoting... Actually, email clients also get religious, but despite it's other deficiencies I find Thunderbird with the following plugins helpful: - Country Lookup - shows which country the email was sent from (great for customer support) - Display Mail User Agent - shows the mail client used (great for customer support) - Quote Collapse (as above) - Coloured Diffs - pretty printing for code diffs found in emails - Sieve - Minimal sieve rule editing Perhaps this is enough to tempt you from Mac Mail? Cheers Ed W From aperezaranda at yaco.es Thu Jun 9 15:24:50 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Thu, 9 Jun 2011 14:24:50 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: This line: value = settings_parse_get_value(set_parser, key, &type); Is returning a empty value. Maybe, set_parser has been cleared? If I try to get another keys from my config that I can watch with doveadm I get "extrange" values like this with i_debug() * mail_debug -> #001 * mail_location -> #010 * auth_realms -> #020#002 2011/6/8 Antonio Perez-Aranda : > It must run on dovecot 2.0.13? > > We are upgrading to 2.0.13 and with this I get the follow message: > > Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: > +mail_plugins=fts fts_solr?G > > > 2011/6/7 Timo Sirainen : >> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>> Greats, I'm working on patch from this morning, but it's very hard to >>> debug on settings-parser >> >> I don't think you should need to touch that code. It's a bit difficult >> for me also to follow.. >> >>> How can I enable i_debug on settings-parser.c ? >> >> What do you mean? You could add i_debug() calls and it should work just >> the same as everywhere. >> >> Did you try the patch in my previous mail? I think that should be >> enough. You could then use: >> >> user_attrs = .., mailPlugins=+mail_plugins >> >> >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From CMarcus at Media-Brokers.com Thu Jun 9 15:31:26 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 09 Jun 2011 08:31:26 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF09D11.5080001@wildgooses.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> Message-ID: <4DF0BD1E.4050700@Media-Brokers.com> On 2011-06-09 6:14 AM, Ed W wrote: > However! I found a useful plugin for Thunderbird (which I see you don't > use, but still). It's called Quote Collapse and basically it does what > you might imagine, the indented bits of messages get collapsed to just > their first line (for context) and you get a ? button to expand if you > need to read the rest of the context. Personally for me this makes > bottom posting readable in general and top posting is fine, and my > preference then becomes "interleaved" because it looks quite pretty with > the collapsed quoting... Been using it since forever, and I agree, it is quite useful, although only for plain text messages that use proper quote characters... -- Best regards, Charles From allan.cassaro at gmail.com Thu Jun 9 15:36:14 2011 From: allan.cassaro at gmail.com (Allan Cassaro) Date: Thu, 9 Jun 2011 09:36:14 -0300 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFD5E3.2090702@delphij.net> References: <4DEFD5E3.2090702@delphij.net> Message-ID: On Wed, Jun 8, 2011 at 5:04 PM, Xin LI wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > Hi, > > A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is > their optional "duplicate suppression", which eliminates duplicate > message at deliver time, if their envelope sender, recipient and > message-id matches. For example, if one subscribes to a mailing list, > and someone hit "Reply All" to reply to him, there will be two different > SMTP deliveries, one from the replier's server and one from the mailing > list. > > Is it possible to do the same on latest Dovecot? (Looking at the > documentation it seems not?) Or is there some better ways to implement > the same functionality? > > Thanks in advance! > > Cheers, > - -- > Xin LI http://www.delphij.net/ > FreeBSD - The Power to Serve! Live free or die > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.17 (FreeBSD) > > iQEcBAEBCAAGBQJN79XjAAoJEATO+BI/yjfBCO0IAMLNZ9Rkargb6bQqILAcbobt > 2ZFb6cO8f4vJu/BPO7Dq3TZoIEmfR+/pbruwgV+FSslTL+5TjkB5Rd5Yb+HYgvZT > Qdbk8Jshgq1XBj2MvbLQugHKhNcN37oDI9eGCDPttYe/C4Jb2hh1W+RtqGpfS6ud > jXUTUzS4yr7HWRRYcyDMvL4HuG/VnKEuFYmX2T/mT8oHfz5FckIPM+k+0prbgMSx > IGTdkKpSMnqYnyUjxQklSmMJ5iJMM7Lr6FMS2c6ORKwG8rD0w1GKrU77saHqJJLQ > YJqqIwJcr5753US6Q1Rk4gK+/L4JmJ+2BUXDdNMYBIfPOFjH9nOLlE5HIfSskBg= > =fo5J > -----END PGP SIGNATURE----- > Hello Mr. Xin Li, would you try the OpenDedup File System? (http://www.opendedup.org) If your problem is (only) the message size, this will works like a charm to you. BTW, this is a great project to use with any maildir compatible server... it reduces a LOT of disk usage space... Best regards. -- Use c?pia oculta (BCC ou CCO) e apague dados pessoais no campo da mensagem ao encaminhar qualquer e-mail. http://allan.cassaro.googlepages.com From forumer at smartmobili.com Thu Jun 9 15:45:25 2011 From: forumer at smartmobili.com (Vincent Richomme) Date: Thu, 09 Jun 2011 14:45:25 +0200 Subject: [Dovecot] Webmail project : to cache or not to cache emails Message-ID: Hi, I plan to develop a new web service where one of its module is a webmail and I am thinking about some implementation details. From a interface point of view I wanted to adopt the same logic a outlook(desktop) or yahoo webmail and not split emails into pages. I mean I just want a single datatable view where user can scroll to see his old messages and data are updated only when user release the vertical scrollbar. When I look at current webmail (roundcube for instance) I can see that a cache is used to stored emails headers and I was wondering if it was really necessary ? Once a user has passed the login process I would like to retrieve only the emails that will be displayed (actually a bit more, I am thinking of 150) but I am wondering if it's a good idea to not use a cache for headers. For instance if I have thousands of users on the same machine, will it support it ? Will it be fast enough ? Of course I will try by myself the different options but would be curious to have some opinions. Thanks From dovecot.user at seibercom.net Thu Jun 9 16:04:46 2011 From: dovecot.user at seibercom.net (Jerry) Date: Thu, 9 Jun 2011 09:04:46 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF0BD1E.4050700@Media-Brokers.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <4DF0BD1E.4050700@Media-Brokers.com> Message-ID: <20110609090446.6e59fe3d@scorpio> On Thu, 09 Jun 2011 08:31:26 -0400 Charles Marcus articulated: > On 2011-06-09 6:14 AM, Ed W wrote: > > However! I found a useful plugin for Thunderbird (which I see you > > don't use, but still). It's called Quote Collapse and basically it > > does what you might imagine, the indented bits of messages get > > collapsed to just their first line (for context) and you get a ? > > button to expand if you need to read the rest of the context. > > Personally for me this makes bottom posting readable in general and > > top posting is fine, and my preference then becomes "interleaved" > > because it looks quite pretty with the collapsed quoting... > > Been using it since forever, and I agree, it is quite useful, although > only for plain text messages that use proper quote characters... Many MUAs such as "claws-mail" have that function build it. I use it extensively on some list. I still find it hard to believe that some moron will actually reply to a message with quadruple quotes or more and not have the common sense to edit them out. I basically drop anything over two levels when replying. -- Jerry ? Dovecot.user at seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __________________________________________________________________ Health nuts are going to feel stupid someday, lying in hospitals dying of nothing. Redd Foxx From giles at coochey.net Thu Jun 9 16:14:39 2011 From: giles at coochey.net (Giles Coochey) Date: Thu, 9 Jun 2011 15:14:39 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF09D11.5080001@wildgooses.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> Message-ID: <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> On Thu, June 9, 2011 12:14, Ed W wrote: > > However! I found a useful plugin for Thunderbird (which I see you don't > use, but still). It's called Quote Collapse and basically it does what > you might imagine, the indented bits of messages get collapsed to just > their first line (for context) and you get a +/- button to expand if you > need to read the rest of the context. Personally for me this makes > bottom posting readable in general and top posting is fine, and my > preference then becomes "interleaved" because it looks quite pretty with > the collapsed quoting... > I found this plugin (v0.8), but it is not compatible with Thunderbird v3.1.10 apparently. From CMarcus at Media-Brokers.com Thu Jun 9 16:17:13 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 09 Jun 2011 09:17:13 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> Message-ID: <4DF0C7D9.2010206@Media-Brokers.com> On 2011-06-09 9:14 AM, Giles Coochey wrote: > I found this plugin (v0.8), but it is not compatible with Thunderbird > v3.1.10 apparently. Just edit the rdf file and bump the version and it works fine... -- Best regards, Charles From giles at coochey.net Thu Jun 9 16:23:41 2011 From: giles at coochey.net (Giles Coochey) Date: Thu, 9 Jun 2011 15:23:41 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF0C7D9.2010206@Media-Brokers.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> <4DF0C7D9.2010206@Media-Brokers.com> Message-ID: <5c7501208f01600d697a0c721c26b9ac.squirrel@www.coochey.net> On Thu, June 9, 2011 15:17, Charles Marcus wrote: > On 2011-06-09 9:14 AM, Giles Coochey wrote: >> I found this plugin (v0.8), but it is not compatible with Thunderbird >> v3.1.10 apparently. > > Just edit the rdf file and bump the version and it works fine... > Humm, I'm not well versed on plug-ins. I have an XPI file... 7-Zip can extract it and I can see a install.rdf, but I have no idea how to re-package the edited plug-in so that thunderbird can read it again. Think I'll wait for the author to update... From CMarcus at Media-Brokers.com Thu Jun 9 16:31:39 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 09 Jun 2011 09:31:39 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <5c7501208f01600d697a0c721c26b9ac.squirrel@www.coochey.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> <4DF0C7D9.2010206@Media-Brokers.com> <5c7501208f01600d697a0c721c26b9ac.squirrel@www.coochey.net> Message-ID: <4DF0CB3B.6090009@Media-Brokers.com> On 2011-06-09 9:23 AM, Giles Coochey wrote: > On Thu, June 9, 2011 15:17, Charles Marcus wrote: >> On 2011-06-09 9:14 AM, Giles Coochey wrote: >>> I found this plugin (v0.8), but it is not compatible with Thunderbird >>> v3.1.10 apparently. >> Just edit the rdf file and bump the version and it works fine... > Humm, I'm not well versed on plug-ins. I have an XPI file... 7-Zip can > extract it and I can see a install.rdf, but I have no idea how to > re-package the edited plug-in so that thunderbird can read it again. > > Think I'll wait for the author to update... You'll be waiting forever... Just open the .xpi file, then open the install.rdf file, change the version to 3.1.*. then save it... done... now you can install it... Or better... I've attached a fixed version... -- Best regards, Charles -------------- next part -------------- A non-text attachment was scrubbed... Name: quotecollapse-0.8.xpi Type: application/x-xpinstall Size: 9724 bytes Desc: not available URL: From skolaria at yahoo.com Thu Jun 9 15:55:47 2011 From: skolaria at yahoo.com (emc) Date: Thu, 9 Jun 2011 12:55:47 +0000 (UTC) Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login Message-ID: Hi, i have a big problem with dovecot... PAM auth problem i guess, but don't know how to sort it out... Down the log and the dovecot.conf. Please soemone can tell me what's broken there? Thanks a lot ************************* HERE log ************************* Jun 9 14:49:46 vps dovecot: pop3-login: Can't connect to auth server at default: Resource temporarily unavailable Jun 9 14:49:46 vps dovecot: imap-login: Timeout waiting for handshake from auth server. my pid=14681, input bytes=0 Jun 9 14:49:46 vps dovecot: imap-login: Can't connect to auth server at default: Resource temporarily unavailable Jun 9 14:49:46 vps dovecot: imap-login: Timeout waiting for handshake from auth server. my pid=14681, input bytes=0 Jun 9 14:49:46 vps dovecot: imap-login: Timeout waiting for handshake from auth server. my pid=14682, input bytes=0 ************************* HERE my doveconf -a ************************* # 1.0.15: /etc/dovecot/dovecot.conf base_dir: /var/run/dovecot log_path: info_log_path: log_timestamp: %Y-%m-%d %H:%M:%S syslog_facility: mail protocols: imap pop3 imaps pop3s listen: ssl_listen: ssl_disable: no ssl_ca_file: ssl_cert_file: /etc/ssl/certs/dovecot.pem ssl_key_file: /etc/ssl/private/dovecot.pem ssl_key_password: ssl_parameters_regenerate: 168 ssl_cipher_list: ssl_verify_client_cert: no disable_plaintext_auth: no verbose_ssl: no shutdown_clients: yes nfs_check: yes version_ignore: no login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login login_user: dovecot login_greeting: Dovecot ready. login_log_format_elements: user=<%u> method=%m rip=%r lip=%l %c login_log_format: %$: %s login_process_per_connection: yes login_chroot: yes login_greeting_capability: no login_process_size: 64 login_processes_count: 3 login_max_processes_count: 128 login_max_connections: 256 valid_chroot_dirs: mail_chroot: max_mail_processes: 1024 verbose_proctitle: no first_valid_uid: 500 last_valid_uid: 0 first_valid_gid: 1 last_valid_gid: 0 mail_extra_groups: mail_access_groups: mail_privileged_group: man default_mail_env: mail_location: mbox:~/mail/:INBOX=/var/mail/%u mail_cache_fields: flags mail_never_cache_fields: imap.envelope mail_cache_min_mail_count: 0 mailbox_idle_check_interval: 30 mail_debug: yes mail_full_filesystem_access: no mail_max_keyword_length: 50 mail_save_crlf: no mail_read_mmaped: no mmap_disable: no mmap_no_write: no dotlock_use_excl: no fsync_disable: no lock_method: fcntl maildir_stat_dirs: no maildir_copy_with_hardlinks: no maildir_copy_preserve_filename: no mbox_read_locks: fcntl mbox_write_locks: fcntl mbox_lock_timeout: 300 mbox_dotlock_change_timeout: 120 mbox_min_index_size: 0 mbox_dirty_syncs: yes mbox_very_dirty_syncs: no mbox_lazy_writes: yes dbox_rotate_size: 2048 dbox_rotate_min_size: 16 dbox_rotate_days: 1 umask: 63 mail_drop_priv_before_exec: no mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(pop3): /usr/lib/dovecot/pop3 mail_process_size: 256 mail_plugins: mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 mail_log_prefix: %Us(%u): mail_log_max_lines_per_sec: 10 imap_max_line_length: 65536 imap_capability: imap_client_workarounds: outlook-idle pop3_no_flag_updates: no pop3_enable_last: no pop3_reuse_xuidl: no pop3_lock_session: no pop3_uidl_format(default): pop3_uidl_format(imap): pop3_uidl_format(pop3): %08Xu%08Xv pop3_client_workarounds: pop3_logout_format: top=%t/%p, retr=%r/%b, del=%d/%m, size=%s managesieve_max_line_length: 65536 managesieve_implementation_string: dovecot sieve_storage: sieve: auth default: mechanisms: plain login realms: default_realm: cache_size: 0 cache_ttl: 3600 executable: /usr/lib/dovecot/dovecot-auth user: root chroot: username_chars: abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@ username_translation: username_format: master_user_separator: anonymous_username: anonymous krb5_keytab: gssapi_hostname: verbose: no debug: yes debug_passwords: no ssl_require_client_cert: no ssl_username_from_cert: no count: 1 worker_max_count: 30 process_size: 256 passdb: driver: pam args: session=yes dovecot deny: no pass: no master: no userdb: driver: passwd args: -------------------------- From CMarcus at Media-Brokers.com Thu Jun 9 17:32:40 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 09 Jun 2011 10:32:40 -0400 Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login In-Reply-To: References: Message-ID: <4DF0D988.50702@Media-Brokers.com> On 2011-06-09 8:55 AM, emc wrote: > ************************* > HERE my doveconf -a > ************************* No - doveconf -n is what is needed, not -a... > # 1.0.15: /etc/dovecot/dovecot.conf Very old - an upgrade is in order... -- Best regards, Charles From jg at softjury.de Thu Jun 9 17:41:38 2011 From: jg at softjury.de (Jan Phillip Greimann) Date: Thu, 09 Jun 2011 16:41:38 +0200 Subject: [Dovecot] Question about Dovecot-ACLs Message-ID: <4DF0DBA2.4080307@softjury.de> Hi there, i try to create an php-script to control acl's for public folders without file-manipulation. For this i use imap_setacl() like this example: imap_setacl($mbox,"INBOX/test", "email at domain.tld", "lrwstipekxa"); The acl-file looks so: ~:> cat dovecot-acl user=email at domain.tld akxeilprwts But i have a problem with the follow function: imap_setacl($mbox,"INBOX/test", "email at domain.tld", ""); This command only delete the rights from the email, not the whole entry in my dovecot-acl file. Now my acl-file looks like this: ~:> cat dovecot-acl user=email at domain.tld Did this affect dovecot by any way? Thanks, Jan From skolaria at yahoo.com Thu Jun 9 17:42:37 2011 From: skolaria at yahoo.com (emc) Date: Thu, 9 Jun 2011 14:42:37 +0000 (UTC) Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login References: <4DF0D988.50702@Media-Brokers.com> Message-ID: Charles Marcus Media-Brokers.com> writes: > > On 2011-06-09 8:55 AM, emc wrote: > > ************************* > > HERE my doveconf -a > > ************************* > > No - doveconf -n is what is needed, not -a... > > > # 1.0.15: /etc/dovecot/dovecot.conf > > Very old - an upgrade is in order... > here the dovecot -n **************************** **************************** # 1.0.15: /etc/dovecot/dovecot.conf log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s listen: disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login mail_privileged_group: man mail_location: mbox:~/mail/:INBOX=/var/mail/%u mail_debug: yes mbox_write_locks: fcntl mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(pop3): /usr/lib/dovecot/pop3 mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 pop3_uidl_format(default): pop3_uidl_format(imap): pop3_uidl_format(pop3): %08Xu%08Xv auth default: mechanisms: plain login debug: yes passdb: driver: pam args: session=yes dovecot userdb: driver: passwd **************************** **************************** From mailinglist at darac.org.uk Thu Jun 9 18:20:45 2011 From: mailinglist at darac.org.uk (Darac Marjal) Date: Thu, 9 Jun 2011 16:20:45 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEFA1DC.4020408@list-post.mks-mail.de> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEFA1DC.4020408@list-post.mks-mail.de> Message-ID: <20110609152045.GA1801@darac.org.uk> On Wed, Jun 08, 2011 at 06:22:52PM +0200, Markus Sch?nhaber wrote: > 08.06.2011 14:59, Timo Sirainen: > > > Well, this was an interesting message. multipart/alternative where first > > part was text and second part a GIF image. > > To me, it seems the second part is not a GIF but rather a > multipart/related which, in turn, contains the GIF as first (and only) > part. Maybe that's what confuses some clients. According to http://en.wikipedia.org/wiki/MIME#Alternative, the parts of a multipart/alternative are supposed to be ordered by increasing faithfulness. Typically, this means plain text followed by HTML or rich text. In this case, the mime structure is implying that the multipart/related bundle is a truer representation than the plain text. This also explains why mutt doesn't miss a beat with these messages. It can't display the GIF, so the next best option is the plain text :) -- Paul Saunders From aperezaranda at yaco.es Thu Jun 9 18:29:09 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Thu, 9 Jun 2011 17:29:09 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: Well, this "extrange" vaues is NULL. Maybe, the set_parser is a new environment to set settings but then ?when is make the config merge? 2011/6/9 Antonio Perez-Aranda : > This line: > > value = settings_parse_get_value(set_parser, key, &type); > > Is returning a empty value. Maybe, set_parser has been cleared? > > If I try to get another keys from my config that I can watch with > doveadm I get "extrange" values like this with i_debug() > > ?* mail_debug -> #001 > ?* mail_location -> #010 > ?* auth_realms -> #020#002 > > > 2011/6/8 Antonio Perez-Aranda : >> It must run on dovecot 2.0.13? >> >> We are upgrading to 2.0.13 and with this I get the follow message: >> >> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >> +mail_plugins=fts fts_solr?G >> >> >> 2011/6/7 Timo Sirainen : >>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>>> Greats, I'm working on patch from this morning, but it's very hard to >>>> debug on settings-parser >>> >>> I don't think you should need to touch that code. It's a bit difficult >>> for me also to follow.. >>> >>>> How can I enable i_debug on settings-parser.c ? >>> >>> What do you mean? You could add i_debug() calls and it should work just >>> the same as everywhere. >>> >>> Did you try the patch in my previous mail? I think that should be >>> enough. You could then use: >>> >>> user_attrs = .., mailPlugins=+mail_plugins >>> >>> >>> >> >> >> >> -- >> Antonio P?rez-Aranda Alcaide >> aperezaranda at yaco.es >> >> Yaco Sistemas S.L. >> http://www.yaco.es/ >> C/ Rioja 5, 41001 Sevilla >> Tel?fono +34 954 50 00 57 >> Fax ? ? ?+34 954 50 09 29 >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From aperezaranda at yaco.es Thu Jun 9 19:34:27 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Thu, 9 Jun 2011 18:34:27 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: This patch is running but it only run with mail_plugins. This is because I can't select the "mail_plugins" value from any function to get this throw the name key. Maybe this need more hard development to do this as generic "property" for any config value. 2011/6/9 Antonio Perez-Aranda : > Well, this "extrange" vaues is NULL. > > Maybe, the set_parser is a new environment to set settings but then > ?when is make the config merge? > > 2011/6/9 Antonio Perez-Aranda : >> This line: >> >> value = settings_parse_get_value(set_parser, key, &type); >> >> Is returning a empty value. Maybe, set_parser has been cleared? >> >> If I try to get another keys from my config that I can watch with >> doveadm I get "extrange" values like this with i_debug() >> >> ?* mail_debug -> #001 >> ?* mail_location -> #010 >> ?* auth_realms -> #020#002 >> >> >> 2011/6/8 Antonio Perez-Aranda : >>> It must run on dovecot 2.0.13? >>> >>> We are upgrading to 2.0.13 and with this I get the follow message: >>> >>> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >>> +mail_plugins=fts fts_solr?G >>> >>> >>> 2011/6/7 Timo Sirainen : >>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>>>> Greats, I'm working on patch from this morning, but it's very hard to >>>>> debug on settings-parser >>>> >>>> I don't think you should need to touch that code. It's a bit difficult >>>> for me also to follow.. >>>> >>>>> How can I enable i_debug on settings-parser.c ? >>>> >>>> What do you mean? You could add i_debug() calls and it should work just >>>> the same as everywhere. >>>> >>>> Did you try the patch in my previous mail? I think that should be >>>> enough. You could then use: >>>> >>>> user_attrs = .., mailPlugins=+mail_plugins >>>> >>>> >>>> >>> >>> >>> >>> -- >>> Antonio P?rez-Aranda Alcaide >>> aperezaranda at yaco.es >>> >>> Yaco Sistemas S.L. >>> http://www.yaco.es/ >>> C/ Rioja 5, 41001 Sevilla >>> Tel?fono +34 954 50 00 57 >>> Fax ? ? ?+34 954 50 09 29 >>> >> >> >> >> -- >> Antonio P?rez-Aranda Alcaide >> aperezaranda at yaco.es >> >> Yaco Sistemas S.L. >> http://www.yaco.es/ >> C/ Rioja 5, 41001 Sevilla >> Tel?fono +34 954 50 00 57 >> Fax ? ? ?+34 954 50 09 29 >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 -------------- next part -------------- A non-text attachment was scrubbed... Name: add_mail_plugins.patch Type: text/x-patch Size: 1338 bytes Desc: not available URL: From aperezaranda at yaco.es Thu Jun 9 20:16:25 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Thu, 9 Jun 2011 19:16:25 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: This patch fix a bug and remove some debug info from patch sent before. 2011/6/9 Antonio Perez-Aranda : > This patch is running but it only run with mail_plugins. > > This is because I can't select the "mail_plugins" value from any > function to get this throw the name key. > > Maybe this need more hard development to do this as generic "property" > for any config value. > > 2011/6/9 Antonio Perez-Aranda : >> Well, this "extrange" vaues is NULL. >> >> Maybe, the set_parser is a new environment to set settings but then >> ?when is make the config merge? >> >> 2011/6/9 Antonio Perez-Aranda : >>> This line: >>> >>> value = settings_parse_get_value(set_parser, key, &type); >>> >>> Is returning a empty value. Maybe, set_parser has been cleared? >>> >>> If I try to get another keys from my config that I can watch with >>> doveadm I get "extrange" values like this with i_debug() >>> >>> ?* mail_debug -> #001 >>> ?* mail_location -> #010 >>> ?* auth_realms -> #020#002 >>> >>> >>> 2011/6/8 Antonio Perez-Aranda : >>>> It must run on dovecot 2.0.13? >>>> >>>> We are upgrading to 2.0.13 and with this I get the follow message: >>>> >>>> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >>>> +mail_plugins=fts fts_solr?G >>>> >>>> >>>> 2011/6/7 Timo Sirainen : >>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>>>>> Greats, I'm working on patch from this morning, but it's very hard to >>>>>> debug on settings-parser >>>>> >>>>> I don't think you should need to touch that code. It's a bit difficult >>>>> for me also to follow.. >>>>> >>>>>> How can I enable i_debug on settings-parser.c ? >>>>> >>>>> What do you mean? You could add i_debug() calls and it should work just >>>>> the same as everywhere. >>>>> >>>>> Did you try the patch in my previous mail? I think that should be >>>>> enough. You could then use: >>>>> >>>>> user_attrs = .., mailPlugins=+mail_plugins >>>>> >>>>> >>>>> >>>> >>>> >>>> >>>> -- >>>> Antonio P?rez-Aranda Alcaide >>>> aperezaranda at yaco.es >>>> >>>> Yaco Sistemas S.L. >>>> http://www.yaco.es/ >>>> C/ Rioja 5, 41001 Sevilla >>>> Tel?fono +34 954 50 00 57 >>>> Fax ? ? ?+34 954 50 09 29 >>>> >>> >>> >>> >>> -- >>> Antonio P?rez-Aranda Alcaide >>> aperezaranda at yaco.es >>> >>> Yaco Sistemas S.L. >>> http://www.yaco.es/ >>> C/ Rioja 5, 41001 Sevilla >>> Tel?fono +34 954 50 00 57 >>> Fax ? ? ?+34 954 50 09 29 >>> >> >> >> >> -- >> Antonio P?rez-Aranda Alcaide >> aperezaranda at yaco.es >> >> Yaco Sistemas S.L. >> http://www.yaco.es/ >> C/ Rioja 5, 41001 Sevilla >> Tel?fono +34 954 50 00 57 >> Fax ? ? ?+34 954 50 09 29 >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 -------------- next part -------------- A non-text attachment was scrubbed... Name: userdb-addplugins.patch Type: text/x-patch Size: 1308 bytes Desc: not available URL: From lists at wildgooses.com Thu Jun 9 20:40:10 2011 From: lists at wildgooses.com (Ed W) Date: Thu, 09 Jun 2011 18:40:10 +0100 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> Message-ID: <4DF1057A.1050108@wildgooses.com> On 09/06/2011 14:14, Giles Coochey wrote: > On Thu, June 9, 2011 12:14, Ed W wrote: >> >> However! I found a useful plugin for Thunderbird (which I see you don't >> use, but still). It's called Quote Collapse and basically it does what >> you might imagine, the indented bits of messages get collapsed to just >> their first line (for context) and you get a +/- button to expand if you >> need to read the rest of the context. Personally for me this makes >> bottom posting readable in general and top posting is fine, and my >> preference then becomes "interleaved" because it looks quite pretty with >> the collapsed quoting... >> > I found this plugin (v0.8), but it is not compatible with Thunderbird > v3.1.10 apparently. Baffling - that's the version I appear to be using for both... Ed W From skolaria at yahoo.com Thu Jun 9 20:44:49 2011 From: skolaria at yahoo.com (emc) Date: Thu, 9 Jun 2011 17:44:49 +0000 (UTC) Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login References: <4DF0D988.50702@Media-Brokers.com> Message-ID: Thanks Charles... Someone else can help me? I cannot receive any mail with my client thunderbird. Postfix send mail ok... and the mail they are received by server (i can read it inside webmin), but even squirrelmail give me a imap login error. Im running a Debian Linux 5 Thanks for some reply and help. From mfioretti at nexaima.net Thu Jun 9 21:16:15 2011 From: mfioretti at nexaima.net (M. Fioretti) Date: Thu, 9 Jun 2011 20:16:15 +0200 Subject: [Dovecot] Error: file_dotlock_create failed: Permission denied In-Reply-To: <20110609161231.GA22911@nexaima.net> References: <37522.151.25.103.156.1306324170.squirrel@nexaima.net> <1307109066.10421.602.camel@hurina> <20110609161231.GA22911@nexaima.net> Message-ID: <20110609181614.GC26282@nexaima.net> On Fri, Jun 03, 2011 16:51:06 PM +0300, Timo Sirainen wrote: > > On Wed, 2011-05-25 at 13:49 +0200, M. Fioretti wrote: > > > /home/z/email/marco isn't owned by marco? Alternatively you have SELinux > > enabled, which is preventing this. Yes, it was indeed selinux. I realized it (with help from the fedora list) the day after posting to this one, but then I started to restore other files from the backup and forgot to confirm that this was the problem, sorry. Marco From bra at fsn.hu Thu Jun 9 21:56:16 2011 From: bra at fsn.hu (Attila Nagy) Date: Thu, 09 Jun 2011 20:56:16 +0200 Subject: [Dovecot] Converting CLIENT_MAIL_DATA_MAX_INMEMORY_SIZE to a configurable? Message-ID: <4DF11750.40006@fsn.hu> Hi, Currently Dovecot's LMTPd writes incoming emails to mail_temp_dir if it's bigger than 128k. But I would like to spare those unnecessary operations (creating a file, deleting it, writing into it, reading from it, checking whether there is free space and if not, rejecting (temporarily) the message). Memory is cheap, disk IO is not. :) And BTW, on a lot of systems, /tmp is a memory file system already, so there is absolute no need for this. I only fired two greps so far before writing this mail, in the hope that I can spare writing, testing and sending a patch, which will be either rejected, or rewritten. :) So, am I right that the following constant would be needed to be converted into a configurable setting and the task is done? static int client_input_add(struct client *client, const unsigned char *data, size_t size) { if (client->state.mail_data->used + size <= CLIENT_MAIL_DATA_MAX_INMEMORY_SIZE && client->state.mail_data_output == NULL) { buffer_append(client->state.mail_data, data, size); return 0; } else { return client_input_add_file(client, data, size); } } It could be defaulted to 128k, but the user could set it "unlimited" (0 or -1, depending on the author's mood, 0 and/or -1 being unlimited, or 0 being 0, meaning don't even store a bit -doesn't really make sense to me). LMTP is mostly protected from the outside world, so I don't see too much DoS potential here (absolutely not more than in the tmpfs case). Thanks, From wgillespie+dovecot at es2eng.com Thu Jun 9 22:01:51 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Thu, 09 Jun 2011 13:01:51 -0600 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF1057A.1050108@wildgooses.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> <4DF1057A.1050108@wildgooses.com> Message-ID: <4DF1189F.4010505@es2eng.com> This has been quite an informative topic, although it veered from the initial question quite early on. I know Dovecot does not do deduplication on its own, but perhaps someone can point me to a good Maildir deduplication program. In my case it has nothing to do with mailing lists. We have a shared namespace for certain groups where multiple people can put email regarding certain projects. Naturally, sometimes two people receive the same email and they will both go put their copy in the same folder. It'd be nice (not critical) if I could remove the duplicates somehow. Obviously they are not byte-for-byte duplicates because their headers are going to be /slightly/ different near the end of the Received sequence. Willie From thiagoh at digirati.com.br Thu Jun 9 23:20:34 2011 From: thiagoh at digirati.com.br (Thiago Henrique) Date: Thu, 09 Jun 2011 17:20:34 -0300 Subject: [Dovecot] Dovecot sieve redirect: failed to redirect message to user@domain.com Message-ID: <1307650834.16862.23.camel@thiagohenrique06> Hello, I'm running Dovecot 2.0.13 on my Ubuntu10.04. It's working very well but I faced a problem with Redirect and Vacation using Sieve. :-( In fact, after well configuring the system I dont't receive the redirect message, and in the log I found: ######################################################################################## Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Fatal: execv(/usr/sbin/sendmail) failed: Permission denied Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Error: Sendmail process terminated abnormally, exit status 84 Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Error: At35JIgC8U3uKQAAndgVeA: sieve: msgid=<20110609184850.0FAB8200A41C at domain.com>: failed to redirect message to (refer to server log for more information) ######################################################################################## In sieve.log I see: ######################################################################################## error: msgid=<2011060919.0200A375 at domain.com>: failed to redirect message to (refer to server log for more information). ######################################################################################## Manually sendmail command works normally. Cron sends email normally. Any idea about the reason this happen and how to solve? Thanks in advance, Thiago Henrique From trever.adams at gmail.com Fri Jun 10 00:06:12 2011 From: trever.adams at gmail.com (Trever L. Adams) Date: Thu, 09 Jun 2011 15:06:12 -0600 Subject: [Dovecot] [SOLVED] Re: possible bug leading to lmtp crashes In-Reply-To: <1307449127.10421.700.camel@hurina> References: <4DAECAAC.3060903@gmail.com> <4DB58F67.4090600@gmail.com> <4DB6FCF7.9070905@gmail.com> <5D19A866-381B-4CA6-B8FF-0F7BCDA36799@iki.fi> <4DBC3F3F.4030605@gmail.com> <1304957973.10421.101.camel@hurina> <4DCA7C6F.40902@gmail.com> <1305116849.10421.192.camel@hurina> <4DD5191E.9040606@gmail.com> <4DEDAFC4.3080400@gmail.com> <1307449127.10421.700.camel@hurina> Message-ID: <4DF135C4.80206@gmail.com> On 06/07/2011 06:18 AM, Timo Sirainen wrote: > O > I don't see why that would matter, but I think this will help: > http://hg.dovecot.org/dovecot-2.0/rev/c0734f08b3f3 Thank you, Timo. This did indeed fix the crash completely. As a side note, World IPv6 day was a success with Dovecot here under heavy usage. The ONLY problem is ok in dual stack environments and that is that LDAP wouldn't connect with IPv6. It always used IPv4. Thank you. Trever -- "A modest woman, dressed out in all her finery, is the most tremendous object in the whole creation." -- Goldsmith -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From lists at wildgooses.com Fri Jun 10 00:14:07 2011 From: lists at wildgooses.com (Ed W) Date: Thu, 09 Jun 2011 22:14:07 +0100 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: References: <4DEFD5E3.2090702@delphij.net> Message-ID: <4DF1379F.1080303@wildgooses.com> On 09/06/2011 13:36, Allan Cassaro wrote: > would you try the OpenDedup File System? (http://www.opendedup.org) > If your problem is (only) the message size, this will works like a charm to > you. > > BTW, this is a great project to use with any maildir compatible server... it > reduces a LOT of disk usage space... Just theoretically I wouldn't expect dedup to make an interesting difference, especially not a naive dedup algorithm? Would you mind sharing some statistics from your installation? Cheers Ed W From delphij at delphij.net Fri Jun 10 00:32:47 2011 From: delphij at delphij.net (Xin LI) Date: Thu, 09 Jun 2011 14:32:47 -0700 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: References: <4DEFD5E3.2090702@delphij.net> Message-ID: <4DF13BFF.5060609@delphij.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 06/09/11 05:36, Allan Cassaro wrote: [...] > would you try the OpenDedup File System? (http://www.opendedup.org) > If your problem is (only) the message size, this will works like a charm to > you. Well, for me it's not a matter of size (I use FreeBSD ZFS which can do dedup by the way), but simply same message showing up on same inbox for twice, for IMAP, this can be quite annoying. Also I don't think filesystem level dedup would work well for mail servers even using a filesystem that is capable for doing dedup (not to mention it's sometimes slow), because we store the message header together with the bodies, and they are likely to differ slightly (someone@ vs someoneelse at domainname), causing an offset in the message and thus make block-level dedup useless, so in order to efficiently use dedup (for speed and space), one have to migrate to a new storage format. I'll take a look at the code and see if I can do that myself when I have some spare time, and thanks for everyone who replied. Cheers, - -- Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! Live free or die -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (FreeBSD) iQEcBAEBCAAGBQJN8Tv/AAoJEATO+BI/yjfBz6AH/3FWAMNuqTWTvaT8lnSfDl99 7KclQamlczrKvJ3XKjfFCaAzf73PQffwfJbz/RtMfwCgKZhiZG86U5uo15qb8eKU pUxDVpukxarrb9r/13x5vxrSJz33QVebwdzvdBckZk2sbzUodW1MoMIH/66jmuDG gojKzn4gdTW1jH5OUlWN3NZSmib44xvTvSjRDX/6OV6DBvAmpHRFOm1f6iEk5BHE sPnbKEzwNoqAvDlqzPynuhOc+acTuaVL0/+dyEmVcI5neZf6eYRljgoP+NlzF4yk R9IpghAnRe5Us4ZIXvla1fT345ckAhPtvP0j5FxTjXq4IBChkV4k7PXkwlQSocE= =PyS4 -----END PGP SIGNATURE----- From delphij at delphij.net Fri Jun 10 00:32:47 2011 From: delphij at delphij.net (Xin LI) Date: Thu, 09 Jun 2011 14:32:47 -0700 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: References: <4DEFD5E3.2090702@delphij.net> Message-ID: <4DF13BFF.1040308@delphij.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 06/09/11 05:36, Allan Cassaro wrote: [...] Well, for me it's not a matter of size (I use FreeBSD ZFS which can do dedup by the way), but simply same message showing up on same inbox for twice, for IMAP, this can be quite annoying. Also I don't think filesystem level dedup would work well for mail servers even using a filesystem that is capable for doing dedup (not to mention it's sometimes slow), because we store the message header together with the bodies, and they are likely to differ slightly (someone@ vs someoneelse at domainname), causing an offset in the message and thus make block-level dedup useless, so in order to efficiently use dedup (for speed and space), one have to migrate to a new storage format. I'll take a look at the code and see if I can do that myself when I have some spare time, and thanks for everyone who replied. Cheers, - -- Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! Live free or die -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (FreeBSD) iQEcBAEBCAAGBQJN8Tv/AAoJEATO+BI/yjfBz6AH/3FWAMNuqTWTvaT8lnSfDl99 7KclQamlczrKvJ3XKjfFCaAzf73PQffwfJbz/RtMfwCgKZhiZG86U5uo15qb8eKU pUxDVpukxarrb9r/13x5vxrSJz33QVebwdzvdBckZk2sbzUodW1MoMIH/66jmuDG gojKzn4gdTW1jH5OUlWN3NZSmib44xvTvSjRDX/6OV6DBvAmpHRFOm1f6iEk5BHE sPnbKEzwNoqAvDlqzPynuhOc+acTuaVL0/+dyEmVcI5neZf6eYRljgoP+NlzF4yk R9IpghAnRe5Us4ZIXvla1fT345ckAhPtvP0j5FxTjXq4IBChkV4k7PXkwlQSocE= =PyS4 -----END PGP SIGNATURE----- From asicofante at gmail.com Fri Jun 10 09:57:42 2011 From: asicofante at gmail.com (Aleve Sicofante) Date: Fri, 10 Jun 2011 08:57:42 +0200 Subject: [Dovecot] Gmail like virtual mailboxes Message-ID: I'm new to this list so let me introduce myself: I'm a computer literate user (I've done some C programming long ago and can run a Linux system and do some light admin), I've never installed a mail server before and I'm in the process of migrating my family and my small business from Gmail (Google Apps) to a virtual server mainly for privacy reasons. I'm in love with Gmail's label system and I just plain hate traditional folders. I use hierarchical labels (as if they were folders but with a message belonging to many at the same time) and that MUST be preserved in the migration. I've looked at Courier's IMAP keywords implementation and it looks good, but everyone on the internet is recommending Dovecot, so here I am. I've tried hard to find information about using unlimited hierarchical labels, virtual mailboxes or any other way of mimicing Gmail's functionality with Dovecot, but I'm lost. First of all: can it be done? If so, is there any introductory documentation? (I've only found very sparse information.) Is it available for any storage format (mbox, maildir, dbox)? Any help will be very appreciated. -- Aleve Sicofante From robert at schetterer.org Fri Jun 10 11:08:25 2011 From: robert at schetterer.org (Robert Schetterer) Date: Fri, 10 Jun 2011 10:08:25 +0200 Subject: [Dovecot] auth_cache question Message-ID: <4DF1D0F9.4040208@schetterer.org> Hi , just to make clear short question does auth_cache... help with downing sql lookups http://wiki2.dovecot.org/Authentication/Caching isnt clear to me for sql to me if yes are there real world recommanded settings lets say for a 5000 users server and where password changes should be noticed asap -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From harenberg at physik.uni-wuppertal.de Fri Jun 10 12:04:16 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Fri, 10 Jun 2011 11:04:16 +0200 Subject: [Dovecot] Sub-Subfolder from public folders Message-ID: <0374F39D-CF21-4D6C-94BD-958A820FB9B7@physik.uni-wuppertal.de> Dear all, I just moved from an old cyrus instance to a brand new dovecot installation. Everything worked pretty well so far. The only small problem I have is: we have public folders, so I defined namespace { type = public separator = . prefix = public. location = maildir:/var/mail/public:INDEX=%u/public subscriptions = no list = children } And I define ACLs for the folders inside. This works, but the some of these folders have sub-folders and these cannot be seen by (what I have tested is Apple Mail, Thunderbird, Outlook and squirrelmail). File system looks like this: mail# cd /var/mail/public/.icecube-c mail# ls -l .ice* .icecube-hard: total 232 drwxrwxrwx 2 root wheel 512 Jun 9 13:07 cur -rwxrwxrwx 1 root wheel 167 Jun 9 13:07 dovecot-keywords -rwxrwxrwx 1 root wheel 105179 Jun 9 13:07 dovecot-uidlist drwxrwxrwx 2 root wheel 123904 Jun 9 13:07 new drwxrwxrwx 2 root wheel 512 Jun 9 13:07 tmp .icecube-soft: total 2214 drwxrwxrwx 2 root wheel 512 Jun 9 13:06 cur -rwxrwxrwx 1 root wheel 167 Jun 9 13:07 dovecot-keywords -rwxrwxrwx 1 root wheel 1019250 Jun 9 13:07 dovecot-uidlist -rwxrwxrwx 1 root wheel 0 Jun 9 13:06 maildirfolder drwxrwxrwx 2 root wheel 1195008 Jun 9 13:07 new drwxrwxrwx 2 root wheel 512 Jun 9 13:07 tmp mail# ls .icecube-hard .icecube-soft cur dovecot-acl dovecot-keywords dovecot-uidlist new subscriptions tmp Maybe anybody can help with this? Full dovecot -n attached. Thanks again and best regards, Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> mail# dovecot -n # 2.0.13: /usr/pkg/etc/dovecot/dovecot.conf # OS: NetBSD 5.1 amd64 ffs auth_debug = yes auth_verbose = yes base_dir = /var/run/dovecot/ mail_debug = yes mail_gid = 6 mail_location = maildir:/var/mail/user/%u/Maildir mail_plugins = acl managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { inbox = yes location = prefix = separator = . type = private } namespace { list = children location = maildir:/var/mail/public:INDEX=%u/public prefix = public. separator = . subscriptions = no type = public } passdb { args = /usr/pkg/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { acl = vfile sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 lmtp sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-userdb { group = dovecot user = dovecot } } service managesieve-login { inet_listener sieve { port = 4190 } inet_listener sieve_deprecated { port = 2000 } } ssl_cert = Hello, is it possible to limit the number of pop3 (or imap) login attempts from one IP with dovecot to stop attackers? We recently had an attack from one IP-address lasting 50 minutes that tried 50000 pop3-logins with guessed users and passwords. I know about Fail2Ban but really would prefer an easy to configure solution inside of dovecot. Dovecot has this anvil daemon, can it be used for that purpose? We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of the configuration looking like that: service pop3-login { chroot = login client_limit = 0 drop_priv_before_exec = no executable = pop3-login extra_groups = group = idle_kill = 0 inet_listener pop3 { address = port = 110 ssl = no } inet_listener pop3s { address = port = 995 ssl = yes } privileged_group = process_limit = 0 process_min_avail = 0 protocol = pop3 service_count = 1 type = login user = $default_login_user vsz_limit = 64 M } Thanks, J?rgen -- Hochschulrechenzentrum der | Mail: Juergen.Obermann at hrz.uni-giessen.de Justus-Liebig-Universitaet | WWW: http://www.uni-giessen.de/obermann/ Heinrich-Buff-Ring 44 | Tel: 0641-99-13054 (0641-99-13001) D-35392 Giessen, Germany | Fax: 0641-99-13009 From duane at duanemail.org Fri Jun 10 12:22:35 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 10 Jun 2011 04:22:35 -0500 Subject: [Dovecot] Dovecot sieve redirect: failed to redirect message to user@domain.com In-Reply-To: <1307650834.16862.23.camel@thiagohenrique06> References: <1307650834.16862.23.camel@thiagohenrique06> Message-ID: <65032798.20110610042235@duanemail.org> Thursday, June 9, 2011, 3:20:34 PM, Thiago wrote: > Hello, > I'm running Dovecot 2.0.13 on my Ubuntu10.04. It's working very well but > I faced a problem with Redirect and Vacation using Sieve. :-( > In fact, after well configuring the system I dont't receive the redirect > message, and in the log I found: > ######################################################################################## > Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Fatal: > execv(/usr/sbin/sendmail) failed: Permission denied > Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Error: > Sendmail process terminated abnormally, exit status 84 > Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Error: > At35JIgC8U3uKQAAndgVeA: sieve: > msgid=<20110609184850.0FAB8200A41C at domain.com>: failed to redirect > message to (refer to server log for more > information) > ######################################################################################## > In sieve.log I see: > ######################################################################################## > error: msgid=<2011060919.0200A375 at domain.com>: failed to redirect > message to (refer to server log for more information). > ######################################################################################## > Manually sendmail command works normally. Cron sends email normally. > Any idea about the reason this happen and how to solve? > Thanks in advance, > Thiago Henrique Can't tell for sure why. Please post the results of the 'dovecot -n' command. Your logs appear to state there is some kind of permission issue. -- Best regards, Duane mailto:duane at duanemail.org From robert at schetterer.org Fri Jun 10 12:26:44 2011 From: robert at schetterer.org (Robert Schetterer) Date: Fri, 10 Jun 2011 11:26:44 +0200 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> Message-ID: <4DF1E354.6090806@schetterer.org> Am 10.06.2011 11:22, schrieb J?rgen Obermann: > Hello, > > is it possible to limit the number of pop3 (or imap) login attempts from > one IP with dovecot to stop attackers? We recently had an attack from > one IP-address lasting 50 minutes that tried 50000 pop3-logins with > guessed users and passwords. I know about Fail2Ban but really would > prefer an easy to configure solution inside of dovecot. Dovecot has this > anvil daemon, can it be used for that purpose? > > We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of > the configuration looking like that: > > service pop3-login { > chroot = login > client_limit = 0 > drop_priv_before_exec = no > executable = pop3-login > extra_groups = > group = > idle_kill = 0 > inet_listener pop3 { > address = > port = 110 > ssl = no > } > inet_listener pop3s { > address = > port = 995 > ssl = yes > } > privileged_group = > process_limit = 0 > process_min_avail = 0 > protocol = pop3 > service_count = 1 > type = login > user = $default_login_user > vsz_limit = 64 M > } > > Thanks, J?rgen > look http://wiki2.dovecot.org/HowTo/Fail2Ban -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From wgillespie+dovecot at es2eng.com Fri Jun 10 12:30:43 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Fri, 10 Jun 2011 03:30:43 -0600 Subject: [Dovecot] Sub-Subfolder from public folders In-Reply-To: <0374F39D-CF21-4D6C-94BD-958A820FB9B7@physik.uni-wuppertal.de> References: <0374F39D-CF21-4D6C-94BD-958A820FB9B7@physik.uni-wuppertal.de> Message-ID: <4DF1E443.9050602@es2eng.com> On 6/10/2011 3:04 AM, Torsten Harenberg wrote: > This works, but the some of these folders have sub-folders and these cannot be seen by (what I have tested is Apple Mail, Thunderbird, Outlook and squirrelmail). > > File system looks like this: > > mail# cd /var/mail/public/.icecube-c > mail# ls > .icecube-hard .icecube-soft cur dovecot-acl dovecot-keywords dovecot-uidlist new subscriptions tmp Instead of having .icecube-hard and .icecube-soft inside of .icecube-c, move them to /var/mail/public/.icecube-c.icecube-hard and /var/mail/public/.icecube-c.icecube-soft That will show them as subfolders of icecube-c From duane at duanemail.org Fri Jun 10 13:06:22 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 10 Jun 2011 05:06:22 -0500 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> Message-ID: <1818129240.20110610050622@duanemail.org> Friday, June 10, 2011, 4:22:26 AM, J?rgen wrote: > Hello, > is it possible to limit the number of pop3 (or imap) login attempts > from one IP with dovecot to stop attackers? We recently had an attack > from one IP-address lasting 50 minutes that tried 50000 pop3-logins > with guessed users and passwords. I know about Fail2Ban but really > would prefer an easy to configure solution inside of dovecot. Dovecot > has this anvil daemon, can it be used for that purpose? > We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of > the configuration looking like that: > service pop3-login { > chroot = login > client_limit = 0 > drop_priv_before_exec = no > executable = pop3-login > extra_groups = > group = > idle_kill = 0 > inet_listener pop3 { > address = > port = 110 > ssl = no > } > inet_listener pop3s { > address = > port = 995 > ssl = yes > } > privileged_group = > process_limit = 0 > process_min_avail = 0 > protocol = pop3 > service_count = 1 > type = login > user = $default_login_user > vsz_limit = 64 M > } You can thwart (to some degree) failed login attempts by increasing auth_failure_delay. I currently have the parameter set at 5 seconds. Its default is 2 seconds. I also have set auth_verbose = yes and auth_verbose_passwords = sha1 and have a cron job set up to search the logs for the day before using: bzegrep -i 'password.mismatch' /var/log/maillog.0.bz2 I get an email message showing the failed login attempts from the previous day. Someone else suggested using fail2ban which is good. I have sshguard set up myself. -- Best regards, Duane mailto:duane at duanemail.org From harenberg at physik.uni-wuppertal.de Fri Jun 10 13:50:54 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Fri, 10 Jun 2011 12:50:54 +0200 Subject: [Dovecot] Sub-Subfolder from public folders In-Reply-To: <4DF1E443.9050602@es2eng.com> References: <0374F39D-CF21-4D6C-94BD-958A820FB9B7@physik.uni-wuppertal.de> <4DF1E443.9050602@es2eng.com> Message-ID: <753C016C-5ADF-4008-B3B2-B3D62A1E7F6C@physik.uni-wuppertal.de> Thanks Willie, worked :) Great help here on the list :) Have a nice weekend, Torsten Am 10.06.2011 um 11:30 schrieb Willie Gillespie: > > Instead of having .icecube-hard and .icecube-soft inside of .icecube-c, move them to > /var/mail/public/.icecube-c.icecube-hard > and > /var/mail/public/.icecube-c.icecube-soft > > That will show them as subfolders of icecube-c -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> From CMarcus at Media-Brokers.com Fri Jun 10 14:01:22 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Fri, 10 Jun 2011 07:01:22 -0400 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <1818129240.20110610050622@duanemail.org> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1818129240.20110610050622@duanemail.org> Message-ID: <4DF1F982.3070400@Media-Brokers.com> On 2011-06-10 6:06 AM, Duane Hill wrote: > Someone else suggested using fail2ban which is good. I have sshguard > set up myself. He already said he didn't want to use Fail2ban - not sure why though, since it protects many other services at the same time, does exactly what he wants to do, and is quite easy to setup... Jurgen - I personally would suggest you reconsider using Fail2ban... It really is easy to setup, and like I said, you can protect all your other services with it too (ssh, ftp, etc)... -- Best regards, Charles From duane at duanemail.org Fri Jun 10 14:16:33 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 10 Jun 2011 06:16:33 -0500 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF1F982.3070400@Media-Brokers.com> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1818129240.20110610050622@duanemail.org> <4DF1F982.3070400@Media-Brokers.com> Message-ID: <47214288.20110610061633@duanemail.org> Friday, June 10, 2011, 6:01:22 AM, Charles wrote: > On 2011-06-10 6:06 AM, Duane Hill wrote: >> Someone else suggested using fail2ban which is good. I have sshguard >> set up myself. > He already said he didn't want to use Fail2ban - not sure why though, > since it protects many other services at the same time, does exactly > what he wants to do, and is quite easy to setup... > Jurgen - I personally would suggest you reconsider using Fail2ban... > It really is easy to setup, and like I said, you can protect all your > other services with it too (ssh, ftp, etc)... I did realize the not wanting usage of fail2ban and had suggested the increase in time for failed login attempts. We had an email account compromised within the past several weeks and the increase of the specific parameter has thwarted the failed login attempts. If I read the documentation correctly, the time is incremental (i.e. 2, 4, 8, 16, 32...). Whereby setting to 5 seconds would be 5, 10, 20, 40, 80... I did read somewhere there is a hard coded limit where the parameter would top out at. -- Best regards, Duane mailto:duane at duanemail.org From a.chapellon at horoa.net Fri Jun 10 15:06:30 2011 From: a.chapellon at horoa.net (Alexandre Chapellon) Date: Fri, 10 Jun 2011 14:06:30 +0200 Subject: [Dovecot] migration scenario Message-ID: <4DF208C6.7080500@horoa.net> Hello, I'd like to know if anybody have an experience with migrating mailboxes from mirapoint mail system to dovecot? If so how was it done and what were the difficulties? regards. From richard.gliebe at fhv.at Fri Jun 10 15:16:07 2011 From: richard.gliebe at fhv.at (Richard Gliebe) Date: Fri, 10 Jun 2011 14:16:07 +0200 Subject: [Dovecot] dovecot-managesieve Message-ID: <4DF20B07.5000209@fhv.at> Hi all, I have to implement a Out of Office Tool on our dovecot IMAP Server. Recently I updated dovecot-1.0.7-7.el5 to dovecot-1.1.20-1_98.el5 on our CentOS release 5.6 (Final) box via "yum update" # cat /etc/yum.conf .... [atrpms] name=Fedora Core $releasever - $basearch - ATrpms baseurl=http://dl.atrpms.net/el$releasever-$basearch/atrpms/stable gpgkey=http://ATrpms.net/RPM-GPG-KEY.atrpms gpgcheck=1 # .... After it, I installed dovecot-managesieve-0.11.12-0_5.1.el5 via yum install. These are my sieve settings in /etc/dovecot.conf: ....... version_ignore=yes # Log file to use for error messages, instead of sending them to syslog. # /dev/stderr can be used to log into stderr. log_path = /var/log/dovecot.log # Protocols we want to be serving: imap imaps pop3 pop3s managesieve # If you only want to use dovecot-auth, you can set this to "none". #protocols = imap imaps pop3 pop3s protocols = imaps pop3s pop3 managesieve mail_debug=yes protocol managesieve { # Specify an alternative address:port the daemon must listen on # (default: *:2000) #listen = localhost:2000 managesieve_logout_format = bytes ( in=%i : out=%o ) # Duplicated from plugin section sieve=~/.dovecot.sieve sieve_storage=~/sieve } plugin { # Settings for the Sieve plugin sieve=~/.dovecot.sieve sieve_dir=~/sieve } ...... After restarting dovecot, I'm getting the following errors in dovecot.log: dovecot: Jun 10 08:50:14 Info: dovecot v1.1.20 starting up (core dumps disabled) dovecot: Jun 10 08:50:16 Error: login: Login request missing a file descriptor dovecot: Jun 10 08:50:16 Error: Temporary failure in creating login processes, slowing down for now dovecot: Jun 10 08:50:16 Warning: managesieve-login: managesieve-login: capability string is empty. dovecot: Jun 10 08:50:16 Error: login: Login request missing a file descriptor dovecot: Jun 10 08:50:16 Warning: managesieve-login: managesieve-login: capability string is empty. dovecot: Jun 10 08:50:16 Error: login: Login request missing a file descriptor dovecot: Jun 10 08:50:16 Warning: managesieve-login: managesieve-login: capability string is empty. dovecot: Jun 10 08:50:16 Info: Created login processes successfully, unstalling dovecot: Jun 10 08:50:17 Error: login: Login request missing a file descriptor dovecot: Jun 10 08:50:17 Error: Temporary failure in creating login processes, slowing down for now Don't know, whats going on ..... next problem. I can't login with our Thunderbird Clients to our IMAP/sieve Server (Port 2000) to edit Sieve Filters. Authentication is set to: use IMAP Username and password Port 2000 ist listening: # netstat -an | grep 2000 tcp 0 0 0.0.0.0:2000 0.0.0.0:* LISTEN tcp 0 0 192.168.1.6:2000 192.168.1.8:2882 ESTABLISHED tcp 0 0 :::2000 :::* LISTEN Out of Office: I found a plugin for our thunderbird clients: http://www.trustedbird.org/tb/Out_of_Office is this the right one? many many hints are welcome ;-) Richard From alexwbaule at gmail.com Fri Jun 10 15:19:54 2011 From: alexwbaule at gmail.com (Alex Baule) Date: Fri, 10 Jun 2011 09:19:54 -0300 Subject: [Dovecot] Explain about (mail_get_first_header(mail, "From", &header) Message-ID: Hi Timo... Inside my plugin, i use the (mail_get_first_header(mail, "From", &header) function, to get the email From to put in some Blacklist. Looking in the header under this mail, we have 2 "From" fields. Using the function above, i get the Second "From", but my MTA (exim) look in to The First From, in the First Line, in that way, my blacklist don't work, because the sender to be blocked is different from the From looked by dovecot. There is a way to get the "From" from First line ? ############################## HEADER ######################################################## >From dma_3783 at envios.socomdescontos.com.br Tue Jun 07 15:43:04 2011 Return-path: Envelope-to: sugestao at brc.com.br Delivery-date: Tue, 07 Jun 2011 15:43:04 -0300 Received: from [187.61.43.119] (helo=vt-0007-119.virtualtarget.com.br) by mail.brc.com.br with esmtp (Exim 4.76) (envelope-from ) id 1QU1Ex-0006II-5o for sugestao at brc.com.br; Tue, 07 Jun 2011 15:43:01 -0300 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=k1; d=dkim.vttrack.com.br; h=From:To:Subject:MIME-Version:Content-Type:Reply-To:List-Unsubscribe:Message-ID:Date; bh=Q5G3TQPrYgogLS7aDg1DLYJpLKI=; b=XC+MHH79L6VHTI2OayuFHZGeSRAvNstNz8sHEp+xE5i71GznnYfCVsw7fuq2dIST6bTYY7tto/Rd aIZjc2YfEyqgUi0KKKesnMLSI61Ij/FlmE5ftRgIy9Ra59O9R03S62wAt6WPjkx1f4xCZ9ZAIaox GU957biBsg3B6ryU5Ks= Received: by vt-0007-119.virtualtarget.com.br id htpoj60sh70i for ; Tue, 7 Jun 2011 15:42:59 -0300 (envelope-from ) From: "CompraFacil.com.br" To: "sugestao" Subject: SUPER OFERTA: TV LCD 32? Full HD apenas 10x 129,99 reais com FRETE ZERO. Aproveite. MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b928815d46126f887c344b7d725aceb1" Reply-To: "CompraFacil.com.br" List-Unsubscribe: X-DMA: 8448122 X-UID: 8448122-74473 X-CID: 3783 X-TYP: MAIL Message-ID: <0.0.1E.8DF.1CC2542B91E3284.8E34 at vt-0007-119.virtualtarget.com.br> Date: Tue, 7 Jun 2011 15:42:59 -0300 ############################## HEADER ######################################################## From robert at schetterer.org Fri Jun 10 15:54:13 2011 From: robert at schetterer.org (Robert Schetterer) Date: Fri, 10 Jun 2011 14:54:13 +0200 Subject: [Dovecot] migration scenario In-Reply-To: <4DF208C6.7080500@horoa.net> References: <4DF208C6.7080500@horoa.net> Message-ID: <4DF213F5.5090400@schetterer.org> Am 10.06.2011 14:06, schrieb Alexandre Chapellon: > Hello, > > I'd like to know if anybody have an experience with migrating mailboxes > from mirapoint mail system to dovecot? > > If so how was it done and what were the difficulties? > > regards. if you have imap enabled on your old system youre always safe with imapsync for migrate mails to new dovecot other stuff means your clients, what namespaces delimiters etc do they use now, read the general migration faqs i .e is mirapoint more equal to cyrus or courier -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From d.iskandarov at gmail.com Fri Jun 10 17:15:08 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 10 Jun 2011 18:15:08 +0400 Subject: [Dovecot] Dovecot 1.2 + Sieve-0.1.19 not working please help Message-ID: Hello i have installed dovecot from rpm found on rpm.pbone.net 1.2.17-0_115.el5 Everuthing works as charm Postfix + Dovecot + TLS + MySQL/postfixadmin For Reference: Centos 5.6 postfix 2.3.3-2.2 dovecot 1.2.17-0_115.el5 spamassassin 3.2.5-1.el5 postfixadmin 2.3.3 amavisd-new 2.6.4-4.el5.rf Now i'm trying to install Sieve for Dovecot 1.2 to make it redirect spam in proper folders but getting next error: ./configure --with-dovecot=/usr/lib/dovecot/ #OMITED OUTPUT# dovecot-config not found from /usr/lib/dovecot, use --with-dovecot=PATH to give path to compiled Dovecot sources or to a directory with the installed dovecot-config file. configure: error: dovecot-config not found /usr/lib/dovecot/ - is dir where all plugins and other things are stored. /etc is dir where dovecot.conf is located /etc/dovecot is dir where i put dovecot sql config Please help. I have no idea how to fix this. Especially when everything seems to be working as charm. My thread on LQ.org http://www.linuxquestions.org/questions/showthread.php?p=4381803&posted=1#post4381803 dovecot -n # 1.2.17: /etc/dovecot.conf # OS: Linux 2.6.18-238.9.1.el5 i686 CentOS release 5.6 (Final) ext3 base_dir: /var/run/dovecot/ listen(default): *:143 listen(imap): *:143 listen(pop3): *:110 ssl_listen(default): *:993 ssl_listen(imap): *:993 ssl_listen(pop3): *:995 ssl_ca_file: /etc/pki/tls/cacert.pem ssl_cert_file: /etc/pki/tls/dev.cdn/cent56.dev.cdn.crt ssl_key_file: /etc/pki/tls/dev.cdn/cent56.dev.cdn.key ssl_cipher_list: ALL:!LOW:!SSLv2 login_dir: /var/run/dovecot//login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login first_valid_uid: 1001 last_valid_uid: 1001 first_valid_gid: 12 last_valid_gid: 12 mail_location: maildir:/var/vmail/%d/%u mail_debug: yes mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 imap_client_workarounds(default): outlook-idle delay-newmail imap_client_workarounds(imap): outlook-idle delay-newmail imap_client_workarounds(pop3): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh lda: postmaster_address: postmaster at dev.cdn mail_plugins: quota autocreate mail_plugin_dir: /usr/lib/dovecot/lda log_path: /var/log/dovecot/dovecot-deliver.log info_log_path: /var/log/dovecot/dovecot-deliver.log auth default: mechanisms: plain login user: nobody passdb: driver: pam passdb: driver: sql args: /etc/dovecot/sql.conf userdb: driver: passwd userdb: driver: sql args: /etc/dovecot/sql.conf userdb: driver: prefetch socket: type: listen client: path: /var/spool/postfix/private/auth mode: 432 user: postfix group: mail master: path: /var/run/dovecot/auth-master mode: 432 user: vmail group: mail From mstevens at imt-systems.com Fri Jun 10 20:52:12 2011 From: mstevens at imt-systems.com (Morten P.D. Stevens) Date: Fri, 10 Jun 2011 19:52:12 +0200 Subject: [Dovecot] segfault in dovecot 2.0.9 Message-ID: Hi folks, I noticed the following in the dovecot log files: /var/log/maillog Jun 9 00:12:34 mail dovecot: master: Error: service(imap): child 8970 killed with signal 11 (core dumps disabled) Jun 9 00:12:34 mail dovecot: imap-login: Login: user=, method=PLAIN, rip=IP, lip=IP, mpid=8987, TLS Jun 9 00:12:34 mail dovecot: master: Error: service(imap): child 8987 killed with signal 11 (core dumps disabled) /var/log/messages Jun 9 00:12:34 mail kernel: imap[8970]: segfault at 0 ip 00007fe4b2fe432d sp 00007fff29383740 error 4 in libdovecot-storage.so.0.0.0[7fe4b2fb8000+d1000] Jun 9 00:12:34 mail kernel: imap[8987]: segfault at 0 ip 00007f949de1532d sp 00007fff120721b0 error 4 in libdovecot-storage.so.0.0.0[7f949dde9000+d1000] # dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-71.29.1.el6.x86_64 OS: Scientific Linux 6.0 (Red Hat Enterprise Linux 6.0) Filesystem: ext4 I think this is a bug. Any ideas? Best regards, Morten From alietsantiesteban at gmail.com Sat Jun 11 07:24:18 2011 From: alietsantiesteban at gmail.com (Aliet Santiesteban Sifontes) Date: Sat, 11 Jun 2011 00:24:18 -0400 Subject: [Dovecot] mmap in GFS2 on rhel 6.1 Message-ID: Hello list, we continue our tests using Dovecot on a RHEL 6.1 Cluster Backend with GFS2, also we are using dovecot as a Director for user node persistence, everything was ok until we started stress testing the solution with imaptest, we had many deadlocks, cluster filesystems corruptions and hangs, specially in index filesystem, we have configured the backend as if they were on a NFS like setup but this seems not to work at least on GFS2 on rhel 6.1. We have a two node cluster sharing two GFS2 filesystem - Index GFS2 filesystem to store users indexes - Mailbox data on a GFS2 filesystem The specific configs for NFS or cluster filesystem we used: mmap_disable = yes mail_fsync = always mail_nfs_storage = yes mail_nfs_index = yes fsync_disable=no lock_method = fcntl mail location : mail_location = mdbox:/var/vmail/%d/%3n/%n/mdbox:INDEX=/var/indexes/%d/%3n/%n But this seems not to work for GFS2 even doing user node persistence, maillog is plagged of errors and GFS2 hangs on stress testing with imaptest, many corrupted index for example, transaction logs etc, at this point we have many questions, first mmap... In Redhat GFS2 docs we read: Gold rules for performance: An inode is used in a read only fashion across all nodes An inode is written or modified from a single node only. We have succesfull archived this using dovecot director Now, for mmap rh says: ... If you mmap() a file on GFS2 with a read/write mapping, but only read from it, this only counts as a read. On GFS though, it counts as a write, so GFS2 is much more scalable with mmap() I/O... But in our config we are using mmap_disable=yes, do we have to use mmap_disable=no with GFS2??? Also, how dovecot manage the cache flush on GFS2 filesystem??? Why, if we are doing user node persistence, dovecot indexes gets corrupted??? What lock method do we have to use?? How fsync should be used?? We know we have many questions, but this is really a very complex stuff and we are going to appreciate any help you can give us. Thank you all for a great work, specially Timo... best regards From stan at hardwarefreak.com Sat Jun 11 12:13:03 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Sat, 11 Jun 2011 04:13:03 -0500 Subject: [Dovecot] mmap in GFS2 on rhel 6.1 In-Reply-To: References: Message-ID: <4DF3319F.2020300@hardwarefreak.com> On 6/10/2011 11:24 PM, Aliet Santiesteban Sifontes wrote: > Hello list, we continue our tests using Dovecot on a RHEL 6.1 Cluster > Backend with GFS2, also we are using dovecot as a Director for user node > persistence, everything was ok until we started stress testing the solution > with imaptest, we had many deadlocks, cluster filesystems corruptions and > hangs, specially in index filesystem, we have configured the backend as if > they were on a NFS like setup but this seems not to work at least on GFS2 on > rhel 6.1. Actual _filesystem_ corruption is typically unrelated to user space applications. You should be looking at a lower level for the cause, i.e. kernel, device driver, hardware, etc. Please post details of your shared storage hardware environment, including HBAs, SAN array brand/type, if you're using GFS2 over DRBD, etc. > We have a two node cluster sharing two GFS2 filesystem > - Index GFS2 filesystem to store users indexes > - Mailbox data on a GFS2 filesystem Experience of many users has shown that neither popular cluster filesystems such as GFS2/OCFS, nor NFS, handle high metadata/IOPS workloads very well, especially those that make heavy use of locking. > The specific configs for NFS or cluster filesystem we used: > > mmap_disable = yes > mail_fsync = always > mail_nfs_storage = yes > mail_nfs_index = yes > fsync_disable=no > lock_method = fcntl > > mail location : > > mail_location = > mdbox:/var/vmail/%d/%3n/%n/mdbox:INDEX=/var/indexes/%d/%3n/%n For a Dovecot cluster using shared storage, you are probably better off using a mailbox format for which indexes are independent of mailbox files and are automatically [re]generated if absent. Try using mbox or maildir and store indexes on local node disk/SSD instead of on the cluster filesystem. Only store the mailboxes on the cluster filesystem. If for any reason a user login gets bumped to a node lacking the index files they're automatically rebuilt. Since dbox indexes aren't automatically generated if missing you can't do what I describe above with dbox storage. Given the limitations of cluster filesystem (and NFS) metadata IOPS and locking, you'll likely achieve best performance and stability using local disk index files and mbox format mailboxes on GFS2. Maildir format works in this setup as well, but the metadata load on the cluster filesystem is much higher, and thus peak performance will typically be lower. -- Stan From dhaval at patel.sh Sat Jun 11 19:53:14 2011 From: dhaval at patel.sh (Dhaval Patel) Date: Sat, 11 Jun 2011 12:53:14 -0400 Subject: [Dovecot] postfix dovecot spamassassin question Message-ID: I have an old server with postfix -> maildrop -> spamassassin -> courier setup. I am installing a new server and would like to use dovecot instead of courier. Currently I have postfix -> dovecot lda -> dovecot setup and emails are delivered as expected. The problem is that I do not know how to get spamassassin integrated into the mix since I am using the dovecot lda rather than maildrop. I would rather keep things as simple as possible and not use maildrop + sendmail just to use spamassasin but will if I have to. So my question to the list is, how do you recommend me doing this? Are there any documentation, howtos or tutorials which can help me configure this? Below is the output of dovecot -n Thanks, Dhaval ------------dovecot -n--------------- # 1.2.15: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-686-bigmem i686 Debian 6.0.1 xfs log_timestamp: %Y-%m-%d %H:%M:%S ssl_cert_file: /etc/ssl/certs/secure.consoe.com.pem ssl_key_file: /etc/ssl/certs/secure.consoe.com.key disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable: /usr/lib/dovecot/imap-login mail_privileged_group: mail mail_location: maildir:/home/vmail/%u mbox_write_locks: fcntl dotlock namespace: type: private separator: . prefix: INBOX. inbox: yes list: yes subscriptions: yes lda: postmaster_address: postmaster at patel.sh auth_socket_path: /var/run/dovecot/auth-master log_path: /home/vmail/dovecot-deliver.log mail_plugins: sieve global_script_path: /home/vmail/globalsieverc auth default: mechanisms: plain login passdb: driver: sql args: /etc/dovecot/dovecot-sql.conf userdb: driver: sql args: /etc/dovecot/dovecot-sql.conf socket: type: listen client: path: /var/run/dovecot/auth-client mode: 432 master: path: /var/run/dovecot/auth-master mode: 384 user: vmail group: vmail From info at simonecaruso.com Sat Jun 11 20:54:16 2011 From: info at simonecaruso.com (Simone Caruso) Date: Sat, 11 Jun 2011 19:54:16 +0200 Subject: [Dovecot] postfix dovecot spamassassin question In-Reply-To: References: Message-ID: <4DF3ABC8.30308@simonecaruso.com> On 11/06/2011 18:53, Dhaval Patel wrote: > I have an old server with postfix -> maildrop -> spamassassin -> courier setup. > I am installing a new server and would like to use dovecot instead of courier. > Currently I have postfix -> dovecot lda -> dovecot setup and emails are > delivered as expected. The problem is that I do not know how to get spamassassin > integrated into the mix since I am using the dovecot lda rather than maildrop. The simplest, and maybe fastest, is to use amavis-new as postfix contentfilter. -- Simone Caruso IT Consultant +39 349 65 90 805 p.iva: 03045250838 From km at mathcs.emory.edu Sat Jun 11 22:13:45 2011 From: km at mathcs.emory.edu (Ken Mandelberg) Date: Sat, 11 Jun 2011 15:13:45 -0400 Subject: [Dovecot] Loading Message Delays Message-ID: <4DF3BE69.6070704@mathcs.emory.edu> I sometimes see "loading message" or "opening Inbox" delays against both 1.X and 2.X Dovecot servers from thunderbird. Is there some way to pin down whats causing them? From noah-list at enabled.com Sun Jun 12 07:34:57 2011 From: noah-list at enabled.com (Noah Garrett Wallach) Date: Sat, 11 Jun 2011 21:34:57 -0700 Subject: [Dovecot] thunderbird not receiving new incoming mail: Timeout while waiting for lock for transaction log file Message-ID: <4DF441F1.9000804@enabled.com> Hi there, I am running dovecot 1.0.10 and thunderbird 3.1.10 for OSX 10.6.7 and I am finding that new imap mail is not coming into my INBOX folder on thunderbird. there is an error message "Timeout while waiting for lock for transaction log file" in the syslog here is my INBOX .imap dir ~/mail/.imap/INBOX$ ls -l total 75100K -rw------- 1 blah blah 1462024 Jun 11 20:17 dovecot.index -rw------- 1 blah blah 75153408 Jun 11 20:17 dovecot.index.cache -rw------- 1 blah blah 1464 Jun 11 20:17 dovecot.index.log -rw------- 1 blah blah 195812 Jun 11 17:23 dovecot.index.log.2 what is the best way to troubleshoot this problem? what else can I look at? Cheers, Noah From dhaval at patel.sh Sun Jun 12 08:50:43 2011 From: dhaval at patel.sh (Dhaval Patel) Date: Sun, 12 Jun 2011 01:50:43 -0400 Subject: [Dovecot] postfix dovecot spamassassin question Message-ID: So I setup amavis-new and configured postfix/spamassassin/amavis. Mail is still delivered properly but I do not see the spamassassin info in the headers of the email. I configured amavis-new and set "sa_tag_level_deflt" to -999 so that it would always show up but no luck. I updated the spamassassin config and enabled it. I also tested spamassassin manually running "spamassassin -t < someemail" and that returns the email with the X-Spam in the headers. If this is not the correct place to ask, I apologize. Please direct me where I can find the answer. Thanks, Dhaval Simone Caruso wrote: >On 11/06/2011 18:53, Dhaval Patel wrote: >> I have an old server with postfix -> maildrop -> spamassassin -> courier setup. >> I am installing a new server and would like to use dovecot instead of courier. >> Currently I have postfix -> dovecot lda -> dovecot setup and emails are >> delivered as expected. The problem is that I do not know how to get spamassassin >> integrated into the mix since I am using the dovecot lda rather than maildrop. > >The simplest, and maybe fastest, is to use amavis-new as postfix contentfilter. > > >-- >Simone Caruso >IT Consultant >+39 349 65 90 805 >p.iva: 03045250838 From stan at hardwarefreak.com Sun Jun 12 10:02:19 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Sun, 12 Jun 2011 02:02:19 -0500 Subject: [Dovecot] thunderbird not receiving new incoming mail: Timeout while waiting for lock for transaction log file In-Reply-To: <4DF441F1.9000804@enabled.com> References: <4DF441F1.9000804@enabled.com> Message-ID: <4DF4647B.4030208@hardwarefreak.com> On 6/11/2011 11:34 PM, Noah Garrett Wallach wrote: > Hi there, > > I am running dovecot 1.0.10 and thunderbird 3.1.10 for OSX 10.6.7 > and I am finding that new imap mail is not coming into my INBOX folder > on thunderbird. > > there is an error message "Timeout while waiting for lock for > transaction log file" in the syslog > > here is my INBOX .imap dir > > ~/mail/.imap/INBOX$ ls -l > total 75100K > -rw------- 1 blah blah 1462024 Jun 11 20:17 dovecot.index > -rw------- 1 blah blah 75153408 Jun 11 20:17 dovecot.index.cache > -rw------- 1 blah blah 1464 Jun 11 20:17 dovecot.index.log > -rw------- 1 blah blah 195812 Jun 11 17:23 dovecot.index.log.2 > > what is the best way to troubleshoot this problem? As always, use deductive reasoning. If it was working fine, and suddenly stopped working, something obviously changed. Find what has changed. What does your MTA tell you about these messages that are not hitting the inbox? Is your MTA still delivering mail to Dovecot? BTW, always post full error lines from your logs, not the partial junk you inserted above. We need to see the daemon and time stamp. That lock timeout could be generated by any number of deamons. For troubleshooting mail issues you'd typically look in your mail log, not in syslog. -- Stan From devurandom at gmx.net Sun Jun 12 16:55:57 2011 From: devurandom at gmx.net (Dennis Schridde) Date: Sun, 12 Jun 2011 15:55:57 +0200 Subject: [Dovecot] dovecot-metadata-8 released Message-ID: <201106121556.01830.devurandom@gmx.net> Hello everyone! I just released dovecot-metadata-8, which is an implementation of RFC 5464 (IMAP METADATA), allowing to add comments/annotations/metadata to folders of an email account. The major feature is that it works with Akonadi, or more specifically the Kolab backend thereof, while being dovecot-2.0 compatible. The module consists of 3 plugins, two IMAP frontends and one backend: * "imap-annotatemore" is a partial implementation of draft-daboo-imap- annotatemore-08 (early predecessor to RFC 5464), based on work by Bernhard Herzog (Intevation GmbH). The sole intention is to support Kolab, not to strictly implement the draft. * "imap-metadata" is a complete implementation of RFC 5464. Kolab clients do not (yet) use these commands. * "metadata" is the common backend imap-metadata and metadata were entirely written from scratch, while imap- annotatemore is an adaption of the work by Bernhard Herzog to the new backend. You can download the code via Hg [1] or as exported tarball [2] from the Hg webinterface. Please note that the README is outdated, as are some other files. The build process is pretty much straightforward, just make sure you have the dovecot headers available on your system: ./autogen.sh ./configure --with-dovecot=/path/to/dovecot make make install Next you need to adjust your dovecot config. The following works for me: == dovecot.conf == dict { metadata = file:/var/lib/dovecot/shared-metadata } == 10-mail.conf == mail_plugins = ... metadata == 20-imap.conf == protocol imap { mail_plugins = $mail_plugins ... imap_metadata imap_annotatemore } == 90-plugin.conf == plugin { metadata_dict = proxy::metadata } To allow a Kolab client to find (e.g.) the addressbook folder, issue this IMAP command after login: SETMETADATA "path/to/folder" ("/shared/vendor/kolab/folder-type" "contact") If you find any bugs (crashes, incompatibilities with RFC 5464, etc), please write me a mail. Be advised that this code is still experimental and might crash your server! @Timo: Please have a look at the src/*-ext.[ch] files, they contain extensions to the dovecot libraries and might be useful for others, too. Kind regards, Dennis Schridde [1] http://hg.dovecot.org/dovecot-metadata-plugin [2] http://hg.dovecot.org/dovecot-metadata-plugin/archive/bdf2445e101f.tar.gz -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part. URL: From patrickdk at patrickdk.com Sun Jun 12 17:24:29 2011 From: patrickdk at patrickdk.com (Patrick Domack) Date: Sun, 12 Jun 2011 10:24:29 -0400 Subject: [Dovecot] postfix dovecot spamassassin question In-Reply-To: References: Message-ID: <20110612102429.Horde.CnKNCJLnE6FN9MwdZdzhF3A@mail.patrickdk.com> amavisd-new mailling lists :) amavis only adds the spamass headers to LOCAL domains, so you need to define your domains as local. Quoting Dhaval Patel : > So I setup amavis-new and configured postfix/spamassassin/amavis. > Mail is still > delivered properly but I do not see the spamassassin info in the > headers of the > email. > > I configured amavis-new and set "sa_tag_level_deflt" to -999 so that it would > always show up but no luck. > I updated the spamassassin config and enabled it. > I also tested spamassassin manually running "spamassassin -t < someemail" and > that returns the email with the X-Spam in the headers. > > If this is not the correct place to ask, I apologize. Please direct > me where I > can find the answer. > > Thanks, > Dhaval > > > > Simone Caruso wrote: > >> On 11/06/2011 18:53, Dhaval Patel wrote: >>> I have an old server with postfix -> maildrop -> spamassassin -> courier > setup. >>> I am installing a new server and would like to use dovecot instead of > courier. >>> Currently I have postfix -> dovecot lda -> dovecot setup and emails are >>> delivered as expected. The problem is that I do not know how to get > spamassassin >>> integrated into the mix since I am using the dovecot lda rather than > maildrop. >> >> The simplest, and maybe fastest, is to use amavis-new as postfix >> contentfilter. >> >> >> -- >> Simone Caruso >> IT Consultant >> +39 349 65 90 805 >> p.iva: 03045250838 From jessedreynolds at gmail.com Sun Jun 12 17:27:46 2011 From: jessedreynolds at gmail.com (Jesse Reynolds) Date: Sun, 12 Jun 2011 23:57:46 +0930 Subject: [Dovecot] Unable to compile --with-mysql on Solaris Message-ID: Hello I'm hoping someone can give me a pointer as to how to compile Dovecot with MySQL support on Solaris. I am trying to compile dovecot 2.0.13 (also tried 2.0.9) on Solaris (OpenSolaris 2009-06, snv_111b) with the OpenSolaris provided MySQL 5.1.30 under /usr/mysql. The server is a Sun X2100 M2, which has a dual core AMD Opteron processor (amd64). Running "./configure --with-mysql" stops here: ... checking for mysql_config... mysql_config checking for mysql_init in -lmysqlclient... no configure: error: Can't build with MySQL support: libmysqlclient not found the libmysqlclient.so is to be found here: /usr/mysql/5.1/lib/mysql/ or for the amd64 version: /usr/mysql/5.1/lib/amd64/mysql/ And include is at: /usr/mysql/5.1/include/ I have tried various combinations of things in CFLAGS, CPPFLAGS and LDFLAGS, but it doesn't change the configure error above at all. Eg: export CPPFLAGS="-I/usr/mysql/5.1/include/mysql" export CFLAGS="-I/usr/mysql/5.1/include/mysql" export LDFLAGS="-R/usr/mysql/5.1/lib/amd64/mysql -L/usr/mysql/5.1/lib/amd64/mysql" ./configure --prefix=/opt/dovecot --with-ldap --with-mysql Looking at config.log this section seems relevant: configure:22993: checking for mysql_config configure:23009: found /usr/mysql/bin/mysql_config configure:23021: result: mysql_config configure:23055: checking for mysql_init in -lmysqlclient configure:23080: gcc -o conftest -std=gnu99 -I/usr/mysql/5.1/include/mysql -Wall -W -Wmissing-prototypes -Wmissin g-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -I/usr/mysql/5.1/include/mysql -R /usr/mysql/5.1/lib/amd64/mysql -L/usr/mysql/5.1/lib/amd64/mysql conftest.c -lmysqlclient -lnsl -lsocket -lrt -l sendfile -L/opt/SUNWspro/lib -lCrun -lrt -L/usr/mysql/5.1/lib/mysql -R/usr/mysql/5.1/lib/mysql -lmysqlclient -lz -lgen -lsocket -lnsl -lm -lz -lm >&5 ld: fatal: library -lCrun: not found ld: fatal: file processing errors. No output written to conftest collect2: ld returned 1 exit status configure:23080: $? = 1 configure: failed program was: | /* confdefs.h */ ...snip... configure:23089: result: no configure:23198: error: Can't build with MySQL support: libmysqlclient not found Note, I have not installed the Sun C compiler, so am compiling with gcc (/usr/bin/gcc 3.4.3). gmake is at /usr/bin/gmake and sun make is at /usr/bin/make. Perhaps I would more more luck with Sun's C compiler? Thank you Jesse -- Jesse Reynolds Carbon Planet Limited - http://www.carbonplanet.com/ Virtual Artists Pty Ltd - http://www.va.com.au/ From alietsantiesteban at gmail.com Sun Jun 12 20:27:28 2011 From: alietsantiesteban at gmail.com (Aliet Santiesteban Sifontes) Date: Sun, 12 Jun 2011 13:27:28 -0400 Subject: [Dovecot] mmap in GFS2 on rhel 6.1 In-Reply-To: <4DF3319F.2020300@hardwarefreak.com> References: <4DF3319F.2020300@hardwarefreak.com> Message-ID: https://bugzilla.redhat.com/show_bug.cgi?id=712139 Furhter investigating this bug I have tested all kinds of config with dovecot, and all of them gets gfs2 hanged, I have tested this scenario with bare metal hardware cluster, with virtualized cluster guests in vmware esxi 4.1, with a cluster test in vmware workstation and I can reproduce the problem in all the tests, even in different enviroments, we are testing if dovecot can be deployed on a Redhat Cluster of Active-Active Nodes doing user session persistence. This was my last test, I simplify the scenario with a cluster in my own laptop: 1- Used a two node rhel 6.1 cluster, virtualized in VMWare Workstation. 2- Used two shared iscsi devices from a NAS. 3- Used fence_scsi. Cluster.conf 4- Used the iscsi devices for the LVM stuff and created there the GFS2 filesystems. fstab fragment # GFS2 filesystem /dev/vg_indexes/lv_indexes /var/vmail/indexes gfs2 noatime,quota=off,errors=withdraw 0 0 /dev/vg_mailbox/lv_mailbox /var/vmail/mailbox gfs2 noatime,quota=off,errors=withdraw 0 0 5- Dovecot configured with users in ldap, in this case we tested the mbox mailbox format with fnctl and mmap_disable=yes, we have also tested all other mailboxes formats, indexes and mailboxes stored in gfs2 filesystems, here the conf: [root at node0 ~]# dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-131.2.1.el6.x86_64 x86_64 Red Hat Enterprise Linux Server release 6.1 (Santiago) gfs2 auth_default_realm = example.com auth_mechanisms = plain login auth_worker_max_count = 60 disable_plaintext_auth = no listen = * mail_fsync = always mail_gid = vmail mail_location = mbox:/var/vmail/mailbox/%d/%3n/%n:INDEX=/var/vmail/indexes/%d/%3n/%n mail_nfs_index = yes mail_nfs_storage = yes mail_uid = vmail mbox_write_locks = fcntl mmap_disable = yes passdb { args = /etc/dovecot/dovecot-ldap.conf.ext driver = ldap } ssl_cert = ] ? gfs2_lm_withdraw+0x102/0x130 [gfs2] [] ? trunc_dealloc+0xa9/0x130 [gfs2] [] ? gfs2_consist_inode_i+0x5d/0x60 [gfs2] [] ? gfs2_dinode_dealloc+0x64/0x210 [gfs2] [] ? gfs2_delete_inode+0x1ba/0x280 [gfs2] [] ? gfs2_delete_inode+0x8d/0x280 [gfs2] [] ? gfs2_delete_inode+0x0/0x280 [gfs2] [] ? generic_delete_inode+0xde/0x1d0 [] ? delete_work_func+0x0/0x80 [gfs2] [] ? generic_drop_inode+0x65/0x80 [] ? gfs2_drop_inode+0x2e/0x30 [gfs2] [] ? iput+0x62/0x70 [] ? delete_work_func+0x54/0x80 [gfs2] [] ? worker_thread+0x170/0x2a0 [] ? autoremove_wake_function+0x0/0x40 [] ? worker_thread+0x0/0x2a0 [] ? kthread+0x96/0xa0 [] ? child_rip+0xa/0x20 [] ? kthread+0x0/0xa0 [] ? child_rip+0x0/0x20 no_formal_ino = 468 no_addr = 525144 i_disksize = 65536 blocks = 0 i_goal = 525170 i_diskflags = 0x00000000 i_height = 1 i_depth = 0 i_entries = 0 i_eattr = 0 GFS2: fsid=MailCluster:indexes.0: gfs2_delete_inode: -5 I I change to differents mailbox formats, they also hangs, only that messages in the kernel are little differents as the first post. any ideas??? Best regards 2011/6/11 Stan Hoeppner > On 6/10/2011 11:24 PM, Aliet Santiesteban Sifontes wrote: > > Hello list, we continue our tests using Dovecot on a RHEL 6.1 Cluster > > Backend with GFS2, also we are using dovecot as a Director for user node > > persistence, everything was ok until we started stress testing the > solution > > with imaptest, we had many deadlocks, cluster filesystems corruptions and > > hangs, specially in index filesystem, we have configured the backend as > if > > they were on a NFS like setup but this seems not to work at least on GFS2 > on > > rhel 6.1. > > Actual _filesystem_ corruption is typically unrelated to user space > applications. You should be looking at a lower level for the cause, > i.e. kernel, device driver, hardware, etc. Please post details of your > shared storage hardware environment, including HBAs, SAN array > brand/type, if you're using GFS2 over DRBD, etc. > > > We have a two node cluster sharing two GFS2 filesystem > > - Index GFS2 filesystem to store users indexes > > - Mailbox data on a GFS2 filesystem > > Experience of many users has shown that neither popular cluster > filesystems such as GFS2/OCFS, nor NFS, handle high metadata/IOPS > workloads very well, especially those that make heavy use of locking. > > > The specific configs for NFS or cluster filesystem we used: > > > > mmap_disable = yes > > mail_fsync = always > > mail_nfs_storage = yes > > mail_nfs_index = yes > > fsync_disable=no > > lock_method = fcntl > > > > mail location : > > > > mail_location = > > mdbox:/var/vmail/%d/%3n/%n/mdbox:INDEX=/var/indexes/%d/%3n/%n > > For a Dovecot cluster using shared storage, you are probably better off > using a mailbox format for which indexes are independent of mailbox > files and are automatically [re]generated if absent. > > Try using mbox or maildir and store indexes on local node disk/SSD > instead of on the cluster filesystem. Only store the mailboxes on the > cluster filesystem. If for any reason a user login gets bumped to a > node lacking the index files they're automatically rebuilt. > > Since dbox indexes aren't automatically generated if missing you can't > do what I describe above with dbox storage. Given the limitations of > cluster filesystem (and NFS) metadata IOPS and locking, you'll likely > achieve best performance and stability using local disk index files and > mbox format mailboxes on GFS2. Maildir format works in this setup as > well, but the metadata load on the cluster filesystem is much higher, > and thus peak performance will typically be lower. > > -- > Stan > From mcguire at neurotica.com Sun Jun 12 20:36:14 2011 From: mcguire at neurotica.com (Dave McGuire) Date: Sun, 12 Jun 2011 13:36:14 -0400 Subject: [Dovecot] thunderbird not receiving new incoming mail: Timeout while waiting for lock for transaction log file In-Reply-To: <4DF441F1.9000804@enabled.com> References: <4DF441F1.9000804@enabled.com> Message-ID: <4DF4F90E.1030405@neurotica.com> On 6/12/11 12:34 AM, Noah Garrett Wallach wrote: > I am running dovecot 1.0.10 and thunderbird 3.1.10 for OSX 10.6.7 > and I am finding that new imap mail is not coming into my INBOX folder > on thunderbird. > > there is an error message "Timeout while waiting for lock for > transaction log file" in the syslog > > here is my INBOX .imap dir > > ~/mail/.imap/INBOX$ ls -l > total 75100K > -rw------- 1 blah blah 1462024 Jun 11 20:17 dovecot.index > -rw------- 1 blah blah 75153408 Jun 11 20:17 dovecot.index.cache > -rw------- 1 blah blah 1464 Jun 11 20:17 dovecot.index.log > -rw------- 1 blah blah 195812 Jun 11 17:23 dovecot.index.log.2 > > what is the best way to troubleshoot this problem? what else can I look at? Hey there Noah, long time no see! Here, if I'm not mistaken, one imap process is waiting for a lock on dovecot.index.log while another imap process already has it locked. Are your spools on an NFS-mounted filesystem? That dovecot.index.cache file is gigantic; how big is the spool itself? If it's big, and it's in mbox format, and the machine is swamped, that sync could easily take long enough to cause another imap process to time out waiting for the lock. Man, can you imagine how awesome our mail servers would've been if we had Dovecot back in the Digex days in the mid-90s? Oh, to have a time machine.. -Dave -- Dave McGuire Port Charlotte, FL From dhaval at patel.sh Mon Jun 13 05:41:01 2011 From: dhaval at patel.sh (Dhaval Patel) Date: Sun, 12 Jun 2011 22:41:01 -0400 Subject: [Dovecot] Sieve question Message-ID: <4ee5a8236bf0bba77414cbc85a278917@apps.consoe.com> I have successfully setup Postfix -> Dovecot with virtual users and spam filtering with spamassassin. Now the last remaining part is for the user defined rules. Let me describe my environment and what I am trying to achieve. I have Postfix setup to call spamc and deliver to Dovecot according to the master.cf line below. -------------------------------------------------------------- dovecot unix - n n - - pipe flags=DRhu user=vmail:vmail argv=/usr/bin/spamc -u vmail -e /usr/lib/dovecot/deliver -d ${recipient} -------------------------------------------------------------- The emails get checked by Spamassassin and are delivered to the users's mailbox (/home/vmail/username). I use an actual username (dhav) and not email address (dhaval at example.com). Things are working fine with that. >From reading http://wiki.dovecot.org/LDA/Sieve I see that Sieve can do global and user specified filtering. So I am planning to put the following rule into the global script so spammy emails go to the user's INBOX.spam folder. -------------------------------------------------------------- require "fileinto"; if header :contains "X-Spam-Flag" "YES" { fileinto "spam"; } -------------------------------------------------------------- My first question is, where is this global script? Do I configure the "sieve_global_dir = /etc/dovecot/sieve/"? What about he filename? Most users will not need any additional rules. There are some users that do and I am having a difficult time figuring out how it would be setup. My second question is the following. Is there a way in the global script to check if there is a file called /etc/dovecot/sieve/username or /home/vmail/username/personal_sieve_script and include it? I was using maildrop before this and procmail before that so I apologies for sounding stupid if this is not how Sieve scripts work. I am by no means tied the methods I describe above. If anyone knows of a better way to achieve what I am trying to do, I would appreciate if you let me know of it. Thanks, Dhaval From madduck at madduck.net Mon Jun 13 11:02:38 2011 From: madduck at madduck.net (martin f krafft) Date: Mon, 13 Jun 2011 10:02:38 +0200 Subject: [Dovecot] Timeout during APPEND Message-ID: <20110613080238.GA16867@albatross.gern.madduck.net> Dear list, I am running dovecot 1.2.15 on a Debian server. One user reports continuous problems synchronising her mailbox via IMAP (offlineimap, via SSH tunnel or SSL socket). It seems that she has a large, locally-created message, but the uplink bandwidth seems to be not enough to push it before dovecot times out the APPEND command. The error/exception happens inside offlineimap's Python imaplib2.py file: APPEND => no response after 30.0 secs I do not know the IMAP protocol all that well, but it seems to me like this is broken somewhere. Could you please help me figure out the problem? -- martin | http://madduck.net/ | http://two.sentenc.es/ "man sagt nicht 'nichts!', man sagt daf?r 'jenseits' oder 'gott'." - friedrich nietzsche spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1124 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From madduck at madduck.net Mon Jun 13 11:11:38 2011 From: madduck at madduck.net (martin f krafft) Date: Mon, 13 Jun 2011 10:11:38 +0200 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <20110613080238.GA16867@albatross.gern.madduck.net> References: <20110613080238.GA16867@albatross.gern.madduck.net> Message-ID: <20110613081138.GA24136@albatross.gern.madduck.net> also sprach martin f krafft [2011.06.13.1002 +0200]: > One user reports continuous problems synchronising her mailbox via > IMAP (offlineimap, via SSH tunnel or SSL socket). It seems that she > has a large, locally-created message, but the uplink bandwidth seems > to be not enough to push it before dovecot times out the APPEND > command. Upon further inspection, we found that the message *does* get saved remotely. Hence, this seems like an offlineimap problem, timing out because it receives no responses to APPEND (because the transfer takes so long). The transfer actually completes, but offlineimap will have given up by then already. Has anyone else seen this? Can you confirm this behaviour? What should offlineimap be doing differently? Thanks, -- martin | http://madduck.net/ | http://two.sentenc.es/ because light travels faster than sound, some people appear to be intelligent, until you hear them speak. spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1124 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From jessedreynolds at gmail.com Mon Jun 13 13:06:38 2011 From: jessedreynolds at gmail.com (Jesse Reynolds) Date: Mon, 13 Jun 2011 19:36:38 +0930 Subject: [Dovecot] Unable to compile --with-mysql on Solaris In-Reply-To: References: Message-ID: Solved! Probably fairly obvious, the clue is in the config.log here: sendfile -L/opt/SUNWspro/lib -lCrun -lrt -L/usr/mysql/5.1/lib/mysql > -R/usr/mysql/5.1/lib/mysql -lmysqlclient -lz -lgen -lsocket -lnsl -lm -lz > -lm >&5 ld: fatal: library -lCrun: not found As I understand it, the OpenSolaris distribution of MySQL 5.1.30 is compiled with the Sun C Compiler, part of Sun Studio (now known as Oracle Solaris Studio) and it in fact is requiring a library from Sun Studio in order to compile against the MySQL client library. I have now installed Oracle Solaris Studio by downloading the .tar.bz2 version of it, exploding all 1GB of it into /opt, and making the requisite symlink for SUNWspro as follows: cd /opt ln -s SolarisStudio12.2-solaris-x86-tar-ML/solstudio12.2 SUNWspro And now I can configure and build as follows: ./configure --prefix=/opt/dovecot --with-ldap --with-mysql make There is no need to specify any environment variables such as CCFLAGS or what-have-you as mysql_config is already giving the right stuff to ./configure. Ironically, this only builds when using gcc. If I specify CC=cc then I get the same error about libmysqlclient: CC=cc ./configure --prefix=/opt/dovecot --with-ldap --with-mysql ...snip... checking for mysql_init in -lmysqlclient... no configure: error: Can't build with MySQL support: libmysqlclient not found Onwards and upwards. Jesse On 12 June 2011 23:57, Jesse Reynolds wrote: > Hello > > I'm hoping someone can give me a pointer as to how to compile Dovecot with > MySQL support on Solaris. > > I am trying to compile dovecot 2.0.13 (also tried 2.0.9) on Solaris > (OpenSolaris 2009-06, snv_111b) with the OpenSolaris provided MySQL 5.1.30 > under /usr/mysql. The server is a Sun X2100 M2, which has a dual core AMD > Opteron processor (amd64). > > Running "./configure --with-mysql" stops here: > > ... > checking for mysql_config... mysql_config > checking for mysql_init in -lmysqlclient... no > configure: error: Can't build with MySQL support: libmysqlclient not found > > the libmysqlclient.so is to be found here: > > /usr/mysql/5.1/lib/mysql/ > > or for the amd64 version: > > /usr/mysql/5.1/lib/amd64/mysql/ > > And include is at: > > /usr/mysql/5.1/include/ > > I have tried various combinations of things in CFLAGS, CPPFLAGS and > LDFLAGS, but it doesn't change the configure error above at all. Eg: > > export CPPFLAGS="-I/usr/mysql/5.1/include/mysql" > export CFLAGS="-I/usr/mysql/5.1/include/mysql" > export LDFLAGS="-R/usr/mysql/5.1/lib/amd64/mysql > -L/usr/mysql/5.1/lib/amd64/mysql" > ./configure --prefix=/opt/dovecot --with-ldap --with-mysql > > Looking at config.log this section seems relevant: > > configure:22993: checking for mysql_config > configure:23009: found /usr/mysql/bin/mysql_config > configure:23021: result: mysql_config > configure:23055: checking for mysql_init in -lmysqlclient > configure:23080: gcc -o conftest -std=gnu99 -I/usr/mysql/5.1/include/mysql > -Wall -W -Wmissing-prototypes -Wmissin > g-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 > -Wbad-function-cast -I/usr/mysql/5.1/include/mysql -R > /usr/mysql/5.1/lib/amd64/mysql -L/usr/mysql/5.1/lib/amd64/mysql conftest.c > -lmysqlclient -lnsl -lsocket -lrt -l > sendfile -L/opt/SUNWspro/lib -lCrun -lrt -L/usr/mysql/5.1/lib/mysql > -R/usr/mysql/5.1/lib/mysql -lmysqlclient -lz > -lgen -lsocket -lnsl -lm -lz -lm >&5 > ld: fatal: library -lCrun: not found > ld: fatal: file processing errors. No output written to conftest > collect2: ld returned 1 exit status > configure:23080: $? = 1 > configure: failed program was: > | /* confdefs.h */ > ...snip... > configure:23089: result: no > configure:23198: error: Can't build with MySQL support: libmysqlclient not > found > > > Note, I have not installed the Sun C compiler, so am compiling with gcc > (/usr/bin/gcc 3.4.3). gmake is at /usr/bin/gmake and sun make is at > /usr/bin/make. Perhaps I would more more luck with Sun's C compiler? > > Thank you > Jesse > > > -- > > Jesse Reynolds > Carbon Planet Limited - http://www.carbonplanet.com/ > Virtual Artists Pty Ltd - http://www.va.com.au/ > -- Jesse Reynolds Carbon Planet Limited - http://www.carbonplanet.com/ Virtual Artists Pty Ltd - http://www.va.com.au/ From tss at iki.fi Mon Jun 13 15:44:51 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 15:44:51 +0300 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <20110613081138.GA24136@albatross.gern.madduck.net> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> Message-ID: <1307969091.10421.810.camel@hurina> On Mon, 2011-06-13 at 10:11 +0200, martin f krafft wrote: > also sprach martin f krafft [2011.06.13.1002 +0200]: > > One user reports continuous problems synchronising her mailbox via > > IMAP (offlineimap, via SSH tunnel or SSL socket). It seems that she > > has a large, locally-created message, but the uplink bandwidth seems > > to be not enough to push it before dovecot times out the APPEND > > command. > > Upon further inspection, we found that the message *does* get saved > remotely. Hence, this seems like an offlineimap problem, timing out > because it receives no responses to APPEND (because the transfer > takes so long). The transfer actually completes, but offlineimap > will have given up by then already. > > Has anyone else seen this? > > Can you confirm this behaviour? > > What should offlineimap be doing differently? Timing out after only 30 seconds seems a bit aggressive to me, especially if you're uploading a large message over a slow network connection. Isn't it configurable? From tss at iki.fi Mon Jun 13 15:54:58 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 15:54:58 +0300 Subject: [Dovecot] mmap in GFS2 on rhel 6.1 In-Reply-To: References: Message-ID: <1307969698.10421.815.camel@hurina> On Sat, 2011-06-11 at 00:24 -0400, Aliet Santiesteban Sifontes wrote: > Hello list, we continue our tests using Dovecot on a RHEL 6.1 Cluster > Backend with GFS2, also we are using dovecot as a Director for user node > persistence, everything was ok until we started stress testing the solution > with imaptest, we had many deadlocks, cluster filesystems corruptions and > hangs, specially in index filesystem, we have configured the backend as if > they were on a NFS like setup but this seems not to work at least on GFS2 on > rhel 6.1. Since you're using director, you shouldn't really need any special Dovecot config. > The specific configs for NFS or cluster filesystem we used: > > mmap_disable = yes > mail_fsync = always > mail_nfs_storage = yes > mail_nfs_index = yes > fsync_disable=no > lock_method = fcntl fsync_disable is a deprecated setting, which was replaced by mail_fsync. The mail_nfs_* settings will only slow things down, you should keep them as "no". > ... If you mmap() a file on GFS2 with a read/write mapping, but only read > from it, this only counts as a > read. On GFS though, it counts as a write, so GFS2 is much more scalable > with mmap() I/O... > > But in our config we are using mmap_disable=yes, do we have to use > mmap_disable=no with GFS2??? There are more potential bugs with mmap_disable=no, since it uses both read()/write() and mmap(), while with mmap_disable=yes it only uses read()/write(). > Also, how dovecot manage the cache flush on GFS2 filesystem??? There shouldn't be any need for that with directors. > Why, if we are doing user node persistence, dovecot indexes gets > corrupted??? Looks to me like GFS is still pretty buggy. One thing you could test is if running imaptest directly against one backend server for one user triggers this. If not, run simultaneously another imaptest against another user on another server. Maybe then? The point being that try to find the simplest test that can break GFS, and once you have that try to get Redhat people to fix it. From jsiegle at psu.edu Mon Jun 13 15:59:29 2011 From: jsiegle at psu.edu (Jonathan SIegle) Date: Mon, 13 Jun 2011 08:59:29 -0400 Subject: [Dovecot] [dovecot] Getting duplicates when using snarf plugin with mbox backend Message-ID: <4DF609B1.8020309@psu.edu> Running dovecot version 2.0.11. To reproduce, open two imap sessions and issue a check command from each at the same time with new mail in the queue. 0 login testuser testpw 1 select inbox -- Deliver mail -- 2 check Thanks, Jonathan -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6002 bytes Desc: S/MIME Cryptographic Signature URL: From tss at iki.fi Mon Jun 13 16:00:20 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:00:20 +0300 Subject: [Dovecot] Loading Message Delays In-Reply-To: <4DF3BE69.6070704@mathcs.emory.edu> References: <4DF3BE69.6070704@mathcs.emory.edu> Message-ID: <1307970020.10421.817.camel@hurina> On Sat, 2011-06-11 at 15:13 -0400, Ken Mandelberg wrote: > I sometimes see "loading message" or "opening Inbox" delays against both > 1.X and 2.X Dovecot servers from thunderbird. Is there some way to pin > down whats causing them? How long are the delays? There's not currently any easier way than straceing the process. Or could it be simply that the server is busy doing disk I/O? From tss at iki.fi Mon Jun 13 16:02:57 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:02:57 +0300 Subject: [Dovecot] segfault in dovecot 2.0.9 In-Reply-To: References: Message-ID: <1307970177.10421.819.camel@hurina> On Fri, 2011-06-10 at 19:52 +0200, Morten P.D. Stevens wrote: > Jun 9 00:12:34 mail dovecot: master: Error: service(imap): child 8987 > killed with signal 11 (core dumps disabled) There's really no way to know why this happens without a gdb backtrace. See http://dovecot.org/bugreport.html > # dovecot -n > # 2.0.9: /etc/dovecot/dovecot.conf It's also possible that it has already been fixed in newer versions. From tss at iki.fi Mon Jun 13 16:04:23 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:04:23 +0300 Subject: [Dovecot] Dovecot 1.2 + Sieve-0.1.19 not working please help In-Reply-To: References: Message-ID: <1307970263.10421.821.camel@hurina> On Fri, 2011-06-10 at 18:15 +0400, Denis Iskandarov wrote: > i have installed dovecot from rpm found on rpm.pbone.net .. > Now i'm trying to install Sieve for Dovecot 1.2 to make it redirect > spam in proper folders but getting next error: > > ./configure --with-dovecot=/usr/lib/dovecot/ You can't really install Dovecot from a binary and Sieve from sources, unless there is also some kind of a "dovecot-devel" binary package. Install both from binaries or both from sources. From tss at iki.fi Mon Jun 13 16:09:27 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:09:27 +0300 Subject: [Dovecot] Explain about (mail_get_first_header(mail, "From", &header) In-Reply-To: References: Message-ID: <1307970567.10421.824.camel@hurina> On Fri, 2011-06-10 at 09:19 -0300, Alex Baule wrote: > Hi Timo... > > Inside my plugin, i use the (mail_get_first_header(mail, "From", > &header) function, to get the email From to put in some Blacklist. > > Looking in the header under this mail, we have 2 "From" fields. Do you mean these? >From dma_3783 at envios.socomdescontos.com.br Tue Jun 07 15:43:04 2011 From: "CompraFacil.com.br" > Using the function above, i get the Second "From", but my MTA (exim) > look in to The First From, in the First Line, in that way, my > blacklist don't work, because the sender to be blocked is different > from > > the From looked by dovecot. > > There is a way to get the "From" from First line ? The first line isn't a From: header. It's the "envelope sender". That line typically exists only with mbox format, not with other mailbox formats.. If you deliver a mail via dovecot-lda it removes this From line if it sees it. Typically you'd get this info from Return-Path: header. From madduck at madduck.net Mon Jun 13 16:11:09 2011 From: madduck at madduck.net (martin f krafft) Date: Mon, 13 Jun 2011 15:11:09 +0200 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <1307969091.10421.810.camel@hurina> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> Message-ID: <20110613131109.GA8033@albatross.gern.madduck.net> also sprach Timo Sirainen [2011.06.13.1444 +0200]: > Timing out after only 30 seconds seems a bit aggressive to me, > especially if you're uploading a large message over a slow network > connection. Isn't it configurable? Not that I can see, but I will check out the code later too. The question is whether IMAP really limits us to using something silly as timeouts. Couldn't the server keep sending BUSY messages, or the like? How could the client distinguish between an upload progressing, and the connection having stalled. Does it look at the flow rate of data, or how does IMAP cater for this requirement? -- martin | http://madduck.net/ | http://two.sentenc.es/ an egg has the shortest sex-life of all: if gets laid once; it gets eaten once. it also has to come in a box with 11 others, and the only person who will sit on its face is its mother. spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1120 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From tss at iki.fi Mon Jun 13 16:11:50 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:11:50 +0300 Subject: [Dovecot] dovecot-managesieve In-Reply-To: <4DF20B07.5000209@fhv.at> References: <4DF20B07.5000209@fhv.at> Message-ID: <1307970710.10421.826.camel@hurina> On Fri, 2011-06-10 at 14:16 +0200, Richard Gliebe wrote: > Recently I updated dovecot-1.0.7-7.el5 to dovecot-1.1.20-1_98.el5 on our > CentOS release 5.6 (Final) box via "yum update" .. > After it, I installed dovecot-managesieve-0.11.12-0_5.1.el5 via yum install. I'm not sure about those versions, but: > dovecot: Jun 10 08:50:14 Info: dovecot v1.1.20 starting up (core dumps > disabled) > dovecot: Jun 10 08:50:16 Error: login: Login request missing a file > descriptor > dovecot: Jun 10 08:50:16 Error: Temporary failure in creating login > processes, slowing down for now Looks to me like the managesieve version isn't compatible with this Dovecot version. I guess the earlier managesieve binaries didn't give a better error message about mismatching versions. From tss at iki.fi Mon Jun 13 16:22:50 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:22:50 +0300 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> Message-ID: <1307971370.10421.833.camel@hurina> On Fri, 2011-06-10 at 11:22 +0200, J?rgen Obermann wrote: > Hello, > > is it possible to limit the number of pop3 (or imap) login attempts > from one IP with dovecot to stop attackers? We recently had an attack > from one IP-address lasting 50 minutes that tried 50000 pop3-logins > with guessed users and passwords. I know about Fail2Ban but really > would prefer an easy to configure solution inside of dovecot. Dovecot > has this anvil daemon, can it be used for that purpose? > > We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of > the configuration looking like that: With v2.0 it was already limiting. It increased each login failure delay to 15 seconds before the failure was reported. Although maybe something wasn't working correctly, because 50k hits is more than I think should have been possible. Assuming you have default_process_limit=100 (default), there should have been a maximum of 20k attempts (100 processes / 15 seconds * 60*50 seconds). Hmm. Maybe instead of simply increasing the failure delay, the IP could be disconnected immediately? From tss at iki.fi Mon Jun 13 16:24:21 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:24:21 +0300 Subject: [Dovecot] Dovecot sieve redirect: failed to redirect message to user@domain.com In-Reply-To: <1307650834.16862.23.camel@thiagohenrique06> References: <1307650834.16862.23.camel@thiagohenrique06> Message-ID: <1307971461.10421.834.camel@hurina> On Thu, 2011-06-09 at 17:20 -0300, Thiago Henrique wrote: > > Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Fatal: > execv(/usr/sbin/sendmail) failed: Permission denied SELinux maybe preventing this? An alternative would be to use the new submission_host parameter. From d.iskandarov at gmail.com Mon Jun 13 16:24:36 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 17:24:36 +0400 Subject: [Dovecot] Dovecot 1.2 + Sieve-0.1.19 not working please help In-Reply-To: <1307970263.10421.821.camel@hurina> References: <1307970263.10421.821.camel@hurina> Message-ID: > You can't really install Dovecot from a binary and Sieve from sources, > unless there is also some kind of a "dovecot-devel" binary package. > Install both from binaries or both from sources. thanks and sorry. Sorry for that i forgot to update list, coz i found solution. I removed dovecot 1.2 and installed dovecot 2 rpms provided in download section on website. In this case i have Dovecot2 installed from rpms (with devel) + sieve installed from source ) no problems everything seems to be working (dovecot service starting without errors) not yet configured my spamfilter for sieve redirect spam messages to spam folder. Thanks anyway. From tss at iki.fi Mon Jun 13 16:28:14 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:28:14 +0300 Subject: [Dovecot] Gmail like virtual mailboxes In-Reply-To: References: Message-ID: <1307971694.10421.838.camel@hurina> On Fri, 2011-06-10 at 08:57 +0200, Aleve Sicofante wrote: > I'm new to this list so let me introduce myself: I'm a computer > literate user (I've done some C programming long ago and can run a > Linux system and do some light admin), I've never installed a mail > server before and I'm in the process of migrating my family and my > small business from Gmail (Google Apps) to a virtual server mainly for > privacy reasons. I'm in love with Gmail's label system and I just > plain hate traditional folders. I use hierarchical labels (as if they > were folders but with a message belonging to many at the same time) > and that MUST be preserved in the migration. I've looked at Courier's > IMAP keywords implementation and it looks good, but everyone on the > internet is recommending Dovecot, so here I am. I've thought about making this easy some day, but it's a lot of work. > I've tried hard to find information about using unlimited hierarchical > labels, virtual mailboxes or any other way of mimicing Gmail's > functionality with Dovecot, but I'm lost. > > First of all: can it be done? Not easily. You could create one virtual Dovecot folder for each IMAP keyword, but the client side would be problematic. You'd need to have some way of setting the keywords, and just about no clients support that. I guess another way of setting keywords could be by using the regular "copy message" feature of clients, where instead of actually copying it would just set a keyword. Another problem is that keywords are a very restricted subset of ASCII. There have been talk in imap-protocol mailing list about expanding this a few weeks ago. From tss at iki.fi Mon Jun 13 16:31:49 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:31:49 +0300 Subject: [Dovecot] auth_cache question In-Reply-To: <4DF1D0F9.4040208@schetterer.org> References: <4DF1D0F9.4040208@schetterer.org> Message-ID: <1307971909.10421.840.camel@hurina> On Fri, 2011-06-10 at 10:08 +0200, Robert Schetterer wrote: > Hi , just to make clear > short question does auth_cache... help with downing sql lookups > http://wiki2.dovecot.org/Authentication/Caching Sure, that's what it was built for. > isnt clear to me for sql to me > if yes > are there real world recommanded settings > lets say for a 5000 users server and where password changes should be > noticed asap If you want to be absolutely sure that password changes are noticed immediately, disable negative caching. From tss at iki.fi Mon Jun 13 16:40:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:40:08 +0300 Subject: [Dovecot] Converting CLIENT_MAIL_DATA_MAX_INMEMORY_SIZE to a configurable? In-Reply-To: <4DF11750.40006@fsn.hu> References: <4DF11750.40006@fsn.hu> Message-ID: <1307972408.10421.847.camel@hurina> On Thu, 2011-06-09 at 20:56 +0200, Attila Nagy wrote: > Hi, > > Currently Dovecot's LMTPd writes incoming emails to mail_temp_dir if > it's bigger than 128k. But I would like to spare those unnecessary > operations (creating a file, deleting it, writing into it, reading from > it, checking whether there is free space and if not, rejecting > (temporarily) the message). Memory is cheap, disk IO is not. :) > And BTW, on a lot of systems, /tmp is a memory file system already, so > there is absolute no need for this. If there's not enough disk space, nowadays the message is read fully into memory instead of tempfailing. Also are you sure that writing to the file actually produces disk I/O? Even if /tmp isn't a memory filesystem, I think there's a good chance that the file will be gone before any disk writes have a chance to start. Can you see some measurable disk I/O change by changing this value? From tss at iki.fi Mon Jun 13 16:42:02 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:42:02 +0300 Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login In-Reply-To: References: Message-ID: <1307972522.10421.848.camel@hurina> On Thu, 2011-06-09 at 12:55 +0000, emc wrote: > Jun 9 14:49:46 vps dovecot: pop3-login: Can't connect to auth server at > default: Resource temporarily unavailable dovecot-auth process is hanging for some reason. Do you have any error messages from it in the logs? From d.iskandarov at gmail.com Mon Jun 13 16:42:52 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 17:42:52 +0400 Subject: [Dovecot] SSL comunication problems with client side. Message-ID: I can get messages without SSL with no problems. but i need to setup server accept only SSL secured connections. I think my configuration is very proper, but cant find "obvious" problem. Postfix 2.3.3 + dovecot 2.0.13-1_129.el5 + PostfixAdmin 2.3.3 I made own CA. configured postfix and dovecot with same cert key ca. Same public cert i gave for client just converted it to PKCS#12. I cant undestand valid and invalid certs strings in long, they look same. You can check logs and config bellow. Also some other questions regarding SSL: 1. How to make client MUA (thunderbird) automatically retrieve certificate ? My thunderbird cant do it by itself so i'm importing mail cert by myself. 2. If i want to setup Roundcube/Squirrelmail webmail clients with TLS support (https) i have to provide them with same certificates as dovecot and postfix have. Or in this case i can use whatever certificate dedicated for with "virtualhost"? dovecot-deliver.log: Jun 13 13:26:42 imap-login: Info: Invalid certificate: unable to get certificate CRL: /C=GE/ST=Tbilisi/O=Caucasus Digital Network/OU=Mail Server/CN=mx.office.dev/emailAddress=hostmaster at office.dev Jun 13 13:26:42 imap-login: Info: Invalid certificate: unable to get certificate CRL: /C=GE/ST=Tbilisi/L=Tbilisi/O=Caucasus Digital Network/OU=Caucasus Digital Network/CN=Caucasus Digital Network/emailAddress=hostmaster at office.dev Jun 13 13:26:42 imap-login: Info: Valid certificate: /C=GE/ST=Tbilisi/L=Tbilisi/O=Caucasus Digital Network/OU=Caucasus Digital Network/CN=Caucasus Digital Network/emailAddress=hostmaster at office.dev Jun 13 13:26:42 imap-login: Info: Valid certificate: /C=GE/ST=Tbilisi/O=Caucasus Digital Network/OU=Mail Server/CN=mx.office.dev/emailAddress=hostmaster at office.dev Jun 13 13:26:42 auth: Info: PLAIN(?,192.168.0.11): Client didn't present valid SSL certificate Jun 13 13:26:42 auth: Info: LOGIN(?,192.168.0.11): Client didn't present valid SSL certificate Jun 13 13:26:42 auth: Info: PLAIN(?,192.168.0.11): Client didn't present valid SSL certificate Jun 13 13:26:42 imap-login: Info: Disconnected (client sent an invalid cert): method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, TLS maillog. Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x10, ret=1: before/accept initialization [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: before/accept initialization [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate request A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client certificate A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read certificate verify A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x20, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL alert: where=0x4004, ret=256: warning close notify [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL alert: where=0x4008, ret=256: warning close notify [192.168.0.11] # doveconf -n # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.18-238.9.1.el5 i686 CentOS release 5.6 (Final) ext3 auth_mechanisms = plain login auth_socket_path = /var/run/dovecot/auth-userdb auth_ssl_require_client_cert = yes auth_verbose = yes base_dir = /var/run/dovecot/ debug_log_path = /var/log/dovecot-deliver.log dict { expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf.ext quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext } first_valid_gid = 12 first_valid_uid = 1001 hostname = mx.office.dev info_log_path = /var/log/dovecot-deliver.log last_valid_gid = 12 last_valid_uid = 1001 listen = * mail_debug = yes mail_gid = 12 mail_location = maildir:/home/vmail/%d/%u mail_plugins = quota mail_privileged_group = mail mail_uid = 1001 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date mbox_write_locks = fcntl passdb { args = /etc/dovecot/conf.d/sql/sql.conf driver = sql } plugin { autocreate = Trash autocreate2 = Spam autosubscribe = Trash autosubscribe2 = Spam } postmaster_address = postmaster at office.dev service auth { unix_listener /var/spool/postfix/private/auth { group = mail mode = 0660 user = postfix } unix_listener auth-userdb { group = mail mode = 0660 user = vmail } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } ssl_ca = References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> Message-ID: On Mon, 13 Jun 2011, Timo Sirainen wrote: > With v2.0 it was already limiting. It increased each login failure delay > to 15 seconds before the failure was reported. Although maybe something > wasn't working correctly, because 50k hits is more than I think should > have been possible. Assuming you have default_process_limit=100 > (default), there should have been a maximum of 20k attempts (100 > processes / 15 seconds * 60*50 seconds). I've also seen the reported type of dictionary attacks. Login failure delay doesn't really help much for those... they just open numerous new connections and only try 1 username/password on each connection. On one server, that got me loads of messages like these in my logs: Feb 13 00:40:46 poseidon kernel: TCP: drop open request from 64.73.242.138/1536 and Feb 13 00:44:07 poseidon kernel: NET: 220 messages suppressed. After being firewalled, it kept hammering on the pop3 port for 90 more seconds, after which it probably found another door to hammer. Although I wouldn't really mind if dovecot can be setup to handle this "gracefully" but I'd say this is a more generic problem that is better solved at network level than within dovecot. (So it can be used for other services as well.) -- Maarten From tss at iki.fi Mon Jun 13 16:46:29 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:46:29 +0300 Subject: [Dovecot] Question about Dovecot-ACLs In-Reply-To: <4DF0DBA2.4080307@softjury.de> References: <4DF0DBA2.4080307@softjury.de> Message-ID: <1307972789.10421.850.camel@hurina> On Thu, 2011-06-09 at 16:41 +0200, Jan Phillip Greimann wrote: > i try to create an php-script to control acl's for public folders > without file-manipulation. I don't know about PHP, but > But i have a problem with the follow function: > imap_setacl($mbox,"INBOX/test", "email at domain.tld", ""); > > This command only delete the rights from the email, not the whole entry > in my dovecot-acl file. > > Now my acl-file looks like this: > ~:> cat dovecot-acl > user=email at domain.tld > > Did this affect dovecot by any way? This is intentional. You remove user's all access that way. To delete ACLs you'd need to use DELETEACL command. Maybe there's an imap_deleteacl() function in PHP? From tss at iki.fi Mon Jun 13 16:49:18 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:49:18 +0300 Subject: [Dovecot] Webmail project : to cache or not to cache emails In-Reply-To: References: Message-ID: <1307972958.10421.852.camel@hurina> On Thu, 2011-06-09 at 14:45 +0200, Vincent Richomme wrote: > Hi, > > I plan to develop a new web service where one of its module is a > webmail and I am thinking about > some implementation details. From a interface point of view I wanted to > adopt the same logic a outlook(desktop) or yahoo webmail > and not split emails into pages. I mean I just want a single datatable > view where user can scroll to > see his old messages and data are updated only when user release the > vertical scrollbar. > When I look at current webmail (roundcube for instance) I can see that > a cache is used to stored > emails headers and I was wondering if it was really necessary ? You mean Roundcube's own local cache? > Once a user has passed the login process I would like to retrieve only > the emails that will be displayed > (actually a bit more, I am thinking of 150) but I am wondering if it's > a good idea to not use a cache for headers. > For instance if I have thousands of users on the same machine, will it > support it ? Will it be fast enough ? > Of course I will try by myself the different options but would be > curious to have some opinions. Dovecot's cache is also pretty fast. But then again it is easier to scale web servers than IMAP servers by just adding more servers. From d.iskandarov at gmail.com Mon Jun 13 16:49:45 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 17:49:45 +0400 Subject: [Dovecot] virtual users with postfix+dovecot plugin usage question Message-ID: I'm interested in if i should enable plugins only in LDA as i understood that with postfix dovecot works only like LDA. For example i wanna use autocreate plugin for imap user i have enabled in both IMAP and LDA sections. Is it right or i had to configure it only in LDA section ? Than how quota and imap_quota work in imap section ? For what is it there if lda controls user maildirs ? Dovecot 2.0.13 protocol lda { mail_plugins = quota autocreate } protocol imap { imap_client_workarounds = delay-newmail mail_plugins = quota imap_quota autocreate } protocol pop3 { mail_plugins = quota pop3_client_workarounds = outlook-no-nuls oe-ns-eoh } From tss at iki.fi Mon Jun 13 16:55:32 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:55:32 +0300 Subject: [Dovecot] sqlite quota dict In-Reply-To: <20110609115655.1c94ff28@jimbo> References: <20110609115655.1c94ff28@jimbo> Message-ID: <1307973332.10421.858.camel@hurina> On Thu, 2011-06-09 at 11:56 +0300, Nikita Koshikov wrote: > Hello Timo, and list followers, > > Sqlite supports good feature like mysql 'ON DUPLICATE KEY UPDATE' - it calls REPLACE/INSERT OR REPLACE > > This clause can be added to INSERT query, like: > INSERT OR REPLACE INTO table VALUES() > REPLACE INTO table VALUES() // alias to previous one Quota updates atomically increase or decrease quota. Dovecot doesn't know the exact quota value. The only way to do that would be to globally lock the user's all mailboxes while updating quota, which seems pretty horrible idea to me. So, Dovecot can't do something like this: > INSERT INTO quota (bytes,username) VALUES ('112497180','foo at spam.dom'); Instead it does: UPDATE quota SET bytes=bytes + 12345 WHERE username = 'foo at spam.dom'; Or it would do this, if it knew that the row always exists. But since there are no such guarantees, it's doing the INSERT .. ON DUPLICATE KEY UPDATE. > So if dovecot will INSERT values to sql dict in this manner, sqlite can be used for storing quota data. I could consider doing the UPDATE way where all users are always required to exist in the table. That'd require making this behavior optional in dict-sql backend. Probably a per-map {} block setting. Still, that's some work and a pretty low priority currently.. From tss at iki.fi Mon Jun 13 16:59:27 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:59:27 +0300 Subject: [Dovecot] Regarding Digest-MD5 auth In-Reply-To: References: Message-ID: <1307973567.10421.862.camel@hurina> On Thu, 2011-06-09 at 13:48 +0530, kenja heramba wrote: > Hi, > > I am writing a Pop3Client. I use dovecot server as POP3 server in linux and > hMailServer in windows. > > I was just testing digest-md5 auth with dovecot server. > > I had an observation. > > After server side verification, server sends a verification code to client. > If this fails, how can client send the negative response or does it not > exist? It doesn't exist. What could the client do anyway? Tell the server that "I see you're doing a man-in-the-middle attack, no thanks"? > When I see packet capture, dovecot server sends +OK Logged in for anything > client sends. The last thing a client sends is the verification checksum, which finishes the DIGEST-MD5 authentication. After that the login is complete. So I'm not sure what you mean by "anything client sends". If you send a wrong checksum, it should fail the authentication. From tss at iki.fi Mon Jun 13 17:01:57 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 17:01:57 +0300 Subject: [Dovecot] Using Dovecot new version 2.0.13 facing issues. In-Reply-To: References: Message-ID: <1307973717.10421.864.camel@hurina> On Thu, 2011-06-09 at 10:24 +0530, ???? ???? wrote: > See if these patches help: > > http://hg.dovecot.org/dovecot-2.0/rev/86e4023d08e4 > http://hg.dovecot.org/dovecot-2.0/rev/6fdee880c5dc > > > Hi Timo, > > Thanks for the response. > > The first patch is not getting compiled, where the other one got complied > cleanly. Please help on this. Well, instead of patching you could also get the latest nightly snapshot: http://dovecot.org/nightly/dovecot-latest.tar.gz I'll also probably make a 2.0.14 release this week. From tss at iki.fi Mon Jun 13 17:18:27 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 17:18:27 +0300 Subject: [Dovecot] Dovecot 2.0+LMTP: Legal MAIL FROM rejected? In-Reply-To: References: Message-ID: <1307974707.10421.865.camel@hurina> On Wed, 2011-06-08 at 20:07 +0000, Bernhard Schmidt wrote: > It looks like dovecot/lmtp does not accept an address with quoted > localpart that contains a space > > mail from:<"admin admin"@kl38000.com> > 501 5.5.4 Invalid parameters Fixed: http://hg.dovecot.org/dovecot-2.0/rev/09b8701362a4 From aydin.demirel at endersys.com Mon Jun 13 17:21:39 2011 From: aydin.demirel at endersys.com (=?UTF-8?B?QXlkxLFuIERlbWlyZWw=?=) Date: Mon, 13 Jun 2011 17:21:39 +0300 Subject: [Dovecot] Dovecot + qmail-ldap Message-ID: <4DF61CF3.9090402@endersys.com> Hi; I installed latest dovecot version (2.0.13) and qmail pathed with qmail-ldap on our systems. We want to use auth_dovecot binary authentication for dovecot. My dovecot config is following: auth_debug = yes auth_debug_passwords = yes auth_verbose = yes base_dir = /var/run/dovecot disable_plaintext_auth = no first_valid_gid = 100 first_valid_uid = 100 last_valid_gid = 65000 last_valid_uid = 65000 listen = * mail_debug = yes mail_location = maildir:~/Maildir mmap_disable = yes protocols = imap pop3 service auth { executable = /opt/surmail/smtp/bin/auth_dovecot ./Maildir unix_listener auth-userdb { group = qmail user = root } } service imap-login { inet_listener imap { port = 143 } } service pop3-login { inet_listener pop3 { port = 110 } } ssl = no verbose_proctitle = yes But, unfortunately I can not connect port 110 via telnet and i'm getting following error: Jun 13 17:11:43 sms dovecot: master: Error: service(auth): child 31580 returned error 111 Jun 13 17:11:43 sms dovecot: master: Error: service(auth): command startup failed, throttling What can be the problem? Regards.. -------------------------------- *Aydin Demirel Endersys Ltd. Sistem Destek Muhendisi / System Support Engineer * Phone : +90 216-4709423 Fax : +90 216-4709508 | Web : http://www.endersys.com.tr Blog : http://blog.endersys.com Twitter : http://www.twitter.com/endersys LPI : The #1 Linux Certification for IT Professionals LPI (Linux Professional Institute) Turkey http://www.lpi-turkey.com Endersys is the first Advanced Business partner of Red Hat in Turkey ! http://www.europe.redhat.com/partners/endersys/ From tss at iki.fi Mon Jun 13 17:23:24 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 17:23:24 +0300 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <20110613131109.GA8033@albatross.gern.madduck.net> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> <20110613131109.GA8033@albatross.gern.madduck.net> Message-ID: <1307975004.10421.868.camel@hurina> On Mon, 2011-06-13 at 15:11 +0200, martin f krafft wrote: > also sprach Timo Sirainen [2011.06.13.1444 +0200]: > > Timing out after only 30 seconds seems a bit aggressive to me, > > especially if you're uploading a large message over a slow network > > connection. Isn't it configurable? > > Not that I can see, but I will check out the code later too. > > The question is whether IMAP really limits us to using something > silly as timeouts. Couldn't the server keep sending BUSY messages, > or the like? It could, and Dovecot does that for several commands. But I'm a bit afraid of adding such code for APPEND, because it could easily break some clients. I know an old version of Evolution broke if it got any extra data during APPEND. > How could the client distinguish between an upload progressing, and > the connection having stalled. Does it look at the flow rate of > data, or how does IMAP cater for this requirement? If your router/whatever swallows the entire 10 MB at once and starts uploading it for the next 60 seconds, I guess there's nothing that a client can do. From d.iskandarov at gmail.com Mon Jun 13 17:44:06 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 18:44:06 +0400 Subject: [Dovecot] SSL comunication problems with client side. In-Reply-To: References: Message-ID: I've tried next thing: ssl = required ssl_verify_client_cert = no auth_ssl_require_client_cert = no And began getting emails. Successful logs attached. But i cant understand if data was passed with TLS. How can i enable those 2 options "ssl_verify_client_cert", "auth_ssl_require_client_cert" and get em working ? dovecot-deliver.log Jun 13 14:40:17 lda: Debug: Loading modules from directory: /usr/lib/dovecot Jun 13 14:40:17 lda: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 13 14:40:17 lda: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 13 14:40:17 lda: Debug: auth input: test at office.dev home=/home/vmail/office.dev/test/ mail=maildir:/home/vmail/office.dev/test/ uid=1001 gid=12 quota=maildir:storage=10240000 Jun 13 14:40:17 lda: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 13 14:40:17 lda: Debug: Added userdb setting: plugin/quota=maildir:storage=10240000 Jun 13 14:40:17 lda(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 13 14:40:17 lda(test at office.dev): Debug: Quota root: name=storage=10240000 backend=maildir args= Jun 13 14:40:17 lda(test at office.dev): Debug: maildir++: root=/home/vmail/office.dev/test, index=, control=, inbox=/home/vmail/office.dev/test Jun 13 14:40:17 lda(test at office.dev): Debug: Namespace : Using permissions from /home/vmail/office.dev/test: mode=0700 gid=-1 Jun 13 14:40:17 lda(test at office.dev): Debug: quota: No quota setting - plugin disabled Jun 13 14:40:17 lda(test at office.dev): Debug: none: root=, index=, control=, inbox= Jun 13 14:40:17 lda(test at office.dev): Debug: Destination address: test at office.dev (source: user at hostname) Jun 13 14:40:17 auth: Info: mysql(localhost): Connected to database postfix Jun 13 14:40:17 lda(test at office.dev): Info: msgid=<20110613104017.30B331B09AB at mx.office.dev>: saved mail to INBOX Jun 13 14:40:27 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=7927, TLS Jun 13 14:40:27 imap: Debug: Loading modules from directory: /usr/lib/dovecot Jun 13 14:40:27 imap: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 13 14:40:27 imap: Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Jun 13 14:40:27 imap: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 13 14:40:27 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 13 14:40:27 imap: Debug: Added userdb setting: plugin/quota=maildir:storage=10240000 Jun 13 14:40:27 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 13 14:40:27 imap(test at office.dev): Debug: Quota root: name=storage=10240000 backend=maildir args= Jun 13 14:40:27 imap(test at office.dev): Debug: maildir++: root=/home/vmail/office.dev/test, index=, control=, inbox=/home/vmail/office.dev/test Jun 13 14:40:27 imap(test at office.dev): Debug: Namespace : Using permissions from /home/vmail/office.dev/test: mode=0700 gid=-1 Jun 13 14:40:37 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=7929, TLS Jun 13 14:40:37 imap: Debug: Loading modules from directory: /usr/lib/dovecot Jun 13 14:40:37 imap: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 13 14:40:37 imap: Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Jun 13 14:40:37 imap: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 13 14:40:37 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 13 14:40:37 imap: Debug: Added userdb setting: plugin/quota=maildir:storage=10240000 Jun 13 14:40:37 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 13 14:40:37 imap(test at office.dev): Debug: Quota root: name=storage=10240000 backend=maildir args= Jun 13 14:40:37 imap(test at office.dev): Debug: maildir++: root=/home/vmail/office.dev/test, index=, control=, inbox=/home/vmail/office.dev/test Jun 13 14:40:37 imap(test at office.dev): Debug: Namespace : Using permissions from /home/vmail/office.dev/test: mode=0700 gid=-1 Jun 13 14:40:38 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=7931, TLS Jun 13 14:40:38 imap: Debug: Loading modules from directory: /usr/lib/dovecot Jun 13 14:40:38 imap: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 13 14:40:38 imap: Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Jun 13 14:40:38 imap: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 13 14:40:38 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 13 14:40:38 imap: Debug: Added userdb setting: plugin/quota=maildir:storage=10240000 Jun 13 14:40:38 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 13 14:40:38 imap(test at office.dev): Debug: Quota root: name=storage=10240000 backend=maildir args= Jun 13 14:40:38 imap(test at office.dev): Debug: maildir++: root=/home/vmail/office.dev/test, index=, control=, inbox=/home/vmail/office.dev/test Jun 13 14:40:38 imap(test at office.dev): Debug: Namespace : Using permissions from /home/vmail/office.dev/test: mode=0700 gid=-1 maillog Jun 13 14:40:17 cent56dev postfix/smtpd[7912]: connect from mx.office.dev[127.0.0.1] Jun 13 14:40:17 cent56dev postfix/smtpd[7912]: 30B331B09AB: client=mx.office.dev[127.0.0.1] Jun 13 14:40:17 cent56dev postfix/cleanup[7920]: 30B331B09AB: message-id=<20110613104017.30B331B09AB at mx.office.dev> Jun 13 14:40:17 cent56dev postfix/qmgr[5910]: 30B331B09AB: from=, size=461, nrcpt=1 (queue active) Jun 13 14:40:17 cent56dev postfix/smtpd[7912]: disconnect from mx.office.dev[127.0.0.1] Jun 13 14:40:17 cent56dev postfix/pipe[7921]: 30B331B09AB: to=, relay=dovecot, delay=0.27, delays=0.04/0.03/0/0.2, dsn=2.0.0, status=sent (delivered via dovecot service) Jun 13 14:40:17 cent56dev postfix/qmgr[5910]: 30B331B09AB: removed Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x10, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server done A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x20, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x10, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server done A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x20, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x10, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server done A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x20, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=1: SSL negotiation finished successfully [192.168.0.11] On Mon, Jun 13, 2011 at 5:42 PM, Denis Iskandarov wrote: > I can get messages without SSL with no problems. but i need to setup > server accept only SSL secured connections. > I think my configuration is very proper, but cant find "obvious" problem. > Postfix 2.3.3 + dovecot 2.0.13-1_129.el5 + PostfixAdmin 2.3.3 > I made own CA. configured postfix and dovecot with same cert key ca. > Same public cert i gave for client just converted it to PKCS#12. > I cant undestand valid and invalid certs strings in long, they look same. > You can check logs and config bellow. > > Also some other questions regarding SSL: > 1. How to make client MUA (thunderbird) automatically retrieve > certificate ? My thunderbird cant do it by itself so i'm importing > mail cert by myself. > 2. If i want to setup Roundcube/Squirrelmail webmail clients with TLS > support (https) i have to provide them with same certificates as > dovecot and postfix have. Or in this case i can use whatever > certificate dedicated for with "virtualhost"? > > > > dovecot-deliver.log: > Jun 13 13:26:42 imap-login: Info: Invalid certificate: unable to get > certificate CRL: /C=GE/ST=Tbilisi/O=Caucasus Digital Network/OU=Mail > Server/CN=mx.office.dev/emailAddress=hostmaster at office.dev > Jun 13 13:26:42 imap-login: Info: Invalid certificate: unable to get > certificate CRL: /C=GE/ST=Tbilisi/L=Tbilisi/O=Caucasus Digital > Network/OU=Caucasus Digital Network/CN=Caucasus Digital > Network/emailAddress=hostmaster at office.dev > Jun 13 13:26:42 imap-login: Info: Valid certificate: > /C=GE/ST=Tbilisi/L=Tbilisi/O=Caucasus Digital Network/OU=Caucasus > Digital Network/CN=Caucasus Digital > Network/emailAddress=hostmaster at office.dev > Jun 13 13:26:42 imap-login: Info: Valid certificate: > /C=GE/ST=Tbilisi/O=Caucasus Digital Network/OU=Mail > Server/CN=mx.office.dev/emailAddress=hostmaster at office.dev > Jun 13 13:26:42 auth: Info: PLAIN(?,192.168.0.11): Client didn't > present valid SSL certificate > Jun 13 13:26:42 auth: Info: LOGIN(?,192.168.0.11): Client didn't > present valid SSL certificate > Jun 13 13:26:42 auth: Info: PLAIN(?,192.168.0.11): Client didn't > present valid SSL certificate > Jun 13 13:26:42 imap-login: Info: Disconnected (client sent an invalid > cert): method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, TLS > > > maillog. > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x10, ret=1: before/accept initialization [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: before/accept initialization [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write certificate request A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read client certificate A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read certificate verify A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x20, ret=1: SSL negotiation finished successfully > [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2002, ret=1: SSL negotiation finished successfully > [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL alert: > where=0x4004, ret=256: warning close notify [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL alert: > where=0x4008, ret=256: warning close notify [192.168.0.11] > > > # doveconf -n > # 2.0.13: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.18-238.9.1.el5 i686 CentOS release 5.6 (Final) ext3 > auth_mechanisms = plain login > auth_socket_path = /var/run/dovecot/auth-userdb > auth_ssl_require_client_cert = yes > auth_verbose = yes > base_dir = /var/run/dovecot/ > debug_log_path = /var/log/dovecot-deliver.log > dict { > ?expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf.ext > ?quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext > } > first_valid_gid = 12 > first_valid_uid = 1001 > hostname = mx.office.dev > info_log_path = /var/log/dovecot-deliver.log > last_valid_gid = 12 > last_valid_uid = 1001 > listen = * > mail_debug = yes > mail_gid = 12 > mail_location = maildir:/home/vmail/%d/%u > mail_plugins = quota > mail_privileged_group = mail > mail_uid = 1001 > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include variables body enotify > environment mailbox date > mbox_write_locks = fcntl > passdb { > ?args = /etc/dovecot/conf.d/sql/sql.conf > ?driver = sql > } > plugin { > ?autocreate = Trash > ?autocreate2 = Spam > ?autosubscribe = Trash > ?autosubscribe2 = Spam > } > postmaster_address = postmaster at office.dev > service auth { > ?unix_listener /var/spool/postfix/private/auth { > ? ?group = mail > ? ?mode = 0660 > ? ?user = postfix > ?} > ?unix_listener auth-userdb { > ? ?group = mail > ? ?mode = 0660 > ? ?user = vmail > ?} > } > service imap-login { > ?inet_listener imap { > ? ?port = 143 > ?} > ?inet_listener imaps { > ? ?port = 993 > ? ?ssl = yes > ?} > } > service pop3-login { > ?inet_listener pop3 { > ? ?port = 110 > ?} > ?inet_listener pop3s { > ? ?port = 995 > ? ?ssl = yes > ?} > } > ssl_ca = ssl_cert = ssl_key = ssl_verify_client_cert = yes > userdb { > ?args = /etc/dovecot/conf.d/sql/sql.conf > ?driver = sql > } > verbose_ssl = yes > protocol lda { > ?mail_plugins = quota autocreate > } > protocol imap { > ?imap_client_workarounds = delay-newmail > ?mail_plugins = quota imap_quota autocreate > } > protocol pop3 { > ?mail_plugins = quota > ?pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > } > From alexwbaule at gmail.com Mon Jun 13 17:53:25 2011 From: alexwbaule at gmail.com (Alex Baule) Date: Mon, 13 Jun 2011 11:53:25 -0300 Subject: [Dovecot] Explain about (mail_get_first_header(mail, "From", &header) In-Reply-To: <1307970567.10421.824.camel@hurina> References: <1307970567.10421.824.camel@hurina> Message-ID: my delivery is done by the exim, and i use maildir. Well, i will use the mail_get_first_header with the Return-Path. Tks. Em 13/06/2011 10:09, "Timo Sirainen" escreveu: > On Fri, 2011-06-10 at 09:19 -0300, Alex Baule wrote: >> Hi Timo... >> >> Inside my plugin, i use the (mail_get_first_header(mail, "From", >> &header) function, to get the email From to put in some Blacklist. >> >> Looking in the header under this mail, we have 2 "From" fields. > > Do you mean these? > > From dma_3783 at envios.socomdescontos.com.br Tue Jun 07 15:43:04 2011 > From: "CompraFacil.com.br" > >> Using the function above, i get the Second "From", but my MTA (exim) >> look in to The First From, in the First Line, in that way, my >> blacklist don't work, because the sender to be blocked is different >> from >> >> the From looked by dovecot. >> >> There is a way to get the "From" from First line ? > > The first line isn't a From: header. It's the "envelope sender". That > line typically exists only with mbox format, not with other mailbox > formats.. If you deliver a mail via dovecot-lda it removes this From > line if it sees it. > > Typically you'd get this info from Return-Path: header. > From slusarz at curecanti.org Mon Jun 13 19:56:34 2011 From: slusarz at curecanti.org (Michael M Slusarz) Date: Mon, 13 Jun 2011 10:56:34 -0600 Subject: [Dovecot] Webmail project : to cache or not to cache emails In-Reply-To: <1307972958.10421.852.camel@hurina> References: <1307972958.10421.852.camel@hurina> Message-ID: <20110613105634.Horde.is6efYF5lbhN9kFCnl-S7lA@bigworm.curecanti.org> Quoting Timo Sirainen : > On Thu, 2011-06-09 at 14:45 +0200, Vincent Richomme wrote: >> Hi, >> >> I plan to develop a new web service where one of its module is a >> webmail and I am thinking about >> some implementation details. From a interface point of view I wanted to >> adopt the same logic a outlook(desktop) or yahoo webmail >> and not split emails into pages. I mean I just want a single datatable >> view where user can scroll to >> see his old messages and data are updated only when user release the >> vertical scrollbar. We have implemented this in IMP. Best of luck - it is not an easy thing to implement correctly. >> When I look at current webmail (roundcube for instance) I can see that >> a cache is used to stored >> emails headers and I was wondering if it was really necessary ? > > You mean Roundcube's own local cache? For webmail, our theory is that caching is pretty much only important when viewing the mailbox list. There is an expectation from a user that when viewing a message, it may take a bit of time to grab the data and render. Caching body data and full header text for all users and all messages will instead most likely cause your cache to fill to quickly, and provides little practical benefit. So instead focus on caching for the mailbox list. We cache all envelope data, imapdate, size, and flags. We also cache *specific* headers that are unobtainable from envelope data, but are used when rendering the message list (e.g. X-Priority, List Headers). But there is no need to cache the entire header text - some of it would be duplicative (e.g. envelope headers), and a good chunk of the remaining data is worthless for most use cases (e.g. Received). Finally, we cache flags. But note: you absolutely MUST implement CONDSTORE support on your client or else mailbox caching is essentially worthless. A client that has to grab the flag data on every connection pretty much eliminates all benefits gained from caching in the first place. Most other webmail implementations claim they cache, but they have no CONDSTORE support, so their caching is either broken (flag changes from other clients don't appear) or of limited value (since an IMAP server may need to parse through the entire list of requested messages to grab this information, which may be a slow operation if using something like mboxes on the storage side). >> Once a user has passed the login process I would like to retrieve only >> the emails that will be displayed >> (actually a bit more, I am thinking of 150) but I am wondering if it's >> a good idea to not use a cache for headers. >> For instance if I have thousands of users on the same machine, will it >> support it ? Will it be fast enough ? >> Of course I will try by myself the different options but would be >> curious to have some opinions. > > Dovecot's cache is also pretty fast. But then again it is easier to > scale web servers than IMAP servers by just adding more servers. I'll admit that a webmail cache is not as important when using with a server that already supports caching natively (Dovecot, Cyrus). However, you still gain benefits because the local cache is in a format that is directly usable by the client program - in other words, you save on reparsing the IMAP data -> local data structure. But a webmail cache is a necessity when using IMAP servers that don't natively cache (e.g. Courier). michael From d.iskandarov at gmail.com Mon Jun 13 20:10:46 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 21:10:46 +0400 Subject: [Dovecot] SSL comunication problems with client side. In-Reply-To: References: Message-ID: again me. i got idea that i need crl but i didn't understand where it should be located? (and yes i read wiki but still...) from config above u can see my certs location: ssl_ca = Using LDAP userdb/passdb. Is it possible to define a default set of ACL's at the userdb level, to provide access to shared mailboxes? How? -- Daniel From dmiller at amfes.com Mon Jun 13 23:49:21 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 13 Jun 2011 13:49:21 -0700 Subject: [Dovecot] Admin access to shared mailboxes In-Reply-To: <201105311016.04024.joseba.torre@ehu.es> References: <4DE42549.2090405@amfes.com> <201105311016.04024.joseba.torre@ehu.es> Message-ID: On 5/31/2011 1:16 AM, Joseba Torre wrote: > On Martes 31 Mayo 2011 01:16:25 Daniel Miller escribi?: >> Having enabled shared mailboxes - is there a way to provide access to >> all users' mailboxes by a given user? Instead of having to manually >> provide ACL rights to every mailbox of every user? > http://wiki2.dovecot.org/Authentication/MasterUsers Will Master users have access to shared mailboxes from their own login? Or must a separate login be created for each mailbox (which is what I'm trying to avoid)? -- Daniel From Juergen.Obermann at hrz.uni-giessen.de Tue Jun 14 00:49:57 2011 From: Juergen.Obermann at hrz.uni-giessen.de (=?utf-8?b?SsO8cmdlbg==?= Obermann) Date: Mon, 13 Jun 2011 23:49:57 +0200 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <1307971370.10421.833.camel@hurina> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> Message-ID: <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> > On Fri, 2011-06-10 at 11:22 +0200, J?rgen Obermann wrote: >> Hello, >> >> is it possible to limit the number of pop3 (or imap) login attempts >> from one IP with dovecot to stop attackers? We recently had an attack >> from one IP-address lasting 50 minutes that tried 50000 pop3-logins >> with guessed users and passwords. I know about Fail2Ban but really >> would prefer an easy to configure solution inside of dovecot. Dovecot >> has this anvil daemon, can it be used for that purpose? >> >> We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of >> the configuration looking like that: > > With v2.0 it was already limiting. It increased each login failure delay > to 15 seconds before the failure was reported. Although maybe something > wasn't working correctly, because 50k hits is more than I think should > have been possible. Assuming you have default_process_limit=100 > (default), there should have been a maximum of 20k attempts (100 > processes / 15 seconds * 60*50 seconds). > > Hmm. Maybe instead of simply increasing the failure delay, the IP could > be disconnected immediately? We had set default_process_limit=2000. I think this was necessary during testing the high-security mode and I forgot to set it back to 100 again after switching back to high-perfomance mode (http://wiki2.dovecot.org/LoginProcess). But even 20k attempts in 50 minutes (or 6 per second) would habe been to much for one real person. The attack would have taken about 2 hours instead of nearly one. I admit that fail2ban can stop this attack, but we have solaris and not linux and therefore the actions fail3ban wants to start are not available. Greetings, Juergen -- Hochschulrechenzentrum der | Mail: Juergen.Obermann at hrz.uni-giessen.de Justus-Liebig-Universitaet | WWW: http://www.uni-giessen.de/obermann/ Heinrich-Buff-Ring 44 | Tel: 0641-99-13054 (0641-99-13001) D-35392 Giessen, Germany | Fax: 0641-99-13009 From tom at whyscream.net Tue Jun 14 01:12:42 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Tue, 14 Jun 2011 00:12:42 +0200 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> Message-ID: <4DF68B5A.5050609@whyscream.net> On 13/06/11 23:49, J?rgen Obermann wrote: > > I admit that fail2ban can stop this attack, but we have solaris and not > linux and therefore the actions fail3ban wants to start are not available. > If fail2ban itself can run on your box, then that's the way to go. All actions in fail2ban are simple scripts that use other tools on the OS (f.i. iptables on linux). I'm not into solaris at all, but if solaris has a scriptable firewall (I bet it does), then the fail2ban list can help you use it. -- Regards, Tom From dovecot at michaelstarks.com Tue Jun 14 03:18:33 2011 From: dovecot at michaelstarks.com (Michael Starks) Date: Mon, 13 Jun 2011 19:18:33 -0500 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> Message-ID: <4DF6A8D9.2040504@michaelstarks.com> On 06/13/2011 04:49 PM, J?rgen Obermann wrote: > I admit that fail2ban can stop this attack, but we have solaris and not > linux and therefore the actions fail3ban wants to start are not available. You may be interested in OSSEC for this. I added the Dovecot support and OSSEC supports Solaris, so I imagine this would work fine (although I don't use Solaris so I can't say for sure.) If the logs turn out to be slightly different I can update the decoder to accommodate. From madduck at madduck.net Tue Jun 14 07:56:03 2011 From: madduck at madduck.net (martin f krafft) Date: Tue, 14 Jun 2011 06:56:03 +0200 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <1307975004.10421.868.camel@hurina> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> <20110613131109.GA8033@albatross.gern.madduck.net> <1307975004.10421.868.camel@hurina> Message-ID: <20110614045603.GA23005@albatross.gern.madduck.net> also sprach Timo Sirainen [2011.06.13.1623 +0200]: > It could, and Dovecot does that for several commands. But I'm a bit > afraid of adding such code for APPEND, because it could easily break > some clients. I know an old version of Evolution broke if it got any > extra data during APPEND. Couldn't the client signal to the server that it wants/expects such data, and only then does dovecot send such pings? -- martin | http://madduck.net/ | http://two.sentenc.es/ "...the prevailing catholic odor - incense, wax, centuries of mild bleating from the lips of the flock." -- thomas pynchon, gravity's rainbow spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1124 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From stephan at rename-it.nl Tue Jun 14 09:36:35 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 14 Jun 2011 08:36:35 +0200 Subject: [Dovecot] Sieve question In-Reply-To: <4ee5a8236bf0bba77414cbc85a278917@apps.consoe.com> References: <4ee5a8236bf0bba77414cbc85a278917@apps.consoe.com> Message-ID: <4DF70173.1070408@rename-it.nl> Op 13-6-2011 4:41, Dhaval Patel schreef: > -------------------------------------------------------------- > require "fileinto"; > if header :contains "X-Spam-Flag" "YES" { > fileinto "spam"; > } > -------------------------------------------------------------- > > My first question is, where is this global script? Do I configure the > "sieve_global_dir = /etc/dovecot/sieve/"? What about he filename? http://wiki.dovecot.org/LDA/Sieve/Dovecot#Executing_Multiple_Scripts_Sequentially Use sieve_before. Script name is mainly important when a directory is specified, in which case it must end with .sieve. The directory/file can be located anywhere you like. > Most users will not need any additional rules. There are some users that do and > I am having a difficult time figuring out how it would be setup. My second > question is the following. Is there a way in the global script to check if there > is a file called /etc/dovecot/sieve/username or > /home/vmail/username/personal_sieve_script and include it? Not like that. There is an include extension, but that is not able to do optional includes (maybe it should). You can use multiscript support for this too. Make the sieve_before setting dependent on the user, make it point to two alternative directories, each containing (symlinks to) a different set of scripts. > I was using maildrop before this and procmail before that so I apologies for > sounding stupid if this is not how Sieve scripts work. > > I am by no means tied the methods I describe above. If anyone knows of a better > way to achieve what I am trying to do, I would appreciate if you let me know of > it. Regards, Stephan. From nmilas at noa.gr Tue Jun 14 10:25:36 2011 From: nmilas at noa.gr (Nikolaos Milas) Date: Tue, 14 Jun 2011 10:25:36 +0300 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF68B5A.5050609@whyscream.net> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> Message-ID: <4DF70CF0.1060106@noa.gr> On 14/6/2011 1:12 ??, Tom Hendrikx wrote: > On 13/06/11 23:49, J?rgen Obermann wrote: >> I admit that fail2ban can stop this attack, but we have solaris and not >> linux and therefore the actions fail3ban wants to start are not available. >> > If fail2ban itself can run on your box, then that's the way to go. > > I would like to add that, although fail2ban is great and we are using it for a long time, it doesn't support IPv6; now that our servers (we are using CentOS 5.6 x86_64) and networks are IPv6 enabled, this is a problem (but hopefully IPv6-based attacks should not be very common yet). We have not implemented a solution for protecting pop3/imap over IPv6 yet, but I have recently found this article: http://www.roedie.nl/tag/fail2ban/ which suggests autofwd: http://freshmeat.net/projects/autofwd which might provide a good solution. It seems versatile and supports IPv6. If anybody has done or can do an implementation on Linux (using iptables AND ip6tables) for pop3/imap, pop3s/imaps and share it, it will be most welcome and very useful. This is a Linux tool, so I can't suggest anything for Solaris or other systems. Nevertheless, finding a solution for Linux is still significant! Nick -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5632 bytes Desc: S/MIME Cryptographic Signature URL: From claudio.prono at atpss.net Tue Jun 14 11:06:53 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Tue, 14 Jun 2011 10:06:53 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve Message-ID: <4DF7169D.1080602@atpss.net> Hello all, I am testing Dovecot 2.0.13, with sieve for the vacation. I have some problems with the :regex as i can see... An example: # Sieve Filter # Generato da Ingo (http://www.horde.org/ingo/) (10/06/2011, 04:45:07) require ["vacation", "regex"]; # Vacanze if allof ( not exists ["list-help", "list-unsubscribe", "list-subscribe", "list-owner", "list-post", "list-archive", "list-id", "Mailing-List"], not header :comparator "i;ascii-casemap" :is "Precedence" ["list", "bulk", "junk"], not header :comparator "i;ascii-casemap" :matches "To" "Multiple recipients of*" ) { if header :regex "Received" "^.*(2011) (\\(.*\\) )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { if header :regex "Received" "^.*(Jun) (\\(.*\\) )?.... (\\(.*\\) )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { if header :regex "Received" "^.*(10) (\\(.*\\) )?... (\\(.*\\) )?.... (\\(.*\\) )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { vacation :days 7 :addresses "claudio at mediaservice.net" :subject "Test autoresponder" "test autoresponder 22"; } } } } If i test this script with sieve-test, the result is the following: sieve-test .dovecot.sieve new/1307715082.M173915P16839.mail2\,S\=1138\,W\=1168 sieve-test(root): Debug: Effective uid=0, gid=0, home=/root sieve-test(root): Debug: Namespace : type=private, prefix=INBOX., sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/var/mail/virtual//root sieve-test(root): Debug: maildir++: root=/var/mail/virtual//root, index=, control=, inbox=/var/mail/virtual//root sieve-test(root): Debug: none: root=, index=, control=, inbox= Performed actions: (none) Implicit keep: * store message in folder: INBOX sieve-test(root): Info: final result: success No vacation is performed..... Then, if i modify the script commenting all the regex for the date, the result is the following: sieve-test .dovecot.sieve new/1307715082.M173915P16839.mail2\,S\=1138\,W\=1168 sieve-test(root): Debug: Effective uid=0, gid=0, home=/root sieve-test(root): Debug: Namespace : type=private, prefix=INBOX., sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/var/mail/virtual//root sieve-test(root): Debug: maildir++: root=/var/mail/virtual//root, index=, control=, inbox=/var/mail/virtual//root sieve-test(root): Debug: none: root=, index=, control=, inbox= Performed actions: * send vacation message: => seconds : 604800 => subject: Test autoresponder => handle : test autoresponder 22Test autoresponder START MESSAGE test autoresponder 22 END MESSAGE Implicit keep: * store message in folder: INBOX sieve-test(root): Info: final result: success But the date is right: date Fri Jun 10 17:22:14 CEST 2011 So, what is wrong? Any help is well accepted, that script with dovecot 1.x is working correctly.... So, what is changed in dovecot 2.0 sieve? Cordially, Claudio Prono. -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From wgillespie+dovecot at es2eng.com Tue Jun 14 11:13:11 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Tue, 14 Jun 2011 02:13:11 -0600 Subject: [Dovecot] SSL comunication problems with client side. In-Reply-To: References: Message-ID: <4DF71817.2030507@es2eng.com> On 6/13/2011 8:44 AM, Denis Iskandarov wrote: > I've tried next thing: > ssl = required > ssl_verify_client_cert = no > auth_ssl_require_client_cert = no > > And began getting emails. > Successful logs attached. But i cant understand if data was passed with TLS. > How can i enable those 2 options "ssl_verify_client_cert", > "auth_ssl_require_client_cert" and get em working ? So do you want the client to authenticate with a certificate, or a username and password? If you set up SSL on the server then things will be encrypted between the client and server similar to how HTTPS works (only the server presents a certificate). ssl_verify_client_cert, and auth_ssl_require_client_cert also expects for the client to present its own certificate to the server. So there would be a certificate for the server and one for each client in that case. Willie From wgillespie+dovecot at es2eng.com Tue Jun 14 11:19:05 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Tue, 14 Jun 2011 02:19:05 -0600 Subject: [Dovecot] ACL's from userdb In-Reply-To: References: Message-ID: <4DF71979.8080006@es2eng.com> On 6/13/2011 2:47 PM, Daniel L. Miller wrote: > Using LDAP userdb/passdb. Is it possible to define a default set of > ACL's at the userdb level, to provide access to shared mailboxes? How? You could maybe use acl_groups In Dovecot LDAP config: user_attrs = some_ldap_attr=acl_groups Then give the groups the permissions you want the users to have. Willie From d.iskandarov at gmail.com Tue Jun 14 11:52:37 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Tue, 14 Jun 2011 12:52:37 +0400 Subject: [Dovecot] SSL comunication problems with client side. In-Reply-To: <4DF71817.2030507@es2eng.com> References: <4DF71817.2030507@es2eng.com> Message-ID: i want users to login with username and password, but be sure that whole traffic betwen clint/server would be encrypted. after reading mailing list and google finally just a momment ago i have fixed problem with certs and this 2 options. my problem was in crl and i didnt understood how is should follow cacert. here is mini howto for openssl usage on mail server. please include in wiki, it will help many others!!! 0. prepare environment for openssl mkdir /etc/pki/CA/newcerts mkdir /etc/pki/CA/crl cd /etc/pki/CA echo 01 > serial touch index.txt echo 01 > crlnumber ln -s /etc/pki/tls/openssl.cnf openssl.cnf Edit /etc/pki/tls/openssl.cnf change CA directory to /etc/pki/CA change nsComment to whatever you want change other settings you want (default variables for certs) 1. Make your own CA openssl req -new -x509 -extensions v3_ca -utf8 -newkey rsa:2048 -sha1 -keyout private/cakey.pem -out cacert.pem -days 3650 -config ./openssl.cnf 2. Make default CRL openssl ca -gencrl -crlexts crl_ext -md sha1 -utf8 -config ./openssl.cnf -crldays 30 -out crl/crl.pem 3. combine your root cert with default empty CRL cat cacert.pem ./crl/crl.pem > cacrl.pem 4. make request for mail server certificate mkdir mail openssl req -new -nodes -newkey rsa:2048 -sha1 -utf8 -out mail/mail.req -keyout mail/mail.key -config ./openssl.cnf 5. issue certificate openssl ca -out mail/mail.pem -md sha1 -utf8 -days 3650 -config ./openssl.cnf -infiles mail/mail.req 6. convert root certificate to DER format openssl x509 -in cacert.pem -outform DER -out company.root.cert.der 7. convert mail cert into windows readable format PKCS#12. (or convert it to same .der format to secure key file) openssl pkcs12 -export -out mail/mail.p12 -inkey mail/mail.key -in mail/mail.pem -name "MyCompany Mail Server" 8. Give company.root.cert.der and mail.p12 certs to client for integration with his application (outlook, thunderbird, etc ...) 9. Edit your Dovecot ssl configuration and tell him location of cert files. ssl_cert = wrote: > On 6/13/2011 8:44 AM, Denis Iskandarov wrote: >> >> I've tried next thing: >> ssl = required >> ssl_verify_client_cert = no >> auth_ssl_require_client_cert = no >> >> And began getting emails. >> Successful logs attached. But i cant understand if data was passed with >> TLS. >> How can i enable those 2 options "ssl_verify_client_cert", >> "auth_ssl_require_client_cert" and get em working ? > > So do you want the client to authenticate with a certificate, or a username > and password? > > If you set up SSL on the server then things will be encrypted between the > client and server similar to how HTTPS works (only the server presents a > certificate). > > ssl_verify_client_cert, and auth_ssl_require_client_cert also expects for > the client to present its own certificate to the server. ?So there would be > a certificate for the server and one for each client in that case. > > Willie > From harenberg at physik.uni-wuppertal.de Tue Jun 14 14:17:52 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Tue, 14 Jun 2011 13:17:52 +0200 Subject: [Dovecot] Per-user "Seen" flags on public folder Message-ID: <27661D40-A8C1-4661-B713-5E01327E415A@physik.uni-wuppertal.de> Dear all, sorry to bother the list again, I have a small configuration issue again with public (shared) folders. These folders should have per-user Seen flags, so I configured: namespace { type = public separator = . prefix = public. location = maildir:/var/mail/public:INDEX=%u/public subscriptions = no list = children } But this only seems to work with my account (presumably as I was the first one who touched the folder), all other users cannot change the "Seen" flags My home dir is set to /home/mail/harenber and there is a: mail# ls -l total 1162 -rwxrwxrwx 1 10001 wheel 4016 Jun 9 13:27 dovecot.index -rwxrwxrwx 1 10001 wheel 1125376 Jun 14 11:26 dovecot.index.cache -rwxrwxrwx 1 10001 wheel 2140 Jun 9 13:40 dovecot.index.log -rwxrwxrwx 1 10044 wheel 33792 Jun 9 13:28 dovecot.index.log.2 mail# pwd /home/mail/harenber/harenber/public/.fb8 (don't know why my username appears twice). which looks the same on some other account: mail# ls -l total 1380 -rw-rw-rw- 1 10002 wheel 4016 Jun 9 19:40 dovecot.index -rw-rw-rw- 1 10002 wheel 1364992 Jun 10 10:54 dovecot.index.cache -rwxrwxrwx 1 10114 wheel 16072 Jun 10 10:54 dovecot.index.log mail# pwd /home/mail/sandhoff/sandhoff/public/.fb8 The public folder looks like this: mail# pwd /var/mail/public/.fb8 mail# ls -l total 52 drwxrwxrwx 2 root wheel 512 Jun 9 13:05 cur -rwxrwxrwx 1 root wheel 54 Jun 9 13:11 dovecot-acl -rwxrwxrwx 1 root wheel 97 Jun 9 13:05 dovecot-keywords -rw-rw-rw- 1 10001 wheel 18513 Jun 9 13:27 dovecot-uidlist drwxrwxrwx 2 root wheel 23552 Jun 9 13:05 new -rwxrwxrwx 1 root wheel 0 Jun 9 13:05 subscriptions drwxrwxrwx 2 root wheel 512 Jun 9 13:05 tmp Does anybody see what I did (again) wrong? (doveconf -n at the end, as allways) Thanks Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> mail# doveconf -n # 2.0.13: /usr/pkg/etc/dovecot/dovecot.conf # OS: NetBSD 5.1 amd64 ffs auth_debug = yes auth_verbose = yes base_dir = /var/run/dovecot/ mail_debug = yes mail_gid = 6 mail_location = maildir:/var/mail/user/%u/Maildir mail_plugins = acl managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { inbox = yes location = prefix = separator = . type = private } namespace { list = children location = maildir:/var/mail/public:INDEX=%u/public prefix = public. separator = . subscriptions = no type = public } passdb { args = /usr/pkg/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { acl = vfile sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 lmtp sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-userdb { group = dovecot user = dovecot } } service managesieve-login { inet_listener sieve { port = 4190 } inet_listener sieve_deprecated { port = 2000 } } ssl_ca = Hello everybody, I have some basic questions: 1. how can I configure the auto-empty trash plugin for all users after 3 or 4 days (This is very important, regular users do not clean their trash, or are using blackberry and do not have an option to do it or simply, do not care about it) 2. difference between version 1.2.17 and latest 2 version of Dovecot, have the version 2 an automatic option for the trash thing? 3. me as a basic skilled user, how can I made the upgrade to version 2 without major risks, I mean I do not want to leave everybody on my server without mail. I am a novice in all of this stuff, so please excuse me if I am making dumb questions. Thanks in advance for your help. Information about my installation. # 1.2.17: /etc/dovecot.conf # OS: Linux 2.6.18-164.11.1.el5 x86_64 CentOS release 5.6 (Final) protocols: imap imaps pop3 pop3s plugin: quota: maildir quota_rule: Trash:ignore Kind Regards, Jos? Antonio Su?rez Pinz?n Auge CS (+57 1) 812 7629 (+57) 300 618 0017 From tss at iki.fi Tue Jun 14 15:54:32 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 14 Jun 2011 15:54:32 +0300 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <20110614045603.GA23005@albatross.gern.madduck.net> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> <20110613131109.GA8033@albatross.gern.madduck.net> <1307975004.10421.868.camel@hurina> <20110614045603.GA23005@albatross.gern.madduck.net> Message-ID: <1308056072.10421.878.camel@hurina> On Tue, 2011-06-14 at 06:56 +0200, martin f krafft wrote: > also sprach Timo Sirainen [2011.06.13.1623 +0200]: > > It could, and Dovecot does that for several commands. But I'm a bit > > afraid of adding such code for APPEND, because it could easily break > > some clients. I know an old version of Evolution broke if it got any > > extra data during APPEND. > > Couldn't the client signal to the server that it wants/expects such > data, and only then does dovecot send such pings? Good luck getting any client to implement something like that. From madduck at madduck.net Tue Jun 14 15:59:36 2011 From: madduck at madduck.net (martin f krafft) Date: Tue, 14 Jun 2011 14:59:36 +0200 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <1308056072.10421.878.camel@hurina> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> <20110613131109.GA8033@albatross.gern.madduck.net> <1307975004.10421.868.camel@hurina> <20110614045603.GA23005@albatross.gern.madduck.net> <1308056072.10421.878.camel@hurina> Message-ID: <20110614125936.GA10366@albatross.gern.madduck.net> also sprach Timo Sirainen [2011.06.14.1454 +0200]: > > Couldn't the client signal to the server that it wants/expects > > such data, and only then does dovecot send such pings? > > Good luck getting any client to implement something like that. FYI: http://bugs.debian.org/630444 -- martin | http://madduck.net/ | http://two.sentenc.es/ no cat has eight tails. a cat has one tail more than no cat. therefore, a cat has nine tails. spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1124 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From claudio.prono at atpss.net Tue Jun 14 16:37:00 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Tue, 14 Jun 2011 15:37:00 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4DF7169D.1080602@atpss.net> References: <4DF7169D.1080602@atpss.net> Message-ID: <4DF763FC.1060901@atpss.net> Il 14/06/2011 10.06, Claudio Prono ha scritto: > Hello all, > > I am testing Dovecot 2.0.13, with sieve for the vacation. > > I have some problems with the :regex as i can see... > > An example: > > # Sieve Filter > # Generato da Ingo (http://www.horde.org/ingo/) (10/06/2011, 04:45:07) > > require ["vacation", "regex"]; > > # Vacanze > if allof ( not exists ["list-help", "list-unsubscribe", > "list-subscribe", "list-owner", "list-post", "list-archive", "list-id", > "Mailing-List"], not header :comparator "i;ascii-casemap" :is > "Precedence" ["list", "bulk", "junk"], not header :comparator > "i;ascii-casemap" :matches "To" "Multiple recipients of*" ) { > if header :regex "Received" "^.*(2011) (\\(.*\\) )?..:..:.. (\\(.*\\) > )?(\\+|\\-)....( \\(.*\\))?$" { > if header :regex "Received" "^.*(Jun) (\\(.*\\) )?.... (\\(.*\\) > )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { > if header :regex "Received" "^.*(10) (\\(.*\\) )?... (\\(.*\\) )?.... > (\\(.*\\) )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { > vacation :days 7 :addresses "claudio at mediaservice.net" :subject > "Test autoresponder" "test autoresponder 22"; > } > } > } > > } > > If i test this script with sieve-test, the result is the following: > > sieve-test .dovecot.sieve > new/1307715082.M173915P16839.mail2\,S\=1138\,W\=1168 > sieve-test(root): Debug: Effective uid=0, gid=0, home=/root > sieve-test(root): Debug: Namespace : type=private, prefix=INBOX., sep=, > inbox=yes, hidden=no, list=yes, subscriptions=yes > location=maildir:/var/mail/virtual//root > sieve-test(root): Debug: maildir++: root=/var/mail/virtual//root, > index=, control=, inbox=/var/mail/virtual//root > sieve-test(root): Debug: none: root=, index=, control=, inbox= > > Performed actions: > > (none) > > Implicit keep: > > * store message in folder: INBOX > > sieve-test(root): Info: final result: success > > No vacation is performed..... > > Then, if i modify the script commenting all the regex for the date, the > result is the following: > > sieve-test .dovecot.sieve > new/1307715082.M173915P16839.mail2\,S\=1138\,W\=1168 > sieve-test(root): Debug: Effective uid=0, gid=0, home=/root > sieve-test(root): Debug: Namespace : type=private, prefix=INBOX., sep=, > inbox=yes, hidden=no, list=yes, subscriptions=yes > location=maildir:/var/mail/virtual//root > sieve-test(root): Debug: maildir++: root=/var/mail/virtual//root, > index=, control=, inbox=/var/mail/virtual//root > sieve-test(root): Debug: none: root=, index=, control=, inbox= > > Performed actions: > > * send vacation message: > => seconds : 604800 > => subject: Test autoresponder > => handle : test autoresponder 22Test > autoresponder > > START MESSAGE > test autoresponder 22 > END MESSAGE > > Implicit keep: > > * store message in folder: INBOX > > sieve-test(root): Info: final result: success > > But the date is right: > > date > Fri Jun 10 17:22:14 CEST 2011 > > So, what is wrong? Any help is well accepted, that script with dovecot > 1.x is working correctly.... So, what is changed in dovecot 2.0 sieve? > > Cordially, > > Claudio Prono. > Ping, anyone for this problem? -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From asicofante at gmail.com Tue Jun 14 17:27:40 2011 From: asicofante at gmail.com (Aleve Sicofante) Date: Tue, 14 Jun 2011 16:27:40 +0200 Subject: [Dovecot] Gmail like virtual mailboxes In-Reply-To: <1307971694.10421.838.camel@hurina> References: <1307971694.10421.838.camel@hurina> Message-ID: Thank you so much for the reply Timo. 2011/6/13 Timo Sirainen : >> First of all: can it be done? > > Not easily. You could create one virtual Dovecot folder for each IMAP > keyword, How do I do that? Can you point me to some part of the wiki that explains it? > but the client side would be problematic. You'd need to have > some way of setting the keywords, and just about no clients support > that. I guess another way of setting keywords could be by using the > regular "copy message" feature of clients, where instead of actually > copying it would just set a keyword. I'm probably designing a client myself (or hiring someone to do it). I'm in the "we'll cross that bridge when we get there" phase. (I agree there are no clients handling IMAP keywords properly, but before I design and implement one, I'm researching IMAP servers that can provide the feature.) > Another problem is that keywords are a very restricted subset of ASCII. > There have been talk in imap-protocol mailing list about expanding this > a few weeks ago. > That's interesting. Can you point me to the discussion? How do you feel about the way Courier implements IMAP keywords? They seem to allow for an unlimited number of arbitrary keywords. -- Aleve Sicofante From aperezaranda at yaco.es Tue Jun 14 18:38:28 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Tue, 14 Jun 2011 17:38:28 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: Maybe this could be a "feature request" for dovecot 2.0.14 - 2.0.15 or 2.1 ? 2011/6/9 Antonio Perez-Aranda : > This patch fix a bug and remove some debug info from patch sent before. > > 2011/6/9 Antonio Perez-Aranda : >> This patch is running but it only run with mail_plugins. >> >> This is because I can't select the "mail_plugins" value from any >> function to get this throw the name key. >> >> Maybe this need more hard development to do this as generic "property" >> for any config value. >> >> 2011/6/9 Antonio Perez-Aranda : >>> Well, this "extrange" vaues is NULL. >>> >>> Maybe, the set_parser is a new environment to set settings but then >>> ?when is make the config merge? >>> >>> 2011/6/9 Antonio Perez-Aranda : >>>> This line: >>>> >>>> value = settings_parse_get_value(set_parser, key, &type); >>>> >>>> Is returning a empty value. Maybe, set_parser has been cleared? >>>> >>>> If I try to get another keys from my config that I can watch with >>>> doveadm I get "extrange" values like this with i_debug() >>>> >>>> ?* mail_debug -> #001 >>>> ?* mail_location -> #010 >>>> ?* auth_realms -> #020#002 >>>> >>>> >>>> 2011/6/8 Antonio Perez-Aranda : >>>>> It must run on dovecot 2.0.13? >>>>> >>>>> We are upgrading to 2.0.13 and with this I get the follow message: >>>>> >>>>> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >>>>> +mail_plugins=fts fts_solr?G >>>>> >>>>> >>>>> 2011/6/7 Timo Sirainen : >>>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>>>>>> Greats, I'm working on patch from this morning, but it's very hard to >>>>>>> debug on settings-parser >>>>>> >>>>>> I don't think you should need to touch that code. It's a bit difficult >>>>>> for me also to follow.. >>>>>> >>>>>>> How can I enable i_debug on settings-parser.c ? >>>>>> >>>>>> What do you mean? You could add i_debug() calls and it should work just >>>>>> the same as everywhere. >>>>>> >>>>>> Did you try the patch in my previous mail? I think that should be >>>>>> enough. You could then use: >>>>>> >>>>>> user_attrs = .., mailPlugins=+mail_plugins >>>>>> >>>>>> >>>>>> >>>>> >>>>> >>>>> >>>>> -- >>>>> Antonio P?rez-Aranda Alcaide >>>>> aperezaranda at yaco.es >>>>> >>>>> Yaco Sistemas S.L. >>>>> http://www.yaco.es/ >>>>> C/ Rioja 5, 41001 Sevilla >>>>> Tel?fono +34 954 50 00 57 >>>>> Fax ? ? ?+34 954 50 09 29 >>>>> >>>> >>>> >>>> >>>> -- >>>> Antonio P?rez-Aranda Alcaide >>>> aperezaranda at yaco.es >>>> >>>> Yaco Sistemas S.L. >>>> http://www.yaco.es/ >>>> C/ Rioja 5, 41001 Sevilla >>>> Tel?fono +34 954 50 00 57 >>>> Fax ? ? ?+34 954 50 09 29 >>>> >>> >>> >>> >>> -- >>> Antonio P?rez-Aranda Alcaide >>> aperezaranda at yaco.es >>> >>> Yaco Sistemas S.L. >>> http://www.yaco.es/ >>> C/ Rioja 5, 41001 Sevilla >>> Tel?fono +34 954 50 00 57 >>> Fax ? ? ?+34 954 50 09 29 >>> >> >> >> >> -- >> Antonio P?rez-Aranda Alcaide >> aperezaranda at yaco.es >> >> Yaco Sistemas S.L. >> http://www.yaco.es/ >> C/ Rioja 5, 41001 Sevilla >> Tel?fono +34 954 50 00 57 >> Fax ? ? ?+34 954 50 09 29 >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From dmiller at amfes.com Tue Jun 14 21:10:43 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Tue, 14 Jun 2011 11:10:43 -0700 Subject: [Dovecot] ACL's from userdb In-Reply-To: <4DF71979.8080006@es2eng.com> References: <4DF6777F.9010107@amfes.com> <4DF71979.8080006@es2eng.com> Message-ID: On 6/14/2011 1:19 AM, Willie Gillespie wrote: > On 6/13/2011 2:47 PM, Daniel L. Miller wrote: >> Using LDAP userdb/passdb. Is it possible to define a default set of >> ACL's at the userdb level, to provide access to shared mailboxes? How? > > You could maybe use acl_groups > > In Dovecot LDAP config: > user_attrs = some_ldap_attr=acl_groups > > Then give the groups the permissions you want the users to have. > I read that, and the wiki section mentioned groups - I still don't grasp it 100% yet. Are "acl_groups" a list of UNIX groups? Or are they defined somewhere else within Dovecot? -- Daniel From robert at schetterer.org Tue Jun 14 22:24:13 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 14 Jun 2011 21:24:13 +0200 Subject: [Dovecot] returned error 89 Message-ID: <4DF7B55D.6010303@schetterer.org> Hi Timo, i have very rare ( ultra rare....) failures like this with latest dovecot 2 log: Error: service(pop3-postlogin): child 16691 returned error 89 (Fatal failure) imap-postlogin: Error: script-login: Fatal: Internal error occurred. Refer to server log for more information. Jun 14 18:41:16 mail02 dovecot: log: Error: service(imap-postlogin): child 31645 returned error 89 (Fatal failure) any idea? the conf i allready posted with also rare lmtp error uid=error today first an only one seen Error: read(/var/run/dovecot/dict) failed: Timeout after 30 seconds lmtp(31698, ... at ...): Error: Internal quota calculation error -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From egbert at vandenbussche.nl Tue Jun 14 22:34:52 2011 From: egbert at vandenbussche.nl (Egbert Jan van den Bussche) Date: Tue, 14 Jun 2011 21:34:52 +0200 Subject: [Dovecot] high number of processes Message-ID: <4DF7B7DC.7060608@vandenbussche.nl> Hi, Sometimes a script kiddie tries to guess passwords on our mailserver (Ubuntu 10.04.2 LTS, postfix, dovecot 1.2.9, scanners, the standard stuff). That leads to a nagios message about the high number of processes. The number goes above 500. Nagios threshold is set to 250, which is more than enough for normal operation of this server. When are these processes supposed to die again? They seem to stay at the high count quite long. Is there a way to limit the generation of extra login processes? Can I tune the login_process... params a bit? I have then all on default. dovecot - n below: root at mail-dev:/etc/dovecot# dovecot -n # 1.2.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-32-server x86_64 Ubuntu 10.04.2 LTS log_path: /var/log/dovecot/error.log info_log_path: /var/log/dovecot/info.log log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s listen: *, [::] ssl_cert_file: /disk/site/etc/ssl/hobby.nl/hobby.nl.crt ssl_key_file: /disk/site/etc/ssl/hobby.nl/hobby.nl.key ssl_cipher_list: ALL:!LOW:!SSLv2:ALL:!aNULL:!ADH:!eNULL:!EXP:RC4+RSA:+HIGH:+MEDIUM disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login first_valid_uid: 200 mail_privileged_group: vmail mail_location: maildir:~/Maildir mmap_disable: yes dotlock_use_excl: no mail_nfs_storage: yes mail_nfs_index: yes mbox_write_locks: fcntl dotlock mail_executable(default): /usr/lib/dovecot/imap-wrapper.sh mail_executable(imap): /usr/lib/dovecot/imap-wrapper.sh mail_executable(pop3): /usr/lib/dovecot/pop3-wrapper.sh mail_plugins: convert autocreate mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 imap_client_workarounds(default): outlook-idle delay-newmail imap_client_workarounds(imap): outlook-idle delay-newmail imap_client_workarounds(pop3): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh lda: postmaster_address: postmaster deliver_log_format: msgid=%m: %$ rejection_subject: Rejected: %s rejection_reason: Your message to <%t> was automatically rejected:%n%r auth_socket_path: /var/run/dovecot/auth-master auth default: mechanisms: plain login realms: kader.hcc.nl hobby.nl default_realm: kader.hcc.nl cache_size: 1024 cache_ttl: 10 passdb: driver: pam args: failure_show_msg=yes cache_key=%u dovecot passdb: driver: sql args: /etc/dovecot/dovecot-sql.conf userdb: driver: sql args: /etc/dovecot/dovecot-sql.conf socket: type: listen client: path: /var/spool/postfix/private/dovecot-auth mode: 432 user: postfix group: postfix master: path: /var/run/dovecot/auth-master mode: 384 user: vmail group: vmail plugin: convert_mail: mbox:/disk/mail/convert/%n autocreate: Trash autocreate2: Sent autocreate3: Drafts autocreate4: Spam autosubscribe: Trash autosubscribe2: Sent autosubscribe3: Drafts autosubscribe4: Spam login_process defaults: #login_user = dovecot #login_process_size = 64 #login_process_per_connection = yes #login_processes_count = 3 #login_max_processes_count = 128 #login_max_connections = 256 lsof -n output (part of long list): dovecot-a 12941 root 17u unix 0xffff88012a457300 0t0 13606994 /var/run/dovecot/login/default dovecot-a 12941 root 18u unix 0xffff8800272bd800 0t0 13565904 /var/run/dovecot/login/default dovecot-a 12941 root 19u unix 0xffff8800a68a9800 0t0 13610586 /var/run/dovecot/login/default TNX for any advise! Egbert Jan HCC!Hobbynet, NL From robert at schetterer.org Tue Jun 14 22:36:26 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 14 Jun 2011 21:36:26 +0200 Subject: [Dovecot] returned error 89 In-Reply-To: <4DF7B55D.6010303@schetterer.org> References: <4DF7B55D.6010303@schetterer.org> Message-ID: <4DF7B83A.6090401@schetterer.org> Am 14.06.2011 21:24, schrieb Robert Schetterer: > Hi Timo, i have very rare ( ultra rare....) > failures like this > with latest dovecot 2 > > log: Error: service(pop3-postlogin): child 16691 returned error 89 > (Fatal failure) > > imap-postlogin: Error: script-login: Fatal: Internal error occurred. > Refer to server log for more information. > Jun 14 18:41:16 mail02 dovecot: log: Error: service(imap-postlogin): > child 31645 returned error 89 (Fatal failure) > > any idea? > > the conf i allready posted > with also rare lmtp error > uid=error > > today first an only one seen > > Error: read(/var/run/dovecot/dict) failed: Timeout after 30 seconds > lmtp(31698, ... at ...): Error: Internal quota calculation error > speculation , error 89 seems only happen during a rsync full system backup job does this make sense ? perhaps i should use more excludes i.e for /var/run/dovecot/* ... -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From dmiller at amfes.com Tue Jun 14 23:18:49 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Tue, 14 Jun 2011 13:18:49 -0700 Subject: [Dovecot] ACL Groups Message-ID: From the wiki: ACL groups support works by returning a comma-separated acl_groups extra field from userdb, which contains all the groups the user belongs to. User's UNIX groups have no effect on ACLs (you can "enable" them by using a special post-login script ). I've read that over several times - I still don't understand that. Are "ACL Groups" defined and managed by Dovecot - and described somewhere else in the docs - or are they UNIX groups that previously had no affect on mail access but by being listed in the "acl_groups" field they now have relevance? -- Daniel From stephan at rename-it.nl Wed Jun 15 00:01:16 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 14 Jun 2011 23:01:16 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4DF7169D.1080602@atpss.net> References: <4DF7169D.1080602@atpss.net> Message-ID: <4DF7CC1C.60807@rename-it.nl> Op 14-6-2011 10:06, Claudio Prono schreef: > Hello all, > > I am testing Dovecot 2.0.13, with sieve for the vacation. > > I have some problems with the :regex as i can see... > > An example: I didn't know Horde Ingo produces such horribly ugly Sieve code; the header checks are unnecessary and the regexes are highly convolved and should probably be substituted with a `date' test. > No vacation is performed..... > > Then, if i modify the script commenting all the regex for the date, the > result is the following: > But the date is right: > > date > Fri Jun 10 17:22:14 CEST 2011 > > So, what is wrong? Any help is well accepted, that script with dovecot > 1.x is working correctly.... So, what is changed in dovecot 2.0 sieve? I'm currently on vacation and I can't quite get my head around these regexes. The best thing you can do now is debug it in more detail by using the sieve-test trace debugging features (using -t and -T options), as documented in the man page. This way, you can see what is matched how and which actions are performed. Then, you can narrow it down to one specific failing test. Regards, Stephan. From peter at ifm.liu.se Wed Jun 15 15:40:51 2011 From: peter at ifm.liu.se (Peter Eriksson) Date: Wed, 15 Jun 2011 14:40:51 +0200 Subject: [Dovecot] Waiting for authentication process to respond.. Message-ID: <4DF8A853.8050905@ifm.liu.se> Hmm... I'm seeing a lot of: > * OK Waiting for authentication process to respond.. > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=GSSAPI AUTH=GSS-SPNEGO] Welcome to the IFM Dovecot Mail Server. when IMAP clients connect to our server (ie that "Waiting for.." message before the login OK message). Now, most clients seems to handle this extra information message just fine, but it still is annoying me. It doesn't appear all the time, but pretty often... What can I adjust/fix in order to make it go away? System: Sun Fire X4240, 32GB RAM, 2 Quad-Core Opteron 2356 Solaris 10 Update 9 Dovecot 2.0.13 Maildir on local (ZFS) storage Normally about 200-300 unique users connected, around 400-600 mail processes. -- Peter Eriksson Phone: +46-705-18 27 86 Computer Systems Manager, IFM, Link?ping University, Sweden From linuxmail at 4lin.net Wed Jun 15 15:50:10 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Wed, 15 Jun 2011 14:50:10 +0200 Subject: [Dovecot] doveadm who: Please Headline to STDout, not to STDERR Message-ID: <1308142210.22320.222.camel@pcdenny> hi, I've created a small script to get a sum from the users and sessions (table username and table "#"), but it is annoying that the headline "username # proto (pids) (ips)" goes to STDERR, but the normal output to STDOUT. It would be nice, if both goes to the same STD :-) cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part URL: From tss at iki.fi Wed Jun 15 16:25:11 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 15 Jun 2011 16:25:11 +0300 Subject: [Dovecot] doveadm who: Please Headline to STDout, not to STDERR In-Reply-To: <1308142210.22320.222.camel@pcdenny> References: <1308142210.22320.222.camel@pcdenny> Message-ID: <91ACF5A8-BCEB-4FD0-863B-CEE4911585E1@iki.fi> On 15.6.2011, at 15.50, Denny Schierz wrote: > I've created a small script to get a sum from the users and sessions > (table username and table "#"), but it is annoying that the headline > "username # proto (pids) (ips)" goes to STDERR, but the normal output > to STDOUT. > > It would be nice, if both goes to the same STD :-) That prevents sorting the output. You can always 2>&1 From harenberg at physik.uni-wuppertal.de Wed Jun 15 16:27:48 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Wed, 15 Jun 2011 15:27:48 +0200 Subject: [Dovecot] Per-user "Seen" flags on public folder In-Reply-To: <27661D40-A8C1-4661-B713-5E01327E415A@physik.uni-wuppertal.de> References: <27661D40-A8C1-4661-B713-5E01327E415A@physik.uni-wuppertal.de> Message-ID: <5D8CC3DE-1EC2-4B72-A20A-3A15063E0972@physik.uni-wuppertal.de> Sorry for the noise.. forgot to set the correct right in the dovecot-acl file.. :( Regards, Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> From apm at one.com Wed Jun 15 16:42:29 2011 From: apm at one.com (Peter Mogensen) Date: Wed, 15 Jun 2011 15:42:29 +0200 Subject: [Dovecot] URLAUTH-patch, BSD specific? Message-ID: <4DF8B6C5.6090603@one.com> Hi, I notice that the Apple patched branch of Dovecot 2.0 with URLAUTH fails to compile on Linux. The file src/plugins/urlauth/urlauth-keys.c uses open(2) with O_EXLOCK, which to my knowledge is BSD specific. Is that a known problem? /Peter From Juergen.Obermann at hrz.uni-giessen.de Wed Jun 15 17:15:23 2011 From: Juergen.Obermann at hrz.uni-giessen.de (=?iso-8859-1?b?SvxyZ2Vu?= Obermann) Date: Wed, 15 Jun 2011 16:15:23 +0200 Subject: [Dovecot] ZFS Filesystem Quota under Solaris 10 and Sparc Message-ID: <20110615161523.12111rd8ey2mv2v4@webmail.hrz.uni-giessen.de> Hallo. Filesystem quotas used to work well under Solaris 9 and ufs filesystems on the Sparc platform even with two rules for the folders in the users home directories /home/group/user and the separate filesystem /var/mail holding the inboxes: plugin { quota = fs:Home-Verzeichnis:noenforcing quota2 = fs:INBOX:noenforcing:mount=/var/mail } Since we upgraded last year to Solaris 10 with zfs filesystems on our Sparc server still using a similar setup with separate filesystems for home directories and inboxes we have no working quota plugin anymore. Currently we use dovecot 2.0.13. Are there any plans or whishes to get the filesystem quota code working again under zfs and Solaris? Best whishes, J?rgen -- Hochschulrechenzentrum der | Mail: Juergen.Obermann at hrz.uni-giessen.de Justus-Liebig-Universitaet | WWW: http://www.uni-giessen.de/obermann/ Heinrich-Buff-Ring 44 | Tel: 0641-99-13054 (0641-99-13001) D-35392 Giessen, Germany | Fax: 0641-99-13009 From michael.abbott at apple.com Wed Jun 15 18:18:22 2011 From: michael.abbott at apple.com (Mike Abbott) Date: Wed, 15 Jun 2011 10:18:22 -0500 Subject: [Dovecot] URLAUTH-patch, BSD specific? In-Reply-To: <4DF8B6C5.6090603@one.com> References: <4DF8B6C5.6090603@one.com> Message-ID: > The file src/plugins/urlauth/urlauth-keys.c uses open(2) with O_EXLOCK, which to my knowledge is BSD specific. Thanks for catching that. I guess that code should change to open the file first and then lock it. From pch0317 at gmail.com Wed Jun 15 22:05:43 2011 From: pch0317 at gmail.com (pch0317) Date: Wed, 15 Jun 2011 20:05:43 +0100 Subject: [Dovecot] diacritic marks in password Message-ID: <4DF90287.90503@gmail.com> Hi, I have dovecot 2.0.beta6 (on RedHat 6) and my user uses thunderbird 3.1.10 (on Windows XP). I use authentication via LDAP (Windows server 2003 AD). When user use in password diacritic marks (?,?,?,?,?,?) authentication failed. What can I do? Thanks From CMarcus at Media-Brokers.com Wed Jun 15 22:11:13 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 15 Jun 2011 15:11:13 -0400 Subject: [Dovecot] diacritic marks in password In-Reply-To: <4DF90287.90503@gmail.com> References: <4DF90287.90503@gmail.com> Message-ID: <4DF903D1.6010302@Media-Brokers.com> On 2011-06-15 3:05 PM, pch0317 wrote: > > I have dovecot 2.0.beta6 > What can I do? Upgrade (2.0b6 is WAY too old to even think about trying to debug), then if you're still having problems come back again and provide your config details and maybe some logs of a failed auth attempt... -- Best regards, Charles From lists at wildgooses.com Thu Jun 16 00:34:44 2011 From: lists at wildgooses.com (Ed W) Date: Wed, 15 Jun 2011 22:34:44 +0100 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF70CF0.1060106@noa.gr> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> <4DF70CF0.1060106@noa.gr> Message-ID: <4DF92574.4090302@wildgooses.com> On 14/06/2011 08:25, Nikolaos Milas wrote: > I would like to add that, although fail2ban is great and we are using it > for a long time, it doesn't support IPv6; now that our servers (we are > using CentOS 5.6 x86_64) and networks are IPv6 enabled, this is a > problem (but hopefully IPv6-based attacks should not be very common > yet). We have not implemented a solution for protecting pop3/imap over > IPv6 yet, but I have recently found this article: > http://www.roedie.nl/tag/fail2ban/ which suggests autofwd: > http://freshmeat.net/projects/autofwd which might provide a good > solution. It seems versatile and supports IPv6. > > If anybody has done or can do an implementation on Linux (using iptables > AND ip6tables) for pop3/imap, pop3s/imaps and share it, it will be most > welcome and very useful. I don't see why fail2ban would have anything to do with ipv6 since it simply runs a script when something needs doing? Just adapt your script? Not having tried it, but possibly the regexps need tweaking also? On a related note, recent kernels (and old kernels can build a module) implement "ipset". This is a way to implement a named hash of IPs/Ports/MACs, etc. The point is to use a single iptables rule to do something with your ipset, then you have the ability to dynamically alter the ipset as you will without needing to reload iptables rules (I believe that iptables is still unable to be altered dynamically? Each time you *think* you are inserting a rule, actually you are dropping the entire ruleset, then reinserting the entire new ruleset with one extra rule. This creates a window of opportunity each time you innocently insert a new rule. Further it explains the O(n^2) speed of running "iptables -A" or similar) For these reasons ipset seems like a great addition! Ed W From peter at bellfamily.org.uk Thu Jun 16 06:50:29 2011 From: peter at bellfamily.org.uk (Peter Bell) Date: Thu, 16 Jun 2011 11:50:29 +0800 Subject: [Dovecot] Removal of mailist duplicates? Message-ID: <4DF97D85.2020207@bellfamily.org.uk> I am using mpop to fetch mail from my service provider (who use dovecot). I use dovecot to hold all my mail on a local slackware server, with sieve filters, based on 'List-Id', directing mailist postings to their own folders. I use thunderbird to read my mail on an ubuntu desktop. When I receive a reply to a posting I make to a mailist (such as this one), replies I receive are usually sent to me with cc to the list. I would expect, then, to receive the message twice - once in my personal mailbox, and once to the mailist folder. However, this doesn't happen - I only see the posting in the mailist folder. Can anyone tell me at which stage in the process the other message is being supressed? -- ------------------------------------------------------------------- Peter Bell Mob: +63 (0) 9287 340 343 Tagum City, Philippines. Tel: +63 (0) 84 400 5085 email/msn: peter at bellfamily.org.uk Tel: +44 (0) 118 331 0000 From richard.gliebe at fhv.at Thu Jun 16 08:14:56 2011 From: richard.gliebe at fhv.at (Richard Gliebe) Date: Thu, 16 Jun 2011 07:14:56 +0200 Subject: [Dovecot] dovecot-managesieve In-Reply-To: <1307970710.10421.826.camel@hurina> References: <4DF20B07.5000209@fhv.at> <1307970710.10421.826.camel@hurina> Message-ID: <4DF99150.4020406@fhv.at> On 6/13/11 3:11 PM Timo Sirainen wrote: Hi, > Looks to me like the managesieve version isn't compatible with this > Dovecot version. I guess the earlier managesieve binaries didn't give a > better error message about mismatching versions. Which managesieve version is compatible with my dovecot version and where are the Repos? At the moment these packages are installed (with "yum install") on our CentOS release 5.6 (Final) box: dovecot-1.1.20-1_98.el5 dovecot-sieve-devel-0.1.18-7.el5 dovecot-managesieve-0.11.12-0_5.1.el5 dovecot-sieve-cmu-1.1.8-11.el5 dovecot-sieve-0.1.18-7.el5 [/etc/yum.conf] # PUT YOUR REPOS HERE OR IN separate files named file.repo # in /etc/yum.repos.d # [vanderkooij] name=Vanderkooij.org baseurl=http://yum.vanderkooij.org/el5/$basearch/ enable=1 gpgkey=http://yum.vanderkooij.org/RPM-GPG-KEY-HvdK.asc gpgcheck=1 # [atrpms] name=Fedora Core $releasever - $basearch - ATrpms baseurl=http://dl.atrpms.net/el$releasever-$basearch/atrpms/stable gpgkey=http://ATrpms.net/RPM-GPG-KEY.atrpms gpgcheck=1 many thanks Richard From wgillespie+dovecot at es2eng.com Thu Jun 16 08:42:08 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Wed, 15 Jun 2011 23:42:08 -0600 Subject: [Dovecot] ACL Groups In-Reply-To: References: Message-ID: <4DF997B0.6040908@es2eng.com> On 6/14/2011 2:18 PM, Daniel L. Miller wrote: > From the wiki: > > ACL groups support works by returning a comma-separated acl_groups extra > field from userdb, > which contains all the groups the user belongs to. User's UNIX groups > have no effect on ACLs (you can "enable" them by using a special > post-login script ). > > > I've read that over several times - I still don't understand that. Are > "ACL Groups" defined and managed by Dovecot - and described somewhere > else in the docs - or are they UNIX groups that previously had no affect > on mail access but by being listed in the "acl_groups" field they now > have relevance? That is a bit confusing. What it is trying to say: For one, you have acl_groups. For two, you have UNIX groups. They are not related at all. If you want them to be related, you can use a special post-login script. From komodo at uvt.cz Thu Jun 16 12:03:32 2011 From: komodo at uvt.cz (komodo) Date: Thu, 16 Jun 2011 11:03:32 +0200 Subject: [Dovecot] Multiple values found for 'user', using value Message-ID: <201106161103.32370.komodo@uvt.cz> Hi since latest upgrade on my machine, i have lot of warnings in my log, and i found that it is due this change http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html Is there any option to disable these warnings ? Yes we have multiple UIDs so these warnings bothers me. Many thanks Regards Martin From nmilas at noa.gr Thu Jun 16 13:12:15 2011 From: nmilas at noa.gr (Nikolaos Milas) Date: Thu, 16 Jun 2011 13:12:15 +0300 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF92574.4090302@wildgooses.com> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> <4DF70CF0.1060106@noa.gr> <4DF92574.4090302@wildgooses.com> Message-ID: <4DF9D6FF.7090701@noa.gr> On 16/6/2011 12:34 ??, Ed W wrote: > I don't see why fail2ban would have anything to do with ipv6 since it > simply runs a script when something needs doing? Just adapt your script? > Not having tried it, but possibly the regexps need tweaking also? Thanks Ed. You could be right. It could work, *if* fail2ban engine does not do any particular internal processing with IP addresses in order to implement the rules logic (which I doubt; for example, when it adds iptables rules, it refers to ip address as - see below). In the official fail2ban site: http://www.fail2ban.org/wiki/index.php/Fail2ban:Community_Portal#IPv6, we don't see any solution related to IPv6. If it's feasible, I wonder why we can't find anything about that in the Internet or in fail2ban site. No one has done it yet? On the contrary, we can find ample "complaints" that fail2ban won't work with IPv6. Nowhere can we find ipv6 "filters" and "actions" for fail2ban. If someone (has time and) is sufficiently competent with iptables/ip6tables, then he could try to prepare such actions (and create filters with regex expressions to catch ipv6 events from logs too) and then give it a try. For example, one could then add in jail.conf (after creating dovecot-pop3imap-ipv6.conf and ip6tables-multiport.conf): [dovecot-pop3imap-ipv6] enabled = true filter = dovecot-pop3imap-ipv6 action = ip6tables-multiport[name=dovecot-pop3imap, port="pop3,pop3s,imap,imaps", protocol=tcp] logpath = /var/log/dovecot.log maxretry = 10 findtime = 600 bantime = 1800 My guess is that fail2ban engine must be extended to "understand" ipv6 addresses and handle ip6tables appropriately. > On a related note, recent kernels (and old kernels can build a module) > implement "ipset". This is a way to implement a named hash of > IPs/Ports/MACs, etc. The point is to use a single iptables rule to do > something with your ipset, then you have the ability to dynamically > alter the ipset as you will without needing to reload iptables rules It sounds interesting. I'll take a look on it, when I have time. Still, one would have to update fail2ban (and/or other software) to use ipset instead of standard iptables (which will take at least some effort). > (I believe that iptables is still unable to be altered dynamically? Each > time you *think* you are inserting a rule, actually you are dropping the > entire ruleset, then reinserting the entire new ruleset with one extra > rule. This creates a window of opportunity each time you innocently > insert a new rule. Further it explains the O(n^2) speed of running > "iptables -A" or similar) Actually, iptables can be altered dynamically; For example, the iptables-multiport action does: actionban = iptables -I fail2ban- 1 -s -j DROP actionunban = iptables -D fail2ban- -s -j DROP "iptables -A" runs only when fail2ban starts. Nick -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6762 bytes Desc: S/MIME Cryptographic Signature URL: From tom at whyscream.net Thu Jun 16 13:24:41 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Thu, 16 Jun 2011 12:24:41 +0200 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF9D6FF.7090701@noa.gr> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> <4DF70CF0.1060106@noa.gr> <4DF92574.4090302@wildgooses.com> <4DF9D6FF.7090701@noa.gr> Message-ID: <4DF9D9E9.5030400@whyscream.net> On 16/06/11 12:12, Nikolaos Milas wrote: > On 16/6/2011 12:34 ??, Ed W wrote: > >> I don't see why fail2ban would have anything to do with ipv6 since it >> simply runs a script when something needs doing? Just adapt your script? >> Not having tried it, but possibly the regexps need tweaking also? > > Thanks Ed. You could be right. It could work, *if* fail2ban engine does > not do any particular internal processing with IP addresses in order to > implement the rules logic (which I doubt; for example, when it adds > iptables rules, it refers to ip address as - see below). In the > official fail2ban site: > http://www.fail2ban.org/wiki/index.php/Fail2ban:Community_Portal#IPv6, > we don't see any solution related to IPv6. > > If it's feasible, I wonder why we can't find anything about that in the > Internet or in fail2ban site. No one has done it yet? On the contrary, > we can find ample "complaints" that fail2ban won't work with IPv6. There has been some discussion on the fail2ban mailing list about ipv6 support implementations lately. Please see http://sourceforge.net/mailarchive/forum.php?forum_name=fail2ban-users (thank you SF for the awesome UI). > Nowhere can we find ipv6 "filters" and "actions" for fail2ban. As long as fail2ban has no support for catching ipv6 ip addresses, there is no use for a filter that can handle these. Adaptation of the iptables actions to ip6tables would be trivial, though. > If someone (has time and) is sufficiently competent with > iptables/ip6tables, then he could try to prepare such actions (and > create filters with regex expressions to catch ipv6 events from logs > too) and then give it a try. > Again, most of the pros, cons and implementation issues came along on the mailing list. I suggest that you take your fail2ban issue there, since this is no dovecot issue :) -- Regards, Tom From lists at wildgooses.com Thu Jun 16 14:13:22 2011 From: lists at wildgooses.com (Ed W) Date: Thu, 16 Jun 2011 12:13:22 +0100 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF9D6FF.7090701@noa.gr> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> <4DF70CF0.1060106@noa.gr> <4DF92574.4090302@wildgooses.com> <4DF9D6FF.7090701@noa.gr> Message-ID: <4DF9E552.3050901@wildgooses.com> Hi > If it's feasible, I wonder why we can't find anything about that in the > Internet or in fail2ban site. No one has done it yet? On the contrary, > we can find ample "complaints" that fail2ban won't work with IPv6. Hmm, well on cursory inspection I agree there are some hard coded assumptions. Doesn't look dramatically difficult to fix, but not something I was planning to look at myself. See: /usr/share/fail2ban/server/filter.py for: IP_CRE = re.compile("^(?:\d{1,3}\.){3}\d{1,3}$") Also note the functions in the same file to check for duplicate IPs and similar. >> (I believe that iptables is still unable to be altered dynamically? Each >> time you *think* you are inserting a rule, actually you are dropping the >> entire ruleset, then reinserting the entire new ruleset with one extra >> rule. This creates a window of opportunity each time you innocently >> insert a new rule. Further it explains the O(n^2) speed of running >> "iptables -A" or similar) > > Actually, iptables can be altered dynamically; For example, the > iptables-multiport action does: > actionban = iptables -I fail2ban- 1 -s -j DROP > actionunban = iptables -D fail2ban- -s -j DROP > > "iptables -A" runs only when fail2ban starts. Please re-read my previous email: My understanding is that "iptables -[IA]" works internally by first downloading and then clearing the entire old kernel rule list. Then some time later it inserts a new complete rule list including the new rule. It's not clear that this swap is atomic and hence there is a small window of opportunity when you have zero firewall rules in place... If you find this scary then please do your own research and mitigate as you feel appropriate... ...So back to my suggestion of investigating using ipsets rather than changing any iptables rules... This makes rules properly dynamic and there is no reload involved Kind regards Ed W From ronleach at tesco.net Thu Jun 16 14:38:56 2011 From: ronleach at tesco.net (Ron Leach) Date: Thu, 16 Jun 2011 12:38:56 +0100 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DF97D85.2020207@bellfamily.org.uk> References: <4DF97D85.2020207@bellfamily.org.uk> Message-ID: <4DF9EB50.4050803@tesco.net> Peter Bell wrote: > > When I receive a reply to a posting I make to a mailist (such as this > one), replies I receive are usually sent to me with cc to the list. > > I would expect, then, to receive the message twice - once in my personal > mailbox, and once to the mailist folder. However, this doesn't happen - > I only see the posting in the mailist folder. > > Can anyone tell me at which stage in the process the other message is > being supressed? > I usually reply (all) to lists AND suppress the copy going to the OP. Such as in this case. I would expect you NOT to receive a personal reply. 'I' am suppressing the copy (in this case). I would not be surprised if other people do that. OT: Sometimes, people posting replies only do 'reply', not 'reply all', and so their posting never hits the list and, as a result, others who are following the thread sometimes miss postings. regards, Ron From CMarcus at Media-Brokers.com Thu Jun 16 14:38:09 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 16 Jun 2011 07:38:09 -0400 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DF9EB50.4050803@tesco.net> References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> Message-ID: <4DF9EB21.5010507@Media-Brokers.com> On 2011-06-16 7:38 AM, Ron Leach wrote: > I usually reply (all) to lists AND suppress the copy going to the OP. I used to have to do that, so I sure was glad when Thunderbird implemented the Reply-To-List function... now I just press CTRL-SHIFT-L, and if nothing happens I know the list is one of the brain dead ones that doesn't have proper list headers (like the yahoo lists), and then I fall back to the old CTRL-SHIFT-R (Reply All) and then delete the one to the OP... -- Best regards, Charles From joseba.torre at ehu.es Thu Jun 16 14:56:28 2011 From: joseba.torre at ehu.es (Joseba Torre) Date: Thu, 16 Jun 2011 13:56:28 +0200 Subject: [Dovecot] diacritic marks in password In-Reply-To: <4DF903D1.6010302@Media-Brokers.com> References: <4DF90287.90503@gmail.com> <4DF903D1.6010302@Media-Brokers.com> Message-ID: <201106161356.28091.joseba.torre@ehu.es> On Mi?rcoles 15 Junio 2011 21:11:13 Charles Marcus escribi?: > On 2011-06-15 3:05 PM, pch0317 wrote: > > I have dovecot 2.0.beta6 > > > > > What can I do? > > Upgrade (2.0b6 is WAY too old to even think about trying to debug), then > if you're still having problems come back again and provide your config > details and maybe some logs of a failed auth attempt... It's not even the current version in RH; now it's 2.0.9. -- Joseba Torre. Vicegerencia de TICs, ?rea de Explotaci?n From vegard at svanberg.no Thu Jun 16 17:08:33 2011 From: vegard at svanberg.no (Vegard Svanberg) Date: Thu, 16 Jun 2011 16:08:33 +0200 Subject: [Dovecot] Vacation -- reply to another address than envelope from Message-ID: <20110616140833.GX3399@svanberg.no> Vacation (Sieve) replies to the envelope address. However, I have a customer which receive e-mails from a service which sends e-mails on behalf of a user (submitted through a web form). So an e-mail would be like (envelope from and from-header is webformfromwhatever at foobar.com): From: webformfromwhatever at foobar.com To: mycustomer at hisdomain.com Reply-To: usersrealmailaddress at example.com I need the reply to go to the reply-to address. Can I handle this with Sieve? -- Vegard Svanberg [*Takapa at IRC (EFnet)] From peter at bellfamily.org.uk Thu Jun 16 17:40:56 2011 From: peter at bellfamily.org.uk (Peter Bell) Date: Thu, 16 Jun 2011 22:40:56 +0800 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DF9EB21.5010507@Media-Brokers.com> References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> <4DF9EB21.5010507@Media-Brokers.com> Message-ID: <4DFA15F8.1080700@bellfamily.org.uk> On Thursday, 16 June, 2011 07:38 PM, Charles Marcus wrote: > On 2011-06-16 7:38 AM, Ron Leach wrote: >> I usually reply (all) to lists AND suppress the copy going to the OP. > > I used to have to do that, so I sure was glad when Thunderbird > implemented the Reply-To-List function... now I just press CTRL-SHIFT-L, > and if nothing happens I know the list is one of the brain dead ones > that doesn't have proper list headers (like the yahoo lists), and then I > fall back to the old CTRL-SHIFT-R (Reply All) and then delete the one to > the OP... > Indeed, both respondents to my post have taken care to only reply to list, however, here is an extract from the headers of an old post: > To: Peter Bell > In-Reply-To: <4DCA7AC2.7010801 at bellfamily.org.uk> > References: <4DCA0409.4030702 at bellfamily.org.uk> > <2D2123E9-1CDC-4563-95B8-4575771DEC00 at iki.fi> > <4DCA7AC2.7010801 at bellfamily.org.uk> > Content-Type: text/plain; charset="ISO-8859-15" > Date: Wed, 11 May 2011 15:26:32 +0300 > Message-ID: <1305116792.10421.191.camel at hurina> > Mime-Version: 1.0 > X-Mailer: Evolution 2.32.2 > Content-Transfer-Encoding: 7bit > Cc: Dovecot Mailing List > Subject: Re: [Dovecot] Error messages in log > X-BeenThere: dovecot at dovecot.org > X-Mailman-Version: 2.1.14 > Precedence: list > Reply-To: Dovecot Mailing List > List-Id: Dovecot Mailing List I would have expected to see two copies of this post - preferably one in my normal inbox, the other redirected by pigeonhole, to my dovecot mailist folder. However, I could only find a single copy (in my dovecot folder) so have to believe that something, somewhere, eliminated the duplicate. My curiosity was aroused because I received a reply on another mailist, before I had configured a separate folder and sieve filter for it. In that case, the message which survived was the one sent directly to my inbox - the copy to the mailist disappeared. This makes me think the the duplicate removal must be happening somewhere in pigeonhole/dovecot/thunderbird since none of the stages before those would have any knowledge about the existence of the separate folder. However, I have have searched in the configurations, and failed to find any configuration setting which controls duplicate removal. I'm not unhappy that I only see a single copy, but I would like to know what became of the other one - I feel uneasy when things disappear without explanation! BTW, I used Thunderbird's 'reply list' button when posting this, so the only copy should be the one to the mailist. -- ------------------------------------------------------------------- Peter Bell Mob: +63 (0) 9287 340 343 Tagum City, Philippines. Tel: +63 (0) 84 400 5085 email/msn: peter at bellfamily.org.uk Tel: +44 (0) 118 331 0000 From CMarcus at Media-Brokers.com Thu Jun 16 17:49:04 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 16 Jun 2011 10:49:04 -0400 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DFA15F8.1080700@bellfamily.org.uk> References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> <4DF9EB21.5010507@Media-Brokers.com> <4DFA15F8.1080700@bellfamily.org.uk> Message-ID: <4DFA17E0.5070901@Media-Brokers.com> On 2011-06-16 10:40 AM, Peter Bell wrote: > I would have expected to see two copies of this post - preferably one in > my normal inbox, the other redirected by pigeonhole, to my dovecot > mailist folder. However, I could only find a single copy (in my dovecot > folder) so have to believe that something, somewhere, eliminated the > duplicate. To the best of my knowledge, Dovecot does NOT do message de-duplication like this - I've even seen questions about it since Cyrus apparently has this capability, and seen Timo say dovecot does not do this at this time. So, I'd be looking elsewhere... -- Best regards, Charles From montkemp at yahoo.ca Thu Jun 16 17:53:30 2011 From: montkemp at yahoo.ca (Monte Stevens) Date: Thu, 16 Jun 2011 11:53:30 -0300 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DFA17E0.5070901@Media-Brokers.com> References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> <4DF9EB21.5010507@Media-Brokers.com> <4DFA15F8.1080700@bellfamily.org.uk> <4DFA17E0.5070901@Media-Brokers.com> Message-ID: On Thu, Jun 16, 2011 at 10:49:04AM -0400, Charles Marcus wrote: > On 2011-06-16 10:40 AM, Peter Bell wrote: > > I would have expected to see two copies of this post - preferably one in > > my normal inbox, the other redirected by pigeonhole, to my dovecot > > mailist folder. However, I could only find a single copy (in my dovecot > > folder) so have to believe that something, somewhere, eliminated the > > duplicate. > > To the best of my knowledge, Dovecot does NOT do message de-duplication > like this - I've even seen questions about it since Cyrus apparently has > this capability, and seen Timo say dovecot does not do this at this time. > > So, I'd be looking elsewhere... The list is run by mailman. There is a mailman setting for allowing / blocking duplicates. -- Monte From japi76 at gmail.com Thu Jun 16 18:01:15 2011 From: japi76 at gmail.com (Javier) Date: Thu, 16 Jun 2011 12:01:15 -0300 Subject: [Dovecot] problem with dovecot and sieve Message-ID: Hi We've been using dovecot with great success so far. We are trying to add sieve support for our users. We enabled managesieve and users can define rules from the webmail (roundcube) with sieverules plugin for roundcube. Everything goes ok, but here's a problem I couldn't figure yet. When I define a redirect rule, the mail is forwarded but a local copy is stored too. Weird thing is that the logs say redirecting failed but the mail gets forwarded. Let me show you some of this (personal data masked): # cat .dovecot.sieve ## Generated by Roundcube Webmail SieveRules Plugin ## # rule:[teste] if anyof (true) { redirect "xxxxx at xxxxxxxxx"; } And the log from the user's sieve log sieve: info: started log at Jun 15 18:05:49. error: msgid=: failed to redirect message to (refer to server log for more information). syslog: Jun 16 11:40:26 mailstore5 dovecot: lmtp(8458, xxxxxxx at xxxxxx.com): Error: /eMhMNoV+k0KIQAAmtbU9A: sieve: execution of script /var/maildir++/99/xxxxxx at xxxxxxxx/.dovecot.sieve failed, but implicit keep was successful (user logfile /var/maildir++/99/xxxxxx at xxxxx.com/.dovecot.sieve.log may reveal additional details) And gets redirected anyway Jun 16 11:40:26 mailstore5 postfix/smtp[13041]: CB4D1C79FE: to=, delay=0.12, delays=0.02/0/0.01/0.08, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as E24FAB0880) There's no explicit keep anywhere in the sieve rule, nor a global rule, so Im confused, the email should be forwarded only. The error message confuses me too, as it says failed but the mail gets through. dovecot -n # 2.0.9: /opt/mail/dovecot/etc/dovecot.conf # OS: Linux 2.6.36.2 x86_64 Debian 5.0.8 auth_mechanisms = plain login base_dir = /opt/mail/dovecot/var disable_plaintext_auth = no listen = * mail_location = maildir:~/Maildir mail_plugins = create_mbox quota managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include varia passdb { args = socket=/opt/mail/auth_server/var/socket timeout=10 driver = courier } plugin { quota = maildir:User quota quota_rule = Trash:ignore quota_rule2 = Spam:ignore sieve = ~/.dovecot.sieve } protocols = imap pop3 lmtp sieve service imap-login { inet_listener imap { port = 30143 ssl = no } } service lmtp { inet_listener lmtp { address = 0.0.0.0 port = 30024 } process_min_avail = 4 } service pop3-login { inet_listener pop3 { port = 30110 } } ssl = no ssl_parameters_regenerate = 0 userdb { args = socket=/opt/mail/auth_server/var/socket timeout=10 driver = courier } protocol pop3 { mail_plugins = create_mbox quota maildiraccess pop3_client_workarounds = outlook-no-nuls oe-ns-eoh pop3_reuse_xuidl = no pop3_save_uidl = no pop3_uidl_format = %f } protocol imap { mail_plugins = create_mbox quota imap_quota maildiraccess } protocol lmtp { mail_plugins = create_mbox quota sieve } protocol sieve { mail_debug = yes } Your help is appreciated. Thanks! Javier From CMarcus at Media-Brokers.com Thu Jun 16 18:21:29 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 16 Jun 2011 11:21:29 -0400 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> <4DF9EB21.5010507@Media-Brokers.com> <4DFA15F8.1080700@bellfamily.org.uk> <4DFA17E0.5070901@Media-Brokers.com> Message-ID: <4DFA1F79.8060402@Media-Brokers.com> On 2011-06-16 10:53 AM, Monte Stevens wrote: > On Thu, Jun 16, 2011 at 10:49:04AM -0400, Charles Marcus wrote: >> To the best of my knowledge, Dovecot does NOT do message >> de-duplication like this - I've even seen questions about it since >> Cyrus apparently has this capability, and seen Timo say dovecot >> does not do this at this time. >> >> So, I'd be looking elsewhere... > The list is run by mailman. There is a mailman setting for allowing / > blocking duplicates. Yes, but that setting suppresses the LIST copy, not the INDIVIDUAL copy... Peter was missing the INDIVIDUAL copy... -- Best regards, Charles From japi76 at gmail.com Thu Jun 16 19:24:16 2011 From: japi76 at gmail.com (Javier) Date: Thu, 16 Jun 2011 13:24:16 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: Message-ID: Maybe it is useful to know, that vacation does the same thing, an error in the logs but the response arrives to the sender. Log file also show some error with waitpid() Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxx at xxxxxxx.com): Error: waitpid() failed: No child processes Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxxxx at xxxxxx.com): Error: +F/dFJQm+k0MIQAAmtbU9A: sieve: msgid=: failed to send vacation response to (refer to server log for more information) Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxxxx at xxxxxx.com): +F/dFJQm+k0MIQAAmtbU9A: sieve: msgid=: sent vacation response to Thanks Javier On Thu, Jun 16, 2011 at 12:01 PM, Javier wrote: > Hi > > We've been using dovecot with great success so far. We are trying to > add sieve support for our users. > We enabled managesieve and users can define rules from the webmail > (roundcube) with sieverules plugin for roundcube. > > Everything goes ok, but here's a problem I couldn't figure yet. > > When I define a redirect rule, the mail is forwarded but a local copy > is stored too. Weird thing is that the logs say redirecting failed but > the mail gets forwarded. Let me show you some of this (personal data > masked): > > # cat .dovecot.sieve > ## Generated by Roundcube Webmail SieveRules Plugin ## > # rule:[teste] > if anyof (true) > { > ? ? ? ?redirect "xxxxx at xxxxxxxxx"; > } > > And the log from the user's sieve log > > sieve: info: started log at Jun 15 18:05:49. > error: msgid=: > failed to redirect message to (refer to server log > for more information). > > syslog: > > Jun 16 11:40:26 mailstore5 dovecot: lmtp(8458, xxxxxxx at xxxxxx.com): > Error: /eMhMNoV+k0KIQAAmtbU9A: sieve: execution of script > /var/maildir++/99/xxxxxx at xxxxxxxx/.dovecot.sieve failed, but implicit > keep was successful (user logfile > /var/maildir++/99/xxxxxx at xxxxx.com/.dovecot.sieve.log may reveal > additional details) > > And gets redirected anyway > Jun 16 11:40:26 mailstore5 postfix/smtp[13041]: CB4D1C79FE: > to=, delay=0.12, delays=0.02/0/0.01/0.08, dsn=2.0.0, > status=sent (250 2.0.0 Ok: queued as E24FAB0880) > > There's no explicit keep anywhere in the sieve rule, nor a global > rule, so Im confused, the email should be forwarded only. ?The error > message confuses me too, as it says failed but the mail gets through. > > dovecot -n > # 2.0.9: /opt/mail/dovecot/etc/dovecot.conf > # OS: Linux 2.6.36.2 x86_64 Debian 5.0.8 > auth_mechanisms = plain login > base_dir = /opt/mail/dovecot/var > disable_plaintext_auth = no > listen = * > mail_location = maildir:~/Maildir > mail_plugins = create_mbox quota > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include varia > passdb { > ?args = socket=/opt/mail/auth_server/var/socket timeout=10 > ?driver = courier > } > plugin { > ?quota = maildir:User quota > ?quota_rule = Trash:ignore > ?quota_rule2 = Spam:ignore > ?sieve = ~/.dovecot.sieve > } > protocols = imap pop3 lmtp sieve > service imap-login { > ?inet_listener imap { > ? ?port = 30143 > ? ?ssl = no > ?} > } > service lmtp { > ?inet_listener lmtp { > ? ?address = 0.0.0.0 > ? ?port = 30024 > ?} > ?process_min_avail = 4 > } > service pop3-login { > ?inet_listener pop3 { > ? ?port = 30110 > ?} > } > ssl = no > ssl_parameters_regenerate = 0 > userdb { > ?args = socket=/opt/mail/auth_server/var/socket timeout=10 > ?driver = courier > } > protocol pop3 { > ?mail_plugins = create_mbox quota maildiraccess > ?pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > ?pop3_reuse_xuidl = no > ?pop3_save_uidl = no > ?pop3_uidl_format = %f > } > protocol imap { > ?mail_plugins = create_mbox quota imap_quota maildiraccess > } > protocol lmtp { > ?mail_plugins = create_mbox quota sieve > } > protocol sieve { > ?mail_debug = yes > } > > Your help is appreciated. > Thanks! > Javier > From dmiller at amfes.com Thu Jun 16 19:31:23 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Thu, 16 Jun 2011 09:31:23 -0700 Subject: [Dovecot] ACL Groups In-Reply-To: <4DF997B0.6040908@es2eng.com> References: <4DF7C229.2050100@amfes.com> <4DF997B0.6040908@es2eng.com> Message-ID: On 6/15/2011 10:42 PM, Willie Gillespie wrote: > On 6/14/2011 2:18 PM, Daniel L. Miller wrote: >> From the wiki: >> >> ACL groups support works by returning a comma-separated acl_groups extra >> field from userdb, >> which contains all the groups the user belongs to. User's UNIX groups >> have no effect on ACLs (you can "enable" them by using a special >> post-login script ). >> >> >> I've read that over several times - I still don't understand that. Are >> "ACL Groups" defined and managed by Dovecot - and described somewhere >> else in the docs - or are they UNIX groups that previously had no affect >> on mail access but by being listed in the "acl_groups" field they now >> have relevance? > > That is a bit confusing. What it is trying to say: > For one, you have acl_groups. > For two, you have UNIX groups. > They are not related at all. > If you want them to be related, you can use a special post-login script. Ok - so where are acl_groups, and their access, defined? -- Daniel From dmiller at amfes.com Thu Jun 16 19:45:21 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Thu, 16 Jun 2011 09:45:21 -0700 Subject: [Dovecot] Global ACLs Message-ID: If I have: plugin { acl = vfile:/usr/local/etc/dovecot/global-acls:cache_secs=300 } And then a file /usr/local/etc/dovecot/global-acls/.DEFAULT with owner lrwstipekxa user=dmiller lrwstipekxa Does that give me unconditional access to all mailboxes? -- Daniel From l.messner at physik.tu-berlin.de Thu Jun 16 20:29:41 2011 From: l.messner at physik.tu-berlin.de (Leon =?iso-8859-15?Q?Me=DFner?=) Date: Thu, 16 Jun 2011 19:29:41 +0200 Subject: [Dovecot] quota_rule beeing ignored and set to system soft! quota Message-ID: <20110616172941.GA25579@emmi.physik-pool.tu-berlin.de> Hi, originating from the same Problem Edgar Fu? described here [1] about "Zero-sized Maildir files and index corruption on over-quota" i setup quota = fs:user quotas with a quota_rule set to 1.5G to prevent getting those zero sized mail files. What happens now is that when the user is over system soft quota (1G) mails stop beeing delivered. Jun 16 19:05:45 mail dovecot: deliver(elont1): msgid=<20110616185545.05ab0f56 at x201t>: save failed to INBOX: Quota exceeded (mailbox for user is full) This is bad as users get notified per mail by a script about beeing over quota (this mail is now beeing deferred). If i don't set a quota_rule i still get 0byte files (quota is ignored). If i set a higher than system quota quota_rule it still uses the system soft quota. I have a seconary mailserver which already uses dovecot 2.x but i can't test the feature there as it's running inside a jail and thus has no access to quota. I would like to keep this machine on 1.2.16 for now. dovecot -n output is below. thanks, Leon [1] http://www.dovecot.org/list/dovecot/2010-October/053554.html 19:20_root at mail:/usr/local/etc# dovecot -n # 1.2.16: /usr/local/etc/dovecot.conf # OS: FreeBSD 7.3-RELEASE-p2 amd64 log_path: /var/log/dovecot.log protocols: imaps pop3s managesieve listen: mail.physik-pool.tu-berlin.de ssl_cert_file: /etc/private/mail.physik.tu-berlin.de.pem ssl_key_file: /etc/private/physik.tu-berlin.de_privatekey.pem login_dir: /var/run/dovecot/login login_executable(default): /usr/local/libexec/dovecot/imap-login login_executable(imap): /usr/local/libexec/dovecot/imap-login login_executable(pop3): /usr/local/libexec/dovecot/pop3-login login_executable(managesieve): /usr/local/libexec/dovecot/managesieve-login login_processes_count: 6 login_max_processes_count: 512 verbose_proctitle: yes first_valid_uid: 200 mail_privileged_group: mail mail_location: maildir:~/maildir mmap_disable: yes mail_nfs_storage: yes mail_nfs_index: yes mail_executable(default): /usr/local/libexec/dovecot/imap mail_executable(imap): /usr/local/libexec/dovecot/imap mail_executable(pop3): /usr/local/libexec/dovecot/pop3 mail_executable(managesieve): /usr/local/libexec/dovecot/managesieve mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugins(managesieve): mail_plugin_dir(default): /usr/local/lib/dovecot/imap mail_plugin_dir(imap): /usr/local/lib/dovecot/imap mail_plugin_dir(pop3): /usr/local/lib/dovecot/pop3 mail_plugin_dir(managesieve): /usr/local/lib/dovecot/managesieve imap_client_workarounds(default): delay-newmail netscape-eoh tb-extra-mailbox-sep imap_client_workarounds(imap): delay-newmail netscape-eoh tb-extra-mailbox-sep imap_client_workarounds(pop3): imap_client_workarounds(managesieve): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh pop3_client_workarounds(managesieve): namespace: type: private separator: / inbox: yes list: yes subscriptions: yes namespace: type: private separator: / prefix: mail/ location: mbox:~/mail list: yes subscriptions: yes lda: postmaster_address: postmaster at physik.tu-berlin.de log_path: info_log_path: mail_plugins: sieve quota quota_full_tempfail: yes sendmail_path: /usr/sbin/sendmail auth default: mechanisms: gssapi plain login krb5_keytab: /etc/mail.krb5.keytab gssapi_hostname: mail.physik-pool.tu-berlin.de worker_max_count: 120 passdb: driver: pam args: session=yes failure_show_msg=yes max_requests=100 userdb: driver: passwd args: blocking=yes plugin: sieve: ~/.dovecot.sieve sieve_dir: ~/.sieve quota_rule: *:storage=15728640 quota: fs:user From rmf at lookhere.com Fri Jun 17 06:32:27 2011 From: rmf at lookhere.com (Roger Fujii) Date: Thu, 16 Jun 2011 23:32:27 -0400 Subject: [Dovecot] ZFS Filesystem Quota under Solaris 10 and Sparc In-Reply-To: References: Message-ID: <4DFACACB.7000906@lookhere.com> *J?rgen Obermann wrote:* > Since we upgraded last year to Solaris 10 with zfs filesystems on our > Sparc server still using a similar setup with separate filesystems for > home directories and inboxes we have no working quota plugin anymore. > Currently we use dovecot 2.0.13. > > Are there any plans or whishes to get the filesystem quota code > working again under zfs and Solaris? > How are you setting up the zfs quotas? The original zfs implementation didn't have user quotas. You could only add quotas to individual file systems as a whole. They apparently added it into the source base in 2009: http://blogs.oracle.com/chrisg/entry/user_and_group_quotas_for but I'm not sure when/if it made it to production. My sol10u8 * (10/09) has it in the man page, but I know some things in the man page isn't in s10 (like sharesmb), so, as they say, ymmv. The current doc for user quotas are here: http://download.oracle.com/docs/cd/E19253-01/819-5461/gazud/index.html If you don't want to use the filesystem quotas, you have to change your rules/configuration to match what dovecot has. See doc/wiki/Quota.Configuration.txt. Hope this helps. -r From tlx at leuxner.net Fri Jun 17 11:28:48 2011 From: tlx at leuxner.net (Thomas Leuxner) Date: Fri, 17 Jun 2011 10:28:48 +0200 Subject: [Dovecot] ACL Groups In-Reply-To: References: <4DF7C229.2050100@amfes.com> <4DF997B0.6040908@es2eng.com> Message-ID: > Ok - so where are acl_groups, and their access, defined? > -- > Daniel The permissions are set in the 'dovecot-acl' files: $ cat dovecot-acl anyone lr authenticated lrws group=PublicMailboxAdmins lrwsik You assign the groups to a particular user per UserDB Extra Fields: userdb_acl_groups=PublicMailboxAdmins Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 203 bytes Desc: Signierter Teil der Nachricht URL: From marcin at mejor.pl Fri Jun 17 12:48:47 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Fri, 17 Jun 2011 11:48:47 +0200 Subject: [Dovecot] I can't setup namespace per user (with settings keept in sql db) Message-ID: <4DFB22FF.9080608@mejor.pl> Hello! I'm trying to setup additional namespace. I'd like to have this setting per user and keep it in postgresql. Global namespace is defined in this way: namespace { inbox = yes location = prefix = separator = . } (mail_location is getting from db) I don't know how should looks like database field:( Now i have such configuration: user_query = select .... dovecot_location AS location, dovecot_namespace AS namespace FROM ... In db i have this: # select dovecot_location, dovecot_namespace from exim_users where dovecot_namespace is not null; dovecot_location | dovecot_namespace ---------------------------+------------------- location="mdbox:~/.mdbox" | prefix="testn" (1 row) but this isn't good configuration. I've got in log: debug: sql(marcin at mejor.pl,62.121.127.119): SELECT '/dane/domeny/mejor.pl/mail/marcin/' as home, dovecot_typ_skrzynki ||':'|| '/dane/domeny/mejor.pl/mail/marcin/' ||' .'|| dovecot_typ_skrzynki as mail_location, '*:bytes='||quota_mb||'M' as quota_rule , dovecot_location AS location, dovecot_namespace AS namespace FROM exim_users WHE RE login = lower('marcin') AND domena = lower('mejor.pl') Debug: master out: USER#0112138832897#011marcin at mejor.pl#011home=/dane/domeny/mejor.pl/mail/marcin/#011mail_location=maildir:/dane/domeny/mejor.pl/mail/marcin/.maildi r#011quota_rule=*:bytes=0M#011location=location="mdbox:~/.mdbox"#011namespace=prefix="testn" Login: user=, method=CRAM-MD5, rip=62.121.127.119, lip=193.238.12.139, mpid=17929, TLS Debug: Loading modules from directory: /usr/lib/dovecot Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib15_notify_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib20_fts_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib20_mail_log_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib20_zlib_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib21_fts_squat_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib30_imap_zlib_plugin.so Debug: Added userdb setting: mail_location=maildir:/dane/domeny/mejor.pl/mail/marcin/.maildir Debug: Added userdb setting: plugin/quota_rule=*:bytes=0M Debug: Added userdb setting: plugin/location=location="mdbox:~/.mdbox" Debug: Added userdb setting: namespace=prefix="testn" Debug: Effective uid=8, gid=12, home=/dane/domeny/mejor.pl/mail/marcin/ Debug: Quota root: name=User quota backend=dict args=:proxy::quota Debug: Quota rule: root=User quota mailbox=* bytes=0 messages=0 Debug: dict quota: user=marcin at mejor.pl, uri=proxy::quota, noenforcing=0 Debug: Namespace : type=private, prefix=, sep=., inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/dane/domeny/mejor.pl/mail/marcin/.maildir Debug: maildir++: root=/dane/domeny/mejor.pl/mail/marcin/.maildir, index=, control=, inbox=/dane/domeny/mejor.pl/mail/marcin/.maildir Debug: Namespace : type=private, prefix=, sep=, inbox=no, hidden=no, list=yes, subscriptions=yes location=maildir:/dane/domeny/mejor.pl/mail/marcin/.maildir Debug: maildir++: root=/dane/domeny/mejor.pl/mail/marcin/.maildir, index=, control=, inbox= Error: user marcin at mejor.pl: Initialization failed: namespace configuration error: Duplicate namespace prefix: "" Error: Invalid user settings. Refer to server log for more information. I've got stuck, i don't have idea how configuration should looks:( Thanks for any help! dovceot-2.0.13 From bra at fsn.hu Fri Jun 17 18:06:12 2011 From: bra at fsn.hu (Attila Nagy) Date: Fri, 17 Jun 2011 17:06:12 +0200 Subject: [Dovecot] Converting CLIENT_MAIL_DATA_MAX_INMEMORY_SIZE to a configurable? In-Reply-To: <1307972408.10421.847.camel@hurina> References: <4DF11750.40006@fsn.hu> <1307972408.10421.847.camel@hurina> Message-ID: <4DFB6D64.8010709@fsn.hu> Hi, Sorry for the late answer... On 06/13/11 15:40, Timo Sirainen wrote: > On Thu, 2011-06-09 at 20:56 +0200, Attila Nagy wrote: >> Hi, >> >> Currently Dovecot's LMTPd writes incoming emails to mail_temp_dir if >> it's bigger than 128k. But I would like to spare those unnecessary >> operations (creating a file, deleting it, writing into it, reading from >> it, checking whether there is free space and if not, rejecting >> (temporarily) the message). Memory is cheap, disk IO is not. :) >> And BTW, on a lot of systems, /tmp is a memory file system already, so >> there is absolute no need for this. > If there's not enough disk space, nowadays the message is read fully > into memory instead of tempfailing. Well, that doesn't seem to be the case (or maybe it's caused by other stuff, like pigeonhole?). Dovecot 2.0.13, with a temp dir capable of holding <64k: Filesystem Size Used Avail Capacity Mounted on tmpfs 64k 4.0k 60k 6% /data/tmp Sending a message of 60k succeeds: smtp-source -d -f from at from -l 60000 -m 1 -s 1 -S test -t to at to -L -v dovecot:24 /var/tmp/smtp-source: name_mask: all /var/tmp/smtp-source: smtp_stream_setup: maxtime=300 enable_deadline=0 /var/tmp/smtp-source: vstream_tweak_tcp: TCP_MAXSEG 1448 /var/tmp/smtp-source: <<< 220 dovecot Dovecot LMTP ready /var/tmp/smtp-source: LHLO me /var/tmp/smtp-source: <<< 250-dovecot /var/tmp/smtp-source: <<< 250-8BITMIME /var/tmp/smtp-source: <<< 250-ENHANCEDSTATUSCODES /var/tmp/smtp-source: <<< 250 PIPELINING /var/tmp/smtp-source: MAIL FROM: /var/tmp/smtp-source: <<< 250 2.1.0 OK /var/tmp/smtp-source: RCPT TO: /var/tmp/smtp-source: <<< 250 2.1.5 OK /var/tmp/smtp-source: DATA /var/tmp/smtp-source: <<< 354 OK /var/tmp/smtp-source: . /var/tmp/smtp-source: <<< 250 2.0.0 id Saved /var/tmp/smtp-source: QUIT /var/tmp/smtp-source: <<< 221 2.0.0 Client quit While with a bigger message: smtp-source -d -f from at from -l 200000 -m 1 -s 1 -S test -t to at to -L -v dovecot:24 /var/tmp/smtp-source: name_mask: all /var/tmp/smtp-source: smtp_stream_setup: maxtime=300 enable_deadline=0 /var/tmp/smtp-source: vstream_tweak_tcp: TCP_MAXSEG 1448 /var/tmp/smtp-source: <<< 220 dovecot Dovecot LMTP ready /var/tmp/smtp-source: LHLO me /var/tmp/smtp-source: <<< 250-dovecot /var/tmp/smtp-source: <<< 250-8BITMIME /var/tmp/smtp-source: <<< 250-ENHANCEDSTATUSCODES /var/tmp/smtp-source: <<< 250 PIPELINING /var/tmp/smtp-source: MAIL FROM: /var/tmp/smtp-source: <<< 250 2.1.0 OK /var/tmp/smtp-source: RCPT TO: /var/tmp/smtp-source: <<< 250 2.1.5 OK /var/tmp/smtp-source: DATA /var/tmp/smtp-source: <<< 354 OK /var/tmp/smtp-source: . /var/tmp/smtp-source: <<< 451 4.3.0 Temporary internal failure /var/tmp/smtp-source: fatal: end of data rejected: 451 4.3.0 Temporary internal failure When I give a bigger tmp filesystem to it, it accepts the message. > Also are you sure that writing to the file actually produces disk I/O? It depends. On a tmpfs file system, it is possible, if there is not enough memory and the system must page. Pretty bad condition. Of course this is mostly the same with no temporary files (holding the emails in memory). Well, mostly, because you don't duplicate all e-mails in memory. And if emails come and go in the range of some hundred Mbps, this can count. Also, a file in tmpfs possibly requires more memory than the same message in an efficient memory structure (a c string for example, which has only a small metadata, compared to tmpfs). If the tmp directory is not a tmpfs, it depends on whether you commit the written bits (I guess you don't fsync it, why would you :) and whether the file system wants to write them. There are file systems, which can't handle blocks belonging to different files independently with fsync. So if you fsync a small file, and you have written 3 GB to the temporary dir (let's assume they are on the same FS), which you will delete in the next second and you haven't fsynced them, 3 GB plus the small file will be written (to the log). Of course you can (and will) separate the temporary file system, which alleviates this problem. But even then it will be possible that the bits will written, for example because the file system's "commit time" has come and see the above, it may write out a lot of stuff. > Even if /tmp isn't a memory filesystem, I think there's a good chance > that the file will be gone before any disk writes have a chance to > start. Can you see some measurable disk I/O change by changing this > value? I can't really measure it now, because I don't have a separate disk pool for temporary files (because nothing uses /tmp, so it would be useless, all resources are delegated to the main pool) and I use tmpfs. But even it's just a few IOPS and some wasted CPU cycles, why wouldn't I set that? :) I think it would be nice to have this as a configurable option, so there would be no need to rebuild every time. From k.shantanu2006 at gmail.com Fri Jun 17 18:29:00 2011 From: k.shantanu2006 at gmail.com (kumar shantanu) Date: Fri, 17 Jun 2011 20:59:00 +0530 Subject: [Dovecot] ACL enabled Public folder dovecot Message-ID: Hi All, I am trying to do ACL enabled Public folder on dovecot version 1.1.20, but the ACL thing is not working, the public folder is visible and accessible to everyone. My dovecot config for public folder is like ######## namespace public { separator = / prefix = Public/ location = maildir:/var/mail/public subscriptions = no } plugin { acl = vfile } ######### and I have my dovecot-acl file in /var/mail/public/.test which reads ** user=test at mydomain.com lrw ** but every user can see the public folders and subscribe to it, which I don't want :( Can someone please suggest. Thanks in Advance, Shantanu From gfinch at ldmltd.ca Fri Jun 17 18:54:16 2011 From: gfinch at ldmltd.ca (Gregory Finch) Date: Fri, 17 Jun 2011 08:54:16 -0700 Subject: [Dovecot] ACL enabled Public folder dovecot In-Reply-To: References: Message-ID: <4DFB78A8.4000809@ldmltd.ca> On 2011-06-17 8:29 AM, kumar shantanu wrote: > Hi All, > > I am trying to do ACL enabled Public folder on dovecot version 1.1.20, but > the ACL thing is not working, the public folder is visible and accessible to > everyone. > > > My dovecot config for public folder is like > > ######## > namespace public { > separator = / > prefix = Public/ > location = maildir:/var/mail/public > subscriptions = no > } > plugin { > acl = vfile > } > ######### > > and I have my dovecot-acl file in /var/mail/public/.test which reads > ** > user=test at mydomain.com lrw > ** > but every user can see the public folders and subscribe to it, which I don't > want :( > > Can someone please suggest. > > > Thanks in Advance, > Shantanu > suggestion #1: post the output of dovecot -n -Greg -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 260 bytes Desc: OpenPGP digital signature URL: From k.shantanu2006 at gmail.com Fri Jun 17 18:57:45 2011 From: k.shantanu2006 at gmail.com (kumar shantanu) Date: Fri, 17 Jun 2011 21:27:45 +0530 Subject: [Dovecot] ACL enabled Public folder dovecot In-Reply-To: <4DFB78A8.4000809@ldmltd.ca> References: <4DFB78A8.4000809@ldmltd.ca> Message-ID: Hi Gregory, this is the output from dovecot -n # 1.1.20: /etc/dovecot.conf # OS: Linux 2.6.18-194.32.1.el5 i686 CentOS release 5.5 (Final) ext3 base_dir: /var/run/dovecot/ protocols: imap imaps listen: *:143 ssl_listen: *:943 login_dir: /var/run/dovecot/login login_executable: /usr/libexec/dovecot/imap-login login_greeting: READY. login_processes_count: 2 mail_location: maildir:/mail/%d/%n/Maildir mail_debug: yes namespace: type: public separator: / prefix: Public/ location: maildir:/var/mail/public list: yes namespace: type: private separator: / location: maildir:/mail/%d/%n/Maildir inbox: yes list: yes subscriptions: yes lda: postmaster_address: postmaster at example.com auth default: verbose: yes debug: yes debug_passwords: yes passdb: driver: ldap args: /etc/dovecot-ldap.conf userdb: driver: passwd userdb: driver: ldap args: /etc/dovecot-ldap.conf plugin: acl: vfile Thanks Shantanu On Fri, Jun 17, 2011 at 9:24 PM, Gregory Finch wrote: > On 2011-06-17 8:29 AM, kumar shantanu wrote: > > Hi All, > > > > I am trying to do ACL enabled Public folder on dovecot version 1.1.20, > but > > the ACL thing is not working, the public folder is visible and accessible > to > > everyone. > > > > > > My dovecot config for public folder is like > > > > ######## > > namespace public { > > separator = / > > prefix = Public/ > > location = maildir:/var/mail/public > > subscriptions = no > > } > > plugin { > > acl = vfile > > } > > ######### > > > > and I have my dovecot-acl file in /var/mail/public/.test which reads > > ** > > user=test at mydomain.com lrw > > ** > > but every user can see the public folders and subscribe to it, which I > don't > > want :( > > > > Can someone please suggest. > > > > > > Thanks in Advance, > > Shantanu > > > suggestion #1: post the output of dovecot -n > > -Greg > > From gfinch at ldmltd.ca Fri Jun 17 19:25:39 2011 From: gfinch at ldmltd.ca (Gregory Finch) Date: Fri, 17 Jun 2011 09:25:39 -0700 Subject: [Dovecot] ACL enabled Public folder dovecot In-Reply-To: References: <4DFB78A8.4000809@ldmltd.ca> Message-ID: <4DFB8003.2050401@ldmltd.ca> As per the top of http://wiki1.dovecot.org/ACL you need to set mail_plugins in order to use acls, as acl support is via a plugin, not a core piece of dovecot. -Greg On 2011-06-17 8:57 AM, kumar shantanu wrote: > Hi Gregory, > > this is the output from dovecot -n > > # 1.1.20: /etc/dovecot.conf > # OS: Linux 2.6.18-194.32.1.el5 i686 CentOS release 5.5 (Final) ext3 > base_dir: /var/run/dovecot/ > protocols: imap imaps > listen: *:143 > ssl_listen: *:943 > login_dir: /var/run/dovecot/login > login_executable: /usr/libexec/dovecot/imap-login > login_greeting: READY. > login_processes_count: 2 > mail_location: maildir:/mail/%d/%n/Maildir > mail_debug: yes > namespace: > type: public > separator: / > prefix: Public/ > location: maildir:/var/mail/public > list: yes > namespace: > type: private > separator: / > location: maildir:/mail/%d/%n/Maildir > inbox: yes > list: yes > subscriptions: yes > lda: > postmaster_address: postmaster at example.com > auth default: > verbose: yes > debug: yes > debug_passwords: yes > passdb: > driver: ldap > args: /etc/dovecot-ldap.conf > userdb: > driver: passwd > userdb: > driver: ldap > args: /etc/dovecot-ldap.conf > plugin: > acl: vfile > > > Thanks > Shantanu > > On Fri, Jun 17, 2011 at 9:24 PM, Gregory Finch wrote: > >> On 2011-06-17 8:29 AM, kumar shantanu wrote: >>> Hi All, >>> >>> I am trying to do ACL enabled Public folder on dovecot version 1.1.20, >> but >>> the ACL thing is not working, the public folder is visible and accessible >> to >>> everyone. >>> >>> >>> My dovecot config for public folder is like >>> >>> ######## >>> namespace public { >>> separator = / >>> prefix = Public/ >>> location = maildir:/var/mail/public >>> subscriptions = no >>> } >>> plugin { >>> acl = vfile >>> } >>> ######### >>> >>> and I have my dovecot-acl file in /var/mail/public/.test which reads >>> ** >>> user=test at mydomain.com lrw >>> ** >>> but every user can see the public folders and subscribe to it, which I >> don't >>> want :( >>> >>> Can someone please suggest. >>> >>> >>> Thanks in Advance, >>> Shantanu >>> >> suggestion #1: post the output of dovecot -n >> >> -Greg >> >> -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 260 bytes Desc: OpenPGP digital signature URL: From dom at helenmarks.co.uk Fri Jun 17 19:35:54 2011 From: dom at helenmarks.co.uk (Dominic Marks) Date: Fri, 17 Jun 2011 17:35:54 +0100 Subject: [Dovecot] Maildir parent directory permissions incorrect for new mailbox Message-ID: <4DFB826A.9080903@helenmarks.co.uk> Hi, My issue is with the automatic creation of parent directories above new maildirs. It seems to be that they're being set with incorrect (or unhelpful) permissions, applying the permissions of the mailbox down the path towards the mailbox root, as opposed to taking the permissions of the mailbox root up towards the mailbox. Our mail is stored under the scheme: location = maildir:/var/dovecot/mail/%d/%n:INDEX=/var/dovecot/index/%d/%n Initially, /var/dovecot consists of acl, index and mail, all empty. The permissions on these are: >> ls -l total 6 drwxrwxr-x 2 hmgp hmgp 512 17 Jun 12:23 acl drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 index drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 mail If I perform a mail delivery to my mailbox, the mailbox parent directory is created with the following permissions: >> ls -l total 2 drwx------ 3 dm hmgp 512 17 Jun 15:56 insidetrading.co.uk Note that the user ID is my own and the mode restricts all other access. When I perform a second delivery to different mailbox under that domain, one mapped to a different UID, the delivery fails because that user cannot access the parent folder in order to create the new maildir. I've read on the Wiki that Dovecot copies permissions from the parent directory when adding new messages to a mailbox. That would suit my situation, but it doesn't happen here. Maybe there is there a reason why this is the case? I've had a look at the code and it it works in the opposite direction, starting from the full path (with its associated mode, uid & gid) and working by removing a section from the right-hand side each time. For me, at least, it would be better if it started from the bottom and worked upwards, inheriting the parent uid, gid and mode until the mailbox directory, where the existing behaviour would be retained, looking like: >> ls -dl insidetrading.co.uk/dm total 2 drwx------ 5 dm hmgp 512 17 Jun 15:56 dm I know I could hold all our mail under a single uid/gid or I could fix the mode manually, but I'd rather not do either. Am I missing some key configuration detail or should I work on a patch for this? Thanks, Dominic >> dovecot -n # 2.0.12: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 8.2-RELEASE amd64 auth_debug = yes listen = * mail_debug = yes mail_plugins = acl namespace { inbox = yes location = maildir:/var/dovecot/mail/%d/%n:INDEX=/var/dovecot/index/%d/%n prefix = separator = / type = private } namespace { list = children location = maildir:/var/dovecot/mail/%%d/%%n:INDEX=/var/dovecot/index/%%d/shared/%%n prefix = shared/%%n separator = / subscriptions = no type = shared } passdb { args = /usr/local/etc/dovecot/ldap.conf driver = ldap } plugin { acl = vfile acl_shared_dict = file:/var/dovecot/acl/%d/%n-shared.db } protocols = lmtp imap service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 } } service imap-login { inet_listener imap { port = 0 } inet_listener imaps { port = 993 ssl = yes } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } ssl = required ssl_ca = References: <4DFB826A.9080903@helenmarks.co.uk> Message-ID: <4DFB8BF0.2000202@gmx.de> On 17.06.2011 18:35, wrote Dominic Marks: Hi Dominic, > Initially, /var/dovecot consists of acl, index and mail, all empty. The > permissions on these are: > > >> ls -l > total 6 > drwxrwxr-x 2 hmgp hmgp 512 17 Jun 12:23 acl > drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 index > drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 mail > > If I perform a mail delivery to my mailbox, the mailbox parent directory > is created with the following permissions: > > >> ls -l > total 2 > drwx------ 3 dm hmgp 512 17 Jun 15:56 insidetrading.co.uk > Blind guess: You are delivering the mail via postfix local and not via dovecot-lda or lmtp? > Note that the user ID is my own and the mode restricts all other access. > When I perform a second delivery to different mailbox under that domain, > one mapped to a different UID, the delivery fails because that user > cannot access the parent folder in order to create the new maildir. > From bradley.giesbrecht at gmail.com Fri Jun 17 20:22:27 2011 From: bradley.giesbrecht at gmail.com (Bradley Giesbrecht) Date: Fri, 17 Jun 2011 10:22:27 -0700 Subject: [Dovecot] pop3-login Error after dovecot 1.2.11 to dovecot 2.0.13 Message-ID: <0A898111-CEB0-476A-AB68-E32E80DC2A24@gmail.com> I recently upgaded from dovecot 1.2.11 to 2.0.13. I used this command on my dovecont.conf after the upgrade and then moved the new file into place after removing some plugins. $ sudo doveconf -n -c dovecot-1.conf > dovecot-2.conf After 24+ hours with no issues I was getting pop3 login failures. ... /path/to/log/dovecot.log:master: Error: service(pop3): read(status) failed: Interrupted system call ... /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Error: master(pop3): Auth request timed out (received 0/12 bytes) /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Info: Internal login failure (pid=1796 id=1) (auth failed, 1 attempts): user=, method=APOP, rip=123.4.5.6, lip=123.7.8.9 /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Error: master(pop3): Auth request timed out (received 0/12 bytes) /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Info: Internal login failure (pid=1797 id=1) (auth failed, 1 attempts): user=, method=APOP, rip=123.4.5.6, lip=123.7.8.9 /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Error: master(pop3): Auth request timed out (received 0/12 bytes) /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Info: Internal login failure (pid=1798 id=1) (auth failed, 1 attempts): user=, method=APOP, rip=123.4.5.6, lip=123.7.8.9 /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Error: master(pop3): Auth request timed out (received 0/12 bytes) ... /path/to/log/dovecot.log:Jun 17 05:40:34 pop3-login: Error: net_connect_unix(pop3) failed: Operation timed out ... Bouncing dovecot has resolved the login issues for the present. Reading from the wiki I see my post-login scripts will need changing. http://wiki2.dovecot.org/Upgrading/2.0 Is there anything else obviously/dangerously wrong with the following doveconf output? I'm am still in the process of moving directives out of dovecot.conf into the new conf.d files. $ doveconf -n # 2.0.13: /path/to/etc/dovecot/dovecot.conf # OS: Darwin 9.8.0 Power Macintosh hfs auth_mechanisms = plain login cram-md5 ntlm apop default_internal_user = _dovecot default_login_user = _dovenull disable_plaintext_auth = no log_path = /path/to/log/dovecot.log mail_location = dbox:/path/to/mail/%d/%n/dbox mail_max_userip_connections = 30 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = /path/to/etc/dovecot/dovecot_mysql.conf driver = sql } plugin { autocreate = Trash autocreate2 = Spam autosubscribe = Trash autosubscribe2 = Spam } protocols = imap pop3 service auth { unix_listener /path/to/var/spool/postfix/private/auth { group = _postfix mode = 0660 user = _postfix } unix_listener auth-master { mode = 0600 user = _vmail } unix_listener auth-userdb { group = _vmail user = _vmail } } service imap { executable = /path/to/dovecot/bin/log_imap_login.sh } service pop3 { executable = /path/to/dovecot/bin/log_pop3_login.sh } ssl_cert = References: <4DFB826A.9080903@helenmarks.co.uk> <4DFB8BF0.2000202@gmx.de> Message-ID: <4DFB9EEA.3050409@helenmarks.co.uk> On 17/06/2011 18:16, e-frog wrote: > On 17.06.2011 18:35, wrote Dominic Marks: > > Hi Dominic, > >> Initially, /var/dovecot consists of acl, index and mail, all empty. The >> permissions on these are: >> >> >> ls -l >> total 6 >> drwxrwxr-x 2 hmgp hmgp 512 17 Jun 12:23 acl >> drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 index >> drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 mail >> >> If I perform a mail delivery to my mailbox, the mailbox parent directory >> is created with the following permissions: >> >> >> ls -l >> total 2 >> drwx------ 3 dm hmgp 512 17 Jun 15:56 insidetrading.co.uk >> > > Blind guess: > You are delivering the mail via postfix local and not via dovecot-lda > or lmtp? > Hi e-frog, Nope. From my main.cf: virtual_transport = lmtp:unix:private/dovecot-lmtp From my maillog: Jun 17 18:37:06 comms dovecot: lmtp(75348): Connect from local Jun 17 18:37:06 comms dovecot: lmtp(75348, dm at insidetrading.co.uk): 8en+HVtz+01UJgEA+ZD7hg: msgid=<20110617183706.04E3C3B618 at mail.helenmarks.co.uk>: saved mail to INBOX Jun 17 18:37:06 comms postfix/lmtp[78285]: 04E3C3B618: to=, relay=mail.helenmarks.co.uk[private/dovecot-lmtp], delay=0.1, delays=0.05/0.04/0/0.01, dsn=2.0.0, status=sent (250 2.0.0 8en+HVtz+01UJgEA+ZD7hg Saved) Jun 17 18:37:06 comms dovecot: lmtp(75348): Disconnect from local: Client quit Jun 17 18:37:06 comms postfix/qmgr[99310]: 04E3C3B618: removed In fact, during my tests I invoked the lmtp binary under gdb so I could inspect its behaviour, but prior to that I'd been relaying through lmtp. Thanks, Dominic From dmiller at amfes.com Fri Jun 17 22:58:34 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Fri, 17 Jun 2011 12:58:34 -0700 Subject: [Dovecot] ACL Groups In-Reply-To: References: <4DF7C229.2050100@amfes.com> <4DF997B0.6040908@es2eng.com> Message-ID: On 6/17/2011 1:28 AM, Thomas Leuxner wrote: >> Ok - so where are acl_groups, and their access, defined? >> -- >> Daniel > The permissions are set in the 'dovecot-acl' files: > > $ cat dovecot-acl > anyone lr > authenticated lrws > group=PublicMailboxAdmins lrwsik > > You assign the groups to a particular user per UserDB Extra Fields: > > userdb_acl_groups=PublicMailboxAdmins > So there is no defined list of valid groups - arbitrary names are simply listed in the acl_groups parameter, and are then used in the acl files. If they're in either one of the acl_groups or acl file(s), and not in the other, there's no error - they just don't do anything. Right? -- Daniel From dmiller at amfes.com Fri Jun 17 23:01:41 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Fri, 17 Jun 2011 13:01:41 -0700 Subject: [Dovecot] Default Global ACL Message-ID: Can I use the .DEFAULT files with global acls to access all mailboxes without explicitly sharing them first? Or must a share be created for every individual mailbox before they will appear in the shared namespace? -- Daniel From pj.netfilter at gmail.com Sat Jun 18 09:09:20 2011 From: pj.netfilter at gmail.com (Joy) Date: Sat, 18 Jun 2011 11:39:20 +0530 Subject: [Dovecot] process already running Message-ID: Hi, I have running dovecot installation and i am quite happy with it but in one of my installation if system's power fail it doesn't remove master.pid which prevent system to start the service in next boot. I have to manually remove file and start the proess. We are running version 2.0.12. Thanks From robert at schetterer.org Sat Jun 18 11:00:23 2011 From: robert at schetterer.org (Robert Schetterer) Date: Sat, 18 Jun 2011 10:00:23 +0200 Subject: [Dovecot] returned error 89 / solved In-Reply-To: <4DF7B83A.6090401@schetterer.org> References: <4DF7B55D.6010303@schetterer.org> <4DF7B83A.6090401@schetterer.org> Message-ID: <4DFC5B17.2090009@schetterer.org> Am 14.06.2011 21:36, schrieb Robert Schetterer: > Am 14.06.2011 21:24, schrieb Robert Schetterer: >> Hi Timo, i have very rare ( ultra rare....) >> failures like this >> with latest dovecot 2 >> >> log: Error: service(pop3-postlogin): child 16691 returned error 89 >> (Fatal failure) >> >> imap-postlogin: Error: script-login: Fatal: Internal error occurred. >> Refer to server log for more information. >> Jun 14 18:41:16 mail02 dovecot: log: Error: service(imap-postlogin): >> child 31645 returned error 89 (Fatal failure) >> >> any idea? >> >> the conf i allready posted >> with also rare lmtp error >> uid=error >> >> today first an only one seen >> >> Error: read(/var/run/dovecot/dict) failed: Timeout after 30 seconds >> lmtp(31698, ... at ...): Error: Internal quota calculation error >> > > speculation , error 89 seems only happen > during a rsync full system backup job > does this make sense ? > perhaps i should use more excludes > i.e for /var/run/dovecot/* ... it was rsync, excluding /var/run/dovecot/* makes the failure disapear the uid=error in lmtp got more rare using auth cache what i found is, that it mostly happens on high traffic times, with mass mails ( i.e parallel mail to many subscribers of a list etc ) but i did no exact investigate about that but there maybe some relation to sql lookups during high traffic -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From maria_arrea at gmx.com Sun Jun 19 13:59:41 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Sun, 19 Jun 2011 10:59:41 +0000 Subject: [Dovecot] Question about "Storage keeps breaking" in logs Message-ID: <20110619105942.75870@gmx.com> Hello I have found this entries in my log /var/log/maillog.13.xz:Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones//18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking /var/log/maillog.108.xz:Mar 4 01:42:09 buzon dovecot: imap(lbandera): Error: mdbox /buzones/0b/11/lbandera/mailboxes/Sent/dbox-Mails: Storage keeps breaking /var/log/maillog.3.xz:Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama): Error: mdbox /buzones/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking I have "rebuilt" those mdboxes with doveadm force-resync && doveadm quota recalc. Should I be worried? Why is this happening? Regards Maria Arrea From stephan at rename-it.nl Sun Jun 19 14:07:17 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Sun, 19 Jun 2011 13:07:17 +0200 Subject: [Dovecot] Vacation -- reply to another address than envelope from In-Reply-To: <20110616140833.GX3399@svanberg.no> References: <20110616140833.GX3399@svanberg.no> Message-ID: <4DFDD865.2020509@rename-it.nl> Op 16-6-2011 16:08, Vegard Svanberg schreef: > Vacation (Sieve) replies to the envelope address. However, I have a > customer which receive e-mails from a service which sends e-mails on > behalf of a user (submitted through a web form). > > So an e-mail would be like (envelope from and from-header is > webformfromwhatever at foobar.com): > > From: webformfromwhatever at foobar.com > To: mycustomer at hisdomain.com > Reply-To: usersrealmailaddress at example.com > > I need the reply to go to the reply-to address. > > Can I handle this with Sieve? > No. The vacation auto-responder only uses the SMTP envelope to determine the address for a response. Using the Reply-To, From or Sender headers is generally considered to be a bad idea for this purpose (http://tools.ietf.org/html/rfc3834#section-4). I don't quite see how you could fix this problem without ignoring these concerns, sorry. Regards, Stephan. From stephan at rename-it.nl Sun Jun 19 14:17:25 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Sun, 19 Jun 2011 13:17:25 +0200 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: Message-ID: <4DFDDAC5.7030507@rename-it.nl> Op 16-6-2011 18:24, Javier schreef: > Maybe it is useful to know, that vacation does the same thing, an > error in the logs but the response arrives to the sender. > > Log file also show some error with waitpid() First thing to notice is that your Dovecot is relatively old, so this problem may be fixed already. Also, recent Dovecot (v2.0) versions support sending messages directly to an SMTP (smart)host instead of using the sendmail binary. Looks like your sendmail binary terminates inappropriately (or Dovecot thinks it does). Can you successfully send mail from the command line using the sendmail tool? Regards, Stephan. From maria_arrea at gmx.com Sun Jun 19 14:22:18 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Sun, 19 Jun 2011 11:22:18 +0000 Subject: [Dovecot] Question about corrupted dbox file Message-ID: <20110619112218.75870@gmx.com> Hello We are using dovecot 2.0.13, without SIS, mdbox+zlib mailbozes. One of our users have this problem in the logs: /doveadm(amaliarubio): Error: mdbox rebuild: Failed to fix file /buzones//0b/1f/amaliarubio/storage/m.304 doveadm(amaliarubio): Error: Corrupted dbox file /buzones/0b/1f/amaliarubio/storage/m.304 (around offset=0): EOF while reading file header/ I have tried with doveadm force-resync without luck Regards Maria From me at junc.org Sun Jun 19 15:23:14 2011 From: me at junc.org (Benny Pedersen) Date: Sun, 19 Jun 2011 14:23:14 +0200 Subject: [Dovecot] Gmail like virtual mailboxes In-Reply-To: References: <1307971694.10421.838.camel@hurina> Message-ID: <8947655f6e32e12f27e9bd33595edca4@junc.org> On Tue, 14 Jun 2011 16:27:40 +0200, Aleve Sicofante wrote: > How do you feel about the way Courier implements IMAP keywords? They > seem to allow for an unlimited number of arbitrary keywords. dovecot 1.2.17 and thunderbird 3.1 windows works okay here with default keywords and custom created with thunderbird, what do i miss ? :-) roundcube plugin would be cool From joh.hendriks at gmail.com Mon Jun 20 12:10:41 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Mon, 20 Jun 2011 11:10:41 +0200 Subject: [Dovecot] Out of office reminder with sieve Message-ID: <4DFF0E91.2030804@gmail.com> I found in the wiki the out of office reminder option. But the sample is looking for a .out-of-office file. I can not find out how to create this file. I use roundcube to set the out of office with sieve. what is the best way to implement this. Second question, where are the addresses stored that have send an e-mail to the user who has out of office set? thanks regards, Johan Hendriks From stephan at rename-it.nl Mon Jun 20 12:31:21 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 20 Jun 2011 11:31:21 +0200 Subject: [Dovecot] dovecot-metadata-8 released In-Reply-To: <201106121556.01830.devurandom@gmx.net> References: <201106121556.01830.devurandom@gmx.net> Message-ID: <4DFF1369.70806@rename-it.nl> Hi Dennis, On 6/12/2011 3:55 PM, Dennis Schridde wrote: > Hello everyone! > > I just released dovecot-metadata-8, which is an implementation of RFC 5464 > (IMAP METADATA), allowing to add comments/annotations/metadata to folders of > an email account. Nice! I've browsed the source a little and I compiled it, but I haven't actually tested it yet. However, I have a few comments/requests already. > The build process is pretty much straightforward, just make sure you have the > dovecot headers available on your system: > ./autogen.sh > ./configure --with-dovecot=/path/to/dovecot > make > make install I had some compile problems. First of all, my Debian stable has automake 1.10 and thus does not support the new silent-rules feature. I'd suggest the following patch to maintain backwards compatibility for the time being: diff -r 8077ad9bce6f configure.ac --- a/configure.ac Sun Jun 12 13:54:06 2011 +0200 +++ b/configure.ac Mon Jun 20 10:36:29 2011 +0200 @@ -1,7 +1,9 @@ AC_PREREQ(2.65) AC_INIT([dovecot-metadata],[8],[devurandom at gmx.net]) -AM_INIT_AUTOMAKE([1.10 silent-rules]) +AM_INIT_AUTOMAKE([1.10]) +m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES]) + AM_MAINTAINER_MODE AC_CONFIG_MACRO_DIR([m4]) Also, I usually like to compile against an uninstalled Dovecot source tree, e.g. to perform tests without installing anything. This failed because the currently installed dovecot.m4 does not provide LIBDOVECOT_IMAP_INCLUDE. Timo, could you fix this? diff -r 327486d79620 dovecot.m4 --- a/dovecot.m4 Thu Jun 16 16:37:42 2011 +0300 +++ b/dovecot.m4 Mon Jun 20 10:33:29 2011 +0200 @@ -62,7 +62,7 @@ AX_SUBST_L([DOVECOT_CFLAGS], [DOVECOT_LIBS], [DOVECOT_SSL_LIBS], [DOVECOT_SQL_LIBS]) AX_SUBST_L([LIBDOVECOT], [LIBDOVECOT_LOGIN], [LIBDOVECOT_SQL], [LIBDOVECOT_LDA], [LIBDOVECOT_STORAGE]) AX_SUBST_L([LIBDOVECOT_DEPS], [LIBDOVECOT_LOGIN_DEPS], [LIBDOVECOT_SQL_DEPS], [LIBDOVECOT_LDA_DEPS], [LIBDOVECOT_STORAGE_DEPS]) - AX_SUBST_L([LIBDOVECOT_INCLUDE], [LIBDOVECOT_LDA_INCLUDE], [LIBDOVECOT_SERVICE_INCLUDE], [LIBDOVECOT_STORAGE_INCLUDE], [LIBDOVECOT_LOGIN_INCLUDE], [LIBDOVECOT_CONFIG_INCLUDE]) + AX_SUBST_L([LIBDOVECOT_INCLUDE], [LIBDOVECOT_LDA_INCLUDE], [LIBDOVECOT_SERVICE_INCLUDE], [LIBDOVECOT_STORAGE_INCLUDE], [LIBDOVECOT_LOGIN_INCLUDE], [LIBDOVECOT_CONFIG_INCLUDE], [LIBDOVECOT_IMAP_INCLUDE]) DC_PLUGIN_DEPS ]) The fact that this package relies on an installed dovecot.m4 also makes compiling against an uninstalled source tree a bit of a chicken-egg problem. Pigeonhole includes a version of dovecot.m4 (albeit modified) in the distribution for this purpose, but I am not sure that is the best solution. Also, since compiling against an uninstalled Dovecot currently has no real purpose for this package for now (it may have when I implement the related Sieve features as discussed below), I would not give fixing this any priority at all. > If you find any bugs (crashes, incompatibilities with RFC 5464, etc), please > write me a mail. Be advised that this code is still experimental and might > crash your server! Now that Dovecot has IMAP METADATA support, it would be nice to implement the Sieve side of the story as well. This is specified in RFC5490 (http://tools.ietf.org/html/rfc5490). These Sieve language extensions allow matching against server and mailbox annotations in Sieve scripts. To build Sieve plugins for the aforementioned features, I would need to have access to the metadata backend to read the annotation entries. For that reason, I would like to suggest that you put the metadata storage backend in a separate shared library, such that other future plugins and tools can link against it to gain access to the metadata storage. Pigeonhole does something similar already; the Sieve interpreter is installed as /usr/lib/dovecot/libdovecot-sieve.so and the LDA plugin makes use of it, as do command line tools such as sieve-test. Regards, Stephan From sunhux at gmail.com Mon Jun 20 13:32:28 2011 From: sunhux at gmail.com (sunhux G) Date: Mon, 20 Jun 2011 18:32:28 +0800 Subject: [Dovecot] Error Message-ID: I tested POP3 access from my laptop's Outlook which is on the same subnet as the dovecot/postfix server (so there's no firewall in between them & was able to get the emails in Outlook with following statuses shown when "Test Connection" is clicked: > Tasks Status > ===================== ======== > Establish network connection Completed > Find outgoing mail server (SMTP) Completed > Find incoming mail server (POP3) Completed > Log onto incoming mail server (POP3) Completed > Send test e-mail message Completed # dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf doveconf: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:24: ssl_disable has been renamed to ssl # OS: Linux 2.6.12.6-xen0 i686 Red Hat Enterprise Linux ES release 4 (Nahant Update 2) disable_plaintext_auth = no listen = * mail_location = mbox:~/mail:INBOX=/pop3/spool/mail/%u mbox_write_locks = fcntl passdb { driver = pam } protocols = pop3 imap ssl = no ssl_cert = Jun 20 15:06:36 SmtpostixSvr postfix/smtpd[24148]: disconnect from unknown[172.19.21.23] Jun 20 15:06:36 SmtpostixSvr postfix/qmgr[21020]: EA32720006C: from=, size=705, nrcpt=1 (queue active) Jun 20 15:06:36 SmtpostixSvr dovecot: auth: Error: dlopen(/usr/lib/dovecot/auth/libdriver_pgsql.so) failed: /usr/lib/dovecot/auth/libdriver_pgsql.so: undefined symbol: PQescapeStringConn Jun 20 15:06:36 SmtpostixSvr dovecot: auth: Error: dlopen(/usr/lib/dovecot/auth/libdriver_pgsql.so) failed: /usr/lib/dovecot/auth/libdriver_pgsql.so: undefined symbol: PQescapeStringConn Jun 20 15:06:36 SmtpostixSvr postfix/local[24152]: EA32720006C: to=, orig_to=, relay=local, delay=0.81, delays=0.26/0.11/0/0.43, dsn=2.0.0, status=sent (delivered to command: /usr/bin/procmail) Jun 20 15:06:36 SmtpostixSvr postfix/qmgr[21020]: EA32720006C: removed Jun 20 15:06:36 SmtpostixSvr dovecot: pop3-login: Login: user=, method=PLAIN, rip=172.19.21.23, lip=172.19.21.27, mpid=24157 Jun 20 15:06:36 SmtpostixSvr dovecot: pop3(myUnixid): Disconnected: Logged out top=0/0, retr=0/0, del=0/191, size=436234 ================================================ > " saslfinger -s " output: > # saslfinger -s > saslfinger - postfix Cyrus sasl configuration Thu Mar 17 18:10:18 SGT 2011 > version: 1.0.2 > mode: server-side SMTP AUTH > > -- basics -- > Postfix: 2.5.6 > System: Red Hat Enterprise Linux ES release 4 (Nahant Update 2) > > -- smtpd is linked to -- > ? ? ? libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x47b72000) > > -- active SMTP AUTH and TLS parameters for smtpd -- > smtpd_sasl_auth_enable = yes > smtpd_sasl_security_options = noanonymous > > > -- listing of /usr/lib/sasl -- > total 560 > -rw-r--r-- ? ?1 root root ?4634 Dec ?2 ?2004 libanonymous.a > -rwxr-xr-x ? ?1 root root ? 871 Dec ?2 ?2004 libanonymous.la > -rwxr-xr-x ? ?1 root root ?5748 Dec ?2 ?2004 libanonymous.so > -rwxr-xr-x ? ?1 root root ?5748 Dec ?2 ?2004 libanonymous.so.1 > -rwxr-xr-x ? ?1 root root ?5748 Dec ?2 ?2004 libanonymous.so.1.0.17 > -rw-r--r-- ? ?1 root root ?9758 Dec ?2 ?2004 libcrammd5.a > -rwxr-xr-x ? ?1 root root ? 857 Dec ?2 ?2004 libcrammd5.la > -rwxr-xr-x ? ?1 root root ?9884 Dec ?2 ?2004 libcrammd5.so > -rwxr-xr-x ? ?1 root root ?9884 Dec ?2 ?2004 libcrammd5.so.1 > -rwxr-xr-x ? ?1 root root ?9884 Dec ?2 ?2004 libcrammd5.so.1.0.19 > -rw-r--r-- ? ?1 root root 34264 Dec ?2 ?2004 libdigestmd5.a > -rwxr-xr-x ? ?1 root root ? 880 Dec ?2 ?2004 libdigestmd5.la > -rwxr-xr-x ? ?1 root root 30804 Dec ?2 ?2004 libdigestmd5.so > -rwxr-xr-x ? ?1 root root 30804 Dec ?2 ?2004 libdigestmd5.so.0 > -rwxr-xr-x ? ?1 root root 30804 Dec ?2 ?2004 libdigestmd5.so.0.0.20 > -rw-r--r-- ? ?1 root root 11322 Dec ?2 ?2004 libgssapiv2.a > -rwxr-xr-x ? ?1 root root ? 906 Dec ?2 ?2004 libgssapiv2.la > -rwxr-xr-x ? ?1 root root 11952 Dec ?2 ?2004 libgssapiv2.so > -rwxr-xr-x ? ?1 root root 11952 Dec ?2 ?2004 libgssapiv2.so.1 > -rwxr-xr-x ? ?1 root root 11952 Dec ?2 ?2004 libgssapiv2.so.1.0.19 > -rw-r--r-- ? ?1 root root ?6598 Dec ?2 ?2004 liblogin.a > -rwxr-xr-x ? ?1 root root ? 847 Dec ?2 ?2004 liblogin.la > -rwxr-xr-x ? ?1 root root ?7248 Dec ?2 ?2004 liblogin.so > -rwxr-xr-x ? ?1 root root ?7248 Dec ?2 ?2004 liblogin.so.0 > -rwxr-xr-x ? ?1 root root ?7248 Dec ?2 ?2004 liblogin.so.0.0.7 > -rw-r--r-- ? ?1 root root ?6150 Dec ?2 ?2004 libplain.a > -rwxr-xr-x ? ?1 root root ? 849 Dec ?2 ?2004 libplain.la > -rwxr-xr-x ? ?1 root root ?7000 Dec ?2 ?2004 libplain.so > -rwxr-xr-x ? ?1 root root ?7000 Dec ?2 ?2004 libplain.so.1 > -rwxr-xr-x ? ?1 root root ?7000 Dec ?2 ?2004 libplain.so.1.0.16 > > -- listing of /usr/lib/sasl2 -- > total 3152 > -rwxr-xr-x ? ?1 root root ? ?875 Dec ?2 ?2004 libanonymous.la > -rwxr-xr-x ? ?1 root root ?12820 Dec ?2 ?2004 libanonymous.so > -rwxr-xr-x ? ?1 root root ?12820 Dec ?2 ?2004 libanonymous.so.2 > -rwxr-xr-x ? ?1 root root ?12820 Dec ?2 ?2004 libanonymous.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?863 Dec ?2 ?2004 libcrammd5.la > -rwxr-xr-x ? ?1 root root ?15216 Dec ?2 ?2004 libcrammd5.so > -rwxr-xr-x ? ?1 root root ?15216 Dec ?2 ?2004 libcrammd5.so.2 > -rwxr-xr-x ? ?1 root root ?15216 Dec ?2 ?2004 libcrammd5.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?884 Dec ?2 ?2004 libdigestmd5.la > -rwxr-xr-x ? ?1 root root ?42964 Dec ?2 ?2004 libdigestmd5.so > -rwxr-xr-x ? ?1 root root ?42964 Dec ?2 ?2004 libdigestmd5.so.2 > -rwxr-xr-x ? ?1 root root ?42964 Dec ?2 ?2004 libdigestmd5.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?911 Dec ?2 ?2004 libgssapiv2.la > -rwxr-xr-x ? ?1 root root ?22292 Dec ?2 ?2004 libgssapiv2.so > -rwxr-xr-x ? ?1 root root ?22292 Dec ?2 ?2004 libgssapiv2.so.2 > -rwxr-xr-x ? ?1 root root ?22292 Dec ?2 ?2004 libgssapiv2.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?851 Dec ?2 ?2004 liblogin.la > -rwxr-xr-x ? ?1 root root ?13296 Dec ?2 ?2004 liblogin.so > -rwxr-xr-x ? ?1 root root ?13296 Dec ?2 ?2004 liblogin.so.2 > -rwxr-xr-x ? ?1 root root ?13296 Dec ?2 ?2004 liblogin.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?854 Dec ?2 ?2004 libntlm.la > -rwxr-xr-x ? ?1 root root ?29104 Dec ?2 ?2004 libntlm.so > -rwxr-xr-x ? ?1 root root ?29104 Dec ?2 ?2004 libntlm.so.2 > -rwxr-xr-x ? ?1 root root ?29104 Dec ?2 ?2004 libntlm.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?851 Dec ?2 ?2004 libplain.la > -rwxr-xr-x ? ?1 root root ?13360 Dec ?2 ?2004 libplain.so > -rwxr-xr-x ? ?1 root root ?13360 Dec ?2 ?2004 libplain.so.2 > -rwxr-xr-x ? ?1 root root ?13360 Dec ?2 ?2004 libplain.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?931 Dec ?2 ?2004 libsasldb.la > -rwxr-xr-x ? ?1 root root 784960 Dec ?2 ?2004 libsasldb.so > -rwxr-xr-x ? ?1 root root 784960 Dec ?2 ?2004 libsasldb.so.2 > -rwxr-xr-x ? ?1 root root 784960 Dec ?2 ?2004 libsasldb.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?875 Dec ?2 ?2004 libsql.la > -rwxr-xr-x ? ?1 root root ?21348 Dec ?2 ?2004 libsql.so > -rwxr-xr-x ? ?1 root root ?21348 Dec ?2 ?2004 libsql.so.2 > -rwxr-xr-x ? ?1 root root ?21348 Dec ?2 ?2004 libsql.so.2.0.19 > From joh.hendriks at gmail.com Mon Jun 20 14:18:44 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Mon, 20 Jun 2011 13:18:44 +0200 Subject: [Dovecot] Error In-Reply-To: References: Message-ID: <4DFF2C94.9010703@gmail.com> sunhux G schreef: > I tested POP3 access from my laptop's Outlook which is on the same > subnet as the dovecot/postfix server (so there's no firewall in between > them& was able to get the emails in Outlook with following statuses > shown when "Test Connection" is clicked: > >> Tasks Status >> ===================== ======== >> Establish network connection Completed >> Find outgoing mail server (SMTP) Completed >> Find incoming mail server (POP3) Completed >> Log onto incoming mail server (POP3) Completed >> Send test e-mail message Completed > > # dovecot -n > # 2.0.9: /etc/dovecot/dovecot.conf > doveconf: Warning: NOTE: You can get a new clean config file with: > doveconf -n> dovecot-new.conf > doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:24: > ssl_disable has been renamed to ssl > # OS: Linux 2.6.12.6-xen0 i686 Red Hat Enterprise Linux ES release 4 > (Nahant Update 2) > disable_plaintext_auth = no > listen = * > mail_location = mbox:~/mail:INBOX=/pop3/spool/mail/%u > mbox_write_locks = fcntl > passdb { > driver = pam > } > protocols = pop3 imap > ssl = no > ssl_cert = ssl_key = userdb { > driver = passwd > } > > > However, maillog has the following errors (172.19.21.23 is my laptop). > Are they critical or what I hv to do to fix them: > > Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: warning: > smtpd_sasl_auth_enable is true, but SASL support is not compiled in > Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: connect from > unknown[172.19.21.23] > Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: EA32720006C: > client=unknown[172.19.21.23] > Jun 20 15:06:36 SmtpostixSvr postfix/cleanup[24151]: EA32720006C: > message-id=<20110620070635.EA32720006C at SmtpostixSvr.myportal.com> > Jun 20 15:06:36 SmtpostixSvr postfix/smtpd[24148]: disconnect from > unknown[172.19.21.23] > Jun 20 15:06:36 SmtpostixSvr postfix/qmgr[21020]: EA32720006C: > from=, size=705, nrcpt=1 (queue active) > Jun 20 15:06:36 SmtpostixSvr dovecot: auth: Error: > dlopen(/usr/lib/dovecot/auth/libdriver_pgsql.so) failed: > /usr/lib/dovecot/auth/libdriver_pgsql.so: undefined symbol: > PQescapeStringConn > Jun 20 15:06:36 SmtpostixSvr dovecot: auth: Error: > dlopen(/usr/lib/dovecot/auth/libdriver_pgsql.so) failed: > /usr/lib/dovecot/auth/libdriver_pgsql.so: undefined symbol: > PQescapeStringConn > Jun 20 15:06:36 SmtpostixSvr postfix/local[24152]: EA32720006C: > to=, > orig_to=, relay=local, delay=0.81, > delays=0.26/0.11/0/0.43, dsn=2.0.0, status=sent (delivered to command: > /usr/bin/procmail) > Jun 20 15:06:36 SmtpostixSvr postfix/qmgr[21020]: EA32720006C: removed > Jun 20 15:06:36 SmtpostixSvr dovecot: pop3-login: Login: > user=, method=PLAIN, rip=172.19.21.23, lip=172.19.21.27, > mpid=24157 > Jun 20 15:06:36 SmtpostixSvr dovecot: pop3(myUnixid): Disconnected: > Logged out top=0/0, retr=0/0, del=0/191, size=436234 > > ================================================ > > 1) ># 2.0.9: /etc/dovecot/dovecot.conf >doveconf: Warning: NOTE: You can get a new clean config file with: >doveconf -n> dovecot-new.conf >doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:24: >ssl_disable has been renamed to ssl ># OS: Linux 2.6.12.6-xen0 i686 Red Hat Enterprise Linux ES release 4 First it looks like you did an update from 1.x to 2.x You (need) to edit your dovecot.conf file see the message how to do this (make a backup of your old config) 2) >Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: warning: >smtpd_sasl_auth_enable is true, but SASL support is not compiled in >Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: connect from >unknown[172.19.21.23] Also your postfix has sasl parts enabled, but postfix is not compiled with SASL support. 3) The dovecot logs tells you there is somthing not ok with your postgreSQL. I do not use postgreSQL, so i can not help you with this one. regards, Johan Hendriks From linuxmail at 4lin.net Mon Jun 20 16:16:53 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Mon, 20 Jun 2011 15:16:53 +0200 Subject: [Dovecot] Performance settings for 500-1000User/per day Message-ID: <1308575813.7335.26.camel@pcdenny> hi, we have 2.0.13 running and most works well, but today we had some minor problems: The IMAP login process takes sometimes to much time. Over webmail (Roundcube 0.5.0.3) login wasn't sometimes possible, the normal clients hasn't any problems, until they login. We had only ~ 20-30 active accounts, but 50-60 sessions. The most are Apple products (Ip*/Mac/. ..)because they have 4 sessions or more open. Also we had ~212 processes with: dovenull 2065 4364 0 14:50:32 ? 0:00 dovecot/imap-login vmail 2403 4364 0 14:58:31 ? 0:00 dovecot/imap So, maybe, it's a miss configuration .... Any suggestions are welcome for 500-1000User per day. Our System is a Sun Sunfire X4250 with 16GB memory on Raidz1 Most settings are defaults, so I posting only my changes: # doveadm -N # 2.0.13: /usr/local/dovecot/etc/dovecot/dovecot.conf # OS: SunOS 5.10 i86pc zfs auth_cache_negative_ttl = 1 hours auth_cache_ttl = 1 hours auth_debug = yes auth_mechanisms = plain auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@ auth_username_format = %Lu auth_verbose = yes auth_verbose_passwords = no base_dir = /var/run/dovecot debug_log_path = /var/log/dovecot-debug.log default_login_user = dovenull default_process_limit = 100 disable_plaintext_auth = no hostname = hostname.fomain.foo info_log_path = /var/log/dovecot.log lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = no lda_original_recipient_header = login_greeting = I'm alive mail_debug = yes mail_gid = vmail mail_home = /imap/spool/%d/%1n/%n mail_location = maildir:/imap/spool/%d/%1n/%n:INDEX=/imap/spool/% d/indexes/%1n/%n mail_plugin_dir = /usr/local/dovecot/dovecot2/lib/dovecot/ mail_plugins = acl quota fts fts_squat mail_privileged_group = vmail mail_temp_dir = /imap/spool/tmp mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date imapflags namespace { hidden = no inbox = yes location = prefix = separator = / subscriptions = yes type = private } namespace { inbox = no location = maildir:/imap/spool/public prefix = public/ separator = / subscriptions = no type = public } passdb { args = /usr/local/dovecot/etc/dovecot/conf.d/dovecot-ldap.conf.ext driver = ldap } passdb { args = scheme=plain-md5 username_format=% Lu /usr/local/dovecot/etc/dovecot/other-users driver = passwd-file } plugin { acl = vfile:/imap/spool/%d/acl autocreate = Sent autocreate2 = Drafts autocreate3 = Trash autocreate4 = Spam autosubscribe = Sent autosubscribe2 = Drafts autosubscribe3 = Trash autosubscribe4 = Spam fts = squat fts_squat = partial=4 full=10 quota = maildir:User quota quota_rule2 = Trash:storage=+10%% quota_rule3 = Spam:storage=+20%% quota_warning = storage=80% % /usr/local/dovecot/dovecot2/bin/quota-warning.sh 80 quota_warning2 = storage=90% % /usr/local/dovecot/dovecot2/bin/quota-warning.sh 90 quota_warning3 = storage=95% % /usr/local/dovecot/dovecot2/bin/quota-warning.sh 95 sieve = /imap/spool/%d/%1n/%n/sieve/default.sieve sieve_dir = /imap/spool/%d/%1n/%n/sieve sieve_extensions = +imapflags trash = /usr/local/dovecot/etc/dovecot/conf.d/dovecot-trash.conf } postmaster_address = postmaster at domain.foo protocols = imap pop3 lmtp sieve recipient_delimiter = + rejection_reason = Your message to <%t> was automatically rejected:%n%r rejection_subject = Rejected: %s service auth { unix_listener /var/spool/postfix/private/auth { group = postdrop mode = 0600 user = postfix } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } process_min_avail = 8 vsz_limit = 1 G } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postdrop mode = 0666 user = postfix } } service managesieve-login { inet_listener sieve { port = 4190 } inet_listener sieve_deprecated { port = 2001 } } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } ssl_cert = From lcaron at lncsa.com Mon Jun 20 16:37:01 2011 From: lcaron at lncsa.com (Laurent CARON) Date: Mon, 20 Jun 2011 15:37:01 +0200 Subject: [Dovecot] Invalid cross-device link while trying to delete folder - Dovecot 2.0.7 Message-ID: <4DFF4CFD.7060300@lncsa.com> Hi, I'm having the following setup. 2 datastores mounted as: /home/ and /data/mail2/ I have 2 namespaces: namespace archives-baie { prefix = INBOX.Extra-001. hidden = no list = yes inbox = no location = maildir:/data/mail2/%u/Maildir type = private } namespace { inbox = yes location = prefix = INBOX. type = private } When trying to trash some folder from the second namespace, I get the following error in the logs: imap(USER): Error: rename(/data/mail2/USER/Maildir/.Archives.20112, /home/USER/Maildir/.Trash.20112) failed: Invalid cross-device link In my config I have: maildir_copy_with_hardlinks = no Do you have a clue about this issue ? Thanks From jimkarlsson82 at gmail.com Mon Jun 20 19:55:34 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Mon, 20 Jun 2011 09:55:34 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31741603.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> Message-ID: <31887336.post@talk.nabble.com> Robert Schetterer wrote: > > Am 31.05.2011 11:36, schrieb Theatre: >> >> Hi! >> >> I wonder how i can get subdirectories (.INBOX/***/*** etc...) in >> dovecot... >> I just stardet a mail server and when i tried to create it from the mail >> client (MS Outlook) it says that the server wont allow it... >> >> Anyone who knows a solution? >> >> > yes post your conf > > -- > Best Regards > > MfG Robert Schetterer > > Germany/Munich/Bavaria > > I tried to post it but it wont get accepted by the mailing list... Can i email the conf to you? Best Regards -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31887336.html Sent from the Dovecot mailing list archive at Nabble.com. From CMarcus at Media-Brokers.com Mon Jun 20 20:37:48 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 20 Jun 2011 13:37:48 -0400 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31887336.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> <31887336.post@talk.nabble.com> Message-ID: <4DFF856C.8080205@Media-Brokers.com> On 2011-06-20 12:55 PM, Theatre wrote: > I tried to post it but it wont get accepted by the mailing list... Can i > email the conf to you? Just paste it into the email body -- Best regards, Charles From jimkarlsson82 at gmail.com Mon Jun 20 20:43:17 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Mon, 20 Jun 2011 10:43:17 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <4DFF856C.8080205@Media-Brokers.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> <31887336.post@talk.nabble.com> <4DFF856C.8080205@Media-Brokers.com> Message-ID: <31887717.post@talk.nabble.com> tanstaafl_bh wrote: > > On 2011-06-20 12:55 PM, Theatre wrote: >> I tried to post it but it wont get accepted by the mailing list... Can i >> email the conf to you? > > Just paste it into the email body > > -- > > Best regards, > > Charles > > I have pasted it into the messege box but it still waiting to be accepted... -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31887717.html Sent from the Dovecot mailing list archive at Nabble.com. From CMarcus at Media-Brokers.com Mon Jun 20 20:48:13 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 20 Jun 2011 13:48:13 -0400 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31887717.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> <31887336.post@talk.nabble.com> <4DFF856C.8080205@Media-Brokers.com> <31887717.post@talk.nabble.com> Message-ID: <4DFF87DD.1020905@Media-Brokers.com> On 2011-06-20 1:43 PM, Theatre wrote: > tanstaafl_bh wrote: >> >> On 2011-06-20 12:55 PM, Theatre wrote: >>> I tried to post it but it wont get accepted by the mailing list... Can i >>> email the conf to you? >> Just paste it into the email body > I have pasted it into the messege box but it still waiting to be accepted... Then don't access the list via nabble and use a real mail client. Please don't impose your limitations on the rest of us... -- Best regards, Charles From linuxmail at 4lin.net Mon Jun 20 21:37:41 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Mon, 20 Jun 2011 20:37:41 +0200 Subject: [Dovecot] Performance settings for 500-1000User/per day In-Reply-To: <4DFF6C6E.4060907@esiee.fr> References: <1308575813.7335.26.camel@pcdenny> <4DFF6C6E.4060907@esiee.fr> Message-ID: hi, Am 20.06.2011 um 17:51 schrieb Frank Bonnet: > Did you check the kernel maximum open files option ? > > I had such troubles with a too low limit I thought, it's only a Linux problem? On the other hand, if so, I would assume, that I see some log infos, but I saw nothing ... cu denny From stan at hardwarefreak.com Tue Jun 21 04:50:58 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Mon, 20 Jun 2011 20:50:58 -0500 Subject: [Dovecot] Performance settings for 500-1000User/per day In-Reply-To: <1308575813.7335.26.camel@pcdenny> References: <1308575813.7335.26.camel@pcdenny> Message-ID: <4DFFF902.5060900@hardwarefreak.com> On 6/20/2011 8:16 AM, Denny Schierz wrote: > hi, > > we have 2.0.13 running and most works well, but today we had some minor > problems: The IMAP login process takes sometimes to much time. Over > webmail (Roundcube 0.5.0.3) login wasn't sometimes possible, the normal > clients hasn't any problems, until they login. > > We had only ~ 20-30 active accounts, but 50-60 sessions. The most are > Apple products (Ip*/Mac/. ..)because they have 4 sessions or more open. > > Also we had ~212 processes with: > > dovenull 2065 4364 0 14:50:32 ? 0:00 dovecot/imap-login > vmail 2403 4364 0 14:58:31 ? 0:00 dovecot/imap > > So, maybe, it's a miss configuration .... Any suggestions are welcome > for 500-1000User per day. It is customary, and normally required, that one submit server and client log errors relevant to a problem when posting to a help list. It baffles me that some people, in 2011, fail to provide even basic log information when submitting problem reports. Without such logging it is very difficult to help you. -- Stan From me at junc.org Tue Jun 21 11:43:42 2011 From: me at junc.org (Benny Pedersen) Date: Tue, 21 Jun 2011 10:43:42 +0200 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31887336.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> <31887336.post@talk.nabble.com> Message-ID: <4994f5d4a6fa2706792f81adfc4cb8f1@junc.org> On Mon, 20 Jun 2011 09:55:34 -0700 (PDT), Theatre wrote: > I tried to post it but it wont get accepted by the mailing list... > Can i > email the conf to you? then you only get help from him, or he will just say pay me :-) http://pastebin.com/ From jimkarlsson82 at gmail.com Tue Jun 21 11:51:38 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Tue, 21 Jun 2011 01:51:38 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <4DE4FC02.80301@schetterer.org> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> Message-ID: <31892392.post@talk.nabble.com> Robert Schetterer wrote: > > Am 31.05.2011 11:36, schrieb Theatre: >> >> Hi! >> >> I wonder how i can get subdirectories (.INBOX/***/*** etc...) in >> dovecot... >> I just stardet a mail server and when i tried to create it from the mail >> client (MS Outlook) it says that the server wont allow it... >> >> Anyone who knows a solution? >> >> > yes post your conf > > -- > Best Regards > > MfG Robert Schetterer > > Germany/Munich/Bavaria > > Here is the conf... http://pastebin.com/7hqxCMT6 Best Regards -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31892392.html Sent from the Dovecot mailing list archive at Nabble.com. From linuxmail at 4lin.net Tue Jun 21 12:11:12 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Tue, 21 Jun 2011 11:11:12 +0200 Subject: [Dovecot] Performance settings for 500-1000User/per day In-Reply-To: <4DFFF902.5060900@hardwarefreak.com> References: <1308575813.7335.26.camel@pcdenny> <4DFFF902.5060900@hardwarefreak.com> Message-ID: <1308647472.7335.39.camel@pcdenny> hi, Am Montag, den 20.06.2011, 20:50 -0500 schrieb Stan Hoeppner: > It is customary, and normally required, that one submit server and > client log errors relevant to a problem when posting to a help list. It > baffles me that some people, in 2011, fail to provide even basic log I know, that I didn't posted any logs, because there aren't any entries with problems. I switched on every debug function, but there is absolutely no hint, why the login process sometimes hangs. If you would take a look, you would see only acl settings (looking for ACLs, or quota etc.) but no errors or something else ... Thats the reason, why I didn't posted any logs. cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part URL: From me at junc.org Tue Jun 21 12:08:33 2011 From: me at junc.org (Benny Pedersen) Date: Tue, 21 Jun 2011 11:08:33 +0200 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31892392.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> Message-ID: <1a1776776769d4ada496b427f53c6222@junc.org> On Tue, 21 Jun 2011 01:51:38 -0700 (PDT), Theatre wrote: > http://pastebin.com/7hqxCMT6 namespace is not configured if more help needed paste dovecot -n not just content in dovecot.conf From stephan at rename-it.nl Tue Jun 21 12:23:52 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 21 Jun 2011 11:23:52 +0200 Subject: [Dovecot] Out of office reminder with sieve In-Reply-To: <4DFF0E91.2030804@gmail.com> References: <4DFF0E91.2030804@gmail.com> Message-ID: <4E006328.5030907@rename-it.nl> Op 20-6-2011 11:10, Johan Hendriks schreef: > I found in the wiki the out of office reminder option. > But the sample is looking for a .out-of-office file. > I can not find out how to create this file. > I use roundcube to set the out of office with sieve. > > what is the best way to implement this. Could you point me to that wiki page? I don't quite understand what you are talking about. > Second question, where are the addresses stored that have send an > e-mail to the user who has out of office set? This is recorded in ~/.dovecot.lda-dupes Regards, Stephan. From joh.hendriks at gmail.com Tue Jun 21 12:39:30 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Tue, 21 Jun 2011 11:39:30 +0200 Subject: [Dovecot] Out of office reminder with sieve In-Reply-To: <4E006328.5030907@rename-it.nl> References: <4DFF0E91.2030804@gmail.com> <4E006328.5030907@rename-it.nl> Message-ID: <4E0066D2.4000804@gmail.com> Stephan Bosch schreef: > Op 20-6-2011 11:10, Johan Hendriks schreef: >> I found in the wiki the out of office reminder option. >> But the sample is looking for a .out-of-office file. >> I can not find out how to create this file. >> I use roundcube to set the out of office with sieve. >> >> what is the best way to implement this. > > Could you point me to that wiki page? I don't quite understand what > you are talking about. > >> Second question, where are the addresses stored that have send an >> e-mail to the user who has out of office set? > > This is recorded in ~/.dovecot.lda-dupes > > Regards, > > Stephan. Off cource Here is the part i am talking about. Alerts If you want to give the user's client some warning notification, you can do it just by writing it to stdout. But note: * Not all clients show the alerts, even though IMAP RFC requires it. * IMAP protocol requires CRLF (\r\n) line feeds. Some clients will break if you only send LF. #!/bin/sh if [ -f ~/.out-of-office ]; then printf "* OK [ALERT] You're still marked as being out of office.\r\n" fi exec "$@" it is on this page. http://wiki2.dovecot.org/PostLoginScripting Maybe i can check the ~/.dovecot.lda-dupes file instead. Is that file being deleted if the out of office is disabled, or is it cleaned only? Thanks for your time. Johan Hendriks From jimkarlsson82 at gmail.com Tue Jun 21 12:43:34 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Tue, 21 Jun 2011 02:43:34 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <1a1776776769d4ada496b427f53c6222@junc.org> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> <1a1776776769d4ada496b427f53c6222@junc.org> Message-ID: <31892708.post@talk.nabble.com> Benny Pedersen wrote: > > On Tue, 21 Jun 2011 01:51:38 -0700 (PDT), Theatre wrote: > >> http://pastebin.com/7hqxCMT6 > > namespace is not configured > > if more help needed paste dovecot -n > > not just content in dovecot.conf > > > hmm ok. My knowledge is very limited but i conf the namespace like this. namespace private { separator = / prefix = "#mbox/" location = mbox:~/mail:INBOX=/var/mail/%u inbox = yes hidden = yes } But its not working anyway, what is missing? -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31892708.html Sent from the Dovecot mailing list archive at Nabble.com. From hugo.monteiro at fct.unl.pt Tue Jun 21 14:17:48 2011 From: hugo.monteiro at fct.unl.pt (Hugo Monteiro) Date: Tue, 21 Jun 2011 12:17:48 +0100 Subject: [Dovecot] UIDL and message migration Message-ID: <4E007DDC.4020807@fct.unl.pt> Hello, I'm in the process of migrating accounts between two dovecot servers. An old server running ancient 1.0.15 and a new server running 1.2.15. Account migration is going to be gradual and so i would like to use imapsync to move messages and subscriptions from one server to the other. The only problem so far is with POP users. After doing an account migration with imapsync, and although both servers share the same pop3_uidl_format = %08Xu%08Xv, the client downloads every message that was already on the server. Any pointers would be very much appreciated. Best Regards, Hugo Monteiro. From me at junc.org Tue Jun 21 14:37:33 2011 From: me at junc.org (Benny Pedersen) Date: Tue, 21 Jun 2011 13:37:33 +0200 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31892708.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> <1a1776776769d4ada496b427f53c6222@junc.org> <31892708.post@talk.nabble.com> Message-ID: <687491ca953d6332d4315dad1a971f83@junc.org> On Tue, 21 Jun 2011 02:43:34 -0700 (PDT), Theatre wrote: > Benny Pedersen wrote: >> >> On Tue, 21 Jun 2011 01:51:38 -0700 (PDT), Theatre wrote: >> >>> http://pastebin.com/7hqxCMT6 >> >> namespace is not configured >> >> if more help needed paste dovecot -n >> >> not just content in dovecot.conf >> >> >> > > hmm ok. My knowledge is very limited but i conf the namespace like > this. > namespace private { > separator = / > prefix = "#mbox/" > location = mbox:~/mail:INBOX=/var/mail/%u > inbox = yes > hidden = yes > } > > But its not working anyway, what is missing? try add list = yes, change hidden = yes to no, add subscriptions = yes post exact error logs if that does not solve it From jimkarlsson82 at gmail.com Tue Jun 21 14:50:20 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Tue, 21 Jun 2011 04:50:20 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <687491ca953d6332d4315dad1a971f83@junc.org> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> <1a1776776769d4ada496b427f53c6222@junc.org> <31892708.post@talk.nabble.com> <687491ca953d6332d4315dad1a971f83@junc.org> Message-ID: <31893428.post@talk.nabble.com> Benny Pedersen wrote: > > On Tue, 21 Jun 2011 02:43:34 -0700 (PDT), Theatre wrote: >> Benny Pedersen wrote: >>> >>> On Tue, 21 Jun 2011 01:51:38 -0700 (PDT), Theatre wrote: >>> >>>> http://pastebin.com/7hqxCMT6 >>> >>> namespace is not configured >>> >>> if more help needed paste dovecot -n >>> >>> not just content in dovecot.conf >>> >>> >>> >> >> hmm ok. My knowledge is very limited but i conf the namespace like >> this. >> namespace private { >> separator = / >> prefix = "#mbox/" >> location = mbox:~/mail:INBOX=/var/mail/%u >> inbox = yes >> hidden = yes >> } >> >> But its not working anyway, what is missing? > > > try add list = yes, change hidden = yes to no, add subscriptions = yes > > post exact error logs if that does not solve it > > > > Starting Dovecot Imap: Error: Error in configuration file /etc/dovecot.conf line 233: Unknown setting: subscriptions Fatal: Invalid configuration in /etc/dovecot.conf [FAILED] -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31893428.html Sent from the Dovecot mailing list archive at Nabble.com. From fusionstream at gmail.com Tue Jun 21 17:11:23 2011 From: fusionstream at gmail.com (fusionstream) Date: Tue, 21 Jun 2011 22:11:23 +0800 Subject: [Dovecot] Custom Trash (etc) location Message-ID: <4E00A68B.7090500@gmail.com> Hi there. I have dovecot 1.2.17 installed on me system. I'd like to create a gmail-esque imap tree where all imap folders except for the inbox are in a subdirectory(?). More importantly, I'd like the email client (specifically thunderbird) to be able to recognise the folders and thusly give it a special trash/junk/etc icon which I presume also makes trash and junk go to, well the truash and junk folders automagically. Based on searching the web, I believe that namespaces are the solution. I believed that I had set it up to be 1) Inbox 2) IMAP - Drafts - Junk - Trash - etc However, when trying to use namespaces, I get IMAP.Drafts, IMAP.Junk and all the other folders also appearing in INBOX, in addition to another top-level IMAP.*. What am I doing wrong? If I understand the solutions posted on the web correctly, solving this (resulting in only one of each type of folder) should make thunderbird automagically recognise these "special folders". This is my configuration: # 1.2.17: /etc/dovecot.conf # OS: Linux 2.6.18-238.12.1.el5 i686 CentOS release 5.6 (Final) ext3 ssl_ca_file: /etc/postfix/ssl/cacert.pem ssl_cert_file: /etc/postfix/ssl/smtpd.crt ssl_key_file: /etc/postfix/ssl/smtpd.key login_dir: /var/run/dovecot/login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login first_valid_uid: *[removed]* last_valid_uid: *[removed]* first_valid_gid: *[removed]* last_valid_gid: *[removed]* mail_location: maildir:/var/spool/mail/virtual/%d/%n mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_plugins(default): autocreate mail_plugins(imap): autocreate mail_plugins(pop3): mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 imap_client_workarounds(default): outlook-idle delay-newmail imap_client_workarounds(imap): outlook-idle delay-newmail imap_client_workarounds(pop3): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh namespace: type: private separator: . prefix: INBOX. inbox: yes list: yes subscriptions: yes namespace: type: private separator: . prefix: IMAP. list: yes subscriptions: yes lda: postmaster_address: postmaster at example.com auth default: mechanisms: plain login user: dovecot-auth passdb: driver: sql args: /etc/dovecot/mysql.conf userdb: driver: sql args: /etc/dovecot/mysql.conf socket: type: listen client: path: /var/spool/postfix/private/auth mode: 509 user: postfix group: postfix plugin: autocreate: IMAP.Trash autocreate2: IMAP.Spam autocreate3: IMAP.Sent Mail autocreate4: IMAP.Drafts autosubscribe: IMAP.Trash autosubscribe2: IMAP.Spam autosubscribe3: IMAP.Sent Mail autosubscribe4: IMAP.Drafts Any help appreciated. Cheers. From gouravjoshi at gmail.com Tue Jun 21 18:15:06 2011 From: gouravjoshi at gmail.com (=?UTF-8?B?4KSX4KWM4KSw4KS1IOCknOCli+CktuClgA==?=) Date: Tue, 21 Jun 2011 20:45:06 +0530 Subject: [Dovecot] Dovecot 1.1.20+NFS OS changed issue Message-ID: Hi, I am facing a wierd issue on dovecot while migrating OS of the server. I have CentOS 5.2 32bit OS , Dovecot 1.1.20 with NFS on the server. When I am migrating it to CenOS 5.6 32bit with same Dovecot version. I compiled the same version i.e. 1.1.20 again. Now when I check the number of connection on this new server I can see only 8-10 connections for IMAP and 8-10 for POP3, where on old server I can still see the number of connections crosses 500+. I checked system level configuration which I found identical, limits set to same as old server, still no change in number of connections. I even tried the above exercise on CentOS 5.6 64bit version. again the result is same. I have tried all the changes/configurations I could think of. Can you please help me to sort out this issue? dovecot -n output ; ============================================= # 1.1.20: /usr/local/etc/dovecot.conf # OS: Linux 2.6.28 i686 CentOS release 5.6 (Final) syslog_facility: local0 protocols: imap pop3 listen(default): *:143 listen(imap): *:143 listen(pop3): *:110 ssl_disable: yes disable_plaintext_auth: no login_dir: /usr/local/var/run/dovecot/login login_executable(default): /usr/local/libexec/dovecot/imap-login login_executable(imap): /usr/local/libexec/dovecot/imap-login login_executable(pop3): /usr/local/libexec/dovecot/pop3-login login_greeting: Welcome to MailServe Popserver. login_process_per_connection: no max_mail_processes: 800 mail_max_userip_connections(default): 150 mail_max_userip_connections(imap): 150 mail_max_userip_connections(pop3): 300 verbose_proctitle: yes first_valid_uid: 99 first_valid_gid: 99 mail_location: maildir:~/Maildir:INDEX=/indexes/%h:CONTROL=/indexes/%h mmap_disable: yes mail_nfs_storage: yes mail_nfs_index: yes mail_executable(default): /usr/local/libexec/dovecot/imap mail_executable(imap): /usr/local/libexec/dovecot/imap mail_executable(pop3): /usr/local/libexec/dovecot/pop3 mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugin_dir(default): /usr/local/lib/dovecot/imap mail_plugin_dir(imap): /usr/local/lib/dovecot/imap mail_plugin_dir(pop3): /usr/local/lib/dovecot/pop3 pop3_no_flag_updates(default): no pop3_no_flag_updates(imap): no pop3_no_flag_updates(pop3): yes pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls lda: postmaster_address: postmaster at example.com mail_plugins: cmusieve quota mail_log mail_plugin_dir: /usr/local/lib/dovecot/lda log_path: /var/log/dovecot-deliver.log auth_socket_path: /var/run/dovecot/auth-master auth default: worker_max_count: 5 passdb: driver: sql args: /usr/local/etc/dovecot-mysql.conf userdb: driver: sql args: /usr/local/etc/dovecot-mysql.conf userdb: driver: prefetch socket: type: listen client: path: /var/run/dovecot/auth-client mode: 432 user: nobody group: nobody master: path: /var/run/dovecot/auth-master mode: 384 user: nobody group: nobody ============================================= Have a nice time, Gourav Joshi Have a look at www.linuxquestions.in From yzhou at medplus.com Tue Jun 21 20:34:31 2011 From: yzhou at medplus.com (Zhou, Yan) Date: Tue, 21 Jun 2011 13:34:31 -0400 Subject: [Dovecot] DoveCot LDA/Postfix deliver by address Message-ID: Hi there, I am using DoveCot 1.0.7 and virtual users. We want to integrate with Postfix 2.3.3 to use DoveCot LDA to deliver messages to user mailbox. All users are stored in LDAP. DoveCot looks up user by LDAP access. Our user name is not necessarily part of the address. For instance, address "zhouy at xxxx" may be with user "yzhou", thus all messages to "zhouy at xxxx" should go to /home/vmail/yzhou/Maildir I do not see how LDA can support a two-step lookup: 1. Look up user from the given address, 2. Lookup user mail directory from the user in step 1. My understanding is that /etc/dove-ldap.conf is a one-step lookup, it only does user lookup (without password lookup). Any suggestions? Thanks, Yan Confidentiality Notice: The information contained in this electronic transmission is confidential and may be legally privileged. It is intended only for the addressee(s) named above. If you are not an intended recipient, be aware that any disclosure, copying, distribution or use of the information contained in this transmission is prohibited and may be unlawful. If you have received this transmission in error, please notify us by telephone (513) 229-5500 or by email (postmaster at MedPlus.com). After replying, please erase it from your computer system. From yzhou at medplus.com Tue Jun 21 20:37:55 2011 From: yzhou at medplus.com (Zhou, Yan) Date: Tue, 21 Jun 2011 13:37:55 -0400 Subject: [Dovecot] DoveCot LDA/Postfix get address rather than user from messages Message-ID: Hi there, We are using Postfix and DoveCot 1.0.7, using DoveCot LDA/Postfix to deliver messages to mailboxes via LDAP lookup. My Postfix 2.3.3 /etc/postfix/master.cf reads like this dovecot unix - n n - - pipe flags=Rhu user=hubdirect argv=/usr/libexec/dovecot/deliver -f ${sender} -d ${recipient} And my /etc/dovecot-ldap.conf reads like this: user_filter = (&(objectClass=DirectUser)(username=%n)) user_attrs = userreference=user,usermaildirectory=mail,userhomedirectory=home I find the above "%n" value in "user_filter" I am getting is always the address, not "user part in user at domain" as the documentation says. Did I miss anything? Thanks, Yan Confidentiality Notice: The information contained in this electronic transmission is confidential and may be legally privileged. It is intended only for the addressee(s) named above. If you are not an intended recipient, be aware that any disclosure, copying, distribution or use of the information contained in this transmission is prohibited and may be unlawful. If you have received this transmission in error, please notify us by telephone (513) 229-5500 or by email (postmaster at MedPlus.com). After replying, please erase it from your computer system. From CMarcus at Media-Brokers.com Tue Jun 21 20:53:31 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 21 Jun 2011 13:53:31 -0400 Subject: [Dovecot] DoveCot LDA/Postfix deliver by address In-Reply-To: References: Message-ID: <4E00DA9B.4070004@Media-Brokers.com> On 2011-06-21 1:34 PM, Zhou, Yan wrote: > I am using DoveCot 1.0.7 > Any suggestions? Upgrade first... -- Best regards, Charles From dovecot.user at seibercom.net Tue Jun 21 21:27:01 2011 From: dovecot.user at seibercom.net (Jerry) Date: Tue, 21 Jun 2011 14:27:01 -0400 Subject: [Dovecot] DoveCot LDA/Postfix deliver by address In-Reply-To: <4E00DA9B.4070004@Media-Brokers.com> References: <4E00DA9B.4070004@Media-Brokers.com> Message-ID: <20110621142701.6f4edeb6@scorpio> On Tue, 21 Jun 2011 13:53:31 -0400 Charles Marcus articulated: > On 2011-06-21 1:34 PM, Zhou, Yan wrote: > > I am using DoveCot 1.0.7 > > > > > Any suggestions? > > Upgrade first... Both Dovecot and Postfix. Postfix <=2.4 are no longer supported. -- Jerry ? Dovecot.user at seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __________________________________________________________________ From japi76 at gmail.com Tue Jun 21 22:38:32 2011 From: japi76 at gmail.com (Javier) Date: Tue, 21 Jun 2011 16:38:32 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: <4DFDDAC5.7030507@rename-it.nl> References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: Thanks for the response. I'll try updating dovecot to latest version but this will take me some time, so other options are welcome. It seems like submission_host is from v2.0.10+ and I have 2.0.9 :( Sending mail with echo "test" | sendmail xxxx at xxxx.com works fine. Thanks Javier On Sun, Jun 19, 2011 at 8:17 AM, Stephan Bosch wrote: > Op 16-6-2011 18:24, Javier schreef: >> >> Maybe it is useful to know, that vacation does the same thing, an >> error in the logs but the response arrives to the sender. >> >> Log file also show some error with waitpid() > > First thing to notice is that your Dovecot is relatively old, so this > problem may be fixed already. Also, recent Dovecot (v2.0) versions support > sending messages directly to an SMTP (smart)host instead of using the > sendmail binary. > > Looks like your sendmail binary terminates inappropriately (or Dovecot > thinks it does). Can you successfully send mail from the command line using > the sendmail tool? > > Regards, > > Stephan. > > From japi76 at gmail.com Tue Jun 21 22:52:09 2011 From: japi76 at gmail.com (Javier) Date: Tue, 21 Jun 2011 16:52:09 -0300 Subject: [Dovecot] UIDL and message migration In-Reply-To: <4E007DDC.4020807@fct.unl.pt> References: <4E007DDC.4020807@fct.unl.pt> Message-ID: Hugo, I have been there too. Check if you are changing the server address in the e-mail client. If you are doing so, most clients check uidls based on this (at least in my tests). If you keep the hostname intact and the uidls are the same, the e-mails won't be downloaded again. You can do this messing with the hosts file in the client computer. To check if the uidls are the same, just launch a telnet session in both POP servers and issue a UIDL command and compare the output. Javier On Tue, Jun 21, 2011 at 8:17 AM, Hugo Monteiro wrote: > Hello, > > I'm in the process of migrating accounts between two dovecot servers. An old > server running ancient 1.0.15 and a new server running 1.2.15. > Account migration is going to be gradual and so i would like to use imapsync > to move messages and subscriptions from one server to the other. The only > problem so far is with POP users. After doing an account migration with > imapsync, and although both servers share the same pop3_uidl_format = > %08Xu%08Xv, the client downloads every message that was already on the > server. > > Any pointers would be very much appreciated. > > Best Regards, > > Hugo Monteiro. > From tom at whyscream.net Tue Jun 21 23:56:20 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Tue, 21 Jun 2011 22:56:20 +0200 Subject: [Dovecot] DoveCot LDA/Postfix deliver by address In-Reply-To: References: Message-ID: <4E010574.1010303@whyscream.net> On 21/06/11 19:34, Zhou, Yan wrote: > Hi there, > > I am using DoveCot 1.0.7 and virtual users. We want to integrate with > Postfix 2.3.3 to use DoveCot LDA to deliver messages to user mailbox. > All users are stored in LDAP. DoveCot looks up user by LDAP access. > > Our user name is not necessarily part of the address. For instance, > address "zhouy at xxxx" may be with user "yzhou", thus all messages to > "zhouy at xxxx" should go to /home/vmail/yzhou/Maildir > > I do not see how LDA can support a two-step lookup: 1. Look up user > from the given address, 2. Lookup user mail directory from the user in > step 1. > > My understanding is that /etc/dove-ldap.conf is a one-step lookup, it > only does user lookup (without password lookup). > > Any suggestions? > Typically, you would lookup the user in postfix, so you can let postfix deliver to the user 'yzhou' in stead of the mailaddress 'zhouy at xxxx'. f.i. a postfix /etc/aliases entry: zhouy: yzhou -- Regards, Tom From hugo.monteiro at fct.unl.pt Wed Jun 22 01:51:22 2011 From: hugo.monteiro at fct.unl.pt (Hugo Monteiro) Date: Tue, 21 Jun 2011 23:51:22 +0100 Subject: [Dovecot] UIDL and message migration In-Reply-To: References: <4E007DDC.4020807@fct.unl.pt> Message-ID: <4E01206A.1050500@fct.unl.pt> On 06/21/2011 08:52 PM, Javier wrote: > Hugo, > > I have been there too. > Check if you are changing the server address in the e-mail client. If > you are doing so, most clients check uidls based on this (at least in > my tests). > > If you keep the hostname intact and the uidls are the same, the > e-mails won't be downloaded again. You can do this messing with the > hosts file in the client computer. > > To check if the uidls are the same, just launch a telnet session in > both POP servers and issue a UIDL command and compare the output. > > Javier > Hello Javier, The hostname is intact since all pop/imap are being routed through a proxy. The problem is that using imapsync, for message migration, the uilds don't stay intact. I was hoping someone would know a tool, similar to imapsync, that would provide such a functionality. Alternately i can always scp/tar the messages from one server to the other, but for migration implementation reasons i would prefer imapsync, or the like. Regards, Hugo Monteiro. -- fct.unl.pt:~# cat .signature Hugo Monteiro Email : hugo.monteiro at fct.unl.pt Telefone : +351 212948300 Ext.15307 Web : http://hmonteiro.net Divis?o de Inform?tica Faculdade de Ci?ncias e Tecnologia da Universidade Nova de Lisboa Quinta da Torre 2829-516 Caparica Portugal Telefone: +351 212948596 Fax: +351 212948548 www.fct.unl.pt apoio at fct.unl.pt fct.unl.pt:~# _ From ml at smtp.fakessh.eu Wed Jun 22 04:18:34 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Wed, 22 Jun 2011 03:18:34 +0200 Subject: [Dovecot] sieve problem email silently discard Message-ID: <201106220318.40833.ml@smtp.fakessh.eu> hello folks hello Timo hello all the guru I met a few times the problem or an email that passes through a sieve script is silently discard after delivery but never returned to the inbox all testimonials are welcome -- ?http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 ?gpg --keyserver pgp.mit.edu --recv-key 092164A7 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From fusionstream at gmail.com Wed Jun 22 03:55:58 2011 From: fusionstream at gmail.com (fusionstream) Date: Wed, 22 Jun 2011 08:55:58 +0800 Subject: [Dovecot] LIST-EXTENDED support? Message-ID: <4E013D9E.70805@gmail.com> Hi there. Can I check if LIST-EXTENDED refers to RFC 6154 (http://tools.ietf.org/html/rfc6154), rfc for special use mailboxes. I'd like to specify a designated folder as \Spam and etc. Googling "dovecot list-extended" and "dovecot special use" suggests that dovecot supports this feature (via patch logs and 1 bug report for Mozilla Thunderbird which suggests that dovecot supports this). However when trying to test this feature via thunderbird, it would seem to suggest that it is not currently possible. (Moving folders that Thunderbird has created forces thunderbird to recreate said folder in it's original location) # dovecot --version 1.2.17 Any help/pointers appreciated. Cheers. From bind at enas.net Wed Jun 22 11:02:34 2011 From: bind at enas.net (Urban Loesch) Date: Wed, 22 Jun 2011 10:02:34 +0200 Subject: [Dovecot] Panic: doveadm quota get -A Message-ID: <4E01A19A.4070808@enas.net> Hi, I'm new to the list and I'm using dovecot since 2 months. Still in progress to migrating from Stalker (Communigate Pro) to Dovecot. Today I upgraded from Dovecot 2.0.13-0~auto+27 (used form the Mirror xi.rename-it.nl - stable-auto) to 2:2.0.13-0~auto+48. List of installed packages: ii dovecot-common 2:2.0.13-0~auto+48 secure mail server that supports mbox, maildir, dbox and mdbox mailboxes ii dovecot-imapd 2:2.0.13-0~auto+48 secure IMAP server that supports mbox, maildir, dbox and mdbox mailboxes ii dovecot-lmtpd 2:2.0.13-0~auto+48 secure LMTP server for Dovecot ii dovecot-managesieved 2:2.0.13-0~auto+48 secure ManageSieve server for Dovecot ii dovecot-mysql 2:2.0.13-0~auto+48 MySQL support for Dovecot ii dovecot-pop3d 2:2.0.13-0~auto+48 secure POP3 server that supports mbox, maildir, dbox and mdbox mailboxes ii dovecot-sieve 2:2.0.13-0~auto+48 sieve filters support for Dovecot It seems all is working fine, except "doveadm quota get -A". It gives me the following error: # doveadm quota get -A doveadm: Panic: file doveadm-print-table.c: line 58 (doveadm_calc_header_length): assertion failed: ((value_count % hdr_count) == 0) doveadm: Error: Raw backtrace: /usr/lib/dovecot/libdovecot.so.0(+0x3fd0a) [0x7fb901d0fd0a] -> /usr/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x32) [0x7fb901d0fdf2] -> /usr/lib/dovecot/libdovecot.so.0(i_error+0) [0x7fb901ce916f] -> doveadm() [0x416bed] -> doveadm(doveadm_print_flush+0x1f) [0x40f1cf] -> doveadm() [0x40a92d] -> doveadm(doveadm_mail_try_run+0x11c) [0x40acfc] -> doveadm(main+0x381) [0x410761] -> /lib/libc.so.6(__libc_start_main+0xfd) [0x7fb901581c4d] -> doveadm() [0x409e09] Aborted I also tried the versions 2.0.13-0~auto+45 - 47 from xi.rename-it.nl. Same thing. Have you any idea how i can fix this. Downgrade to a 2.0.13-0~auto+27 is not possible because i have to fix this error to: http://hg.dovecot.org/dovecot-2.0/rev/09b8701362a4 Many thanks and regards Urban Loesch From stephan at rename-it.nl Wed Jun 22 11:21:25 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 10:21:25 +0200 Subject: [Dovecot] sieve problem email silently discard In-Reply-To: <201106220318.40833.ml@smtp.fakessh.eu> References: <201106220318.40833.ml@smtp.fakessh.eu> Message-ID: <4E01A605.4060401@rename-it.nl> Op 22-6-2011 3:18, ml at smtp.fakessh.eu schreef: > hello folks > hello Timo > hello all the guru > > I met a few times the problem or an email that passes through a sieve script > is silently discard > after delivery but never returned to the inbox > > all testimonials are welcome We cannot say much about this problem, unless we get some more information: 1) What is your configuration? Provide the output of dovecot -n. 2) Is it reproducible somehow? - What is the Sieve script you see this behavior for? Or does it happen for all users? - Is there a specific kind of incoming message that gets discarded all the time? 3) Is there any error or other message in the logs that may explain this behavior? Regards, Stephan. From claudio.prono at atpss.net Wed Jun 22 11:24:59 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 10:24:59 +0200 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database Message-ID: <4E01A6DB.3090807@atpss.net> Hello all, I have a strange message into the logs of dovecot, il says something like: Jun 22 10:18:07 lda(claudio at domain.com): Error: User claudio at domain.com doesn't have home dir set, disabling duplicate database But the mail arrives correctly, and no problems at all. I have googled a little about, and i have found a post it says to put mail_home and not home into the plugin part of the configuration, but this is not my problem.. Here is my conf: # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.37.6-0.5-desktop x86_64 openSUSE 11.4 (x86_64) ext3 auth_mechanisms = plain login first_valid_gid = 51 first_valid_uid = 51 info_log_path = /var/log/dovecot-inf.log last_valid_gid = 51 last_valid_uid = 51 log_path = /var/log/dovecot-err.log mail_location = maildir:/var/mail/virtual/%d/%u managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { hidden = no inbox = yes list = yes location = prefix = INBOX. subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } plugin { mail_home = /var/mail/virtual/%d/%u/ quota = maildir:User quota quota_warning = storage=80%% /usr/bin/quota_warning.sh 80 quota_warning2 = storage=90%% /usr/bin/quota_warning.sh 90 quota_warning3 = storage=99%% /usr/bin/quota_warning.sh 90 sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } protocols = imap pop3 sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { mode = 0600 } unix_listener auth-userdb { group = nobody mode = 0660 user = postfix } } service imap-login { inet_listener imap { address = 127.0.0.1 port = 143 } inet_listener imaps { address = * port = 993 } } service managesieve-login { executable = /usr/lib/dovecot/managesieve-login } service managesieve { executable = /usr/lib/dovecot/managesieve } ssl_ca = hi, I want to use two backends f?r DoveCot. One generated file from the LDAP tree, and the real LDAP. The first backend is generated from a cronjob thats reads the whole ldap server and converts them into a DoveCot passwd file. I red in the Wiki, if the user password isn't correct, than DoveCot asks the second backend (LDAP). Is this correct? Because, the the user can change his password, but Cron generates only every hour the file. So the password in the passwd-file isn't correct, until Cron runs again. The second, what happens, if Dovecot reads the file and in the same moment, Cron generate the new file? Does he change to the second backend? Or do I (the user) get an error? cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part URL: From claudio.prono at atpss.net Wed Jun 22 14:36:55 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 13:36:55 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4DF7CC1C.60807@rename-it.nl> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> Message-ID: <4E01D3D7.2000208@atpss.net> Il 14/06/2011 23.01, Stephan Bosch ha scritto: > Op 14-6-2011 10:06, Claudio Prono schreef: >> Hello all, >> >> I am testing Dovecot 2.0.13, with sieve for the vacation. >> >> I have some problems with the :regex as i can see... >> >> An example: > > > I didn't know Horde Ingo produces such horribly ugly Sieve code; the > header checks are unnecessary and the regexes are highly convolved and > should probably be substituted with a `date' test. > > >> No vacation is performed..... >> >> Then, if i modify the script commenting all the regex for the date, the >> result is the following: > > >> But the date is right: >> >> date >> Fri Jun 10 17:22:14 CEST 2011 >> >> So, what is wrong? Any help is well accepted, that script with dovecot >> 1.x is working correctly.... So, what is changed in dovecot 2.0 sieve? > > I'm currently on vacation and I can't quite get my head around these > regexes. The best thing you can do now is debug it in more detail by > using the sieve-test trace debugging features (using -t and -T > options), as documented in the man page. This way, you can see what is > matched how and which actions are performed. Then, you can narrow it > down to one specific failing test. > > Regards, > > Stephan. > I have tryied with the debug level higher of sieve-test, and the result is the following: sieve-test -t - -Tlevel=matching /tmp/.dovecot.sieve 1308741872.M858197P18322.mail2\,S\=1138\,W\=1168 ## Started executing script '.dovecot' 7: exists test 7: header `list-help' is missing 7: headers are missing 7: jump if result is true 7: not jumping 7: header test 7: starting `:is' match with `i;ascii-casemap' comparator: 7: extracting `Precedence' headers from message 7: finishing match with result: not matched 7: jump if result is true 7: not jumping 7: header test 7: starting `:matches' match with `i;ascii-casemap' comparator: 7: extracting `To' headers from message 7: matching value `claudio ' 7: with key `Multiple recipients of*' => 0 7: finishing match with result: not matched 7: jump if result is true 7: not jumping 8: header test 8: starting `:regex' match with `i;ascii-casemap' comparator: 8: extracting `Received' headers from message 8: matching value `from private (charon.mediaservice.net [213.254.20.254])' 8: with regex `^.*(2011) (\(.*\) )?..:..:.. (\(.*\) )?(\+|\-)....( \(.*\))?$' [id=0] => 0 8: finishing match with result: not matched 8: jump if result is false 8: jumping to line 19 ## Finished executing script '.dovecot' Performed actions: (none) Implicit keep: * store message in folder: INBOX sieve-test(root): Info: final result: success As i can see, the regex of the year is not matching.... but why? Also, the other regex for the Month or the day, are not matching (tested commented out). Any hint? Cordially, Claudio Prono. -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From info at simonecaruso.com Wed Jun 22 15:17:43 2011 From: info at simonecaruso.com (Simone Caruso) Date: Wed, 22 Jun 2011 14:17:43 +0200 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database In-Reply-To: <4E01A6DB.3090807@atpss.net> References: <4E01A6DB.3090807@atpss.net> Message-ID: <4E01DD67.8060805@simonecaruso.com> On 22/06/2011 10:24, Claudio Prono wrote: > mail_location = maildir:/var/mail/virtual/%d/%u > mail_home = /var/mail/virtual/%d/%u/ Dovecot complains because mail_home should be -ne mail_location -- Simone Caruso IT Consultant p.iva: 03045250838 From stephan at rename-it.nl Wed Jun 22 15:29:29 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 14:29:29 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E01D3D7.2000208@atpss.net> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> Message-ID: <4E01E029.5030208@rename-it.nl> Op 22-6-2011 13:36, Claudio Prono schreef: > Il 14/06/2011 23.01, Stephan Bosch ha scritto: >> >> I'm currently on vacation and I can't quite get my head around these >> regexes. The best thing you can do now is debug it in more detail by >> using the sieve-test trace debugging features (using -t and -T >> options), as documented in the man page. This way, you can see what is >> matched how and which actions are performed. Then, you can narrow it >> down to one specific failing test. > I have tryied with the debug level higher of sieve-test, and the result > is the following: > > sieve-test -t - -Tlevel=matching /tmp/.dovecot.sieve > 1308741872.M858197P18322.mail2\,S\=1138\,W\=1168 > > 8: header test > 8: starting `:regex' match with `i;ascii-casemap' comparator: > 8: extracting `Received' headers from message > 8: matching value `from private (charon.mediaservice.net > [213.254.20.254])' > 8: with regex `^.*(2011) (\(.*\) )?..:..:.. (\(.*\) > )?(\+|\-)....( \(.*\))?$' [id=0] => 0 > 8: finishing match with result: not matched > As i can see, the regex of the year is not matching.... but why? Also, > the other regex for the Month or the day, are not matching (tested > commented out). Well, for one, in the value being matched there is no date. Could you provide an example of a failing message so we can check why the data retrieved from the Received header does not contain any date info? Regards, Stephan. From claudio.prono at atpss.net Wed Jun 22 15:48:22 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 14:48:22 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E01E029.5030208@rename-it.nl> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> <4E01E029.5030208@rename-it.nl> Message-ID: <4E01E496.7090707@atpss.net> Il 22/06/2011 14.29, Stephan Bosch ha scritto: > > Op 22-6-2011 13:36, Claudio Prono schreef: >> Il 14/06/2011 23.01, Stephan Bosch ha scritto: >>> >>> I'm currently on vacation and I can't quite get my head around these >>> regexes. The best thing you can do now is debug it in more detail by >>> using the sieve-test trace debugging features (using -t and -T >>> options), as documented in the man page. This way, you can see what is >>> matched how and which actions are performed. Then, you can narrow it >>> down to one specific failing test. >> I have tryied with the debug level higher of sieve-test, and the result >> is the following: >> >> sieve-test -t - -Tlevel=matching /tmp/.dovecot.sieve >> 1308741872.M858197P18322.mail2\,S\=1138\,W\=1168 >> > >> 8: header test >> 8: starting `:regex' match with `i;ascii-casemap' comparator: >> 8: extracting `Received' headers from message >> 8: matching value `from private (charon.mediaservice.net >> [213.254.20.254])' >> 8: with regex `^.*(2011) (\(.*\) )?..:..:.. (\(.*\) >> )?(\+|\-)....( \(.*\))?$' [id=0] => 0 >> 8: finishing match with result: not matched > > > >> As i can see, the regex of the year is not matching.... but why? Also, >> the other regex for the Month or the day, are not matching (tested >> commented out). > > Well, for one, in the value being matched there is no date. Could you > provide an example of a failing message so we can check why the data > retrieved from the Received header does not contain any date info? > Sure, here it is: Return-Path: Delivered-To: claudio at mediaservice.net Received: from private (XXX.mediaservice.net [XXX.XXX.XXX.XXX]) Message-ID: <4E01D0EF.5010300 at atpss.net> Date: Wed, 22 Jun 2011 13:24:31 +0200 From: Claudio Prono Reply-To: claudio.prono at atpss.net User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; it; rv:1.9.2.17) Gecko/20110414 Lightning/1.0b2 Thunderbird/3.1.10 MIME-Version: 1.0 To: claudio Subject: test X-Enigmail-Version: 1.1.1 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From claudio.prono at atpss.net Wed Jun 22 15:52:40 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 14:52:40 +0200 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database In-Reply-To: <4E01DD67.8060805@simonecaruso.com> References: <4E01A6DB.3090807@atpss.net> <4E01DD67.8060805@simonecaruso.com> Message-ID: <4E01E598.3020402@atpss.net> Il 22/06/2011 14.17, Simone Caruso ha scritto: > On 22/06/2011 10:24, Claudio Prono wrote: >> mail_location = maildir:/var/mail/virtual/%d/%u >> mail_home = /var/mail/virtual/%d/%u/ > Dovecot complains because mail_home should be -ne mail_location > Sorry but is not clear to me... mail_location sould be not equal to mail_location.... so i can leave empty mail_home? Or viceversa? -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From stephan at rename-it.nl Wed Jun 22 16:24:56 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 15:24:56 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E01E496.7090707@atpss.net> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> <4E01E029.5030208@rename-it.nl> <4E01E496.7090707@atpss.net> Message-ID: <4E01ED28.3010802@rename-it.nl> Op 22-6-2011 14:48, Claudio Prono schreef: > Il 22/06/2011 14.29, Stephan Bosch ha scritto: >> Op 22-6-2011 13:36, Claudio Prono schreef: >>> As i can see, the regex of the year is not matching.... but why? Also, >>> the other regex for the Month or the day, are not matching (tested >>> commented out). >> Well, for one, in the value being matched there is no date. Could you >> provide an example of a failing message so we can check why the data >> retrieved from the Received header does not contain any date info? > Sure, here it is: > > Received: from private (XXX.mediaservice.net [XXX.XXX.XXX.XXX]) This is not a valid Received header. Looks like something in your mail path eats multi-line (folded) headers. It should look like this (the stuff in parentheses is comment and thus optional): Received: from dovecot.org ([193.210.130.67]:60628) by drpepper.rename-it.nl with esmtp (Exim 4.72) (envelope-from) id 1QZMt9-00017I-4Y for stephan at rename-it.nl; Wed, 22 Jun 2011 14:50:39 +0200 You seem to have only the first line left. I wouldn't know what could cause this. Regards, Stephan From info at simonecaruso.com Wed Jun 22 16:32:11 2011 From: info at simonecaruso.com (Simone Caruso) Date: Wed, 22 Jun 2011 15:32:11 +0200 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database In-Reply-To: <4E01E598.3020402@atpss.net> References: <4E01A6DB.3090807@atpss.net> <4E01DD67.8060805@simonecaruso.com> <4E01E598.3020402@atpss.net> Message-ID: <4E01EEDB.3040709@simonecaruso.com> On 22/06/2011 14:52, Claudio Prono wrote: > > > Il 22/06/2011 14.17, Simone Caruso ha scritto: >> On 22/06/2011 10:24, Claudio Prono wrote: >>> mail_location = maildir:/var/mail/virtual/%d/%u >>> mail_home = /var/mail/virtual/%d/%u/ >> Dovecot complains because mail_home should be -ne mail_location >> > Sorry but is not clear to me... mail_location sould be not equal to > mail_location.... so i can leave empty mail_home? Or viceversa? > You have to use another dir for mail_home (not empty), different from mail_localtion. rif: http://wiki.dovecot.org/MailLocation "Homeless users" -- Simone Caruso IT Consultant p.iva: 03045250838 From ml at smtp.fakessh.eu Wed Jun 22 17:05:05 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Wed, 22 Jun 2011 16:05:05 +0200 Subject: [Dovecot] sieve problem email silently discard In-Reply-To: <4E01A605.4060401@rename-it.nl> References: <201106220318.40833.ml@smtp.fakessh.eu> <4E01A605.4060401@rename-it.nl> Message-ID: <201106221605.11760.ml@smtp.fakessh.eu> Le mercredi 22 juin 2011 10:21, Stephan Bosch a ?crit?: > Op 22-6-2011 3:18, ml at smtp.fakessh.eu schreef: > > hello folks > > hello Timo > > hello all the guru > > > > I met a few times the problem or an email that passes through a sieve > > script is silently discard > > after delivery but never returned to the inbox > > > > all testimonials are welcome > > We cannot say much about this problem, unless we get some more information: > > 1) What is your configuration? Provide the output of dovecot -n. > my dovecot -n ~]# /usr/sbin/dovecot -n # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32.2-xxxx-grs-ipv6-32 i686 CentOS release 5.6 (Final) auth_mechanisms = plain login base_dir = /var/run/dovecot/ lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes listen = [::] log_path = /var/log/maillog log_timestamp = %Y-%m-%d %H:%M:%S login_log_format_elements = user=<%u> method=%m rip=%r lip=%l %c mail_location = maildir:~/Maildir mail_max_userip_connections = 20 managesieve_notify_capability = mailto managesieve_sieve_capability = comparator-i;octet comparator-i;ascii-casemap fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date spamtest spamtestplus virustest namespace { inbox = yes location = prefix = separator = . } passdb { driver = pam } plugin { autocreate = Trash autocreate2 = Junk autocreate3 = Sent autocreate4 = Drafts autosubscribe = Trash autosubscribe2 = Junk autosubscribe3 = Sent autosubscribe4 = Drafts plugin = $mail_plugins autocreate managesieve sieve sieve = ~/.dovecot.sieve sieve_before = /var/sieve-scripts/roundcube.sieve sieve_dir = ~/sieve sieve_global_path = whatever } protocols = sieve imap pop3 service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0600 user = postfix } unix_listener auth-master { mode = 0666 } unix_listener auth-userdb { mode = 0666 } vsz_limit = 64 M } service imap-login { inet_listener imap { port = 0 } inet_listener imaps { address = * , [::] port = 993 } process_limit = 128 vsz_limit = 64 M } service imap { client_limit = 1 service_count = 0 } service managesieve-login { inet_listener managesieve-login { address = * , [::] port = 2000 } process_limit = 128 vsz_limit = 64 M } service pop3-login { inet_listener pop3 { port = 0 } inet_listener pop3s { address = * , [::] port = 995 } process_limit = 128 vsz_limit = 64 M } ssl_ca = 2) Is it reproducible somehow? > this is rare but does occur from time to time. I do not know how to reproduce > - What is the Sieve script you see this behavior for? Or does it > happen for all users? i use a simple script sieve of this style ~]$ cat .dovecot.sieve require ["fileinto", "mailbox" ,"reject", "regex", "variables","envelope", "subaddress"]; # rule:[perl] if anyof (header :contains "Return-Path" "perl.apache.org", header :contains "Return-Path" "perl",header :contains "Return-Path" "groups.yahoo.com", header :contains "Return-Path" "jaos", header :contains "Return-Path" "dkimproxy", header :contains "Return-Path" "mongueurs", header :contains "Return-Path" "pep", header :contains "Subject" "dkimproxy", header :contains "To" "perl at mongueurs.net", header :contains "To" "pep at perl.org", header :contains "To" "perlwebmail-devel at jaos.org", header :contains "Return-Path" "jlong at messiah.edu", header :contains "To" "dkimproxy-users at lists.sourceforge.net", header :contains "Cc" "dkimproxy-users at lists.sourceforge.net",header :contains "Return-Path" "templates-bounces at template-toolkit.org",header :contains "Return-Path" "pm.org") { fileinto :create "INBOX.perl"; stop; } > > - Is there a specific kind of incoming message that gets discarded > all the time? no there is no particular type of message just some messages > > 3) Is there any error or other message in the logs that may explain this > behavior? > egrep lda /var/log/maillog 2011-06-22 14:34:45lda(fakessh): Info: sieve: msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if not explicitly delivered (discard action) 2011-06-22 14:34:45lda(root): Info: sieve: msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if not explicitly delivered (discard action) > Regards, > > Stephan. thanks Stephan -- ?http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 ?gpg --keyserver pgp.mit.edu --recv-key 092164A7 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From stephan at rename-it.nl Wed Jun 22 17:41:53 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 16:41:53 +0200 Subject: [Dovecot] sieve problem email silently discard In-Reply-To: <201106221605.11760.ml@smtp.fakessh.eu> References: <201106220318.40833.ml@smtp.fakessh.eu> <4E01A605.4060401@rename-it.nl> <201106221605.11760.ml@smtp.fakessh.eu> Message-ID: <4E01FF31.4060003@rename-it.nl> Op 22-6-2011 16:05, ml at smtp.fakessh.eu schreef: > Le mercredi 22 juin 2011 10:21, Stephan Bosch a ?crit : >> Op 22-6-2011 3:18, ml at smtp.fakessh.eu schreef: >>> I met a few times the problem or an email that passes through a sieve >>> script is silently discard >> We cannot say much about this problem, unless we get some more information: >> >> 1) What is your configuration? Provide the output of dovecot -n. > my dovecot -n > plugin = $mail_plugins autocreate managesieve sieve > sieve = ~/.dovecot.sieve > sieve_before = /var/sieve-scripts/roundcube.sieve > sieve_dir = ~/sieve > sieve_global_path = whatever Ok, so you are using multiscript with sieve_before. >> 2) Is it reproducible somehow? > this is rare but does occur from time to time. I do not know how to reproduce :/ >> - What is the Sieve script you see this behavior for? Or does it >> happen for all users? > i use a simple script sieve > of this style > ~]$ cat .dovecot.sieve >> 3) Is there any error or other message in the logs that may explain this >> behavior? > egrep lda /var/log/maillog > > 2011-06-22 14:34:45lda(fakessh): Info: sieve: > msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if not > explicitly delivered (discard action) > 2011-06-22 14:34:45lda(root): Info: sieve: > msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if not > explicitly delivered (discard action) This is really strange. Even though your script does not contain a discard command, the message is discarded through an explicit discard action. I do notice that you are using the multiscript feature using sieve_before and I expect that our problem is there. Notice that the same message is discarded in an identical manner for two different users (root and fakessh). What does /var/sieve-scripts/roundcube.sieve contain? Also, it can be helpful to enable mail_debug to get more info on what scripts are being executed and which script actually triggers the discard action. Regards, Stephan. From ml at smtp.fakessh.eu Wed Jun 22 18:12:50 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Wed, 22 Jun 2011 17:12:50 +0200 Subject: [Dovecot] sieve problem email silently discard In-Reply-To: <4E01FF31.4060003@rename-it.nl> References: <201106220318.40833.ml@smtp.fakessh.eu> <201106221605.11760.ml@smtp.fakessh.eu> <4E01FF31.4060003@rename-it.nl> Message-ID: <201106221712.56577.ml@smtp.fakessh.eu> Le mercredi 22 juin 2011 16:41, Stephan Bosch a ?crit?: > Op 22-6-2011 16:05, ml at smtp.fakessh.eu schreef: > > Le mercredi 22 juin 2011 10:21, Stephan Bosch a ?crit : > >> Op 22-6-2011 3:18, ml at smtp.fakessh.eu schreef: > >>> I met a few times the problem or an email that passes through a sieve > >>> script is silently discard > >> > > > > egrep lda /var/log/maillog > > > > 2011-06-22 14:34:45lda(fakessh): Info: sieve: > > msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if > > not explicitly delivered (discard action) > > 2011-06-22 14:34:45lda(root): Info: sieve: > > msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if > > not explicitly delivered (discard action) > > This is really strange. Even though your script does not contain a > discard command, the message is discarded through an explicit discard > action. I do notice that you are using the multiscript feature using > sieve_before and I expect that our problem is there. Notice that the > same message is discarded in an identical manner for two different users > (root and fakessh). What does /var/sieve-scripts/roundcube.sieve contain? > /var/sieve-scripts/roundcube.sieve contains a series of commands to handle spam ~]# cat /var/sieve-scripts/roundcube.sieve require ["fileinto","regex","comparator-i;ascii-numeric","reject","relational"]; # rule:[spammanage] #if anyof (header :contains "X-Spam-Flag" "YES") #{ # fileinto "Junk"; #} if header :value "ge" :comparator "i;ascii-numeric" ["X-Spam-score"] ["500"] { discard; stop; } if header :value "ge" :comparator "i;ascii-numeric" ["X-Spam-score"] ["100"] { fileinto "Junk.spam"; stop; } if header :value "ge" :comparator "i;ascii-numeric" ["X-Spam-score"] ["10"] { fileinto "Junk"; } elsif anyof ( header :contains "Received" [ "[4.63.221.224", "[24.244.141.112", "[61.171.253.177", "[63.123.149.", "[63.209.206.", "(63.233.30.73", "[63.251.200.", "[64.41.183.","[64.49.250.", "[64.57.188.", "[64.57.221.", "[64.62.204.", "[64.70.17.", "[64.70.44.", "[64.70.53.", "[64.39.27.6", "[64.39.27.7","[64.191.25.","[64.191.36.", "[64.191.9.", "[64.125.181.", "[64.191.123.", "[64.191.23.", "[64.239.182.", "[65.211.3.", "[66.46.150.", "[66.62.162.", "[66.118.170.", "[66.129.124.", "[66.205.217.", "[66.216.111.", "[66.239.204.", "[67.86.69.", "[80.34.206.", "[80.80.98.", "[81.72.233.13", "[128.242.120.", "[157.238.18", "[168.234.195.18]", "[193.253.198.57", "[194.25.83.1", "[200.24.129.", "[200.161.203.", "[202.164.182.76]","[202.57.69.116", "[203.19.220.","[203.22.104.","[203.22.105.", "[204.188.52.", "[205.153.154.203", "[206.26.195.", "[206.154.33.","[206.169.178", "[207.142.3.", "[208.46.5.","[208.187.", "[209.164.27.","[209.236.", "[210.90.75.129]", "[211.101.138.199","[211.185.7.125]","[211.239.231.", "[212.240.95.", "[213.47.250.139", "[213.225.61.", "[216.22.79.","[216.39.115.","[216.99.240.", "[216.126.32.", "[216.187.123.","[217.36.124.53", "[218.145.25","[218.52.71.103","[218.158.136.115", "[218.160.42.74", "[218.242.112.4" , "[94.23.116.93" ] ) { fileinto "Junk"; } elsif anyof ( header :contains ["SPAM", "X-Spam-hits"] ["ADDRESSES_ON_CD","ACT_NOW","and other hits" ] ) { fileinto "Junk"; } > Also, it can be helpful to enable mail_debug to get more info on what > scripts are being executed and which script actually triggers the > discard action. > > Regards, > > Stephan. I just set up mail_debug = yes I expect the next reject in order to give you more information -- ?http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 ?gpg --keyserver pgp.mit.edu --recv-key 092164A7 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From claudio.prono at atpss.net Wed Jun 22 18:49:08 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 17:49:08 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E01ED28.3010802@rename-it.nl> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> <4E01E029.5030208@rename-it.nl> <4E01E496.7090707@atpss.net> <4E01ED28.3010802@rename-it.nl> Message-ID: <4E020EF4.1010105@atpss.net> Il 22/06/2011 15.24, Stephan Bosch ha scritto: > Op 22-6-2011 14:48, Claudio Prono schreef: >> Il 22/06/2011 14.29, Stephan Bosch ha scritto: >>> Op 22-6-2011 13:36, Claudio Prono schreef: >>>> As i can see, the regex of the year is not matching.... but why? Also, >>>> the other regex for the Month or the day, are not matching (tested >>>> commented out). >>> Well, for one, in the value being matched there is no date. Could you >>> provide an example of a failing message so we can check why the data >>> retrieved from the Received header does not contain any date info? >> Sure, here it is: >> > >> Received: from private (XXX.mediaservice.net [XXX.XXX.XXX.XXX]) > > > This is not a valid Received header. Looks like something in your mail > path eats multi-line (folded) headers. It should look like this (the > stuff in parentheses is comment and thus optional): > > Received: from dovecot.org ([193.210.130.67]:60628) > by drpepper.rename-it.nl with esmtp (Exim 4.72) > (envelope-from) > id 1QZMt9-00017I-4Y > for stephan at rename-it.nl; Wed, 22 Jun 2011 14:50:39 +0200 > > You seem to have only the first line left. I wouldn't know what could > cause this. > Ok, is a problem of my internal mails, i have a regex matching my internal class and modifying che headers of the mail on the fly. Now i have made a test with an external mail. Here is the headers of the mail: Return-Path: Delivered-To: claudio at mediaservice.net Received: from localhost (localhost [127.0.0.1]) by mail2.mediaservice.net (Postfix) with SMTP id 59263B1827D for ; Wed, 22 Jun 2011 17:43:07 +0200 (CEST) Received: from smtp302.alice.it (smtp302.alice.it [82.57.200.118]) by mail2.mediaservice.net (Postfix) with ESMTP id 256F2B18279 for ; Wed, 22 Jun 2011 17:43:07 +0200 (CEST) Received: from feu14-alice (82.57.204.69) by smtp302.alice.it (8.5.124.08) id 4DEE2478005DA4C7 for claudio at mediaservice.net; Wed, 22 Jun 2011 17:43:06 +0200 Received: from (79.4.123.31) by alicemail.rossoalice.alice.it; Wed, 22 Jun 2011 17:43:06 +0200 Message-ID: <130b804e67b.cybercloud at alice.it> Date: Wed, 22 Jun 2011 17:43:06 +0200 (CEST) From: "cybercloud at alice.it" Reply-To: "cybercloud at alice.it" To: claudio at mediaservice.net Subject: test vacation Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_43520_25034745.1308757386914" X-Originating-IP: 79.4.123.31 X-DSPAM-Result: Whitelisted X-DSPAM-Processed: Wed Jun 22 17:43:07 2011 X-DSPAM-Confidence: 0.9901 X-DSPAM-Probability: 0.0000 X-DSPAM-Signature: 1,4e020d8b286456121419446 ------=_Part_43520_25034745.1308757386914 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Message !DSPAM:1,4e020d8b286456121419446! ------=_Part_43520_25034745.1308757386914 Content-Type: text/html;charset="UTF-8" Content-Transfer-Encoding: 7bit And there is the sieve-test: sieve-test -t - -Tlevel=matching .dovecot.sieve 1308757387.M635481P28650.mail2\,S\=1845\,W\=1893 ## Started executing script '.dovecot' 7: exists test 7: header `list-help' is missing 7: headers are missing 7: jump if result is true 7: not jumping 7: header test 7: starting `:is' match with `i;ascii-casemap' comparator: 7: extracting `Precedence' headers from message 7: finishing match with result: not matched 7: jump if result is true 7: not jumping 7: header test 7: starting `:matches' match with `i;ascii-casemap' comparator: 7: extracting `To' headers from message 7: matching value `claudio at mediaservice.net' 7: with key `Multiple recipients of*' => 0 7: finishing match with result: not matched 7: jump if result is true 7: not jumping 9: header test 9: starting `:regex' match with `i;ascii-casemap' comparator: 9: extracting `Received' headers from message 9: matching value `from localhost (localhost [127.0.0.1]) by mail2.mediaservice.net (Postfix) wi...' 9: with regex `^.*(May) (\(.*\) )?.... (\(.*\) )?..:..:.. (\(.*\) )?(\+|\-)....( \(.*\))?$' [id=0] => 0 9: matching value `from smtp302.alice.it (smtp302.alice.it [82.57.200.118]) by mail2.mediaservic...' 9: with compiled regex [id=0] => 0 9: matching value `from feu14-alice (82.57.204.69) by smtp302.alice.it (8.5.124.08) id 4D...' 9: with compiled regex [id=0] => 0 9: matching value `from (79.4.123.31) by alicemail.rossoalice.alice.it; Wed, 22 Jun 2011 17:43:...' 9: with compiled regex [id=0] => 0 9: finishing match with result: not matched 9: jump if result is false 9: jumping to line 10 ## Finished executing script '.dovecot' Performed actions: (none) Implicit keep: * store message in folder: INBOX sieve-test(root): Info: final result: success And also in this case, no vacation at all... but different output.... that can be useful? Cordially, Claudio Prono. > !DSPAM:1,4e01ed38232161453618201! > > > -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From shopik at inblock.ru Wed Jun 22 19:08:32 2011 From: shopik at inblock.ru (Nikolay Shopik) Date: Wed, 22 Jun 2011 20:08:32 +0400 Subject: [Dovecot] LIST-EXTENDED support? In-Reply-To: <4E013D9E.70805@gmail.com> References: <4E013D9E.70805@gmail.com> Message-ID: <4E021380.7050100@inblock.ru> On 22.06.2011 4:55, fusionstream wrote: > Hi there. > > Can I check if LIST-EXTENDED refers to RFC 6154 > (http://tools.ietf.org/html/rfc6154), rfc for special use mailboxes. > > I'd like to specify a designated folder as \Spam and etc. Googling > "dovecot list-extended" and "dovecot special use" suggests that dovecot > supports this feature (via patch logs and 1 bug report for Mozilla > Thunderbird which suggests that dovecot supports this). > > However when trying to test this feature via thunderbird, it would seem > to suggest that it is not currently possible. (Moving folders that > Thunderbird has created forces thunderbird to recreate said folder in > it's original location) > > # dovecot --version > 1.2.17 > > Any help/pointers appreciated. > > Cheers. > You misunderstanding RFC6154, LIST-EXTENDED is RFC5258, while RFC6154 is SPECIAL-USE extension. From giom87 at libero.it Wed Jun 22 19:18:21 2011 From: giom87 at libero.it (Giovanni Mancuso) Date: Wed, 22 Jun 2011 18:18:21 +0200 Subject: [Dovecot] Interrupted system call in imap-login Message-ID: <4E0215CD.7050203@libero.it> Hi, We have some problems with dovecot 1.2.11 that we can't resolve yet The problem is that we have in maillog: imap-login: Error: Can't connect to auth server at default: Interrupted system call The operating system is Solaris 9, and sometimes dovecot works fine. Dovecot is configured to use ldap. The dovecot -n : log_path: /var/log/maillog info_log_path: /var/log/maillog log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s listen(default): xxx.xxx.xxx.xxx:143 listen(imap): xxx.xxx.xxx.xxx:143 listen(pop3): xxx.xxx.xxx.xxx:110 ssl_listen(default): xxx.xxx.xxx.xxx:993 ssl_listen(imap): xxx.xxx.xxx.xxx:993 ssl_listen(pop3): xxx.xxx.xxx.xxx:995 ssl_cert_file: /opt/dovecot/certs/imapd.pem ssl_key_file: /opt/dovecot/certs/imapd.pem disable_plaintext_auth: no login_dir: /opt/dovecot/var/run/dovecot/login login_executable(default): /opt/dovecot/libexec/dovecot/imap-login login_executable(imap): /opt/dovecot/libexec/dovecot/imap-login login_executable(pop3): /opt/dovecot/libexec/dovecot/pop3-login max_mail_processes: 1024 first_valid_uid: 102 first_valid_gid: 101 mail_uid: 102 mail_gid: 101 mail_location: maildir:%h/Maildir mmap_disable: yes dotlock_use_excl: no mail_nfs_storage: yes mail_nfs_index: yes lock_method: dotlock mbox_write_locks: fcntl mail_drop_priv_before_exec: yes mail_executable(default): /opt/dovecot/libexec/dovecot/imap mail_executable(imap): /opt/dovecot/libexec/dovecot/imap mail_executable(pop3): /opt/dovecot/libexec/dovecot/pop3 mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugin_dir(default): /opt/dovecot/lib/dovecot/imap mail_plugin_dir(imap): /opt/dovecot/lib/dovecot/imap mail_plugin_dir(pop3): /opt/dovecot/lib/dovecot/pop3 pop3_uidl_format(default): %08Xu%08Xv pop3_uidl_format(imap): %08Xu%08Xv pop3_uidl_format(pop3): UID%u-%v namespace: type: private separator: . prefix: INBOX. inbox: yes list: yes subscriptions: yes auth default: master_user_separator: * debug: yes worker_max_count: 50 passdb: driver: passwd-file args: /opt/dovecot/etc/passwd.masterusers master: yes passdb: driver: ldap args: /opt/dovecot/etc/dovecot-ldap.conf userdb: driver: ldap args: /opt/dovecot/etc/dovecot-ldap.conf plugin: quota: maildir quota_rule2: Trash:storage=100M I try to chage nsswitch.conf, I see the ldap logs, ecc... But I don't find anything I really don't know what to do now, can you help us please? I tried to update dovecot with 1.2.17 version, but the problem is the same. Thanks From stephan at rename-it.nl Wed Jun 22 19:47:37 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 18:47:37 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E020EF4.1010105@atpss.net> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> <4E01E029.5030208@rename-it.nl> <4E01E496.7090707@atpss.net> <4E01ED28.3010802@rename-it.nl> <4E020EF4.1010105@atpss.net> Message-ID: <4E021CA9.1020103@rename-it.nl> Op 22-6-2011 17:49, Claudio Prono schreef: > And also in this case, no vacation at all... but different output.... > that can be useful? Eh. I've finally spent some time to conclusively derive what this horrible regex mess is supposed to achieve. Concretely, it checks whether a specific date is mentioned in the Received headers. If not, the vacation is not performed. So, you must check the functionality with a message that has a date matching the regex. In your first e-mail this was 10 June 2011. The trace log you provided in your last e-mail uses a date some time in May (obviously you had the script re-generated by Ingo at some point). I've modified your test e-mail to have a date of 10 June 2011 and I checked it with the script example you provided: it successfully yields a vacation response. Regards, Stephan. From tss at iki.fi Wed Jun 22 20:28:12 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:28:12 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: <1308763692.10421.909.camel@hurina> I did some fixes to my original patch to make it actually work the way I intended: http://hg.dovecot.org/dovecot-2.0/rev/3d07ab746a67 On Tue, 2011-06-14 at 17:38 +0200, Antonio Perez-Aranda wrote: > Maybe this could be a "feature request" for dovecot 2.0.14 - 2.0.15 or 2.1 ? > > 2011/6/9 Antonio Perez-Aranda : > > This patch fix a bug and remove some debug info from patch sent before. > > > > 2011/6/9 Antonio Perez-Aranda : > >> This patch is running but it only run with mail_plugins. > >> > >> This is because I can't select the "mail_plugins" value from any > >> function to get this throw the name key. > >> > >> Maybe this need more hard development to do this as generic "property" > >> for any config value. > >> > >> 2011/6/9 Antonio Perez-Aranda : > >>> Well, this "extrange" vaues is NULL. > >>> > >>> Maybe, the set_parser is a new environment to set settings but then > >>> ?when is make the config merge? > >>> > >>> 2011/6/9 Antonio Perez-Aranda : > >>>> This line: > >>>> > >>>> value = settings_parse_get_value(set_parser, key, &type); > >>>> > >>>> Is returning a empty value. Maybe, set_parser has been cleared? > >>>> > >>>> If I try to get another keys from my config that I can watch with > >>>> doveadm I get "extrange" values like this with i_debug() > >>>> > >>>> * mail_debug -> #001 > >>>> * mail_location -> #010 > >>>> * auth_realms -> #020#002 > >>>> > >>>> > >>>> 2011/6/8 Antonio Perez-Aranda : > >>>>> It must run on dovecot 2.0.13? > >>>>> > >>>>> We are upgrading to 2.0.13 and with this I get the follow message: > >>>>> > >>>>> Jun 8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: > >>>>> +mail_plugins=fts fts_solr?G > >>>>> > >>>>> > >>>>> 2011/6/7 Timo Sirainen : > >>>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: > >>>>>>> Greats, I'm working on patch from this morning, but it's very hard to > >>>>>>> debug on settings-parser > >>>>>> > >>>>>> I don't think you should need to touch that code. It's a bit difficult > >>>>>> for me also to follow.. > >>>>>> > >>>>>>> How can I enable i_debug on settings-parser.c ? > >>>>>> > >>>>>> What do you mean? You could add i_debug() calls and it should work just > >>>>>> the same as everywhere. > >>>>>> > >>>>>> Did you try the patch in my previous mail? I think that should be > >>>>>> enough. You could then use: > >>>>>> > >>>>>> user_attrs = .., mailPlugins=+mail_plugins > >>>>>> > >>>>>> > >>>>>> > >>>>> > >>>>> > >>>>> > >>>>> -- > >>>>> Antonio P?rez-Aranda Alcaide > >>>>> aperezaranda at yaco.es > >>>>> > >>>>> Yaco Sistemas S.L. > >>>>> http://www.yaco.es/ > >>>>> C/ Rioja 5, 41001 Sevilla > >>>>> Tel?fono +34 954 50 00 57 > >>>>> Fax +34 954 50 09 29 > >>>>> > >>>> > >>>> > >>>> > >>>> -- > >>>> Antonio P?rez-Aranda Alcaide > >>>> aperezaranda at yaco.es > >>>> > >>>> Yaco Sistemas S.L. > >>>> http://www.yaco.es/ > >>>> C/ Rioja 5, 41001 Sevilla > >>>> Tel?fono +34 954 50 00 57 > >>>> Fax +34 954 50 09 29 > >>>> > >>> > >>> > >>> > >>> -- > >>> Antonio P?rez-Aranda Alcaide > >>> aperezaranda at yaco.es > >>> > >>> Yaco Sistemas S.L. > >>> http://www.yaco.es/ > >>> C/ Rioja 5, 41001 Sevilla > >>> Tel?fono +34 954 50 00 57 > >>> Fax +34 954 50 09 29 > >>> > >> > >> > >> > >> -- > >> Antonio P?rez-Aranda Alcaide > >> aperezaranda at yaco.es > >> > >> Yaco Sistemas S.L. > >> http://www.yaco.es/ > >> C/ Rioja 5, 41001 Sevilla > >> Tel?fono +34 954 50 00 57 > >> Fax +34 954 50 09 29 > >> > > > > > > > > -- > > Antonio P?rez-Aranda Alcaide > > aperezaranda at yaco.es > > > > Yaco Sistemas S.L. > > http://www.yaco.es/ > > C/ Rioja 5, 41001 Sevilla > > Tel?fono +34 954 50 00 57 > > Fax +34 954 50 09 29 > > > > > From tss at iki.fi Wed Jun 22 20:29:27 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:29:27 +0300 Subject: [Dovecot] ACL's from userdb In-Reply-To: References: <4DF6777F.9010107@amfes.com> <4DF71979.8080006@es2eng.com> Message-ID: <1308763767.10421.910.camel@hurina> On Tue, 2011-06-14 at 11:10 -0700, Daniel L. Miller wrote: > Are "acl_groups" a list of UNIX groups? Or are they defined somewhere > else within Dovecot? ACL groups are only a list of groups that are used by ACL plugin when applying the ACLs from the dovecot-acl files. There's no requirement for them to match UNIX groups. There's no need to list them anywhere. From tss at iki.fi Wed Jun 22 20:33:37 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:33:37 +0300 Subject: [Dovecot] Waiting for authentication process to respond.. In-Reply-To: <4DF8A853.8050905@ifm.liu.se> References: <4DF8A853.8050905@ifm.liu.se> Message-ID: <1308764017.10421.913.camel@hurina> On Wed, 2011-06-15 at 14:40 +0200, Peter Eriksson wrote: > Hmm... I'm seeing a lot of: > > > * OK Waiting for authentication process to respond.. > > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE > IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=GSSAPI AUTH=GSS-SPNEGO] Welcome > to the IFM Dovecot Mail Server. > > when IMAP clients connect to our server (ie that "Waiting for.." message > before the login OK message). > > Now, most clients seems to handle this extra information message just > fine, but it still is annoying me. It doesn't appear all the time, but > pretty often... > > What can I adjust/fix in order to make it go away? I'd guess it means two things: 1) Client doesn't actually care about the OK reply at all, and tries to send some command immediately after connecting. 2) You're using the "high-security mode" of login processes, which is why there is a small delay before login process gets a reply from auth. You could switch to either "high-performance mode" (http://wiki2.dovecot.org/LoginProcess) or probably just setting service imap-login { process_min_avail } to some small number also helps. From tss at iki.fi Wed Jun 22 20:35:44 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:35:44 +0300 Subject: [Dovecot] high number of processes In-Reply-To: <4DF7B7DC.7060608@vandenbussche.nl> References: <4DF7B7DC.7060608@vandenbussche.nl> Message-ID: <1308764144.10421.914.camel@hurina> On Tue, 2011-06-14 at 21:34 +0200, Egbert Jan van den Bussche wrote: > Hi, > > Sometimes a script kiddie tries to guess passwords on our mailserver > (Ubuntu 10.04.2 LTS, postfix, dovecot 1.2.9, scanners, the standard > stuff). That leads to a nagios message about the high number of > processes. The number goes above 500. What processes are they? > Nagios threshold is set to 250, > which is more than enough for normal operation of this server. When are > these processes supposed to die again? They seem to stay at the high > count quite long. > > Is there a way to limit the generation of extra login processes? Can I > tune the login_process... params a bit? I have then all on default. With defaults you shouldn't get more than 128 login processes, so I don't know why they would go to 500. http://wiki.dovecot.org/LoginProcess anyway may be helpful. From list at airstreamcomm.net Wed Jun 22 20:35:04 2011 From: list at airstreamcomm.net (list at airstreamcomm.net) Date: Wed, 22 Jun 2011 12:35:04 -0500 Subject: [Dovecot] SQL config error Message-ID: Currently using 2.0.12, configured the auth-sql.conf to look like this for password lookups (doing smtp auth with postfix, so I am not actually running pop or imap, just auth): passdb { driver = sql connect = host=server.net dbname=passwd user=sqluser password='password' default_pass_scheme = CRYPT password_query = SELECT CONCAT(username,'@domain.net') as user, pw as password FROM passwd WHERE username = '%n' # Path for SQL configuration file, see example-config/dovecot-sql.conf.ext args = /etc/dovecot/dovecot-sql.conf.ext } Starting Dovecot I am getting the following error: # 2.0.12: /etc/dovecot/dovecot.conf doveconf: Fatal: Error in configuration file /etc/dovecot/conf.d/auth-sql.conf.ext line 8: Unknown setting: connect This is my first time configuring SQL for Dovecot so I am not sure how "connect" is recognized as an unknown setting? Thanks. From tss at iki.fi Wed Jun 22 20:37:57 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:37:57 +0300 Subject: [Dovecot] Multiple values found for 'user', using value In-Reply-To: <201106161103.32370.komodo@uvt.cz> References: <201106161103.32370.komodo@uvt.cz> Message-ID: <1308764277.10421.916.camel@hurina> On Thu, 2011-06-16 at 11:03 +0200, komodo wrote: > Hi > > since latest upgrade on my machine, i have lot of warnings in my log, and i found that it is due > this change > > http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html > > Is there any option to disable these warnings ? Yes we have multiple UIDs so these warnings bothers > me. LDAP protocol doesn't give guarantees about values being returned in any specific order. Does your LDAP server? If you have multiple UIDs, do you always want the first one to be used? Why do you have multiple? From tss at iki.fi Wed Jun 22 20:39:42 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:39:42 +0300 Subject: [Dovecot] diacritic marks in password In-Reply-To: <4DF90287.90503@gmail.com> References: <4DF90287.90503@gmail.com> Message-ID: <1308764382.10421.917.camel@hurina> On Wed, 2011-06-15 at 20:05 +0100, pch0317 wrote: > Hi, > > I have dovecot 2.0.beta6 (on RedHat 6) and my user uses thunderbird > 3.1.10 (on Windows XP). > I use authentication via LDAP (Windows server 2003 AD). With auth_bind=yes? > When user use in password diacritic marks (?,?,?,?,?,?) authentication > failed. > > What can I do? Not much from Dovecot's side, I'm afraid. From tss at iki.fi Wed Jun 22 20:43:38 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:43:38 +0300 Subject: [Dovecot] Question about "Storage keeps breaking" in logs In-Reply-To: <20110619105942.75870@gmx.com> References: <20110619105942.75870@gmx.com> Message-ID: <1308764618.10421.918.camel@hurina> On Sun, 2011-06-19 at 10:59 +0000, Maria Arrea wrote: > /var/log/maillog.13.xz:Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones//18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking > /var/log/maillog.108.xz:Mar 4 01:42:09 buzon dovecot: imap(lbandera): Error: mdbox /buzones/0b/11/lbandera/mailboxes/Sent/dbox-Mails: Storage keeps breaking > /var/log/maillog.3.xz:Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama): Error: mdbox /buzones/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking > > > I have "rebuilt" those mdboxes with doveadm force-resync && doveadm quota recalc. Should I be worried? Why is this happening? Aren't there any other error/warning messages around them? From tss at iki.fi Wed Jun 22 20:49:46 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:49:46 +0300 Subject: [Dovecot] Performance settings for 500-1000User/per day In-Reply-To: <1308575813.7335.26.camel@pcdenny> References: <1308575813.7335.26.camel@pcdenny> Message-ID: <1308764986.10421.921.camel@hurina> On Mon, 2011-06-20 at 15:16 +0200, Denny Schierz wrote: > we have 2.0.13 running and most works well, but today we had some minor > problems: The IMAP login process takes sometimes to much time. Over > webmail (Roundcube 0.5.0.3) login wasn't sometimes possible, the normal > clients hasn't any problems, until they login. > > We had only ~ 20-30 active accounts, but 50-60 sessions. The most are > Apple products (Ip*/Mac/. ..)because they have 4 sessions or more open. > > Also we had ~212 processes with: > > dovenull 2065 4364 0 14:50:32 ? 0:00 dovecot/imap-login > vmail 2403 4364 0 14:58:31 ? 0:00 dovecot/imap I suppose that means you had 100 IMAP clients simultaneously connected using SSL, which used up all imap-login processes with default settings. There should have been a warning logged about it though. Switch to high performance login process mode (http://wiki2.dovecot.org/LoginProcess) or increase service imap-login { process_limit }. From cinzia.innocenzi at hp.com Wed Jun 22 13:31:37 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Wed, 22 Jun 2011 10:31:37 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> Hello, we have dovecot 2.0.13 installed in our RHEL5 servers. We use dovecot as a lmtp proxy on the front end mail relays and dovecot for back end lmtp/pop/imap. All our servers have RHEL5.6 64-bit and dovecot 2.0.13 installed, and the back end has also an ext3 mbox file-system mounted. Sometimes we have mails that get stuck on our postfix queue with the following error: Remote server not answering (timeout in DATA input) (in reply to end of DATA command) In our logs we only see the fact that the connection times out after 1 minute and gets disconnected: Jun 22 11:56:53 back-end dovecot: lmtp(3256): Connect from a.b.c.d Jun 22 11:57:53 back-end dovecot: lmtp(3256): Disconnect from a.b.c.d: Connection closed Jun 22 11:56:53 front-end dovecot: lmtp(16397): Connect from a.b.c.d Jun 22 11:57:53 front-end dovecot: lmtp(16397): Disconnect from a.b.c.d: Disconnected for inactivity We've tried to recalculate the mbox quota using "doveadm quota recalc -n ..." command and flushed our mail queue, but the mail still gets stuck on the postfix queue with the same error. It doesn't happen for every single mail, it's random. I'm attaching the output of dovecot -n for both servers. Can you please help us? Regards CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com Via Achille Campanile, 85 / Rome, Italy 00143 [cid:image001.jpg at 01CC30D7.612C3210] -------------- next part -------------- A non-text attachment was scrubbed... Name: image001.jpg Type: image/jpeg Size: 690 bytes Desc: image001.jpg URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: front-end-dovecot.conf Type: application/octet-stream Size: 1111 bytes Desc: front-end-dovecot.conf URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: back-end-dovecot.conf Type: application/octet-stream Size: 1515 bytes Desc: back-end-dovecot.conf URL: From philip at turmel.org Wed Jun 22 21:24:11 2011 From: philip at turmel.org (Phil Turmel) Date: Wed, 22 Jun 2011 14:24:11 -0400 Subject: [Dovecot] Change passwd backend over cron: what happens if changes while reading? In-Reply-To: <1308741571.7335.177.camel@pcdenny> References: <1308741571.7335.177.camel@pcdenny> Message-ID: <4E02334B.4050500@turmel.org> Hi Denny, On 06/22/2011 07:19 AM, Denny Schierz wrote: > I want to use two backends f?r DoveCot. One generated file from the LDAP > tree, and the real LDAP. > > The first backend is generated from a cronjob thats reads the whole ldap > server and converts them into a DoveCot passwd file. OK. > I red in the Wiki, if the user password isn't correct, than DoveCot asks > the second backend (LDAP). Is this correct? Because, the the user can > change his password, but Cron generates only every hour the file. So the > password in the passwd-file isn't correct, until Cron runs again. I don't know this. > The second, what happens, if Dovecot reads the file and in the same > moment, Cron generate the new file? Does he change to the second > backend? Or do I (the user) get an error? I do know this. If the cron job is writing directly to the passwd file, you will have opportunities where dovecot can see a partial file. I don't know what will happen for sure in this case, but you might trigger rare bugs. You should make your cron job write to a temporary new file, close it, then rename it to the correct name. This will atomically replace the old version with the update. If dovecot has the file open when you do this, it will carry on with the prior copy (delete will be deferred until the file is closed). Dovecot will see the changes the next time it opens the file. > > cu denny HTH, Phil From maria_arrea at gmx.com Wed Jun 22 22:32:11 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Wed, 22 Jun 2011 19:32:11 +0000 Subject: [Dovecot] Question about "Storage keeps breaking" in logs Message-ID: <20110622193211.75860@gmx.com> Here you have more detailed logs: First case: Jun 6 17:03:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/18/66/juanan/storage: rebuilding indexes Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones/18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=5960/766852 Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/P4. WebMed/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=1124/7377 Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: Recent flags state corrupted for mailbox Deleted Messages Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/Deleted Messages/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=5418/408785 Jun 6 17:09:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/us.es/18/66/juanan/storage: rebuilding indexes Jun 6 17:09:23 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 6 17:09:23 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=2134/4879108 Jun 6 17:19:33 buzon dovecot: lda(juanan): sieve: msgid=: stored mail into mailbox 'INBOX' Second case: Jun 16 11:48:24 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32282 Jun 16 11:48:24 buzon dovecot: imap(fjvalderrama at us.es): Warning: mdbox /buzones/0f/99/fjvalderrama/storage: rebuilding indexes Jun 16 11:48:29 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32510 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Error: mdbox /buzones/mydomain/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Error: mdbox /buzones/mydomain/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=132/574 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=60/406 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=98/423 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox Trash Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/Trash/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=20224/556432 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox SEV/AsigVirtual Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/SEV/AsigVirtual/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=940/62147 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/SEV/Miembros US/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=13061/37386 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox INBOX Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama at us.es): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/Drafts/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama at us.es): Disconnected: IMAP session state is inconsistent, please relogin. bytes=3238/7247 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=1451/22771 Jun 16 11:48:34 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32745 Do you need dovecot config to debug this? I can give it to you if needed. Regards Maria ----- Original Message ----- From: Timo Sirainen Sent: 06/22/11 07:43 PM To: Maria Arrea Subject: Re: [Dovecot] Question about "Storage keeps breaking" in logs On Sun, 2011-06-19 at 10:59 +0000, Maria Arrea wrote: > /var/log/maillog.13.xz:Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones//18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking > /var/log/maillog.3.xz:Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama): Error: mdbox /buzones/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking > > > I have "rebuilt" those mdboxes with doveadm force-resync && doveadm quota recalc. Should I be worried? Why is this happening? Aren't there any other error/warning messages around them? From info at simonecaruso.com Wed Jun 22 23:07:31 2011 From: info at simonecaruso.com (Simone Caruso) Date: Wed, 22 Jun 2011 22:07:31 +0200 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> Message-ID: <4E024B83.4050204@simonecaruso.com> if u already didnt, try setting 'mail_debug=yes' in config. -- Simone Caruso IT Consultant p.iva: 03045250838 From user+dovecot at localhost.localdomain.org Wed Jun 22 23:14:10 2011 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Wed, 22 Jun 2011 22:14:10 +0200 Subject: [Dovecot] SQL config error In-Reply-To: References: Message-ID: <4E024D12.5040309@localhost.localdomain.org> On 06/22/2011 07:35 PM list at airstreamcomm.net wrote: > Currently using 2.0.12, configured the auth-sql.conf to look like this for > password lookups (doing smtp auth with postfix, so I am not actually > running pop or imap, just auth): > > passdb { > driver = sql > connect = host=server.net dbname=passwd user=sqluser password='password' > default_pass_scheme = CRYPT > password_query = SELECT CONCAT(username,'@domain.net') as user, pw as > password FROM passwd WHERE username = '%n' > > # Path for SQL configuration file, see > example-config/dovecot-sql.conf.ext > args = /etc/dovecot/dovecot-sql.conf.ext > } > > Starting Dovecot I am getting the following error: > > # 2.0.12: /etc/dovecot/dovecot.conf > doveconf: Fatal: Error in configuration file > /etc/dovecot/conf.d/auth-sql.conf.ext line 8: Unknown setting: connect > > This is my first time configuring SQL for Dovecot so I am not sure how > "connect" is recognized as an unknown setting? It's an unknown setting in the passdb {} section. ,--[ $sysconfdir/dovecot/dovecot-sql.conf.ext ]-- | connect = ? | [default_pass_scheme = ?] | password_query = ? | user_query = ? | iterate_query = ? `-- ,--[ $sysconfdir/dovecot/conf.d/auth-sql.conf.ext ]-- | passdb { | driver = sql | args = $sysconfdir/dovecot/dovecot-sql.conf.ext ] } | userdb { | driver = sql | args = $sysconfdir/dovecot/dovecot-sql.conf.ext | } `-- Re4gards, Pascal -- The trapper recommends today: cafefeed.1117322 at localdomain.org From list at airstreamcomm.net Wed Jun 22 23:38:29 2011 From: list at airstreamcomm.net (list at airstreamcomm.net) Date: Wed, 22 Jun 2011 15:38:29 -0500 Subject: [Dovecot] SQL config error In-Reply-To: <4E024D12.5040309@localhost.localdomain.org> References: <4E024D12.5040309@localhost.localdomain.org> Message-ID: On Wed, 22 Jun 2011 22:14:10 +0200, Pascal Volk wrote: > On 06/22/2011 07:35 PM list at airstreamcomm.net wrote: >> Currently using 2.0.12, configured the auth-sql.conf to look like this >> for >> password lookups (doing smtp auth with postfix, so I am not actually >> running pop or imap, just auth): >> >> passdb { >> driver = sql >> connect = host=server.net dbname=passwd user=sqluser >> password='password' >> default_pass_scheme = CRYPT >> password_query = SELECT CONCAT(username,'@domain.net') as user, pw as >> password FROM passwd WHERE username = '%n' >> >> # Path for SQL configuration file, see >> example-config/dovecot-sql.conf.ext >> args = /etc/dovecot/dovecot-sql.conf.ext >> } >> >> Starting Dovecot I am getting the following error: >> >> # 2.0.12: /etc/dovecot/dovecot.conf >> doveconf: Fatal: Error in configuration file >> /etc/dovecot/conf.d/auth-sql.conf.ext line 8: Unknown setting: connect >> >> This is my first time configuring SQL for Dovecot so I am not sure how >> "connect" is recognized as an unknown setting? > > It's an unknown setting in the passdb {} section. > > ,--[ $sysconfdir/dovecot/dovecot-sql.conf.ext ]-- > | connect = ? > | [default_pass_scheme = ?] > | password_query = ? > | user_query = ? > | iterate_query = ? > `-- > > ,--[ $sysconfdir/dovecot/conf.d/auth-sql.conf.ext ]-- > | passdb { > | driver = sql > | args = $sysconfdir/dovecot/dovecot-sql.conf.ext > ] } > | userdb { > | driver = sql > | args = $sysconfdir/dovecot/dovecot-sql.conf.ext > | } > `-- > > > Re4gards, > Pascal Pascal, I discovered looking at the config file again that the passdb section is trying to reference the file /etc/dovecot/dovecot-sql.conf.ext for the information. I added the config options to that file, and it's working now. Thanks for the reply. Michael From wgillespie+dovecot at es2eng.com Thu Jun 23 03:21:18 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Wed, 22 Jun 2011 18:21:18 -0600 Subject: [Dovecot] Custom Trash (etc) location In-Reply-To: <4E00A68B.7090500@gmail.com> References: <4E00A68B.7090500@gmail.com> Message-ID: <4E0286FE.6070009@es2eng.com> On 06/21/2011 08:11 AM, fusionstream wrote: > Hi there. > > I have dovecot 1.2.17 installed on me system. > > I'd like to create a gmail-esque imap tree where all imap folders except > for the inbox are in a subdirectory(?). More importantly, I'd like the > email client (specifically thunderbird) to be able to recognise the > folders and thusly give it a special trash/junk/etc icon which I presume > also makes trash and junk go to, well the truash and junk folders > automagically. Based on searching the web, I believe that namespaces are > the solution. I believed that I had set it up to be > 1) Inbox > 2) IMAP > - Drafts > - Junk > - Trash > - etc > > However, when trying to use namespaces, I get IMAP.Drafts, IMAP.Junk and > all the other folders also appearing in INBOX, in addition to another > top-level IMAP.*. What am I doing wrong? If I understand the solutions > posted on the web correctly, solving this (resulting in only one of each > type of folder) should make thunderbird automagically recognise these > "special folders". Why not just have one namespace with the IMAP. prefix? "INBOX" is a special reserved mailbox that will always exist. As far as Thunderbird "recognizing" the folders and giving them the special icons -- that's nothing Dovecot has control over. Thunderbird will just look for common-named folders, such as "Trash" and figure that's the Trash spot. From wgillespie+dovecot at es2eng.com Thu Jun 23 03:25:39 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Wed, 22 Jun 2011 18:25:39 -0600 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31893428.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> <1a1776776769d4ada496b427f53c6222@junc.org> <31892708.post@talk.nabble.com> <687491ca953d6332d4315dad1a971f83@junc.org> <31893428.post@talk.nabble.com> Message-ID: <4E028803.9040208@es2eng.com> On 06/21/2011 05:50 AM, Theatre wrote: > Starting Dovecot Imap: Error: Error in configuration file /etc/dovecot.conf > line 233: > Unknown setting: subscriptions > Fatal: Invalid configuration in /etc/dovecot.conf > [FAILED] So what is on/around line 233 in /etc/dovecot.conf? It seems like that's where I would try to look. Also, to answer your initial question, you could probably use Maildir instead of mbox if you want a painless way to support subfolders. It's not that mbox can't do it, it's just a little more picky about it. From weirdit at gmail.com Thu Jun 23 04:39:54 2011 From: weirdit at gmail.com (Tim) Date: Thu, 23 Jun 2011 11:39:54 +1000 Subject: [Dovecot] Thunderbird or Dovecot causing duplicates Message-ID: Hey everyone, back on the list after a few years away. I have a strange issue that is just annoying. Trying to work out if it's Dovecot or Thunderbird causing the problem. Basically, I read an email (so it gets marked as read) and then very quickly I mark is as unread, (i.e. I realised I want to leave that email for later) which causes a duplicate email to be created. Generally I believe both duplicates are then marked as unread, but I've not taken too much notice of that part yet, other than the new email (the duplicate) being marked as unread. This has also happened when deleting emails from a junk folder. It seems to be events happening quickly that ether Thunderbird or Dovecot don't keep up with, so think the state of the message hasn't changed, so recreate the message maybe? I'm not really sure, so was hoping someone else had experienced the issue or could shed some light on it. Thanks Tim The logs from when I managed to recreate this manually this morning as a test. Jun 23 09:23:24 tahn dovecot: IMAP(tim): Fixed a duplicate: /home/tim/Maildir/cur/1308696708.M863172P16126.tahn,S=3761,W=3888:2,S -> 1308792204.M626641P1992.tahn Some older logs from what I believe was deleting from the junk mail. Jun 22 13:50:30 tahn dovecot: IMAP(tim): Fixed a duplicate: /home/tim/Maildir/.Junk/cur/1305489734.M227104P26221.tahn,S=73074,W=75051:2,S -> 1308721830.M966622P17272.tahn Jun 22 13:50:30 tahn dovecot: IMAP(tim): Fixed a duplicate: /home/tim/Maildir/.Junk/cur/1305417777.M51118P10799.tahn,S=4057,W=4132:2,ST -> 1308721830.M966623P17272.tahn Jun 22 13:50:30 tahn dovecot: IMAP(tim): Fixed a duplicate: /home/tim/Maildir/.Junk/cur/1305611378.M37299P20335.tahn,S=4772,W=4858:2,ST -> 1308721830.M966624P17272.tahn I'm using dovecot on Ubuntu 10.04 LTS with the dovecot-postfix package. Client is Thunderbird 3.1.10. $ apt-cache policy dovecot-imapd dovecot-imapd: Installed: 1:1.2.9-1ubuntu6.4 Candidate: 1:1.2.9-1ubuntu6.4 Version table: 1:1.2.9-1ubuntu6.5 0 900 http://ftp.iinet.net.au/linux/ubuntu/ lucid-updates/main Packages 400 http://ftp.iinet.net.au/linux/ubuntu/ lucid-proposed/main Packages *** 1:1.2.9-1ubuntu6.4 0 990 http://security.ubuntu.com/ubuntu/ lucid-security/main Packages 100 /var/lib/dpkg/status 1:1.2.9-1ubuntu6 0 500 http://ftp.iinet.net.au/linux/ubuntu/ lucid/main Packages $ apt-cache policy dovecot-postfix dovecot-postfix: Installed: 1:1.2.9-1ubuntu6.5 Candidate: 1:1.2.9-1ubuntu6.5 Version table: *** 1:1.2.9-1ubuntu6.5 0 900 http://ftp.iinet.net.au/linux/ubuntu/ lucid-updates/main Packages 400 http://ftp.iinet.net.au/linux/ubuntu/ lucid-proposed/main Packages 100 /var/lib/dpkg/status 1:1.2.9-1ubuntu6.4 0 990 http://security.ubuntu.com/ubuntu/ lucid-security/main Packages 1:1.2.9-1ubuntu6 0 500 http://ftp.iinet.net.au/linux/ubuntu/ lucid/main Packages $dovecot -n # 1.2.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-30-generic-pae i686 Ubuntu 10.04.2 LTS log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s managesieve listen: *,[::] ssl_cert_file: /etc/ssl/certs/ssl-mail.pem ssl_key_file: /etc/ssl/private/ssl-mail.key ssl_cipher_list: ALL:!LOW:!SSLv2:ALL:!aNULL:!ADH:!eNULL:!EXP:RC4+RSA:+HIGH:+MEDIUM login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login login_executable(managesieve): /usr/lib/dovecot/managesieve-login mail_privileged_group: mail mail_location: maildir:~/Maildir mbox_write_locks: fcntl dotlock mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(pop3): /usr/lib/dovecot/pop3 mail_executable(managesieve): /usr/lib/dovecot/managesieve mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve imap_client_workarounds(default): outlook-idle delay-newmail imap_client_workarounds(imap): outlook-idle delay-newmail imap_client_workarounds(pop3): imap_client_workarounds(managesieve): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh pop3_client_workarounds(managesieve): lda: postmaster_address: postmaster mail_plugins: sieve quota_full_tempfail: yes deliver_log_format: msgid=%m: %$ rejection_reason: Your message to <%t> was automatically rejected:%n%r auth default: mechanisms: plain login passdb: driver: pam passdb: driver: pam userdb: driver: passwd userdb: driver: passwd socket: type: listen client: path: /var/spool/postfix/private/dovecot-auth mode: 432 user: postfix group: postfix plugin: sieve: ~/.dovecot.sieve sieve_dir: ~/sieve -- Timothy White - Somewhere in Australia From ryan.m.dotson at gmail.com Thu Jun 23 06:03:20 2011 From: ryan.m.dotson at gmail.com (Ryan Dotson) Date: Wed, 22 Jun 2011 23:03:20 -0400 Subject: [Dovecot] %d empty string Message-ID: I am trying to upgrade from dovecot 1.x to Dovecot 2.0.13 on Fedora. My problem is the mail_location setting seems to ignore the %d variable. My my location is as follows: mail_location = maildir:/var/spool/virtual_mail/%d/%u/Maildir However, when trying to log in the maillog says it can't find /var/spool/virtual_mail//*myusername*/Maildir/cur. As you can see it just uses an empty string for the %d variable. Can anyone help? Thanks, Ryan From wgillespie+dovecot at es2eng.com Thu Jun 23 08:18:50 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Wed, 22 Jun 2011 23:18:50 -0600 Subject: [Dovecot] %d empty string In-Reply-To: References: Message-ID: <4E02CCBA.2050406@es2eng.com> On 6/22/2011 9:03 PM, Ryan Dotson wrote: > I am trying to upgrade from dovecot 1.x to Dovecot 2.0.13 on Fedora. My > problem is the mail_location setting seems to ignore the %d variable. My my > location is as follows: > > mail_location = maildir:/var/spool/virtual_mail/%d/%u/Maildir > > However, when trying to log in the maillog says it can't > find /var/spool/virtual_mail//*myusername*/Maildir/cur. As you can see it > just uses an empty string for the %d variable. Can anyone help? I assume you are trying to log in with myusername at somedomain.com? From nmilas at noa.gr Thu Jun 23 09:29:49 2011 From: nmilas at noa.gr (Nikolaos Milas) Date: Thu, 23 Jun 2011 09:29:49 +0300 Subject: [Dovecot] Error with Dovecot LDA when using recipient address misses user part Message-ID: <4E02DD5D.3030204@noa.gr> Hi, We are using Postfix 2.8.3 with Dovecot 2.0.13 on CentOS 5.6. The problem we have is that sometimes, due to mail sender's error when composing a message, the sender attempts to send an email to "@noa.gr" (without specifying the user part of the address). This results in a Postfix error due to Dovecot LDA use: Jun 22 21:05:31 vmail postfix/pipe[31862]: CC89FC4D210: to=<@noa.gr>, relay=dovecot, delay=0.41, delays=0.24/0.013/0/0.15, dsn=5.3.0, status=bounced (command line usage error. Command output: /usr/libexec/dovecot/dovecot-lda: option requires an argument -- d Usage: dovecot-lda [-c ] [-a
] [-d ] [-p ] [-f ] [-m ] [-e] [-k] ) Postfix master.cf is configured as: dovecot unix - n n - - pipe flags=DRhu user=vmail:vmail argv=/usr/libexec/dovecot/dovecot-lda -f ${sender} -d ${user} Obviously this happens because in this case there is no ${user} data. My question is: Can we somehow configure things in a way so as to avoid this error when someone sends an email with blank sender data? Can Dovecot provide some meaningful message to postfix (like "No user specified") instead of failing with a "command line usage error"? Thanks, Nick -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6762 bytes Desc: S/MIME Cryptographic Signature URL: From komodo at uvt.cz Thu Jun 23 10:24:39 2011 From: komodo at uvt.cz (komodo) Date: Thu, 23 Jun 2011 09:24:39 +0200 Subject: [Dovecot] Multiple values found for 'user', using value In-Reply-To: <1308764277.10421.916.camel@hurina> References: <201106161103.32370.komodo@uvt.cz> <1308764277.10421.916.camel@hurina> Message-ID: <201106230924.39228.komodo@uvt.cz> On Wednesday 22 June 2011 19:37:57 Timo Sirainen wrote: > On Thu, 2011-06-16 at 11:03 +0200, komodo wrote: > > Hi > > > > since latest upgrade on my machine, i have lot of warnings in my log, and > > i found that it is due this change > > > > http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html > > > > Is there any option to disable these warnings ? Yes we have multiple UIDs > > so these warnings bothers me. > > LDAP protocol doesn't give guarantees about values being returned in any > specific order. Does your LDAP server? If you have multiple UIDs, do you > always want the first one to be used? Why do you have multiple? Hi, miltiple UIDs are for historical reason, there was requirement to be able login with username and username at domain, so there is UID username and username at domain. Martin From karlis.repsons at gmail.com Thu Jun 23 11:23:58 2011 From: karlis.repsons at gmail.com (=?UTF-8?Q?K=C4=81rlis_Repsons?=) Date: Thu, 23 Jun 2011 08:23:58 +0000 Subject: [Dovecot] dovecot security with IPv6 Message-ID: Hi Timo, hi all others! In fact, I've only read one person claiming that IPv6 support opens up "too many backdoors" [1], but anyway, as I intend to run just particular services, please give me your opinion if it's insecure to have a dovecot server, which is accessed through a public IPv6 address... (or note just shortly what else could give a firm ground to such claims...) [1] http://forums.gentoo.org/viewtopic-t-882557.html From tlx at leuxner.net Thu Jun 23 11:50:33 2011 From: tlx at leuxner.net (Thomas Leuxner) Date: Thu, 23 Jun 2011 10:50:33 +0200 Subject: [Dovecot] Error with Dovecot LDA when using recipient address misses user part In-Reply-To: <4E02DD5D.3030204@noa.gr> References: <4E02DD5D.3030204@noa.gr> Message-ID: <7416B2D9-9173-4A7D-87A3-C833DC4562FD@leuxner.net> > Hi, > > We are using Postfix 2.8.3 with Dovecot 2.0.13 on CentOS 5.6. > > The problem we have is that sometimes, due to mail sender's error when composing a message, the sender attempts to send an email to "@noa.gr" (without specifying the user part of the address). This results in a Postfix error due to Dovecot LDA use: IMHO you should look into fixing this on the Postfix side. You should definitely not allow incomplete addresses to hit Dovecot. Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 203 bytes Desc: Signierter Teil der Nachricht URL: From cinzia.innocenzi at hp.com Thu Jun 23 12:06:03 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Thu, 23 Jun 2011 09:06:03 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <4E024B83.4050204@simonecaruso.com> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <4E024B83.4050204@simonecaruso.com> Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44DAA3146@GVW1102EXC.americas.hpqcorp.net> I'll give it a try as soon as I get another mail stuck in the queue. Unfortunately it doesn't happen too often. Thank you. I'll keep you updated. Regards CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Simone Caruso [mailto:info at simonecaruso.com] Sent: mercoled? 22 giugno 2011 22.08 To: Innocenzi, Cinzia Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP if u already didnt, try setting 'mail_debug=yes' in config. -- Simone Caruso IT Consultant p.iva: 03045250838 From a.othman at cairosource.com Thu Jun 23 11:47:33 2011 From: a.othman at cairosource.com (Amira Othman) Date: Thu, 23 Jun 2011 11:47:33 +0300 Subject: [Dovecot] pop3 configuration Message-ID: <000001cc3182$32de9820$989bc860$@othman@cairosource.com> Hi I am using Dovecot version 1.0.7 with postfix-2.3.3-2.3. on CentOS5.6 and it's my first time to setup mail server .Everything is working fine sending and receiving but when connecting through any mail client I only can send mails but the received mails I can't read them although they are already received on the server and there is no problems in mail log file .Any one can help me?? Amira Othman Server Administrator www.cairosource.com 6 EL Nil EL Abyad, Mohandiseen Cairo, Egypt Direct: +2 02 3303 7175 Mobile: +2 012 220 4165 The information transmitted is intended solely for the individual or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of or taking action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this email in error please contact the sender and delete the material from any computer. -------------- next part -------------- A non-text attachment was scrubbed... Name: image001.jpg Type: image/jpeg Size: 2131 bytes Desc: not available URL: From fusionstream at gmail.com Thu Jun 23 12:55:51 2011 From: fusionstream at gmail.com (Fusionstream) Date: Thu, 23 Jun 2011 17:55:51 +0800 Subject: [Dovecot] Custom Trash (etc) location In-Reply-To: <4E0286FE.6070009@es2eng.com> References: <4E00A68B.7090500@gmail.com> <4E0286FE.6070009@es2eng.com> Message-ID: Thanks for your reply. Because I'd like to have all imap folders in an obvious folder so as not to confuse a user who switches over from pop, or is familiar with gmail's imap layout in thunderbird which has a local copy of trash, sent and draft. INBOX will remain because as you rightly pointed out, that is standard. I've reverted back to just letting autocreate create the folders with no namespace defined but I'm sure there is a proper way of setting up namespaces. -- Sent from my Android phone with K-9 Mail. Please excuse my brevity. Willie Gillespie wrote: On 06/21/2011 08:11 AM, fusionstream wrote: > Hi there. > > I have dovecot 1.2.17 installed on me system. > > I'd like to create a gmail-esque imap tree where all imap folders except > for the inbox are in a subdirectory(?). More importantly, I'd like the > email client (specifically thunderbird) to be able to recognise the > folders and thusly give it a special trash/junk/etc icon which I presume > also makes trash and junk go to, well the truash and junk folders > automagically. Based on searching the web, I believe that namespaces are > the solution. I believed that I had set it up to be > 1) Inbox > 2) IMAP > - Drafts > - Junk > - Trash > - etc > > However, when trying to use namespaces, I get IMAP.Drafts, IMAP.Junk and > all the other folders also appearing in INBOX, in addition to another > top-level IMAP.*. What am I doing wrong? If I understand the solutions > posted on the web correctly, solving this (resulting in only one of each > type of folder) should make thunderbird automagically recognise these > "special folders". Why not just have one namespace with the IMAP. prefix? "INBOX" is a special reserved mailbox that will always exist. As far as Thunderbird "recognizing" the folders and giving them the special icons -- that's nothing Dovecot has control over. Thunderbird will just look for common-named folders, such as "Trash" and figure that's the Trash spot. From k.shantanu2006 at gmail.com Thu Jun 23 14:32:15 2011 From: k.shantanu2006 at gmail.com (kumar shantanu) Date: Thu, 23 Jun 2011 17:02:15 +0530 Subject: [Dovecot] Public Folder ACL Problem Message-ID: Hi All, I am trying to achieve ACL set in Public folders, I have public namespace in dovecot.conf like this namespace public { separator = / prefix = Public/ location = maildir:/var/mail/public/ subscriptions = no } and now under public folder I have two subfolders .test and .test1 . I have created dovecote-acl under .test so that it can be seen and subscribe. but I can't see those subfolders in public folder. Logs says Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: initializing backend with data: vfile Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: acl username = shantanu at techblue.co.in Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: owner = 0 Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: file /var/mail/public/.test1/dovecot-acl not found Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: reading file /var/mail/public/.test/dovecot-acl My dovecot-acl file reads "user=shantanu at techblue.co.in lr" It looks I have some problem with my dovecot-acl file, Can anybody please suggest. Thanks in Advance Shantanu From maria_arrea at gmx.com Thu Jun 23 14:59:30 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Thu, 23 Jun 2011 11:59:30 +0000 Subject: [Dovecot] Question about corrupted mdbox file Message-ID: <20110623115930.75850@gmx.com> Hello. We are using mdbox 2.013 + zlib, without SIS. When I try doveadm force-resync on a user's mailbox I get the following: doveadm(jmraya): Error: Corrupted dbox file /buzones/mydomain/0b/59/jmraya/storage/m.27 (around offset=22805024): Unexpected EOF while reading metadata header doveadm(jmraya): Warning: dbox: Copy of the broken file saved to /buzones/mydomain/0b/59/jmraya/storage/m.27.broken Any advice about this? Regards Maria From list at airstreamcomm.net Thu Jun 23 16:37:50 2011 From: list at airstreamcomm.net (list at airstreamcomm.net) Date: Thu, 23 Jun 2011 08:37:50 -0500 Subject: [Dovecot] Mysql access denied Message-ID: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> Currently using dovecot 2.0.12 and mysql server 4.0.20 (I know, it's really old) and having issues getting Dovecot to authenticate to the mysql server. We have confirmed that the credentials are correct and the host machine can access the database, however we are getting the following error: Jun 23 08:12:50 hostname dovecot: auth: Error: mysql(databaseserver.com): Connect failed to database (database): Access denied for user: 'sqladmin at ip.of.host.machine' (Using password: YES) - waiting for 1 seconds before retry We are assuming this has something to do with the password hashing algorithm in older versions of mysql, but we are hoping to confirm this theory and find a solution. Thanks. From duane at duanemail.org Thu Jun 23 17:03:34 2011 From: duane at duanemail.org (Duane Hill) Date: Thu, 23 Jun 2011 09:03:34 -0500 Subject: [Dovecot] Mysql access denied In-Reply-To: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> References: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> Message-ID: <159189942.20110623090334@duanemail.org> Thursday, June 23, 2011, 8:37:50 AM, you wrote: > Currently using dovecot 2.0.12 and mysql server 4.0.20 (I know, it's > really old) and having issues getting Dovecot to authenticate to the mysql > server. We have confirmed that the credentials are correct and the host > machine can access the database, however we are getting the following > error: > Jun 23 08:12:50 hostname dovecot: auth: Error: mysql(databaseserver.com): > Connect failed to database (database): Access denied for user: > 'sqladmin at ip.of.host.machine' (Using password: YES) - waiting for 1 seconds > before retry > We are assuming this has something to do with the password hashing > algorithm in older versions of mysql, but we are hoping to confirm this > theory and find a solution. You need to make sure there is a mysql account named 'sqladmin'@'ip.of.host.machine' that has access to whatever database/table it needs. -- Best regards, Duane mailto:duane at duanemail.org From list at airstreamcomm.net Thu Jun 23 17:11:04 2011 From: list at airstreamcomm.net (list at airstreamcomm.net) Date: Thu, 23 Jun 2011 09:11:04 -0500 Subject: [Dovecot] Mysql access denied In-Reply-To: <4E03444A.5020403@gmail.com> References: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> <4E03444A.5020403@gmail.com> Message-ID: On Thu, 23 Jun 2011 15:48:58 +0200, Johan Hendriks wrote: > Op 23-6-2011 15:37, list at airstreamcomm.net [1] schreef: > Currently using dovecot 2.0.12 and mysql server 4.0.20 (I know, it's > really old) and having issues getting Dovecot to authenticate to the > mysql > server. We have confirmed that the credentials are correct and the host > machine can access the database, however we are getting the following > error: > > Jun 23 08:12:50 hostname dovecot: auth: Error: mysql(databaseserver.com): > Connect failed to database (database): Access denied for user: > 'sqladmin at ip.of.host.machine [2]' (Using password: YES) - waiting for 1 > seconds > before retry > > We are assuming this has something to do with the password hashing > algorithm in older versions of mysql, but we are hoping to confirm this > theory and find a solution. > > Thanks. > > This has as far as i can see nothing to do with hashes. > It is the mysql database that disallows the user sqladmin access to the > database. > Make sure the user sqladmin has the proper rights to access the > database, from the ipadres. > > Gr > Johan Hendriks > > > > Links: > ------ > [1] mailto:list at airstreamcomm.net > [2] mailto:sqladmin at ip.of.host.machine When talking about hashes I was referring to this wiki article: http://wiki1.dovecot.org/MysqlProblems. As I stated in my email we have confirmed that the host can access the database just fine, and the credentials are correct in the config for Dovecot. Thanks. From me at deltaindigo.ro Thu Jun 23 17:31:41 2011 From: me at deltaindigo.ro (alex) Date: Thu, 23 Jun 2011 17:31:41 +0300 Subject: [Dovecot] interpreting imaptest results Message-ID: <4E034E4D.9060200@deltaindigo.ro> Hi I'am doing some tests with nginx proxy -> dovecot using imaptest: imaptest user=user host=host pass=pass msgs=50 clients=100 Logi List Stat Sele Fetc Fet2 Stor Dele Expu Appe Logo 100% 50% 50% 100% 100% 100% 50% 100% 100% 100% 100% 30% 5% 41 19 10 36 24 39 9 13 11 8 12 100/100 10 12 11 17 24 31 3 24 38 46 94 100/100 24 13 13 24 26 33 10 22 25 25 52 100/100 27 13 12 25 23 26 9 19 23 24 48 100/100 25 14 13 27 27 40 7 19 27 28 56 100/100 36 12 16 33 28 39 7 23 20 24 44 99/100 17 12 8 19 18 27 5 18 27 28 60 99/100 27 12 11 25 22 27 6 18 22 25 50 100/100 24 13 12 27 25 34 1 21 24 28 52 100/100 26 5 11 25 20 30 10 14 18 20 42 100/100 from what I have seen the results look pretty low , but what I can't really find is the meaning of numbers under each imap command. Can anyone explain what this numbers represent. Thank you Alex From tom at whyscream.net Thu Jun 23 17:55:54 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Thu, 23 Jun 2011 16:55:54 +0200 Subject: [Dovecot] Mysql access denied In-Reply-To: References: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> <4E03444A.5020403@gmail.com> Message-ID: <4E0353FA.9060600@whyscream.net> On 23/06/11 16:11, list at airstreamcomm.net wrote: >> >> We are assuming this has something to do with the password hashing >> algorithm in older versions of mysql, but we are hoping to confirm this >> theory and find a solution. > > When talking about hashes I was referring to this wiki article: > http://wiki1.dovecot.org/MysqlProblems. As I stated in my email we have > confirmed that the host can access the database just fine, and the > credentials are correct in the config for Dovecot. > On the wiki page are 2 possible workarounds listed, did you try any of them? -- Regards, Tom From joh.hendriks at gmail.com Thu Jun 23 20:39:31 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Thu, 23 Jun 2011 19:39:31 +0200 Subject: [Dovecot] Mysql access denied In-Reply-To: References: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> <4E03444A.5020403@gmail.com> Message-ID: <4E037A53.7070503@gmail.com> list at airstreamcomm.net schreef: > On Thu, 23 Jun 2011 15:48:58 +0200, Johan Hendriks > wrote: >> Op 23-6-2011 15:37, list at airstreamcomm.net [1] schreef: >> Currently using dovecot 2.0.12 and mysql server 4.0.20 (I know, it's >> really old) and having issues getting Dovecot to authenticate to the >> mysql >> server. We have confirmed that the credentials are correct and the host >> machine can access the database, however we are getting the following >> error: >> >> Jun 23 08:12:50 hostname dovecot: auth: Error: > mysql(databaseserver.com): >> Connect failed to database (database): Access denied for user: >> 'sqladmin at ip.of.host.machine [2]' (Using password: YES) - waiting for 1 >> seconds >> before retry >> >> We are assuming this has something to do with the password hashing >> algorithm in older versions of mysql, but we are hoping to confirm this >> theory and find a solution. >> >> Thanks. >> >> This has as far as i can see nothing to do with hashes. >> It is the mysql database that disallows the user sqladmin access to the >> database. >> Make sure the user sqladmin has the proper rights to access the >> database, from the ipadres. >> >> Gr >> Johan Hendriks >> >> >> >> Links: >> ------ >> [1] mailto:list at airstreamcomm.net >> [2] mailto:sqladmin at ip.of.host.machine > When talking about hashes I was referring to this wiki article: > http://wiki1.dovecot.org/MysqlProblems. As I stated in my email we have > confirmed that the host can access the database just fine, and the > credentials are correct in the config for Dovecot. > > Thanks. Well the wiki page you refering to is indeed describing problems with sha hashes. But the last line on this page tells you that it is fixed after 1.0rc9 And you mentioned using 2.0.12 So this is not the issue. Sometimes you need to use the FQDN in the GRANT command within mysql also. regards, Johan Hendriks Double L automatisering From wgillespie+dovecot at es2eng.com Thu Jun 23 20:46:52 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Thu, 23 Jun 2011 11:46:52 -0600 Subject: [Dovecot] dovecot security with IPv6 In-Reply-To: References: Message-ID: <4E037C0C.60607@es2eng.com> On 06/23/2011 02:23 AM, K?rlis Repsons wrote: > Hi Timo, hi all others! > > In fact, I've only read one person claiming that IPv6 support opens up > "too many backdoors" [1], but anyway, as I intend to run just > particular services, please give me your opinion if it's insecure to > have a dovecot server, which is accessed through a public IPv6 > address... > (or note just shortly what else could give a firm ground to such claims...) > > [1] http://forums.gentoo.org/viewtopic-t-882557.html I can't think of any backdoors introduced in IPv6. The trouble I foresee with IPv6 and email won't concern Dovecot, but some spam filtering. Since the IPv6 address space is large, people can't expect to be successful by blocking spammers IP addresses one-by-one. Instead they will end up blocking entire subnets if that's a route they choose to go. I know that Dovecot slows down/delays login attempts with multiple authentication failures. I guess the question to ask is whether this is source IP-based, or user name-based, or both. Anyone know the answer to this? If it's source IP-based, then if I was an attacker with an IPv6 subnet assigned to me, I would just come at it with a different IP address each time to avoid the slowdown. In short, that's the only real potential issue I could see. Willie From wgillespie+dovecot at es2eng.com Thu Jun 23 20:56:42 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Thu, 23 Jun 2011 11:56:42 -0600 Subject: [Dovecot] Public Folder ACL Problem In-Reply-To: References: Message-ID: <4E037E5A.1020303@es2eng.com> On 06/23/2011 05:32 AM, kumar shantanu wrote: > and now under public folder I have two subfolders .test and .test1 . I have > created dovecote-acl under .test so that it can be seen and subscribe. > but I can't see those subfolders in public folder. Logs says > > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: > initializing backend with data: vfile > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: acl > username = shantanu at techblue.co.in > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: owner = > 0 > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: > file /var/mail/public/.test1/dovecot-acl not found > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: > reading file /var/mail/public/.test/dovecot-acl > > My dovecot-acl file reads "user=shantanu at techblue.co.in lr" Looks like the dovecot-acl file is missing in /var/mail/public/.test1/ and is only in /var/mail/public/.test/ Do they show up when you list all folders? From nmilas at noa.gr Thu Jun 23 21:48:54 2011 From: nmilas at noa.gr (Nikolaos Milas) Date: Thu, 23 Jun 2011 21:48:54 +0300 Subject: [Dovecot] Error with Dovecot LDA when using recipient address misses user part In-Reply-To: <7416B2D9-9173-4A7D-87A3-C833DC4562FD@leuxner.net> References: <4E02DD5D.3030204@noa.gr> <7416B2D9-9173-4A7D-87A3-C833DC4562FD@leuxner.net> Message-ID: <4E038A96.7020204@noa.gr> On 23/6/2011 11:50 ??, Thomas Leuxner wrote: > IMHO you should look into fixing this on the Postfix side. You should > definitely not allow incomplete addresses to hit Dovecot. OK, thanks, you are right. I have already had some hints from the Postfix list! Nick -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6762 bytes Desc: S/MIME Cryptographic Signature URL: From hugo.monteiro at fct.unl.pt Fri Jun 24 00:35:28 2011 From: hugo.monteiro at fct.unl.pt (Hugo Monteiro) Date: Thu, 23 Jun 2011 22:35:28 +0100 Subject: [Dovecot] diacritic marks in password In-Reply-To: <1308764382.10421.917.camel@hurina> References: <4DF90287.90503@gmail.com> <1308764382.10421.917.camel@hurina> Message-ID: <4E03B1A0.8010903@fct.unl.pt> On 06/22/2011 06:39 PM, Timo Sirainen wrote: > On Wed, 2011-06-15 at 20:05 +0100, pch0317 wrote: >> Hi, >> >> I have dovecot 2.0.beta6 (on RedHat 6) and my user uses thunderbird >> 3.1.10 (on Windows XP). >> I use authentication via LDAP (Windows server 2003 AD). > With auth_bind=yes? > >> When user use in password diacritic marks (?,?,?,?,?,?) authentication >> failed. >> >> What can I do? > Not much from Dovecot's side, I'm afraid. > > > Hello, I've stumbled across such a limitation myself, but i was using OpenLDAP as ldap backend. I could even bind as the user, with ldapsearch, on the command line. Password data is stored in ldap as a base64 encoded utf-8 string. The problem is that there is a long lasting bug in thunderbird that makes TB _always_ use iso-8859-1 to enconde passwords, making them different from what the ldap backend is expecting. There was once someone that even provided the mozilla team with a patch, but sadly they went on without applying it. Time went by and now, even wanting to do the patching, the code changed so much that there would have to be done a major code rewrite of the patch. You can find out about all this in this bug report thread. https://bugzilla.mozilla.org/show_bug.cgi?id=312593 In our case, we solved the problem by not allowing users to use diacritics in passwords. R's, Hugo Monteiro. -- fct.unl.pt:~# cat .signature Hugo Monteiro Email : hugo.monteiro at fct.unl.pt Telefone : +351 212948300 Ext.15307 Web : http://hmonteiro.net Divis?o de Inform?tica Faculdade de Ci?ncias e Tecnologia da Universidade Nova de Lisboa Quinta da Torre 2829-516 Caparica Portugal Telefone: +351 212948596 Fax: +351 212948548 www.fct.unl.pt apoio at fct.unl.pt fct.unl.pt:~# _ From noel.butler at ausics.net Fri Jun 24 05:19:47 2011 From: noel.butler at ausics.net (Noel Butler) Date: Fri, 24 Jun 2011 12:19:47 +1000 Subject: [Dovecot] dovecot security with IPv6 In-Reply-To: References: Message-ID: <1308881987.6151.9.camel@tardis> That clown is a tad over paranoid... The only real issue with devices using ipv6 is that most people become relaxed with security, preferring with ipv4 to do it all on the NAT box, with ipv6 there is no NAT, so if you have 5 machines, you need to configure full security on all. If you're an ISP/OSP/ESP, then you should already have appropriate security via your router and server, just remember though, if using linux you need to use ip6tables -as well as- iptables in your firewall rules script. There is absolutely NO security risk in exposing any server port to the net, be it dovecot, apache, or bind ... or, whatever. On Thu, 2011-06-23 at 08:23 +0000, K?rlis Repsons wrote: > Hi Timo, hi all others! > > In fact, I've only read one person claiming that IPv6 support opens up > "too many backdoors" [1], but anyway, as I intend to run just > particular services, please give me your opinion if it's insecure to > have a dovecot server, which is accessed through a public IPv6 > address... > (or note just shortly what else could give a firm ground to such claims...) > > [1] http://forums.gentoo.org/viewtopic-t-882557.html -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From k.shantanu2006 at gmail.com Fri Jun 24 10:14:08 2011 From: k.shantanu2006 at gmail.com (kumar shantanu) Date: Fri, 24 Jun 2011 12:44:08 +0530 Subject: [Dovecot] Public Folder ACL Problem In-Reply-To: <4E037E5A.1020303@es2eng.com> References: <4E037E5A.1020303@es2eng.com> Message-ID: Hi Willie, Thanks for your help, yes there is not dovecot-acl in .test1 but there is one in .test but I can't see either folder . Suggestion welcome. Shantanu On Thu, Jun 23, 2011 at 11:26 PM, Willie Gillespie < wgillespie+dovecot at es2eng.com> wrote: > On 06/23/2011 05:32 AM, kumar shantanu wrote: > >> and now under public folder I have two subfolders .test and .test1 . I >> have >> created dovecote-acl under .test so that it can be seen and subscribe. >> but I can't see those subfolders in public folder. Logs says >> >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: >> initializing backend with data: vfile >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: acl >> username = shantanu at techblue.co.in >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: owner >> = >> 0 >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: >> file /var/mail/public/.test1/**dovecot-acl not found >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: >> reading file /var/mail/public/.test/**dovecot-acl >> >> My dovecot-acl file reads "user=shantanu at techblue.co.in lr" >> > > Looks like the dovecot-acl file is missing in /var/mail/public/.test1/ and > is only in /var/mail/public/.test/ > > Do they show up when you list all folders? > From d.iskandarov at gmail.com Fri Jun 24 12:35:13 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 13:35:13 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration Message-ID: Hello So what i have: centos 5.6 postfix 2.3.3 dovecot 2.0.13 postfixadmin 2.3.3 roundcube 0.5.3 All general things are working right now i can send receive email with ssl connections etc... Now i'm trying to configure additional options like quota and some other plugins like sieve, trash, expire and deleted-to-trash. Configuration of quota is on first place. I have read wiki regarding quota config , dict config but can't make things running. Hope there are normal sample configs you can share with me. I'm total noob in sql, so it's very difficult for me to arrange stuff in a way i need. My configs: dict { quota = mysql:/etc/dovecot/conf.d/sql/dovecot-dict-sql.conf # expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf } dovecot-dict-sql.conf sample i took from postfixadmin docs provided with package, also changed table to quota2 as suggested for dovecot 2: driver = mysql connect = host=localhost dbname=postfix user=postfix password=postfixadmin default_pass_scheme = MD5-CRYPT table = quota2 select_field = current where_field = path username_field = username my sql.conf i took it from tutorial on your wiki : LDA postfix postfixadmin: driver = mysql connect = host=localhost dbname=postfix user=postfix password=postfixadmin user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE username = '%u' AND active = '1' #user_query = SELECT maildir, 1001 AS uid, 1001 AS gid, CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') as quota FROM mailbox WHERE username = '%u' AND active='1' password_query = SELECT username as user, password, concat('/home/vmail/', maildir) as userdb_home, concat('maildir:/home/vmail/', maildir) as userdb_mail, 1001 as userdb_uid, 12 as userdb_gid FROM mailbox WHERE username = '%u' AND active = '1' The second user_query string i took from postfixadmin docs. But i dont know how to aply it. If it is better to use with mysql/postfixadmin and after this all i dont how to configure quota.conf (90-quota.conf): plugin { #quota = dirsize:User quota #quota = maildir:User quota #quota = dict:User quota::proxy::quota #quota = fs:User quota } # Multiple quota roots are also possible, for example this gives each user # their own 100MB quota and one shared 1GB quota within the domain: plugin { #quota = dict:user::proxy::quota #quota2 = dict:domain:%d:proxy::quota_domain #quota_rule = *:storage=102400 #quota2_rule = *:storage=1048576 } Please help me with configuration. I really stuck with this thing. And yes i've tried to find solutions on mailing list, but no luck. I want per domain/user quota in mysql. Also space usage to be shown in roundcube. Hope to get proper help ... And sorry... Thanks in advance. From stsiol at yahoo.co.uk Fri Jun 24 13:43:35 2011 From: stsiol at yahoo.co.uk (Spyros Tsiolis) Date: Fri, 24 Jun 2011 11:43:35 +0100 (BST) Subject: [Dovecot] Mysql access denied In-Reply-To: Message-ID: <1308912215.62459.YahooMailClassic@web27203.mail.ukl.yahoo.com> --- On Thu, 23/6/11, list at airstreamcomm.net wrote: > From: list at airstreamcomm.net > Subject: Re: [Dovecot] Mysql access denied > To: "Dovecot Mailing List" > Date: Thursday, 23 June, 2011, 17:11 > On Thu, 23 Jun 2011 15:48:58 +0200, > Johan Hendriks > > wrote: > > Op 23-6-2011 15:37, list at airstreamcomm.net > [1] schreef:? > > Currently using dovecot 2.0.12 and mysql server 4.0.20 > (I know, it's > > really old) and having issues getting Dovecot to > authenticate to the > > mysql > > server. We have confirmed that the credentials are > correct and the host > > machine can access the database, however we are > getting the following > > error: > > > > Jun 23 08:12:50 hostname dovecot: auth: Error: > mysql(databaseserver.com): > > Connect failed to database (database): Access denied > for user: > > 'sqladmin at ip.of.host.machine > [2]' (Using password: YES) - waiting for 1 > > seconds > > before retry > > > > We are assuming this has something to do with the > password hashing > > algorithm in older versions of mysql, but we are > hoping to confirm this > > theory and find a solution. > > > > Thanks. > > > >???This has as far as i can see nothing > to do with hashes. > >? It is the mysql database that disallows the user > sqladmin access to the > > database. > >? Make sure the user sqladmin has the proper > rights to access the > > database, from the ipadres. > > > >? Gr > >? Johan Hendriks > > > >? ? > > > > Links: > > ------ > > [1] mailto:list at airstreamcomm.net > > [2] mailto:sqladmin at ip.of.host.machine > > When talking about hashes I was referring to this wiki > article: > http://wiki1.dovecot.org/MysqlProblems.? As I > stated in my email we have > confirmed that the host can access the database just fine, > and the > credentials are correct in the config for Dovecot. > > Thanks. Hi , Just my 2c. 1. I noticed even in newer versions (in my case built from sources), if the admin enters special symbols on the passwords like !@#$%, MySQL accepts them but the user will never authenticate afterwards. So I keep passwords simple with latin and numbers only. 2. Also, make sure you have grasped well the "grant" syntax : example : [root at localhost ~]# mysql ?uroot ?p mysql> use datebase_schema; mysql> grant all on database_schema.* -> to user at localhost; Try the same for ip addresses. HTH, s. ---- "I merely function as a channel that filters music through the chaos of noise" - Vangelis From joh.hendriks at gmail.com Fri Jun 24 13:50:01 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Fri, 24 Jun 2011 12:50:01 +0200 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: References: Message-ID: <4E046BD9.5090902@gmail.com> Denis Iskandarov schreef: > Hello > So what i have: > centos 5.6 > postfix 2.3.3 > dovecot 2.0.13 > postfixadmin 2.3.3 > roundcube 0.5.3 > > All general things are working right now i can send receive email with > ssl connections etc... > Now i'm trying to configure additional options like quota and some > other plugins like sieve, trash, expire and deleted-to-trash. > Configuration of quota is on first place. I have read wiki regarding > quota config , dict config but can't make things running. > Hope there are normal sample configs you can share with me. > I'm total noob in sql, so it's very difficult for me to arrange stuff > in a way i need. > > My configs: > > dict { > quota = mysql:/etc/dovecot/conf.d/sql/dovecot-dict-sql.conf > # expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf > } > > dovecot-dict-sql.conf sample i took from postfixadmin docs provided > with package, also changed table to quota2 as suggested for dovecot 2: > driver = mysql > connect = host=localhost dbname=postfix user=postfix password=postfixadmin > default_pass_scheme = MD5-CRYPT > table = quota2 > select_field = current > where_field = path > username_field = username > > my sql.conf i took it from tutorial on your wiki : LDA postfix postfixadmin: > > driver = mysql > > connect = host=localhost dbname=postfix user=postfix password=postfixadmin > > user_query = SELECT concat('/home/vmail/', maildir) as home, > concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS > gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE > username = '%u' AND active = '1' > #user_query = SELECT maildir, 1001 AS uid, 1001 AS gid, > CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') as quota > FROM mailbox WHERE username = '%u' AND active='1' > > password_query = SELECT username as user, password, > concat('/home/vmail/', maildir) as userdb_home, > concat('maildir:/home/vmail/', maildir) as userdb_mail, 1001 as > userdb_uid, 12 as userdb_gid FROM mailbox WHERE username = '%u' AND > active = '1' > > The second user_query string i took from postfixadmin docs. But i dont > know how to aply it. If it is better to use with mysql/postfixadmin > > and after this all i dont how to configure quota.conf (90-quota.conf): > > plugin { > #quota = dirsize:User quota > #quota = maildir:User quota > #quota = dict:User quota::proxy::quota > #quota = fs:User quota > } > > # Multiple quota roots are also possible, for example this gives each user > # their own 100MB quota and one shared 1GB quota within the domain: > plugin { > #quota = dict:user::proxy::quota > #quota2 = dict:domain:%d:proxy::quota_domain > #quota_rule = *:storage=102400 > #quota2_rule = *:storage=1048576 > } > > Please help me with configuration. I really stuck with this thing. And > yes i've tried to find solutions on mailing list, but no luck. > I want per domain/user quota in mysql. Also space usage to be shown in > roundcube. > Hope to get proper help ... > And sorry... > Thanks in advance. Maybe stupid, but are these plugin examples really from your dovecot.conf file ? If so remove the # before the quota lines! this is my part from dovecot.conf (only relavant quota parts.) quotadict = mysql:/usr/local/etc/dovecot/dovecot-dict-quota.conf plugin { # Quota config quota = dict:User quota::noenforcing:proxy::quotadict quota_rule = *:storage=1G quota_rule2 = Trash:storage=+100M quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=90%% quota-warning 90 %u quota_warning3 = storage=80%% quota-warning 80 %u #OTHER Plugins .... .... } service quota-warning { executable = script /usr/local/bin/quota-warning.sh user = vmail unix_listener quota-warning { user = vmail } } protocol imap { imap_client_workarounds = delay-newmail tb-extra-mailbox-sep imap_idle_notify_interval = 120 s imap_logout_format = bytes=%i/%o imap_max_line_length = 65536 mail_plugins = quota imap_quota autocreate acl imap_acl mail_log notify fts fts_squat } protocol lmtp { auth_socket_path = /var/run/dovecot/auth-master mail_plugins = sieve quota acl mail_log notify postmaster_address = postmaster at yourdomain.com sendmail_path = /usr/local/sbin/sendmail } Above protocol lmtp could be protocol lda in your case This is my dovecot-dict-quota.conf file # Dovecot 2.0.x connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix password=mypostfixpasswd map { pattern = priv/quota/storage table = quota2 username_field = username value_field = bytes } map { pattern = priv/quota/messages table = quota2 username_field = username value_field = messages } This is my /usr/local/bin/quota-warning.sh file #!/usr/local/bin/bash PERCENT=$1 USER=$2 cat << EOF | /usr/local/libexec/dovecot/deliver -d $USER -o "plugin/quota=maildir:User quota:noenforcing" From: support at yourdomain.com Subject: quota warning Uw mailbox is momenteel voor $PERCENT% gevult. Verwijder oude mail, of vraag een verruiming van uw quota aan. Your mailbox is now $PERCENT% full. Please remove some old mail, or ask for a larger quota. Skrzynka pocztowa jest w tym momencie w $PERCENT% zapelniona. Usun stare wiadomosci,albo przenies w inny folder. EOF Hope this helps. Regards, Johan Hendriks Double L Automatisering From d.iskandarov at gmail.com Fri Jun 24 14:14:50 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 15:14:50 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: <4E046BD9.5090902@gmail.com> References: <4E046BD9.5090902@gmail.com> Message-ID: Thanks for your samples, they would help me so much! My config is commented because i didn't know how to properly configure it, didn't understand theory to start doing things on practice. can you show me your dovecot-mysql.conf as well ? it should be final peace of puzzle for me. i'm interested in this two almost different user_query lines: user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE username = '%u' AND active = '1' user_query = SELECT maildir, 1001 AS uid, 1001 AS gid, CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') as quota FROM mailbox WHERE username = '%u' AND active='1' first one provided from dovecot wiki and second one from postfixadmin docs regarding dovecot configuration. may i use user_query like this? : user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') AS quota FROM mailbox WHERE username = '%u' AND active = '1' seems like this line doing some nice customization showing quota in kilobytes and not in bytes. or if someone could explain what does this string means. also what does this line means ?: concat('maildir:/home/vmail/', maildir) as mail string about home i understood dovecot reads users home dir from this line. And i dont understand if why should i indicate in 10-mail.conf next string: mail_location = maildir:/home/vmail/%d/%u If it is overided by user_query from mysql? Also what is meaning of quota(2) table. does dovecot reading configuration from there or just stores usage information ? Also what does this string mean?: pattern = priv/quota/messages what privileges those who reads the, or where are they indicated ? Thanks in advance. Denis. > Maybe stupid, but are these ?plugin examples really from your dovecot.conf > file ? > If so remove the # before the quota lines! > > this is my part from dovecot.conf (only relavant quota parts.) > > ?quotadict = mysql:/usr/local/etc/dovecot/dovecot-dict-quota.conf > > plugin { > # Quota config > ?quota = dict:User quota::noenforcing:proxy::quotadict > ?quota_rule = *:storage=1G > ?quota_rule2 = Trash:storage=+100M > ?quota_warning = storage=95%% quota-warning 95 %u > ?quota_warning2 = storage=90%% quota-warning 90 %u > ?quota_warning3 = storage=80%% quota-warning 80 %u > ?#OTHER Plugins > .... > .... > } > > service quota-warning { > ?executable = script /usr/local/bin/quota-warning.sh > ?user = vmail > ?unix_listener quota-warning { > ?user = vmail > ?} > } > > protocol imap { > ?imap_client_workarounds = delay-newmail tb-extra-mailbox-sep > ?imap_idle_notify_interval = 120 s > ?imap_logout_format = bytes=%i/%o > ?imap_max_line_length = 65536 > ?mail_plugins = quota imap_quota autocreate acl imap_acl mail_log notify fts > fts_squat > } > > protocol lmtp { > ?auth_socket_path = /var/run/dovecot/auth-master > ?mail_plugins = sieve quota acl mail_log notify > ?postmaster_address = postmaster at yourdomain.com > ?sendmail_path = /usr/local/sbin/sendmail > } > > Above protocol lmtp could be protocol lda in your case > > This is my dovecot-dict-quota.conf ?file > > # Dovecot 2.0.x > connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix > password=mypostfixpasswd > map { > ?pattern = priv/quota/storage > ?table = quota2 > ?username_field = username > ?value_field = bytes > } > map { > ?pattern = priv/quota/messages > ?table = quota2 > ?username_field = username > ?value_field = messages > } > > This is my /usr/local/bin/quota-warning.sh file > > #!/usr/local/bin/bash > PERCENT=$1 > USER=$2 > cat << EOF | /usr/local/libexec/dovecot/deliver -d $USER -o > "plugin/quota=maildir:User quota:noenforcing" > From: support at yourdomain.com > Subject: quota warning > > Uw mailbox is momenteel voor $PERCENT% gevult. > Verwijder oude mail, of vraag een verruiming van uw quota aan. > > Your mailbox is now $PERCENT% full. > Please remove some old mail, or ask for a larger quota. > > Skrzynka pocztowa jest w tym momencie w $PERCENT% zapelniona. > Usun stare wiadomosci,albo przenies w inny folder. > > EOF > > Hope this helps. > > Regards, > Johan Hendriks > Double L Automatisering From d.iskandarov at gmail.com Fri Jun 24 14:52:52 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 15:52:52 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: References: Message-ID: After doing some configrations i got errors with quota and my setup is brocken now: dict: dict { quotadict = mysql:/etc/dovecot/conf.d/sql/dovecot-dict-sql.conf # expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf } dovecot-dict-sql.conf: connect = host=localhost dbname=postfix user=postfix password=postfixadmin map { pattern = priv/quota/storage table = quota2 username_field = username value_field = bytes } map { pattern = priv/quota/messages table = quota2 username_field = username value_field = messages } quota plugin config: plugin { quota = dict:User quota::proxy::quotadict quota_rule = *:storage=1G quota_rule2 = Trash:storage=+100M } user_query field: user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, concat('dict:storage=',floor(quota/1000),' proxy::quotadict') AS quota FROM mailbox WHERE username = '%u' AND active = '1' Errors log: dovecot.log: Jun 24 11:41:24 imap: Debug: Loading modules from directory: /usr/lib/dovecot Jun 24 11:41:24 imap: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 24 11:41:24 imap: Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Jun 24 11:41:24 imap: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 24 11:41:24 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 24 11:41:24 imap: Debug: Added userdb setting: plugin/quota=dict:storage=10240 proxy::quotadict Jun 24 11:41:24 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 24 11:41:24 imap(test at office.dev): Debug: Quota root: name=storage=10240 proxy backend=dict args=:quotadict Jun 24 11:41:24 imap(test at office.dev): Debug: Quota rule: root=storage=10240 proxy mailbox=* bytes=1073741824 messages=0 Jun 24 11:41:24 imap(test at office.dev): Debug: Quota rule: root=storage=10240 proxy mailbox=Trash bytes=+104857600 messages=0 Jun 24 11:41:24 imap(test at office.dev): Debug: dict quota: user=test at office.dev, uri=quotadict, noenforcing=0 Jun 24 11:41:24 imap(test at office.dev): Error: Dictionary URI is missing ':': quotadict Jun 24 11:41:24 imap(test at office.dev): Error: user test at office.dev: Initialization failed: Failed to initialize quota: Quota root storage=10240 proxy: init() failed Jun 24 11:41:24 imap(test at office.dev): Error: Invalid user settings. Refer to server log for more information. Jun 24 11:41:24 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=4611, TLS Jun 24 11:41:24 imap-login: Warning: SSL alert: where=0x4008, ret=256: warning close notify [192.168.0.11] # doveadm quota recalc doveadm(root): Error: chdir(/root/) failed: Permission denied (euid=1001(vmail) egid=12(mail) missing +x perm: /root, euid is not dir owner) doveadm(root): Error: chdir(/root) failed: Permission denied doveadm(root): Error: net_connect_unix(/var/run/dovecot//dict) failed: Permission denied (euid=1001(vmail) egid=12(mail) missing +r perm: /var/run/dovecot//dict, euid is not dir owner) why this command working in my home /root dir ? i have done next thing after: service dict { unix_listener dict { mode = 0660 user = vmail group = mail } } now i'm getting only next: ~]# doveadm quota recalc doveadm(root): Error: chdir(/root/) failed: Permission denied (euid=1001(vmail) egid=12(mail) missing +x perm: /root, euid is not dir owner) doveadm(root): Error: chdir(/root) failed: Permission denied Whats wrong. Please help. From joh.hendriks at gmail.com Fri Jun 24 15:19:24 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Fri, 24 Jun 2011 14:19:24 +0200 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: References: <4E046BD9.5090902@gmail.com> Message-ID: <4E0480CC.7060103@gmail.com> Denis Iskandarov schreef: > Thanks for your samples, they would help me so much! > My config is commented because i didn't know how to properly configure > it, didn't understand theory to start doing things on practice. > can you show me your dovecot-mysql.conf as well ? it should be final > peace of puzzle for me. > i'm interested in this two almost different user_query lines: > > user_query = SELECT concat('/home/vmail/', maildir) as home, > concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS > gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE > username = '%u' AND active = '1' > > user_query = SELECT maildir, 1001 AS uid, 1001 AS gid, > CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') as quota > FROM mailbox WHERE username = '%u' AND active='1' > > first one provided from dovecot wiki and second one from postfixadmin > docs regarding dovecot configuration. > may i use user_query like this? : > > user_query = SELECT concat('/home/vmail/', maildir) as home, > concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS > gid, CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') AS > quota FROM mailbox WHERE > username = '%u' AND active = '1' > > seems like this line doing some nice customization showing quota in > kilobytes and not in bytes. or if someone could explain what does this > string means. > also what does this line means ?: > concat('maildir:/home/vmail/', maildir) as mail > string about home i understood dovecot reads users home dir from this line. > And i dont understand if why should i indicate in 10-mail.conf next string: > mail_location = maildir:/home/vmail/%d/%u > If it is overided by user_query from mysql? > > Also what is meaning of quota(2) table. does dovecot reading > configuration from there or just stores usage information ? > Also what does this string mean?: pattern = priv/quota/messages > what privileges those who reads the, or where are they indicated ? > > Thanks in advance. > Denis. > >> Maybe stupid, but are these plugin examples really from your dovecot.conf >> file ? >> If so remove the # before the quota lines! >> >> this is my part from dovecot.conf (only relavant quota parts.) >> >> quotadict = mysql:/usr/local/etc/dovecot/dovecot-dict-quota.conf >> >> plugin { >> # Quota config >> quota = dict:User quota::noenforcing:proxy::quotadict >> quota_rule = *:storage=1G >> quota_rule2 = Trash:storage=+100M >> quota_warning = storage=95%% quota-warning 95 %u >> quota_warning2 = storage=90%% quota-warning 90 %u >> quota_warning3 = storage=80%% quota-warning 80 %u >> #OTHER Plugins >> .... >> .... >> } >> >> service quota-warning { >> executable = script /usr/local/bin/quota-warning.sh >> user = vmail >> unix_listener quota-warning { >> user = vmail >> } >> } >> >> protocol imap { >> imap_client_workarounds = delay-newmail tb-extra-mailbox-sep >> imap_idle_notify_interval = 120 s >> imap_logout_format = bytes=%i/%o >> imap_max_line_length = 65536 >> mail_plugins = quota imap_quota autocreate acl imap_acl mail_log notify fts >> fts_squat >> } >> >> protocol lmtp { >> auth_socket_path = /var/run/dovecot/auth-master >> mail_plugins = sieve quota acl mail_log notify >> postmaster_address = postmaster at yourdomain.com >> sendmail_path = /usr/local/sbin/sendmail >> } >> >> Above protocol lmtp could be protocol lda in your case >> >> This is my dovecot-dict-quota.conf file >> >> # Dovecot 2.0.x >> connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix >> password=mypostfixpasswd >> map { >> pattern = priv/quota/storage >> table = quota2 >> username_field = username >> value_field = bytes >> } >> map { >> pattern = priv/quota/messages >> table = quota2 >> username_field = username >> value_field = messages >> } >> >> This is my /usr/local/bin/quota-warning.sh file >> >> #!/usr/local/bin/bash >> PERCENT=$1 >> USER=$2 >> cat<< EOF | /usr/local/libexec/dovecot/deliver -d $USER -o >> "plugin/quota=maildir:User quota:noenforcing" >> From: support at yourdomain.com >> Subject: quota warning >> >> Uw mailbox is momenteel voor $PERCENT% gevult. >> Verwijder oude mail, of vraag een verruiming van uw quota aan. >> >> Your mailbox is now $PERCENT% full. >> Please remove some old mail, or ask for a larger quota. >> >> Skrzynka pocztowa jest w tym momencie w $PERCENT% zapelniona. >> Usun stare wiadomosci,albo przenies w inny folder. >> >> EOF >> >> Hope this helps. >> >> Regards, >> Johan Hendriks >> Double L Automatisering Here it is. # Database driver: mysql, pgsql driver = mysql # Currently supported schemes include PLAIN, PLAIN-MD5, DIGEST-MD5, and CRYPT. default_pass_scheme = CRYPT # Database options connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix password=mypostfixpassword password_query = select password \ from mailbox where username = '%u' \ and active = '1' user_query = select maildir, \ concat('*:messages=50000:bytes=', quota) as quota_rule \ from mailbox where username = '%u' and active = '1' Gr Johan From namasenda at gmail.com Fri Jun 24 16:11:17 2011 From: namasenda at gmail.com (Edmonds Namasenda) Date: Fri, 24 Jun 2011 16:11:17 +0300 Subject: [Dovecot] Dovecot Basic Set-Up Message-ID: Hello there. Please help me here with a basic configuration file for dovecot as well as the preferred or latest production environment engine. The set-up will be with openSuSe 11.4, Postfix, Dovecot & SquirelMail. Authentication files will be /etc/shadow and /etc/passwd -- Thank you and kind regards, *I.P.N Edmonds* From d.iskandarov at gmail.com Fri Jun 24 16:19:53 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 17:19:53 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: <4E0480CC.7060103@gmail.com> References: <4E046BD9.5090902@gmail.com> <4E0480CC.7060103@gmail.com> Message-ID: Hm, it looks very straighforward and not so flexible. i want get this string get working. some missconfiguration of arguments and syntax. i dont wanna mannually insert amount of message or bytes, if it's possible i would like everything to be read from database quota.conf Hope developers would see this thread and help also i understood aalmost all strings in query concat('/home/vmail/', maildir) as home - virtual users home directory concat('maildir:/home/vmail/', maildir) as mail - virtualusers maildirectory floor(quota/1000) - seems to be minimal quota for user. users quota devided by 1000 so for now i've tried to do next query string changed quota to quota_rule user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, concat('dict:storage=',floor(quota/1000),' proxy::quotadict') AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1' plugin { quota = dict:User quota::proxy::quotadict quota_rule = *:storage=1G quota_rule2 = Trash:storage=+100M } dict { quotadict = mysql:/etc/dovecot/conf.d/sql/dovecot-dict-sql.conf # expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf } and now error Jun 24 13:19:59 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 24 13:19:59 imap: Debug: Added userdb setting: plugin/quota_rule=dict:storage=10240 proxy::quotadict Jun 24 13:19:59 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 24 13:19:59 imap(test at office.dev): Debug: Quota root: name=User quota backend=dict args=:proxy::quotadict Jun 24 13:19:59 imap(test at office.dev): Warning: quota root User quota rule dict:storage=10240 proxy::quotadict: obsolete configuration for rule 'storage=10240 proxy' should be changed to 'storage=+10240 proxy' Jun 24 13:19:59 imap(test at office.dev): Debug: Quota rule: root=User quota mailbox=dict bytes=+10240 messages=0 Jun 24 13:19:59 imap(test at office.dev): Error: user test at office.dev: Initialization failed: Failed to initialize quota: Invalid quota root quota: Invalid rule dict:storage=10240 proxy::quotadict: Invalid rule limit value: storage=10240 proxy Jun 24 13:19:59 imap(test at office.dev): Error: Invalid user settings. Refer to server log for more information. Jun 24 13:19:59 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=5742, TLS Jun 24 13:19:59 imap-login: Warning: SSL alert: where=0x4008, ret=256: warning close notify [192.168.0.11] > > Here it is. > > # Database driver: mysql, pgsql > driver = mysql > > # Currently supported schemes include PLAIN, PLAIN-MD5, DIGEST-MD5, and > CRYPT. > default_pass_scheme = CRYPT > > # Database options > connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix > password=mypostfixpassword > > password_query = select password \ > ?from mailbox where username = '%u' \ > ?and active = '1' > > user_query = select maildir, \ > ?concat('*:messages=50000:bytes=', quota) as quota_rule \ > ?from mailbox where username = '%u' and active = '1' > > > Gr > Johan > From stephan at rename-it.nl Fri Jun 24 17:06:38 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Fri, 24 Jun 2011 16:06:38 +0200 Subject: [Dovecot] Out of office reminder with sieve In-Reply-To: <4E0066D2.4000804@gmail.com> References: <4DFF0E91.2030804@gmail.com> <4E006328.5030907@rename-it.nl> <4E0066D2.4000804@gmail.com> Message-ID: <4E0499EE.5040104@rename-it.nl> Op 21-6-2011 11:39, Johan Hendriks schreef: > Stephan Bosch schreef: >> Op 20-6-2011 11:10, Johan Hendriks schreef: >>> I found in the wiki the out of office reminder option. >>> But the sample is looking for a .out-of-office file. >>> I can not find out how to create this file. >>> I use roundcube to set the out of office with sieve. >>> >>> what is the best way to implement this. >> >> Could you point me to that wiki page? I don't quite understand what >> you are talking about. > Here is the part i am talking about. > http://wiki2.dovecot.org/PostLoginScripting Oh, so you want to remind people that their out-of-office responder is still active? That is going to be difficult, because it is hard to tell from the Sieve script alone whether vacation responses are being sent, without actually executing it. > Maybe i can check the ~/.dovecot.lda-dupes file instead. > Is that file being deleted if the out of office is disabled, or is it > cleaned only? No, it is not deleted. The lda-dupes file is used to track other things as well, such as earlier redirects (to prevent mail loops). In the case of vacation, this file merely tracks which senders have got a response at what time in order to prevent responding within the defined :days period. It says nothing about whether a vacation rule is active. I think it is a better solution to use the Sieve date extension to let the out-of-office responder disable itself once the user is deemed to be back to work. I believe Roundcube already supports this functionality. This means that the vacation rule does not need to be disabled explicitly, but stops automatically when the server date goes beyond a user-defined deadline. If there is any particular reason why you would need to have explicit reminders, one solution would be to let Roundcube 'touch' the ~/.out-of-office file once an out-of-office responder is activated. But that is a hack at best. Regards, Stephan. From japi76 at gmail.com Fri Jun 24 17:33:26 2011 From: japi76 at gmail.com (Javier) Date: Fri, 24 Jun 2011 11:33:26 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: No other hint? Only option is to upgrade to latest? Thanks Javier On Tue, Jun 21, 2011 at 4:38 PM, Javier wrote: > Thanks for the response. > I'll try updating dovecot to latest version but this will take me some > time, so other options are welcome. > It seems like submission_host is from v2.0.10+ and I have 2.0.9 :( > > Sending mail with > > echo "test" | sendmail xxxx at xxxx.com > > works fine. > Thanks > Javier > > On Sun, Jun 19, 2011 at 8:17 AM, Stephan Bosch wrote: >> Op 16-6-2011 18:24, Javier schreef: >>> >>> Maybe it is useful to know, that vacation does the same thing, an >>> error in the logs but the response arrives to the sender. >>> >>> Log file also show some error with waitpid() >> >> First thing to notice is that your Dovecot is relatively old, so this >> problem may be fixed already. Also, recent Dovecot (v2.0) versions support >> sending messages directly to an SMTP (smart)host instead of using the >> sendmail binary. >> >> Looks like your sendmail binary terminates inappropriately (or Dovecot >> thinks it does). Can you successfully send mail from the command line using >> the sendmail tool? >> >> Regards, >> >> Stephan. >> >> > From tss at iki.fi Fri Jun 24 18:23:47 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 24 Jun 2011 18:23:47 +0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: Message-ID: On 16.6.2011, at 19.24, Javier wrote: > Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxx at xxxxxxx.com): > Error: waitpid() failed: No child processes This is the main problem. It just shouldn't be happening. You could try stracing an lmtp process while it sends a mail, and see if there are two waitpid() calls or of the first one is giving this error. If there is only this one waitpid() call this would seem like a kernel problem. (Easy way to strace: 1) connect to lmtp socket & quit, 2) strace -p , 3) send a mail) From linuxmail at 4lin.net Fri Jun 24 18:43:27 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Fri, 24 Jun 2011 17:43:27 +0200 Subject: [Dovecot] Dovecot Basic Set-Up In-Reply-To: References: Message-ID: hi, Am 24.06.2011 um 15:11 schrieb Edmonds Namasenda: > The set-up will be with openSuSe 11.4, Postfix, Dovecot & SquirelMail. > Authentication files will be /etc/shadow and /etc/passwd please take a look at the DoveCot Wiki and Google. Everything you need is there. cu denny From e-frog at gmx.de Fri Jun 24 19:03:02 2011 From: e-frog at gmx.de (e-frog) Date: Fri, 24 Jun 2011 18:03:02 +0200 Subject: [Dovecot] Panic: file mail-index-view.c: line 149 Message-ID: <4E04B536.5020509@gmx.de> Hello Timo, Today I've moved one message from INBOX to a virtual folder which made imap processes crash as soon as INBOX was selected. Jun 24 17:24:50 server dovecot: imap(user at example.com): Panic: file mail-index-view.c: line 149 (view_lookup_full): assertion failed: (seq > 0 && seq <= mail_index_view_get_messages_count(view)) Removing mail_log plugin made it working again. Even after re-enabling mail_log plugin there are no crashes anymore. The full backtrace and doveconf -n output are attached. Thanks for your help! -e-frog -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: doveconf-n.txt URL: -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: bt.txt URL: From satish_lx at hotmail.com Fri Jun 24 19:04:40 2011 From: satish_lx at hotmail.com (satish patel) Date: Fri, 24 Jun 2011 16:04:40 +0000 Subject: [Dovecot] IDLE disconnected Message-ID: Hi all, We have just migrate UW-Imap to Dovecot and started getting following errors in logs. Any idea ? Dovecot version is 2.0.9 Jun 24 11:21:04 imap6 dovecot: imap(users1): Disconnected: Disconnected in IDLE bytes=444/1900 Jun 24 11:21:04 imap6 dovecot: imap(users20): Disconnected: Disconnected in IDLE bytes=126/890 Jun 24 11:21:04 imap6 dovecot: imap(users7): Disconnected: Disconnected in IDLE bytes=364/47709 Jun 24 11:21:04 imap6 dovecot: imap(users29): Disconnected: Disconnected in IDLE bytes=1639/234649 Jun 24 11:21:05 imap6 dovecot: imap(users2): Disconnected: Disconnected in IDLE bytes=2731/22038 -S From wgillespie+dovecot at es2eng.com Fri Jun 24 19:52:08 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Fri, 24 Jun 2011 10:52:08 -0600 Subject: [Dovecot] Public Folder ACL Problem In-Reply-To: References: <4E037E5A.1020303@es2eng.com> Message-ID: <4E04C0B8.1050107@es2eng.com> Just to start drilling down, what mail client are you using to test with? Is there a dovecot-acl-list file in /var/mail/public? Try deleting/renaming that. I think Dovecot will try to recreate it. On 6/24/2011 1:14 AM, kumar shantanu wrote: > Hi Willie, > > Thanks for your help, yes there is not dovecot-acl in .test1 but there > is one in .test > but I can't see either folder . > > Suggestion welcome. > > > Shantanu > > On Thu, Jun 23, 2011 at 11:26 PM, Willie Gillespie > > > wrote: > > On 06/23/2011 05:32 AM, kumar shantanu wrote: > > and now under public folder I have two subfolders .test and > .test1 . I have > created dovecote-acl under .test so that it can be seen and > subscribe. > but I can't see those subfolders in public folder. Logs says > > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl: > initializing backend with data: vfile > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl: acl > username = shantanu at techblue.co.in > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl: owner = > 0 > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl vfile: > file /var/mail/public/.test1/__dovecot-acl not found > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl vfile: > reading file /var/mail/public/.test/__dovecot-acl > > My dovecot-acl file reads "user=shantanu at techblue.co.in > lr" > > > Looks like the dovecot-acl file is missing in > /var/mail/public/.test1/ and is only in /var/mail/public/.test/ > > Do they show up when you list all folders? > > > > > From d.iskandarov at gmail.com Fri Jun 24 21:01:13 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 22:01:13 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: References: <4E046BD9.5090902@gmail.com> <4E0480CC.7060103@gmail.com> Message-ID: Finally i've figured out this thing. Thanks for your assistance. Suddenly i've found your old post regarding same problem: http://www.mail-archive.com/dovecot at dovecot.org/msg16388.html +searching user_query in dovecot wiki found same description there http://wiki2.dovecot.org/Quota/Configuration?highlight=%28user_query%29 i dont know why i have seen this before. i can say one more thing. in quota.conf next string has no sense coz it's overided by sql query and quota is set by postfix admin. i had other headache for an hour while figured this out. no sense quota_rule = *:storage=1G:messages=10000 (maybe for system users and/or users which are not binded to sql) what ever other quota_rule numbers for global settings but not quota_rule. so thanks again moving to next problems with other plugins like expire...there is no expire table in sql )))) From imap at tnde.org Sat Jun 25 10:58:55 2011 From: imap at tnde.org (imap at tnde.org) Date: Sat, 25 Jun 2011 03:58:55 -0400 Subject: [Dovecot] permissions for dbox attachment directory Message-ID: I am running dovecot 2.0.13 on CentOS5, set up with only local system users, and single instance store set up in a single directory. e.g. mail_attachment_dir = /var/mail/attachments I get errors when importing mail to IMAP because the attachment directories are owned by the respective mail account user(s) and so cannot be accessed or written to by other users. Are there some user id setting I need to change, or do I have to run dovecot with virtual users under a single system account? Thanks! From joh.hendriks at gmail.com Sat Jun 25 12:01:14 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Sat, 25 Jun 2011 11:01:14 +0200 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: References: Message-ID: <4E05A3DA.3010300@gmail.com> imap at tnde.org schreef: > I am running dovecot 2.0.13 on CentOS5, set up with only local system > users, and single instance store set up in a single directory. > > e.g. > mail_attachment_dir = /var/mail/attachments > > > I get errors when importing mail to IMAP because the attachment > directories are owned by the respective mail account user(s) and so cannot > be accessed or written to by other users. > > Are there some user id setting I need to change, or do I have to run > dovecot with virtual users under a single system account? > > Thanks! > Please post the exact error message, and the output of dovecot -n This way it is much easier for people to help you, and it takes less guessing what is going on. Gr Johan Hendriks Double L Automatisering From jimkarlsson82 at gmail.com Sat Jun 25 15:16:20 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Sat, 25 Jun 2011 05:16:20 -0700 (PDT) Subject: [Dovecot] Dovecot 2.0.13, Authentication failed... Message-ID: <31925861.post@talk.nabble.com> Hi! I just updated Dovecot 1.0.x to 2.0.13... and when i now trying to login it says: 1 NO [AUTHENTICATIONFAILED] Authentication failed. I havent change anything in any conf file, all conf files are untouched. doveconf -n : # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.18-238.12.1.el5.centos.plus x86_64 CentOS release 5.6 (Final) listen = * mbox_write_locks = fcntl passdb { driver = pam } ssl_cert = References: <31925861.post@talk.nabble.com> Message-ID: <4E05D61E.5050803@Media-Brokers.com> On 6/25/2011 8:16 AM, Theatre wrote: > I just updated Dovecot 1.0.x to 2.0.13... > I havent change anything in any conf file, all conf files are untouched. Maybe thats your problem... did you even bother to read the UPDATE docs?? -- Best regards, Charles From imap at tnde.org Sun Jun 26 22:56:41 2011 From: imap at tnde.org (imap at tnde.org) Date: Sun, 26 Jun 2011 15:56:41 -0400 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: <4E05A3DA.3010300@gmail.com> References: <4E05A3DA.3010300@gmail.com> Message-ID: <0e02254fb96546b495afe922d3c84f5f.squirrel@emailmg.dot5hosting.com> > Please post the exact error message, and the output of dovecot -n > > This way it is much easier for people to help you, and it takes less > guessing what is going on. Sorry, here's the full details. Maillog says Jun 25 19:10:55 test1 dovecot: imap(tu2): Error: stat(/var/mail/attachments/04/f6/.temp.test1.vmlan.local.1522.2cde9668dcad3fd5) failed: Permission denied Jun 25 19:10:55 test1 dovecot: imap(tu2): Error: safe_mkstemp(/var/mail/attachments/04/f6/.temp.test1.vmlan.local.1522.) failed: Permission denied This is when attempting to export the same mail to two accounts. As the first user "tu1" get to own the attachment dirs, the second user "tu2" is denied permission. Eg: drwx------ 3 tu1 tu1 4096 Jun 25 19:10 f6 # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.18-238.9.1.el5 x86_64 CentOS release 5.6 (Final) auth_debug = yes auth_debug_passwords = yes auth_verbose = yes disable_plaintext_auth = no mail_attachment_dir = /var/mail/attachments mail_attachment_min_size = 1 k mail_location = sdbox:~/dbox mbox_write_locks = fcntl passdb { driver = pam } ssl_cert = I cutover to a new server which uses Postfix & Dovecot to handle emails as opposed to Postfix & Courier in the old server. Below is the contents of my global sieve script and dovecot config info. The dovecot-deliver.log does show that the email is being delivered to INBOX.spam but it ends up in the INBOX instead. If I put the exact same rule in the user script, the emails are delivered into the INBOX.spam folder. Currently as a work around, I created user rules for all users and add this. For most users, it is the only rule. So my question is, why does it not work with the global script? Any help would be appreciated. Thanks, Dhaval ------------ contents of globalsieverc ------------- require ["fileinto"]; # Move spam to spam folder if header :contains "X-Spam-Flag" ["YES"] { fileinto "INBOX.spam"; stop; } ---------------------------------------------------- ------------ dovecot -n output --------------------- # 1.2.15: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-686-bigmem i686 Debian 6.0.1 xfs log_timestamp: %Y-%m-%d %H:%M:%S ssl_cert_file: /etc/ssl/certs/secure.consoe.com.pem ssl_key_file: /etc/ssl/certs/secure.consoe.com.key disable_plaintext_auth: no verbose_ssl: yes login_dir: /var/run/dovecot/login login_executable: /usr/lib/dovecot/imap-login mail_privileged_group: mail mail_location: maildir:/home/vmail/%u mbox_write_locks: fcntl dotlock namespace: type: private separator: . prefix: INBOX. inbox: yes list: yes subscriptions: yes lda: postmaster_address: postmaster at patel.sh auth_socket_path: /var/run/dovecot/auth-master log_path: /home/vmail/dovecot-deliver.log mail_plugins: sieve global_script_path: /home/vmail/globalsieverc auth default: mechanisms: plain login passdb: driver: sql args: /etc/dovecot/dovecot-sql.conf userdb: driver: sql args: /etc/dovecot/dovecot-sql.conf socket: type: listen client: path: /var/run/dovecot/auth-client mode: 432 master: path: /var/run/dovecot/auth-master mode: 384 user: vmail group: vmail plugin: sieve: /home/vmail/sieve/%n.sieve sieve_global_path: /home/vmail/globalsieverc -------------------------------------------------------- From tlx at leuxner.net Mon Jun 27 00:06:30 2011 From: tlx at leuxner.net (Thomas Leuxner) Date: Sun, 26 Jun 2011 23:06:30 +0200 Subject: [Dovecot] dovecot global sieve script problem In-Reply-To: <51b6cf13bfbbb030e93e57dc6d4c378c@secure.consoe.com> References: <51b6cf13bfbbb030e93e57dc6d4c378c@secure.consoe.com> Message-ID: > So my question is, why does it not work with the global script? Any help would > be appreciated. > Please note the caveats listed here: http://wiki.dovecot.org/LDA/Sieve/Dovecot [?] sieve_global_path A path to a global sieve script file, which gets executed ONLY if user's private Sieve script doesn't exist, e.g. /var/lib/dovecot/default.sieve. Be sure to pre-compile this script manually using the sievec command line tool, as explained below. Did you manually compile the global script? Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 203 bytes Desc: Signierter Teil der Nachricht URL: From stephan at rename-it.nl Mon Jun 27 00:59:16 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Sun, 26 Jun 2011 23:59:16 +0200 Subject: [Dovecot] dovecot global sieve script problem In-Reply-To: References: <51b6cf13bfbbb030e93e57dc6d4c378c@secure.consoe.com> Message-ID: <4E07ABB4.4030302@rename-it.nl> On 6/26/2011 11:06 PM, Thomas Leuxner wrote: >> So my question is, why does it not work with the global script? Any help would >> be appreciated. > Please note the caveats listed here: http://wiki.dovecot.org/LDA/Sieve/Dovecot > > [?] > sieve_global_path > A path to a global sieve script file, which gets executed ONLY if user's private Sieve script doesn't exist, e.g. /var/lib/dovecot/default.sieve. Be sure to pre-compile this script manually using the sievec command line tool, as explained below. > > Did you manually compile the global script? Actually, for the kind of behavior that you described you need to use the multiscript feature: http://wiki.dovecot.org/LDA/Sieve/Dovecot#Executing_Multiple_Scripts_Sequentially So, if you use sieve_before instead, it should work as required. Regards, Stephan. From jtam.home at gmail.com Mon Jun 27 02:43:30 2011 From: jtam.home at gmail.com (Joseph Tam) Date: Sun, 26 Jun 2011 16:43:30 -0700 (PDT) Subject: [Dovecot] Default sendmail_path value Message-ID: It appears the documentation of this parameter is inconsistent with the documentation: > grep -nF /sendmail `gfind src -type f` src/lib-lda/lda-settings.c:41: .sendmail_path = "/usr/sbin/sendmail", src/config/all-settings.c:732: .sendmail_path = "/usr/sbin/sendmail", (and doc/example-config/conf.d/15-lda.conf is also consistent with this) but the documentations states http://wiki2.dovecot.org/LDA sendmail_path is used to send mails. Note that the default is /usr/lib/sendmail, which doesn't necessarily work the same as /usr/sbin/sendmail. I don't know which ought to be changed though. Joseph Tam From sarguru at deeproot.co.in Mon Jun 27 10:34:14 2011 From: sarguru at deeproot.co.in (sarguru) Date: Mon, 27 Jun 2011 13:04:14 +0530 Subject: [Dovecot] Help regarding getting password policy response Message-ID: <4E083276.5050307@deeproot.co.in> Hello, I have enabled ldap password policy in my open ldap server and it locks out the account after several unsuccessful bind attempts. I am able to get the password policy response which says "Account locked" by specifying '-e ppolicy' option in my ldapsearch command. I am looking for a way to get similar response when I use dovecot so that I can specify my clients that their account is locked. I understand the security risks involved but mine is low security and high usability requirement. Please share the solution with me. -- Thanks, Sarguru From f.bonnet at esiee.fr Mon Jun 27 10:50:51 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Mon, 27 Jun 2011 09:50:51 +0200 Subject: [Dovecot] Denying user won't work as expected Message-ID: <4E08365B.7060909@esiee.fr> Hello I tried to use the "deny user" feature but it does not work as expected ... ( dovecot 2.0.12 ) we use LDAP as authentication source I modified the 10-auth.conf file as the following # !include auth-deny.conf.ext #!include auth-master.conf.ext #!include auth-system.conf.ext #!include auth-sql.conf.ext !include auth-ldap.conf.ext #!include auth-passwdfile.conf.ext #!include auth-checkpassword.conf.ext #!include auth-vpopmail.conf.ext #!include auth-static.conf.ext I modified the auth-deny.conf.ext file as the following passdb { driver = ldap deny = yes # File contains a list of usernames, one per line args = /usr/local/etc/dovecot/deny-users } I have tested writting one user (me) in the /usr/local/etc/dovecot/deny-users and the result is the login is denied for ALL users ... If I do not uncomment the !include auth-deny.conf.ext line in 10-auth.conf file everything works well I really need this feature Thanks for any help From tkrah at fachschaft.imn.htwk-leipzig.de Mon Jun 27 11:10:06 2011 From: tkrah at fachschaft.imn.htwk-leipzig.de (Torsten Krah) Date: Mon, 27 Jun 2011 10:10:06 +0200 Subject: [Dovecot] IDLE disconnected In-Reply-To: References: Message-ID: <1309162206.6824.0.camel@sf050.friends> Am Freitag, den 24.06.2011, 16:04 +0000 schrieb satish patel: > Jun 24 11:21:04 imap6 dovecot: imap(users1): Disconnected: > Disconnected in IDLE bytes=444/1900 > Jun 24 11:21:04 imap6 dovecot: imap(users20): Disconnected: > Disconnected in IDLE bytes=126/890 > Jun 24 11:21:04 imap6 dovecot: imap(users7): Disconnected: > Disconnected in IDLE bytes=364/47709 > Jun 24 11:21:04 imap6 dovecot: imap(users29): Disconnected: > Disconnected in IDLE bytes=1639/234649 > Jun 24 11:21:05 imap6 dovecot: imap(users2): Disconnected: > Disconnected in IDLE bytes=2731/22038 Afaik those ones are not errors - only some hints about clients disconnected while in IDLE mode. Someone may correct me if i am wrong about this. Torsten -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5253 bytes Desc: not available URL: From cinzia.innocenzi at hp.com Mon Jun 27 12:23:51 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Mon, 27 Jun 2011 09:23:51 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <4E024B83.4050204@simonecaruso.com> Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44E26F922@GVW1102EXC.americas.hpqcorp.net> Hello Simone, I've been trying for the past days to replicate the problem... Since we're on a production environment, I can't put dovecot in debug mode and leave it in debug for an entire day, so I've been checking the queue every half an hour and as soon as a mail got stuck, I'd change mail_debug to yes and reload dovecot's config. Well, everytime I've done this, the mail got delivered except once. Just one time. On the back end I got this log: Jun 23 12:17:00 dovecot: lmtp(10680): Connect from a.b.c.d Jun 23 12:17:00 dovecot: lmtp(10680): Debug: auth input: user at domain.it quota_rule=*:backend=104857600S home=/mnt/mbox1/mailusers/user at domain.it/ Jun 23 12:17:00 dovecot: lmtp(10680): Debug: Added userdb setting: plugin/quota_rule=*:backend=104857600S Jun 23 12:18:00 dovecot: lmtp(10680): Disconnect from a.b.c.d: Connection closed I compared the log of the stuck mail with a mail that gets delivered, and I noticed that there are a few more lines of debug... in fact, after the "Debug: Added userdb setting" I see: Debug: Effective uid Debug: Quota root Debug: Quota rule Debug: maildir++ saved mail to INBOX Connection closed I hope this info can help. Regards CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Innocenzi, Cinzia Sent: gioved? 23 giugno 2011 11.06 To: 'Simone Caruso' Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta Subject: RE: [Dovecot] Dovecot 2.0.13 problem with LMTP I'll give it a try as soon as I get another mail stuck in the queue. Unfortunately it doesn't happen too often. Thank you. I'll keep you updated. Regards CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Simone Caruso [mailto:info at simonecaruso.com] Sent: mercoled? 22 giugno 2011 22.08 To: Innocenzi, Cinzia Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP if u already didnt, try setting 'mail_debug=yes' in config. -- Simone Caruso IT Consultant p.iva: 03045250838 From info at simonecaruso.com Mon Jun 27 14:02:53 2011 From: info at simonecaruso.com (Simone Caruso) Date: Mon, 27 Jun 2011 13:02:53 +0200 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <0255596D4DD80F4F80FBA92242C83A65B44E26F922@GVW1102EXC.americas.hpqcorp.net> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <4E024B83.4050204@simonecaruso.com> <0255596D4DD80F4F80FBA92242C83A65B44E26F922@GVW1102EXC.americas.hpqcorp.net> Message-ID: <4E08635D.7080905@simonecaruso.com> On 27/06/2011 11:23, Innocenzi, Cinzia wrote: > Hello Simone, > Jun 22 11:57:53 front-end dovecot: lmtp(16397): Disconnect from a.b.c.d: > Disconnected for inactivity Logs don't say anything useful to me... :/ Maybe a firewall problem between fe and be !? There is no other logs in syslog that can be related to dovecot? file descriptors limit exceeded? -- Simone Caruso IT Consultant +39 349 65 90 805 p.iva: 03045250838 From xchris89x at googlemail.com Mon Jun 27 14:24:39 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Mon, 27 Jun 2011 13:24:39 +0200 Subject: [Dovecot] hide sieve folder from imap clients Message-ID: Hello, What is the best way to hide sieve folders from IMAP clients? old config mail_home = /var/vmail/%d/%n plugin { sieve_dir = /var/vmail/%d/%n/.sieve/ sieve = /var/vmail/%d/%n/.dovecot.sieve } new config (hide sieve folder) mail_home = /var/vmail/%d/%n maildir_stat_dirs = yes plugin { sieve_dir = /var/vmail/%d/%n/sieve/ sieve = /var/vmail/%d/%n/.dovecot.sieve } Is there a better way without maildir_stat_dirs = yes ? -- Christopher From me at junc.org Mon Jun 27 14:40:53 2011 From: me at junc.org (Benny Pedersen) Date: Mon, 27 Jun 2011 13:40:53 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: Message-ID: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: > mail_home = /var/vmail/%d/%n mail_home = /var/vmail/%d/%n/.maildir > sieve_dir = /var/vmail/%d/%n/sieve/ sieve_dir = /var/vmail/%d/%n/.sieve From me at junc.org Mon Jun 27 14:49:55 2011 From: me at junc.org (Benny Pedersen) Date: Mon, 27 Jun 2011 13:49:55 +0200 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: <5cc316612701d0ea20de1889b1e8998c@junc.org> On Tue, 21 Jun 2011 16:38:32 -0300, Javier wrote: > Sending mail with > > echo "test" | sendmail xxxx at xxxx.com gives invalid mailheaders, and sieve fails # cat testmail From: "testmail" To: "abuse" Subject: testmail testmail # fire it to seive sendmail -f testmail abuse References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: On Fri, 24 Jun 2011 11:33:26 -0300, Javier wrote: > No other hint? > Only option is to upgrade to latest? or backport the needed things from later sources, its GPL v2 remember ? :) From xchris89x at googlemail.com Mon Jun 27 15:04:23 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Mon, 27 Jun 2011 14:04:23 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> Message-ID: 2011/6/27 Benny Pedersen : > On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: > >> mail_home = /var/vmail/%d/%n > > mail_home = /var/vmail/%d/%n/.maildir > >> sieve_dir = /var/vmail/%d/%n/sieve/ > > sieve_dir = /var/vmail/%d/%n/.sieve > Can you explain that? -- Christopher From berni at birkenwald.de Mon Jun 27 15:11:07 2011 From: berni at birkenwald.de (Bernhard Schmidt) Date: Mon, 27 Jun 2011 12:11:07 +0000 (UTC) Subject: [Dovecot] LDAP timeout Message-ID: Hi, we recently hit an issue where one (of the three configured) LDAP servers dropped an index on an attribute due to a misconfiguration, which caused all/most queries for passdb to take a very long time (several 10s of seconds). The other servers would have been fine, but it seems like Dovecot does either not set a timelimit on the query or uses a very high one. I could not find any place to control that either. Is there any knob to tune the LDAP timeout? Bernhard From stephan at rename-it.nl Mon Jun 27 15:13:07 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 27 Jun 2011 14:13:07 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> Message-ID: <4E0873D3.4060005@rename-it.nl> Op 27-6-2011 14:04, Christopher Stolzenberg schreef: > 2011/6/27 Benny Pedersen: >> On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: >>> mail_home = /var/vmail/%d/%n >> mail_home = /var/vmail/%d/%n/.maildir >>> sieve_dir = /var/vmail/%d/%n/sieve/ >> sieve_dir = /var/vmail/%d/%n/.sieve > Can you explain that? > Basically, the solution is not to put your sieve storage (sieve_dir=) or active sieve script (sieve=) inside your mail directory. The above fixes this by giving the mail its own sub-directory (the '.' prefix is not necessary). Regards, Stephan. From CMarcus at Media-Brokers.com Mon Jun 27 15:15:10 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 27 Jun 2011 08:15:10 -0400 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> Message-ID: <4E08744E.6040503@Media-Brokers.com> On 2011-06-27 8:04 AM, Christopher Stolzenberg wrote: > 2011/6/27 Benny Pedersen : >> On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: >> >>> mail_home = /var/vmail/%d/%n >> >> mail_home = /var/vmail/%d/%n/.maildir >> >>> sieve_dir = /var/vmail/%d/%n/sieve/ >> >> sieve_dir = /var/vmail/%d/%n/.sieve > Can you explain that? What's to explain? This separates the two directories so you won't see your sieve edirectories in your imap clients (exactly what you were asking for). -- Best regards, Charles From xchris89x at googlemail.com Mon Jun 27 15:30:28 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Mon, 27 Jun 2011 14:30:28 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: <4E0873D3.4060005@rename-it.nl> References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> <4E0873D3.4060005@rename-it.nl> Message-ID: 2011/6/27 Stephan Bosch : > Op 27-6-2011 14:04, Christopher Stolzenberg schreef: >> >> 2011/6/27 Benny Pedersen: >>> >>> On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: >>>> >>>> mail_home = /var/vmail/%d/%n >>> >>> mail_home = /var/vmail/%d/%n/.maildir >>>> >>>> sieve_dir = /var/vmail/%d/%n/sieve/ >>> >>> sieve_dir = /var/vmail/%d/%n/.sieve >> >> Can you explain that? >> > > Basically, the solution is not to put your sieve storage (sieve_dir=) or > active sieve script (sieve=) inside your mail directory. The above fixes > this by giving the mail its own sub-directory (the '.' prefix is not > necessary). > > Regards, > > Stephan. > And what happens with existing imap accounts? Migration necessary? Will I lose much performance by maildir_stat_dirs = yes on an ext4 filesystem with my current workaround? -- Christopher From cinzia.innocenzi at hp.com Mon Jun 27 15:36:44 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Mon, 27 Jun 2011 12:36:44 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <4E08635D.7080905@simonecaruso.com> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <4E024B83.4050204@simonecaruso.com> <0255596D4DD80F4F80FBA92242C83A65B44E26F922@GVW1102EXC.americas.hpqcorp.net> <4E08635D.7080905@simonecaruso.com> Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44E26FA9B@GVW1102EXC.americas.hpqcorp.net> Hi Simone, no, I don't think the problem is related to a firewall or to some limit exceeded because mails get stuck while others are being delivered at the same time. The only log I have is dovecot's log file. There's nothing on messages log file. I checked all open fd's of all dovecot processes. Each process has max 50 open fd's. We've got a soft/hard limit of 1024 fd's. Is there anything else I can check? Is there any other dovecot parameter that I can enable so that I can send you a more detailed debug output? CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Simone Caruso [mailto:info at simonecaruso.com] Sent: luned? 27 giugno 2011 13.03 To: dovecot at dovecot.org Cc: Innocenzi, Cinzia; Del Coiro, Maria Giacinta Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP On 27/06/2011 11:23, Innocenzi, Cinzia wrote: > Hello Simone, > Jun 22 11:57:53 front-end dovecot: lmtp(16397): Disconnect from a.b.c.d: > Disconnected for inactivity Logs don't say anything useful to me... :/ Maybe a firewall problem between fe and be !? There is no other logs in syslog that can be related to dovecot? file descriptors limit exceeded? -- Simone Caruso IT Consultant +39 349 65 90 805 p.iva: 03045250838 From apm at one.com Mon Jun 27 15:55:59 2011 From: apm at one.com (Peter Mogensen) Date: Mon, 27 Jun 2011 14:55:59 +0200 Subject: [Dovecot] LMTP returncode 450? Message-ID: <4E087DDF.2020703@one.com> Hi, How do I get the LMTP-server to know which mailbox's are locally hosted and return SMTP code 450 if delivery is attempted to a non local user? I can see that a lookup in the userdb is done, but now matter what I return (1/111) from my checkpassword script I just get: 451 4.3.0 Internal error occurred. Refer to server log for more information. /Peter From jim.hague at acm.org Mon Jun 27 16:40:42 2011 From: jim.hague at acm.org (Jim Hague) Date: Mon, 27 Jun 2011 14:40:42 +0100 Subject: [Dovecot] ACLs: Group ACL adds empty ACL for user of same name, why? Message-ID: <201106271440.42658.jim.hague@acm.org> I'm playing around with ACLs, Groups and SOGo on Debian Stable, Dovecot 1.2.15. If I set an ACL for a group 'developers': 6 setacl "INBOX.Trash" "$developers" "lrsw" 6 OK Setacl complete. The dovecot-acl file for INBOX.Trash then contains a group setting for the group, and a user setting for a user of the same name, giving it no permissions. group=developers lrws user=developers and a subsequent GETACL reports the user: 5 getacl "INBOX.Trash" * ACL "INBOX.Trash" "$developers" lrws "developers" "" "jim" lrwstipekxacd 5 OK Getacl completed. Currently SOGo does not deal well with the unexpected non-existant user. So I'm curious - why's it there? -- Jim Hague - jim.hague at acm.org Never trust a computer you can't lift. From vertigo69 at mail.ru Mon Jun 27 17:14:29 2011 From: vertigo69 at mail.ru (=?utf-8?Q?=D0=92=D0=B0=D1=81=D0=B8=D0=BB=D0=B8=D0=B9_=D0=AF=D0=BA=D0=BE=D0=B2=D0=BB=D0=B5=D0=B2?=) Date: Mon, 27 Jun 2011 18:14:29 +0400 Subject: [Dovecot] Sendmail + dovecot-lda + LDAP Message-ID: Hi, I experince some problems with setting up Sendmail with the LDAP database for virtual mail accounts. Why i'm not writing to the LDAP mailing list? I believe, that the reason of my problem is in configuring dovecot-deliver. What i have: ?- FreeBSD ?- sendmail (Version 8.14.4 with LDAP support installed from ports)? ?- Dovecot LDA + dovecot (as pop3/imap) ?- Cyrus Sasl (authdaemon for authentification) 1. Following http://wiki.dovecot.org/LDA/Sendmail i've set up deliver as LDA. Everything worked fine. 2. Following http://wiki.dovecot.org/HowTo/DovecotOpenLdap i've set up Dovecot to work with tha ldap. Now i can authorize through the client or web interface and get to my maildir.? 3. Now, i want my sendmail to accept mail for the account in LDAP database. sendmail.mc: ++++++++++++++++++++++ FEATURE(`local_procmail', `/usr/local/libexec/dovecot/deliver',`/usr/local/libexec/dovecot/deliver -d $u') MODIFY_MAILER_FLAGS(`LOCAL', `-f') ...................................... define(`confLDAP_DEFAULT_SPEC', `-h "localhost" -b "dc=mydomain,dc=ru" -d "cn=dovecot,ou=accounts,dc=mydomain,dc=ru" -MLDAP_AUTH_SIMPLE -P /etc/mail/ldap_pass')dnl LDAPROUTE_DOMAIN(`mydomain.ru')dnl FEATURE(`ldap_routing', `null -T', `ldap -1 -T -v mail -k (&(objectclass=posixaccount)(mail=%0))', `passthru')dnl ...................................... MAILER(procmail) ++++++++++++++++++++++ After re-making the sendmail: ++++++++++++++++++++++ [root at test2 /etc/mail]# sendmail -bv -d60.1 test_user at mydomain.ru map_lookup(dequote, test) => NOT FOUND (0) map_lookup(host, mydomain.ru) => mydomain.ru. (0) map_lookup(dequote, test_user) => NOT FOUND (0) map_lookup(ldapmra, test_user at mydomain.ru) => test_user at mydomain.ru (0) map_lookup(ldapmh, test_user at mydomain.ru) => NOT FOUND (68) map_lookup(host, mydomain.ru) => mydomain.ru. (0) map_lookup(dequote, test_user) => NOT FOUND (0) map_lookup(virtuser, test_user at mydomain.ru) => NOT FOUND (0) map_lookup(virtuser, @mydomain.ru) => NOT FOUND (0) test_user at mydomain.ru... User unknown ++++++++++++++++++++++ It's the problem of the local delivery, i believe. Why? Because after sendmail getting an email it passes it to the LDA, which must check the LDAP (not the passwd!) database for the user, to which this email is send to. Are there some possibilities to solve this problem? I appreciate any help.? From japi76 at gmail.com Mon Jun 27 17:16:21 2011 From: japi76 at gmail.com (Javier) Date: Mon, 27 Jun 2011 11:16:21 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: Upgrade is an option, just want to know how many I have. But, as being a medium sized mail system, I have to take little steps. Thanks Javier On Mon, Jun 27, 2011 at 8:52 AM, Benny Pedersen wrote: > On Fri, 24 Jun 2011 11:33:26 -0300, Javier wrote: >> >> No other hint? >> Only option is to upgrade to latest? > > or backport the needed things from later sources, its GPL v2 remember ? :) > > From aperezaranda at yaco.es Mon Jun 27 17:25:39 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Mon, 27 Jun 2011 16:25:39 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1308763692.10421.909.camel@hurina> References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> <1308763692.10421.909.camel@hurina> Message-ID: How it works? +key=value or key+=value 2011/6/22 Timo Sirainen : > I did some fixes to my original patch to make it actually work the way I > intended: http://hg.dovecot.org/dovecot-2.0/rev/3d07ab746a67 > > On Tue, 2011-06-14 at 17:38 +0200, Antonio Perez-Aranda wrote: >> Maybe this could be a "feature request" for dovecot 2.0.14 - 2.0.15 or 2.1 ? >> >> 2011/6/9 Antonio Perez-Aranda : >> > This patch fix a bug and remove some debug info from patch sent before. >> > >> > 2011/6/9 Antonio Perez-Aranda : >> >> This patch is running but it only run with mail_plugins. >> >> >> >> This is because I can't select the "mail_plugins" value from any >> >> function to get this throw the name key. >> >> >> >> Maybe this need more hard development to do this as generic "property" >> >> for any config value. >> >> >> >> 2011/6/9 Antonio Perez-Aranda : >> >>> Well, this "extrange" vaues is NULL. >> >>> >> >>> Maybe, the set_parser is a new environment to set settings but then >> >>> ?when is make the config merge? >> >>> >> >>> 2011/6/9 Antonio Perez-Aranda : >> >>>> This line: >> >>>> >> >>>> value = settings_parse_get_value(set_parser, key, &type); >> >>>> >> >>>> Is returning a empty value. Maybe, set_parser has been cleared? >> >>>> >> >>>> If I try to get another keys from my config that I can watch with >> >>>> doveadm I get "extrange" values like this with i_debug() >> >>>> >> >>>> ?* mail_debug -> #001 >> >>>> ?* mail_location -> #010 >> >>>> ?* auth_realms -> #020#002 >> >>>> >> >>>> >> >>>> 2011/6/8 Antonio Perez-Aranda : >> >>>>> It must run on dovecot 2.0.13? >> >>>>> >> >>>>> We are upgrading to 2.0.13 and with this I get the follow message: >> >>>>> >> >>>>> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >> >>>>> +mail_plugins=fts fts_solr?G >> >>>>> >> >>>>> >> >>>>> 2011/6/7 Timo Sirainen : >> >>>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >> >>>>>>> Greats, I'm working on patch from this morning, but it's very hard to >> >>>>>>> debug on settings-parser >> >>>>>> >> >>>>>> I don't think you should need to touch that code. It's a bit difficult >> >>>>>> for me also to follow.. >> >>>>>> >> >>>>>>> How can I enable i_debug on settings-parser.c ? >> >>>>>> >> >>>>>> What do you mean? You could add i_debug() calls and it should work just >> >>>>>> the same as everywhere. >> >>>>>> >> >>>>>> Did you try the patch in my previous mail? I think that should be >> >>>>>> enough. You could then use: >> >>>>>> >> >>>>>> user_attrs = .., mailPlugins=+mail_plugins >> >>>>>> >> >>>>>> >> >>>>>> >> >>>>> >> >>>>> >> >>>>> >> >>>>> -- >> >>>>> Antonio P?rez-Aranda Alcaide >> >>>>> aperezaranda at yaco.es >> >>>>> >> >>>>> Yaco Sistemas S.L. >> >>>>> http://www.yaco.es/ >> >>>>> C/ Rioja 5, 41001 Sevilla >> >>>>> Tel?fono +34 954 50 00 57 >> >>>>> Fax ? ? ?+34 954 50 09 29 >> >>>>> >> >>>> >> >>>> >> >>>> >> >>>> -- >> >>>> Antonio P?rez-Aranda Alcaide >> >>>> aperezaranda at yaco.es >> >>>> >> >>>> Yaco Sistemas S.L. >> >>>> http://www.yaco.es/ >> >>>> C/ Rioja 5, 41001 Sevilla >> >>>> Tel?fono +34 954 50 00 57 >> >>>> Fax ? ? ?+34 954 50 09 29 >> >>>> >> >>> >> >>> >> >>> >> >>> -- >> >>> Antonio P?rez-Aranda Alcaide >> >>> aperezaranda at yaco.es >> >>> >> >>> Yaco Sistemas S.L. >> >>> http://www.yaco.es/ >> >>> C/ Rioja 5, 41001 Sevilla >> >>> Tel?fono +34 954 50 00 57 >> >>> Fax ? ? ?+34 954 50 09 29 >> >>> >> >> >> >> >> >> >> >> -- >> >> Antonio P?rez-Aranda Alcaide >> >> aperezaranda at yaco.es >> >> >> >> Yaco Sistemas S.L. >> >> http://www.yaco.es/ >> >> C/ Rioja 5, 41001 Sevilla >> >> Tel?fono +34 954 50 00 57 >> >> Fax ? ? ?+34 954 50 09 29 >> >> >> > >> > >> > >> > -- >> > Antonio P?rez-Aranda Alcaide >> > aperezaranda at yaco.es >> > >> > Yaco Sistemas S.L. >> > http://www.yaco.es/ >> > C/ Rioja 5, 41001 Sevilla >> > Tel?fono +34 954 50 00 57 >> > Fax ? ? ?+34 954 50 09 29 >> > >> >> >> > > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From maria_arrea at gmx.com Mon Jun 27 17:54:51 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Mon, 27 Jun 2011 14:54:51 +0000 Subject: [Dovecot] Question about corrupted mdbox file Message-ID: <20110627145452.75880@gmx.com> Any idea about this problem? Regards Maria ----- Original Message ----- From: Maria Arrea Sent: 06/23/11 01:59 PM To: Dovecot Mailing List Subject: [Dovecot] Question about corrupted mdbox file Hello. We are using mdbox 2.013 + zlib, without SIS. When I try doveadm force-resync on a user's mailbox I get the following: doveadm(jmraya): Error: Corrupted dbox file /buzones/mydomain/0b/59/jmraya/storage/m.27 (around offset=22805024): Unexpected EOF while reading metadata header doveadm(jmraya): Warning: dbox: Copy of the broken file saved to /buzones/mydomain/0b/59/jmraya/storage/m.27.broken Any advice about this? Regards Maria From maria_arrea at gmx.com Mon Jun 27 17:55:52 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Mon, 27 Jun 2011 14:55:52 +0000 Subject: [Dovecot] Question about "Storage keeps breaking" in logs Message-ID: <20110627145553.75890@gmx.com> Any hint about this problem? I have been google for a while without luck :( Regards Maria ----- Original Message ----- From: Maria Arrea Sent: 06/22/11 09:32 PM To: Timo Sirainen Subject: Re: [Dovecot] Question about "Storage keeps breaking" in logs Here you have more detailed logs: First case: Jun 6 17:03:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/18/66/juanan/storage: rebuilding indexes Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones/18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=5960/766852 Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/P4. WebMed/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=1124/7377 Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: Recent flags state corrupted for mailbox Deleted Messages Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/Deleted Messages/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=5418/408785 Jun 6 17:09:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/us.es/18/66/juanan/storage: rebuilding indexes Jun 6 17:09:23 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 6 17:09:23 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=2134/4879108 Jun 6 17:19:33 buzon dovecot: lda(juanan): sieve: msgid=: stored mail into mailbox 'INBOX' Second case: Jun 16 11:48:24 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32282 Jun 16 11:48:24 buzon dovecot: imap(fjvalderrama at us.es): Warning: mdbox /buzones/0f/99/fjvalderrama/storage: rebuilding indexes Jun 16 11:48:29 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32510 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Error: mdbox /buzones/mydomain/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Error: mdbox /buzones/mydomain/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=132/574 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=60/406 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=98/423 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox Trash Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/Trash/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=20224/556432 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox SEV/AsigVirtual Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/SEV/AsigVirtual/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=940/62147 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/SEV/Miembros US/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=13061/37386 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox INBOX Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama at us.es): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/Drafts/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama at us.es): Disconnected: IMAP session state is inconsistent, please relogin. bytes=3238/7247 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=1451/22771 Jun 16 11:48:34 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32745 Do you need dovecot config to debug this? I can give it to you if needed. Regards Maria ----- Original Message ----- From: Timo Sirainen Sent: 06/22/11 07:43 PM To: Maria Arrea Subject: Re: [Dovecot] Question about "Storage keeps breaking" in logs On Sun, 2011-06-19 at 10:59 +0000, Maria Arrea wrote: > /var/log/maillog.13.xz:Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones//18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking > /var/log/maillog.3.xz:Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama): Error: mdbox /buzones/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking > > > I have "rebuilt" those mdboxes with doveadm force-resync && doveadm quota recalc. Should I be worried? Why is this happening? Aren't there any other error/warning messages around them? From sm at resistor.net Mon Jun 27 17:30:29 2011 From: sm at resistor.net (SM) Date: Mon, 27 Jun 2011 07:30:29 -0700 Subject: [Dovecot] dovecot security with IPv6 In-Reply-To: References: Message-ID: <6.2.5.6.2.20110627072454.037594f8@resistor.net> At 01:23 23-06-2011, K?rlis Repsons wrote: >particular services, please give me your opinion if it's insecure to >have a dovecot server, which is accessed through a public IPv6 >address... If you do not consider it as secure to run a Dovecot server on a public IPv4 address, the same applies for IPv6. Regards, -sm From me at junc.org Mon Jun 27 18:47:01 2011 From: me at junc.org (Benny Pedersen) Date: Mon, 27 Jun 2011 17:47:01 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> Message-ID: <48bd04856685c208ba2f2ac344b9135b@junc.org> On Mon, 27 Jun 2011 14:04:23 +0200, Christopher Stolzenberg wrote: > Can you explain that? yes, but is it needed ? with this setup seive scripts are not in maildir or visa versa :) From me at junc.org Mon Jun 27 18:56:47 2011 From: me at junc.org (Benny Pedersen) Date: Mon, 27 Jun 2011 17:56:47 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> <4E0873D3.4060005@rename-it.nl> Message-ID: <3620214201cd59fdd0633d35c0368641@junc.org> On Mon, 27 Jun 2011 14:30:28 +0200, Christopher Stolzenberg wrote: > And what happens with existing imap accounts? nothing > Migration necessary? yes, stop dovecot, and do the dirs renaming so all mailbox'es is in .maildir pr mailbox when done start dovecot, or use imapsync before change dovecot.conf (rename folders before change dovecot, this saves time if you have more then one mailbox to migrade) google imapsync to find it dont know if dovecot can do this with out external tools > Will I lose much performance by maildir_stat_dirs = yes on an ext4 > filesystem with my current workaround? is performance a workaround ? and i dont know since i dont use it From tlx at leuxner.net Mon Jun 27 20:56:19 2011 From: tlx at leuxner.net (Thomas Leuxner) Date: Mon, 27 Jun 2011 19:56:19 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: Message-ID: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> > new config (hide sieve folder) > > mail_home = /var/vmail/%d/%n > maildir_stat_dirs = yes > > plugin { > sieve_dir = /var/vmail/%d/%n/sieve/ > sieve = /var/vmail/%d/%n/.dovecot.sieve > } All the examples look a bit overcomplicated. Why not go with the "defaults"? mail_location = maildir:~/maildir sieve = ~/.dovecot.sieve However this relies on home dirs being returned from the user lookups which has not been revealed in the OP's partial config post. Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 203 bytes Desc: Signierter Teil der Nachricht URL: From dmiller at amfes.com Mon Jun 27 21:40:29 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 11:40:29 -0700 Subject: [Dovecot] Virtual Servers Message-ID: Maybe a little off-topic - but I hope not too much. Looking for some insight on setting up Dovecot under a virtual server. In particular, I use VirtualBox - and at the moment, Ubuntu Linux. Initial questions on configuration: Caching. It seems to me - and I'm probably wrong - that running a Linux in a VM on a Linux host, there would be a duplication of caching. That is, the host server has a file cache - and the VM, which is otherwise a standard Linux installation, is also going to try to cache its files. This strikes me as a duplication of effort and waste of RAM. Is this something I should devote any time to thinking about and trying to minimize? If so, how? Mail storage. My current mail store is a RAID-10, using the mdbox format. I wish to continue storing the mail on "raw" disks - not place the mail inside a virtual disk. Accordingly, the VM needs to reach the mail outside the VM environment - which according to conventional wisdom means NFS. My initial testing shows NFS results in a dramatically reduced performance for Dovecot. Given that this NFS access is going to be exclusively for Dovecot, and I'm only running a single server, are there any NFS or Dovecot tweaks I should implement? Is there an alternative connectivity for the VirtualBox environment I should explore? -- Daniel From philip at turmel.org Mon Jun 27 22:48:17 2011 From: philip at turmel.org (Phil Turmel) Date: Mon, 27 Jun 2011 15:48:17 -0400 Subject: [Dovecot] Virtual Servers In-Reply-To: References: Message-ID: <4E08DE81.9020705@turmel.org> Hi Daniel, On 06/27/2011 02:40 PM, Daniel L. Miller wrote: > Maybe a little off-topic - but I hope not too much. > > Looking for some insight on setting up Dovecot under a virtual server. In particular, I use VirtualBox - and at the moment, Ubuntu Linux. > > Initial questions on configuration: > > Caching. It seems to me - and I'm probably wrong - that running a Linux in a VM on a Linux host, there would be a duplication of caching. That is, the host server has a file cache - and the VM, which is otherwise a standard Linux installation, is also going to try to cache its files. This strikes me as a duplication of effort and waste of RAM. Is this something I should devote any time to thinking about and trying to minimize? If so, how? In the storage configuration of your VM, where you select the type of interface to emulate, there's a checkbox for using the Host's I/O cache. > Mail storage. My current mail store is a RAID-10, using the mdbox format. I wish to continue storing the mail on "raw" disks - not place the mail inside a virtual disk. Accordingly, the VM needs to reach the mail outside the VM environment - which according to conventional wisdom means NFS. My initial testing shows NFS results in a dramatically reduced performance for Dovecot. Given that this NFS access is going to be exclusively for Dovecot, and I'm only running a single server, are there any NFS or Dovecot tweaks I should implement? Is there an alternative connectivity for the VirtualBox environment I should explore? If you can set aside entire block devices for use in the VM, you can create a vmdk that performs a 1:1 mapping from the virtualized disk to the given block device. The block device will be partitionable inside the VM, even if it is a partition itself. If you need to, you can access those partitions from the host with the "partx" or "kpartx" utilities (with the VM shut down, of course). The command you want is "VBoxManage internalcommands createrawvmdk" On the other hand, if the host and the guest need simultaneous access, you will need some form of network filesystem. HTH, Phil From lists at wildgooses.com Mon Jun 27 23:03:13 2011 From: lists at wildgooses.com (Ed W) Date: Mon, 27 Jun 2011 21:03:13 +0100 Subject: [Dovecot] Virtual Servers In-Reply-To: References: Message-ID: <4E08E201.6020909@wildgooses.com> On 27/06/2011 19:40, Daniel L. Miller wrote: > Maybe a little off-topic - but I hope not too much. > > Looking for some insight on setting up Dovecot under a virtual server. > In particular, I use VirtualBox - and at the moment, Ubuntu Linux. Although not an option you are currently using, I'm a huge fan of linux-vservers for linux on linux virtualisation. It doesn't offer "full" virtualisation, but it's very secure and extremely lightweight. If you also hardlink all the common files then you will even reduce your RSS sizes across virtual machines due to the kernel using shared static segments Completely useless response to your question, but just a quick thumbs up on a completely different way to slice your onion... Good luck Ed W From xchris89x at googlemail.com Mon Jun 27 23:33:44 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Mon, 27 Jun 2011 22:33:44 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> References: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> Message-ID: 2011/6/27 Thomas Leuxner : >> new config (hide sieve folder) >> >> mail_home = /var/vmail/%d/%n >> maildir_stat_dirs = yes >> >> plugin { >> sieve_dir = /var/vmail/%d/%n/sieve/ >> sieve = /var/vmail/%d/%n/.dovecot.sieve >> } > > All the examples look a bit overcomplicated. Why not go with the "defaults"? I'll try it. > ?mail_location = maildir:~/maildir > ?sieve = ~/.dovecot.sieve Have you any idea how i specify it best? mail_location and mail_home. > > However this relies on home dirs being returned from the user lookups which has not been revealed in the OP's partial config post. With MySQL. user_query = SELECT concat('/var/vmail/', maildir) as home, concat('maildir:/var/vmail/', maildir) as mail, 6000 AS uid, 6000 AS gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE username = '%u' AND active = '1' -- Christopher From info at simonecaruso.com Mon Jun 27 23:34:20 2011 From: info at simonecaruso.com (Simone Caruso) Date: Mon, 27 Jun 2011 22:34:20 +0200 Subject: [Dovecot] Per IP ssl certificates Message-ID: <4E08E94C.9080605@simonecaruso.com> I have to manage 2 different domains, with 1 ssl certificate each, but I don't know how to configure them. I tried this example: "Different certificates per IP and protocol" http://wiki2.dovecot.org/SSL/DovecotConfiguration but I got this error: doveconf: Fatal: Error in configuration file /etc/dovecot/dovecot.conf: ssl enabled, but ssl_cert not set I dont find any documentation about the 'local' keyword too. Any idea or tip? Thanks -- Simone Caruso IT Consultant p.iva: 03045250838 From dovecot-20061108 at billmail.scconsult.com Tue Jun 28 00:34:57 2011 From: dovecot-20061108 at billmail.scconsult.com (Bill Cole) Date: Mon, 27 Jun 2011 17:34:57 -0400 Subject: [Dovecot] Per IP ssl certificates In-Reply-To: <4E08E94C.9080605@simonecaruso.com> References: <4E08E94C.9080605@simonecaruso.com> Message-ID: <4E08F781.6030900@billmail.scconsult.com> Simone Caruso wrote, On 6/27/11 4:34 PM: > I have to manage 2 different domains, with 1 ssl certificate each, but I don't > know how to configure them. > > I tried this example: > "Different certificates per IP and protocol" > http://wiki2.dovecot.org/SSL/DovecotConfiguration > > but I got this error: > doveconf: Fatal: Error in configuration file /etc/dovecot/dovecot.conf: ssl > enabled, but ssl_cert not set > > I dont find any documentation about the 'local' keyword too. > > Any idea or tip? Do you expect other people to be psychic? I know what your problem is: your configuration is incorrect. Because you haven't shown *ANYTHING* specific about your actual configuration, there is an infinite number of ways that your configuration might be incorrect. My completely wild guess is that you did not read http://wiki2.dovecot.org/SSL/DovecotConfiguration very carefully. It specifically warns that the error message you cite will result from not setting a default cert for the server. From patrickdk at patrickdk.com Tue Jun 28 00:51:54 2011 From: patrickdk at patrickdk.com (Patrick Domack) Date: Mon, 27 Jun 2011 17:51:54 -0400 Subject: [Dovecot] Virtual Servers In-Reply-To: References: Message-ID: <20110627175154.Horde.bhfkS5LnE6FOCPt6XH1BGvA@mail.patrickdk.com> I wouldn't worry about *duplicate cache* as far as disk goes at all. This duplicate cache is only going to benifit your vm, if the host machine has enough left over ram. If the host machine doesn't have enough ram, there won't be any cache to worry about. I think this also only applies when using a file based drive, where if you use a raw partition it doesn't get cached, cause the vfs is bypassed. Quoting "Daniel L. Miller" : > Maybe a little off-topic - but I hope not too much. > > Looking for some insight on setting up Dovecot under a virtual > server. In particular, I use VirtualBox - and at the moment, Ubuntu > Linux. > > Initial questions on configuration: > > Caching. It seems to me - and I'm probably wrong - that running a > Linux in a VM on a Linux host, there would be a duplication of > caching. That is, the host server has a file cache - and the VM, > which is otherwise a standard Linux installation, is also going to > try to cache its files. This strikes me as a duplication of effort > and waste of RAM. Is this something I should devote any time to > thinking about and trying to minimize? If so, how? > > Mail storage. My current mail store is a RAID-10, using the mdbox > format. I wish to continue storing the mail on "raw" disks - not > place the mail inside a virtual disk. Accordingly, the VM needs to > reach the mail outside the VM environment - which according to > conventional wisdom means NFS. My initial testing shows NFS results > in a dramatically reduced performance for Dovecot. Given that this > NFS access is going to be exclusively for Dovecot, and I'm only > running a single server, are there any NFS or Dovecot tweaks I > should implement? Is there an alternative connectivity for the > VirtualBox environment I should explore? > > -- > Daniel From dmiller at amfes.com Tue Jun 28 01:17:43 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 15:17:43 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <20110627175154.Horde.bhfkS5LnE6FOCPt6XH1BGvA@mail.patrickdk.com> References: <4E08CE9D.7010307@amfes.com> <20110627175154.Horde.bhfkS5LnE6FOCPt6XH1BGvA@mail.patrickdk.com> Message-ID: On 6/27/2011 2:51 PM, Patrick Domack wrote: > I wouldn't worry about *duplicate cache* as far as disk goes at all. > > This duplicate cache is only going to benifit your vm, if the host > machine has enough left over ram. If the host machine doesn't have > enough ram, there won't be any cache to worry about. I think this also > only applies when using a file based drive, where if you use a raw > partition it doesn't get cached, cause the vfs is bypassed. My primary "concern" was the VM cache. My thought was since the host was caching, there was no need for the VM to try to allocate precious VM memory for cache purposes. The goal "obviously?" being to allocate as much RAM as necessary for efficient Dovecot functioning in the VM and avoid any swap-to-disk issues. -- Daniel From tss at iki.fi Tue Jun 28 02:33:38 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:33:38 +0300 Subject: [Dovecot] Question about "Storage keeps breaking" in logs In-Reply-To: <20110622193211.75860@gmx.com> References: <20110622193211.75860@gmx.com> Message-ID: <1309217618.10421.944.camel@hurina> On Wed, 2011-06-22 at 19:32 +0000, Maria Arrea wrote: > Jun 6 17:03:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/18/66/juanan/storage: rebuilding indexes Problem 1: It doesn't log the reason for this rebuild. I can find only one place in code why that could happen, fixed: http://hg.dovecot.org/dovecot-2.0/rev/028b953e7040 > Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones/18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking Problem 2: It apparently can't fix that error. But in my tests it gets fixed fine.. > Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: Recent flags state corrupted for mailbox Deleted Messages Probably related to the index rebuild. So this is a local disk with ext4 filesystem, nothing special? It shouldn't be breaking.. How often do these happen? Can you reproduce these by running imaptest against a test account? http://imapwiki.org/ImapTest From tss at iki.fi Tue Jun 28 02:42:02 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:42:02 +0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: Message-ID: <1309218122.10421.947.camel@hurina> On Fri, 2011-06-24 at 18:23 +0300, Timo Sirainen wrote: > On 16.6.2011, at 19.24, Javier wrote: > > > Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxx at xxxxxxx.com): > > Error: waitpid() failed: No child processes > > This is the main problem. It just shouldn't be happening. You could try stracing an lmtp process while it sends a mail, and see if there are two waitpid() calls or of the first one is giving this error. If there is only this one waitpid() call this would seem like a kernel problem. I think this fixes the bug: http://hg.dovecot.org/dovecot-2.0/rev/748b0fd169d1 Of course, since you can't upgrade that's not very helpful.. You could try to figure out why your sendmail binary is forking and not make it do that.. From tss at iki.fi Tue Jun 28 02:43:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:43:33 +0300 Subject: [Dovecot] Per IP ssl certificates In-Reply-To: <4E08E94C.9080605@simonecaruso.com> References: <4E08E94C.9080605@simonecaruso.com> Message-ID: <1309218213.10421.948.camel@hurina> On Mon, 2011-06-27 at 22:34 +0200, Simone Caruso wrote: > doveconf: Fatal: Error in configuration file /etc/dovecot/dovecot.conf: ssl > enabled, but ssl_cert not set You need one global "default" ssl_cert. Don't put everything inside local {}. From tss at iki.fi Tue Jun 28 02:50:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:50:08 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> <1308763692.10421.909.camel@hurina> Message-ID: <1309218608.10421.950.camel@hurina> It's +key=value. And in some situations where you'd have userdb_key=value you'd now have userdb_+key=value, which is kind of ugly and actually makes me think key+=value could be better.. :) Yeah, changed now: http://hg.dovecot.org/dovecot-2.0/rev/4285147ed694 On Mon, 2011-06-27 at 16:25 +0200, Antonio Perez-Aranda wrote: > How it works? +key=value or key+=value > > 2011/6/22 Timo Sirainen : > > I did some fixes to my original patch to make it actually work the way I > > intended: http://hg.dovecot.org/dovecot-2.0/rev/3d07ab746a67 > > > > On Tue, 2011-06-14 at 17:38 +0200, Antonio Perez-Aranda wrote: > >> Maybe this could be a "feature request" for dovecot 2.0.14 - 2.0.15 or 2.1 ? > >> > >> 2011/6/9 Antonio Perez-Aranda : > >> > This patch fix a bug and remove some debug info from patch sent before. > >> > > >> > 2011/6/9 Antonio Perez-Aranda : > >> >> This patch is running but it only run with mail_plugins. > >> >> > >> >> This is because I can't select the "mail_plugins" value from any > >> >> function to get this throw the name key. > >> >> > >> >> Maybe this need more hard development to do this as generic "property" > >> >> for any config value. > >> >> > >> >> 2011/6/9 Antonio Perez-Aranda : > >> >>> Well, this "extrange" vaues is NULL. > >> >>> > >> >>> Maybe, the set_parser is a new environment to set settings but then > >> >>> ?when is make the config merge? > >> >>> > >> >>> 2011/6/9 Antonio Perez-Aranda : > >> >>>> This line: > >> >>>> > >> >>>> value = settings_parse_get_value(set_parser, key, &type); > >> >>>> > >> >>>> Is returning a empty value. Maybe, set_parser has been cleared? > >> >>>> > >> >>>> If I try to get another keys from my config that I can watch with > >> >>>> doveadm I get "extrange" values like this with i_debug() > >> >>>> > >> >>>> * mail_debug -> #001 > >> >>>> * mail_location -> #010 > >> >>>> * auth_realms -> #020#002 > >> >>>> > >> >>>> > >> >>>> 2011/6/8 Antonio Perez-Aranda : > >> >>>>> It must run on dovecot 2.0.13? > >> >>>>> > >> >>>>> We are upgrading to 2.0.13 and with this I get the follow message: > >> >>>>> > >> >>>>> Jun 8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: > >> >>>>> +mail_plugins=fts fts_solr?G > >> >>>>> > >> >>>>> > >> >>>>> 2011/6/7 Timo Sirainen : > >> >>>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: > >> >>>>>>> Greats, I'm working on patch from this morning, but it's very hard to > >> >>>>>>> debug on settings-parser > >> >>>>>> > >> >>>>>> I don't think you should need to touch that code. It's a bit difficult > >> >>>>>> for me also to follow.. > >> >>>>>> > >> >>>>>>> How can I enable i_debug on settings-parser.c ? > >> >>>>>> > >> >>>>>> What do you mean? You could add i_debug() calls and it should work just > >> >>>>>> the same as everywhere. > >> >>>>>> > >> >>>>>> Did you try the patch in my previous mail? I think that should be > >> >>>>>> enough. You could then use: > >> >>>>>> > >> >>>>>> user_attrs = .., mailPlugins=+mail_plugins > >> >>>>>> > >> >>>>>> > >> >>>>>> > >> >>>>> > >> >>>>> > >> >>>>> > >> >>>>> -- > >> >>>>> Antonio P?rez-Aranda Alcaide > >> >>>>> aperezaranda at yaco.es > >> >>>>> > >> >>>>> Yaco Sistemas S.L. > >> >>>>> http://www.yaco.es/ > >> >>>>> C/ Rioja 5, 41001 Sevilla > >> >>>>> Tel?fono +34 954 50 00 57 > >> >>>>> Fax +34 954 50 09 29 > >> >>>>> > >> >>>> > >> >>>> > >> >>>> > >> >>>> -- > >> >>>> Antonio P?rez-Aranda Alcaide > >> >>>> aperezaranda at yaco.es > >> >>>> > >> >>>> Yaco Sistemas S.L. > >> >>>> http://www.yaco.es/ > >> >>>> C/ Rioja 5, 41001 Sevilla > >> >>>> Tel?fono +34 954 50 00 57 > >> >>>> Fax +34 954 50 09 29 > >> >>>> > >> >>> > >> >>> > >> >>> > >> >>> -- > >> >>> Antonio P?rez-Aranda Alcaide > >> >>> aperezaranda at yaco.es > >> >>> > >> >>> Yaco Sistemas S.L. > >> >>> http://www.yaco.es/ > >> >>> C/ Rioja 5, 41001 Sevilla > >> >>> Tel?fono +34 954 50 00 57 > >> >>> Fax +34 954 50 09 29 > >> >>> > >> >> > >> >> > >> >> > >> >> -- > >> >> Antonio P?rez-Aranda Alcaide > >> >> aperezaranda at yaco.es > >> >> > >> >> Yaco Sistemas S.L. > >> >> http://www.yaco.es/ > >> >> C/ Rioja 5, 41001 Sevilla > >> >> Tel?fono +34 954 50 00 57 > >> >> Fax +34 954 50 09 29 > >> >> > >> > > >> > > >> > > >> > -- > >> > Antonio P?rez-Aranda Alcaide > >> > aperezaranda at yaco.es > >> > > >> > Yaco Sistemas S.L. > >> > http://www.yaco.es/ > >> > C/ Rioja 5, 41001 Sevilla > >> > Tel?fono +34 954 50 00 57 > >> > Fax +34 954 50 09 29 > >> > > >> > >> > >> > > > > > > > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax +34 954 50 09 29 > From tss at iki.fi Tue Jun 28 02:55:02 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:55:02 +0300 Subject: [Dovecot] ACLs: Group ACL adds empty ACL for user of same name, why? In-Reply-To: <201106271440.42658.jim.hague@acm.org> References: <201106271440.42658.jim.hague@acm.org> Message-ID: <1309218902.10421.952.camel@hurina> On Mon, 2011-06-27 at 14:40 +0100, Jim Hague wrote: > I'm playing around with ACLs, Groups and SOGo on Debian Stable, Dovecot > 1.2.15. > > If I set an ACL for a group 'developers': > > 6 setacl "INBOX.Trash" "$developers" "lrsw" > 6 OK Setacl complete. > > The dovecot-acl file for INBOX.Trash then contains a group setting for the > group, and a user setting for a user of the same name, giving it no > permissions. > > group=developers lrws > user=developers Looks like a bug. I see it's fixed in v2.0 already. You can't get it fixed to Debian stable .deb anyway, so I don't think there's much point in trying to backport the fix. From tss at iki.fi Tue Jun 28 02:58:23 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:58:23 +0300 Subject: [Dovecot] LMTP returncode 450? In-Reply-To: <4E087DDF.2020703@one.com> References: <4E087DDF.2020703@one.com> Message-ID: <1309219103.10421.955.camel@hurina> On Mon, 2011-06-27 at 14:55 +0200, Peter Mogensen wrote: > How do I get the LMTP-server to know which mailbox's are locally hosted > and return SMTP code 450 if delivery is attempted to a non local user? You can't, at least that way. Why are you trying to deliver mails to a non-local mailbox? You could anyway use Dovecot as LMTP proxy to the remote LMTP server and it would deliver the mail there without an error. > I can see that a lookup in the userdb is done, but now matter what I > return (1/111) from my checkpassword script I just get: Set lmtp_proxy=yes and have passdb lookup return proxy=y and host=1.2.3.4. From tss at iki.fi Tue Jun 28 03:03:59 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:03:59 +0300 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> Message-ID: <1309219439.10421.959.camel@hurina> On Wed, 2011-06-22 at 10:31 +0000, Innocenzi, Cinzia wrote: > Hello, > > we have dovecot 2.0.13 installed in our RHEL5 servers. We use dovecot > as a lmtp proxy on the front end mail relays and dovecot for back end > lmtp/pop/imap. All our servers have RHEL5.6 64-bit and dovecot 2.0.13 > installed, and the back end has also an ext3 mbox file-system mounted. > > Sometimes we have mails that get stuck on our postfix queue with the > following error: Remote server not answering (timeout in DATA input) > (in reply to end of DATA command) .. > It doesn't happen for every single mail, it's random. My guess is there's a bug somewhere in the LMTP proxy code. It's a bit annoyingly complex code.. Do you see this happening when proxying only a single mail (one RCPT TO per DATA, not multiple)? And I would guess that when attempting to deliver the same mail again it works fine (at least in a few tries)? From tss at iki.fi Tue Jun 28 03:10:00 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:10:00 +0300 Subject: [Dovecot] LDAP timeout In-Reply-To: References: Message-ID: <1309219800.10421.964.camel@hurina> On Mon, 2011-06-27 at 12:11 +0000, Bernhard Schmidt wrote: > Hi, > > we recently hit an issue where one (of the three configured) LDAP > servers dropped an index on an attribute due to a misconfiguration, > which caused all/most queries for passdb to take a very long time > (several 10s of seconds). > > The other servers would have been fine, but it seems like Dovecot does > either not set a timelimit on the query or uses a very high one. I could > not find any place to control that either. > > Is there any knob to tune the LDAP timeout? Fallbacking to another LDAP server is done by OpenLDAP internally. So what would be needed is either a) OpenLDAP to itself figure out that queries are running too slowly and see if another server is faster, or b) Dovecot figure that out itself and force OpenLDAP to switch to another server. I don't know if either of them is possible with OpenLDAP API as it is. I doubt it. Oh, also possibility c) Have Dovecot manage all the different LDAP server connections instead of OpenLDAP. Probably what I will have to do eventually anyway. That would allow also load balancing by actually using multiple connections, similar to how SQL code does it now. But yeah, that does remind me that I probably should change the SQL load balancing code to look at the query times. From tss at iki.fi Tue Jun 28 03:11:37 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:11:37 +0300 Subject: [Dovecot] Denying user won't work as expected In-Reply-To: <4E08365B.7060909@esiee.fr> References: <4E08365B.7060909@esiee.fr> Message-ID: <1309219897.10421.966.camel@hurina> On Mon, 2011-06-27 at 09:50 +0200, Frank Bonnet wrote: > passdb { > driver = ldap > deny = yes > > # File contains a list of usernames, one per line > args = /usr/local/etc/dovecot/deny-users > } > > I have tested writting one user (me) in the > /usr/local/etc/dovecot/deny-users You have driver=ldap there, which means that LDAP tries to read the deny-users file as its configuration file. > and the result is the login is denied for ALL users ... I'm surprised that it even starts up.. If replacing driver=ldap with driver=passwd-file doesn't help, show your actual dovecot -n output. From tss at iki.fi Tue Jun 28 03:15:32 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:15:32 +0300 Subject: [Dovecot] Help regarding getting password policy response In-Reply-To: <4E083276.5050307@deeproot.co.in> References: <4E083276.5050307@deeproot.co.in> Message-ID: <1309220132.10421.968.camel@hurina> On Mon, 2011-06-27 at 13:04 +0530, sarguru wrote: > Hello, > I have enabled ldap password policy in my open ldap server and it locks > out the account after several unsuccessful bind attempts. I am able to > get the password policy response which says "Account locked" by > specifying '-e ppolicy' option in my ldapsearch command. > > I am looking for a way to get similar response when I use dovecot so > that I can specify my clients that their account is locked. I understand > the security risks involved but mine is low security and high usability > requirement. Maybe pam_ldap can report it as "password expired"? Dovecot forwards that info if PAM reports it. Other than that, you'd need to modify Dovecot's LDAP code. From tss at iki.fi Tue Jun 28 03:19:57 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:19:57 +0300 Subject: [Dovecot] Default sendmail_path value In-Reply-To: References: Message-ID: <1309220397.10421.970.camel@hurina> On Sun, 2011-06-26 at 16:43 -0700, Joseph Tam wrote: > It appears the documentation of this parameter is inconsistent with the > documentation: > > > grep -nF /sendmail `gfind src -type f` > src/lib-lda/lda-settings.c:41: .sendmail_path = "/usr/sbin/sendmail", > src/config/all-settings.c:732: .sendmail_path = "/usr/sbin/sendmail", > > (and doc/example-config/conf.d/15-lda.conf is also consistent with > this) This should be correct. > but the documentations states > > http://wiki2.dovecot.org/LDA > > sendmail_path is used to send mails. Note that the default is > /usr/lib/sendmail, which doesn't necessarily work the same as > /usr/sbin/sendmail. > > I don't know which ought to be changed though. It used to be /usr/lib/sendmail, but some people complained that it's obsolete now and /usr/sbin/sendmail should be used, so I changed it in v2.0. I changed the wiki2 now. From tss at iki.fi Tue Jun 28 03:28:15 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:28:15 +0300 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: References: Message-ID: <1309220895.10421.974.camel@hurina> On Sat, 2011-06-25 at 03:58 -0400, imap at tnde.org wrote: > I am running dovecot 2.0.13 on CentOS5, set up with only local system > users, and single instance store set up in a single directory. > > e.g. > mail_attachment_dir = /var/mail/attachments Currently you can't. I was a bit lazy in implementing this code not to preserve permissions. The idea would be anyway that you could make /var/mail/attachments 02770 and e.g. group=mail. Then set mail_access_groups=mail to Dovecot. Now the code should have created new directories under that with the same permissions and the files as 0660, but looks like it doesn't. The code is in src/lib-fs/fs-posix.c if you want to fix it yourself. You could as a workaround simply change all 0600 -> 0660 and 0700 -> 0770 and I guess it would work. From tss at iki.fi Tue Jun 28 03:38:18 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:38:18 +0300 Subject: [Dovecot] Multiple values found for 'user', using value In-Reply-To: <201106230924.39228.komodo@uvt.cz> References: <201106161103.32370.komodo@uvt.cz> <1308764277.10421.916.camel@hurina> <201106230924.39228.komodo@uvt.cz> Message-ID: <1309221498.10421.977.camel@hurina> On Thu, 2011-06-23 at 09:24 +0200, komodo wrote: > > > http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html > > > > > > Is there any option to disable these warnings ? Yes we have multiple UIDs > > > so these warnings bothers me. > > > > LDAP protocol doesn't give guarantees about values being returned in any > > specific order. Does your LDAP server? If you have multiple UIDs, do you > > always want the first one to be used? Why do you have multiple? > > Hi, miltiple UIDs are for historical reason, there was requirement to be able login with username > and username at domain, so there is UID username and username at domain. Does the first "username" UID match a username in /etc/passwd (or NIS/whatever)? This kind of sounds like a misconfiguration. You probably shouldn't be returning the "uid" field at all to Dovecot. From tss at iki.fi Tue Jun 28 03:39:54 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:39:54 +0300 Subject: [Dovecot] Multiple values found for 'user', using value In-Reply-To: <1309221498.10421.977.camel@hurina> References: <201106161103.32370.komodo@uvt.cz> <1308764277.10421.916.camel@hurina> <201106230924.39228.komodo@uvt.cz> <1309221498.10421.977.camel@hurina> Message-ID: <1309221594.10421.979.camel@hurina> On Tue, 2011-06-28 at 03:38 +0300, Timo Sirainen wrote: > On Thu, 2011-06-23 at 09:24 +0200, komodo wrote: > > > > http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html > > > > > > > > Is there any option to disable these warnings ? Yes we have multiple UIDs > > > > so these warnings bothers me. > > > > > > LDAP protocol doesn't give guarantees about values being returned in any > > > specific order. Does your LDAP server? If you have multiple UIDs, do you > > > always want the first one to be used? Why do you have multiple? > > > > Hi, miltiple UIDs are for historical reason, there was requirement to be able login with username > > and username at domain, so there is UID username and username at domain. > > Does the first "username" UID match a username in /etc/passwd (or > NIS/whatever)? This kind of sounds like a misconfiguration. You probably > shouldn't be returning the "uid" field at all to Dovecot. Oops, I read the subject only after sending. Yeah, I guess that's intentional then. Still, an alternative might be not to return the uid=user field? Unless there's some kind of a username translation. From tss at iki.fi Tue Jun 28 03:41:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:41:08 +0300 Subject: [Dovecot] %d empty string In-Reply-To: References: Message-ID: <1309221668.10421.980.camel@hurina> On Wed, 2011-06-22 at 23:03 -0400, Ryan Dotson wrote: > I am trying to upgrade from dovecot 1.x to Dovecot 2.0.13 on Fedora. My > problem is the mail_location setting seems to ignore the %d variable. My my > location is as follows: > > mail_location = maildir:/var/spool/virtual_mail/%d/%u/Maildir > > However, when trying to log in the maillog says it can't > find /var/spool/virtual_mail//*myusername*/Maildir/cur. As you can see it > just uses an empty string for the %d variable. Can anyone help? http://wiki2.dovecot.org/DomainLost From tss at iki.fi Tue Jun 28 03:43:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:43:08 +0300 Subject: [Dovecot] Thunderbird or Dovecot causing duplicates In-Reply-To: References: Message-ID: <1309221788.10421.981.camel@hurina> On Thu, 2011-06-23 at 11:39 +1000, Tim wrote: > Basically, I read an email (so it gets marked as read) and then very > quickly I mark is as unread, (i.e. I realised I want to leave that > email for later) which causes a duplicate email to be created. .. > Jun 23 09:23:24 tahn dovecot: IMAP(tim): Fixed a duplicate: > /home/tim/Maildir/cur/1308696708.M863172P16126.tahn,S=3761,W=3888:2,S > -> 1308792204.M626641P1992.tahn Yeah, Dovecot creates a duplicate. Are you using some weird filesystem that doesn't support atomic renames? From tss at iki.fi Tue Jun 28 03:48:43 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:48:43 +0300 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database In-Reply-To: <4E01A6DB.3090807@atpss.net> References: <4E01A6DB.3090807@atpss.net> Message-ID: <1309222123.10421.983.camel@hurina> On Wed, 2011-06-22 at 10:24 +0200, Claudio Prono wrote: > Jun 22 10:18:07 lda(claudio at domain.com): Error: User claudio at domain.com > doesn't have home dir set, disabling duplicate database > > But the mail arrives correctly, and no problems at all. > > I have googled a little about, and i have found a post it says to put > mail_home and not home into the plugin part of the configuration, but > this is not my problem.. The old kludge was to use plugin { home }. The newer better way is to set mail_home setting (outside plugin {}). Home doesn't have to be different from mail dir, although it would be better. http://wiki2.dovecot.org/VirtualUsers/Home From japi76 at gmail.com Tue Jun 28 03:51:52 2011 From: japi76 at gmail.com (Javier) Date: Mon, 27 Jun 2011 21:51:52 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: <1309218122.10421.947.camel@hurina> References: <1309218122.10421.947.camel@hurina> Message-ID: I'll be planning on upgrade soon then, if that cures the problem (ie: i will use submission_host instead of sendmail binary) Another (maybe) unrelated question. It is possible to add extra parameters so the connection made to submission_host uses user's credentials ? (for authenticated smtp) Or I'm asking something ridiculous? Thanks Timo, Thanks list. Javier On Mon, Jun 27, 2011 at 8:42 PM, Timo Sirainen wrote: > On Fri, 2011-06-24 at 18:23 +0300, Timo Sirainen wrote: >> On 16.6.2011, at 19.24, Javier wrote: >> >> > Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxx at xxxxxxx.com): >> > Error: waitpid() failed: No child processes >> >> This is the main problem. It just shouldn't be happening. You could try stracing an lmtp process while it sends a mail, and see if there are two waitpid() calls or of the first one is giving this error. If there is only this one waitpid() call this would seem like a kernel problem. > > I think this fixes the bug: > http://hg.dovecot.org/dovecot-2.0/rev/748b0fd169d1 > > Of course, since you can't upgrade that's not very helpful.. You could > try to figure out why your sendmail binary is forking and not make it do > that.. > > > From tss at iki.fi Tue Jun 28 03:59:47 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:59:47 +0300 Subject: [Dovecot] Panic: doveadm quota get -A In-Reply-To: <4E01A19A.4070808@enas.net> References: <4E01A19A.4070808@enas.net> Message-ID: <1309222787.10421.984.camel@hurina> On Wed, 2011-06-22 at 10:02 +0200, Urban Loesch wrote: > # doveadm quota get -A > doveadm: Panic: file doveadm-print-table.c: line 58 (doveadm_calc_header_length): assertion failed: ((value_count % hdr_count) == 0) Fixed: http://hg.dovecot.org/dovecot-2.0/rev/02d97fb66047 From tss at iki.fi Tue Jun 28 04:00:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:00:33 +0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: <1309218122.10421.947.camel@hurina> Message-ID: <1309222833.10421.985.camel@hurina> On Mon, 2011-06-27 at 21:51 -0300, Javier wrote: > I'll be planning on upgrade soon then, if that cures the problem (ie: > i will use submission_host instead of sendmail binary) > > Another (maybe) unrelated question. > It is possible to add extra parameters so the connection made to > submission_host uses user's credentials ? (for authenticated smtp) > Or I'm asking something ridiculous? No possibility to do SMTP AUTH. Way too much trouble, at least for now. From tss at iki.fi Tue Jun 28 04:01:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:01:41 +0300 Subject: [Dovecot] UIDL and message migration In-Reply-To: <4E007DDC.4020807@fct.unl.pt> References: <4E007DDC.4020807@fct.unl.pt> Message-ID: <1309222901.10421.986.camel@hurina> On Tue, 2011-06-21 at 12:17 +0100, Hugo Monteiro wrote: > Hello, > > I'm in the process of migrating accounts between two dovecot servers. An > old server running ancient 1.0.15 and a new server running 1.2.15. > Account migration is going to be gradual and so i would like to use > imapsync to move messages and subscriptions from one server to the > other. The only problem so far is with POP users. After doing an account > migration with imapsync, and although both servers share the same > pop3_uidl_format = %08Xu%08Xv, the client downloads every message that > was already on the server. %u means IMAP UID. imapsync can't preserve those. Use either rsync on the filesystem directly or v2.0's dsync. From tss at iki.fi Tue Jun 28 04:03:56 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:03:56 +0300 Subject: [Dovecot] Invalid cross-device link while trying to delete folder - Dovecot 2.0.7 In-Reply-To: <4DFF4CFD.7060300@lncsa.com> References: <4DFF4CFD.7060300@lncsa.com> Message-ID: <1309223036.10421.988.camel@hurina> On Mon, 2011-06-20 at 15:37 +0200, Laurent CARON wrote: > When trying to trash some folder from the second namespace, I get the > following error in the logs: > > > imap(USER): Error: rename(/data/mail2/USER/Maildir/.Archives.20112, > /home/USER/Maildir/.Trash.20112) failed: Invalid cross-device link It's Thunderbird that's trying to rename the mailbox to under Trash instead of actually deleting it. And since Dovecot's only choice to actually handle that would be to copy all the mails between the storages, it instead simply fails. From noel.butler at ausics.net Tue Jun 28 04:06:07 2011 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 28 Jun 2011 11:06:07 +1000 Subject: [Dovecot] Virtual Servers In-Reply-To: References: Message-ID: <1309223167.9751.34.camel@tardis> On Mon, 2011-06-27 at 11:40 -0700, Daniel L. Miller wrote: > Maybe a little off-topic - but I hope not too much. > > Looking for some insight on setting up Dovecot under a virtual server. > In particular, I use VirtualBox - and at the moment, Ubuntu Linux. > I hope this is a lightly used server and does not do any real level of mail traffic else you'll soon regret running in any VM :) > format. I wish to continue storing the mail on "raw" disks - not place > the mail inside a virtual disk. Accordingly, the VM needs to reach the At least you have very good sense not to do that > > means NFS. My initial testing shows NFS results in a dramatically > reduced performance for Dovecot. Given that this NFS access is going to Hrmmm, something amiss somewhere then, I'd put it down to the VM, many people on this list use NFS and have no problems. > there any NFS or Dovecot tweaks I should implement? Is there an Though you have not mentioned what version you run, on 1.2.x using: mmap_disable = yes mail_nfs_storage = yes mail_nfs_index = yes ... is a must... Also, what else runs on your server, how many VM's and what types? The only VM I use, is personal and not work related, and then its only for my personal domain secondary MX and secondary geo located (in the U.S) DNS, it's a Xen box, but it does little work since my primaries always respond, I set it up to NFS access my mail here once playing around (seeing how much a difference being 10K Km's away makes), and the only latency I got in accessing mail, was normal and as to be expected with a 160ms each way trip, to be honest, it was faster to pop my mail that way, than using my mobile directly to my main server given mobile carriers always over subscribe. Cheers -------------- next part -------------- A non-text attachment was scrubbed... Name: face-smile.png Type: image/png Size: 873 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From tss at iki.fi Tue Jun 28 04:07:16 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:07:16 +0300 Subject: [Dovecot] Maildir parent directory permissions incorrect for new mailbox In-Reply-To: <4DFB826A.9080903@helenmarks.co.uk> References: <4DFB826A.9080903@helenmarks.co.uk> Message-ID: <1309223236.10421.989.camel@hurina> On Fri, 2011-06-17 at 17:35 +0100, Dominic Marks wrote: > My issue is with the automatic creation of parent directories above new > maildirs. It seems to be that they're being set with incorrect (or > unhelpful) permissions, applying the permissions of the mailbox down the > path towards the mailbox root, as opposed to taking the permissions of > the mailbox root up towards the mailbox. > > Our mail is stored under the scheme: > > location = maildir:/var/dovecot/mail/%d/%n:INDEX=/var/dovecot/index/%d/%n See if chmod g+s /var/dovecot/mail solves your troubles. The same for index dir. From tss at iki.fi Tue Jun 28 04:17:17 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:17:17 +0300 Subject: [Dovecot] Maildir parent directory permissions incorrect for new mailbox In-Reply-To: <1309223236.10421.989.camel@hurina> References: <4DFB826A.9080903@helenmarks.co.uk> <1309223236.10421.989.camel@hurina> Message-ID: <1309223837.10421.991.camel@hurina> On Tue, 2011-06-28 at 04:07 +0300, Timo Sirainen wrote: > On Fri, 2011-06-17 at 17:35 +0100, Dominic Marks wrote: > > > My issue is with the automatic creation of parent directories above new > > maildirs. It seems to be that they're being set with incorrect (or > > unhelpful) permissions, applying the permissions of the mailbox down the > > path towards the mailbox root, as opposed to taking the permissions of > > the mailbox root up towards the mailbox. > > > > Our mail is stored under the scheme: > > > > location = maildir:/var/dovecot/mail/%d/%n:INDEX=/var/dovecot/index/%d/%n > > See if chmod g+s /var/dovecot/mail solves your troubles. The same for > index dir. I added explanation to http://wiki2.dovecot.org/SharedMailboxes/Permissions#Permissions_to_new_user_directories From jonnyt at abpni.co.uk Tue Jun 28 04:21:00 2011 From: jonnyt at abpni.co.uk (Jonathan Tripathy) Date: Tue, 28 Jun 2011 02:21:00 +0100 Subject: [Dovecot] Virtual Servers In-Reply-To: <1309223167.9751.34.camel@tardis> References: <1309223167.9751.34.camel@tardis> Message-ID: <4E092C7C.4090507@abpni.co.uk> > > I hope this is a lightly used server and does not do any real level of > mail traffic else you'll soon regret running in any VM :) > > Don't mean to start a flame war, but your statement above is just simply inaccurate. The main difference between a virtual server and a physical server is that resources are contended with other VMs in the virtual server suitation. So for example, if Dovecot required a lot of resources, and there were another 1000 idle VMs on the same physical box as the Dovecot VM, Dovecot would run fine. What is true for any service (not just Dovecot) is that you need to get the balance right depending on your server resources requirements and sharing the physical resources with other VMs in such a way that you don't starve some critical services. So please stop with the FUD about virtualisation :) BTW, I'm assuming a proper virtualisation solution such as Xen Paravirtualisation. From jtam.home at gmail.com Tue Jun 28 04:21:26 2011 From: jtam.home at gmail.com (Joseph Tam) Date: Mon, 27 Jun 2011 18:21:26 -0700 (PDT) Subject: [Dovecot] Default sendmail_path value In-Reply-To: References: Message-ID: Timo Sirainen wrote: > On Sun, 2011-06-26 at 16:43 -0700, Joseph Tam wrote: >> ... >> but the documentations states >> >> http://wiki2.dovecot.org/LDA >> >> sendmail_path is used to send mails. Note that the default is >> /usr/lib/sendmail, which doesn't necessarily work the same as >> /usr/sbin/sendmail. > > It used to be /usr/lib/sendmail, but some people complained that it's > obsolete now and /usr/sbin/sendmail should be used, so I changed it in > v2.0. > > I changed the wiki2 now. Thanks. Solaris still uses /usr/lib/sendmail which is a pain since /usr/lib is rarely in shell search paths. Nothing a few symlinks can't fix. Joseph Tam From noel.butler at ausics.net Tue Jun 28 04:35:31 2011 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 28 Jun 2011 11:35:31 +1000 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E092C7C.4090507@abpni.co.uk> References: <1309223167.9751.34.camel@tardis> <4E092C7C.4090507@abpni.co.uk> Message-ID: <1309224931.9751.56.camel@tardis> On Tue, 2011-06-28 at 02:21 +0100, Jonathan Tripathy wrote: > > > > I hope this is a lightly used server and does not do any real level of > > mail traffic else you'll soon regret running in any VM :) > > > > > Don't mean to start a flame war, but your statement above is just simply > inaccurate. The main difference between a virtual server and a physical I can show different :) but I wont be baited on this list, so stand by for a private mail in about 15 minutes -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From jonnyt at abpni.co.uk Tue Jun 28 04:54:37 2011 From: jonnyt at abpni.co.uk (Jonathan Tripathy) Date: Tue, 28 Jun 2011 02:54:37 +0100 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E092C7C.4090507@abpni.co.uk> References: <1309223167.9751.34.camel@tardis> <4E092C7C.4090507@abpni.co.uk> Message-ID: <4E09345D.1060906@abpni.co.uk> On 28/06/2011 02:21, Jonathan Tripathy wrote: > >> >> I hope this is a lightly used server and does not do any real level of >> mail traffic else you'll soon regret running in any VM :) >> >> > Don't mean to start a flame war, but your statement above is just > simply inaccurate. The main difference between a virtual server and a > physical server is that resources are contended with other VMs in the > virtual server suitation. So for example, if Dovecot required a lot of > resources, and there were another 1000 idle VMs on the same physical > box as the Dovecot VM, Dovecot would run fine. What is true for any > service (not just Dovecot) is that you need to get the balance right > depending on your server resources requirements and sharing the > physical resources with other VMs in such a way that you don't starve > some critical services. > > So please stop with the FUD about virtualisation :) > > BTW, I'm assuming a proper virtualisation solution such as Xen > Paravirtualisation. I should also mention that I'm refering to VMs using direct block storage such as LVM, not VMs running off image files. Running anything off an image file is indeed going to slow your system down compared to a physical server. A single VM system using file based storage is not going to beat a physical server. A single VM system running on direct block storage is going to be equal to a physical server in most respects. I'm not even sure if VMWare support that to be honest, but Xen sure does. :) IMO anyway.. Noel: I tried to reply to your email off list, but it bounced :( From dmiller at amfes.com Tue Jun 28 07:32:09 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 21:32:09 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <1309223167.9751.34.camel@tardis> References: <4E08CE9D.7010307@amfes.com> <1309223167.9751.34.camel@tardis> Message-ID: On 6/27/2011 6:06 PM, Noel Butler wrote: > I hope this is a lightly used server and does not do any real level of > mail traffic else you'll soon regret running in any VM :) Just all the mailing lists I subscribe to :) >> >> means NFS. My initial testing shows NFS results in a dramatically >> reduced performance for Dovecot. Given that this NFS access is going to > > Hrmmm, something amiss somewhere then, I'd put it down to the VM, many > people on this list use NFS > and have no problems. > Well - the wiki tells me, "Both the mmap_disable and indexing to NFS will result in a notable performance hit." > Though you have not mentioned what version you run, on 1.2.x using: > > mmap_disable = yes > mail_nfs_storage = yes > mail_nfs_index = yes Why do people insist on specifics :) ? At the moment, 2.0.13. Something still a bit unclear - cue Timo interjection here. The parameters listed for nfs installations (mmap_disable, doctlock_use_excl, mail_nfs_storage, mail_nfs_index) - are they necessary for data integrity, and/or do they compensate for NFS latency and improve performance? My confusion stems from the unusual? condition where the mail store is NFS based - but is otherwise dedicated to the single Dovecot instance, so simultaneous writes & locking *shouldn't* be a concern. Particularly as I'm using mdbox, local index storage seems inappropriate (as I don't want any critical data stored within a virtual image). -- Daniel From dmiller at amfes.com Tue Jun 28 07:35:42 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 21:35:42 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E08DE81.9020705@turmel.org> References: <4E08CE9D.7010307@amfes.com> <4E08DE81.9020705@turmel.org> Message-ID: On 6/27/2011 12:48 PM, Phil Turmel wrote: > In the storage configuration of your VM, where you select the type of interface to emulate, there's a checkbox for using the Host's I/O cache. > Does VirtualBox uses that to "trick" the guest kernel into not consuming memory for caching? > > If you can set aside entire block devices for use in the VM, you can create a vmdk that performs a 1:1 mapping from the virtualized disk to the given block device. The block device will be partitionable inside the VM, even if it is a partition itself. If you need to, you can access those partitions from the host with the "partx" or "kpartx" utilities (with the VM shut down, of course). > > The command you want is "VBoxManage internalcommands createrawvmdk" I've done raw access before - but in this case I'm using a single XFS partition on a RAID10 that has multiple directories for various data needs - one of which is the mail store. -- Daniel From dmiller at amfes.com Tue Jun 28 07:38:57 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 21:38:57 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E08E201.6020909@wildgooses.com> References: <4E08CE9D.7010307@amfes.com> <4E08E201.6020909@wildgooses.com> Message-ID: On 6/27/2011 1:03 PM, Ed W wrote: > On 27/06/2011 19:40, Daniel L. Miller wrote: >> Maybe a little off-topic - but I hope not too much. >> >> Looking for some insight on setting up Dovecot under a virtual server. >> In particular, I use VirtualBox - and at the moment, Ubuntu Linux. > Although not an option you are currently using, I'm a huge fan of > linux-vservers for linux on linux virtualisation. It doesn't offer > "full" virtualisation, but it's very secure and extremely lightweight. > If you also hardlink all the common files then you will even reduce your > RSS sizes across virtual machines due to the kernel using shared static > segments > > Completely useless response to your question, but just a quick thumbs up > on a completely different way to slice your onion... I'm going to need to research this and experiment a bit... -- Daniel From dmiller at amfes.com Tue Jun 28 07:42:06 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 21:42:06 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E092C7C.4090507@abpni.co.uk> References: <4E08CE9D.7010307@amfes.com> <1309223167.9751.34.camel@tardis> <4E092C7C.4090507@abpni.co.uk> Message-ID: On 6/27/2011 6:21 PM, Jonathan Tripathy wrote: > > BTW, I'm assuming a proper virtualisation solution such as Xen > Paravirtualisation. "Proper"? You don't consider VirtualBox as such? In this instance, I'm using VirtualBox to run a few Windows guests - so Xen isn't an option for me. And as far as I know, QEMU/KVM cannot run concurrently with VirtualBox. I have tried getting Windows to run under QEMU-KVM - for me at least, it was a miserable time compared with VirtualBox. -- Daniel From noel.butler at ausics.net Tue Jun 28 07:47:41 2011 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 28 Jun 2011 14:47:41 +1000 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E09345D.1060906@abpni.co.uk> References: <1309223167.9751.34.camel@tardis> <4E092C7C.4090507@abpni.co.uk> <4E09345D.1060906@abpni.co.uk> Message-ID: <1309236461.5663.10.camel@tardis> On Tue, 2011-06-28 at 02:54 +0100, Jonathan Tripathy wrote: > > I should also mention that I'm refering to VMs using direct block > storage such as LVM, not VMs running off image files. Running anything > off an image file is indeed going to slow your system down compared to a > physical server. > > A single VM system using file based storage is not going to beat a > physical server. A single VM system running on direct block storage is > going to be equal to a physical server in most respects. I'm not even > sure if VMWare support that to be honest, but Xen sure does. :) > Not sure how they setup the one I was telling you about, that guys off with the flu, but I'll email him > IMO anyway.. > > Noel: I tried to reply to your email off list, but it bounced :( Looks like milter caught you on generic DNS Cheers -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From bind at enas.net Tue Jun 28 09:33:48 2011 From: bind at enas.net (Urban Loesch) Date: Tue, 28 Jun 2011 08:33:48 +0200 Subject: [Dovecot] Panic: doveadm quota get -A In-Reply-To: <1309222787.10421.984.camel@hurina> References: <4E01A19A.4070808@enas.net> <1309222787.10421.984.camel@hurina> Message-ID: <4E0975CC.8080008@enas.net> Many thanks, works. Regards Urban Timo Sirainen wrote: > On Wed, 2011-06-22 at 10:02 +0200, Urban Loesch wrote: > >> # doveadm quota get -A >> doveadm: Panic: file doveadm-print-table.c: line 58 (doveadm_calc_header_length): assertion failed: ((value_count % hdr_count) == 0) > > Fixed: http://hg.dovecot.org/dovecot-2.0/rev/02d97fb66047 > > > From mnavaki at gmail.com Tue Jun 28 10:33:09 2011 From: mnavaki at gmail.com (Meisam Navaki) Date: Tue, 28 Jun 2011 12:03:09 +0430 Subject: [Dovecot] Hi Message-ID: Hi all, I'm reading dovecot source codes(2.0.13),and I need to know how dovecot communicate with sasl? I traced the source code from cmd_login function,and found out something about sasl_callback. but i never found where this function called and also I couldn't understand how sasl inform the dovecot from authentication result. I'll be thankful if someone could help me out. From mnavaki at gmail.com Tue Jun 28 10:37:17 2011 From: mnavaki at gmail.com (Meisam Navaki) Date: Tue, 28 Jun 2011 12:07:17 +0430 Subject: [Dovecot] Dovecot communication with sasl in dovecot source code Message-ID: Hi all, I'm reading dovecot source codes(2.0.13),and I need to know how dovecot communicate with sasl? I traced the source code from cmd_login function,and found out something about sasl_callback. but i never found where this function called and also I couldn't understand how sasl inform the dovecot from authentication result. I'll be thankful if someone could help me out. From apm at one.com Tue Jun 28 11:23:30 2011 From: apm at one.com (Peter Mogensen) Date: Tue, 28 Jun 2011 10:23:30 +0200 Subject: [Dovecot] LMTP returncode 450? In-Reply-To: <1309219103.10421.955.camel@hurina> References: <4E087DDF.2020703@one.com> <1309219103.10421.955.camel@hurina> Message-ID: <4E098F82.4020208@one.com> On 2011-06-28 01:58, Timo Sirainen wrote: > On Mon, 2011-06-27 at 14:55 +0200, Peter Mogensen wrote: > >> How do I get the LMTP-server to know which mailbox's are locally hosted >> and return SMTP code 450 if delivery is attempted to a non local user? > > You can't, at least that way. Why are you trying to deliver mails to a > non-local mailbox? You could anyway use Dovecot as LMTP proxy to the > remote LMTP server and it would deliver the mail there without an error. I was wondering if I could skip running a Postfix or other MTA along with dovecot and just let mail be delivered directly to the final host by LMTP. It's no problem to have Postfix do a virtual_mailbox_domains lookup before handing it to local LMTP, but it would be simpler with only Dovecot. >> I can see that a lookup in the userdb is done, but now matter what I >> return (1/111) from my checkpassword script I just get: > > Set lmtp_proxy=yes and have passdb lookup return proxy=y and > host=1.2.3.4. But how does the LMTP proxy deal with temporary errors? It has no queue like the SMTP-server ? /Peter From cinzia.innocenzi at hp.com Tue Jun 28 11:38:13 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Tue, 28 Jun 2011 08:38:13 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <1309219439.10421.959.camel@hurina> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <1309219439.10421.959.camel@hurina> Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44E26FD4A@GVW1102EXC.americas.hpqcorp.net> Hello Timo, so far I've seen this happening when proxying a mail for one recipient; I've never seen this happening for multiple recipients. The other thing I've noticed is that if I reload dovecot, the mail usually gets delivered. Once, it remained stuck in the queue, but after a few hours, when I checked postfix's queue again, it got delivered. Let me know if you need further information. Regards, CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Timo Sirainen [mailto:tss at iki.fi] Sent: marted? 28 giugno 2011 2.04 To: Innocenzi, Cinzia Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP On Wed, 2011-06-22 at 10:31 +0000, Innocenzi, Cinzia wrote: > Hello, > > we have dovecot 2.0.13 installed in our RHEL5 servers. We use dovecot > as a lmtp proxy on the front end mail relays and dovecot for back end > lmtp/pop/imap. All our servers have RHEL5.6 64-bit and dovecot 2.0.13 > installed, and the back end has also an ext3 mbox file-system mounted. > > Sometimes we have mails that get stuck on our postfix queue with the > following error: Remote server not answering (timeout in DATA input) > (in reply to end of DATA command) .. > It doesn't happen for every single mail, it's random. My guess is there's a bug somewhere in the LMTP proxy code. It's a bit annoyingly complex code.. Do you see this happening when proxying only a single mail (one RCPT TO per DATA, not multiple)? And I would guess that when attempting to deliver the same mail again it works fine (at least in a few tries)? From f.bonnet at esiee.fr Tue Jun 28 11:49:39 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Tue, 28 Jun 2011 10:49:39 +0200 Subject: [Dovecot] Denying user won't work as expected In-Reply-To: <1309219897.10421.966.camel@hurina> References: <4E08365B.7060909@esiee.fr> <1309219897.10421.966.camel@hurina> Message-ID: <4E0995A3.5050500@esiee.fr> On 06/28/2011 02:11 AM, Timo Sirainen wrote: > On Mon, 2011-06-27 at 09:50 +0200, Frank Bonnet wrote: > >> passdb { >> driver = ldap >> deny = yes >> >> # File contains a list of usernames, one per line >> args = /usr/local/etc/dovecot/deny-users >> } >> >> I have tested writting one user (me) in the >> /usr/local/etc/dovecot/deny-users > You have driver=ldap there, which means that LDAP tries to read the > deny-users file as its configuration file. > >> and the result is the login is denied for ALL users ... > I'm surprised that it even starts up.. > > If replacing driver=ldap with driver=passwd-file doesn't help, show your > actual dovecot -n output. > > If I do that the denying does not work , I'we written my login in /usr/local/etc/dovecot/deny-users and I am still able to log in ( after restarting dovecot of course ) see attached the dovecot -n output Thanks -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: dvct.txt URL: From jim.hague at acm.org Tue Jun 28 12:11:18 2011 From: jim.hague at acm.org (Jim Hague) Date: Tue, 28 Jun 2011 10:11:18 +0100 Subject: [Dovecot] ACLs: Group ACL adds empty ACL for user of same name, why? In-Reply-To: <1309218902.10421.952.camel@hurina> References: <201106271440.42658.jim.hague@acm.org> <1309218902.10421.952.camel@hurina> Message-ID: <201106281011.19003.jim.hague@acm.org> On Tuesday 28 Jun 2011 00:55:02 Timo Sirainen wrote: > On Mon, 2011-06-27 at 14:40 +0100, Jim Hague wrote: > > If I set an ACL for a group 'developers' [...] > > The dovecot-acl file for INBOX.Trash then contains a group setting for > > the group, and a user setting for a user of the same name, giving it no > > permissions. > > Looks like a bug. I see it's fixed in v2.0 already. You can't get it > fixed to Debian stable .deb anyway, so I don't think there's much point > in trying to backport the fix. Thanks very much. I was worried that there was something subtle I'd missed; I was hoping it would turn out to be a Plain Old Bug. You're right about Squeeze. I'll start looking at 2.0 and backports. -- Jim Hague - jim.hague at acm.org Never trust a computer you can't lift. From bill+dovecot at blunn.org Tue Jun 28 13:54:45 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Tue, 28 Jun 2011 11:54:45 +0100 Subject: [Dovecot] Problem accessing Dovecot mailing lists via IMAP Message-ID: <4E09B2F5.800@blunn.org> I recently tried to look at the Dovecot mailing lists through an already-configured IMAP profile, which had worked fine in the past. But it failed saying that the authentication method was not supported. http://www.dovecot.org/mailinglists.html says: "You can get access to the IMAP archives by using *dovecot.org* as the hostname, *anonymous* as the username and an empty password. It's also possible to use ANONYMOUS authentication mechanism if your client supports it (few do)." I noticed that my e-mail client was configured to use the server "imap.dovecot.org", so I changed it to "dovecot.org". But it still complains that the authentication method is not supported. I am using Thunderbird 3.1 over Windows 7 64-bit. Thunderbird was configured for "Password, Transmitted insecurely" (and this option was not working). I have tried the other authentication options available in Thunderbird. "Encrypted password": Does not work; same problem "Kerberos / GSSAPI": Does not work; same problem "NTLM": Does not work; same problem Any ideas? Bill From maria_arrea at gmx.com Tue Jun 28 14:01:09 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Tue, 28 Jun 2011 11:01:09 +0000 Subject: [Dovecot] Question about "Storage keeps breaking" in logs Message-ID: <20110628110109.75860@gmx.com> This dovecot box (RHEL 5.6 x64, dovecot 2.0.13, ext4) is a VM over vmware vsphere. The remote SAN disks are presented via iSCSI to the ESX hosts, and the ESX host show them as "local storage" /dev/sdX We have several VM sharing that datastore, no I/O contention detected. I will try with imaptest but this a production enviroment, I will take a couple of weeks to get a "mainteneance window" for this. Any other idea about this? Maybe this problem is load-related? Regards Maria ----- Original Message ----- From: Timo Sirainen Sent: 06/28/11 01:33 AM To: Maria Arrea Subject: Re: [Dovecot] Question about "Storage keeps breaking" in logs On Wed, 2011-06-22 at 19:32 +0000, Maria Arrea wrote: > Jun 6 17:03:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/18/66/juanan/storage: rebuilding indexes Problem 1: It doesn't log the reason for this rebuild. I can find only one place in code why that could happen, fixed: http://hg.dovecot.org/dovecot-2.0/rev/028b953e7040 > Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones/18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking Problem 2: It apparently can't fix that error. But in my tests it gets fixed fine.. > Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: Recent flags state corrupted for mailbox Deleted Messages Probably related to the index rebuild. So this is a local disk with ext4 filesystem, nothing special? It shouldn't be breaking.. How often do these happen? Can you reproduce these by running imaptest against a test account? http://imapwiki.org/ImapTest From xchris89x at googlemail.com Tue Jun 28 14:06:28 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Tue, 28 Jun 2011 13:06:28 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> References: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> Message-ID: 2011/6/27 Thomas Leuxner : >> new config (hide sieve folder) >> >> mail_home = /var/vmail/%d/%n >> maildir_stat_dirs = yes >> >> plugin { >> sieve_dir = /var/vmail/%d/%n/sieve/ >> sieve = /var/vmail/%d/%n/.dovecot.sieve >> } > > All the examples look a bit overcomplicated. Why not go with the "defaults"? > > ?mail_location = maildir:~/maildir > ?sieve = ~/.dovecot.sieve > > However this relies on home dirs being returned from the user lookups which has not been revealed in the OP's partial config post. Okay, here is my new config: mail_home = /var/vmail/%d/%n/ mail_location = maildir:/var/vmail/%d/%n/maildir plugin { sieve_dir = /var/vmail/%d/%n/.sieve sieve = /var/vmail/%d/%n/.dovecot.sieve } How should I configure mysql? user_query = SELECT CONCAT('maildir:/var/vmail/',maildir) AS mail, 6000 AS uid, 6000 AS gid FROM mailbox WHERE username = '%u' AND active = '1' or user_query = SELECT maildir, 6000 AS uid, 6000 AS gid FROM mailbox WHERE username = '%u' AND active = '1' mysql query return: maildir: domain.com/user/ Thank you for your help. -- Christopher From CMarcus at Media-Brokers.com Tue Jun 28 14:14:48 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 28 Jun 2011 07:14:48 -0400 Subject: [Dovecot] Virtual Servers In-Reply-To: <1309223167.9751.34.camel@tardis> References: <1309223167.9751.34.camel@tardis> Message-ID: <4E09B7A8.6040509@Media-Brokers.com> On 2011-06-27 9:06 PM, Noel Butler wrote: > On 2011-06-27 9:21 PM, Jonathan Tripathy wrote: >> I hope this is a lightly used server and does not do any real level >> of mail traffic else you'll soon regret running in any VM :) > Don't mean to start a flame war, but your statement above is just > simply inaccurate. Please don't feed the troll... > Noel: I tried to reply to your email off list, but it bounced :( That's what you get for replying to trolls... Noel uses brain-dead anti-spam measures. I plonked him long ago... -- Best regards, Charles From vertigo69 at mail.ru Tue Jun 28 14:20:41 2011 From: vertigo69 at mail.ru (=?utf-8?Q?=D0=92=D0=B0=D1=81=D0=B8=D0=BB=D0=B8=D0=B9_=D0=AF=D0=BA=D0=BE=D0=B2=D0=BB=D0=B5=D0=B2?=) Date: Tue, 28 Jun 2011 15:20:41 +0400 Subject: [Dovecot] Sendmail + dovecot-lda + LDAP Message-ID: Hi, I experince some problems with setting up Sendmail with the LDAP database for virtual mail accounts. Why i'm not writing to the LDAP mailing list? I believe, that the reason of my problem is in configuring dovecot-deliver. What i have: ?- FreeBSD 8.2-RELEASE? ?- sendmail (Version 8.14.4 with LDAP support installed from ports)? ?- Dovecot LDA + dovecot (as pop3/imap) - 1.2.16? ?- Cyrus Sasl (authdaemon for authentification) 1. Following http://wiki.dovecot.org/LDA/Sendmail i've set up deliver as LDA. Everything worked fine. 2. Following http://wiki.dovecot.org/HowTo/DovecotOpenLdap i've set up Dovecot to work with tha ldap. Now i can authorize through the client or web interface and get to my maildir.? 3. Now, i want my sendmail to accept mail for the account in LDAP database. sendmail.mc: ++++++++++++++++++++++ FEATURE(`local_procmail', `/usr/local/libexec/dovecot/deliver',`/usr/local/libexec/dovecot/deliver -d $u') MODIFY_MAILER_FLAGS(`LOCAL', `-f') ...................................... define(`confLDAP_DEFAULT_SPEC', `-h "localhost" -b "dc=mydomain,dc=ru" -d "cn=dovecot,ou=accounts,dc=mydomain,dc=ru" -MLDAP_AUTH_SIMPLE -P /etc/mail/ldap_pass')dnl LDAPROUTE_DOMAIN(`mydomain.ru')dnl FEATURE(`ldap_routing', `null -T', `ldap -1 -T -v mail -k (&(objectclass=posixaccount)(mail=%0))', `passthru')dnl ...................................... MAILER(procmail) ++++++++++++++++++++++ After re-making the sendmail: ++++++++++++++++++++++ [root at test2 /etc/mail]# sendmail -bv -d60.1 test_user at mydomain.ru map_lookup(dequote, test) => NOT FOUND (0) map_lookup(host, mydomain.ru) => mydomain.ru. (0) map_lookup(dequote, test_user) => NOT FOUND (0) map_lookup(ldapmra, test_user at mydomain.ru) => test_user at mydomain.ru (0) map_lookup(ldapmh, test_user at mydomain.ru) => NOT FOUND (68) map_lookup(host, mydomain.ru) => mydomain.ru. (0) map_lookup(dequote, test_user) => NOT FOUND (0) map_lookup(virtuser, test_user at mydomain.ru) => NOT FOUND (0) map_lookup(virtuser, @mydomain.ru) => NOT FOUND (0) test_user at mydomain.ru... User unknown ++++++++++++++++++++++ It's the problem of the local delivery, i believe. Why? Because after sendmail getting an email it passes it to the LDA, which must check the LDAP (not the passwd!) database for the user, to which this email is send to. Are there some possibilities to solve this problem? I appreciate any help.?.. ----------------------- Best regards, Vasily Yakovlev ---------------------------------------------------------------------- From imap at tnde.org Tue Jun 28 17:08:36 2011 From: imap at tnde.org (imap at tnde.org) Date: Tue, 28 Jun 2011 10:08:36 -0400 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: <1309220895.10421.974.camel@hurina> References: <1309220895.10421.974.camel@hurina> Message-ID: <67df3a6b5053ce9d8993c7ec56b7a7f2.squirrel@emailmg.dot5hosting.com> > On Sat, 2011-06-25 at 03:58 -0400, imap at tnde.org wrote: >> I am running dovecot 2.0.13 on CentOS5, set up with only local system >> users, and single instance store set up in a single directory. >> >> e.g. >> mail_attachment_dir = /var/mail/attachments > > Currently you can't. I was a bit lazy in implementing this code not to > preserve permissions. The idea would be anyway that you could > make /var/mail/attachments 02770 and e.g. group=mail. Then set > mail_access_groups=mail to Dovecot. Now the code should have created new > directories under that with the same permissions and the files as 0660, > but looks like it doesn't. The code is in src/lib-fs/fs-posix.c if you > want to fix it yourself. You could as a workaround simply change all > 0600 -> 0660 and 0700 -> 0770 and I guess it would work. > Ok, if I understand you correctly, I would need to chmod to 660/770, but it would only work on existing folders, and every new item will be created as 600/700? I guess the best way is setting up virtual users, presumably these work under a single system account? (for the time being this is running on a test server, using the simplest setup with system users) Thanks for your help! From davide.vaghetti at ing.unipi.it Tue Jun 28 19:13:20 2011 From: davide.vaghetti at ing.unipi.it (Davide Vaghetti) Date: Tue, 28 Jun 2011 18:13:20 +0200 Subject: [Dovecot] what to expect from changing index location Message-ID: <4E09FDA0.9070104@ing.unipi.it> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello everybody, I have one thousand virtual users with mdbox mailbox format and 10 GByte quota. I have noticed some performance problem related to I/O (the mailbox disk is a 6TB raid1+0 on ISCSI), so I want to put the index files on a different disk. My actual mail_location is: mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox and I want to switch to mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ But I cannot figure out a pair of things: - - do the switch trigger the rebuilding of the index files? - - can I get rid of all the old index files? - - how much the index files (no fts squat) can grow? thanks in advance bye davide - -- Dott. Davide Vaghetti Centro Servizi Informatici Facolta' di Ingegneria Universita' di Pisa PGP: http://keys.keysigning.org:11371/pks/lookup?op=get&search=0x7A1B3BA18C4E0A4D -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk4J/Z4ACgkQehs7oYxOCk3QagCfd+yVvR2Ps6hbjZOCumn2Wx2W 6cgAnjOvQDfe1O9jDOAbp4k0deEmytd3 =ZJFQ -----END PGP SIGNATURE----- From giom87 at libero.it Tue Jun 28 20:19:07 2011 From: giom87 at libero.it (Giovanni Mancuso) Date: Tue, 28 Jun 2011 19:19:07 +0200 Subject: [Dovecot] mirate to dovecot 2.0.13 Message-ID: <4E0A0D0B.5050306@libero.it> Hi, I have in my system dovecot 1.2.11 and i want migrate to dovecot 2.0.13. I have 2 Frontend that proxy all request to Backend and i want migrate first FE and after the BE. Can i install dovecot 2.0.13 in FE that proxy all request to BE with dovecot 1.2.11? Thanks From CMarcus at Media-Brokers.com Tue Jun 28 20:29:38 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 28 Jun 2011 13:29:38 -0400 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E09FDA0.9070104@ing.unipi.it> References: <4E09FDA0.9070104@ing.unipi.it> Message-ID: <4E0A0F82.3090909@Media-Brokers.com> On 2011-06-28 12:13 PM, Davide Vaghetti wrote: > mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox > > and I want to switch to > > mail_location = > mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ > > But I cannot figure out a pair of things: > > - - do the switch trigger the rebuilding of the index files? > > - - can I get rid of all the old index files? I'm by no means an expert, but with that many users I think if you did this in one shot (all indexes being rebuilt simultaneously as users logged in) your system would slow to a crawl... I would first rsync the existing indexes over live, then stop dovecot, do another quick rsync of the indexes, then make the change and restart dovecot... That will minimize the impact (rebuilding of indexes)... -- Best regards, Charles From urushkin at telros.ru Tue Jun 28 20:38:24 2011 From: urushkin at telros.ru (Sergey Urushkin) Date: Tue, 28 Jun 2011 21:38:24 +0400 Subject: [Dovecot] Exim and Dovecot2 SASL: 435 Unable to authenticate at present Message-ID: <710846ece1b8d37b0be95dd0e1d67b07@telros.ru> Hi. I had working Exim 4.71 and Dovecot 1.2.9 SASL configuration on Ubuntu Lucid, but needed some features from dovecot2, so I installed 2.0.13 from https://launchpad.net/~carsten-uppenbrink-net/+archive/dovecot2 . Now I get Subj error while trying to authenticate via dovecot auth-client socket. However IMAP auth works fine with 2.0.13 and smtp auth worked fine until upgrade, so I think there is something wrong with dovecot2. Dovecot logs stay empty even with auth_debug*, just one string "auth: Debug: Loading modules from bla...". But here is another information that may help. And if it's needed I can build dovecot myself to ensure that ppa-build isn't guilty. Or debug some another way. Thanks. dovecot -n: # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-31-server x86_64 Ubuntu 10.04.2 LTS auth_debug = yes auth_debug_passwords = yes auth_mechanisms = plain login apop auth_verbose = yes disable_plaintext_auth = no first_valid_gid = 8 first_valid_uid = 8 hostname = mail.domain.lan last_valid_gid = 8 last_valid_uid = 8 lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes listen = * mail_gid = mail mail_location = maildir:~/ mail_plugins = " quota trash" mail_privileged_group = mail mail_uid = mail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = scheme=CRAM-MD5 username_format=%n /etc/dovecot/passwd.d/%d.passwd driver = passwd-file } plugin { autocreate = Trash autocreate2 = Junk autocreate3 = Drafts autocreate4 = Templates autocreate5 = Sent autosubscribe = Trash autosubscribe2 = Junk autosubscribe3 = Drafts autosubscribe4 = Templates autosubscribe5 = Sent quota = maildir:user quota quota_rule = *:storage=200M sieve = ~/dovecot.sieve sieve_dir = ~/sieve trash = /etc/dovecot/dovecot-trash.conf.ext } postmaster_address = postmaster at domain.lan protocols = " imap sieve pop3 sieve" service auth { unix_listener auth-client { mode = 0600 user = Debian-exim } unix_listener auth-userdb { mode = 0600 user = mail } } service managesieve-login { inet_listener sieve_deprecated { port = 2000 } } ssl_cert = EHLO mail.domain.lan <~ 250-mail.domain.lan Hello mail.domain.lan [127.0.0.1] <~ 250-SIZE 26214400 <~ 250-PIPELINING <~ 250-AUTH PLAIN LOGIN <~ 250 HELP ~> AUTH LOGIN <~* 435 Unable to authenticate at present ~> AUTH PLAIN AHRlc3RAZG9tYWluLmxhbgAxMTExMTE= <~* 435 Unable to authenticate at present *** No authentication type succeeded ~> QUIT <~ 221 mail.domain.lan closing connection === Connection closed with remote host. ##################### exim -d+auth output: Exim version 4.71 uid=0 gid=0 pid=29270 D=fbb95cfd Berkeley DB: Berkeley DB 4.8.24: (August 14, 2009) Support for: crypteq iconv() IPv6 PAM Perl Expand_dlfunc GnuTLS move_frozen_messages Content_Scanning DKIM Old_Demime Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd pgsql sqlite Authenticators: cram_md5 cyrus_sasl dovecot plaintext spa Routers: accept dnslookup ipliteral iplookup manualroute queryprogram redirect Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp Fixed never_users: 0 Size of off_t: 8 GnuTLS compile-time version: 2.8.5 GnuTLS runtime version: 2.8.5 changed uid/gid: forcing real = effective uid=0 gid=0 pid=29270 auxiliary group list: seeking password data for user "root": cache not available getpwnam() succeeded uid=0 gid=0 configuration file is /etc/exim4/exim4.conf log selectors = 0000cefe 00233821 cwd=/ 4 args: /usr/sbin/exim4 -bd -q30m -d+auth trusted user admin user seeking password data for user "Debian-exim": cache not available getpwnam() succeeded uid=103 gid=105 seeking password data for user "Debian-exim": using cached result getpwnam() succeeded uid=103 gid=105 seeking password data for user "mail": cache not available getpwnam() succeeded uid=8 gid=8 originator: uid=0 gid=0 login=root name=root 29270 LOG: MAIN 29270 IPv6 socket creation failed: Address family not supported by protocol 29270 LOG: MAIN 29270 Failed to create IPv6 socket for wildcard listening (Address family not supported by protocol): will use IPv4 29270 listening on all interfaces (IPv4) port 25 29270 LOG: MAIN 29270 IPv6 socket creation failed: Address family not supported by protocol 29270 LOG: MAIN 29270 Failed to create IPv6 socket for wildcard listening (Address family not supported by protocol): will use IPv4 29270 listening on all interfaces (IPv4) port 465 29270 pid written to /var/run/exim4/exim.pid 29270 changed uid/gid: running as a daemon 29270 uid=103 gid=105 pid=29270 29270 auxiliary group list: 105 999 29270 LOG: MAIN 29270 exim 4.71 daemon started: pid=29270, -q30m, listening for SMTP on port 25 (IPv4) and for SMTPS on port 465 (IPv4) 29270 set_process_info: 29270 daemon: -q30m, listening for SMTP on port 25 (IPv4) and for SMTPS on port 465 (IPv4) 29270 daemon running with uid=103 gid=105 euid=103 egid=105 29270 SIGALRM received 29270 1 queue-runner process running 29270 Listening... 29271 Starting queue-runner: pid 29271 29271 exec /usr/sbin/exim4 -q 29270 child 29271 ended: status=0x0 29270 0 queue-runner processes now running 29270 Listening... 29270 Connection request from 127.0.0.1 port 58341 29270 search_tidyup called 29270 1 SMTP accept process running 29270 Listening... 29279 sender_fullhost = [127.0.0.1] 29279 sender_rcvhost = [127.0.0.1] 29279 Process 29279 is handling incoming connection from [127.0.0.1] 29279 host in host_lookup? no (option unset) 29279 set_process_info: 29279 handling incoming connection from [127.0.0.1] I=[127.0.0.1]:465 29279 initializing GnuTLS as a server 29279 read D-H parameters from file 29279 initialized D-H parameters 29279 certificate file = /etc/ssl/certs/dovecot.pem 29279 key file = /etc/ssl/private/dovecot.pem 29279 initialized certificate stuff 29279 host in tls_verify_hosts? no (option unset) 29279 host in tls_try_verify_hosts? no (option unset) 29279 initialized GnuTLS session 29279 gnutls_handshake was successful 29279 cipher: TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32 29279 host in host_reject_connection? no (option unset) 29279 duplicate IP address 127.0.0.1 (MX=-1) removed 29279 gethostbyname2 looked up these IP addresses: 29279 name=localhost address=::1 29279 name=localhost address=127.0.0.1 29279 host in sender_unqualified_hosts? yes (matched "localhost") 29279 duplicate IP address 127.0.0.1 (MX=-1) removed 29279 gethostbyname2 looked up these IP addresses: 29279 name=localhost address=::1 29279 name=localhost address=127.0.0.1 29279 host in recipient_unqualified_hosts? yes (matched "localhost") 29279 host in helo_verify_hosts? no (option unset) 29279 host in helo_try_verify_hosts? no (option unset) 29279 host in helo_accept_junk_hosts? no (option unset) 29279 SMTP>> 220 mail.domain.lan, ESMTP ready 29279 tls_do_write(7f10202175a0, 31) 29279 gnutls_record_send(SSL, 7f10202175a0, 31) 29279 outbytes=31 29279 Process 29279 is ready for new message 29279 smtp_setup_msg entered 29279 Calling gnutls_record_recv(7f102023f0c0, 7f1020241e40, 4096) 29279 SMTP<< EHLO mail.domain.lan 29279 mail.domain.lan in helo_lookup_domains? no (end of list) 29279 sender_fullhost = (mail.domain.lan) [127.0.0.1] 29279 sender_rcvhost = [127.0.0.1] (helo=mail.domain.lan) 29279 set_process_info: 29279 handling TLS incoming connection from (mail.domain.lan) [127.0.0.1] I=[127.0.0.1]:465 29279 host in pipelining_advertise_hosts? yes (matched "*") 29279 host in auth_advertise_hosts? yes (matched "*") 29279 tls_do_write(7f10202229c8, 119) 29279 gnutls_record_send(SSL, 7f10202229c8, 119) 29279 outbytes=119 29279 SMTP>> 250-mail.domain.lan Hello mail.domain.lan [127.0.0.1] 29279 250-SIZE 26214400 29279 250-PIPELINING 29279 250-AUTH PLAIN LOGIN 29279 250 HELP 29279 Calling gnutls_record_recv(7f102023f0c0, 7f1020241e40, 4096) 29279 SMTP<< AUTH LOGIN 29279 dovecot authentication 29279 received: VERSION 1 1 29279 received: MECH PLAIN plaintext 29279 received: MECH LOGIN plaintext 29279 received: MECH APOP private dictionary active 29279 received: SPID 29280 29279 received: CUID 1 29279 received: COOKIE cf735efce15b21bbb10568c4a762017c 29279 SMTP>> 435 Unable to authenticate at present 29279 tls_do_write(7f10202175a0, 39) 29279 gnutls_record_send(SSL, 7f10202175a0, 39) 29279 outbytes=39 29279 LOG: MAIN REJECT 29279 auth_login authenticator failed for (mail.domain.lan) [127.0.0.1] I=[127.0.0.1]:465: 435 Unable to authenticate at present: authentication socket protocol error 29279 Calling gnutls_record_recv(7f102023f0c0, 7f1020241e40, 4096) 29279 SMTP<< AUTH PLAIN AHRlc3RAZG9tYWluLmxhbgAxMTExMTE= 29279 host in smtp_accept_max_nonmail_hosts? yes (matched "*") 29279 dovecot authentication 29279 received: VERSION 1 1 29279 received: MECH PLAIN plaintext 29279 received: MECH LOGIN plaintext 29279 received: MECH APOP private dictionary active 29279 received: SPID 29280 29279 received: CUID 2 29279 received: COOKIE 06f8b3d9441b40b4069f53cdd0d128a4 29279 SMTP>> 435 Unable to authenticate at present 29279 tls_do_write(7f10202175a0, 39) 29279 gnutls_record_send(SSL, 7f10202175a0, 39) 29279 outbytes=39 29279 LOG: MAIN REJECT 29279 auth_plain authenticator failed for (mail.domain.lan) [127.0.0.1] I=[127.0.0.1]:465: 435 Unable to authenticate at present: authentication socket protocol error 29279 Calling gnutls_record_recv(7f102023f0c0, 7f1020241e40, 4096) 29279 SMTP<< QUIT 29279 SMTP>> 221 mail.domain.lan closing connection 29279 tls_do_write(7f10202175a0, 37) 29279 gnutls_record_send(SSL, 7f10202175a0, 37) 29279 outbytes=37 29279 tls_close(): shutting down TLS 29279 LOG: smtp_connection MAIN 29279 SMTP connection from (mail.domain.lan) [127.0.0.1] I=[127.0.0.1]:465 closed by QUIT 29279 search_tidyup called 29270 child 29279 ended: status=0x0 29270 0 SMTP accept processes now running 29270 Listening... -- Best regards, Sergey Urushkin From noel.butler at ausics.net Wed Jun 29 01:06:39 2011 From: noel.butler at ausics.net (Noel Butler) Date: Wed, 29 Jun 2011 08:06:39 +1000 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E09B7A8.6040509@Media-Brokers.com> References: <1309223167.9751.34.camel@tardis> <4E09B7A8.6040509@Media-Brokers.com> Message-ID: <1309298799.5899.5.camel@tardis> I think we all know who the troll is here On Tue, 2011-06-28 at 07:14 -0400, Charles Marcus wrote: > On 2011-06-27 9:06 PM, Noel Butler wrote: > > On 2011-06-27 9:21 PM, Jonathan Tripathy wrote: > >> I hope this is a lightly used server and does not do any real level > >> of mail traffic else you'll soon regret running in any VM :) > > > Don't mean to start a flame war, but your statement above is just > > simply inaccurate. > > Please don't feed the troll... > > > Noel: I tried to reply to your email off list, but it bounced :( > > That's what you get for replying to trolls... Noel uses brain-dead > anti-spam measures. I plonked him long ago... > From lundman at lundman.net Wed Jun 29 08:18:52 2011 From: lundman at lundman.net (Jorgen Lundman) Date: Wed, 29 Jun 2011 14:18:52 +0900 Subject: [Dovecot] Dovecot 1.2.16 -> Dovecot 2.0.13 Performance? Message-ID: <4E0AB5BC.3060704@lundman.net> Hello list, Currently running dovecot-1.2.16 as pop, imap, and deliver (with sieve). All on Solaris 10u9, on NFSv4 backends. All is working great. But occasionally, the system gets rather loaded, not entirely sure what part yet, but as part of researching that; If we were to start the upgrade path to dovecot 2.0.13, are there any known areas of performance increase which should encourage us to do this? Since we have a stable system, there is hesitation in changing any part of it :) Each NFS server hosts about 92,381 mailboxes, LDAP as authentication and ZFS user quotas. What sort of numbers do others manage generally? Cheers, Lund -- Jorgen Lundman | Unix Administrator | +81 (0)3 -5456-2687 ext 1017 (work) Shibuya-ku, Tokyo | +81 (0)90-5578-8500 (cell) Japan | +81 (0)3 -3375-1767 (home) From mnavaki at gmail.com Wed Jun 29 09:49:51 2011 From: mnavaki at gmail.com (Meisam Navaki) Date: Wed, 29 Jun 2011 11:19:51 +0430 Subject: [Dovecot] Installing Dovecot v2.0.3 from binary files problem Message-ID: Hi, I've installed dovecot v2.0.13 from binary files.dovecote starts ok,but I get some errors in /var/run/mail.log : dovecot: anvil: Fatal: Error reading configuration: read(/var/run/dovecot/config) failed: EOF dovecot: master: Error: service(anvil): command startup failed, throttling dovecot: master: Error: service(config): child 8606 killed with signal 11 (core dumps disabled) dovecot: master: Error: service(config): command startup failed, throttling dovecot: ssl-params: Fatal: Error reading configuration: read(/var/run/dovecot/config) failed: Connection reset by peer And I've just used example configure files of dovecot. Regards, Meisam Navaki. System Programmer, Bayan Co. From berni at birkenwald.de Wed Jun 29 11:38:55 2011 From: berni at birkenwald.de (Bernhard Schmidt) Date: Wed, 29 Jun 2011 10:38:55 +0200 Subject: [Dovecot] LDAP timeout In-Reply-To: <1309219800.10421.964.camel@hurina> References: <1309219800.10421.964.camel@hurina> Message-ID: <4E0AE49F.7080007@birkenwald.de> Hi, > Fallbacking to another LDAP server is done by OpenLDAP internally. So > what would be needed is either a) OpenLDAP to itself figure out that > queries are running too slowly and see if another server is faster, or > b) Dovecot figure that out itself and force OpenLDAP to switch to > another server. > > I don't know if either of them is possible with OpenLDAP API as it is. I > doubt it. You can set a timelimit for a search, but I'm not exactly sure what happens when you specified multiple servers. Maybe the query gets restarted on the next server, maybe it fails. Still doing that (with logging) would be better than hanging there for several minutes. If it completely aborts the query, a workaround would be to use more than one ldap passdb with one server each, no? Bernhard From linuxmail at 4lin.net Wed Jun 29 15:14:07 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Wed, 29 Jun 2011 14:14:07 +0200 Subject: [Dovecot] ldapsearch dump for passwd file: base64 encoded passwords Message-ID: <1309349647.28227.62.camel@pcdenny> hi, is there a way, to let Dovecot2 uses the base64 encoded passwords from a ldapsearch output, without decode them first? cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part URL: From shazia at ut.ee Wed Jun 29 15:19:58 2011 From: shazia at ut.ee (Shazia Javed) Date: Wed, 29 Jun 2011 15:19:58 +0300 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot Message-ID: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> ------------------------ Dovecot Version: ------------------------ 2.0.13 ------------------------ Output of "dovecot -n": ------------------------ # 2.0.13: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 2.6.35-28-generic x86_64 Ubuntu 10.10 ext4 mail_location = maildir:/home/%u/Maildir passdb { args = %s driver = pam } protocols = imap pop3 ssl = no userdb { driver = passwd } protocol imap { imap_client_workarounds = tb-extra-mailbox-sep } protocol pop3 { pop3_uidl_format = %08Xu%08Xv } --------------------------- Objective: --------------------------- We need to download emails from remote server using Dovecot and thunderbird. Our objective is to store emails in maildir or mbox format, and process them as part of our research project. --------------------------- Problem: --------------------------- Dovecot works for localhost, but not for remote servers. How do I know? Because thunderbird downloads emails in its default location (specified in settings) and not in maildir or mbox folders. If I send mail to @ using mail command, dovecot works and thunderbird shows the email stored in maildir folder. But for email from @yahoo.com goes to thunderbird's default folder and are browsed from there. --------------------------- Relevant Technical Details: --------------------------- ps auxw|grep "dovecot\|imap\|pop3" root 1033 0.0 0.0 52796 1916 ? Ss 12:45 0:00 /usr/sbin/dovecot -F -c /etc/dovecot/dovecot.conf root 1173 0.0 0.0 75096 3284 ? S 12:45 0:00 dovecot-auth root 1214 0.0 0.0 75188 3424 ? S 12:45 0:00 dovecot-auth -w dovecot 8356 0.0 0.0 50528 2692 ? S 13:30 0:00 pop3-login dovecot 8357 0.0 0.0 50528 2692 ? S 13:30 0:00 pop3-login dovecot 8358 0.0 0.0 50528 2688 ? S 13:30 0:00 pop3-login dovecot 8359 0.0 0.0 50528 2688 ? S 13:30 0:00 pop3-login dovecot 8360 0.0 0.0 50528 2688 ? S 13:30 0:00 pop3-login dovecot 8364 0.0 0.0 50540 2688 ? S 13:30 0:00 imap-login dovecot 8375 0.0 0.0 50540 2692 ? S 13:30 0:00 imap-login dovecot 8378 0.0 0.0 50540 2684 ? S 13:30 0:00 imap-login shaz 9048 0.0 0.0 8956 864 pts/0 S+ 15:06 0:00 grep --color=auto dovecot\|imap\|pop3 sudo netstat -lnptu [sudo] password for shaz: Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 1033/dovecot tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 1033/dovecot tcp 0 0 0.0.0.0:64277 0.0.0.0:* LISTEN 2068/skype tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 1295/cupsd tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 1389/master tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 1033/dovecot tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN 1033/dovecot tcp6 0 0 ::1:631 :::* LISTEN 1295/cupsd udp 0 0 127.0.0.1:45902 0.0.0.0:* 2068/skype udp 0 0 0.0.0.0:33754 0.0.0.0:* 1065/avahi-daemon: udp 0 0 0.0.0.0:5353 0.0.0.0:* 1065/avahi-daemon: udp 0 0 0.0.0.0:68 0.0.0.0:* 2132/dhclient udp 0 0 0.0.0.0:64277 0.0.0.0:* 2068/skype udp6 0 0 :::5353 :::* 1065/avahi-daemon: udp6 0 0 :::50994 :::* 1065/avahi-daemon: sudo lsof -i | grep LISTEN dovecot 1033 root 6u IPv4 7578 0t0 TCP *:imap2 (LISTEN) dovecot 1033 root 7u IPv4 7579 0t0 TCP *:imaps (LISTEN) dovecot 1033 root 9u IPv4 7580 0t0 TCP *:pop3 (LISTEN) dovecot 1033 root 10u IPv4 7581 0t0 TCP *:pop3s (LISTEN) cupsd 1295 root 5u IPv6 7932 0t0 TCP Casper:ipp (LISTEN) cupsd 1295 root 6u IPv4 7933 0t0 TCP localhost.localdomain:ipp (LISTEN) master 1389 root 12u IPv4 9284 0t0 TCP *:smtp (LISTEN) skype 2068 shaz 67u IPv4 18344 0t0 TCP *:64277 (LISTEN) pop3-logi 8356 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8356 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) pop3-logi 8357 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8357 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) pop3-logi 8358 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8358 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) pop3-logi 8359 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8359 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) pop3-logi 8360 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8360 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) imap-logi 8364 dovecot 4u IPv4 7578 0t0 TCP *:imap2 (LISTEN) imap-logi 8364 dovecot 5u IPv4 7579 0t0 TCP *:imaps (LISTEN) imap-logi 8375 dovecot 4u IPv4 7578 0t0 TCP *:imap2 (LISTEN) imap-logi 8375 dovecot 5u IPv4 7579 0t0 TCP *:imaps (LISTEN) imap-logi 8378 dovecot 4u IPv4 7578 0t0 TCP *:imap2 (LISTEN) imap-logi 8378 dovecot 5u IPv4 7579 0t0 TCP *:imaps (LISTEN) telnet 127.0.0.1 110 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. +OK Dovecot ready. telnet 127.0.0.1 143 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE STARTTLS AUTH=PLAIN] Dovecot ready. 1 logout * BYE Logging out 1 OK Logout completed. Connection closed by foreign host. telnet mail.ut.ee 110 Trying 193.40.5.156... Connected to mailhost.ut.ee. Escape character is '^]'. +OK POP3 ready quit +OK Connection closed by foreign host. telnet mail.ut.ee 143 Trying 193.40.5.156... Connected to mailhost.ut.ee. Escape character is '^]'. * OK IMAP4 ready 1 logout * BYE 1 OK completed Connection closed by foreign host. ----------------- Commentary: ----------------- As is obvious from the commands and output listed above that dovecot is running, listening on 110 and 143 - but only for localhost. When I try to telnet mail.ut.ee 110/143 I get to see IMAP4/POP3 ready rather than Dovecot ready. ----------------- Queries ----------------- Shouldn't I get "Dovecot ready" message for remote servers as well? It is an MRA and we shouldn't be required to install it on remote servers, right? What should I do to make dovecot work for remote servers? From tkrah at fachschaft.imn.htwk-leipzig.de Wed Jun 29 16:14:58 2011 From: tkrah at fachschaft.imn.htwk-leipzig.de (Torsten Krah) Date: Wed, 29 Jun 2011 15:14:58 +0200 Subject: [Dovecot] Problem accessing Dovecot mailing lists via IMAP In-Reply-To: <4E09B2F5.800@blunn.org> References: <4E09B2F5.800@blunn.org> Message-ID: <1309353298.29710.2.camel@sf050.friends> Am Dienstag, den 28.06.2011, 11:54 +0100 schrieb William Blunn: > > Any ideas? I guess its not working at the moment. CAPABILITY says LOGINDISABLED and AUTH=ANONYMOUS. If the client does not support this auth method, authentication is denied because login is disabled and starttls or ssl to get AUTH PLAIN or AUTH LOGIN is not enabled. Guess configuration does not match the documentation. At least it does not work for me too because my client does not support AUTH ANONYMOUS. Torsten -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5253 bytes Desc: not available URL: From kerem.erciyes at gmail.com Wed Jun 29 16:59:26 2011 From: kerem.erciyes at gmail.com (Kerem Erciyes) Date: Wed, 29 Jun 2011 16:59:26 +0300 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot In-Reply-To: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> References: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> Message-ID: Hi, What makes you think that e-mail retrieval from remote servers should be over Dovecot? Is 193.40.5.156 running Dovecot that it should say "Dovecot ready." ? I think what you need fetchmail or getmail. Dovecot is a MTA, not a MRA. Best, Kerem On Wed, Jun 29, 2011 at 3:19 PM, Shazia Javed wrote: > ------------------------ > Dovecot Version: > ------------------------ > 2.0.13 > > ------------------------ > Output of "dovecot -n": > ------------------------ > # 2.0.13: /usr/local/etc/dovecot/dovecot.conf > # OS: Linux 2.6.35-28-generic x86_64 Ubuntu 10.10 ext4 > mail_location = maildir:/home/%u/Maildir > passdb { > ?args = %s > ?driver = pam > } > protocols = imap pop3 > ssl = no > userdb { > ?driver = passwd > } > protocol imap { > ?imap_client_workarounds = tb-extra-mailbox-sep > } > protocol pop3 { > ?pop3_uidl_format = %08Xu%08Xv > } > > --------------------------- > Objective: > --------------------------- > We need to download emails from remote server using Dovecot and > thunderbird. Our objective is to store emails in maildir or mbox format, > and process them as part of our research project. > > --------------------------- > Problem: > --------------------------- > Dovecot works for localhost, but not for remote servers. How do I know? > Because thunderbird downloads emails in its default location (specified in > settings) and not in maildir or mbox folders. If I send mail to > @ using mail command, dovecot works and thunderbird > shows the email stored in maildir folder. But for email from > @yahoo.com goes to thunderbird's default folder and are browsed from > there. > > > --------------------------- > Relevant Technical Details: > --------------------------- > > ps auxw|grep "dovecot\|imap\|pop3" > > root ? ? ?1033 ?0.0 ?0.0 ?52796 ?1916 ? ? ? ? ?Ss ? 12:45 ? 0:00 > /usr/sbin/dovecot -F -c /etc/dovecot/dovecot.conf > root ? ? ?1173 ?0.0 ?0.0 ?75096 ?3284 ? ? ? ? ?S ? ?12:45 ? 0:00 dovecot-auth > root ? ? ?1214 ?0.0 ?0.0 ?75188 ?3424 ? ? ? ? ?S ? ?12:45 ? 0:00 > dovecot-auth -w > dovecot ? 8356 ?0.0 ?0.0 ?50528 ?2692 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8357 ?0.0 ?0.0 ?50528 ?2692 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8358 ?0.0 ?0.0 ?50528 ?2688 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8359 ?0.0 ?0.0 ?50528 ?2688 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8360 ?0.0 ?0.0 ?50528 ?2688 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8364 ?0.0 ?0.0 ?50540 ?2688 ? ? ? ? ?S ? ?13:30 ? 0:00 imap-login > dovecot ? 8375 ?0.0 ?0.0 ?50540 ?2692 ? ? ? ? ?S ? ?13:30 ? 0:00 imap-login > dovecot ? 8378 ?0.0 ?0.0 ?50540 ?2684 ? ? ? ? ?S ? ?13:30 ? 0:00 imap-login > shaz ? ? ?9048 ?0.0 ?0.0 ? 8956 ? 864 pts/0 ? ?S+ ? 15:06 ? 0:00 grep > --color=auto dovecot\|imap\|pop3 > > > > sudo netstat -lnptu > > [sudo] password for shaz: > Active Internet connections (only servers) > Proto Recv-Q Send-Q Local Address ? ? ? ? ? Foreign Address ? ? ? ? State > ? ? PID/Program name > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:110 ? ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1033/dovecot > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:143 ? ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1033/dovecot > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:64277 ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 2068/skype > tcp ? ? ? ?0 ? ? ?0 127.0.0.1:631 ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1295/cupsd > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:25 ? ? ? ? ? ? ?0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1389/master > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:993 ? ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1033/dovecot > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:995 ? ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1033/dovecot > tcp6 ? ? ? 0 ? ? ?0 ::1:631 ? ? ? ? ? ? ? ? :::* ? ? ? ? ? ? ? ? ? ?LISTEN > ? ? 1295/cupsd > udp ? ? ? ?0 ? ? ?0 127.0.0.1:45902 ? ? ? ? 0.0.0.0:* > ? ? 2068/skype > udp ? ? ? ?0 ? ? ?0 0.0.0.0:33754 ? ? ? ? ? 0.0.0.0:* > ? ? 1065/avahi-daemon: > udp ? ? ? ?0 ? ? ?0 0.0.0.0:5353 ? ? ? ? ? ?0.0.0.0:* > ? ? 1065/avahi-daemon: > udp ? ? ? ?0 ? ? ?0 0.0.0.0:68 ? ? ? ? ? ? ?0.0.0.0:* > ? ? 2132/dhclient > udp ? ? ? ?0 ? ? ?0 0.0.0.0:64277 ? ? ? ? ? 0.0.0.0:* > ? ? 2068/skype > udp6 ? ? ? 0 ? ? ?0 :::5353 ? ? ? ? ? ? ? ? :::* > ? ? 1065/avahi-daemon: > udp6 ? ? ? 0 ? ? ?0 :::50994 ? ? ? ? ? ? ? ?:::* > ? ? 1065/avahi-daemon: > > > > sudo lsof -i | grep LISTEN > > dovecot ? 1033 ? ?root ? ?6u ?IPv4 ? 7578 ? ? ?0t0 ?TCP *:imap2 (LISTEN) > dovecot ? 1033 ? ?root ? ?7u ?IPv4 ? 7579 ? ? ?0t0 ?TCP *:imaps (LISTEN) > dovecot ? 1033 ? ?root ? ?9u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > dovecot ? 1033 ? ?root ? 10u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > cupsd ? ? 1295 ? ?root ? ?5u ?IPv6 ? 7932 ? ? ?0t0 ?TCP Casper:ipp (LISTEN) > cupsd ? ? 1295 ? ?root ? ?6u ?IPv4 ? 7933 ? ? ?0t0 ?TCP > localhost.localdomain:ipp (LISTEN) > master ? ?1389 ? ?root ? 12u ?IPv4 ? 9284 ? ? ?0t0 ?TCP *:smtp (LISTEN) > skype ? ? 2068 ? ?shaz ? 67u ?IPv4 ?18344 ? ? ?0t0 ?TCP *:64277 (LISTEN) > pop3-logi 8356 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8356 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > pop3-logi 8357 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8357 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > pop3-logi 8358 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8358 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > pop3-logi 8359 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8359 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > pop3-logi 8360 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8360 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > imap-logi 8364 dovecot ? ?4u ?IPv4 ? 7578 ? ? ?0t0 ?TCP *:imap2 (LISTEN) > imap-logi 8364 dovecot ? ?5u ?IPv4 ? 7579 ? ? ?0t0 ?TCP *:imaps (LISTEN) > imap-logi 8375 dovecot ? ?4u ?IPv4 ? 7578 ? ? ?0t0 ?TCP *:imap2 (LISTEN) > imap-logi 8375 dovecot ? ?5u ?IPv4 ? 7579 ? ? ?0t0 ?TCP *:imaps (LISTEN) > imap-logi 8378 dovecot ? ?4u ?IPv4 ? 7578 ? ? ?0t0 ?TCP *:imap2 (LISTEN) > imap-logi 8378 dovecot ? ?5u ?IPv4 ? 7579 ? ? ?0t0 ?TCP *:imaps (LISTEN) > > > > telnet 127.0.0.1 110 > > Trying 127.0.0.1... > Connected to 127.0.0.1. > Escape character is '^]'. > +OK Dovecot ready. > > > > telnet 127.0.0.1 143 > > Trying 127.0.0.1... > Connected to 127.0.0.1. > Escape character is '^]'. > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE > STARTTLS AUTH=PLAIN] Dovecot ready. > 1 logout > * BYE Logging out > 1 OK Logout completed. > Connection closed by foreign host. > > > > telnet mail.ut.ee 110 > > Trying 193.40.5.156... > Connected to mailhost.ut.ee. > Escape character is '^]'. > +OK POP3 ready > quit > +OK > Connection closed by foreign host. > > > > telnet mail.ut.ee 143 > > Trying 193.40.5.156... > Connected to mailhost.ut.ee. > Escape character is '^]'. > * OK IMAP4 ready > 1 logout > * BYE > 1 OK completed > Connection closed by foreign host. > > > ----------------- > Commentary: > ----------------- > > As is obvious from the commands and output listed above that dovecot is > running, listening on 110 and 143 - but only for localhost. When I try to > telnet mail.ut.ee 110/143 I get to see IMAP4/POP3 ready rather than > Dovecot ready. > > > > ----------------- > Queries > ----------------- > Shouldn't I get "Dovecot ready" message for remote servers as well? It is > an MRA and we shouldn't be required to install it on remote servers, > right? What should I do to make dovecot work for remote servers? > > > > > -- Kerem Erciyes - Sistem Danismani http://keremerciyes.com From stan at hardwarefreak.com Wed Jun 29 17:32:25 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Wed, 29 Jun 2011 09:32:25 -0500 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot In-Reply-To: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> References: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> Message-ID: <4E0B3779.9060104@hardwarefreak.com> On 6/29/2011 7:19 AM, Shazia Javed wrote: > As is obvious from the commands and output listed above that dovecot is > running, listening on 110 and 143 - but only for localhost. When I try to > telnet mail.ut.ee 110/143 I get to see IMAP4/POP3 ready rather than > Dovecot ready. It seems obvious that mail.ut.ee/193.40.5.156 do not address the Dovecot host in question, but another host. Otherwise you would see "Dovecot ready" across the board. Please show: ~$ ifconfig|grep inet -- Stan From davide.vaghetti at ing.unipi.it Wed Jun 29 18:54:40 2011 From: davide.vaghetti at ing.unipi.it (Davide Vaghetti) Date: Wed, 29 Jun 2011 17:54:40 +0200 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0A0F82.3090909@Media-Brokers.com> References: <4E09FDA0.9070104@ing.unipi.it> <4E0A0F82.3090909@Media-Brokers.com> Message-ID: <4E0B4AC0.8020007@ing.unipi.it> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/28/2011 07:29 PM, Charles Marcus wrote: > On 2011-06-28 12:13 PM, Davide Vaghetti wrote: >> mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox >> >> and I want to switch to >> >> mail_location = >> mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ >> >> But I cannot figure out a pair of things: >> >> - - do the switch trigger the rebuilding of the index files? >> >> - - can I get rid of all the old index files? > > I'm by no means an expert, but with that many users I think if you > did this in one shot (all indexes being rebuilt simultaneously as > users logged in) your system would slow to a crawl... > > I would first rsync the existing indexes over live, then stop > dovecot, do another quick rsync of the indexes, then make the change > and restart dovecot... > > That will minimize the impact (rebuilding of indexes)... > Good hint! Thank you. What about the index grow factor? Do some of you folks have any idea about that (no ftp squat)? bye davide - -- Dott. Davide Vaghetti Centro Servizi Informatici Facolta' di Ingegneria Universita' di Pisa PGP: http://keys.keysigning.org:11371/pks/lookup?op=get&search=0x7A1B3BA18C4E0A4D -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk4LSr0ACgkQehs7oYxOCk2iBwCfbcygrvBaO4JJFAtgTb9fXwZg FPMAoI/yZFborIJH+U3gTx28In602H7k =pHbw -----END PGP SIGNATURE----- From claudio.prono at atpss.net Wed Jun 29 19:02:44 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 29 Jun 2011 18:02:44 +0200 Subject: [Dovecot] Dovecot 2.0, mysql and quota Message-ID: <4E0B4CA4.5050201@atpss.net> Hello all, I have some troubles to make the quota_check working with dovecot 2.0. My config is the following: postfix, dovecot as lda, mysql as virtual mailuser backend, and postfixadmin for the mailuser administration. Previously i have a working setup with dovecot 1.x, now with the 2.0 something is wrong about the quota, but i don't know what... Here is my config: # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.37.6-0.5-desktop x86_64 openSUSE 11.4 (x86_64) ext3 auth_mechanisms = plain login first_valid_gid = 51 first_valid_uid = 51 info_log_path = /var/log/dovecot-inf.log last_valid_gid = 51 last_valid_uid = 51 log_path = /var/log/dovecot-err.log mail_home = /var/mail/virtual/%d/%u/ mail_location = maildir:/var/mail/virtual/%d/%u managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { hidden = no inbox = yes list = yes location = prefix = INBOX. subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } plugin { quota = maildir:User quota quota_warning = storage=80%% /usr/bin/quota_warning.sh 80 quota_warning2 = storage=90%% /usr/bin/quota_warning.sh 90 quota_warning3 = storage=99%% /usr/bin/quota_warning.sh 90 sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } protocols = imap pop3 sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { mode = 0600 } unix_listener auth-userdb { group = nobody mode = 0660 user = postfix } } service imap-login { inet_listener imap { address = 127.0.0.1 port = 143 } } service managesieve-login { executable = /usr/lib/dovecot/managesieve-login } service managesieve { executable = /usr/lib/dovecot/managesieve } service quota-warning { executable = script /usr/bin/quota_warning.sh user = postfix } ssl = no userdb { driver = passwd } userdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } protocol imap { imap_client_workarounds = mail_plugins = quota imap_quota } protocol sieve { managesieve_max_line_length = 65536 plugin { sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } } protocol pop3 { mail_plugins = quota pop3_uidl_format = UID%u-%v } protocol lda { auth_socket_path = /var/run/dovecot/auth-master log_path = /var/log/dovecot-lda.log mail_debug = yes mail_plugins = quota sieve postmaster_address = postmaster at mediaservice.net } My user query for mysql is the following: user_query = SELECT maildir, 51 AS uid, 51 AS gid, CONCAT('*:bytes=', mailbox.quota ) AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1' I have made some test, with a test mailbox, with the quota setted to 1 Mb, in fact the maildirsize file contains: 1024000S When i write a mail, something strange is happening: with the debug mail of dovecot active i see this: Jun 29 17:42:19 lda: Debug: Loading modules from directory: /usr/lib64/dovecot/modules Jun 29 17:42:19 lda: Debug: Module loaded: /usr/lib64/dovecot/modules/lib10_quota_plugin.so Jun 29 17:42:19 lda: Debug: Module loaded: /usr/lib64/dovecot/modules/lib90_sieve_plugin.so Jun 29 17:42:19 auth: Info: mysql(127.0.0.1): Connected to database postfix Jun 29 17:42:19 lda: Debug: auth input: testquota at mediaservice.pri maildir=mediaservice.pri/testquota/ uid=51 gid=51 quota_rule=*:bytes=1024000 Jun 29 17:42:19 lda: Debug: Added userdb setting: plugin/maildir=mediaservice.pri/testquota/ Jun 29 17:42:19 lda: Debug: Added userdb setting: plugin/quota_rule=*:bytes=1024000 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Effective uid=51, gid=51, home=/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri/ Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota root: name=User quota backend=maildir args= Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota rule: root=User quota mailbox=* bytes=1024000 messages=0 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=819200 (80%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 80 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=921600 (90%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 90 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=1013760 (99%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 90 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Namespace : type=private, prefix=INBOX., sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: maildir++: root=/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri, index=, control=, inbox=/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota root: name=User quota backend=maildir args= Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=0 (80%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 80 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=0 (90%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 90 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=0 (99%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 90 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: none: root=, index=, control=, inbox= Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Destination address: testquota at mediaservice.pri (source: user at hostname) Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: sieve: user's script path /var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri/.dovecot.sieve doesn't exist (using global script path in stead) Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: sieve: user has no valid personal script Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: sieve: no scripts to execute: reverting to default delivery. Jun 29 17:42:19 lda(testquota at mediaservice.pri): Info: msgid=<4E0B47DA.9030607 at atpss.net>: saved mail to INBOX First question: why i see two times the quota warning check? Anyway, if the 80% or 90% of the quota is fullfilled, no warning pops out.... I have also checked the query it does to mysql, is the following SELECT maildir, 51 AS uid, 51 AS gid, CONCAT('*:bytes=', mailbox.quota ) AS quota_rule FROM mailbox WHERE username = 'testquota at mediaservice.pri' AND active = '1' And the result, is the following: +-----------------------------+-----+-----+-----------------+ | maildir | uid | gid | quota_rule | +-----------------------------+-----+-----+-----------------+ | mediaservice.pri/testquota/ | 51 | 51 | *:bytes=1024000 | +-----------------------------+-----+-----+-----------------+ Seems right to me...but it is not working.... why? Ah, this is the content of the quota_warning.sh: #!/bin/sh PERCENT=$1 USER=$2 cat << EOF | /usr/local/libexec/dovecot/dovecot-lda -d $USER -o "plugin/quota=maildir:User quota:noenforcing" From: postmaster at mediaservice.pri Subject: quota warning Your mailbox is now $PERCENT% full. EOF Any hint about what is not working? Thanks, Claudio Prono. -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From bill+dovecot at blunn.org Wed Jun 29 19:22:45 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Wed, 29 Jun 2011 17:22:45 +0100 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot In-Reply-To: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> References: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> Message-ID: <4E0B5155.9060901@blunn.org> On 29/06/2011 13:19, Shazia Javed wrote: > --------------------------- > Objective: > --------------------------- > We need to download emails from remote server using Dovecot and thunderbird. Dovecot doesn't download e-mail from other servers. > Our objective is to store emails in maildir or mbox format, and process them as part of our research project. > > --------------------------- > Problem: > --------------------------- > Dovecot works for localhost, but not for remote servers. How do I know? > Because thunderbird downloads emails in its default location (specified in > settings) and not in maildir or mbox folders. If I send mail to > @ using mail command, dovecot works and thunderbird > shows the email stored in maildir folder. But for email from > @yahoo.com goes to thunderbird's default folder and are browsed from > there. It looks like you want to get e-mail from someone else's mail server and store it in maildir or mbox format on your server. You could do this by pulling the mail from someone else's mailserver using Thunderbird, then using Thunderbird to move it across to an account configured to access your server by IMAP. Alternatively you could do it by retrieving the mail using "fetchmail" on your server and have it delivered to an address on your server. This would have the benefit of being more reliable and more scriptable. > ----------------- > Commentary: > ----------------- > > As is obvious from the commands and output listed above that dovecot is > running, listening on 110 and 143 - but only for localhost. When I try to > telnet mail.ut.ee 110/143 I get to see IMAP4/POP3 ready rather than > Dovecot ready. That is the expected behaviour. You installed Dovecot on your server, ergo it is only on your server. Installing Dovecot on your server doesn't magically install and configure it on other people's servers. > ----------------- > Queries > ----------------- > Shouldn't I get "Dovecot ready" message for remote servers as well? No; you only installed it on your server. > It is an MRA and we shouldn't be required to install it on remote servers, right? If, by "MRA", you mean "Mail Retrieval Agent", then no, Dovecot is not an MRA. > What should I do to make dovecot work for remote servers? Dovecot, in and of itself, won't "work for remote servers". You may be able to do what I think you want to do by pulling the mail from the remote server on to your server. You may want to look into "fetchmail". Bill From bill+dovecot at blunn.org Wed Jun 29 19:36:46 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Wed, 29 Jun 2011 17:36:46 +0100 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E09FDA0.9070104@ing.unipi.it> References: <4E09FDA0.9070104@ing.unipi.it> Message-ID: <4E0B549E.40201@blunn.org> On 28/06/2011 17:13, Davide Vaghetti wrote: > I have one thousand virtual users with mdbox mailbox format and 10 GByte quota. I have noticed some performance problem related to I/O (the mailbox disk is a 6TB raid1+0 on ISCSI), so I want to put the index files on a different disk. My actual mail_location is: > > mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox > > and I want to switch to > > mail_location = > mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ > > But I cannot figure out a pair of things: > > - - do the switch trigger the rebuilding of the index files? !!!!! DANGER, DANGER !!!!!! Index files cannot be re-generated under mdbox Go away and read http://wiki2.dovecot.org/MailboxFormat/dbox "... with dbox the Index files actually contain significant data which is held nowhere else. Index files for both *single-dbox* and *multi-dbox* contain message flags and keywords. For *multi-dbox*, the index file also contains the map_uids which link (via the "map index") to the actual message data. This data cannot be automatically recreated, so it is important that Index files are treated with the same care as message data files." If you don't already know this, then you probably shouldn't even be using mdbox. > - - can I get rid of all the old index files? NO! > - - how much the index files (no fts squat) can grow? First solve your understanding problem with mdbox, then worry about details such as this. Bill From bill+dovecot at blunn.org Wed Jun 29 20:00:08 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Wed, 29 Jun 2011 18:00:08 +0100 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0B549E.40201@blunn.org> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> Message-ID: <4E0B5A18.9040500@blunn.org> In fact, under sdbox and mdbox, calling these files "index files" is misleading because it implies that they can be re-created, leading to situations like this. Such situations could result in catastrophic data loss. Whilst we could say it is "user error", users could argue that it is "common knowledge" that files referred to as "index files" can be re-created from the "data files". In reality, these so-called "index files" are actually database files containing critical data. They happen to use the same format as Dovecot uses for index files in connection with mbox and maildir, but they contain data which is held nowhere else and cannot be recreated. Perhaps the per-mailbox index files for sdbox and mdbox should be re-named to "message metadata databases", and the "map index" should be renamed to "message store database". Specifically we should avoid the word "index". By including the word "database", we make it clearer that these files contain data. Timo, what do you reckon? Regards, Bill On 29/06/2011 17:36, William Blunn wrote: > On 28/06/2011 17:13, Davide Vaghetti wrote: >> I have one thousand virtual users with mdbox mailbox format and 10 >> GByte quota. I have noticed some performance problem related to I/O >> (the mailbox disk is a 6TB raid1+0 on ISCSI), so I want to put the >> index files on a different disk. My actual mail_location is: >> >> mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox >> >> and I want to switch to >> >> mail_location = >> mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ >> >> But I cannot figure out a pair of things: >> >> - - do the switch trigger the rebuilding of the index files? > > !!!!! DANGER, DANGER !!!!!! > > Index files cannot be re-generated under mdbox > > Go away and read http://wiki2.dovecot.org/MailboxFormat/dbox > > "... with dbox the Index files actually contain significant data which > is held nowhere else. Index files for both *single-dbox* and > *multi-dbox* contain message flags and keywords. For *multi-dbox*, the > index file also contains the map_uids which link (via the "map index") > to the actual message data. This data cannot be automatically > recreated, so it is important that Index files are treated with the > same care as message data files." > > If you don't already know this, then you probably shouldn't even be > using mdbox. > >> - - can I get rid of all the old index files? > > NO! > >> - - how much the index files (no fts squat) can grow? > > First solve your understanding problem with mdbox, then worry about > details such as this. > > Bill > > From bill+dovecot at blunn.org Wed Jun 29 20:09:48 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Wed, 29 Jun 2011 18:09:48 +0100 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0B5A18.9040500@blunn.org> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> <4E0B5A18.9040500@blunn.org> Message-ID: <4E0B5C5C.7000503@blunn.org> On 29/06/2011 18:00, William Blunn wrote: > Perhaps the per-mailbox index files for sdbox and mdbox should be > re-named to "message metadata databases", and the "map index" should > be renamed to "message store database". Also it might be an idea to change the filenames of the files to avoid the word "index". Perhaps use something like "ddb" instead (means "Dovecot database"). So, ${location}/mailboxes/INBOX/dbox-Mails/dovecot.index ${location}/mailboxes/INBOX/dbox-Mails/dovecot.index.cache ${location}/mailboxes/INBOX/dbox-Mails/dovecot.index.log ${location}/storage/dovecot.map.index becomes ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb.cache ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb.log ${location}/storage/dovecot.map.ddb To allow for migration of existing installations, it might be an idea to make Dovecot look for both "ddb" and "index" when opening, but use "ddb" when creating new files. Regards, Bill From dmiller at amfes.com Wed Jun 29 21:06:26 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Wed, 29 Jun 2011 11:06:26 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <1309298799.5899.5.camel@tardis> References: <4E08CE9D.7010307@amfes.com> <1309223167.9751.34.camel@tardis> <4E09B7A8.6040509@Media-Brokers.com> <1309298799.5899.5.camel@tardis> Message-ID: > I think we all know who the troll is here > Yup. Me! ** .:\:/:. .:\:\:/:/:. :.:\:\:/:/:.: :=.' - - '.=: '=(\ 9 9 /)=' ( (_) ) /`-vvv-'\ / \ / /|,,,,,|\ \ /_// /^\ \\_\ WW( ( ) )WW __\,,\ /,,/__ (______Y______)** -- Daniel From dmiller at amfes.com Wed Jun 29 21:10:36 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Wed, 29 Jun 2011 11:10:36 -0700 Subject: [Dovecot] NFS mail storage Message-ID: The parameters listed for nfs installations (mmap_disable, doctlock_use_excl, mail_nfs_storage, mail_nfs_index) - are they necessary for data integrity, and/or do they compensate for NFS latency and improve performance? My understanding is the indexes are a critical part of a dbox storage, but on the other hand having local indexes is a major performance consideration. Is maildir a "better" choice under NFS than dbox? -- Daniel From ml at smtp.fakessh.eu Thu Jun 30 00:01:21 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Wed, 29 Jun 2011 23:01:21 +0200 Subject: [Dovecot] lda root vs lda postfix Message-ID: <201106292301.28098.ml@smtp.fakessh.eu> hello folks hello Timo I am facing a new problem I'm using dovecot LDA to deliver the emails now root of the system emails are delivered in the box to the letter of the postfix directory /vap/spool/postfix I do not know what to do to redirect mail from root to root -- ?http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 ?gpg --keyserver pgp.mit.edu --recv-key 092164A7 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From mslehto at iki.fi Thu Jun 30 00:31:27 2011 From: mslehto at iki.fi (Mikko Lehto) Date: Thu, 30 Jun 2011 00:31:27 +0300 Subject: [Dovecot] Rawlogging uid Message-ID: <20110629213127.GB9913@kapsi.fi> Hi, this is my first post to the list after years of passive following every now and then. Dovecot: 2.0.13 (3d07ab746a67) prebuilt binaries from xi.rename-it.nl OS: i686 Debian 6.0 squeeze/sid I am about to run a setup where users are virtual and their mail is owned by vmail user. I bumped into minor client issue and needed to enable rawlogging according to http://wiki2.dovecot.org/Debugging/Rawlog This is what was printed to log at first try: Jun 29 21:46:25 (null)Fatal: This process must not be run as root I changed service postlogin to contain "user = vmail" and above error disapperead. I also tried "user = dovecot" which seem to work as well. Is vmail or dovecot user more appropriate for raw logging? >From wiki I got the impression that user must be same as the effective UID of logged in user, which in my setup is vmail(121). Also, maybe the (null)Fatal -message could be improved(?). # dovecot -n # 2.0.13 (3d07ab746a67): /etc/dovecot/dovecot.conf # OS: Linux 2.6.26-1-686 i686 Debian squeeze/sid ext3 auth_debug = yes auth_verbose = yes debug_log_path = /var/log/dovecot/debug.log first_valid_gid = 123 first_valid_uid = 121 info_log_path = /var/log/dovecot/info.log last_valid_gid = 123 last_valid_uid = 121 lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes lmtp_save_to_detail_mailbox = yes log_path = /var/log/dovecot/dovecot.log mail_debug = yes mail_location = maildir:/home/vmail/%n/Maildir managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { inbox = yes location = prefix = separator = / type = private } passdb { driver = pam } plugin { sieve = /home/vmail/%n/dovecot.sieve sieve_dir = /home/vmail/%n/sieve sieve_extensions = +enotify +subaddress +vacation } protocols = " imap lmtp sieve" rejection_reason = Your message to <%t> was rejected: %r rejection_subject = Mail delivery failed: returning message to sender service auth { unix_listener auth-userdb { group = vmail mode = 0660 } } service imap { executable = imap postlogin } service postlogin { executable = script-login rawlog user = vmail } ssl_cert = References: Message-ID: Shazia Javed writes: > Trying 127.0.0.1... > Connected to 127.0.0.1. > Escape character is '^]'. > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE > STARTTLS AUTH=PLAIN] Dovecot ready. > ... > > telnet mail.ut.ee 143 > > Trying 193.40.5.156... > Connected to mailhost.ut.ee. > Escape character is '^]'. > * OK IMAP4 ready That is weird. Maybe you got NAT forwarding going on where a firewall or other network appliance (like a load balancer) is translating ip1/143 -> ip2/143? Or you're not on the host you think you're on. You can check the dovecot logs to verify that in fact your client is connecting. Joseph Tam From CMarcus at Media-Brokers.com Thu Jun 30 02:23:45 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 29 Jun 2011 19:23:45 -0400 Subject: [Dovecot] lda root vs lda postfix In-Reply-To: <201106292301.28098.ml@smtp.fakessh.eu> References: <201106292301.28098.ml@smtp.fakessh.eu> Message-ID: <4E0BB401.9030601@Media-Brokers.com> On 6/29/2011 5:01 PM, ml at smtp.fakessh.eu wrote: > hello folks > hello Timo > > > I am facing a new problem > I'm using dovecot LDA to deliver the emails > now root of the system emails are delivered in the box to the letter of the > postfix > directory /vap/spool/postfix > > I do not know what to do to redirect mail from root to root root should never receive mails directly and should always be aliased to some other address. -- Best regards, Charles From stan at hardwarefreak.com Thu Jun 30 02:40:01 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Wed, 29 Jun 2011 18:40:01 -0500 Subject: [Dovecot] NFS mail storage In-Reply-To: References: Message-ID: <4E0BB7D1.7070100@hardwarefreak.com> On 6/29/2011 1:10 PM, Daniel L. Miller wrote: > The parameters listed for nfs installations (mmap_disable, > doctlock_use_excl, mail_nfs_storage, mail_nfs_index) - are they > necessary for data integrity, and/or do they compensate for NFS latency > and improve performance? > > My understanding is the indexes are a critical part of a dbox storage, > but on the other hand having local indexes is a major performance > consideration. Is maildir a "better" choice under NFS than dbox? Depends a lot on the latency and IOPS performance of the NFS server, the aggregate concurrent IMAP IO load, and also the inbound new mail delivery rate from the upstream MTA. With either mbox or maildir you can put the indexes on fast local disk, SLC SSD being great for this, keeping a lot of random IO off the NFS server. This isn't possible with dbox storage since, as you noted, the index data is integral to the mail files. Corrupted mbox/maildir indexes are easy to fix, simply delete them and they're auto re-created. Since maildir is IOPS heavy and NFS/GFS/OCFS don't seem to like high IOPS workloads that make heavy use of locking, mbox becomes very attractive due to it's very low IOPS demands. If you can live with the folder tree limitations of mbox, along with a higher probably of mailbox file corruption, mbox is likely the best format for NFS/GFS/OCFS. Again, this all depends on the performance of the NFS server. If you have a properly configured NetApp filer you can probably do anything you want without limitation. If your NFS server is a home grown Linux or *BSD box that suffers high latency and/or low IOPS throughput, you're probably a good candidate for mbox and local index files. Test such a configuration with both mbox and maildir using local indexes on fast loca disk or SSD. If you don't run out of IOPS with maildir it's probably preferable to mbox. -- Stan From noel.butler at ausics.net Thu Jun 30 05:03:32 2011 From: noel.butler at ausics.net (Noel Butler) Date: Thu, 30 Jun 2011 12:03:32 +1000 Subject: [Dovecot] NFS mail storage In-Reply-To: <4E0BB7D1.7070100@hardwarefreak.com> References: <4E0BB7D1.7070100@hardwarefreak.com> Message-ID: <1309399412.8978.2.camel@tardis> On Wed, 2011-06-29 at 18:40 -0500, Stan Hoeppner wrote: > Since maildir is IOPS heavy and NFS/GFS/OCFS don't seem to like high > IOPS workloads that make heavy use of locking, mbox becomes very > attractive due to it's very low IOPS demands. If you can live with the > folder tree limitations of mbox, along with a higher probably of mailbox > file corruption, mbox is likely the best format for NFS/GFS/OCFS. > I don't believe I just read that. Timo I will bite my tongue, look at that the sky today is purple -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From tom at elysium.ltd.uk Wed Jun 29 13:45:42 2011 From: tom at elysium.ltd.uk (Tom Clark) Date: Wed, 29 Jun 2011 11:45:42 +0100 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot Message-ID: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> Hi, I'm hoping you'll be able to help. I'm working on a project to migrate our users from a courier-imap (4.3.0) based mail server to a dovecot (2.0.8) mail server. I have got all the users migrated and working. However, I can't see how to migrate the shared folders from courier-imap. I have tried to find extra information all the migration information seems to centre around a user mailbox rather than shared mailboxes. Is it simply a case of setting up the shared folders on dovecot, then copying the messages in, finally running the dovecot migration script across them? Any advice would be greatly appreciated. Thanks, Tom From tss at iki.fi Thu Jun 30 07:09:15 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:09:15 +0300 Subject: [Dovecot] NFS mail storage In-Reply-To: References: Message-ID: <1309406955.10421.998.camel@hurina> On Wed, 2011-06-29 at 11:10 -0700, Daniel L. Miller wrote: > The parameters listed for nfs installations (mmap_disable, > doctlock_use_excl, mail_nfs_storage, mail_nfs_index) - are they > necessary for data integrity, and/or do they compensate for NFS latency > and improve performance? > > My understanding is the indexes are a critical part of a dbox storage, > but on the other hand having local indexes is a major performance > consideration. Is maildir a "better" choice under NFS than dbox? If you have only a single Dovecot server, you don't really need to worry about anything. If you have more, use Dovecot director (with LMTP) and again you don't have to worry about anything. Any other configuration will have random errors regardless of what settings you use. From tss at iki.fi Thu Jun 30 07:12:10 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:12:10 +0300 Subject: [Dovecot] NFS mail storage In-Reply-To: <4E0BB7D1.7070100@hardwarefreak.com> References: <4E0BB7D1.7070100@hardwarefreak.com> Message-ID: <1309407130.10421.1001.camel@hurina> On Wed, 2011-06-29 at 18:40 -0500, Stan Hoeppner wrote: > Since maildir is IOPS heavy and NFS/GFS/OCFS don't seem to like high > IOPS workloads that make heavy use of locking, mbox becomes very > attractive due to it's very low IOPS demands. If you can live with the > folder tree limitations of mbox, along with a higher probably of mailbox > file corruption, mbox is likely the best format for NFS/GFS/OCFS. You shouldn't equate NFS with GFS/OCFS. They have very little in common. The above is more or less true for GFS/OCFS, but definitely not NFS. From tss at iki.fi Thu Jun 30 07:30:10 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:30:10 +0300 Subject: [Dovecot] Rawlogging uid In-Reply-To: <20110629213127.GB9913@kapsi.fi> References: <20110629213127.GB9913@kapsi.fi> Message-ID: <1309408210.10421.1003.camel@hurina> On Thu, 2011-06-30 at 00:31 +0300, Mikko Lehto wrote: > I am about to run a setup where users are virtual and their mail is owned by > vmail user. I bumped into minor client issue and needed to enable rawlogging > according to http://wiki2.dovecot.org/Debugging/Rawlog > > This is what was printed to log at first try: > Jun 29 21:46:25 (null)Fatal: This process must not be run as root > > I changed service postlogin to contain "user = vmail" and above > error disapperead. I also tried "user = dovecot" which seem to work > as well. > > Is vmail or dovecot user more appropriate for raw logging? rawlog looks for ~/dovecot.rawlog/ directory and tries to write there. It doesn't really matter what the user is as long as it can write there. I find it a bit weird if "dovecot" user managed to write there.. You could also have given -d parameter to script-login and it would have figured out the user automatically. > Also, maybe the (null)Fatal -message could be improved(?). Yes, fixed: http://hg.dovecot.org/dovecot-2.0/rev/ed0688858e59 From tss at iki.fi Thu Jun 30 07:35:00 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:35:00 +0300 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0B5C5C.7000503@blunn.org> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> <4E0B5A18.9040500@blunn.org> <4E0B5C5C.7000503@blunn.org> Message-ID: <1309408500.10421.1006.camel@hurina> On Wed, 2011-06-29 at 18:09 +0100, William Blunn wrote: > On 29/06/2011 18:00, William Blunn wrote: > > Perhaps the per-mailbox index files for sdbox and mdbox should be > > re-named to "message metadata databases", and the "map index" should > > be renamed to "message store database". > > Also it might be an idea to change the filenames of the files to avoid > the word "index". > > Perhaps use something like "ddb" instead (means "Dovecot database"). Or simply "db" :) > ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb > ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb.cache > ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb.log > ${location}/storage/dovecot.map.ddb Yes, this would be nice, but.. > To allow for migration of existing installations, it might be an idea to > make Dovecot look for both "ddb" and "index" when opening, but use "ddb" > when creating new files. This makes it annoying. It wastes disk I/O.. BTW. Cyrus also has "cyrus.index" file, which is the only storage for message flags. So Dovecot isn't alone with this. From tss at iki.fi Thu Jun 30 07:49:07 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:49:07 +0300 Subject: [Dovecot] Problem accessing Dovecot mailing lists via IMAP In-Reply-To: <4E09B2F5.800@blunn.org> References: <4E09B2F5.800@blunn.org> Message-ID: <1309409347.10421.1007.camel@hurina> On Tue, 2011-06-28 at 11:54 +0100, William Blunn wrote: > I recently tried to look at the Dovecot mailing lists through an > already-configured IMAP profile, which had worked fine in the past. Yeah, it was broken in two ways. Should be working in a few minutes, hopefully :) From tss at iki.fi Thu Jun 30 07:49:46 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:49:46 +0300 Subject: [Dovecot] ldapsearch dump for passwd file: base64 encoded passwords In-Reply-To: <1309349647.28227.62.camel@pcdenny> References: <1309349647.28227.62.camel@pcdenny> Message-ID: <1309409386.10421.1008.camel@hurina> On Wed, 2011-06-29 at 14:14 +0200, Denny Schierz wrote: > is there a way, to let Dovecot2 uses the base64 encoded passwords from a > ldapsearch output, without decode them first? Plaintext passwords? Add "{plain.base64}" prefix to them. From tss at iki.fi Thu Jun 30 07:56:13 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:56:13 +0300 Subject: [Dovecot] Dovecot 2.0, mysql and quota In-Reply-To: <4E0B4CA4.5050201@atpss.net> References: <4E0B4CA4.5050201@atpss.net> Message-ID: <1309409773.10421.1010.camel@hurina> On Wed, 2011-06-29 at 18:02 +0200, Claudio Prono wrote: > home=/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri/ > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota root: > name=User quota backend=maildir args= > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota rule: > root=User quota mailbox=* bytes=1024000 messages=0 > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: > bytes=819200 (80%) messages=0 reverse=no > command=/usr/bin/quota_warning.sh 80 > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: > bytes=921600 (90%) messages=0 reverse=no > command=/usr/bin/quota_warning.sh 90 > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: > bytes=1013760 (99%) messages=0 reverse=no > command=/usr/bin/quota_warning.sh 90 Looks ok. > First question: why i see two times the quota warning check? The second one is for an "internal storage". You can ignore it. > Anyway, if the 80% or 90% of the quota is fullfilled, no warning pops > out.... Are you sure you tested it correctly? It is executed only when a mail is delivered across the 79% -> 80% quota boundary. I don't see any error in your config. From tss at iki.fi Thu Jun 30 08:08:17 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:08:17 +0300 Subject: [Dovecot] Installing Dovecot v2.0.3 from binary files problem In-Reply-To: References: Message-ID: <1309410497.10421.1012.camel@hurina> On Wed, 2011-06-29 at 11:19 +0430, Meisam Navaki wrote: > dovecot: master: Error: service(config): child 8606 killed with signal 11 > (core dumps disabled) config process crashes for some reason. Can you get a gdb backtrace? You should be able to do it simply by: ulimit -c unlimited dovecot gdb /usr/local/libexec/dovecot/config /var/run/dovecot/core (or wherever your config binary is) If the config binary is stripped, this isn't very useful. Then you'd have to build it yourself. From tss at iki.fi Thu Jun 30 08:11:48 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:11:48 +0300 Subject: [Dovecot] Exim and Dovecot2 SASL: 435 Unable to authenticate at present In-Reply-To: <710846ece1b8d37b0be95dd0e1d67b07@telros.ru> References: <710846ece1b8d37b0be95dd0e1d67b07@telros.ru> Message-ID: <1309410708.10421.1013.camel@hurina> On Tue, 2011-06-28 at 21:38 +0400, Sergey Urushkin wrote: > > 29279 received: COOKIE cf735efce15b21bbb10568c4a762017c > 29279 SMTP>> 435 Unable to authenticate at present I guess Exim gets confused by the COOKIE that is sent to it. It should just ignore it, but it fails. Since this COOKIE is important for Dovecot itself, this can only be fixed on Exim side. From tss at iki.fi Thu Jun 30 08:12:26 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:12:26 +0300 Subject: [Dovecot] mirate to dovecot 2.0.13 In-Reply-To: <4E0A0D0B.5050306@libero.it> References: <4E0A0D0B.5050306@libero.it> Message-ID: <1309410746.10421.1014.camel@hurina> On Tue, 2011-06-28 at 19:19 +0200, Giovanni Mancuso wrote: > Hi, > > I have in my system dovecot 1.2.11 and i want migrate to dovecot 2.0.13. > I have 2 Frontend that proxy all request to Backend and i want migrate > first FE and after the BE. > > Can i install dovecot 2.0.13 in FE that proxy all request to BE with > dovecot 1.2.11? Yes. From tss at iki.fi Thu Jun 30 08:13:16 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:13:16 +0300 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: <67df3a6b5053ce9d8993c7ec56b7a7f2.squirrel@emailmg.dot5hosting.com> References: <1309220895.10421.974.camel@hurina> <67df3a6b5053ce9d8993c7ec56b7a7f2.squirrel@emailmg.dot5hosting.com> Message-ID: <1309410796.10421.1015.camel@hurina> On Tue, 2011-06-28 at 10:08 -0400, imap at tnde.org wrote: > > On Sat, 2011-06-25 at 03:58 -0400, imap at tnde.org wrote: > >> I am running dovecot 2.0.13 on CentOS5, set up with only local system > >> users, and single instance store set up in a single directory. > >> > >> e.g. > >> mail_attachment_dir = /var/mail/attachments > > > > Currently you can't. I was a bit lazy in implementing this code not to > > preserve permissions. The idea would be anyway that you could > > make /var/mail/attachments 02770 and e.g. group=mail. Then set > > mail_access_groups=mail to Dovecot. Now the code should have created new > > directories under that with the same permissions and the files as 0660, > > but looks like it doesn't. The code is in src/lib-fs/fs-posix.c if you > > want to fix it yourself. You could as a workaround simply change all > > 0600 -> 0660 and 0700 -> 0770 and I guess it would work. > > > Ok, if I understand you correctly, I would need to chmod to 660/770, but > it would only work on existing folders, and every new item will be created > as 600/700? Yes, that's why I suggested modifying the source code so new items would be created with correct mode too. > I guess the best way is setting up virtual users, presumably these work > under a single system account? (for the time being this is running on a > test server, using the simplest setup with system users) Yeah, that's the easiest solution. From tss at iki.fi Thu Jun 30 08:15:26 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:15:26 +0300 Subject: [Dovecot] Question about "Storage keeps breaking" in logs In-Reply-To: <20110628110109.75860@gmx.com> References: <20110628110109.75860@gmx.com> Message-ID: <1309410926.10421.1017.camel@hurina> On Tue, 2011-06-28 at 11:01 +0000, Maria Arrea wrote: > Any other idea about this? Maybe this problem is load-related? All I can really say is that: This just shouldn't be happening, ever. If there's a way to reproduce it I would be interested in knowing how. I know there are other mdbox users who haven't had any corruption trouble for a long time.. From tss at iki.fi Thu Jun 30 08:17:04 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:17:04 +0300 Subject: [Dovecot] Denying user won't work as expected In-Reply-To: <4E0995A3.5050500@esiee.fr> References: <4E08365B.7060909@esiee.fr> <1309219897.10421.966.camel@hurina> <4E0995A3.5050500@esiee.fr> Message-ID: <1309411024.10421.1018.camel@hurina> On Tue, 2011-06-28 at 10:49 +0200, Frank Bonnet wrote: > If I do that the denying does not work , I'we written my login in > > /usr/local/etc/dovecot/deny-users and I am still able to log in ( after restarting dovecot of course ) > see attached the dovecot -n output There is no deny passdb in your dovecot -n output. From ml at smtp.fakessh.eu Thu Jun 30 08:34:39 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Thu, 30 Jun 2011 07:34:39 +0200 Subject: [Dovecot] lda root vs lda postfix In-Reply-To: <4E0BB401.9030601@Media-Brokers.com> References: <201106292301.28098.ml@smtp.fakessh.eu> <4E0BB401.9030601@Media-Brokers.com> Message-ID: On Wed, 29 Jun 2011 19:23:45 -0400, Charles Marcus wrote: > On 6/29/2011 5:01 PM, ml at smtp.fakessh.eu wrote: >> hello folks >> hello Timo >> >> >> I am facing a new problem >> I'm using dovecot LDA to deliver the emails >> now root of the system emails are delivered in the box to the letter >> of the >> postfix >> directory /vap/spool/postfix >> >> I do not know what to do to redirect mail from root to root > > root should never receive mails directly and should always be aliased > to > some other address. I solved my problem with a new entry in the file virtual of postfix it 's right -- http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 gpg --keyserver pgp.mit.edu --recv-key 092164A7 From tss at iki.fi Thu Jun 30 08:36:09 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:36:09 +0300 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <0255596D4DD80F4F80FBA92242C83A65B44E26FD4A@GVW1102EXC.americas.hpqcorp.net> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <1309219439.10421.959.camel@hurina> <0255596D4DD80F4F80FBA92242C83A65B44E26FD4A@GVW1102EXC.americas.hpqcorp.net> Message-ID: <1309412169.10421.1020.camel@hurina> Try to apply these patches to both proxy and backend and see what it logs then? http://hg.dovecot.org/dovecot-2.0/raw-rev/1b1fc681a277 http://hg.dovecot.org/dovecot-2.0/raw-rev/36e7ded2ef0b http://hg.dovecot.org/dovecot-2.0/raw-rev/537d4b6d9a7a On Tue, 2011-06-28 at 08:38 +0000, Innocenzi, Cinzia wrote: > Hello Timo, > > so far I've seen this happening when proxying a mail for one recipient; I've never seen this happening for multiple recipients. > > The other thing I've noticed is that if I reload dovecot, the mail usually gets delivered. Once, it remained stuck in the queue, but after a few hours, when I checked postfix's queue again, it got delivered. > > Let me know if you need further information. > > Regards, > > CINZIA INNOCENZI > Technical Consulting > HP Enterprise Services > Telephone +39 06.6542.5758 > Email cinzia.innocenzi at hp.com > Via Achille Campanile, 85 / Rome, Italy 00143 > > > > -----Original Message----- > From: Timo Sirainen [mailto:tss at iki.fi] > Sent: marted? 28 giugno 2011 2.04 > To: Innocenzi, Cinzia > Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta > Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP > > On Wed, 2011-06-22 at 10:31 +0000, Innocenzi, Cinzia wrote: > > Hello, > > > > we have dovecot 2.0.13 installed in our RHEL5 servers. We use dovecot > > as a lmtp proxy on the front end mail relays and dovecot for back end > > lmtp/pop/imap. All our servers have RHEL5.6 64-bit and dovecot 2.0.13 > > installed, and the back end has also an ext3 mbox file-system mounted. > > > > Sometimes we have mails that get stuck on our postfix queue with the > > following error: Remote server not answering (timeout in DATA input) > > (in reply to end of DATA command) > .. > > It doesn't happen for every single mail, it's random. > > My guess is there's a bug somewhere in the LMTP proxy code. It's a bit > annoyingly complex code.. Do you see this happening when proxying only a > single mail (one RCPT TO per DATA, not multiple)? > > And I would guess that when attempting to deliver the same mail again it > works fine (at least in a few tries)? > > From tss at iki.fi Thu Jun 30 08:37:02 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:37:02 +0300 Subject: [Dovecot] LMTP returncode 450? In-Reply-To: <4E098F82.4020208@one.com> References: <4E087DDF.2020703@one.com> <1309219103.10421.955.camel@hurina> <4E098F82.4020208@one.com> Message-ID: <1309412222.10421.1021.camel@hurina> On Tue, 2011-06-28 at 10:23 +0200, Peter Mogensen wrote: > >> I can see that a lookup in the userdb is done, but now matter what I > >> return (1/111) from my checkpassword script I just get: > > > > Set lmtp_proxy=yes and have passdb lookup return proxy=y and > > host=1.2.3.4. > > But how does the LMTP proxy deal with temporary errors? It has no queue > like the SMTP-server ? The temporary error is proxied all the way back to the sending SMTP server, which puts it back to its queue. From tss at iki.fi Thu Jun 30 08:38:49 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:38:49 +0300 Subject: [Dovecot] Dovecot communication with sasl in dovecot source code In-Reply-To: References: Message-ID: <1309412329.10421.1023.camel@hurina> On Tue, 2011-06-28 at 12:07 +0430, Meisam Navaki wrote: > Hi all, > I'm reading dovecot source codes(2.0.13),and I need to know how dovecot > communicate with sasl? For what purpose? Dovecot's login process communicates with auth process via http://wiki2.dovecot.org/Design/AuthProtocol > I traced the source code from cmd_login function,and found out something > about sasl_callback. > but i never found where this function called and also I couldn't understand > how sasl inform the dovecot from authentication result. > I'll be thankful if someone could help me out. The code is a bit tricky jumping all around.. I can help more if you tell me what it is that you actually want to do. From tss at iki.fi Thu Jun 30 08:41:12 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:41:12 +0300 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot In-Reply-To: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> References: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> Message-ID: <1309412472.10421.1025.camel@hurina> On Wed, 2011-06-29 at 11:45 +0100, Tom Clark wrote: > Hi, > > I'm hoping you'll be able to help. I'm working on a project to migrate our > users from a courier-imap (4.3.0) based mail server to a dovecot (2.0.8) > mail server. > > I have got all the users migrated and working. However, I can't see how to > migrate the shared folders from courier-imap. I have tried to find extra > information all the migration information seems to centre around a user > mailbox rather than shared mailboxes. > > Is it simply a case of setting up the shared folders on dovecot, then > copying the messages in, finally running the dovecot migration script across > them? Did you want per-user flags with shared folders? IIRC Courier used some weird symlink directory for that, which won't work with Dovecot. http://wiki2.dovecot.org/SharedMailboxes lists all the ways you can currently do shared folders with Dovecot. From davide.vaghetti at ing.unipi.it Thu Jun 30 10:10:01 2011 From: davide.vaghetti at ing.unipi.it (Davide Vaghetti) Date: Thu, 30 Jun 2011 09:10:01 +0200 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0B549E.40201@blunn.org> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> Message-ID: <4E0C2149.9040801@ing.unipi.it> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/29/2011 06:36 PM, William Blunn wrote: > On 28/06/2011 17:13, Davide Vaghetti wrote: >> I have one thousand virtual users with mdbox mailbox format and 10 >> GByte quota. I have noticed some performance problem related to >> I/O (the mailbox disk is a 6TB raid1+0 on ISCSI), so I want to put >> the index files on a different disk. My actual mail_location is: >> >> mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox >> >> and I want to switch to >> >> mail_location = >> mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ >> >> But I cannot figure out a pair of things: >> >> - - do the switch trigger the rebuilding of the index files? > > !!!!! DANGER, DANGER !!!!!! > > Index files cannot be re-generated under mdbox > > Go away and read http://wiki2.dovecot.org/MailboxFormat/dbox > > "... with dbox the Index files actually contain significant data > which is held nowhere else. Index files for both *single-dbox* and > *multi-dbox* contain message flags and keywords. For *multi-dbox*, > the index file also contains the map_uids which link (via the "map > index") to the actual message data. This data cannot be automatically > recreated, so it is important that Index files are treated with the > same care as message data files." > > If you don't already know this, then you probably shouldn't even be > using mdbox. > >> - - can I get rid of all the old index files? > > NO! > >> - - how much the index files (no fts squat) can grow? > > First solve your understanding problem with mdbox, then worry about > details such as this. > Bill, thanks for all the __important__ info. You almost saved my ass ;-) (BTW, that is why I was asking) I'll check again the documentation to better understand index in the mdbox context. Nontheless, I still have to care about the index files grow factor, so if you, or anyone else, can point me to the right documentation, or have a rule of thumbs to know it, please share it. Regards davide - -- Dott. Davide Vaghetti Centro Servizi Informatici Facolta' di Ingegneria Universita' di Pisa PGP: http://keys.keysigning.org:11371/pks/lookup?op=get&search=0x7A1B3BA18C4E0A4D -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk4MIUYACgkQehs7oYxOCk1pHwCfeomYITfTiyAhMC2oQhM3cFhW Vh8AoPBSRflEWP4sFTpD1vgZKya+0KtV =e7rX -----END PGP SIGNATURE----- From tom at elysium.ltd.uk Thu Jun 30 11:07:00 2011 From: tom at elysium.ltd.uk (Tom Clark) Date: Thu, 30 Jun 2011 09:07:00 +0100 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot In-Reply-To: <1309412472.10421.1025.camel@hurina> References: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> <1309412472.10421.1025.camel@hurina> Message-ID: <000901cc36fc$b0ad07d0$12071770$@ltd.uk> Hi Timo, I think I confused everyone by referring to them as shared folders (I was using the Courier phrasing). I'm setting up Public Folders and then limiting access using ACLs. I can get that far as to creating them, I'm just wondering if there was a specific way to migrate from Courier's "public" folders to Dovecot's public folder system, or is it just a case of dropping the mail in? Am I right in thinking Dovecot doesn't have the "cur" and "new" folders on Public folders? If so, we used qmail-deliver (with the -c flag) to deliver our mail into the public folders, how should I go about delivering the mail into those folders? Thanks, Tom -----Original Message----- From: Timo Sirainen [mailto:tss at iki.fi] Sent: 30 June 2011 6:41 AM To: Tom Clark Cc: dovecot at dovecot.org Subject: Re: [Dovecot] Migrating shared folders from courier-imap to dovecot On Wed, 2011-06-29 at 11:45 +0100, Tom Clark wrote: > Hi, > > I'm hoping you'll be able to help. I'm working on a project to migrate our > users from a courier-imap (4.3.0) based mail server to a dovecot (2.0.8) > mail server. > > I have got all the users migrated and working. However, I can't see how to > migrate the shared folders from courier-imap. I have tried to find extra > information all the migration information seems to centre around a user > mailbox rather than shared mailboxes. > > Is it simply a case of setting up the shared folders on dovecot, then > copying the messages in, finally running the dovecot migration script across > them? Did you want per-user flags with shared folders? IIRC Courier used some weird symlink directory for that, which won't work with Dovecot. http://wiki2.dovecot.org/SharedMailboxes lists all the ways you can currently do shared folders with Dovecot. From tss at iki.fi Thu Jun 30 11:08:37 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 11:08:37 +0300 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot In-Reply-To: <000901cc36fc$b0ad07d0$12071770$@ltd.uk> References: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> <1309412472.10421.1025.camel@hurina> <000901cc36fc$b0ad07d0$12071770$@ltd.uk> Message-ID: <60C85D10-FDE6-4867-8513-10FDED0DAFDC@iki.fi> On 30.6.2011, at 11.07, Tom Clark wrote: > I think I confused everyone by referring to them as shared folders (I was > using the Courier phrasing). > > I'm setting up Public Folders and then limiting access using ACLs. I can get > that far as to creating them, I'm just wondering if there was a specific way > to migrate from Courier's "public" folders to Dovecot's public folder > system, or is it just a case of dropping the mail in? They're regular maildirs, just use the migration script to them normally. > Am I right in thinking Dovecot doesn't have the "cur" and "new" folders on > Public folders? No. They're normal maildirs with cur/ and new/ directories. From tom at elysium.ltd.uk Thu Jun 30 11:16:52 2011 From: tom at elysium.ltd.uk (Tom Clark) Date: Thu, 30 Jun 2011 09:16:52 +0100 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot In-Reply-To: <60C85D10-FDE6-4867-8513-10FDED0DAFDC@iki.fi> References: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> <1309412472.10421.1025.camel@hurina> <000901cc36fc$b0ad07d0$12071770$@ltd.uk> <60C85D10-FDE6-4867-8513-10FDED0DAFDC@iki.fi> Message-ID: <003401cc36fe$113faac0$33bf0040$@ltd.uk> Ok great. Thanks for your help Timo. Tom -----Original Message----- From: Timo Sirainen [mailto:tss at iki.fi] Sent: 30 June 2011 9:09 AM To: Tom Clark Cc: dovecot at dovecot.org Subject: Re: [Dovecot] Migrating shared folders from courier-imap to dovecot On 30.6.2011, at 11.07, Tom Clark wrote: > I think I confused everyone by referring to them as shared folders (I was > using the Courier phrasing). > > I'm setting up Public Folders and then limiting access using ACLs. I can get > that far as to creating them, I'm just wondering if there was a specific way > to migrate from Courier's "public" folders to Dovecot's public folder > system, or is it just a case of dropping the mail in? They're regular maildirs, just use the migration script to them normally. > Am I right in thinking Dovecot doesn't have the "cur" and "new" folders on > Public folders? No. They're normal maildirs with cur/ and new/ directories. From claudio.prono at atpss.net Thu Jun 30 11:51:35 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Thu, 30 Jun 2011 10:51:35 +0200 Subject: [Dovecot] Dovecot 2.0, mysql and quota In-Reply-To: <1309409773.10421.1010.camel@hurina> References: <4E0B4CA4.5050201@atpss.net> <1309409773.10421.1010.camel@hurina> Message-ID: <4E0C3917.5010702@atpss.net> Il 30/06/2011 6.56, Timo Sirainen ha scritto: > On Wed, 2011-06-29 at 18:02 +0200, Claudio Prono wrote: > Are you sure you tested it correctly? It is executed only when a mail is > delivered across the 79% -> 80% quota boundary. > > I don't see any error in your config. > Ok, fixing some things, the script is going to be executed: Jun 30 10:44:07 lda(testquota at mediaservice.pri): Debug: quota: Executing warning: quota-warning 80 testquota at mediaservice.pri But, i have an error anyway. After is executed, i found an error on dovecot-err.log: Jun 30 10:44:07 quota-warning: Error: /usr/bin/quota_warning.sh: line 4: /usr/lib/dovecot/dovecot-lda: Permission denied Jun 30 10:44:07 quota-warning: Error: cat: write error: Broken pipe Jun 30 10:44:07 master: Error: service(quota-warning): child 5627 returned error 126 That are the permissions of /usr/lib/dovecot-lda: -rwsr-s--- 1 root nobody 23560 May 25 13:13 /usr/lib/dovecot/dovecot-lda I report another time my dovecot -n, because i have made some changes.. dovecot -n # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.37.6-0.5-desktop x86_64 openSUSE 11.4 (x86_64) ext3 auth_mechanisms = plain login first_valid_gid = 51 first_valid_uid = 51 info_log_path = /var/log/dovecot-inf.log last_valid_gid = 51 last_valid_uid = 51 log_path = /var/log/dovecot-err.log mail_home = /var/mail/virtual/%d/%u/ mail_location = maildir:/var/mail/virtual/%d/%u managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { hidden = no inbox = yes list = yes location = prefix = INBOX. subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } plugin { quota = maildir:User quota quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u quota_warning3 = storage=70%% quota-warning 99 %u sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } protocols = imap pop3 sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { mode = 0600 } unix_listener auth-userdb { group = nobody mode = 0660 user = postfix } } service imap-login { inet_listener imap { address = 127.0.0.1 port = 143 } } service managesieve-login { executable = /usr/lib/dovecot/managesieve-login } service managesieve { executable = /usr/lib/dovecot/managesieve } service quota-warning { executable = script /usr/bin/quota_warning.sh unix_listener quota-warning { group = postfix mode = 0660 user = postfix } user = postfix } ssl = no userdb { driver = passwd } userdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } protocol imap { imap_client_workarounds = mail_plugins = quota imap_quota } protocol sieve { managesieve_max_line_length = 65536 plugin { sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } } protocol pop3 { mail_plugins = quota pop3_uidl_format = UID%u-%v } protocol lda { auth_socket_path = /var/run/dovecot/auth-master log_path = /var/log/dovecot-lda.log mail_debug = yes mail_plugins = quota sieve postmaster_address = postmaster at mediaservice.net } Where is the problem? Cordially, Claudio Prono -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From uklaus at hgb-leipzig.de Thu Jun 30 13:53:51 2011 From: uklaus at hgb-leipzig.de (Uwe Klaus) Date: Thu, 30 Jun 2011 12:53:51 +0200 (CEST) Subject: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' Message-ID: I have two accounts where the inboxes sometimes get corrupted. In that case they begin with "FFrom". I saw similar reports in July/August last year. So I applied the patch http://dovecot.org/pipermail/dovecot/attachments/20100720/e87b32ae/attachment-0001.bin Yesterday a mbox corruption happened again. Here are the log lines. Jun 29 18:08:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:08:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/76, size=32800751 Jun 29 18:09:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:09:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/76, size=32800751 Jun 29 18:09:48 mail dovecot: deliver(xxxxxx): sieve: msgid=: stored mail into mailbox 'INBOX' Jun 29 18:09:48 mail sm-mta[27493]: p5TFl24L014636: to=xxxxxx, delay=00:22:46, xdelay=00:00:00, mailer=local, pri=17899944, dsn=2.0.0, stat=Sent Jun 29 18:10:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:10:13 mail dovecot: POP3(xxxxxx): mbox got corrupted, state=1 Jun 29 18:10:13 mail dovecot: POP3(xxxxxx): mbox got corrupted, state=2 Jun 29 18:10:13 mail dovecot: POP3(xxxxxx): mbox got corrupted, state=4 Jun 29 18:10:13 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=1/2066, del=6/77, size=32802800 Jun 29 18:11:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:11:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/71, size=32777356 Jun 29 18:12:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:12:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/71, size=32777356 Jun 29 18:19:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:19:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/71, size=32777356 Jun 29 18:19:56 mail dovecot: deliver(xxxxxx): mbox got corrupted, state=0 Jun 29 18:19:56 mail dovecot: deliver(xxxxxx): sieve: msgid=<20110629175547.33981yt5jzia7f9f at mail.hgb-leipzig.de>: failed to store into mailbox 'INBOX': Mailbox isn't a valid mbox file Jun 29 18:19:56 mail dovecot: deliver(xxxxxx): sieve: script /home/xxxxxx/.dovecot.sieve failed with unsuccessful implicit keep Jun 29 18:19:57 mail sm-mta[12213]: p5TFvI0W029582: to=xxxxxx, delay=00:22:39, xdelay=00:00:01, mailer=local, pri=17900128, dsn=2.0.0, stat=Sent Jun 29 18:20:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:20:12 mail dovecot: POP3(xxxxxx): mbox got corrupted, state=0 Jun 29 18:20:12 mail dovecot: POP3(xxxxxx): Couldn't init INBOX: Mailbox isn't a valid mbox file Jun 29 18:20:12 mail dovecot: POP3(xxxxxx): Mailbox init failed top=0/0, retr=0/0, del=0/0, size=0 After removing the first "F": Jun 29 19:06:11 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=77.5.xxx.xxx, lip=194.94.211.50, TLS Jun 29 19:06:13 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=2/4502, del=0/73, size=32781824 # dovecot --version 1.2.17 # dovecot -n # 1.2.17: /usr/pkg/etc/dovecot.conf Warning: fd limit 128 is lower than what Dovecot can use under full load (more than 768). Either grow the limit or change login_max_processes_count and max_mail_processes settings # OS: NetBSD 5.1_STABLE amd64 protocols: imap imaps pop3 pop3s ssl_key_file: /etc/openssl/certs/dovecot.pem disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/pkg/libexec/dovecot/imap-login login_executable(imap): /usr/pkg/libexec/dovecot/imap-login login_executable(pop3): /usr/pkg/libexec/dovecot/pop3-login first_valid_uid: 400 last_valid_uid: 10000 mail_location: mbox:~/mail:INBOX=/var/mail/%u:INDEX=/var/indexes/%u mail_executable(default): /usr/pkg/libexec/dovecot/imap mail_executable(imap): /usr/pkg/libexec/dovecot/imap mail_executable(pop3): /usr/pkg/libexec/dovecot/pop3 mail_plugin_dir(default): /usr/pkg/lib/dovecot/imap mail_plugin_dir(imap): /usr/pkg/lib/dovecot/imap mail_plugin_dir(pop3): /usr/pkg/lib/dovecot/pop3 pop3_uidl_format(default): %08Xu%08Xv pop3_uidl_format(imap): %08Xu%08Xv pop3_uidl_format(pop3): %08Xv%08Xu lda: postmaster_address: postmaster at hgb-leipzig.de mail_plugins: sieve auth default: username_format: %Lu verbose: yes passdb: driver: passwd userdb: driver: passwd plugin: sieve: ~/.dovecot.sieve sieve_global_path: /var/lib/dovecot/sieve/default.sieve sieve_dir: ~/sieve sieve_global_dir: /var/lib/dovecot/sieve/global/ Regards, Uwe From bill+dovecot at blunn.org Thu Jun 30 14:00:09 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 12:00:09 +0100 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <1309408500.10421.1006.camel@hurina> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> <4E0B5A18.9040500@blunn.org> <4E0B5C5C.7000503@blunn.org> <1309408500.10421.1006.camel@hurina> Message-ID: <4E0C5739.2010503@blunn.org> I concede that this is most likely a WIBNI (Wouldn't It Be Nice If...) and most likely will end up on the list of WIBNIs, never to be implemented. But I would like to take the brainstorm forward another step, just to see. On 30/06/2011 05:35, Timo Sirainen wrote: >> To allow for migration of existing installations, it might be an idea to >> make Dovecot look for both "ddb" and "index" when opening, but use >> "ddb" when creating new files. > > This makes it annoying. It wastes disk I/O.. OK fair enough. (Though not actually *disk* I/O /per se/. It is not like we would create any further sync-to-disk requirement (i.e. requiring to wait for another revolution), but rather that it would require more system calls.) Presumably it's important that it works correctly for existing users with minimal risk of problems if people take the path of least resistance (and people don't read the release notes). I imagine many people will not be bothered about some extra failed "open" calls. But we should still have a way to tune for optimal I/O usage so that systems which are "up against it" for performance can be tuned. OK, how about this: A configuration directive like this: filename_word_ddb = ddb index This specifies a list of words which will be tried in the place where we mean to say "ddb" in a filename. If the directive is not present, then the default value would be as per the example above. This should allow existing installations to work correctly using old configuration files. If a new file needs to be created, then it will use the first entry in the list. So new installs will use "ddb" for all such files, and will be optimal where the file exists already, but mildly sub-optimal where the file doesn't exist (because Dovecot would have to try opening each possible variation before being able to know that the file was not openable). In order to tune for I/O, the administrator can reconfigure the list to be just "ddb". Old installs will have existing files with "index" with new files being created with "ddb". This will work correctly, but with some degree of sub-optimality. In order to tune for I/O, the administrator would need to: 1. Configure filename_word_ddb to "ddb index ddb" (to mitigate the race condition where a file is renamed after "ddb" is tried but before "index" is tried) 2. Re-name existing files (from "...index..." to "...ddb...") 3. Check that no files with old names exist 4. Change the list to "ddb" This means that things should work correctly by default, and only get messed-up when people actively go and try to optimise things without paying attention to what they're doing. > BTW. Cyrus also has "cyrus.index" file, which is the only storage for > message flags. So Dovecot isn't alone with this. Though two is still a small sample compared to the weight of existing terminology usage. Besides, Cyrus is somewhat "in-bred", and we would expect it to be quirky :-) Bill From bill+dovecot at blunn.org Thu Jun 30 14:26:37 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 12:26:37 +0100 Subject: [Dovecot] Problem accessing Dovecot mailing lists via IMAP In-Reply-To: <1309409347.10421.1007.camel@hurina> References: <4E09B2F5.800@blunn.org> <1309409347.10421.1007.camel@hurina> Message-ID: <4E0C5D6D.7070008@blunn.org> On 30/06/2011 05:49, Timo Sirainen wrote: > On Tue, 2011-06-28 at 11:54 +0100, William Blunn wrote: >> I recently tried to look at the Dovecot mailing lists through an already-configured IMAP profile, which had worked fine in the past. > Yeah, it was broken in two ways. Should be working in a few minutes, hopefully :) Marvellous, thank-you. I couldn't get the old profile to work. I raised a new profile, but couldn't get it to work using an empty password. I tried using a password of "anonymous", and Thunderbird is now "Downloading message header 24888 of 59255" Thanks again. Regards, Bill From udo.lembke at albertbauer.com Thu Jun 30 13:01:52 2011 From: udo.lembke at albertbauer.com (Udo Lembke) Date: Thu, 30 Jun 2011 12:01:52 +0200 Subject: [Dovecot] Problems with acl and shared namespace Message-ID: <4E0C4990.3070602@albertbauer.com> Hi, i'm a dovecot-newbie and also new at this mailinglist. I'm try to configure an mailserver with dovecot2, postfix and postfixadmin. At this time i struggle with acl and shared namespace. My goal is, that every user get an archive-area on an separate storage without quota (quota isn't running yet). With: namespace { type = private separator = / prefix = "archiv/%u/" location = maildir:/var/data/archiv/%d/%n:INDEX=/var/data/indexes/archiv/%u:LAYOUT=fs inbox = no subscriptions = yes list = yes } I see the folder, but i can't subscribe them (with thunderbird, or roundcube). With roundcube i can add a new folder below - so i use the trick autocreate5 = archiv/%u/archiv autosubscribe5 = archiv/%u/archiv This is as workaround ok - or is this a "must be"?. But the user should also be able to share parts of the archiv-mailbox with other users (partly on different domains). If i change the type of namespace to shared, i can't access the archiv-folder. The logfile shows problems with the acl (but also with private namespace): Jun 30 11:15:11 imap(test at example.com): Debug: Namespace : type=shared, prefix=archiv/test at example.com/, sep=/, inbox=no, hidden=no, list=yes, subscriptions=yes location=maildir:/var/data/archiv/example.com/test:INDEX=/var/data/indexes/archiv/test at example.com:LAYOUT=fs Jun 30 11:15:11 imap(test at example.com): Debug: fs: root=/var/data/archiv/example.com/test, index=/var/data/indexes/archiv/test at example.com, control=, inbox= Jun 30 11:15:11 imap(test at example.com): Debug: acl: initializing backend with data: vfile Jun 30 11:15:11 imap(test at example.com): Debug: acl: acl username = test at example.com Jun 30 11:15:11 imap(test at example.com): Debug: acl: owner = 0 Jun 30 11:15:11 imap(test at example.com): Debug: acl vfile: Global ACL directory: (none) Jun 30 11:15:11 imap(test at example.com): Debug: Namespace : Using permissions from /var/data/mail/example.com/test: mode=0700 gid=-1 Jun 30 11:15:11 imap(test at example.com): Debug: acl vfile: file /var/data/archiv/example.com/test/dovecot-acl not found Jun 30 11:15:11 imap(test at example.com): Debug: autocreate: Failed to create mailbox archiv: Permission denied Jun 30 11:15:11 imap(test at example.com): Debug: Namespace archiv/test at example.com/: Using permissions from /var/data/archiv/example.com/test: mode=0700 gid=-1 Jun 30 11:15:11 imap(test at example.com): Debug: acl vfile: file /var/data/mail/example.com/test/dovecot-acl not found I'm wondering about "...dovecot-acl not found" because dovecot create an file "dovecot-acl-list" : # ls -l /var/data/archiv/example.com/test/ drwx------ 5 dovecot dovecot 4096 30. Jun 10:30 archiv -rw------- 1 dovecot dovecot 0 30. Jun 10:30 dovecot-acl-list Must the acl first initialized? My first try fails also: doveadm acl set -u test at example.com archiv/test at example.com/archiv test at example.com lrw doveadm(test at example.com): Fatal: Invalid ID: test at example.com Not clear for me, what kind of id doveadm needs... I use 2.0.13 for testing. I put my config at the end of the mail. I'm happy if someone can hit me in the right direction, where i make the mistake. Best regards Udo # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.39-2.slh.1-aptosid-amd64 x86_64 Debian wheezy/sid auth_debug = yes auth_socket_path = /var/run/dovecot/auth-userdb auth_verbose = yes auth_verbose_passwords = plain first_valid_gid = 119 first_valid_uid = 110 info_log_path = /var/log/dovecot.log last_valid_uid = 119 lda_mailbox_autocreate = yes mail_debug = yes mail_gid = 119 mail_plugins = acl autocreate quota mail_uid = 110 mbox_very_dirty_syncs = yes namespace { inbox = yes list = yes location = maildir:/var/data/mail/%d/%n:INDEX=/var/data/indexes/mail/%u:LAYOUT=fs prefix = separator = / subscriptions = yes type = private } namespace { inbox = no list = yes location = maildir:/var/data/archiv/%d/%n:INDEX=/var/data/indexes/archiv/%u:LAYOUT=fs prefix = archiv/%u/ separator = / subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { acl = vfile acl_shared_dict = file:/var/data/dovecot/shared-mailboxes autocreate = Trash autocreate2 = Spam autocreate3 = Drafts autocreate4 = Sent autocreate5 = archiv/%u/archiv autosubscribe = Trash autosubscribe2 = Spam autosubscribe3 = Drafts autosubscribe4 = Sent autosubscribe5 = archiv/%u/archiv quota = dict:User quota::proxy::quota quota_rule2 = Trash:storage=+55M sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = " imap lmtp pop3" service auth { unix_listener /var/spool/postfix/private/auth { group = postdrop mode = 0660 user = postfix } unix_listener auth-userdb { group = dovecot mode = 0660 user = dovecot } } service dict { unix_listener dict { group = dovecot mode = 0660 user = dovecot } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } ssl_cert = Hello everybody, We are updating our old dovecot 1.1 servers to 2.0. We have a farm os servers, with users in nfs filesystems and indexes in local fs. Mail is stored in maildir format. We don't warrant that a user is always directed to the same server, although our load balancer sends all request from one IP to the same server (during a session time with a inactivity timeout). This is the second scenario described at http://wiki2.dovecot.org/NFS. We are now trying to migrate to the third scenario and using mdbox. As an intermediate step, we have configured this second scenario, but with indexes in NFS filesystems. The configuration is: * mmap_disable = yes * dotlock_use_excl = no * mail_nfs_storage = yes * mail_nfs_index = yes * lock_method = fcntl (we have also tried with dotlock) This configuration works without any problems with few users, but with high load, we have a lot of lock timeouts error like: Jun 29 10:24:04 myotis34 dovecot: imap(mpm): Error: Timeout (180s) while waiting for lock for transaction log file /home/pas/01/014601/maildir_indexes/.INBOX/dovecot.index.log These errors cause a corrupted index and we have to manually delete the user's index so he could read his mail again. So we are planning to configure the third scenario. In this configuration, we don't have any problem during our tests if we use maildir format. But if we use mdbox one, we have problems when we have to change the final server for the server (We allways send the user to the same final server, but sometimes, if the server is down, for example, this is not possible). The tests we have done (with POP) are: * I connect to "my" server. There's no problem. I have my mail. I delete a mail. * I connect then to a server that have no index for me. The only problem is that the previously deleted mail appears again. * I connect then to a server with an outdated index: this is the problem. I have only the messages in that outdated index. The mail received since then has disappeared (although I could receive new mail). How could I solve this problem? Is this really a problem? Should I use a shared storage for indexes? What is the best configuration for a high availability service? -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci?n _o) y las Comunicaciones Aplicadas (ATICA) / \\ http://www.um.es/atica _(___V Tfo: 868887590 Fax: 868888337 From stan at hardwarefreak.com Thu Jun 30 15:36:24 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Thu, 30 Jun 2011 07:36:24 -0500 Subject: [Dovecot] NFS mail storage In-Reply-To: <1309407130.10421.1001.camel@hurina> References: <4E0BB7D1.7070100@hardwarefreak.com> <1309407130.10421.1001.camel@hurina> Message-ID: <4E0C6DC8.7080300@hardwarefreak.com> On 6/29/2011 11:12 PM, Timo Sirainen wrote: > On Wed, 2011-06-29 at 18:40 -0500, Stan Hoeppner wrote: > >> Since maildir is IOPS heavy and NFS/GFS/OCFS don't seem to like high >> IOPS workloads that make heavy use of locking, mbox becomes very >> attractive due to it's very low IOPS demands. If you can live with the >> folder tree limitations of mbox, along with a higher probably of mailbox >> file corruption, mbox is likely the best format for NFS/GFS/OCFS. > > You shouldn't equate NFS with GFS/OCFS. They have very little in common. > The above is more or less true for GFS/OCFS, but definitely not NFS. I was under the impression that some NFS server implementations don't have stellar maildir performance with Dovecot clusters due to the NFS caching problem, and locking, which is why I made the distinction between something like a NetApp and a DIY NFS server. Is this not true? Or is this NFS version dependent? Or is my recollection simply faulty? -- Stan From bill+dovecot at blunn.org Thu Jun 30 16:36:21 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 14:36:21 +0100 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot In-Reply-To: <722016c5563247c99bac1e3956fe6206.squirrel@mailhost.ut.ee> References: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> <4E0B5155.9060901@blunn.org> <722016c5563247c99bac1e3956fe6206.squirrel@mailhost.ut.ee> Message-ID: <4E0C7BD5.5030609@blunn.org> On 30/06/2011 14:08, Shazia Javed wrote: > Thank you for the reply. Now I have relatively better understanding of Dovecot and email service components (MUA, MTA, MRA, etc). However, I am still struggling with the relevant conceptual understanding, and need your help: > > I have installed 'getmail' as I read that it offers ease-of-use and is relatively more secure. So far I have managed to download emails from Inbox and Sent folder. All the downloaded emails go to single folder 'new' from 'Maildir' directory. Please tell me if there is a way (configuration) to download emails in respective folders. "getmail" appears to support delivery to an arbitrary Maildir folder. See "getmail" documentation. You might want to read up about Maildir to see how it works. In particular you need to know that mail is delivered to a directory "new" (the delivery process involves the directory "tmp", but the message isn't considered delivered until it reaches the directory "new"), but gets moved to a folder "cur" when the Maildir is looked at. So mail could be in either directory "new" or "cur". (The design of Maildir attempts to address various problems, and only partially succeeds, and in other cases makes things worse than they would have been otherwise. But despite its flaws, it still has some strengths, such as reliability, (relative) simplicity, wide support, and the ease by which a message store can be queried/interrogated.) > Also, is there any need for Dovecot now? As I see it, I have managed to download emails from remote servers in maildir format using getmail. How and why would Dovecot fit in? Will Dovecot (via deliver and sieve) assist in segregated email storage (i.e. INBOX in 'new', DRAFTS in '.draft/new' etc). It might be handy to have Dovecot installed as it would mean you could "see into" the mail folders using an IMAP client such as Thunderbird. This will probably make it easier to get a handle on which messages are in which folders than trying to look in the Maildir directories directly. IMAP has a special folder called "INBOX" which appears as the Inbox in most IMAP clients. Under Maildir, in the default location, INBOX can be found at ~/Maildir/{new,cur,tmp} Other folders are mapped into directories, for example the mail folder "Sent" will appear at ~/Maildir/.Sent/{new,cur,tmp} Nested mail folders are flattened into a single directory level in the filesystem, with the folder levels separated by dots, so the mail folder "Projects/PJ1" will appear at ~/Maildir/.Projects.PJ1/{new,cur,tmp} (The above is the default way for Maildir to work. However, Dovecot can be configured to map IMAP folders into Maildir directories in other ways.) Bill From bill at blunn.org Thu Jun 30 16:53:11 2011 From: bill at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 14:53:11 +0100 Subject: [Dovecot] dovecot, mdbox and indexes In-Reply-To: <4E0C6BF4.4050203@um.es> References: <4E0C6BF4.4050203@um.es> Message-ID: <4E0C7FC7.8030205@blunn.org> On 30/06/2011 13:28, Angel L. Mateo wrote: > We are now trying to migrate to the third scenario and using mdbox. > > These errors cause a corrupted index and we have to manually > delete the user's index so he could read his mail again. > > * I connect then to a server that have no index for me. The only > problem is that the previously deleted mail appears again. > * I connect then to a server with an outdated index: this is the > problem. I have only the messages in that outdated index. The mail > received since then has disappeared (although I could receive new mail). > > How could I solve this problem? Is this really a problem? Should I > use a shared storage for indexes? What is the best configuration for a > high availability service? > !!!!! DANGER, DANGER !!!!!! Under mdbox, the so-called "indexes" are not indexes in the traditional (database) sense of the word (a file maintained alongside the main data file which is used to speed up access to the main file, and can be regenerated at will), but rather are (binary) database files which contain crucial metadata which is not held anywhere else. These filed cannot be regenerated at will. For example: The so-called "map index" (message store database) contains a (flat) list of all messages in a (user's) mailstore together with their reference counts, which storage file they're stored in. The "folder index" (folder message metadata database) in each folder directory contains a list of the message numbers which are "in" that folder. Those message numbers identify a particular message in the message store database, which identify a particular m.* storage file, and where within that file the message is. Lose these files, and you destroy the information about: * which message is supposed to be in which folder, * which messages are supposed to be deleted and which aren't, and * all message keywords. Under mdbox, losing these files buggerises the mailstore. You may wish to read http://wiki2.dovecot.org/MailboxFormat/dbox "... with dbox the Index files actually contain significant data which is held nowhere else. Index files for both *single-dbox* and *multi-dbox* contain message flags and keywords. For *multi-dbox*, the index file also contains the map_uids which link (via the "map index") to the actual message data. This data cannot be automatically recreated, so it is important that Index files are treated with the same care as message data files." Regards, Bill From bill+dovecot at blunn.org Thu Jun 30 17:03:49 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 15:03:49 +0100 Subject: [Dovecot] NFS mail storage In-Reply-To: <4E0BB7D1.7070100@hardwarefreak.com> References: <4E0BB7D1.7070100@hardwarefreak.com> Message-ID: <4E0C8245.2020002@blunn.org> On 30/06/2011 00:40, Stan Hoeppner wrote: > If you can live with the folder tree limitations of mbox Did you mean with or without considering http://wiki2.dovecot.org/MboxChildFolders ? Bill From amateo at um.es Thu Jun 30 17:49:45 2011 From: amateo at um.es (Angel L. Mateo) Date: Thu, 30 Jun 2011 16:49:45 +0200 Subject: [Dovecot] dovecot, mdbox and indexes In-Reply-To: <4E0C7FC7.8030205@blunn.org> References: <4E0C6BF4.4050203@um.es> <4E0C7FC7.8030205@blunn.org> Message-ID: <4E0C8D09.6090005@um.es> El 30/06/11 15:53, William Blunn escribi?: > On 30/06/2011 13:28, Angel L. Mateo wrote: >> We are now trying to migrate to the third scenario and using mdbox. >> >> These errors cause a corrupted index and we have to manually delete >> the user's index so he could read his mail again. >> >> * I connect then to a server that have no index for me. The only >> problem is that the previously deleted mail appears again. >> * I connect then to a server with an outdated index: this is the >> problem. I have only the messages in that outdated index. The mail >> received since then has disappeared (although I could receive new mail). >> >> How could I solve this problem? Is this really a problem? Should I use >> a shared storage for indexes? What is the best configuration for a >> high availability service? >> > > !!!!! DANGER, DANGER !!!!!! > > Under mdbox, the so-called "indexes" are not indexes in the traditional > (database) sense of the word (a file maintained alongside the main data > file which is used to speed up access to the main file, and can be > regenerated at will), but rather are (binary) database files which > contain crucial metadata which is not held anywhere else. > > These filed cannot be regenerated at will. > > For example: > > The so-called "map index" (message store database) contains a (flat) > list of all messages in a (user's) mailstore together with their > reference counts, which storage file they're stored in. > > The "folder index" (folder message metadata database) in each folder > directory contains a list of the message numbers which are "in" that > folder. Those message numbers identify a particular message in the > message store database, which identify a particular m.* storage file, > and where within that file the message is. > > Lose these files, and you destroy the information about: > * which message is supposed to be in which folder, > * which messages are supposed to be deleted and which aren't, and > * all message keywords. > > Under mdbox, losing these files buggerises the mailstore. > > You may wish to read http://wiki2.dovecot.org/MailboxFormat/dbox > > "... with dbox the Index files actually contain significant data which > is held nowhere else. Index files for both *single-dbox* and > *multi-dbox* contain message flags and keywords. For *multi-dbox*, the > index file also contains the map_uids which link (via the "map index") > to the actual message data. This data cannot be automatically recreated, > so it is important that Index files are treated with the same care as > message data files." > I know this. That was my question. So, what is the best configuration for a high availabilty environment. An active/passive cluster? From f.bonnet at esiee.fr Thu Jun 30 18:03:52 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Thu, 30 Jun 2011 17:03:52 +0200 Subject: [Dovecot] share an IMAP folder ? Message-ID: <4E0C9058.3000900@esiee.fr> Hello Is it possible to share an Imap folder for a user with another one ? user a > imap-folder1 ^ user b >------| Could user a share his folder "imap-folder1" with user b in readonly mode ? I use "real" users ( not virtuals ) Thanks a lot. From f.bonnet at esiee.fr Thu Jun 30 18:11:56 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Thu, 30 Jun 2011 17:11:56 +0200 Subject: [Dovecot] Fwd: share an IMAP folder ? Message-ID: <4E0C923C.7060909@esiee.fr> Aoops I forgot to write I use MBOX format but thinking to convert to the right format to be able to use shared mailboxes. ( any advices about this convertion welcome ! ) -------- Original Message -------- Subject: [Dovecot] share an IMAP folder ? Date: Thu, 30 Jun 2011 17:03:52 +0200 From: Frank Bonnet To: dovecot at dovecot.org Hello Is it possible to share an Imap folder for a user with another one ? user a> imap-folder1 ^ user b>------| Could user a share his folder "imap-folder1" with user b in readonly mode ? I use "real" users ( not virtuals ) Thanks a lot. From stan at hardwarefreak.com Thu Jun 30 19:39:17 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Thu, 30 Jun 2011 11:39:17 -0500 Subject: [Dovecot] NFS mail storage In-Reply-To: <4E0C8245.2020002@blunn.org> References: <4E0BB7D1.7070100@hardwarefreak.com> <4E0C8245.2020002@blunn.org> Message-ID: <4E0CA6B5.2010908@hardwarefreak.com> On 6/30/2011 9:03 AM, William Blunn wrote: > On 30/06/2011 00:40, Stan Hoeppner wrote: >> If you can live with the folder tree limitations of mbox > > Did you mean with or without considering > http://wiki2.dovecot.org/MboxChildFolders ? I was referring the to the classic mbox limitation of not being able to store both email and sub folders within a given folder. If the example in wiki2 can be successfully implemented without running into any other potential problems (i.e. backup or other software that only works with the standard mbox directory layout), then the only downside to mbox would be the occasional file corruption, as demonstrated in another very recent thread. -- Stan From jk at jkart.de Wed Jun 1 01:02:35 2011 From: jk at jkart.de (Jim Knuth) Date: Wed, 01 Jun 2011 00:02:35 +0200 Subject: [Dovecot] Segmentation fault again In-Reply-To: <4DE22AF4.9060803@localhost.localdomain.org> References: <4DE0D02C.4060807@jkart.de> <4DE21BFA.4020300@jkart.de> <4DE22684.6070806@localhost.localdomain.org> <4DE2291E.1070803@jkart.de> <4DE22AF4.9060803@localhost.localdomain.org> Message-ID: <4DE5657B.5000905@jkart.de> am 29.05.11 13:16 schrieb Pascal Volk : > On 05/29/2011 01:08 PM Jim Knuth wrote: >> am 29.05.11 12:57 schrieb Pascal Volk >> : >>> Which attachment? >> >> I`ve send already with the first post. >> Whatever. here again. > > When you compare them??, you will see the difference. > >>> Upgrading to v2.0.13 may also solve your problem. >> >> That is V 2.0.13 > > Yeah, the backtrace looks different and I'm sure, Timo will fix the > problem soon. I`ve upgrade today of 2:2.0.13-0~auto+32 and the error is already present. :-/ doveconf -n # 2.0.13 (9ae30e5d6935): /etc/dovecot/dovecot.conf # OS: Linux 2.6.29.4 i686 Debian wheezy/sid > > > Regards, > Pascal > -- > [1] > http://dovecot.org/pipermail/dovecot/attachments/20110409/245be60b/attachment.txt > [2] > http://dovecot.org/pipermail/dovecot/attachments/20110529/f2b2ffd0/attachment-0001.txt -- Mit freundlichen Gr??en, with kind regards, Jim Knuth --------- Politik kann man in diesem Lande definieren als die Durchsetzung wirtschaftlicher Zwecke mit Hilfe der Gesetzgebung. (Kurt Tucholsky) From kgc at corp.sonic.net Wed Jun 1 03:17:35 2011 From: kgc at corp.sonic.net (Kelsey Cummings) Date: Tue, 31 May 2011 17:17:35 -0700 Subject: [Dovecot] Client IP log variable for proxy/director setups? In-Reply-To: <20110527190025.GH70065@corp.sonic.net> References: <20110527190025.GH70065@corp.sonic.net> Message-ID: <20110601001735.GI81678@corp.sonic.net> On Fri, May 27, 2011 at 12:00:25PM -0700, Kelsey Cummings wrote: > Timo - it would be very convenient if we could get a variable that held > the real client ip for use in logging with director/proxy setups. It's > clearly already passed around in client->user->remote_ip but at this point, > I don't see anyway to get it into the logs and it would take me ages to > figure out the Right place to add it since client->user doesn't seem to > be available in client-common.c: get_var_expand_table(..). Perhaps I'm > missing something obvious? Something so obvious as it already doing it. I have NFC what I did when I "tested" this the first time around and concluded that the director server's ip was showing up in %r. Sorry! -- Kelsey Cummings - kgc at corp.sonic.net sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 Santa Rosa, CA 95407 From imap at tnde.org Wed Jun 1 12:17:28 2011 From: imap at tnde.org (imap at tnde.org) Date: Wed, 1 Jun 2011 05:17:28 -0400 Subject: [Dovecot] Unknown setting: dbox_attachment_dir In-Reply-To: <4DE3DFA3.2080708@localhost.localdomain.org> References: <6aa4663f8f159b8334230cb285386628.squirrel@emailmg.dot5hosting.com> <4DE3DFA3.2080708@localhost.localdomain.org> Message-ID: <02d276025fc9032f6ef10a7e6fe29180.squirrel@emailmg.dot5hosting.com> > On 05/30/2011 02:18 PM imap at tnde.org wrote: >> Starting Dovecot Imap: doveconf: Fatal: Error in configuration file >> /etc/dovecot/dovecot.conf line 89: Unknown setting: dbox_attachment_dir > > ,--[ conf.d/10-mail.conf:319-330 ]-- > | ## > | ## Mail attachments > | ## > | > | # sdbox and mdbox support saving mail attachments to external files, > which > | # also allows single instance storage for them. Other backends don't > support > | # this for now. > | > | # WARNING: This feature hasn't been tested much yet. Use at your own > risk. > | > | # Directory root where to store mail attachments. Disabled, if empty. > | #mail_attachment_dir = > `-- Ahh, thanks! The dangers of googling for reference information.... From dirk.jahnke-zumbusch at desy.de Wed Jun 1 12:25:40 2011 From: dirk.jahnke-zumbusch at desy.de (Jahnke-Zumbusch, Dirk) Date: Wed, 1 Jun 2011 11:25:40 +0200 Subject: [Dovecot] Dovecot 2 + Director: IMAP+GSSAPI and LMTP-proxying Message-ID: <7C0189D0CDB51646B7814F4377D356F5015364A9@ADXV4.win.desy.de> Hi all, I have a setup of some nodes running Dovecot 2.0.13 and Postfix 2.5.6 with storage in NFS and authentication happening with PAM. Poking around in the wiki, I tried out different possibilities but now I am stuck -- and are hoping for your (enlightening) comments and tips. My planned setup for IMAP and LMTP is like this: IMAP ==== 1. A loadbalancer directs new sessions to a Dovecot-Director instance; this extra amount of traffic routing is mostly done for automatic handling in case of a failing Director node; this works fine, the same IP will end always on the same backend, but user-based Directory proxying seems more appropriate, especially taking the NFS-setup and the delivery process into account 2. Then the Director decides where to direct the user's session; this works fine when I let the backend servers do the authentication work 3. The backend Dovecot server will happily provide the user's e-mail For now my section for the passdb in the Director instance is passdb { driver = static args = proxy=y nopassword=y } So the backend will do the authentication of the session. But this setup inhibits using Kerberos, as the TGT is not forwarded to the backend server. I would very much like to provide GSSAPI/Kerberos authentication, which already works fine with the backend servers being directly connected by mail clients. The backend servers are using the PAM driver. I could not figure out, how to setup the passdb entry for the director instance to use PAM (this way enabling GSSAPI/Kerberos) and also giving back the necessary "proxy=y" to make director proxying the IMAP session. Is this setup feasible at all? LMTP ==== 1. Postfix accepts incoming e-mail and decides, which e-mail will go the LMTP-way to be deliverd into a Dovecot mailbox with something like virtual_transport = lmtp:inet:DOVECOT-DIRECTORS-IP:LMTP-PORT-ABC 2. the Dovecot Director instance accepts the LMTP connections and will proxy this to the appropriate==user's current backend server For now Postfix delivers e-mails using LMTP to the _backend_ w/o proxying and everything like SIEVE-filtering works fine: virtual_transport = lmtp:inet:DOVECOT-BACKENDS-IP:LMTP-PORT-XYZ But when I use the Director's IP/Port combination for LMTP, I see an error "554 5.4.6 Proxying loops to itself". Where may I specify the port number of the backend server's LMTP-port? I suspect that the missing port number implies that the receiving LMTP-backend server uses the same port and so this would lead to a loop, hence the loop error?! I browsed the Wiki and the archives but still cannot find the information I am looking for. Any hints on that? Cheers, Dirk And here's the director.conf (via doveconf -n): # 2.0.13: /dovecot/code/etc/dovecot-director/director.conf # OS: SunOS 5.10 sun4v auth_debug = yes auth_verbose = yes base_dir = /var/run/director/ debug_log_path = /var/adm/dovecot-director.debug director_mail_servers = director_servers = lmtp_proxy = yes login_greeting = Dovecot Director ready. mail_debug = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = proxy=y nopassword=y driver = static } protocols = imap lmtp service auth-worker { user = root } service auth { client_limit = 6000 unix_listener auth-userdb { mode = 0644 user = vmail } } service director { fifo_listener login/proxy-notify { mode = 0666 } inet_listener { port = 9090 } unix_listener director-userdb { mode = 0600 } unix_listener login/director { mode = 0666 } } service imap-login { executable = imap-login director inet_listener imap { port = 10143 } inet_listener imaps { port = 10993 ssl = yes } process_min_avail = 1 } service imap { process_limit = 1024 } service lmtp { inet_listener lmtp { address = port = 24242 } } ssl_cert = References: <7C0189D0CDB51646B7814F4377D356F5015364A9@ADXV4.win.desy.de> Message-ID: Hi again, minutes after posting I found something for my LMTP-question: > Where may I specify the port number of the backend server's > LMTP-port? I suspect that the missing port number implies that > the receiving LMTP-backend server uses the same port and so > this would lead to a loop, hence the loop error?! Just add "port=" in the passdb section like: passdb { args = proxy=y nopassword=y port=25252 driver = static } So I am worrying about the IMAP+GSSAPI part... Cheers, Dirk -- Dirk Jahnke-Zumbusch Deutsches Elektronen-Synchrotron DESY IT Information Fabrics Member of the Helmholtz Association D-22603 Hamburg Notkestrasse 85 / 22607 Hamburg T: +49-40-899.81760 F: +49-40-899.41760 dirk.jahnke-zumbusch at desy.de From sf.rique at gmail.com Wed Jun 1 16:43:43 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Wed, 1 Jun 2011 10:43:43 -0300 Subject: [Dovecot] Squat Question! Message-ID: Hello folks, I use dovecot squat for indexing. I use to have fts_squat = partial=4 full=4 But i change to fts_squat = partial=4 full=8 My question is, do i need to delete older indexes to have it consistenly, or dovecot is able "update" the indexes or it sees that it is broken and rebuild it all? Other question, is there an comand line to update the indexes ? Thanks a lot! []'sf.rique From marcin at mejor.pl Wed Jun 1 16:57:03 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Wed, 01 Jun 2011 15:57:03 +0200 Subject: [Dovecot] Squat Question! In-Reply-To: References: Message-ID: <4DE6452F.4080706@mejor.pl> W dniu 01.06.2011 15:43, Henrique Fernandes pisze: > My question is, do i need to delete older indexes to have it consistenly, or > dovecot is able "update" the indexes or it sees that it is broken and > rebuild it all? I don't know. > Other question, is there an comand line to update the indexes ? Use doveadm: doveadm index -A "*" Regards From sf.rique at gmail.com Wed Jun 1 17:01:51 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Wed, 1 Jun 2011 11:01:51 -0300 Subject: [Dovecot] Squat Question! In-Reply-To: <4DE6452F.4080706@mejor.pl> References: <4DE6452F.4080706@mejor.pl> Message-ID: Thanks for the second question, but in wich version the index comanda was implement? I will look it! I use # 2.0.6: /etc/dovecot/dovecot.conf And it does not have, it might be time to update dovecot! # doveadm index -v -u user at example INBOX usage: doveadm [-Dv] [-f ] [] altmove [-u |-A] auth [-a ] [-x ] [] config [doveconf parameters] director add|flush|map|remove|status dump [-t ] expunge [-u |-A] fetch [-u |-A] force-resync [-u |-A] help import [-u |-A] kick [-a ] [-f] [|] log find|reopen|test mailbox create|delete|list|mutf7|rename|status|subscribe|unsubscribe penalty [-a ] [] purge [-u |-A] pw [-l] [-p plaintext] [-r rounds] [-s scheme] [-u user] [-V] quota get|recalc reload search [-u |-A] sis deduplicate|find stop user [-a ] [-x ] [...] who [-a ] [-1] [] [] []'sf.rique 2011/6/1 Marcin Miros?aw > W dniu 01.06.2011 15:43, Henrique Fernandes pisze: > > My question is, do i need to delete older indexes to have it consistenly, > or > > dovecot is able "update" the indexes or it sees that it is broken and > > rebuild it all? > > I don't know. > > > Other question, is there an comand line to update the indexes ? > > Use doveadm: doveadm index -A "*" > > Regards > From sf.rique at gmail.com Wed Jun 1 17:04:56 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Wed, 1 Jun 2011 11:04:56 -0300 Subject: [Dovecot] Squat Question! In-Reply-To: References: <4DE6452F.4080706@mejor.pl> Message-ID: Doveadm index was impolemented in 2.013 The most important changes since v2.0.12: + Added "doveadm index" command to add unindexed messages into index/cache. If full text search is enabled, it also adds unindexed messages to the fts database. I might update dovecot! Willl look for any trouble i might have! Thanks! Still looking for: > My question is, do i need to delete older indexes to have it consistenly, or > dovecot is able "update" the indexes or it sees that it is broken and > rebuild it all? After changing the fts parameter! []'sf.rique On Wed, Jun 1, 2011 at 11:01 AM, Henrique Fernandes wrote: > Thanks for the second question, but in wich version the index comanda was > implement? I will look it! > > I use # 2.0.6: /etc/dovecot/dovecot.conf > > And it does not have, it might be time to update dovecot! > > # doveadm index -v -u user at example INBOX > usage: doveadm [-Dv] [-f ] [] > > altmove [-u |-A] > auth [-a ] [-x ] [] > config [doveconf parameters] > director add|flush|map|remove|status > dump [-t ] > expunge [-u |-A] > fetch [-u |-A] > force-resync [-u |-A] > help > import [-u |-A] > > kick [-a ] [-f] [|] > log find|reopen|test > mailbox create|delete|list|mutf7|rename|status|subscribe|unsubscribe > penalty [-a ] [] > purge [-u |-A] > pw [-l] [-p plaintext] [-r rounds] [-s scheme] [-u user] [-V] > quota get|recalc > reload > search [-u |-A] > sis deduplicate|find > stop > user [-a ] [-x ] [...] > who [-a ] [-1] [] [] > > > > > []'sf.rique > > > 2011/6/1 Marcin Miros?aw > >> W dniu 01.06.2011 15:43, Henrique Fernandes pisze: >> > My question is, do i need to delete older indexes to have it >> consistenly, or >> > dovecot is able "update" the indexes or it sees that it is broken and >> > rebuild it all? >> >> I don't know. >> >> > Other question, is there an comand line to update the indexes ? >> >> Use doveadm: doveadm index -A "*" >> >> Regards >> > > From sm at resistor.net Thu Jun 2 01:18:37 2011 From: sm at resistor.net (SM) Date: Wed, 01 Jun 2011 15:18:37 -0700 Subject: [Dovecot] DOVECOT v2.0.11 using SIEVE not working In-Reply-To: <0E815C7A028A4130BF0B1971E7FBD260@HPDC7600> References: <4DC4F568.5070204@rename-it.nl> <2895CA51FD8B45F0B15340E98A94FE23@HPDC7600> <6E84D0F28EC34394B1E2E4EA1ED5B154@HPDC7600> <1304962872.10421.119.camel@hurina> <0E815C7A028A4130BF0B1971E7FBD260@HPDC7600> Message-ID: <6.2.5.6.2.20110601150944.02f9c270@resistor.net> Hi Matt, At 09:46 10-05-2011, Matt Mc Namara wrote: >1. Does anyone have a working configuration using sendmail, dovecot >and sieve for filters? sendmail.mc: FEATURE(`local_procmail', `/usr/local/libexec/dovecot/deliver',`/usr/local/libexec/dovecot/deliver -d $u') MODIFY_MAILER_FLAGS(`LOCAL', `-f') MAILER(procmail) dovecot.conf: plugin { # The path to the user's main active script. sieve = ~/.dovecot.sieve ... } protocol lda { mail_plugins = sieve } protocol lmtp { mail_plugins = sieve } service managesieve-login { inet_listener sieve { port = 4190 } ... } protocol sieve { ... } Regards, -sm From kgc at corp.sonic.net Thu Jun 2 02:59:31 2011 From: kgc at corp.sonic.net (Kelsey Cummings) Date: Wed, 1 Jun 2011 16:59:31 -0700 Subject: [Dovecot] doveadm "-S " option enabled in 2.0.8? In-Reply-To: <1293709973.5021.47.camel@hurina> References: <6891057E-C9A9-47D1-92F3-3A3A9B5B09D3@geneseo.edu> <1293709973.5021.47.camel@hurina> Message-ID: <20110601235931.GK30313@corp.sonic.net> On Thu, Dec 30, 2010 at 01:52:53PM +0200, Timo Sirainen wrote: > On Tue, 2010-12-21 at 14:55 -0500, David Warden wrote: > > > But when I try to get my quota on a different local IP using the -S flag to doveadm: > > > > doveadm quota get -u warden -S 137.238.2.244:143 > > The purpose of -S is completely different. It's about connecting to > another doveadm instance. There's currently no way to set IP for doveadm > queries. Just to bump an old thread. Timo, I think this would be a great feature to add. It would allow people to pull stats (and system health) directly out of dovecot rather than having to run agents on the dovecot servers to get the info into some other transport like SNMP. -- Kelsey Cummings - kgc at corp.sonic.net sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 Santa Rosa, CA 95407 From kgc at corp.sonic.net Thu Jun 2 03:29:33 2011 From: kgc at corp.sonic.net (Kelsey Cummings) Date: Wed, 1 Jun 2011 17:29:33 -0700 Subject: [Dovecot] director monitoring? Message-ID: <20110602002933.GL30313@corp.sonic.net> I'm working the kinks of a new director based setup for the eventual migration away from courier. At this point, with everything basically working I'm trying to ensure that things are properly monitored and I've run into an issue. There doesn't appear to be a way to get dovecot to tell if it is (or is not) connected and properly synced with the other director servers in the ring apart from the logs. It seems like this is an important piece of information -- without it, it isn't apparent how you would be able to tell if your director servers have lost track of each other. I'm also curious what people are doing to health check their director servers when they are running load balancing upstream of them as well. It doesn't seem like it is a good idea to let the load balancers check all the way through to the real servers since a failure on the target real server could end up leading to a director being dropped from the pool (if so, it is most likely that the other directors would be dropped as well.) Otherwise, the health check failure tolerance at the load balancer must be greater than the tolerance for failure of the real servers on the director- a dead director could end up in the pool for longer than desired, or anyway, long enough to be sure that it isn't a transient failure on the real server behind it. A better method would seem to be for the load balancers to query the director for the number of active back-end servers and, so long as it was over a given threshold, to assume that the director is otherwise able to do its job and rely on external monitoring to pickup internal failures where dovecot isn't able to successfully proxy the connection to one of the real servers. So, how are people doing this in the real world? -- Kelsey Cummings - kgc at corp.sonic.net sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 Santa Rosa, CA 95407 From hmoreno at gmv.com Thu Jun 2 11:13:03 2011 From: hmoreno at gmv.com (=?iso-8859-1?Q?H=E9ctor_Moreno_Blanco?=) Date: Thu, 2 Jun 2011 10:13:03 +0200 Subject: [Dovecot] [dovecot] notifications when delivery fails Message-ID: Hello Timo, We have dovecot 1.2.13. Is there any way to send notifications to the postmaster when a delivery fails? For example, when the dovecot index are corrupted and the mail is not sent to the user (the user who sent the message receives an error informing that the mail has not sent). Thank you very much in advanced. H?ctor Moreno Blanco. ______________________ This message including any attachments may contain confidential information, according to our Information Security Management System, and intended solely for a specific individual to whom they are addressed. Any unauthorised copy, disclosure or distribution of this message is strictly forbidden. If you have received this transmission in error, please notify the sender immediately and delete it. ______________________ Este mensaje, y en su caso, cualquier fichero anexo al mismo, puede contener informacion clasificada por su emisor como confidencial en el marco de su Sistema de Gestion de Seguridad de la Informacion siendo para uso exclusivo del destinatario, quedando prohibida su divulgacion copia o distribucion a terceros sin la autorizacion expresa del remitente. Si Vd. ha recibido este mensaje erroneamente, se ruega lo notifique al remitente y proceda a su borrado. Gracias por su colaboracion. ______________________ From cor at xs4all.nl Thu Jun 2 11:37:23 2011 From: cor at xs4all.nl (Cor Bosman) Date: Thu, 2 Jun 2011 10:37:23 +0200 Subject: [Dovecot] director monitoring? In-Reply-To: <20110602002933.GL30313@corp.sonic.net> References: <20110602002933.GL30313@corp.sonic.net> Message-ID: <5F82D09D-38E9-4FC0-8660-AC7AFFEBD04B@xs4all.nl> We use a setup as seen on http://grab.by/agCb for about 30.000 simultaneous(!) imap connections. We have 2 Foundry loadbalancers. They check the health of the directors. We have 3 directors, and each one runs Brandon's poolmon script (https://github.com/brandond/poolmon). This script removes real servers out of the director pool. The dovecot imap servers are monitored with nagios just to tell us when they're down. This setup has been absolutely rock solid for us. I have not touched the whole system since november and we have not seen any more corruption of meta data, which is the whole reason for the directors. Kudos to Timo for fixing this difficult problem. Cor From btodger at yahoo.com Thu Jun 2 12:17:05 2011 From: btodger at yahoo.com (Bert Todger) Date: Thu, 2 Jun 2011 02:17:05 -0700 (PDT) Subject: [Dovecot] Baffled after upgrade Message-ID: <470786.3549.qm@web130210.mail.mud.yahoo.com> Hello all, I have just upgraded my Fedora 13 system to F15. With it came a shiny new dovecot 2.0.13 (Details of dovecot -n below). The configuration is different from the dovecot 1.something that I had been used to with F13, but I managed to get it working and all was well... Without changing anything related to dovecot (as far as I know), after a reboot, dovecot stopped working. I did a bit of digging, upped the verbosity of logging and found this in the logs: =======8<================================================================= Jun 02 09:58:21 auth: Debug: passwd-file /etc/passwd.dovecot: Read 3 users Jun 02 09:58:21 auth: Debug: auth client connected (pid=16699) Jun 02 09:58:21 auth: Debug: client in: AUTH 1 PLAIN service=imap secured lip=192.168.2.2 rip=192.168.2.2 lport=993 rport=33960 Jun 02 09:58:21 auth: Debug: client out: CONT 1 Jun 02 09:58:21 auth: Debug: client in: CONT 1 AG1hcmsAaWxIYWFkSFA= Jun 02 09:58:21 auth: Debug: Loading modules from directory: /usr/lib/dovecot/auth Jun 02 09:58:21 auth: Debug: Module loaded: /usr/lib/dovecot/auth/libauthdb_ldap.so Jun 02 09:58:21 auth: Debug: Module loaded: /usr/lib/dovecot/auth/libdriver_sqlite.so Jun 02 09:58:21 auth: Debug: Module loaded: /usr/lib/dovecot/auth/libmech_gssapi.so Jun 02 09:58:21 auth: Debug: passwd-file /etc/passwd.dovecot: Read 3 users Jun 02 09:58:21 auth: Debug: pam(mark,192.168.2.2): lookup service=dovecot Jun 02 09:58:21 auth: Debug: pam(mark,192.168.2.2): #1/1 style=1 msg=Password: Jun 02 09:58:23 auth: Info: pam(mark,192.168.2.2): pam_authenticate() failed: Authentication failure (password mismatch?) (given password: mypass) Jun 02 09:58:23 auth: Debug: passwd-file(mark,192.168.2.2): lookup: user=mark file=/etc/passwd.dovecot Jun 02 09:58:23 auth: Debug: client out: OK 1 user=mark Jun 02 09:58:23 auth: Debug: master in: REQUEST 1125646337 16699 1 69152b70b5461508ad2a3eb02942b883 Jun 02 09:58:23 auth: Debug: passwd(mark,192.168.2.2): lookup Jun 02 09:58:23 auth: Debug: master out: USER 1125646337 mark system_groups_user=mark uid=500 gid=500 home=/home/mark Jun 02 09:58:23 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.2.2, lip=192.168.2.2, mpid=16705, TLS =========8<=============================================================== Now it's entirely possible that I simply don't properly understand the password authentication process. I have PLAIN passwords set in /etc/passwd.dovecot which it seems to be reading OK, my /etc/dovecot/conf.d/auth-passwdfile.conf.ext file contains just =========8<============================================= passdb { driver = passwd-file args = scheme=PLAIN username_format=%u /etc/passwd.dovecot } =========8<============================================= and nothing else. ...and as I said - it *was* working fine. I am puzzled by the reference to PAM authentication in the logs and in the dovecot -n output. Should I comment out all references to PAM? (in auth-system.conf.ext?) I and my family access mail through a variety of means, using Evolution on the home network, mobile devices (eg iPhone), webmail (using squirrelmail configured to access dovecot) and over ssh (using mutt). I don't necessarily want my (or their) email passwords to be the same as our PAM logon passwords (and at the moment they're not). So for me PLAIN has been the best solution up until now. What is my best (and simplest) solution? Thanks in advance Mark # dovecot -n # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.38.6-27.fc15.i686.PAE i686 Fedora release 15 (Lovelock) auth_debug = yes auth_debug_passwords = yes auth_verbose = yes auth_verbose_passwords = plain log_path = /var/log/dovecot mbox_write_locks = fcntl passdb { driver = pam } passdb { args = scheme=PLAIN username_format=%u /etc/passwd.dovecot driver = passwd-file } ssl_cert = References: <470786.3549.qm@web130210.mail.mud.yahoo.com> Message-ID: <4DE7709C.1030002@localhost.localdomain.org> On 06/02/2011 11:17 AM Bert Todger wrote: > ? > Should I comment out all references to PAM? (in auth-system.conf.ext?) Comment them out when you don't use PAM. Regards, Pascal -- The trapper recommends today: face1e55.1115313 at localdomain.org From marcin at mejor.pl Thu Jun 2 17:48:11 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Thu, 02 Jun 2011 16:48:11 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql Message-ID: <4DE7A2AB.9090607@mejor.pl> Hello! I'd like to setup quota for for virtualusers, i'm using both maildir++ and mdbox as storage, and i'm using postgresql to keep users. I'm keeping all users data in one table: [...] login text NOT NULL, domain text, password text, quota_mb integer NOT NULL DEFAULT 0 [... other columns ...] i'd like to keep present quota in such two columns: quota_dict_bytes integer NOT NULL DEFAULT 0, quota_dict_messages integer NOT NULL DEFAULT 0 I read wiki a little and it looks i can't define own sql queries, they appear to be hardcoded. Am i wrong? Is it possible to write own queries to get/set quota using such table schema? Or maybe there is diffrent way to track quota for diffrent storages? Regards! Marcin From duane at duanemail.org Thu Jun 2 19:40:10 2011 From: duane at duanemail.org (Duane Hill) Date: Thu, 2 Jun 2011 11:40:10 -0500 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE7A2AB.9090607@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> Message-ID: <235720313.20110602114010@duanemail.org> Thursday, June 2, 2011, 9:48:11 AM, Marcin wrote: > Hello! > I'd like to setup quota for for virtualusers, i'm using both maildir++ > and mdbox as storage, and i'm using postgresql to keep users. > I'm keeping all users data in one table: > [...] > login text NOT NULL, > domain text, > password text, > quota_mb integer NOT NULL DEFAULT 0 > [... other columns ...] > i'd like to keep present quota in such two columns: > quota_dict_bytes integer NOT NULL DEFAULT 0, > quota_dict_messages integer NOT NULL DEFAULT 0 > I read wiki a little and it looks i can't define own sql queries, they > appear to be hardcoded. Am i wrong? Is it possible to write own queries > to get/set quota using such table schema? Or maybe there is diffrent way > to track quota for diffrent storages? > Regards! > Marcin I'm using mysql here with everything being served out of a single users table. I would think you should be able to do that from a pgsql table as well. Here's my password_query and user_query: password_query = \ SELECT username AS user, password, \ '/var/mail/mailhost/%d/%n' AS userdb_home, \ 'maildir:/var/mail/mailhost/%d/%n' AS userdb_mail, \ 1002 AS userdb_uid, 6 AS userdb_gid, \ 'dict:user::proxy::quota' AS userdb_quota, \ CONCAT('*:bytes=',max_bytes,':messages=',max_msgs) AS userdb_quota_rule, \ 'Trash:bytes=+32M' AS userdb_quota_rule2, \ 'Spam:bytes=+32M' AS userdb_quota_rule3 \ FROM users \ WHERE username = '%u' AND active = 1 user_query = \ SELECT '/var/mail/mailhost/%d/%n' AS home, \ 'maildir:/var/mail/mailhost/%d/%n' AS mail, \ 1002 AS uid, 6 AS gid, \ 'dict:user::proxy::quota' AS quota, \ CONCAT('*:bytes=',max_bytes,':messages=',max_msgs) AS quota_rule, \ 'Trash:bytes=+32M' AS quota_rule2, \ 'Spam:bytes=+32M' AS quota_rule3 \ FROM users \ WHERE username = '%u' AND active = 1 -- Best regards, Duane mailto:duane at duanemail.org From dovecot at killfile.de Thu Jun 2 21:56:58 2011 From: dovecot at killfile.de (Marcus Jodorf) Date: Thu, 2 Jun 2011 20:56:58 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <235720313.20110602114010@duanemail.org> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> Message-ID: <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> Duane Hill wrote: Am 02.06.2011 um 18:40 schrieb Duane Hill: >> I read wiki a little and it looks i can't define own sql queries, they >> appear to be hardcoded. Am i wrong? Is it possible to write own queries >> to get/set quota using such table schema? No problem. > I'm using mysql here with everything being served out of a single > users table. I would think you should be able to do that from a pgsql > table as well. [...] > user_query = \ > SELECT '/var/mail/mailhost/%d/%n' AS home, \ > 'maildir:/var/mail/mailhost/%d/%n' AS mail, \ > 1002 AS uid, 6 AS gid, \ > 'dict:user::proxy::quota' AS quota, \ > CONCAT('*:bytes=',max_bytes,':messages=',max_msgs) AS quota_rule, \ > 'Trash:bytes=+32M' AS quota_rule2, \ > 'Spam:bytes=+32M' AS quota_rule3 \ > FROM users \ > WHERE username = '%u' AND active = As an example I do it with postgres like this: I create a view with suitable data from my different tables in postgres: ----------------------- CREATE VIEW dovecot_user AS SELECT users.userid, users.domain, users.uid, users.gid, '*:storage='||ROUND(users.quota/1024) AS quota_rule, '/home/vhosts/'||users.domain||'/'||users.userid AS home, domains.mailhost, users.active FROM users, domains WHERE users.domain = domains.domain; grant select on dovecot_user to imapd; ----------------------- And then I just tell dovecot to use it accordingly: password_query= SELECT password FROM users WHERE userid = '%n' AND domain = '%d' user_query = SELECT home, uid, gid, quota_rule FROM dovecot_user WHERE userid = '%n' AND domain = '%d' AND mailhost='blah' How your table looks in detail is not really important for setting up quotas. Basically all you need to do is to generate quota_rule fields in your query and see to it that it delivers suitable data for the user_query. Duane did this in his example above by using a little more lengthy queries (BTW: Is there a reason for the redundancy in the password_query?) and I do this by using a database view and keeping the dovecot user_query itself a little simpler. Hope this helps. Marcus From kgc at corp.sonic.net Thu Jun 2 22:29:10 2011 From: kgc at corp.sonic.net (Kelsey Cummings) Date: Thu, 2 Jun 2011 12:29:10 -0700 Subject: [Dovecot] director monitoring? In-Reply-To: <5F82D09D-38E9-4FC0-8660-AC7AFFEBD04B@xs4all.nl> References: <20110602002933.GL30313@corp.sonic.net> <5F82D09D-38E9-4FC0-8660-AC7AFFEBD04B@xs4all.nl> Message-ID: <20110602192910.GB76245@corp.sonic.net> On Thu, Jun 02, 2011 at 10:37:23AM +0200, Cor Bosman wrote: > We use a setup as seen on http://grab.by/agCb for about 30.000 simultaneous(!) imap connections. This might as well be a diagram of my network, although, if I remember, you're running quite a few more netapps clusters than I am. ;) > We have 2 Foundry loadbalancers. They check the health of the directors. We have 3 directors, and each one runs Brandon's poolmon script (https://github.com/brandond/poolmon). This script removes real servers out of the director pool. The dovecot imap servers are monitored with nagios just to tell us when they're down. I'm using a hacked up version of poolmon. The only important changes are that it actually logs into the real server rather than just making a connection to it and that has heuristics to prevent the real servers from flapping and added a timeout to scan_host so if a real server blocks after the connection is established it won't hang indefinitely. > This setup has been absolutely rock solid for us. I have not touched the whole system since november and we have not seen any more corruption of meta data, which is the whole reason for the directors. Kudos to Timo for fixing this difficult problem. That is always good to hear! I'd be a lot happier if I was able to monitor the directors and make sure that they were connected and correctly synced with eachother - even as a protection from human error rather than anticipated software failure. -- Kelsey Cummings - kgc at corp.sonic.net sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 Santa Rosa, CA 95407 From ecasarero at gmail.com Thu Jun 2 23:41:56 2011 From: ecasarero at gmail.com (Eduardo Casarero) Date: Thu, 2 Jun 2011 17:41:56 -0300 Subject: [Dovecot] Problems in auth when switching from PLAIN-MD5 Message-ID: Hi, i am running dovecot 2.0.11 (with mysql backend) and until now using PLAIN-MD5 as pass default_pass_scheme everything was working fine. However i wanted to change the pass_scheme to something stronger than plain-md5, so i started by reading the wiki. I found this: http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes But when i comment out "default_pass_scheme" and i create the pass with the {SHA256.hex} prefix i see this in the logs: auth: Error: sql(xxx at xxxxxx.com,10.21.1.1): Password in passdb is not in expected scheme SHA256.hex I tried with several algorithms, but it seems to be something in my config that it's only working with plain-md5. the auth_mechanism is plain with ssl/tls. Maybe someone can give me a hint of where to see o which config file review. Thanks in advance. Eduardo. From arekm at maven.pl Fri Jun 3 00:20:28 2011 From: arekm at maven.pl (Arkadiusz Miskiewicz) Date: Thu, 2 Jun 2011 23:20:28 +0200 Subject: [Dovecot] 2.0: deliver run from multiple uids and configuration files Message-ID: <201106022320.28423.arekm@maven.pl> I'm trying to run deliver from exim transport in a way that it doesn't need to query userdb AND doesn't need to read configuration files. The problem is that config files are readable for root only and if I run deliver with multiple UIDs then I would have to allow reading config files for everyone. Of course that's not a option because configs contain database passwords and such stuff. I wonder if it is possible to avoid reading config files by deliver? The only solution I see it to run deliver via sudo which doesn't look nice. -- Arkadiusz Mi?kiewicz PLD/Linux Team arekm / maven.pl http://ftp.pld-linux.org/ From duane at duanemail.org Fri Jun 3 10:14:51 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 3 Jun 2011 02:14:51 -0500 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> Message-ID: <3810249746.20110603021451@duanemail.org> Hello Marcus, Thursday, June 2, 2011, 1:56:58 PM, you wrote: > Duane Hill wrote: > Am 02.06.2011 um 18:40 schrieb Duane Hill: >>> I read wiki a little and it looks i can't define own sql queries, they >>> appear to be hardcoded. Am i wrong? Is it possible to write own queries >>> to get/set quota using such table schema? > No problem. >> I'm using mysql here with everything being served out of a single >> users table. I would think you should be able to do that from a pgsql >> table as well. > [...] >> user_query = \ >> SELECT '/var/mail/mailhost/%d/%n' AS home, \ >> 'maildir:/var/mail/mailhost/%d/%n' AS mail, \ >> 1002 AS uid, 6 AS gid, \ >> 'dict:user::proxy::quota' AS quota, \ >> CONCAT('*:bytes=',max_bytes,':messages=',max_msgs) AS quota_rule, \ >> 'Trash:bytes=+32M' AS quota_rule2, \ >> 'Spam:bytes=+32M' AS quota_rule3 \ >> FROM users \ >> WHERE username = '%u' AND active = > As an example I do it with postgres like this: > I create a view with suitable data from my different tables in postgres: > ----------------------- > CREATE VIEW dovecot_user AS > SELECT users.userid, users.domain, users.uid, users.gid, > '*:storage='||ROUND(users.quota/1024) AS quota_rule, > '/home/vhosts/'||users.domain||'/'||users.userid AS home, > domains.mailhost, users.active FROM users, domains > WHERE users.domain = domains.domain; > grant select on dovecot_user to imapd; > ----------------------- > And then I just tell dovecot to use it accordingly: > password_query= SELECT password FROM users WHERE userid = '%n' AND domain = '%d' > user_query = SELECT home, uid, gid, quota_rule FROM dovecot_user > WHERE userid = '%n' AND domain = '%d' AND mailhost='blah' > How your table looks in detail is not really important for setting up quotas. > Basically all you need to do is to generate quota_rule fields in > your query and see to it that it delivers suitable data for the user_query. > Duane did this in his example above by using a little more lengthy > queries (BTW: Is there a reason for the redundancy in the > password_query?) and I do this by using a database view and keeping > the dovecot user_query itself a little simpler. Isn't the redundancy suppose to be if you are using prefetch? If not, correct me. > Hope this helps. > Marcus -- Best regards, Duane mailto:duane at duanemail.org From marcin at mejor.pl Fri Jun 3 12:05:21 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Fri, 03 Jun 2011 11:05:21 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> Message-ID: <4DE8A3D1.5030806@mejor.pl> Marcus, Duane, thanks for replies! I'll answer in one mail. In your config (Duane) quota is defined as 'dict:user::proxy::quota' it needs dictionary to be configured ( http://wiki2.dovecot.org/Quota/Dict ) if i understood correctly. In config snip from Marcus i can't find definition of "quota", what kind of backend are you using? maildir? Regards! From andreas.schulze at datev.de Fri Jun 3 12:09:23 2011 From: andreas.schulze at datev.de (Andreas Schulze) Date: Fri, 3 Jun 2011 11:09:23 +0200 Subject: [Dovecot] LMTP/Sieve/sendmail path Message-ID: <20110603090922.GA4468@spider.services.datevnet.de> Hello, I have a system using postfix multi instance feature. The first, main postfix-instance is a nullclient as suggested by http://www.postfix.org/MULTI_INSTANCE_README.html#split The second instance is for real use. Postfix receive mail and handover them to the dovecot lmtp server. Thats working. The lmtp server supports sieve. One account has activated a vacation rule. So while delivering a mail to this account, dovecot creates a new mail based on the vacation rules. *This one* fail. It is injected in the main postfix instance, which is wrong in this case. I tried to start dovecot with an additional environment MAIL_CONFIG=/etc/postfix-instance2 and enabled alternate_config_directories in main.cf of the first insance. ( http://www.postfix.org/postconf.5.html#alternate_config_directories ) I also configured the userdb to return an extrafield userdb_mail_config=/etc/postfix-instance2. But all produce strance postfix errors I never saw in my last 6 years as postfix-admin. Would it be possible to configure dovecot lmtp server to use an external smtp-server to submit new mails ? Any other Ideas ? Thanks Andreas -- Andreas Schulze Internetdienste | P252 DATEV eG 90329 N?rnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196 E-Mail info @datev.de | Internet www.datev.de Sitz: 90429 N?rnberg, Paumgartnerstr. 6-14 | Registergericht N?rnberg, GenReg Nr.70 Vorstand Prof. Dieter Kempf (Vorsitzender) Dipl.-Kfm. Wolfgang Stegmann (stellvertretender Vorsitzender) Dipl.-Kfm. Michael Leistenschneider J?rg Rabe v. Pappenheim Dipl.-Vw. Eckhard Schwarzer Vorsitzender des Aufsichtsrates: Reinhard Verholen From robert at schetterer.org Fri Jun 3 12:32:58 2011 From: robert at schetterer.org (Robert Schetterer) Date: Fri, 03 Jun 2011 11:32:58 +0200 Subject: [Dovecot] LMTP/Sieve/sendmail path In-Reply-To: <20110603090922.GA4468@spider.services.datevnet.de> References: <20110603090922.GA4468@spider.services.datevnet.de> Message-ID: <4DE8AA4A.3020406@schetterer.org> Am 03.06.2011 11:09, schrieb Andreas Schulze: > Hello, > > I have a system using postfix multi instance feature. > The first, main postfix-instance is a nullclient as suggested by > http://www.postfix.org/MULTI_INSTANCE_README.html#split > > The second instance is for real use. Postfix receive mail and handover them > to the dovecot lmtp server. > > Thats working. > > The lmtp server supports sieve. One account has activated a vacation rule. > So while delivering a mail to this account, dovecot creates a new mail based on the vacation rules. > > *This one* fail. It is injected in the main postfix instance, which is wrong in this case. > > I tried to start dovecot with an additional environment MAIL_CONFIG=/etc/postfix-instance2 > and enabled alternate_config_directories in main.cf of the first insance. > ( http://www.postfix.org/postconf.5.html#alternate_config_directories ) > I also configured the userdb to return an extrafield userdb_mail_config=/etc/postfix-instance2. > > But all produce strance postfix errors I never saw in my last 6 years as postfix-admin. > > Would it be possible to configure dovecot lmtp server to use an external smtp-server to submit > new mails ? > > Any other Ideas ? > > Thanks > Andreas > i guess you should ask at the postfix mail list cause this should be could fixed with postfix anyway there is http://www.acme.com/software/mini_sendmail/ ---sni Add -s flag to let you specify an SMTP server ---- maybe you can use it as workaround -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From aperezaranda at yaco.es Fri Jun 3 13:30:05 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Fri, 3 Jun 2011 12:30:05 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= Message-ID: Hi all, I'm using dovecot 2.0.9 and I have a config like this: dovecot.conf: passdb { args = /etc/dovecot/conf.d/passwd-ldap.conf driver = ldap } mail_plugins = $mail_plugins quota plugin { autocreate = INBOX.SPAM autocreate2 = INBOX.NoSPAM autosubscribe = INBOX.SPAM autosubscribe2 = INBOX.NoSPAM quota = maildir } protocol imap { mail_plugins = $mail_plugins imap_quota autocreate } And in passwd-ldap.conf I have some like this to add extra plugins: user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins With this. I can see that dovecot load all plugins from settings, but in the user session, I can get only the plugins that I have selected in mailPlugins field If i check some like this: mailPlugins=mail_plugins=$mail_plugins %$, The imap session user is aborted after login. How can I add extra plugins by ldap without put on ldap all user plugins? -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From dg at dguhl.org Fri Jun 3 13:51:04 2011 From: dg at dguhl.org (Dennis Guhl) Date: Fri, 3 Jun 2011 12:51:04 +0200 Subject: [Dovecot] LMTP/Sieve/sendmail path In-Reply-To: <20110603090922.GA4468@spider.services.datevnet.de> References: <20110603090922.GA4468@spider.services.datevnet.de> Message-ID: <20110603105104.GA2293@laptop-dg.leere.eu> On Fri, Jun 03, 2011 at 11:09:23AM +0200, Andreas Schulze wrote: > Hello, > > I have a system using postfix multi instance feature. > The first, main postfix-instance is a nullclient as suggested by If you call the default instance (as in http://www.postfix.org/MULTI_INSTANCE_README.html#default_instance) the "first, main postfix-instance" and this is the null-client instance, configured as sugested in the walk-through (http://www.postfix.org/MULTI_INSTANCE_README.html#quick), this should work. What happens if you invoke sendmail manually, what happens to messages from cronjobs? > http://www.postfix.org/MULTI_INSTANCE_README.html#split > > The second instance is for real use. Postfix receive mail and > handover them to the dovecot lmtp server. > > Thats working. > > The lmtp server supports sieve. One account has activated a vacation > rule. So while delivering a mail to this account, dovecot creates a > new mail based on the vacation rules. > > *This one* fail. It is injected in the main postfix instance, which > is wrong in this case. Why is this wrong? The vacation message is a locally generated message and as this should go to the null-client. > I tried to start dovecot with an additional environment > MAIL_CONFIG=/etc/postfix-instance2 I doubt this will affect the sendmail call from sieves vacation plugin. > and enabled alternate_config_directories in main.cf of the first > insance. You should not alter the config_directory for the default instance. > ( http://www.postfix.org/postconf.5.html#alternate_config_directories > ) I also configured the userdb to return an extrafield > ) userdb_mail_config=/etc/postfix-instance2. Does this even exist? > But all produce strance postfix errors I never saw in my last 6 > years as postfix-admin. > > Would it be possible to configure dovecot lmtp server to use an > external smtp-server to submit new mails ? > > Any other Ideas ? If none of the above pointers help, go to the postfix-users list and follow the guidelines in http://www.postfix.org/DEBUG_README.html#mail when reporting the problem. Dennis From tss at iki.fi Fri Jun 3 14:49:36 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:49:36 +0300 Subject: [Dovecot] LMTP/Sieve/sendmail path In-Reply-To: <20110603090922.GA4468@spider.services.datevnet.de> References: <20110603090922.GA4468@spider.services.datevnet.de> Message-ID: <1307101776.10421.544.camel@hurina> On Fri, 2011-06-03 at 11:09 +0200, Andreas Schulze wrote: > Would it be possible to configure dovecot lmtp server to use an external smtp-server to submit > new mails ? v2.0.10+: + Added submission_host setting to send mails via SMTP instead of via sendmail binary. From tss at iki.fi Fri Jun 3 14:50:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:50:41 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: Message-ID: <1307101841.10421.545.camel@hurina> On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: > And in passwd-ldap.conf I have some like this to add extra plugins: > > user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins This completely overrides mail_plugins setting.. > With this. I can see that dovecot load all plugins from settings, but > in the user session, I can get only the plugins that I have selected > in mailPlugins field > > If i check some like this: > mailPlugins=mail_plugins=$mail_plugins %$, $mail_plugins variable works only inside dovecot.conf while the settings are being parsed. > The imap session user is aborted after login. > > > How can I add extra plugins by ldap without put on ldap all user plugins? The best you can do now is: mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ i.e. list the global plugins in here as well as in the global mail_plugins setting. From tss at iki.fi Fri Jun 3 14:51:22 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:51:22 +0300 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE7A2AB.9090607@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> Message-ID: <1307101882.10421.546.camel@hurina> On Thu, 2011-06-02 at 16:48 +0200, Marcin Miros?aw wrote: > i'd like to keep present quota in such two columns: > quota_dict_bytes integer NOT NULL DEFAULT 0, > quota_dict_messages integer NOT NULL DEFAULT 0 > > I read wiki a little and it looks i can't define own sql queries, they > appear to be hardcoded. Am i wrong? Is it possible to write own queries > to get/set quota using such table schema? Or maybe there is diffrent way > to track quota for diffrent storages? You can't define your own SQL queries for dict quota. Besides being able to do such query, there's the problem that when recalculating quota it's done by deleting a row and inserting it back. You wouldn't want to do that for your users table. Making this work some other way could be tricky with PostgreSQL. It's quite an ugly trigger already, because there's no easy "ON DUPLICATE KEY UPDATE .." feature in PostgreSQL as there is for MySQL. From tss at iki.fi Fri Jun 3 14:54:48 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:54:48 +0300 Subject: [Dovecot] 2.0: deliver run from multiple uids and configuration files In-Reply-To: <201106022320.28423.arekm@maven.pl> References: <201106022320.28423.arekm@maven.pl> Message-ID: <1307102088.10421.549.camel@hurina> On Thu, 2011-06-02 at 23:20 +0200, Arkadiusz Miskiewicz wrote: > I'm trying to run deliver from exim transport in a way that it doesn't need to > query userdb AND doesn't need to read configuration files. > > The problem is that config files are readable for root only and if I run > deliver with multiple UIDs then I would have to allow reading config files for > everyone. Of course that's not a option because configs contain database > passwords and such stuff. Database passwords should be in in the dovecot-sql.conf.ext or something, which LDA (or doveconf, really) doesn't even try to read. If there are other secrets, you could put them to a separate file, which you: !include_try /etc/dovecot/secrets.conf LDA will just ignore it. > I wonder if it is possible to avoid reading config files by deliver? With -O parameter it doesn't read config, but I don't really recommend that.. From tss at iki.fi Fri Jun 3 14:58:53 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 14:58:53 +0300 Subject: [Dovecot] Problems in auth when switching from PLAIN-MD5 In-Reply-To: References: Message-ID: <1307102333.10421.552.camel@hurina> On Thu, 2011-06-02 at 17:41 -0300, Eduardo Casarero wrote: > Hi, i am running dovecot 2.0.11 (with mysql backend) and until now using > PLAIN-MD5 as pass default_pass_scheme everything was working fine. However i > wanted to change the pass_scheme to something stronger than plain-md5, so i > started by reading the wiki. > > I found this: http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes > > But when i comment out "default_pass_scheme" and You don't need to comment it out. Although I guess then the default is still PLAIN-MD5. > i create the pass with the > {SHA256.hex} prefix i see this in the logs: > > auth: Error: sql(xxx at xxxxxx.com,10.21.1.1): Password in passdb is not in > expected scheme SHA256.hex Show an example of a stored password? From tss at iki.fi Fri Jun 3 15:08:28 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:08:28 +0300 Subject: [Dovecot] [dovecot] notifications when delivery fails In-Reply-To: References: Message-ID: <1307102908.10421.557.camel@hurina> On Thu, 2011-06-02 at 10:13 +0200, H?ctor Moreno Blanco wrote: > Hello Timo, > > We have dovecot 1.2.13. Is there any way to send notifications to the > postmaster when a delivery fails? Create a script. Instead of running deliver directly, run something like: #!/bin/sh deliver $* err=$? if [ $err != 0 ]; then echo failed | mail postmaster fi exit $err > For example, when the dovecot index are corrupted and the mail is not > sent to the user (the user who sent the message receives an error > informing that the mail has not sent). This should never happen. The worst that can happen is that deliver returns temporary failure and its delivery is attempted again. Although if deliver crashes, some MTAs treat it as hard failure rather than temporary. You could prevent that with a wrapper script too. From tss at iki.fi Fri Jun 3 15:13:37 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:13:37 +0300 Subject: [Dovecot] doveadm "-S " option enabled in 2.0.8? In-Reply-To: <20110601235931.GK30313@corp.sonic.net> References: <6891057E-C9A9-47D1-92F3-3A3A9B5B09D3@geneseo.edu> <1293709973.5021.47.camel@hurina> <20110601235931.GK30313@corp.sonic.net> Message-ID: <1307103217.10421.562.camel@hurina> On Wed, 2011-06-01 at 16:59 -0700, Kelsey Cummings wrote: > On Thu, Dec 30, 2010 at 01:52:53PM +0200, Timo Sirainen wrote: > > On Tue, 2010-12-21 at 14:55 -0500, David Warden wrote: > > > > > But when I try to get my quota on a different local IP using the -S flag to doveadm: > > > > > > doveadm quota get -u warden -S 137.238.2.244:143 > > > > The purpose of -S is completely different. It's about connecting to > > another doveadm instance. There's currently no way to set IP for doveadm > > queries. > > Just to bump an old thread. Timo, I think this would be a great feature > to add. It would allow people to pull stats (and system health) > directly out of dovecot rather than having to run agents on the dovecot > servers to get the info into some other transport like SNMP. That feature is already there! service doveadm { inet_listener { port = 12345 } } doveadm_password = foobar Now you can use e.g.: doveadm -S 4.3.2.1:12345 quota get -u foobar There's no security in there though, the password is sent in plain text. For more security you could also just use "ssh 4.3.2.1 doveadm .." From tss at iki.fi Fri Jun 3 15:15:00 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:15:00 +0300 Subject: [Dovecot] Squat Question! In-Reply-To: References: Message-ID: <1307103300.10421.563.camel@hurina> On Wed, 2011-06-01 at 10:43 -0300, Henrique Fernandes wrote: > Hello folks, > > I use dovecot squat for indexing. > > I use to have > > fts_squat = partial=4 full=4 > > But i change to > fts_squat = partial=4 full=8 > > My question is, do i need to delete older indexes to have it consistenly, or > dovecot is able "update" the indexes or it sees that it is broken and > rebuild it all? You need to delete squat indexes first. From aperezaranda at yaco.es Fri Jun 3 15:17:44 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Fri, 3 Jun 2011 14:17:44 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1307101841.10421.545.camel@hurina> References: <1307101841.10421.545.camel@hurina> Message-ID: OK thanks. It isn't pretty but is running. 2011/6/3 Timo Sirainen : > On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: > >> And in passwd-ldap.conf I have some like this to add extra plugins: >> >> user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins > > This completely overrides mail_plugins setting.. > >> With this. I can see that dovecot load all plugins from settings, but >> in the user session, I can get only the plugins that I have selected >> in mailPlugins field >> >> If i check some like this: >> ? mailPlugins=mail_plugins=$mail_plugins %$, > > $mail_plugins variable works only inside dovecot.conf while the settings > are being parsed. > >> The imap session user is aborted after login. >> >> >> How can I add extra plugins by ldap without put on ldap all user plugins? > > The best you can do now is: > > mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ > > i.e. list the global plugins in here as well as in the global > mail_plugins setting. > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From tss at iki.fi Fri Jun 3 15:22:39 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:22:39 +0300 Subject: [Dovecot] Dovecot 2 + Director: IMAP+GSSAPI and LMTP-proxying In-Reply-To: <7C0189D0CDB51646B7814F4377D356F5015364A9@ADXV4.win.desy.de> References: <7C0189D0CDB51646B7814F4377D356F5015364A9@ADXV4.win.desy.de> Message-ID: <1307103759.10421.567.camel@hurina> On Wed, 2011-06-01 at 11:25 +0200, Jahnke-Zumbusch, Dirk wrote: > For now my section for the passdb in the Director instance is > > passdb { > driver = static > args = proxy=y nopassword=y > } > > So the backend will do the authentication of the session. But this setup > inhibits using Kerberos, as the TGT is not forwarded to the backend > server. Right.. > I would very much like to provide GSSAPI/Kerberos authentication, which > already works fine with the backend servers being directly connected by > mail clients. The backend servers are using the PAM driver. > > I could not figure out, how to setup the passdb entry for the director > instance to use PAM (this way enabling GSSAPI/Kerberos) and also giving > back the necessary "proxy=y" to make director proxying the IMAP session. PAM doesn't enable clients to use GSSAPI/Kerberos authentication. The client would still be doing a plaintext user+password authentication. So I don't think using PAM+Kerberos on director is useful for anything. For real Kerberos auth you'd need to use Dovecot's own GSSAPI authentication. But yeah, there's currently no way to return proxy=y from GSSAPI either, because it doesn't use any passdb.. From tss at iki.fi Fri Jun 3 15:27:38 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:27:38 +0300 Subject: [Dovecot] Segmentation fault again In-Reply-To: <4DE0D02C.4060807@jkart.de> References: <4DE0D02C.4060807@jkart.de> Message-ID: <1307104058.10421.568.camel@hurina> On Sat, 2011-05-28 at 12:36 +0200, Jim Knuth wrote: > Hi, > > I have the following report after a cron job again? > > /root/tools/expunge: Zeile 3: 4869 Speicherzugriffsfehler doveadm > expunge -A mailbox Spam savedbefore 5d > /root/tools/expunge: Zeile 5: 4915 Speicherzugriffsfehler doveadm > expunge -A mailbox Papierkorb savedbefore 4d http://hg.dovecot.org/dovecot-2.0/rev/0e1254dcf86b should fix it. From tss at iki.fi Fri Jun 3 15:29:28 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:29:28 +0300 Subject: [Dovecot] dbox single instance storage maintenance In-Reply-To: References: Message-ID: <1307104168.10421.570.camel@hurina> On Tue, 2011-05-31 at 08:53 -0700, Daniel Miller wrote: > Does the "doveadm purge" operation delete unused attachments? With mdbox, yeah. With sdbox they're deleted immediately when the last message pointing to an attachment is expunged. From tss at iki.fi Fri Jun 3 15:34:17 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:34:17 +0300 Subject: [Dovecot] shared folders "invisible" on new setup In-Reply-To: References: Message-ID: <1307104457.10421.573.camel@hurina> On Tue, 2011-05-31 at 15:36 +0200, Torsten Harenberg wrote: > mailserver# doveadm mailbox subscribe -u harenber public.fb8 .. > namespace { > list = children > location = maildir:/var/mail/public:INDEX=~/public > prefix = public. > separator = . > subscriptions = no > type = public > } Looks like doveadm mailbox subscribe ignores the subscriptions=no setting. It's a bit difficult to fix, since all the difficult code is in imap-specific code.. Looks like I need to move it elsewhere, maybe for v2.1.. > But I cannot access this "fb8" folder with any client. Alpine says that the public folder is empty: Try: doveadm acl debug -u harenber public.fb8 From harenberg at physik.uni-wuppertal.de Fri Jun 3 15:37:49 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Fri, 3 Jun 2011 14:37:49 +0200 Subject: [Dovecot] shared folders "invisible" on new setup In-Reply-To: <1307104457.10421.573.camel@hurina> References: <1307104457.10421.573.camel@hurina> Message-ID: <8F70E6B5-2E7F-4A2F-B67C-9F8679E25521@physik.uni-wuppertal.de> Thanks Timo... Am 03.06.2011 um 14:34 schrieb Timo Sirainen: > > doveadm acl debug -u harenber public.fb8 mailserver# doveadm acl debug -u harenber public.fb8 doveadm(harenber): Error: Can't open mailbox public.fb8: Mailbox doesn't exist: fb8 mailserver# Or do I miss here something: mailserver# cd /var/mail/public/fb8/ mailserver# ls -al total 58 drwxrwxrwx 5 root mail 512 May 31 12:03 . drwxrwxrwx 3 root mail 512 May 31 15:27 .. drwxrwxrwx 2 root mail 512 May 31 10:16 cur -rwxrwxrwx 1 root mail 54 May 31 11:46 dovecot-acl -rwxrwxrwx 1 root mail 97 May 31 10:16 dovecot-keywords -rwxrwxrwx 1 root mail 0 May 31 12:01 dovecot-shared -rwxrwxrwx 1 root mail 19228 May 31 10:16 dovecot-uidlist drwxrwxrwx 2 root mail 23040 May 31 10:16 new -rw-r--r-- 1 root mail 5 May 31 12:03 subscriptions drwxrwxrwx 2 root mail 512 May 31 10:16 tmp (Content has been copied with the cyrus2dovecot.pl script). Best regards, Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> From tss at iki.fi Fri Jun 3 15:45:18 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:45:18 +0300 Subject: [Dovecot] shared folders "invisible" on new setup In-Reply-To: <8F70E6B5-2E7F-4A2F-B67C-9F8679E25521@physik.uni-wuppertal.de> References: <1307104457.10421.573.camel@hurina> <8F70E6B5-2E7F-4A2F-B67C-9F8679E25521@physik.uni-wuppertal.de> Message-ID: <1307105118.10421.578.camel@hurina> On Fri, 2011-06-03 at 14:37 +0200, Torsten Harenberg wrote: > mailserver# doveadm acl debug -u harenber public.fb8 > doveadm(harenber): Error: Can't open mailbox public.fb8: Mailbox doesn't exist: fb8 > mailserver# > > Or do I miss here something: > > mailserver# cd /var/mail/public/fb8/ Yeah, either rename this to /var/mail/public/.fb8/ or add :LAYOUT=fs to namespace location. From tss at iki.fi Fri Jun 3 15:54:05 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 15:54:05 +0300 Subject: [Dovecot] solr substring schema.xml In-Reply-To: References: Message-ID: <1307105645.10421.579.camel@hurina> On Sun, 2011-05-29 at 02:09 -0700, Daniel Miller wrote: > I'm trying a modified schema.xml with solr - it appears I now have > substring searches! How large are your indexes compared to mailbox size? From tss at iki.fi Fri Jun 3 16:00:06 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:00:06 +0300 Subject: [Dovecot] Bug: Fixed a duplicate In-Reply-To: <4DE14A0D.6030704@tomsommer.dk> References: <4DE14A0D.6030704@tomsommer.dk> Message-ID: <1307106006.10421.583.camel@hurina> On Sat, 2011-05-28 at 21:16 +0200, Tom Sommer wrote: > I restored a dovecot mailserver today, and when I started the server > again, the logs filled up with "Fixed a duplicate" warnings. > > This in itself it not a problem, the problem is that it appears the fix > is not done correct. You shouldn't have restored an old maildir on top of an existing maildir. That is the main problem. The same mails had different flags (=different filenames), and Dovecot just renamed one of the files to make sure no mails got accidentally lost. In your case it should have just deleted the duplicates, but there's no such feature yet. Dovecot works exactly as intended here. The full explanation is more complex than I want to type right now. From tss at iki.fi Fri Jun 3 16:04:51 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:04:51 +0300 Subject: [Dovecot] unexpected subfolder locaton in Maildir/.INBOX.subfolder In-Reply-To: <20110526235943.GC848@coulmann.de> References: <20110526235943.GC848@coulmann.de> Message-ID: <1307106291.10421.584.camel@hurina> On Fri, 2011-05-27 at 01:59 +0200, wulf wrote: > Maildir/.subfolder already exists > if I connect to imap://user at host/INBOX.subfolder > I get "folder not found" You'd access it as imap://user at host/subfolder. Or alternatively you can create a namespace with INBOX. prefix. http://wiki.dovecot.org/Namespaces From harenberg at physik.uni-wuppertal.de Fri Jun 3 16:04:57 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Fri, 3 Jun 2011 15:04:57 +0200 Subject: [Dovecot] shared folders "invisible" on new setup In-Reply-To: <1307105118.10421.578.camel@hurina> References: <1307104457.10421.573.camel@hurina> <8F70E6B5-2E7F-4A2F-B67C-9F8679E25521@physik.uni-wuppertal.de> <1307105118.10421.578.camel@hurina> Message-ID: <26078C89-CCA6-4AED-A050-53D35EADD57A@physik.uni-wuppertal.de> Am 03.06.2011 um 14:45 schrieb Timo Sirainen: > Yeah, either rename this to /var/mail/public/.fb8/ or add :LAYOUT=fs to > namespace location. Ahh.. that worked :) Thanks a lot!!! I think I wouldn't have found it. Best regards, Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> From sf.rique at gmail.com Fri Jun 3 16:09:11 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Fri, 3 Jun 2011 10:09:11 -0300 Subject: [Dovecot] Squat Question! In-Reply-To: <1307103300.10421.563.camel@hurina> References: <1307103300.10421.563.camel@hurina> Message-ID: If i don't what happen? []'sf.rique On Fri, Jun 3, 2011 at 9:15 AM, Timo Sirainen wrote: > On Wed, 2011-06-01 at 10:43 -0300, Henrique Fernandes wrote: > > Hello folks, > > > > I use dovecot squat for indexing. > > > > I use to have > > > > fts_squat = partial=4 full=4 > > > > But i change to > > fts_squat = partial=4 full=8 > > > > My question is, do i need to delete older indexes to have it consistenly, > or > > dovecot is able "update" the indexes or it sees that it is broken and > > rebuild it all? > > You need to delete squat indexes first. > > > From tss at iki.fi Fri Jun 3 16:10:52 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:10:52 +0300 Subject: [Dovecot] v2.0.13 released In-Reply-To: References: Message-ID: <1307106652.10421.588.camel@hurina> On Sun, 2011-05-29 at 23:39 -0400, Sean Donelan wrote: > After configure and compiling dovecot-2.0.13, running "make check" fails > on a few tests on sparc/solaris > > net_is_in_network(11) ................................................ : FAILED > net_is_in_network(12) ................................................ : FAILED > The failing tests are for > { "255.255.255.255", "128.0.0.0", 1, TRUE }, > { "255.255.255.255", "127.0.0.0", 1, FALSE } I can't reproduce this. Both 32bit and 64bit works. SunOS shodan 5.10 Generic_144488-07 sun4u sparc SUNW,Sun-Fire-V240 gcc version 3.4.3 (csl-sol210-3_4-branch+sol_rpath) From tss at iki.fi Fri Jun 3 16:12:38 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:12:38 +0300 Subject: [Dovecot] Squat Question! In-Reply-To: References: <1307103300.10421.563.camel@hurina> Message-ID: <1307106758.10421.590.camel@hurina> I'm guessing that it can't find old mails because when you search e.g. "abcde" it thinks it should exist there, but it doesn't since previously you had limited it to 4 chars. On Fri, 2011-06-03 at 10:09 -0300, Henrique Fernandes wrote: > If i don't what happen? > > []'sf.rique > > > On Fri, Jun 3, 2011 at 9:15 AM, Timo Sirainen wrote: > > > On Wed, 2011-06-01 at 10:43 -0300, Henrique Fernandes wrote: > > > Hello folks, > > > > > > I use dovecot squat for indexing. > > > > > > I use to have > > > > > > fts_squat = partial=4 full=4 > > > > > > But i change to > > > fts_squat = partial=4 full=8 > > > > > > My question is, do i need to delete older indexes to have it consistenly, > > or > > > dovecot is able "update" the indexes or it sees that it is broken and > > > rebuild it all? > > > > You need to delete squat indexes first. > > > > > > From duane at duanemail.org Fri Jun 3 16:16:35 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 3 Jun 2011 08:16:35 -0500 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE8A3D1.5030806@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> <4DE8A3D1.5030806@mejor.pl> Message-ID: <932029863.20110603081635@duanemail.org> Hello Marcin, Friday, June 3, 2011, 4:05:21 AM, you wrote: > Marcus, Duane, thanks for replies! > I'll answer in one mail. > In your config (Duane) quota is defined as 'dict:user::proxy::quota' it > needs dictionary to be configured ( > http://wiki2.dovecot.org/Quota/Dict > ) if i understood correctly. > In config snip from Marcus i can't find definition of "quota", what kind > of backend are you using? maildir? > Regards! Sorry. I'm using maildir. And I do have dict set up: ... dict { quota = mysql:/usr/local/etc/dovecot/dovecot-dict-sql.conf.ext } ... service dict { unix_listener dict { group = mail mode = 0600 user = vmail } } ... -- Best regards, Duane mailto:duane at duanemail.org From marcin at mejor.pl Fri Jun 3 16:17:27 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Fri, 03 Jun 2011 15:17:27 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <1307101882.10421.546.camel@hurina> References: <4DE7A2AB.9090607@mejor.pl> <1307101882.10421.546.camel@hurina> Message-ID: <4DE8DEE7.8060608@mejor.pl> W dniu 03.06.2011 13:51, Timo Sirainen pisze: Helo Timo! > You can't define your own SQL queries for dict quota. Besides being able > to do such query, there's the problem that when recalculating quota it's > done by deleting a row and inserting it back. You wouldn't want to do > that for your users table. Yes...:) I don't know internals in dovecot, mayby it will be nonsensical what i'll say. Could it be better to set NULL instead delete of row? Or let user can define own queries e.g.: DICT_QUOTA_DEL= ... DICT_QUOTA_INSERT= DICT_QUOTA_OTHER_ACTIONS= and do byself all internals proper for database (create trigger or do something else). > Making this work some other way could be > tricky with PostgreSQL. It's quite an ugly trigger already, because > there's no easy "ON DUPLICATE KEY UPDATE .." feature in PostgreSQL as > there is for MySQL. Meseems only Mysql (from popular db) has such "feature":) Regards! From tss at iki.fi Fri Jun 3 16:40:22 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:40:22 +0300 Subject: [Dovecot] This is appear a fts bug In-Reply-To: References: Message-ID: <1307108422.10421.595.camel@hurina> On Fri, 2011-05-27 at 10:44 +0200, Antonio Perez-Aranda wrote: > I have checked this on dovecot 2.0.9 and 2.0.13 with fts-solr without patching. > > If you execute the follow IMAP script, then the imap process die by > and a "assert" > > . select "inbox." This is the first bug. It shouldn't have succeeded. Fixed now in hg. But another way to trigger this bug is to have e.g. a public namespace with "Public." prefix. If you now select "Public" it still crashes here: > When the log in dovecot says: > (fts_backend_solr_init): assertion failed: (*box_name != '\0') I wonder if this works correctly simply by removing the assert check.. I'd guess Solr can compare empty strings just as well as non-empty strings? From tss at iki.fi Fri Jun 3 16:47:54 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:47:54 +0300 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE8DEE7.8060608@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> <1307101882.10421.546.camel@hurina> <4DE8DEE7.8060608@mejor.pl> Message-ID: <1307108874.10421.601.camel@hurina> On Fri, 2011-06-03 at 15:17 +0200, Marcin Miros?aw wrote: > W dniu 03.06.2011 13:51, Timo Sirainen pisze: > Helo Timo! > > You can't define your own SQL queries for dict quota. Besides being able > > to do such query, there's the problem that when recalculating quota it's > > done by deleting a row and inserting it back. You wouldn't want to do > > that for your users table. > Yes...:) > I don't know internals in dovecot, mayby it will be nonsensical what > i'll say. Could it be better to set NULL instead delete of row? The problem is that updates don't work then: mails=> insert into foo values (null); mails=> update foo set bar=bar+1; UPDATE 1 mails=> select * from foo; bar ----- (1 row) The whole problem is how to atomically increase/decrease a value in SQL, when the row may or may not exist. Of course it could be assumed that the row always exists and this would become a lot simpler. Hmm. That would basically require a whole new dict backend that used different SQL queries. > Or let user can define own queries e.g.: > DICT_QUOTA_DEL= ... > DICT_QUOTA_INSERT= > DICT_QUOTA_OTHER_ACTIONS= It's not that simple. From tss at iki.fi Fri Jun 3 16:51:06 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 16:51:06 +0300 Subject: [Dovecot] Error: file_dotlock_create failed: Permission denied In-Reply-To: <37522.151.25.103.156.1306324170.squirrel@nexaima.net> References: <37522.151.25.103.156.1306324170.squirrel@nexaima.net> Message-ID: <1307109066.10421.602.camel@hurina> On Wed, 2011-05-25 at 13:49 +0200, M. Fioretti wrote: > May 25 13:36:06 polaris dovecot: imap(marco): Error: > file_dotlock_open(/home/z/email/marco/dovecot.index.log) failed: > Permission denied (euid=500(marco) egid=500(marco) missing +w perm: > /home/z/email/marco, euid is not dir owner) /home/z/email/marco isn't owned by marco? Alternatively you have SELinux enabled, which is preventing this. From sf.rique at gmail.com Fri Jun 3 16:44:37 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Fri, 3 Jun 2011 10:44:37 -0300 Subject: [Dovecot] Squat Question! In-Reply-To: <1307106758.10421.590.camel@hurina> References: <1307103300.10421.563.camel@hurina> <1307106758.10421.590.camel@hurina> Message-ID: Ohh.. ok, i already got back to the original, I was just worried to see if it would break anything! Thanks []'sf.rique On Fri, Jun 3, 2011 at 10:12 AM, Timo Sirainen wrote: > I'm guessing that it can't find old mails because when you search e.g. > "abcde" it thinks it should exist there, but it doesn't since previously > you had limited it to 4 chars. > > On Fri, 2011-06-03 at 10:09 -0300, Henrique Fernandes wrote: > > If i don't what happen? > > > > []'sf.rique > > > > > > On Fri, Jun 3, 2011 at 9:15 AM, Timo Sirainen wrote: > > > > > On Wed, 2011-06-01 at 10:43 -0300, Henrique Fernandes wrote: > > > > Hello folks, > > > > > > > > I use dovecot squat for indexing. > > > > > > > > I use to have > > > > > > > > fts_squat = partial=4 full=4 > > > > > > > > But i change to > > > > fts_squat = partial=4 full=8 > > > > > > > > My question is, do i need to delete older indexes to have it > consistenly, > > > or > > > > dovecot is able "update" the indexes or it sees that it is broken and > > > > rebuild it all? > > > > > > You need to delete squat indexes first. > > > > > > > > > > > > From tss at iki.fi Fri Jun 3 17:25:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:25:33 +0300 Subject: [Dovecot] dsync: Invalid mailbox first_recent_uid In-Reply-To: <4DDF43F7.8020707@vitalwerks.com> References: <4DDF43F7.8020707@vitalwerks.com> Message-ID: <1307111133.10421.604.camel@hurina> On Thu, 2011-05-26 at 23:25 -0700, David Jonas wrote: > > dsync-local(djonas at vitalwerks.com): Error: Invalid mailbox input from > worker server: Invalid mailbox first_recent_uid > > The local uid is 8989 and the remote uid is 89. I added "first_valid_uid > = 89" to the local conf but to no avail. Local version is 2.0.12, remote > is 2.0.1. That's actually the problem. They talk slightly different protocols.. I guess I should have added a version number to the protocol. Although even then you would have only gotten "protocol version mismatch" error. You could simply copy v2.0.12's dsync to the remote server and it should work fine, as long as you're not using any plugins. From tss at iki.fi Fri Jun 3 17:27:34 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:27:34 +0300 Subject: [Dovecot] doveadm segfault In-Reply-To: References: Message-ID: <1307111254.10421.605.camel@hurina> On Thu, 2011-05-26 at 08:46 -0500, Joan Moreau wrote: > > Hi, > > Using HG latest version, I get the following in the dmesg : > > > [38041.387112] doveadm[20515]: segfault at 8 ip 000000000040f51d sp > 00007fffb774c010 error 4 in doveadm[400000+2a000] > [38041.397966] I guess you're calling doveadm somewhere. Maybe in a cronjob? Maybe it's the same bug I fixed today: http://hg.dovecot.org/dovecot-2.0/rev/0e1254dcf86b From tss at iki.fi Fri Jun 3 17:29:49 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:29:49 +0300 Subject: [Dovecot] passdb: password contains illegal chars question In-Reply-To: <201105261121.12894.tkrah@fachschaft.imn.htwk-leipzig.de> References: <201105261121.12894.tkrah@fachschaft.imn.htwk-leipzig.de> Message-ID: <1307111389.10421.607.camel@hurina> On Thu, 2011-05-26 at 11:21 +0200, Torsten Krah wrote: > Hi, > > some question about passdb backend: > > I'll receive this (using dovecot 2.0.13, pgsql passdb backend) for some users: > > mail dovecot: auth: passdb(account-username,127.0.0.1): Attempted login with > password having illegal chars > > Password schema ist crypt-md5. > So what "chars" does dovecot not like (why?) and whats the preferred way to fix > this? There are very few illegal characters for password. They're all control characters, so no real user should be using them: \001, TAB, CR and LF. From tss at iki.fi Fri Jun 3 17:39:29 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:39:29 +0300 Subject: [Dovecot] New IPC features : any configuration doc ? In-Reply-To: <443189154fbbbd1add631a3c1173528a@grosjo.net> References: <94c726cbd87ddd67a42c1cf30d3d42aa@grosjo.net> <669AFB3A-2CAE-4D00-AA55-36361EF871A3@iki.fi> <443189154fbbbd1add631a3c1173528a@grosjo.net> Message-ID: <1307111969.10421.609.camel@hurina> On Tue, 2011-05-24 at 16:38 -0500, Joan Moreau wrote: > That shall appear in the doc somewhere, as "default_login_user" is > not a mandatory field, or you shall make this field mandatory I thought it practically was mandatory already.. I guess you managed to get around it. :) In next version it's explicitly required: doveconf: Fatal: Error in configuration file /usr/local/etc/dovecot/dovecot.conf: default_login_user doesn't exist: foobar Same for default_internal_user. From tss at iki.fi Fri Jun 3 17:42:24 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:42:24 +0300 Subject: [Dovecot] Dovecot 1.2 with MySQL limit Trash folder In-Reply-To: References: Message-ID: <1307112144.10421.611.camel@hurina> On Tue, 2011-05-24 at 20:29 +0200, Damien Robinet wrote: > Hi All, > > I need your help to limit the size of the Trash folder. > I want to exclude the Trash folder in my user quota. But I do not want > the Trash folder can not exceed 10M for example. > I can manage to exclude the size of the Trash folder. But I can not > limit the size of the folder. > > On my test, I've bytes=512000 for the Trash folder. > But the user can move more that 512000B on the Trash folder ... Dovecot doesn't support per-folder quotas. This bytes=512000 means that you're giving the user 512000 bytes on top of the actual quota. That's why it's in newer versions actually called "bytes=+512000" to make it clearer. From tss at iki.fi Fri Jun 3 17:46:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 17:46:33 +0300 Subject: [Dovecot] slow squat fts index creation In-Reply-To: <89758552-27E7-4A1F-9705-22506AE812D2@in.ter.net> References: <89758552-27E7-4A1F-9705-22506AE812D2@in.ter.net> Message-ID: <1307112393.10421.615.camel@hurina> On Tue, 2011-05-24 at 17:01 +0200, Cor Bosman wrote: > Hi all, ive been playing with squat indexes. Up to about 300.000 emails in a single mailbox this was working flawlessly. The search index file is about 500MB at that time. Ive now added some more emails, and at 450.000 or so emails im seeing a serious problem with squat index creation. It takes...f o r e v e r . The .tmp file is being so slowly, it will probably take 2-3 hours to create. Upto this point it took maybe a minute. > > Im doing this in an openvz container, so theoretically i may be hitting some openvz resource limit. But ive upped all the limits and dont see any improvements. I dont see any resources starvation either. > > Could there be some dovecot issue when the search index reaches say 1GB? (im estimating that it's now trying to save about 1GB search index). Initially squat just builds a large unorganized index. The last step is the organization. This is the main problem with Squat's indexing speed. The file is mmaped() and the accessed in pretty random order. As long as you have enough memory to keep all of this mmaped data in physical memory this works pretty fast, but otherwise the kernel starts page faulting like crazy and it takes forever. That's why the Squat has this code: /* Tell the kernel we're going to use the uidlist data, so it loads it into memory and keeps it there. */ (void)madvise(uidlist->mmap_base, uidlist->mmap_size, MADV_WILLNEED); /* It also speeds up a bit for us to sequentially load everything into memory, although at least Linux catches up quite fast even without this code. Compiler can quite easily optimize away this entire for loop, but volatile seems to help with gcc 4.2. */ for (i = 0; i < uidlist->mmap_size; i += page_size) ((const volatile char *)uidlist->data)[i]; From ecasarero at gmail.com Fri Jun 3 17:53:16 2011 From: ecasarero at gmail.com (Eduardo Casarero) Date: Fri, 3 Jun 2011 11:53:16 -0300 Subject: [Dovecot] Problems in auth when switching from PLAIN-MD5 In-Reply-To: <1307102333.10421.552.camel@hurina> References: <1307102333.10421.552.camel@hurina> Message-ID: 2011/6/3 Timo Sirainen > On Thu, 2011-06-02 at 17:41 -0300, Eduardo Casarero wrote: > > Hi, i am running dovecot 2.0.11 (with mysql backend) and until now using > > PLAIN-MD5 as pass default_pass_scheme everything was working fine. > However i > > wanted to change the pass_scheme to something stronger than plain-md5, so > i > > started by reading the wiki. > > > > I found this: http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes > > > > But when i comment out "default_pass_scheme" and > > You don't need to comment it out. Although I guess then the default is > still PLAIN-MD5. > > > i create the pass with the > > {SHA256.hex} prefix i see this in the logs: > > > > auth: Error: sql(xxx at xxxxxx.com,10.21.1.1): Password in passdb is not in > > expected scheme SHA256.hex > > Show an example of a stored password? > > > i tried with '{SSHA256.hex}acb600a04d0816cd3242a5489e3ac39b4f9f7c9dedacbd754f93c769ac4829e1db7fae58' (generated with the php script from the wiki) and i also tried with: doveadm pw -s SHA -u user at domain.com {SHA}kLF2K2vi+AxTEJ7kOZqXbjNnYhE= With both examples i got the error "Password in passdb is not in expected scheme", the select query is a simple select. Thanks again! From ifoutch at webley.com Fri Jun 3 18:56:48 2011 From: ifoutch at webley.com (Ian Foutch) Date: Fri, 3 Jun 2011 10:56:48 -0500 Subject: [Dovecot] Running a dovecot cluster with mixed versions? Message-ID: <4D658C20-C29E-45FE-A180-AFA721F625F4@webley.com> I have been trying to find information and possible issues with running a cluster of dovecot server with different versions without any luck. We have an existing cluster with dovecot v1.1.10 and tried migrating to a new cluster with dovecot v2.0.12. We ran into some issues when we moved traffic to the new cluster and have been unable to reproduce it in our own testing. We may need to put real usage on the new servers but would like to be able to do this by adding newer servers into the existing cluster. What are the potential issues with doing this? Thanks, --Ian This message and any attachments to it are intended only for the addressee(s) identified above and may contain CONFIDENTIAL information. It is not intended for transmission to, or receipt by, any unauthorized persons. If you are not an intended recipient or an agent responsible for delivering it to an intended recipient, you have received this e-mail in error and any dissemination, distribution, or copying of this message or any attachment to it is strictly prohibited. If you have received this email in error, please (i) do not read it, (ii) reply to the sender that you received the message in error, and (iii) erase or destroy the message from your system. From tss at iki.fi Fri Jun 3 19:02:35 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 19:02:35 +0300 Subject: [Dovecot] Problems in auth when switching from PLAIN-MD5 In-Reply-To: References: <1307102333.10421.552.camel@hurina> Message-ID: <1307116955.10421.617.camel@hurina> On Fri, 2011-06-03 at 11:53 -0300, Eduardo Casarero wrote: > i tried with > '{SSHA256.hex}acb600a04d0816cd3242a5489e3ac39b4f9f7c9dedacbd754f93c769ac4829e1db7fae58' > (generated with the php script from the wiki) and i also tried with: > > doveadm pw -s SHA -u user at domain.com > > {SHA}kLF2K2vi+AxTEJ7kOZqXbjNnYhE= > > With both examples i got the error "Password in passdb is not in expected > scheme", the select query is a simple select. I don't see any reason why those wouldn't work. Set auth_debug_passwords=yes and show the logs when trying to log in? From tss at iki.fi Fri Jun 3 19:08:04 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 03 Jun 2011 19:08:04 +0300 Subject: [Dovecot] Running a dovecot cluster with mixed versions? In-Reply-To: <4D658C20-C29E-45FE-A180-AFA721F625F4@webley.com> References: <4D658C20-C29E-45FE-A180-AFA721F625F4@webley.com> Message-ID: <1307117284.10421.622.camel@hurina> On Fri, 2011-06-03 at 10:56 -0500, Ian Foutch wrote: > I have been trying to find information and possible issues with > running a cluster of dovecot server with different versions without > any luck. > > We have an existing cluster with dovecot v1.1.10 and tried migrating > to a new cluster with dovecot v2.0.12. We ran into some issues when > we moved traffic to the new cluster and have been unable to reproduce > it in our own testing. We may need to put real usage on the new > servers but would like to be able to do this by adding newer servers > into the existing cluster. > > What are the potential issues with doing this? Are they sharing mail files? It's similar to upgrading/downgrading then: v2.0 can read index files created by v1.1, but once v2.0 has done changes it's not a good idea for v1.1 to try to read the indexes anymore. Another possibility would have been to do this more gradually: First upgrade to v1.2.17. There are no problems with v1.1.10 reading its index files. After this upgrade to v2.0. v1.2.17 has no problems reading v2.0's index files. From grenouille at c-base.org Fri Jun 3 19:21:01 2011 From: grenouille at c-base.org (wulf) Date: Fri, 3 Jun 2011 18:21:01 +0200 Subject: [Dovecot] unexpected subfolder locaton in Maildir/.INBOX.subfolder In-Reply-To: <1307106291.10421.584.camel@hurina> References: <20110526235943.GC848@coulmann.de> <1307106291.10421.584.camel@hurina> Message-ID: <20110603162058.GL17706@coulmann.de> Hi Timo, thanks for response. On Fri, Jun 03, 2011 at 04:04:51PM +0300, Timo Sirainen wrote: > You'd access it as imap://user at host/subfolder. that was clear, but I want to make sure clients don't need reconfiguration after migration. > Or alternatively you can create a namespace with INBOX. prefix. > http://wiki.dovecot.org/Namespaces I don't know the namespace concept before. That's the hint I'm looking for. And there is special a paragraph about my case: Backwards Compatibility: Courier IMAP You can continue using the same INBOX. namespace as Courier: ... Best Wulf++ From gouravjoshi at gmail.com Fri Jun 3 20:27:35 2011 From: gouravjoshi at gmail.com (=?UTF-8?B?4KSX4KWM4KSw4KS1IOCknOCli+CktuClgA==?=) Date: Fri, 3 Jun 2011 22:57:35 +0530 Subject: [Dovecot] Using Dovecot new version 2.0.13 facing issues. Message-ID: Hi, I have configured POP-IMAP server with dovecot 2.0.13 with mysql support. When I am running load test on the same I face issue on IMAP connections. I get "dovecot: imap-login: Error: fd_send(imap, 15) failed: Interrupted system call" followed by "dovecot: imap-login: Internal login failure" in log files. Below is my dovecot -n output; ========================================================= # 2.0.13: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 2.6.18-238.el5 x86_64 CentOS release 5.6 (Final) auth_socket_path = /usr/local/var/run/dovecot/auth-userdb auth_verbose = yes disable_plaintext_auth = no first_valid_gid = 99 first_valid_uid = 99 listen = * mail_fsync = always mail_location = maildir:~/Maildir:INDEX=/indexes/%h:CONTROL=/indexes/%h mail_nfs_index = yes mail_nfs_storage = yes mmap_disable = yes passdb { args = /usr/local/etc/dovecot/dovecot-mysql.conf driver = sql } protocols = imap pop3 service auth { unix_listener auth-userdb { group = nobody mode = 0600 user = nobody } } ssl = no syslog_facility = local1 userdb { args = /usr/local/etc/dovecot/dovecot-mysql.conf driver = sql } protocol imap { mail_max_userip_connections = 1500 } protocol pop3 { mail_max_userip_connections = 800 pop3_client_workarounds = outlook-no-nuls pop3_lock_session = yes pop3_no_flag_updates = yes pop3_uidl_format = %08Xu%08Xv } ========================================================= Please help I want to move this server in live environment. Have a nice time, Gourav Joshi Have a look at www.linuxquestions.in From dmiller at amfes.com Fri Jun 3 20:40:45 2011 From: dmiller at amfes.com (Daniel Miller) Date: Fri, 03 Jun 2011 10:40:45 -0700 Subject: [Dovecot] solr substring schema.xml In-Reply-To: <1307105645.10421.579.camel@hurina> References: <4DE20D49.5040507@amfes.com> <1307105645.10421.579.camel@hurina> Message-ID: On 6/3/2011 5:54 AM, Timo Sirainen wrote: > On Sun, 2011-05-29 at 02:09 -0700, Daniel Miller wrote: > >> I'm trying a modified schema.xml with solr - it appears I now have >> substring searches! > How large are your indexes compared to mailbox size? > du -c -b /var/mail/domain = 4913315733 du -c -b /var/mail/attachments = 29672490629 du -c -b /var/mail/solr = 12809981456 at the moment, I have an hourly cronjob - doveadm search -A text zyxabcxyz > /dev/null java -Ddata=args -jar /raid/mail/solr/exampledocs/post.jar \ '' > /dev/null java -Ddata=args -jar /raid/mail/solr/exampledocs/post.jar \ '' > /dev/null -- Daniel L. Miller, VP - Engineering, SET AM Fire & Electronic Services, Inc. [AMFES] dmiller at amfes.com 702-312-5276 From jk at jkart.de Fri Jun 3 21:58:39 2011 From: jk at jkart.de (Jim Knuth) Date: Fri, 03 Jun 2011 20:58:39 +0200 Subject: [Dovecot] Segmentation fault again In-Reply-To: <1307104058.10421.568.camel@hurina> References: <4DE0D02C.4060807@jkart.de> <1307104058.10421.568.camel@hurina> Message-ID: <4DE92EDF.6090105@jkart.de> am 03.06.11 14:27 schrieb Timo Sirainen : > On Sat, 2011-05-28 at 12:36 +0200, Jim Knuth wrote: >> Hi, >> >> I have the following report after a cron job again? >> >> /root/tools/expunge: Zeile 3: 4869 Speicherzugriffsfehler doveadm >> expunge -A mailbox Spam savedbefore 5d >> /root/tools/expunge: Zeile 5: 4915 Speicherzugriffsfehler doveadm >> expunge -A mailbox Papierkorb savedbefore 4d > > http://hg.dovecot.org/dovecot-2.0/rev/0e1254dcf86b should fix it. > > thank you. It`s right. -- Mit freundlichen Gr??en, with kind regards, Jim Knuth --------- Der Pessimist ist jemand, der vorzeitig die Wahrheit erz?hlt. (Cyrano de Bergerac) From jinfengming at gmail.com Sat Jun 4 04:51:56 2011 From: jinfengming at gmail.com (Jin FengMing) Date: Sat, 04 Jun 2011 09:51:56 +0800 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error Message-ID: <4DE98FBC.203@gmail.com> Hi all, I'm not so sure it is about to dovecot, but any thoughts will be appreciated. I have an email account configured as IMAP(dovecot-1.2.10) via outlook 2010. If I'm creating a *new* mailbox folder, for example "ttt", and *copying* a mail into *that* mailbox folder, then an error message window will be displayed. The problem caused by C:UID FETCH 0 (UID FLAGS RFC822.SIZE BODY.PEEK[HEADER] INTERNALDATE) S:3mgc BAD Error in IMAP command UID FETCH: Invalid uidset The dovecot's rawlog 20100101-060322-5491.in: 54nc IDLE DONE uh4m SELECT "INBOX.ttt" 37ax IDLE DONE 5dtr FETCH 1 (UID) 3mgc UID FETCH 0 (UID FLAGS RFC822.SIZE BODY.PEEK[HEADER] INTERNALDATE) 28kc IDLE DONE msxw CLOSE tuis IDLE DONE a6rl SELECT "INBOX.ttt" 59oj FETCH 1 (UID) k26b UID FETCH 1 (UID FLAGS) z8su IDLE DONE 20100101-060322-5491.out: * OK [RAWLOG TIMESTAMP] 2010-01-01 06:03:22 7u95 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT IDLE CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS] Logged in + idling 54nc OK Idle completed. * FLAGS (\Answered \Flagged \Deleted \Seen \Draft) * OK [PERMANENTFLAGS (\Answered \Flagged \Deleted \Seen \Draft \*)] Flags permitted. * 0 EXISTS * 0 RECENT * OK [UIDVALIDITY 1262323866] UIDs valid * OK [UIDNEXT 1] Predicted next UID * OK [NOMODSEQ] No permanent modsequences uh4m OK [READ-WRITE] Select completed. + idling * 1 EXISTS 37ax OK Idle completed. * 1 FETCH (UID 1) 5dtr OK Fetch completed. 3mgc BAD Error in IMAP command UID FETCH: Invalid uidset + idling 28kc OK Idle completed. msxw OK Close completed. + idling tuis OK Idle completed. * FLAGS (\Answered \Flagged \Deleted \Seen \Draft) * OK [PERMANENTFLAGS (\Answered \Flagged \Deleted \Seen \Draft \*)] Flags permitted. * 1 EXISTS * 0 RECENT * OK [UIDVALIDITY 1262323866] UIDs valid * OK [UIDNEXT 2] Predicted next UID * OK [NOMODSEQ] No permanent modsequences a6rl OK [READ-WRITE] Select completed. * 1 FETCH (UID 1) 59oj OK Fetch completed. * 1 FETCH (UID 1 FLAGS (\Seen)) k26b OK Fetch completed. + idling z8su OK Idle completed. From djonas at vitalwerks.com Sat Jun 4 04:58:23 2011 From: djonas at vitalwerks.com (David Jonas) Date: Fri, 03 Jun 2011 18:58:23 -0700 Subject: [Dovecot] dsync: Invalid mailbox first_recent_uid In-Reply-To: <1307111133.10421.604.camel@hurina> References: <4DDF43F7.8020707@vitalwerks.com> <1307111133.10421.604.camel@hurina> Message-ID: <4DE9913F.5060900@vitalwerks.com> On 6/3/11 7:25 AM, Timo Sirainen wrote: > On Thu, 2011-05-26 at 23:25 -0700, David Jonas wrote: >> dsync-local(djonas at vitalwerks.com): Error: Invalid mailbox input from >> worker server: Invalid mailbox first_recent_uid >> >> The local uid is 8989 and the remote uid is 89. I added "first_valid_uid >> = 89" to the local conf but to no avail. Local version is 2.0.12, remote >> is 2.0.1. > That's actually the problem. They talk slightly different protocols.. I > guess I should have added a version number to the protocol. Although > even then you would have only gotten "protocol version mismatch" error. I had no idea that would be an issue. A protocol version mismatch error actually would have helped me figure it out without bugging you on the list. I upgraded the remote server to 2.0.12 and had no problems with the sync. > You could simply copy v2.0.12's dsync to the remote server and it should > work fine, as long as you're not using any plugins. Thanks! From maciej.uhlig at us.edu.pl Sat Jun 4 13:11:07 2011 From: maciej.uhlig at us.edu.pl (Maciej Uhlig) Date: Sat, 04 Jun 2011 12:11:07 +0200 Subject: [Dovecot] sieve script tracing Message-ID: <4DEA04BB.2040405@us.edu.pl> Could it be possible to trace Sieve script using method other than "enotify", i.e. to write a message to syslog using some action? MU From CMarcus at Media-Brokers.com Sat Jun 4 15:35:53 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Sat, 04 Jun 2011 08:35:53 -0400 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error In-Reply-To: <4DE98FBC.203@gmail.com> References: <4DE98FBC.203@gmail.com> Message-ID: <4DEA26A9.5030809@Media-Brokers.com> On 2011-06-03 9:51 PM, Jin FengMing wrote: > Hi all, I'm not so sure it is about to dovecot, but any thoughts will > be appreciated. > I have an email account configured as IMAP(dovecot-1.2.10) via outlook > 2010. If I'm creating a *new* mailbox folder, for example "ttt", and > *copying* a mail into *that* mailbox folder, then an error message > window will be displayed. It is customary before reporting a problem to upgrade to the latest version to see if it is already fixed - especially when testing with a considerably outdated version... Current versions are: 1.2.17 (of the 1.2 branch) and 2.0.13 (current stable branch)... Output of dovecot -n is also recommended (so we don't have to guess about your config settings)... -- Best regards, Charles From jinfengming at gmail.com Sat Jun 4 16:03:47 2011 From: jinfengming at gmail.com (Jin FengMing) Date: Sat, 04 Jun 2011 21:03:47 +0800 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error In-Reply-To: <4DEA26A9.5030809@Media-Brokers.com> References: <4DE98FBC.203@gmail.com> <4DEA26A9.5030809@Media-Brokers.com> Message-ID: <4DEA2D33.4030309@gmail.com> On 6/4/2011 20:35, Charles Marcus wrote: > On 2011-06-03 9:51 PM, Jin FengMing wrote: >> Hi all, I'm not so sure it is about to dovecot, but any thoughts will >> be appreciated. >> I have an email account configured as IMAP(dovecot-1.2.10) via outlook >> 2010. If I'm creating a *new* mailbox folder, for example "ttt", and >> *copying* a mail into *that* mailbox folder, then an error message >> window will be displayed. > It is customary before reporting a problem to upgrade to the latest > version to see if it is already fixed - especially when testing with a > considerably outdated version... Sorry about that the missing information: I have tried 1.2.11 ~ 1.2.17, but sadly not help out. > > Current versions are: 1.2.17 (of the 1.2 branch) and 2.0.13 (current > stable branch)... Will try to 2.0.13... > Output of dovecot -n is also recommended (so we don't have to guess > about your config settings)... > here it is: # 1.2.10: /usr/local/etc/dovecot.conf # OS: Linux 2.6.38-8-generic i686 Ubuntu 11.04 listen: *:143 ssl: no disable_plaintext_auth: no login_dir: /usr/local/var/run/dovecot/login login_executable: /usr/local/libexec/dovecot/imap-login login_process_per_connection: no login_max_processes_count: 1 login_max_connections: 24 max_mail_processes: 24 verbose_proctitle: yes mail_location: maildir:~/Maildir:INDEX=MEMORY mail_debug: yes imap_capability: IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT IDLE CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS auth default: mechanisms: plain login passdb: driver: passwd-file args: scheme=plain username_format=%u /usr/local/etc/imap.passwd userdb: driver: static args: uid=jinfm gid=jinfm home=/home/jinfm/vmail/%u socket: type: listen From johnw.mail at gmail.com Sat Jun 4 16:48:31 2011 From: johnw.mail at gmail.com (johnw) Date: Sat, 04 Jun 2011 21:48:31 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot Message-ID: <4DEA37AF.4040202@gmail.com> i want to chroot lmtp with sieve, but have some problem, look like lmtp can not load sieve's lib or something. the error message like this: dovecot: lmtp(12799): Fatal: opendir(/usr/local/lib/dovecot) failed: No such file or directory all is work fine, when not config lmtp chroot. can i config lmtp load sieve before chroot? please help, and thank you. From dovecot at killfile.de Sat Jun 4 22:05:19 2011 From: dovecot at killfile.de (Marcus Jodorf) Date: Sat, 4 Jun 2011 21:05:19 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <4DE8A3D1.5030806@mejor.pl> References: <4DE7A2AB.9090607@mejor.pl> <235720313.20110602114010@duanemail.org> <6C507B01-DE9A-4730-BF31-4371F9539791@killfile.de> <4DE8A3D1.5030806@mejor.pl> Message-ID: Marcin Miros?aw wrote: > In config snip from Marcus i can't find definition of "quota", what kind > of backend are you using? maildir? Sorry forgot that. I just use maildir quota. plugin { quota = maildir:User Quota } Timo already wrote about the problem with dict-quota and postgres. Best regards, Marcus From marcin at mejor.pl Sun Jun 5 11:31:53 2011 From: marcin at mejor.pl (=?ISO-8859-2?Q?Marcin_Miros=B3aw?=) Date: Sun, 05 Jun 2011 10:31:53 +0200 Subject: [Dovecot] Custom sql query for keeping quota with dict-sql In-Reply-To: <1307108874.10421.601.camel@hurina> References: <4DE7A2AB.9090607@mejor.pl> <1307101882.10421.546.camel@hurina> <4DE8DEE7.8060608@mejor.pl> <1307108874.10421.601.camel@hurina> Message-ID: <4DEB3EF9.80505@mejor.pl> W dniu 2011-06-03 15:47, Timo Sirainen pisze: > On Fri, 2011-06-03 at 15:17 +0200, Marcin Miros?aw wrote: >> DICT_QUOTA_DEL= ... >> DICT_QUOTA_INSERT= >> DICT_QUOTA_OTHER_ACTIONS= > > It's not that simple. If it would be simple, probably it would be done;) Thanks Timo, Duane, Marcus for all replies. Regards, Marcin From stephan at rename-it.nl Sun Jun 5 12:37:32 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Sun, 05 Jun 2011 11:37:32 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEA04BB.2040405@us.edu.pl> References: <4DEA04BB.2040405@us.edu.pl> Message-ID: <4DEB4E5C.20407@rename-it.nl> On 06/04/2011 12:11 PM, Maciej Uhlig wrote: > Could it be possible to trace Sieve script using method other than > "enotify", i.e. to write a message to syslog using some action? > Not currently. There is a vnd.dovecot.debug extension, but that is only available for the command line tools and not for the actual LDA plugin. What is your application? Regards, Stephan. From ivan.rodrigues at gmail.com Sun Jun 5 19:08:00 2011 From: ivan.rodrigues at gmail.com (Ivan Rodrigues) Date: Sun, 5 Jun 2011 13:08:00 -0300 Subject: [Dovecot] Help with Trash setup Message-ID: Folks, I'm trying to setup a mail server just to store my mail, i use fetchmail to retrieve my messages and I want to configure the trash can, can you guys please help me with this mater? Dovecot Version: 1.2.9 No SQL nor LDAP installed dovecot -n # 1.2.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-24-generic-pae i686 Ubuntu 10.04.2 LTS log_timestamp: %Y-%m-%d %H:%M:%S login_dir: /var/run/dovecot/login login_executable: /usr/lib/dovecot/imap-login mail_privileged_group: mail mail_location: maildir:~/Maildir mbox_write_locks: fcntl dotlock mail_plugins: delete_to_trash auth default: passdb: driver: pam userdb: driver: passwd plugin: deleted_to_trash_folder: Trash From xavier at maillard.im Sun Jun 5 23:05:45 2011 From: xavier at maillard.im (Xavier Maillard) Date: Sun, 05 Jun 2011 22:05:45 +0200 Subject: [Dovecot] Help with Trash setup In-Reply-To: References: Message-ID: Hi, On Sun, 5 Jun 2011 13:08:00 -0300, Ivan Rodrigues wrote: > Folks, > > I'm trying to setup a mail server just to store my mail, i use fetchmail to > retrieve my messages and I want to configure the trash can, can you guys > please help me with this mater? I am not an expert (and I do not use this plugin) but: > mail_plugins: delete_to_trash ^^^ shouldn't it be *deleted_to_trash* ? /Xavier From dovecot-ml at makomi.de Sun Jun 5 23:02:25 2011 From: dovecot-ml at makomi.de (=?iso-8859-1?Q?Michael_K=F6hler?=) Date: Sun, 5 Jun 2011 22:02:25 +0200 Subject: [Dovecot] file rights for dictionary file Message-ID: Hi, I use Debian Squeeze and the sources from Stephan Bosch. A few weeks ago I?ve upgraded from 2.0.11 to 2.0.13 and got an error May 29 20:01:53 mailserver dovecot: dict: Error: Can't open configuration file /etc/dovecot/dovecot-dict-sql.conf.ext: Permission denied May 29 20:01:53 mailserver dovecot: dict: Error: Failed to initialize dictionary 'quota' and I could see that /etc/dovecot/dovecot-dict-sql.conf.ext is owning by root:root with 600. After changing to root:root 644 all works, but after each upgrade all files in /etc/dovecot will be set to 600. Is it a problem of the dovecot package or should I do some changes to config to allow dovecot reading the dict file? Here is my config: # 2.0.13 (9ae30e5d6935): /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-xen-amd64 x86_64 Debian 6.0.1 ext3 auth_mechanisms = plain login cram-md5 dict { quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext } first_valid_uid = 106 lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes mail_location = maildir:/var/mail/%d/%u mail_plugins = quota managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { autocreate = Sent Messages autocreate2 = Deleted Messages autocreate3 = Drafts autosubscribe = Sent Messages autosubscribe2 = Deleted Messages autosubscribe3 = Drafts quota = dict:User quota::proxy::quota quota_rule2 = Deleted Messages:storage=+1GB sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap lmtp service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } } service dict { unix_listener dict { group = mail mode = 0660 } } service imap-login { inet_listener imap { port = 0 } inet_listener imaps { port = 993 ssl = yes } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } ssl = required ssl_cert = References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> Message-ID: <4DEBEB90.2080503@us.edu.pl> W dniu 2011-06-05 11:37, Stephan Bosch pisze: > What is your application? Actually it's something like this: >>> if anyof ( # example #1 allof ( ... anyof ( ... ) ), # example #2 allof ( ... anyof ( ... ) ), # example #3 allof ( ... anyof ( ... ) ), # example #4 allof ( ... ), # example #4a allof ( ... ), # example #5 allof ( ... ), # example #6 allof ( ... ), # example #7 allof ( ... ) ) { discard; } >>> I'd like to know which condition was the actual reason of e-mail discarding. I thought about log message. Regards, MU From dovecot.user at seibercom.net Mon Jun 6 00:16:04 2011 From: dovecot.user at seibercom.net (Jerry) Date: Sun, 5 Jun 2011 17:16:04 -0400 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEBEB90.2080503@us.edu.pl> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> Message-ID: <20110605171604.0372180b@scorpio> On Sun, 05 Jun 2011 22:48:16 +0200 Maciej Uhlig articulated: {snip} > I'd like to know which condition was the actual reason of e-mail > discarding. I thought about log message. An actual way to step through the execution of the code is something that I have been waiting for, for quite awhile. My coding skills are certainly not up to the task of writing such an application and I have not been able to locate one. I have literally spent hours debugging a logic problem with sieve scripts. It ain't fun. ? -- Jerry ? Dovecot.user at seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __________________________________________________________________ From stephan at rename-it.nl Mon Jun 6 01:56:00 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 06 Jun 2011 00:56:00 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEBEB90.2080503@us.edu.pl> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> Message-ID: <4DEC0980.9070105@rename-it.nl> On 6/5/2011 10:48 PM, Maciej Uhlig wrote: > W dniu 2011-06-05 11:37, Stephan Bosch pisze: >> What is your application? > > Actually it's something like this: > > >>> > > if anyof ( > # example #1 > allof ( > ... > anyof ( > ... > ) > ), > # example #2 > allof ( > ... > anyof ( > ... > ) > ), > # example #3 > allof ( > ... > anyof ( > ... > ) > ), > # example #4 > allof ( > ... > ), > # example #4a > allof ( > ... > ), > > # example #5 > allof ( > ... > ), > # example #6 > allof ( > ... > ), > # example #7 > allof ( > ... > ) > ) > { > discard; > } > > >>> > > I'd like to know which condition was the actual reason of e-mail > discarding. I thought about log message. If you have a sample message, you can use the sieve-test tool for that. You can check the individual steps the interpreter takes while processing the message. Refer to the man page for more info. Regards, Stephan. From r.zimmermann at siegnetz.de Mon Jun 6 02:27:43 2011 From: r.zimmermann at siegnetz.de (Ralf Zimmermann) Date: Mon, 06 Jun 2011 01:27:43 +0200 Subject: [Dovecot] doveadm problem with mail_plugins in database Message-ID: <4DEC10EF.3000403@siegnetz.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all, I use this user_query: - -------------------------------%<-------------------------------- user_query = SELECT LOWER(CONCAT(t2.login,'@',t1.name)) AS user,t2.home,t2.mail,5000 AS uid,5000 AS gid,CONCAT('*:storage=',quota_mb,'MB') AS quota_rule,t2.acl_groups,case when '%s'='lda' then 'acl quota sieve' when '%s'='lmtp' then 'acl quota sieve' when '%s'='doveadm' then mail_plugins when '%s'='sieve' then 'acl quota' else t2.mail_plugins end as mail_plugins FROM virtual_users as t2, virtual_domains as t1 WHERE ( t2.login='%n' OR t2.email='%u' ) AND t1.enabled IS true AND t2.enabled IS true AND t1.id=t2.domain_id - -------------------------------%<-------------------------------- When I use some doveadm commands I get this error for example: - -------------------------------%<-------------------------------- # doveadm fetch -u rzimmermann "hdr" savedbefore 3d doveadm(rzimmermann): Error: dlopen(/usr/local/lib/dovecot/lib02_imap_acl_plugin.so) failed: /usr/local/lib/dovecot/lib02_imap_acl_plugin.so: undefined symbol: client_fail_mailbox_name_status doveadm(rzimmermann): Error: Can't load plugin imap_acl_plugin: Plugin is intended to be used only by imap binary (we're doveadm) doveadm(rzimmermann): Fatal: Couldn't load required plugins - -------------------------------%<-------------------------------- Some doveadm commands runs fine. Here a example: - -------------------------------%<-------------------------------- # doveadm user rzimmermann userdb: rzimmermann home : /var/vmail/virtusers/boardfreunde.de/rzimmermann mail : maildir:~/Maildir uid : 5000 gid : 5000 quota_rule: *:storage=4000MB acl_groups: admins,boe-admins mail_plugins: quota imap_quota acl imap_acl autocreate fts fts_squat - -------------------------------%<-------------------------------- If I change the user_query part "'%s'='doveadm' then mail_plugins" to "'%s'='doveadm' then 'acl quota" all works fine, but I get a wrong mail_plugin output: - -------------------------------%<-------------------------------- userdb: rzimmermann home : /var/vmail/virtusers/boardfreunde.de/rzimmermann mail : maildir:~/Maildir uid : 5000 gid : 5000 quota_rule: *:storage=4000MB acl_groups: admins,boe-admins mail_plugins: acl quota - -------------------------------%<-------------------------------- What can I do to get doveadm working with "'%s'='doveadm' then mail_plugins"? Or must I use "'%s'='doveadm' then 'acl quota" in the user_query? I use dovecot 2.0.13. Greets Ralf -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAEBAgAGBQJN7BDnAAoJENVjhbwuX+/H6F4H/ROB/J4/icebgAQdpqQxYgDt PEUR87dlgIufQWT7KVyYVYBxzfjRqk20+f/Djpxy6RGl2jVHajvtOpsovQQz92Dy C1ulagZ2mimhbP8qa6VSh3Ozjv9xASbXDJHEDhSR3i45V0bPFpN1resaP8pHHJkl bdvqrdXlvIdMvJ83fSTcElMdIrmg0wyUJMTB900NVkvndlGO1xs1vtfv2c+PhNDe 9nq9Vs2/uVt7NO6ct/d9tqd57X5fzqxzIvjWWCIyHB38W6KgNFM6TiHI1WtSFsKn 4UOcE9FKmePq17ugaj1yrn0gmOSgU1TqnSjRwEM0xoteUlio2NsuhzFSVojkq9s= =NzcM -----END PGP SIGNATURE----- From dlie76 at yahoo.com.au Mon Jun 6 07:06:35 2011 From: dlie76 at yahoo.com.au (Daminto Lie) Date: Sun, 5 Jun 2011 21:06:35 -0700 (PDT) Subject: [Dovecot] restore lost emails Message-ID: <952654.51089.qm@web113420.mail.gq1.yahoo.com> Hi, I was wondering if anyone might be able to help me with this. I am running Postfix 2.7.0, Dovecot 1.2.9 and squirrelmail. Every week, I perform a back-up on both Postfix and Dovecot (maildir and conf folders). That's good because I have all the emails backed up. And now what I would like to ask is whether or not there are any easy way of restoring e-mails if some emails got deleted by accident or for other reason. So far, I have tried to look up the answer on the Internet but got a bit of vague answer. Any help would be greatly appreciated. Thank you From maciej.uhlig at us.edu.pl Mon Jun 6 11:38:59 2011 From: maciej.uhlig at us.edu.pl (Maciej Uhlig) Date: Mon, 06 Jun 2011 10:38:59 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEC0980.9070105@rename-it.nl> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> <4DEC0980.9070105@rename-it.nl> Message-ID: <4DEC9223.6090807@us.edu.pl> W dniu 2011-06-06 00:56, Stephan Bosch pisze: > > If you have a sample message, you can use the sieve-test tool for > that. You can check the individual steps the interpreter takes while > processing the message. Refer to the man page for more info. > Thanks. It could be really helpful in case of script testing. But I'm rather interested in statistics (which rule most probably causes mail discarding). Regards, MU From mail at tomsommer.dk Mon Jun 6 12:46:03 2011 From: mail at tomsommer.dk (Tom Sommer) Date: Mon, 6 Jun 2011 11:46:03 +0200 Subject: [Dovecot] Bug: Fixed a duplicate In-Reply-To: <1307106006.10421.583.camel@hurina> References: <4DE14A0D.6030704@tomsommer.dk> <1307106006.10421.583.camel@hurina> Message-ID: <2bc4fac0aefdaed93f678a53a1b55b67.squirrel@webmail.dreamcoder.dk> On Fri, June 3, 2011 15:00, Timo Sirainen wrote: > On Sat, 2011-05-28 at 21:16 +0200, Tom Sommer wrote: > >> I restored a dovecot mailserver today, and when I started the server >> again, the logs filled up with "Fixed a duplicate" warnings. >> >> This in itself it not a problem, the problem is that it appears the fix >> is not done correct. > > You shouldn't have restored an old maildir on top of an existing > maildir. That is the main problem. The same mails had different flags > (=different filenames), and Dovecot just renamed one of the files to > make sure no mails got accidentally lost. In your case it should have just > deleted the duplicates, but there's no such feature yet. Dovecot works > exactly as intended here. The full explanation is more complex than I want > to type right now. Would it be possible to set the correct timestamp on the renamed files, so the timestamp remains the same as on the original? // Tom From stephan at rename-it.nl Mon Jun 6 13:08:21 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 06 Jun 2011 12:08:21 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <20110605171604.0372180b@scorpio> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> <20110605171604.0372180b@scorpio> Message-ID: <4DECA715.8040606@rename-it.nl> Op 5-6-2011 23:16, Jerry schreef: > On Sun, 05 Jun 2011 22:48:16 +0200 > Maciej Uhlig articulated: > > {snip} > >> I'd like to know which condition was the actual reason of e-mail >> discarding. I thought about log message. > An actual way to step through the execution of the code is something > that I have been waiting for, for quite awhile. My coding skills are > certainly not up to the task of writing such an application and I have > not been able to locate one. I have literally spent hours debugging a > logic problem with sieve scripts. It ain't fun. ? Have you ever tried the sieve-test command line tool? If that is not adequate, could you provide a description of what you would need instead? Regards, Stephan. From shearwater at gmail.com Mon Jun 6 13:09:54 2011 From: shearwater at gmail.com (Ruan Kendall) Date: Mon, 6 Jun 2011 11:09:54 +0100 Subject: [Dovecot] Subject: IMAP crash on index Message-ID: I'm running Dovecot 1.2.15 as an IMAP server on an up-to-date Debian v6 VM. I've recently upgraded the server from a pretty crusty old Debian v4 installation, though I don't recall exactly which version of Dovecot that would have been running. I guess I could try crawling through the old logs to check if it is likely to be useful. The upgrade seemed to have gone fine and I've been using the new server for about a week, but this morning I'm finding that whilst I can successfully connect to the IMAP server using Mutt, it can't display a mail index and a quick peek at the logs shows the IMAP process falling over: (account and server IP replaced) Jun 6 10:39:27 xen dovecot: Dovecot v1.2.15 starting up (core dumps disabled) Jun 6 10:39:27 xen dovecot: auth-worker(default): mysql: Connected to localhost (mail) Jun 6 10:39:34 xen dovecot: imap-login: Login: user=, method=PLAIN, rip=::1, lip=::1, TLS Jun 6 10:39:35 xen dovecot: IMAP(example at example.org): Panic: file mail-index-view.c: line 264 (view_lookup_seq_range): assertion failed: (first_uid > 0) Jun 6 10:39:35 xen dovecot: IMAP(example at example.org): Raw backtrace: imap() [0x80f0e1e] -> imap() [0x80f0e82] -> imap() [0x80f0809] -> imap() [0x80ceb17] -> imap(mail_index_lookup_seq+0x26) [0x80ce5f6] -> imap() [0x80c481d] -> imap(mail_index_modseq_hdr_update+0x2e) [0x80c48ee] -> imap(mail_index_sync_ext_hdr_update+0xbb) [0x80de91b] -> imap(mail_index_sync_record+0x40f) [0x80cd57f] -> imap(mail_index_sync_map+0x2dd) [0x80cdfed] -> imap(mail_index_map+0x5c7) [0x80c3557] -> imap() [0x80bfd87] -> imap(mail_index_open+0x23f) [0x80c01ff] -> imap(index_storage_mailbox_open+0x71) [0x80abc81] -> imap(maildir_storage_sync_init+0x188) [0x8086c18] -> imap(mailbox_sync+0x31) [0x80b59d1] -> imap(imap_status_get+0x8a) [0x806f0ea] -> imap(cmd_status+0x123) [0x8065dd3] -> imap() [0x8067b5c] -> imap() [0x8067c32] -> imap(client_handle_input+0x175) [0x8067eb5] -> imap(client_input+0x5f) [0x80686ef] -> imap(io_loop_handler_run+0xd6) [0x80f9aa6] -> imap(io_loop_run+0x20) [0x80f8f20] -> imap(main+0x5b4) [0x8070f24] -> /lib/i Jun 6 10:39:35 xen dovecot: IMAP(example at example.org): 76] -> imap() [0x80603a1] Jun 6 10:39:35 xen dovecot: dovecot: child 20617 (imap) killed with signal 6 (core dumps disabled) I've not been able to find any mentions of this error occurring for other people. I've not looked at the source to see what the server is trying to do at this point. Restarting the IMAP service doesn't help. Any suggestions or advice? From aperezaranda at yaco.es Mon Jun 6 13:18:28 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Mon, 6 Jun 2011 12:18:28 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> Message-ID: Umm, it isn't running. If I put plugin imap_quota forced on user_attrs, then IMAP and Dovedm doesn't run correctly. They can load this plugin. Maybe we can do a patch for ldap/config to avoid overwrite "all plugins" enabled and support to append to enabled? 2011/6/3 Antonio Perez-Aranda : > OK thanks. It isn't pretty but is running. > > 2011/6/3 Timo Sirainen : >> On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: >> >>> And in passwd-ldap.conf I have some like this to add extra plugins: >>> >>> user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins >> >> This completely overrides mail_plugins setting.. >> >>> With this. I can see that dovecot load all plugins from settings, but >>> in the user session, I can get only the plugins that I have selected >>> in mailPlugins field >>> >>> If i check some like this: >>> ? mailPlugins=mail_plugins=$mail_plugins %$, >> >> $mail_plugins variable works only inside dovecot.conf while the settings >> are being parsed. >> >>> The imap session user is aborted after login. >>> >>> >>> How can I add extra plugins by ldap without put on ldap all user plugins? >> >> The best you can do now is: >> >> mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ >> >> i.e. list the global plugins in here as well as in the global >> mail_plugins setting. >> >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From tss at iki.fi Mon Jun 6 17:26:35 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:26:35 +0300 Subject: [Dovecot] Subject: IMAP crash on index In-Reply-To: References: Message-ID: <1307370395.10421.666.camel@hurina> On Mon, 2011-06-06 at 11:09 +0100, Ruan Kendall wrote: > Jun 6 10:39:27 xen dovecot: Dovecot v1.2.15 starting up (core dumps disabled) > Jun 6 10:39:35 xen dovecot: IMAP(example at example.org): Panic: file > mail-index-view.c: line 264 (view_lookup_seq_range): assertion failed: > (first_uid > 0) rm dovecot.index* from this user's maildirs should fix the crash. There's a good chance this has already been fixed in v2.0. From tss at iki.fi Mon Jun 6 17:28:24 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:28:24 +0300 Subject: [Dovecot] Bug: Fixed a duplicate In-Reply-To: <2bc4fac0aefdaed93f678a53a1b55b67.squirrel@webmail.dreamcoder.dk> References: <4DE14A0D.6030704@tomsommer.dk> <1307106006.10421.583.camel@hurina> <2bc4fac0aefdaed93f678a53a1b55b67.squirrel@webmail.dreamcoder.dk> Message-ID: <1307370504.10421.667.camel@hurina> On Mon, 2011-06-06 at 11:46 +0200, Tom Sommer wrote: > On Fri, June 3, 2011 15:00, Timo Sirainen wrote: > > On Sat, 2011-05-28 at 21:16 +0200, Tom Sommer wrote: > > > >> I restored a dovecot mailserver today, and when I started the server > >> again, the logs filled up with "Fixed a duplicate" warnings. > >> > >> This in itself it not a problem, the problem is that it appears the fix > >> is not done correct. > > > > You shouldn't have restored an old maildir on top of an existing > > maildir. That is the main problem. The same mails had different flags > > (=different filenames), and Dovecot just renamed one of the files to > > make sure no mails got accidentally lost. In your case it should have just > > deleted the duplicates, but there's no such feature yet. Dovecot works > > exactly as intended here. The full explanation is more complex than I want > > to type right now. > > Would it be possible to set the correct timestamp on the renamed files, so > the timestamp remains the same as on the original? The timestamp is preserved. If you sort the messages by "received date", they are in the same order. From tss at iki.fi Mon Jun 6 17:30:17 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:30:17 +0300 Subject: [Dovecot] restore lost emails In-Reply-To: <952654.51089.qm@web113420.mail.gq1.yahoo.com> References: <952654.51089.qm@web113420.mail.gq1.yahoo.com> Message-ID: <1307370617.10421.669.camel@hurina> On Sun, 2011-06-05 at 21:06 -0700, Daminto Lie wrote: > Hi, > > I was wondering if anyone might be able to help me with this. I am running > Postfix 2.7.0, Dovecot 1.2.9 and squirrelmail. Every week, I perform a back-up > on both Postfix and Dovecot (maildir and conf folders). That's good because I > have all the emails backed up. And now what I would like to ask is whether or > not there are any easy way of restoring e-mails if some emails got deleted by > accident or for other reason. So far, I have tried to look up the answer on the > Internet but got a bit of vague answer. Other than finding and restoring the mail from backups, there's no simple way. Although you could configure Dovecot to do lazy-expunging: http://wiki.dovecot.org/Plugins/Lazyexpunge From tss at iki.fi Mon Jun 6 17:38:21 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:38:21 +0300 Subject: [Dovecot] doveadm problem with mail_plugins in database In-Reply-To: <4DEC10EF.3000403@siegnetz.de> References: <4DEC10EF.3000403@siegnetz.de> Message-ID: <1307371101.10421.675.camel@hurina> On Mon, 2011-06-06 at 01:27 +0200, Ralf Zimmermann wrote: > I use this user_query: .. > # doveadm fetch -u rzimmermann "hdr" savedbefore 3d > > doveadm(rzimmermann): Error: Can't load plugin imap_acl_plugin: Plugin > is intended to be used only by imap binary (we're doveadm) The user_query returns mail_plugins setting that includes imap_acl plugin. Which of course can't be loaded since doveadm isn't imap.. > Some doveadm commands runs fine. Here a example: > > - -------------------------------%<-------------------------------- > # doveadm user rzimmermann The problem happens only for doveadm commands that access mail storage. (The setting is mail_plugins - the plugins are irrelevant for non-mail commands.) > What can I do to get doveadm working with "'%s'='doveadm' then > mail_plugins"? Or must I use "'%s'='doveadm' then 'acl quota" in the > user_query? Well, the way I'd do it is something like (I don't know if this is valid SQL): concat(mail_plugins, case '%s'='lda' then ',sieve' case '%s'='lmtp' then ',sieve' case '%s'='imap' then ',imap_quota' ) AS mail_plugins Assuming everyone is using quota. If not, then change the imap part to check if mail_plugins contains quota and add imap_quota only if it does. From tss at iki.fi Mon Jun 6 17:43:10 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:43:10 +0300 Subject: [Dovecot] file rights for dictionary file In-Reply-To: References: Message-ID: <1307371390.10421.677.camel@hurina> On Sun, 2011-06-05 at 22:02 +0200, Michael K?hler wrote: > I use Debian Squeeze and the sources from Stephan Bosch. A few weeks ago I?ve upgraded from 2.0.11 to 2.0.13 and got an error Well, I haven't done any changes.. > May 29 20:01:53 mailserver dovecot: dict: Error: Can't open configuration file /etc/dovecot/dovecot-dict-sql.conf.ext: Permission denied With the current design this config file is opened late after dropping privileges. > and I could see that /etc/dovecot/dovecot-dict-sql.conf.ext is owning by root:root with 600. After changing to root:root 644 all works, but after each upgrade all files in /etc/dovecot will be set to 600. This config file contains sql password, so it shouldn't be world-readable. Maybe it should be root:dovecot 640, because "dict" process runs as dovecot user by default (and I'd guess dovecot group). From tss at iki.fi Mon Jun 6 17:46:31 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:46:31 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DEA37AF.4040202@gmail.com> References: <4DEA37AF.4040202@gmail.com> Message-ID: <1307371591.10421.680.camel@hurina> On Sat, 2011-06-04 at 21:48 +0800, johnw wrote: > i want to chroot lmtp with sieve, but have some problem, look like lmtp > can not load sieve's lib or something. > the error message like this: > > dovecot: lmtp(12799): Fatal: opendir(/usr/local/lib/dovecot) failed: No > such file or directory > > all is work fine, when not config lmtp chroot. > can i config lmtp load sieve before chroot? Not currently. Or you could put the sieve plugin inside the chroot (and maybe change protocol lmtp { mail_plugins_dir }). From tss at iki.fi Mon Jun 6 17:47:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 17:47:41 +0300 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error In-Reply-To: <4DE98FBC.203@gmail.com> References: <4DE98FBC.203@gmail.com> Message-ID: <1307371661.10421.681.camel@hurina> On Sat, 2011-06-04 at 09:51 +0800, Jin FengMing wrote: > > I have an email account configured as IMAP(dovecot-1.2.10) via > outlook > 2010. If I'm creating a *new* mailbox folder, for example "ttt", and > *copying* a mail into *that* mailbox folder, then an error message > window will be displayed. > > The problem caused by > C:UID FETCH 0 (UID FLAGS RFC822.SIZE BODY.PEEK[HEADER] INTERNALDATE) > S:3mgc BAD Error in IMAP command UID FETCH: Invalid uidset My guess: This happens with all IMAP servers, and there's nothing an IMAP server can do about it. It's simply wrong to FETCH UID 0. Even if Dovecot gave some reply to it, I don't know if Outlook could handle it. From jinfengming at gmail.com Mon Jun 6 18:05:23 2011 From: jinfengming at gmail.com (Jin FengMing) Date: Mon, 06 Jun 2011 23:05:23 +0800 Subject: [Dovecot] Outlook2010 + dovecot-1.2.10 - UID FETCH 0 (xxx) Error In-Reply-To: <1307371661.10421.681.camel@hurina> References: <4DE98FBC.203@gmail.com> <1307371661.10421.681.camel@hurina> Message-ID: <4DECECB3.4030808@gmail.com> On 6/6/2011 22:47, Timo Sirainen wrote: > On Sat, 2011-06-04 at 09:51 +0800, Jin FengMing wrote: >> >> I have an email account configured as IMAP(dovecot-1.2.10) via >> outlook >> 2010. If I'm creating a *new* mailbox folder, for example "ttt", and >> *copying* a mail into *that* mailbox folder, then an error message >> window will be displayed. >> >> The problem caused by >> C:UID FETCH 0 (UID FLAGS RFC822.SIZE BODY.PEEK[HEADER] INTERNALDATE) >> S:3mgc BAD Error in IMAP command UID FETCH: Invalid uidset > > My guess: This happens with all IMAP servers, and there's nothing an > IMAP server can do about it. It's simply wrong to FETCH UID 0. Even if > Dovecot gave some reply to it, I don't know if Outlook could handle it. > > Thanks for your reply. Hope outlook guys can fix it.[1] [1] http://answers.microsoft.com/en-us/office/forum/office_2010-outlook/bug-outlook2010-uid-fetch-0-uid-flags-rfc822size/13a8610b-bed4-48c1-bd70-d2bc5cb342a7 Best regards. From shearwater at gmail.com Mon Jun 6 18:17:23 2011 From: shearwater at gmail.com (Ruan Kendall) Date: Mon, 6 Jun 2011 16:17:23 +0100 Subject: [Dovecot] Subject: IMAP crash on index In-Reply-To: <1307370395.10421.666.camel@hurina> References: <1307370395.10421.666.camel@hurina> Message-ID: On 6 June 2011 15:26, Timo Sirainen wrote: > > rm dovecot.index* from this user's maildirs should fix the crash. > There's a good chance this has already been fixed in v2.0. > Deleteing the index files doesn't seem to help; firing up mutt shows me a message saying that the index is being rebuilt but once that process has completed the connection closes and the log shows the same error message as before. I did consider testing out v2, but alas there are no convenient packages in any of the stable debian releases. From johnw.mail at gmail.com Mon Jun 6 18:20:19 2011 From: johnw.mail at gmail.com (johnw) Date: Mon, 06 Jun 2011 23:20:19 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307371591.10421.680.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> Message-ID: On Mon, 06 Jun 2011 17:46:31 +0300, Timo Sirainen wrote: > On Sat, 2011-06-04 at 21:48 +0800, johnw wrote: >> i want to chroot lmtp with sieve, but have some problem, look like >> lmtp >> can not load sieve's lib or something. >> the error message like this: >> >> dovecot: lmtp(12799): Fatal: opendir(/usr/local/lib/dovecot) failed: >> No >> such file or directory >> >> all is work fine, when not config lmtp chroot. >> can i config lmtp load sieve before chroot? > > Not currently. Or you could put the sieve plugin inside the chroot > (and > maybe change protocol lmtp { mail_plugins_dir }). after copy those sieve's thing to chroot_dir, and link the userdb socket to chroot_dir. i see the error like this: (lmtp) Couldn't drop privileges: Process is already chrooted, can't un-chroot for this user i already config mail_chroot, should i remove it?(mail_chroot) any how-to document is for lmtp chroot? please help, and thank you. From tss at iki.fi Mon Jun 6 18:27:11 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:27:11 +0300 Subject: [Dovecot] Using Dovecot new version 2.0.13 facing issues. In-Reply-To: References: Message-ID: <1307374031.10421.682.camel@hurina> On Fri, 2011-06-03 at 22:57 +0530, ???? ???? wrote: > Hi, > > I have configured POP-IMAP server with dovecot 2.0.13 with mysql support. > When I am running load test on the same I face issue on IMAP connections. I > get "dovecot: imap-login: Error: fd_send(imap, 15) failed: Interrupted > system call" followed by "dovecot: imap-login: Internal login failure" in > log files. See if these patches help: http://hg.dovecot.org/dovecot-2.0/rev/86e4023d08e4 http://hg.dovecot.org/dovecot-2.0/rev/6fdee880c5dc From tss at iki.fi Mon Jun 6 18:28:13 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:28:13 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> Message-ID: <1307374093.10421.683.camel@hurina> On Mon, 2011-06-06 at 23:20 +0800, johnw wrote: > (lmtp) Couldn't drop privileges: Process is already chrooted, can't > un-chroot for this user > > i already config mail_chroot, should i remove it?(mail_chroot) > any how-to document is for lmtp chroot? protocol !lmtp { mail_chroot = /somewhere } From tss at iki.fi Mon Jun 6 18:29:25 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:29:25 +0300 Subject: [Dovecot] Subject: IMAP crash on index In-Reply-To: References: <1307370395.10421.666.camel@hurina> Message-ID: <1307374165.10421.684.camel@hurina> On Mon, 2011-06-06 at 16:17 +0100, Ruan Kendall wrote: > On 6 June 2011 15:26, Timo Sirainen wrote: > > > > rm dovecot.index* from this user's maildirs should fix the crash. > > There's a good chance this has already been fixed in v2.0. > > > > Deleteing the index files doesn't seem to help; Are you sure you deleted the right index? Each folder has one. This error really should go away with deleting the correct dovecot.index.log file. > firing up mutt shows > me a message saying that the index is being rebuilt That's mutt's index, not Dovecot's. From johnw at wonghome.net Mon Jun 6 18:08:58 2011 From: johnw at wonghome.net (John Wong) Date: Mon, 06 Jun 2011 23:08:58 +0800 Subject: [Dovecot] after upgrade to 2.x, sieve do not create folder Message-ID: after upgrade to 2.x, sieve do not create folder, which do not exist. i remenber(maybe wrong) 1.2.x sieve plugin will create folder, if it do not exist. the sieve log like this failed to store into mailbox 'dovecot': Mailbox doesn't exist: dovecot can i config sieve automatic create the folder? please help, and thank you. From shearwater at gmail.com Mon Jun 6 18:36:17 2011 From: shearwater at gmail.com (Ruan Kendall) Date: Mon, 6 Jun 2011 16:36:17 +0100 Subject: [Dovecot] Subject: IMAP crash on index In-Reply-To: <1307374165.10421.684.camel@hurina> References: <1307370395.10421.666.camel@hurina> <1307374165.10421.684.camel@hurina> Message-ID: Ahh, I'd failed to get rid of the index files in all of the subfolders. My bad. Everything seems to be working fine now. Thanks for your help! On 6 June 2011 16:29, Timo Sirainen wrote: > On Mon, 2011-06-06 at 16:17 +0100, Ruan Kendall wrote: >> On 6 June 2011 15:26, Timo Sirainen wrote: >> > >> > rm dovecot.index* from this user's maildirs should fix the crash. >> > There's a good chance this has already been fixed in v2.0. >> > >> >> Deleteing the index files doesn't seem to help; > > Are you sure you deleted the right index? Each folder has one. This > error really should go away with deleting the correct dovecot.index.log > file. > >> firing up mutt shows >> me a message saying that the index is being rebuilt > > That's mutt's index, not Dovecot's. > > > From johnw.mail at gmail.com Mon Jun 6 18:36:50 2011 From: johnw.mail at gmail.com (johnw) Date: Mon, 06 Jun 2011 23:36:50 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307374093.10421.683.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> Message-ID: <4DECF412.4010704@gmail.com> On 2011?06?06? 23:28, Timo Sirainen wrote: > On Mon, 2011-06-06 at 23:20 +0800, johnw wrote: >> (lmtp) Couldn't drop privileges: Process is already chrooted, can't >> un-chroot for this user >> >> i already config mail_chroot, should i remove it?(mail_chroot) >> any how-to document is for lmtp chroot? > protocol !lmtp { > mail_chroot = /somewhere > } > > doveconf: Fatal: Error in configuration file /etc/dovecot/conf.d/10-master.conf line 50: Unknown setting: mail_chroot From tss at iki.fi Mon Jun 6 18:38:34 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:38:34 +0300 Subject: [Dovecot] after upgrade to 2.x, sieve do not create folder In-Reply-To: References: Message-ID: <1307374714.10421.687.camel@hurina> On Mon, 2011-06-06 at 23:08 +0800, John Wong wrote: > after upgrade to 2.x, sieve do not create folder, which do not exist. > i remenber(maybe wrong) 1.2.x sieve plugin will create folder, if it do > not exist. > > the sieve log like this > failed to store into mailbox 'dovecot': Mailbox doesn't exist: dovecot > > can i config sieve automatic create the folder? The proper way to do this would be to add :create to the Sieve script: fileinto :create "dovecot" But I think lda_mailbox_autocreate=yes might also fix this for you. From tss at iki.fi Mon Jun 6 18:39:11 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 18:39:11 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DECF412.4010704@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> Message-ID: <1307374751.10421.688.camel@hurina> On Mon, 2011-06-06 at 23:36 +0800, johnw wrote: > On 2011?06?06? 23:28, Timo Sirainen wrote: > > On Mon, 2011-06-06 at 23:20 +0800, johnw wrote: > >> (lmtp) Couldn't drop privileges: Process is already chrooted, can't > >> un-chroot for this user > >> > >> i already config mail_chroot, should i remove it?(mail_chroot) > >> any how-to document is for lmtp chroot? > > protocol !lmtp { > > mail_chroot = /somewhere > > } > > > > > doveconf: Fatal: Error in configuration file > /etc/dovecot/conf.d/10-master.conf line 50: Unknown setting: mail_chroot Did you put it inside service lmtp {} or something? That's different from protocol lmtp {} From duane at duanemail.org Mon Jun 6 18:51:41 2011 From: duane at duanemail.org (Duane Hill) Date: Mon, 6 Jun 2011 10:51:41 -0500 Subject: [Dovecot] after upgrade to 2.x, sieve do not create folder In-Reply-To: <1307374714.10421.687.camel@hurina> References: <1307374714.10421.687.camel@hurina> Message-ID: <365544613.20110606105141@duanemail.org> Monday, June 6, 2011, 10:38:34 AM, Timo wrote: > On Mon, 2011-06-06 at 23:08 +0800, John Wong wrote: >> after upgrade to 2.x, sieve do not create folder, which do not exist. >> i remenber(maybe wrong) 1.2.x sieve plugin will create folder, if it do >> not exist. >> >> the sieve log like this >> failed to store into mailbox 'dovecot': Mailbox doesn't exist: dovecot >> >> can i config sieve automatic create the folder? > The proper way to do this would be to add :create to the Sieve script: > fileinto :create "dovecot" > But I think lda_mailbox_autocreate=yes might also fix this for you. 'lda_mailbox_autocreate = yes' fixed it for me. I also added: lda_mailbox_autosubscribe = yes so the mailbox would be subscribed automatically. -- Best regards, Duane mailto:duane at duanemail.org From ivan.rodrigues at gmail.com Mon Jun 6 19:00:18 2011 From: ivan.rodrigues at gmail.com (Ivan Rodrigues) Date: Mon, 6 Jun 2011 13:00:18 -0300 Subject: [Dovecot] Please HELP, TRASH won't work at all Message-ID: Folks, I'm setting a imap server here to store our mails, no need for quota or anything fancy, we just need trash can to work, when I mark a message to delete, this message to be moved to trash folder. that's all that I need. any thoughts? From johnw.mail at gmail.com Mon Jun 6 19:02:46 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 00:02:46 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307374751.10421.688.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> Message-ID: <4DECFA26.7020704@gmail.com> On 2011?06?06? 23:39, Timo Sirainen wrote: > On Mon, 2011-06-06 at 23:36 +0800, johnw wrote: >> On 2011?06?06? 23:28, Timo Sirainen wrote: >>> On Mon, 2011-06-06 at 23:20 +0800, johnw wrote: >>>> (lmtp) Couldn't drop privileges: Process is already chrooted, can't >>>> un-chroot for this user >>>> >>>> i already config mail_chroot, should i remove it?(mail_chroot) >>>> any how-to document is for lmtp chroot? >>> protocol !lmtp { >>> mail_chroot = /somewhere >>> } >>> >>> >> doveconf: Fatal: Error in configuration file >> /etc/dovecot/conf.d/10-master.conf line 50: Unknown setting: mail_chroot > Did you put it inside service lmtp {} or something? That's different > from protocol lmtp {} > > i added it to 20-lmtp.conf, is it correct? ----------------------------------- ## ## LMTP specific settings ## # Support proxying to other LMTP/SMTP servers by performing passdb lookups. #lmtp_proxy = no # When recipient address includes the detail (e.g. user+detail), try to save # the mail to the detail mailbox. See also recipient_delimiter and # lda_mailbox_autocreate settings. #lmtp_save_to_detail_mailbox = no protocol lmtp { # Space separated list of plugins to load (default is global mail_plugins). mail_plugins = $mail_plugins sieve } protocol !lmtp { mail_chroot = /var/vmail/ } ---------------------------------- then, i still see this error in log: Couldn't drop privileges: Process is already chrooted, can't un-chroot for this user From tss at iki.fi Mon Jun 6 19:09:20 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 06 Jun 2011 19:09:20 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DECFA26.7020704@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> Message-ID: <1307376560.10421.690.camel@hurina> On Tue, 2011-06-07 at 00:02 +0800, johnw wrote: > >>>> i already config mail_chroot, should i remove it?(mail_chroot) > >>>> any how-to document is for lmtp chroot? > >>> protocol !lmtp { > >>> mail_chroot = /somewhere > >>> } > >>> > i added it to 20-lmtp.conf, is it correct? It doesn't matter where you add it, as long as the "doveconf -n" output looks correct. > protocol !lmtp { > mail_chroot = /var/vmail/ > } Looks right. > then, i still see this error in log: > Couldn't drop privileges: Process is already chrooted, can't un-chroot > for this user Is there another mail_chroot setting elsewhere? The important thing is that when you do: doveconf mail_chroot it shows the chroot, but when you do: doveconf -f protocol=lmtp mail_chroot the result should be empty. From johnw.mail at gmail.com Mon Jun 6 19:15:21 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 00:15:21 +0800 Subject: [Dovecot] after upgrade to 2.x, sieve do not create folder In-Reply-To: <1307374714.10421.687.camel@hurina> References: <1307374714.10421.687.camel@hurina> Message-ID: <4DECFD19.30601@gmail.com> On 2011?06?06? 23:38, Timo Sirainen wrote: > On Mon, 2011-06-06 at 23:08 +0800, John Wong wrote: >> after upgrade to 2.x, sieve do not create folder, which do not exist. >> i remenber(maybe wrong) 1.2.x sieve plugin will create folder, if it do >> not exist. >> >> the sieve log like this >> failed to store into mailbox 'dovecot': Mailbox doesn't exist: dovecot >> >> can i config sieve automatic create the folder? > The proper way to do this would be to add :create to the Sieve script: > > fileinto :create "dovecot" > > But I think lda_mailbox_autocreate=yes might also fix this for you. > > yes, lda_mailbox_autocreate = yes, work just fine. thank all. From johnw.mail at gmail.com Mon Jun 6 19:32:43 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 00:32:43 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307376560.10421.690.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> Message-ID: <4DED012B.6080506@gmail.com> On 2011?06?07? 00:09, Timo Sirainen wrote: > On Tue, 2011-06-07 at 00:02 +0800, johnw wrote: >>>>>> i already config mail_chroot, should i remove it?(mail_chroot) >>>>>> any how-to document is for lmtp chroot? >>>>> protocol !lmtp { >>>>> mail_chroot = /somewhere >>>>> } >>>>> >> i added it to 20-lmtp.conf, is it correct? > It doesn't matter where you add it, as long as the "doveconf -n" output > looks correct. > >> protocol !lmtp { >> mail_chroot = /var/vmail/ >> } > Looks right. > >> then, i still see this error in log: >> Couldn't drop privileges: Process is already chrooted, can't un-chroot >> for this user > Is there another mail_chroot setting elsewhere? The important thing is > that when you do: > > doveconf mail_chroot > > it shows the chroot, but when you do: > > doveconf -f protocol=lmtp mail_chroot > > the result should be empty. > when i have mail_chroot = /var/vmail/ in 10-mail.conf both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot result is same: mail_chroot = /var/vmail/ when i remove mail_chroot = /var/vmail/ in 10-mail.conf both result is empty: mail_chroot = i have only one mail_chroot setting in 10-mail.conf, but i also have valid_chroot_dirs = /var/vmail/. is it matter? From tss at iki.fi Mon Jun 6 19:42:28 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 6 Jun 2011 19:42:28 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DED012B.6080506@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> Message-ID: <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> On 6.6.2011, at 19.32, johnw wrote: >> Is there another mail_chroot setting elsewhere? The important thing is >> that when you do: >> >> doveconf mail_chroot >> >> it shows the chroot, but when you do: >> >> doveconf -f protocol=lmtp mail_chroot >> >> the result should be empty. >> > when i have mail_chroot = /var/vmail/ in 10-mail.conf > both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot > result is same: mail_chroot = /var/vmail/ > > when i remove mail_chroot = /var/vmail/ in 10-mail.conf > both result is empty: mail_chroot = Put that mail_chroot setting inside the protocol !lmtp {} section. The settings don't have any hard coded places in the config files. You can put anything anywhere.. > i have only one mail_chroot setting in 10-mail.conf, > but i also have valid_chroot_dirs = /var/vmail/. > is it matter? valid_chroot_dirs is ignored when mail_chroot is set. From johnw.mail at gmail.com Mon Jun 6 19:59:52 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 00:59:52 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> Message-ID: <4DED0788.9070406@gmail.com> On 2011?06?07? 00:42, Timo Sirainen wrote: > On 6.6.2011, at 19.32, johnw wrote: > >>> Is there another mail_chroot setting elsewhere? The important thing is >>> that when you do: >>> >>> doveconf mail_chroot >>> >>> it shows the chroot, but when you do: >>> >>> doveconf -f protocol=lmtp mail_chroot >>> >>> the result should be empty. >>> >> when i have mail_chroot = /var/vmail/ in 10-mail.conf >> both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot >> result is same: mail_chroot = /var/vmail/ >> >> when i remove mail_chroot = /var/vmail/ in 10-mail.conf >> both result is empty: mail_chroot = > Put that mail_chroot setting inside the protocol !lmtp {} section. The settings don't have any hard coded places in the config files. You can put anything anywhere.. > yes, i did it (put the mail_chroot inside the protocol !lmtp { mail_chroot = /var/vmail/ } and no mail_chroot anywhere. but the both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot result is same empty: mail_chroot = then i retry add the mail_chroot = /var/vmail/ in (somewhere)10-mail.conf(i know it can be anywhere), and still have protocol !lmtp { mail_chroot = /var/vmail/ } then the both result is same: mail_chroot = /var/vmail/ i mean the protocol !lmtp { mail_chroot = /var/vmail/ }, look like not working. From CMarcus at Media-Brokers.com Mon Jun 6 20:55:35 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 06 Jun 2011 13:55:35 -0400 Subject: [Dovecot] Please HELP, TRASH won't work at all In-Reply-To: References: Message-ID: <4DED1497.2090709@Media-Brokers.com> On 2011-06-06 12:00 PM, Ivan Rodrigues wrote: > I'm setting a imap server here to store our mails, no need for quota or > anything fancy, we just need trash can to work, when I mark a message to > delete, this message to be moved to trash folder. That is the job of the client... and each client does it differently... -- Best regards, Charles From tss at iki.fi Mon Jun 6 21:41:48 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 6 Jun 2011 21:41:48 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DED0788.9070406@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> Message-ID: <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> On 6.6.2011, at 19.59, johnw wrote: > yes, i did it (put the mail_chroot inside the protocol !lmtp { mail_chroot = /var/vmail/ } > and no mail_chroot anywhere. > > but the both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot > result is same empty: mail_chroot = Oh, looks like doveconf didn't work exactly as I thought :) Small modification to the test then: doveconf -f protocol=imap mail_chroot doveconf -f protocol=lmtp mail_chroot Now it should show the chroot with imap, but not with lmtp. From sf.rique at gmail.com Tue Jun 7 00:45:39 2011 From: sf.rique at gmail.com (Henrique Fernandes) Date: Mon, 6 Jun 2011 18:45:39 -0300 Subject: [Dovecot] Doveadm index! Message-ID: Hello folks, I recent update my dovecot 2.0.6 to the version 2.0.13 cause i wanted to use dovecot index to build fts squat for users! I noticed that there is no log for the fts build action, it does log all actions to the normal index.cache. Timo, could you add some logging please? And also, if possible an option to cache all mailbox of the users! Thanks a lot! Right now is already helping me a lot. []'sf.rique From dlie76 at yahoo.com.au Tue Jun 7 05:29:38 2011 From: dlie76 at yahoo.com.au (Daminto Lie) Date: Mon, 6 Jun 2011 19:29:38 -0700 (PDT) Subject: [Dovecot] restore lost emails In-Reply-To: <1307370617.10421.669.camel@hurina> References: <952654.51089.qm@web113420.mail.gq1.yahoo.com> <1307370617.10421.669.camel@hurina> Message-ID: <12594.94760.qm@web113414.mail.gq1.yahoo.com> ________________________________ From: Timo Sirainen To: Daminto Lie Cc: dovecot at dovecot.org Sent: Tue, 7 June, 2011 12:30:17 AM Subject: Re: [Dovecot] restore lost emails On Sun, 2011-06-05 at 21:06 -0700, Daminto Lie wrote: > Hi, > > I was wondering if anyone might be able to help me with this. I am running > Postfix 2.7.0, Dovecot 1.2.9 and squirrelmail. Every week, I perform a back-up > on both Postfix and Dovecot (maildir and conf folders). That's good because I > have all the emails backed up. And now what I would like to ask is whether or > not there are any easy way of restoring e-mails if some emails got deleted by > accident or for other reason. So far, I have tried to look up the answer on the > > Internet but got a bit of vague answer. Other than finding and restoring the mail from backups, there's no simple way. Although you could configure Dovecot to do lazy-expunging: http://wiki.dovecot.org/Plugins/Lazyexpunge Thank you for your reply, Timo. OK, but if I want to restore a particular mail from backups, what're the steps involved? What I mean is do I just copy and paste that mail file from backups to the user account maildir folder and what program should I run to synchronize it. Thank you once again From trever.adams at gmail.com Tue Jun 7 07:57:40 2011 From: trever.adams at gmail.com (Trever L. Adams) Date: Mon, 06 Jun 2011 22:57:40 -0600 Subject: [Dovecot] possible bug leading to lmtp crashes In-Reply-To: <4DD5191E.9040606@gmail.com> References: <4DAECAAC.3060903@gmail.com> <4DB58F67.4090600@gmail.com> <4DB6FCF7.9070905@gmail.com> <5D19A866-381B-4CA6-B8FF-0F7BCDA36799@iki.fi> <4DBC3F3F.4030605@gmail.com> <1304957973.10421.101.camel@hurina> <4DCA7C6F.40902@gmail.com> <1305116849.10421.192.camel@hurina> <4DD5191E.9040606@gmail.com> Message-ID: <4DEDAFC4.3080400@gmail.com> On 05/19/2011 07:20 AM, Trever L. Adams wrote: > > May 17 04:01:02 dovecot: auth: Panic: file ../../src/lib/array.h: line > 189 (array_idx_i): assertion failed: (idx * array->element_size < > array->buffer->used) > > This is usually repeated 2 or more times near a crash. On the machine > that doesn't crash, I NEVER see this. On the machines that crash, there > isn't (or doesn't seem to be) a 1:1 correlation. ** THERE IS A 1:1 FOUND LATER ** > > Trever Ok, I think I have figured out the cause, but no the problem in the code. There were three machines TS, PP, ST. TS and ST had identical configurations with auth_username_format = %Lu. PP had it = %u. PP started crashing when I changed it to %Lu. As mentioned the kerberos/ldap setup is Samba4 here. PP had administrator and guest all lower case, ST had administrator but Guest. TS had Administrator and Guest. When I changed all auth_username_format=%u and ST Guest to guest (in userPrincipalName, I didn't mess with anything else), ST and PP stopped having any problems (at least for the last 6 hours even with things like the doveadm calls below which would always have at least one crash). I just changed TS to be administrator and guest and did the doveadm and some other things. No crashes. So, why is this the case when it will deliver (dovecot deliver) the email but will cause crashes some times? I do not know why. And logins work to imaps. The doveadm: doveadm expunge -A mailbox TRASH savedbefore 30d doveadm expunge -A mailbox SPAM savedbefore 30d doveadm expunge -A mailbox SPAM savedbefore 2d SEEN doveadm expunge -A mailbox Dangerous savedbefore 1w doveadm expunge -A mailbox Infected savedbefore 1w (complete backtraces of some things found at: https://bugzilla.redhat.com/show_bug.cgi?id=697325) Thank you, Trever Adams -- "To fall in love is to create a religion that has a fallible god." -- JLB -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From dovecot at lists.wgwh.ch Tue Jun 7 08:43:54 2011 From: dovecot at lists.wgwh.ch (Oli Schacher) Date: Tue, 7 Jun 2011 07:43:54 +0200 Subject: [Dovecot] restore lost emails In-Reply-To: <12594.94760.qm@web113414.mail.gq1.yahoo.com> References: <952654.51089.qm@web113420.mail.gq1.yahoo.com> <1307370617.10421.669.camel@hurina> <12594.94760.qm@web113414.mail.gq1.yahoo.com> Message-ID: <20110607074354.5cdfb6b3@boscos> On Mon, 6 Jun 2011 19:29:38 -0700 (PDT) Daminto Lie wrote: > OK, but if I want to restore a particular mail from backups, what're > the steps involved? What I mean is do I just copy and paste that mail > file from backups to the user account maildir folder and what program > should I run to synchronize it. > exactly, just copy the mail from your backup back into the users maildir (usually into 'cur'). Make sure the permissions of the restored file are correct. No need to synchronize anything, dovecot automatically detects the added message. From johnw.mail at gmail.com Tue Jun 7 10:57:03 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 15:57:03 +0800 Subject: [Dovecot] virtual plugin, delete mail Message-ID: <17fb14bd-cd6b-4524-9e86-71cb67eca550@email.android.com> i use dovecot 2.0.x as imap server,i setup virtual plugin to view all unseen mail. when i delete the mail, it do not delete the real mail, the mail still exist in some mailbox. can i config virtual plugin delete the real mail? please help, and thank you. -- Sent from my Android phone with K-9 Mail. Please excuse my brevity. From f.bonnet at esiee.fr Tue Jun 7 10:58:37 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Tue, 07 Jun 2011 09:58:37 +0200 Subject: [Dovecot] How Dovecot 2 create folders and subfolders ( MBOX format ) with TB ? Message-ID: <4DEDDA2D.1000103@esiee.fr> Hello When creating new IMAP folder with thunderbird and Dovecot configured with the std MBOX format dovecot create a file in mbox format and so it is not possible to create a subfolder of this folder. If you ask to create a NEW subfolder of the form : TOTO/TATA Dovecot create a directory TOTO containing a mbox file TATA. Very useful :-) I suppose the "/" separator is parsed by dovecot then it creates a directory containing the mbox file. Am I right ? From wgillespie+dovecot at es2eng.com Tue Jun 7 11:24:01 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Tue, 07 Jun 2011 02:24:01 -0600 Subject: [Dovecot] How Dovecot 2 create folders and subfolders ( MBOX format ) with TB ? In-Reply-To: <4DEDDA2D.1000103@esiee.fr> References: <4DEDDA2D.1000103@esiee.fr> Message-ID: <4DEDE021.6010508@es2eng.com> On 6/7/2011 1:58 AM, Frank Bonnet wrote: > Hello > > When creating new IMAP folder with thunderbird and Dovecot > configured with the std MBOX format dovecot create a file in > mbox format and so it is not possible to create a subfolder of > this folder. > > If you ask to create a NEW subfolder of the form : TOTO/TATA > Dovecot create a directory TOTO containing a mbox file TATA. > > Very useful :-) > > I suppose the "/" separator is parsed by dovecot then it creates > a directory containing the mbox file. Am I right ? With MBOX, that is correct. You can also just throw a separator at the end, like TOTO/ and it will create a folder that accepts subfolders. Thunderbird is a little buggy in this area though with how it decides to treat them. I submitted a patch last month to help with a bug Timo had found, but of course they haven't done anything about it. https://bugzilla.mozilla.org/show_bug.cgi?id=301714#c15 From f.bonnet at esiee.fr Tue Jun 7 13:39:00 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Tue, 07 Jun 2011 12:39:00 +0200 Subject: [Dovecot] How Dovecot 2 create folders and subfolders ( MBOX format ) with TB ? In-Reply-To: <4DEDE021.6010508@es2eng.com> References: <4DEDDA2D.1000103@esiee.fr> <4DEDE021.6010508@es2eng.com> Message-ID: <4DEDFFC4.5030209@esiee.fr> On 06/07/2011 10:24 AM, Willie Gillespie wrote: > On 6/7/2011 1:58 AM, Frank Bonnet wrote: >> Hello >> >> When creating new IMAP folder with thunderbird and Dovecot >> configured with the std MBOX format dovecot create a file in >> mbox format and so it is not possible to create a subfolder of >> this folder. >> >> If you ask to create a NEW subfolder of the form : TOTO/TATA >> Dovecot create a directory TOTO containing a mbox file TATA. >> >> Very useful :-) >> >> I suppose the "/" separator is parsed by dovecot then it creates >> a directory containing the mbox file. Am I right ? > > With MBOX, that is correct. > You can also just throw a separator at the end, like TOTO/ and it will > create a folder that accepts subfolders. Thunderbird is a little > buggy in this area though with how it decides to treat them. > I submitted a patch last month to help with a bug Timo had found, but > of course they haven't done anything about it. > > https://bugzilla.mozilla.org/show_bug.cgi?id=301714#c15 Do you have any other MUA recommendation ? From johnw.mail at gmail.com Tue Jun 7 14:19:46 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 19:19:46 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> Message-ID: <4DEE0952.3030001@gmail.com> On 2011?06?07? 02:41, Timo Sirainen wrote: > On 6.6.2011, at 19.59, johnw wrote: > >> yes, i did it (put the mail_chroot inside the protocol !lmtp { mail_chroot = /var/vmail/ } >> and no mail_chroot anywhere. >> >> but the both doveconf mail_chroot and doveconf -f protocol=lmtp mail_chroot >> result is same empty: mail_chroot = > Oh, looks like doveconf didn't work exactly as I thought :) Small modification to the test then: > > doveconf -f protocol=imap mail_chroot > doveconf -f protocol=lmtp mail_chroot > > Now it should show the chroot with imap, but not with lmtp. > yes, like you said root at shell:[/etc/dovecot/conf.d]# doveconf -f protocol=imap mail_chroot mail_chroot = /var/vmail/ root at shell:[/etc/dovecot/conf.d]# doveconf -f protocol=lmtp mail_chroot mail_chroot = but still have the error Couldn't drop privileges: Process is already chrooted, can't un-chroot for this user and lmtp can not delivery mail From varia at e-healthexpert.org Tue Jun 7 14:45:02 2011 From: varia at e-healthexpert.org (Mark Alan) Date: Tue, 7 Jun 2011 12:45:02 +0100 Subject: [Dovecot] How Dovecot 2 create folders and subfolders ( MBOX format ) with TB ? In-Reply-To: <4DEDFFC4.5030209@esiee.fr> References: <4DEDDA2D.1000103@esiee.fr> <4DEDE021.6010508@es2eng.com> <4DEDFFC4.5030209@esiee.fr> Message-ID: <20110607124502.7c15f6f0@e-healthexpert.org> On Tue, 07 Jun 2011 12:39:00 +0200, Frank Bonnet wrote: > > Do you have any other MUA recommendation ? > http://www.claws-mail.org/ From tss at iki.fi Tue Jun 7 15:18:47 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 15:18:47 +0300 Subject: [Dovecot] possible bug leading to lmtp crashes In-Reply-To: <4DEDAFC4.3080400@gmail.com> References: <4DAECAAC.3060903@gmail.com> <4DB58F67.4090600@gmail.com> <4DB6FCF7.9070905@gmail.com> <5D19A866-381B-4CA6-B8FF-0F7BCDA36799@iki.fi> <4DBC3F3F.4030605@gmail.com> <1304957973.10421.101.camel@hurina> <4DCA7C6F.40902@gmail.com> <1305116849.10421.192.camel@hurina> <4DD5191E.9040606@gmail.com> <4DEDAFC4.3080400@gmail.com> Message-ID: <1307449127.10421.700.camel@hurina> On Mon, 2011-06-06 at 22:57 -0600, Trever L. Adams wrote: > On 05/19/2011 07:20 AM, Trever L. Adams wrote: > > > > May 17 04:01:02 dovecot: auth: Panic: file ../../src/lib/array.h: line > > 189 (array_idx_i): assertion failed: (idx * array->element_size < > > array->buffer->used) > > > > This is usually repeated 2 or more times near a crash. On the machine > > that doesn't crash, I NEVER see this. On the machines that crash, there > > isn't (or doesn't seem to be) a 1:1 correlation. ** THERE IS A 1:1 FOUND LATER ** > > > > Trever > Ok, I think I have figured out the cause, but no the problem in the > code. There were three machines TS, PP, ST. TS and ST had identical > configurations with auth_username_format = %Lu. PP had it = %u. PP > started crashing when I changed it to %Lu. I don't see why that would matter, but I think this will help: http://hg.dovecot.org/dovecot-2.0/rev/c0734f08b3f3 From tss at iki.fi Tue Jun 7 16:13:12 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:13:12 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DEE0952.3030001@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> <4DEE0952.3030001@gmail.com> Message-ID: <1307452392.10421.712.camel@hurina> On Tue, 2011-06-07 at 19:19 +0800, johnw wrote: > Couldn't drop privileges: Process is already chrooted, can't un-chroot > for this user > > and lmtp can not delivery mail This'll fix it: http://hg.dovecot.org/dovecot-2.0/rev/ed05316ed441 Also remove the protocol !lmtp {} around mail_chroot. Looks like I already had code that was supposed to handle it, but I had forgotten about it and I had never tested it. From johnw.mail at gmail.com Tue Jun 7 16:13:36 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 21:13:36 +0800 Subject: [Dovecot] lmtp lowercase/uppercase mailbox problem Message-ID: <4DEE2400.8000303@gmail.com> after upgrade to 2.0.x, and change dovecot-lda to dovecot-lmtp as mail deliver. i find the lowercase/uppercase mail box problem, i see some mail is delivery to uppercase mail box, (my mail box is /var/vmail/johnw, now i see some mail in /var/vmail/JOHNW, i use maildir) it did not happen before. (dovecot 1.2.x with dovecot-lda) anyone can point me which config/setting, should i looking for? i use postfix as smtp server, and i use virtual mailuser. both user info is stored in mysql database. please help, and thank you. From tss at iki.fi Tue Jun 7 16:15:34 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:15:34 +0300 Subject: [Dovecot] lmtp lowercase/uppercase mailbox problem In-Reply-To: <4DEE2400.8000303@gmail.com> References: <4DEE2400.8000303@gmail.com> Message-ID: <1307452534.10421.713.camel@hurina> On Tue, 2011-06-07 at 21:13 +0800, johnw wrote: > after upgrade to 2.0.x, and change dovecot-lda to dovecot-lmtp as mail > deliver. > i find the lowercase/uppercase mail box problem, > i see some mail is delivery to uppercase mail box, > (my mail box is /var/vmail/johnw, now i see some mail in > /var/vmail/JOHNW, i use maildir) > it did not happen before. (dovecot 1.2.x with dovecot-lda) > > anyone can point me which config/setting, should i looking for? Easiest fix: auth_username_format = %Lu From johnw.mail at gmail.com Tue Jun 7 16:20:13 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 21:20:13 +0800 Subject: [Dovecot] lmtp lowercase/uppercase mailbox problem In-Reply-To: <1307452534.10421.713.camel@hurina> References: <4DEE2400.8000303@gmail.com> <1307452534.10421.713.camel@hurina> Message-ID: <4DEE258D.5070407@gmail.com> On 2011?06?07? 21:15, Timo Sirainen wrote: > On Tue, 2011-06-07 at 21:13 +0800, johnw wrote: >> after upgrade to 2.0.x, and change dovecot-lda to dovecot-lmtp as mail >> deliver. >> i find the lowercase/uppercase mail box problem, >> i see some mail is delivery to uppercase mail box, >> (my mail box is /var/vmail/johnw, now i see some mail in >> /var/vmail/JOHNW, i use maildir) >> it did not happen before. (dovecot 1.2.x with dovecot-lda) >> >> anyone can point me which config/setting, should i looking for? > Easiest fix: auth_username_format = %Lu > > It work just fine, thank you. From robert at schetterer.org Tue Jun 7 16:23:30 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 07 Jun 2011 15:23:30 +0200 Subject: [Dovecot] uid=error and BUG: Unknown internal error dovecot 2.0.13 Message-ID: <4DEE2652.8060602@schetterer.org> Hi Timo, i have a few ( not really many ) errors like this with lmtp Jun 7 09:41:23 mail02 dovecot: lmtp(11034, user at user.de): DELlOoq+7U0aKwAAZA6IsQ: msgid=<4DEDD502.705020 at ameriton.com>: save failed to INBOX: BUG: Unknown internal error Jun 7 09:36:22 mail01 dovecot: lmtp(26456, user at user.de): save: box=INBOX, uid=error, msgid=, size=7192 any idea ? is it critical, possible to loose mails with this ? system are two postfix/dovecot servers with drbd and ocfs2 store behind load balancers -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From matt at inter7.com Tue Jun 7 16:43:34 2011 From: matt at inter7.com (Matt Brookings) Date: Tue, 07 Jun 2011 08:43:34 -0500 Subject: [Dovecot] Patch for vpopmail roaming users support Message-ID: <4DEE2B06.7000007@inter7.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Timo, here is a patch against the Mercurial repository that fixes and updates the support for roaming users under the vpopmail module. Thanks! - -- /* Matt Brookings GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk3uKwMACgkQIwet2/rgZyyBVACfQJkigTq3dMC9+bk+dhr6UgyW bVIAnA4xtylbGpATJV0f1lgLQMo0RzMS =zrO6 -----END PGP SIGNATURE----- -------------- next part -------------- A non-text attachment was scrubbed... Name: vpopmail-roaming-users.patch Type: text/x-diff Size: 757 bytes Desc: not available URL: From tss at iki.fi Tue Jun 7 16:45:13 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:45:13 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> Message-ID: <1307454313.10421.724.camel@hurina> Hmm. Maybe something generic: Returning "foo" extra field overwrites "foo" setting, but returning "+foo" extra field appends the value to the "foo" setting? See if the attached patch works (untested). On Mon, 2011-06-06 at 12:18 +0200, Antonio Perez-Aranda wrote: > Umm, it isn't running. > > If I put plugin imap_quota forced on user_attrs, then IMAP and Dovedm > doesn't run correctly. They can load this plugin. > > Maybe we can do a patch for ldap/config to avoid overwrite "all > plugins" enabled and support to append to enabled? > > > > 2011/6/3 Antonio Perez-Aranda : > > OK thanks. It isn't pretty but is running. > > > > 2011/6/3 Timo Sirainen : > >> On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: > >> > >>> And in passwd-ldap.conf I have some like this to add extra plugins: > >>> > >>> user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins > >> > >> This completely overrides mail_plugins setting.. > >> > >>> With this. I can see that dovecot load all plugins from settings, but > >>> in the user session, I can get only the plugins that I have selected > >>> in mailPlugins field > >>> > >>> If i check some like this: > >>> mailPlugins=mail_plugins=$mail_plugins %$, > >> > >> $mail_plugins variable works only inside dovecot.conf while the settings > >> are being parsed. > >> > >>> The imap session user is aborted after login. > >>> > >>> > >>> How can I add extra plugins by ldap without put on ldap all user plugins? > >> > >> The best you can do now is: > >> > >> mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ > >> > >> i.e. list the global plugins in here as well as in the global > >> mail_plugins setting. > >> > >> > > > > > > > > -- > > Antonio P?rez-Aranda Alcaide > > aperezaranda at yaco.es > > > > Yaco Sistemas S.L. > > http://www.yaco.es/ > > C/ Rioja 5, 41001 Sevilla > > Tel?fono +34 954 50 00 57 > > Fax +34 954 50 09 29 > > > > > -------------- next part -------------- A non-text attachment was scrubbed... Name: diff Type: text/x-patch Size: 1240 bytes Desc: not available URL: From tss at iki.fi Tue Jun 7 16:47:46 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:47:46 +0300 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <4DEE2B06.7000007@inter7.com> References: <4DEE2B06.7000007@inter7.com> Message-ID: <1307454466.10421.725.camel@hurina> On Tue, 2011-06-07 at 08:43 -0500, Matt Brookings wrote: > Timo, here is a patch against the Mercurial repository that fixes and > updates the support for roaming users under the vpopmail module. OK, but one question: > + /* > + vpopmail 5.4 does not understand IPv6 > + */ > + > + if (!(strcmp(host, "::1"))) > + host = "127.0.0.1"; Does this code really matter? Wouldn't SMTP relay be open from localhost always anyway? From matt at inter7.com Tue Jun 7 16:52:58 2011 From: matt at inter7.com (Matt Brookings) Date: Tue, 07 Jun 2011 08:52:58 -0500 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <1307454466.10421.725.camel@hurina> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> Message-ID: <4DEE2D3A.1060100@inter7.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/07/2011 08:47 AM, Timo Sirainen wrote: > On Tue, 2011-06-07 at 08:43 -0500, Matt Brookings wrote: >> Timo, here is a patch against the Mercurial repository that fixes and >> updates the support for roaming users under the vpopmail module. > > OK, but one question: > >> + /* >> + vpopmail 5.4 does not understand IPv6 >> + */ >> + >> + if (!(strcmp(host, "::1"))) >> + host = "127.0.0.1"; > > Does this code really matter? Wouldn't SMTP relay be open from localhost > always anyway? Unfortunately, the 5.4 branch does not understand "::1" as the loopback, and it parses the value incorrectly, leading to an open relay situation. Not all systems allow localhost to relay via SMTP without authentication. When I have this situation sorted out, I'll send along another patch that either removes this, or uses the new code. - -- /* Matt Brookings GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk3uLToACgkQIwet2/rgZyxZTQCeI53+ejF6gCGPW+3wlSP75YN2 IUQAn31S+tWcw59QzbRqyvjPf4mIsXLL =QI9m -----END PGP SIGNATURE----- From tss at iki.fi Tue Jun 7 16:53:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:53:08 +0300 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DDB7E0C.9090306@wenn.com> References: <4DDB7E0C.9090306@wenn.com> Message-ID: <1307454788.10421.728.camel@hurina> On Tue, 2011-05-24 at 10:44 +0100, Ricardo Branco wrote: > Dovecot 2.0.13 > Centos 5.4 x86_64 2.6.18-164.9.1.el5 (on ESXi) > OS/Logs on local storage, /home all on NFS server for datastore (NFS Store Centos 5.5 x86_64 2.6.18-194.11.1.el5) > Thunderbird 3.1.10 on XP/W7 Desktops > > We are seeing a werid issue where there is a delay of up to a few mins in seeing label updates on messages. > I have confirmed that Thunderbird is sending the update to the server with WireShark, its just additional users > connected to the same mailbox do not see them. Are the two clients connecting to the same Dovecot server? > Marking a message as Seen/Un-Seen happens faster just not labels. > If you have a label set when you mark a message as Seen/Un-Seen the other clients then see the update straight away. I don't see how that could be possible. Did you check with wireshark when Thunderbird received the \Seen flag change or the label change? You could try also if you can manually reproduce this with telnet: telnet localhost 143 a login user pass b select inbox do the same with another session then run "c idle" in first session and in the second one run: c store 1 +flags $Label1 Did it report immediately to the first IDLEing session about the label change? From tss at iki.fi Tue Jun 7 16:57:16 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 16:57:16 +0300 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <4DEE2D3A.1060100@inter7.com> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> <4DEE2D3A.1060100@inter7.com> Message-ID: <1307455036.10421.730.camel@hurina> On Tue, 2011-06-07 at 08:52 -0500, Matt Brookings wrote: > >> + /* > >> + vpopmail 5.4 does not understand IPv6 > >> + */ > >> + > >> + if (!(strcmp(host, "::1"))) > >> + host = "127.0.0.1"; > > > > Does this code really matter? Wouldn't SMTP relay be open from localhost > > always anyway? > > Unfortunately, the 5.4 branch does not understand "::1" as the loopback, > and it parses the value incorrectly, leading to an open relay situation. > Not all systems allow localhost to relay via SMTP without authentication. Doesn't it also mean that if someone connects via a remote IPv6 address, it again leads to open relay? How about the attached patch instead? -------------- next part -------------- A non-text attachment was scrubbed... Name: diff Type: text/x-patch Size: 737 bytes Desc: not available URL: From johnw.mail at gmail.com Tue Jun 7 17:02:32 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 22:02:32 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307452392.10421.712.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> <4DEE0952.3030001@gmail.com> <1307452392.10421.712.camel@hurina> Message-ID: <4DEE2F78.8030202@gmail.com> On 2011?06?07? 21:13, Timo Sirainen wrote: > On Tue, 2011-06-07 at 19:19 +0800, johnw wrote: >> Couldn't drop privileges: Process is already chrooted, can't un-chroot >> for this user >> >> and lmtp can not delivery mail > This'll fix it: http://hg.dovecot.org/dovecot-2.0/rev/ed05316ed441 > > Also remove the protocol !lmtp {} around mail_chroot. Looks like I > already had code that was supposed to handle it, but I had forgotten > about it and I had never tested it. > > after apply the patch with 2.0.13, and remove the protocol !lmtp {}, the error like this: Couldn't drop privileges: Process is already chrooted to /var/vmail, can't chroot to /var/vmail/ and lmtp still can not delivery mail From matt at inter7.com Tue Jun 7 17:10:13 2011 From: matt at inter7.com (Matt Brookings) Date: Tue, 07 Jun 2011 09:10:13 -0500 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <1307455036.10421.730.camel@hurina> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> <4DEE2D3A.1060100@inter7.com> <1307455036.10421.730.camel@hurina> Message-ID: <4DEE3145.4050801@inter7.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/07/2011 08:57 AM, Timo Sirainen wrote: > On Tue, 2011-06-07 at 08:52 -0500, Matt Brookings wrote: >>>> + /* >>>> + vpopmail 5.4 does not understand IPv6 >>>> + */ >>>> + >>>> + if (!(strcmp(host, "::1"))) >>>> + host = "127.0.0.1"; >>> >>> Does this code really matter? Wouldn't SMTP relay be open from localhost >>> always anyway? >> >> Unfortunately, the 5.4 branch does not understand "::1" as the loopback, >> and it parses the value incorrectly, leading to an open relay situation. >> Not all systems allow localhost to relay via SMTP without authentication. > > Doesn't it also mean that if someone connects via a remote IPv6 address, > it again leads to open relay? How about the attached patch instead? Many systems will be running other qmail and vpopmail services from the ucspi-tcp package which may not be patched to support IPv6. As a result, when connecting to "::1", it will be translated to 127.0.0.1, and as I said before, some systems will not allow localhost to send without authentication. I understand it's introducing a hackish fix into your project, but I will submit a new patch that updates this block of code when a proper solution that will work across the various system configurations is determined. - -- /* Matt Brookings GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk3uMUEACgkQIwet2/rgZyxdcwCfYtq3lkGoFTlviG6t67c8XKMZ 67MAn1ef3Fft0Fpf1W3z3eygPoA5oTwx =neo1 -----END PGP SIGNATURE----- From tss at iki.fi Tue Jun 7 17:15:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 17:15:33 +0300 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <4DEE2F78.8030202@gmail.com> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> <4DEE0952.3030001@gmail.com> <1307452392.10421.712.camel@hurina> <4DEE2F78.8030202@gmail.com> Message-ID: <1307456133.10421.740.camel@hurina> On Tue, 2011-06-07 at 22:02 +0800, johnw wrote: > On 2011?06?07? 21:13, Timo Sirainen wrote: > > On Tue, 2011-06-07 at 19:19 +0800, johnw wrote: > >> Couldn't drop privileges: Process is already chrooted, can't un-chroot > >> for this user > >> > >> and lmtp can not delivery mail > > This'll fix it: http://hg.dovecot.org/dovecot-2.0/rev/ed05316ed441 > > > > Also remove the protocol !lmtp {} around mail_chroot. Looks like I > > already had code that was supposed to handle it, but I had forgotten > > about it and I had never tested it. > > > > > after apply the patch with 2.0.13, and remove the protocol !lmtp {}, the > error like this: > > Couldn't drop privileges: Process is already chrooted to /var/vmail, > can't chroot to /var/vmail/ > > and lmtp still can not delivery mail The trick is to make the strings equal :) mail_chroot = /var/mail without the trailing /. From aperezaranda at yaco.es Tue Jun 7 17:16:23 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Tue, 7 Jun 2011 16:16:23 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1307454313.10421.724.camel@hurina> References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> Message-ID: Greats, I'm working on patch from this morning, but it's very hard to debug on settings-parser How can I enable i_debug on settings-parser.c ? 2011/6/7 Timo Sirainen : > Hmm. Maybe something generic: Returning "foo" extra field overwrites > "foo" setting, but returning "+foo" extra field appends the value to the > "foo" setting? See if the attached patch works (untested). > > On Mon, 2011-06-06 at 12:18 +0200, Antonio Perez-Aranda wrote: >> Umm, it isn't running. >> >> If I put plugin imap_quota forced on user_attrs, then IMAP and Dovedm >> doesn't run correctly. They can load this plugin. >> >> Maybe we can do a patch for ldap/config to avoid overwrite "all >> plugins" enabled and support to append to enabled? >> >> >> >> 2011/6/3 Antonio Perez-Aranda : >> > OK thanks. It isn't pretty but is running. >> > >> > 2011/6/3 Timo Sirainen : >> >> On Fri, 2011-06-03 at 12:30 +0200, Antonio Perez-Aranda wrote: >> >> >> >>> And in passwd-ldap.conf I have some like this to add extra plugins: >> >>> >> >>> user_attrs = homeDirectory=home,uid=user,mailQuota=quota_rule=*:bytes=%$,mailPlugins=mail_plugins >> >> >> >> This completely overrides mail_plugins setting.. >> >> >> >>> With this. I can see that dovecot load all plugins from settings, but >> >>> in the user session, I can get only the plugins that I have selected >> >>> in mailPlugins field >> >>> >> >>> If i check some like this: >> >>> ? mailPlugins=mail_plugins=$mail_plugins %$, >> >> >> >> $mail_plugins variable works only inside dovecot.conf while the settings >> >> are being parsed. >> >> >> >>> The imap session user is aborted after login. >> >>> >> >>> >> >>> How can I add extra plugins by ldap without put on ldap all user plugins? >> >> >> >> The best you can do now is: >> >> >> >> mailPlugins=mail_plugins=plugin1,plugin2,plugin3,%$ >> >> >> >> i.e. list the global plugins in here as well as in the global >> >> mail_plugins setting. >> >> >> >> >> > >> > >> > >> > -- >> > Antonio P?rez-Aranda Alcaide >> > aperezaranda at yaco.es >> > >> > Yaco Sistemas S.L. >> > http://www.yaco.es/ >> > C/ Rioja 5, 41001 Sevilla >> > Tel?fono +34 954 50 00 57 >> > Fax ? ? ?+34 954 50 09 29 >> > >> >> >> > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From tss at iki.fi Tue Jun 7 17:18:04 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 17:18:04 +0300 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <4DEE3145.4050801@inter7.com> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> <4DEE2D3A.1060100@inter7.com> <1307455036.10421.730.camel@hurina> <4DEE3145.4050801@inter7.com> Message-ID: <1307456284.10421.742.camel@hurina> On Tue, 2011-06-07 at 09:10 -0500, Matt Brookings wrote: > >> Unfortunately, the 5.4 branch does not understand "::1" as the loopback, > >> and it parses the value incorrectly, leading to an open relay situation. > >> Not all systems allow localhost to relay via SMTP without authentication. > > > > Doesn't it also mean that if someone connects via a remote IPv6 address, > > it again leads to open relay? How about the attached patch instead? > > Many systems will be running other qmail and vpopmail services from the > ucspi-tcp package which may not be patched to support IPv6. As a > result, when connecting to "::1", it will be translated to 127.0.0.1, > and as I said before, some systems will not allow localhost to send > without authentication. > > I understand it's introducing a hackish fix into your project, but I > will submit a new patch that updates this block of code when a proper > solution that will work across the various system configurations is > determined. It still seems safer to me to ignore all IPv6 addresses rather than ::1 specifically. And as I understand it works just as well normally with both ways? From tss at iki.fi Tue Jun 7 17:21:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 17:21:41 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> Message-ID: <1307456501.10421.745.camel@hurina> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: > Greats, I'm working on patch from this morning, but it's very hard to > debug on settings-parser I don't think you should need to touch that code. It's a bit difficult for me also to follow.. > How can I enable i_debug on settings-parser.c ? What do you mean? You could add i_debug() calls and it should work just the same as everywhere. Did you try the patch in my previous mail? I think that should be enough. You could then use: user_attrs = .., mailPlugins=+mail_plugins From johnw.mail at gmail.com Tue Jun 7 17:26:10 2011 From: johnw.mail at gmail.com (johnw) Date: Tue, 07 Jun 2011 22:26:10 +0800 Subject: [Dovecot] chroot lmtp, then can not open /usr/local/lib/dovecot In-Reply-To: <1307456133.10421.740.camel@hurina> References: <4DEA37AF.4040202@gmail.com> <1307371591.10421.680.camel@hurina> <1307374093.10421.683.camel@hurina> <4DECF412.4010704@gmail.com> <1307374751.10421.688.camel@hurina> <4DECFA26.7020704@gmail.com> <1307376560.10421.690.camel@hurina> <4DED012B.6080506@gmail.com> <12E475B5-9CC7-4AF1-BCE5-6C5E5228D8EA@iki.fi> <4DED0788.9070406@gmail.com> <2259EF01-38EE-4AD1-8B9A-1CD075F8B6AC@iki.fi> <4DEE0952.3030001@gmail.com> <1307452392.10421.712.camel@hurina> <4DEE2F78.8030202@gmail.com> <1307456133.10421.740.camel@hurina> Message-ID: <4DEE3502.3000000@gmail.com> On 2011?06?07? 22:15, Timo Sirainen wrote: > On Tue, 2011-06-07 at 22:02 +0800, johnw wrote: >> On 2011?06?07? 21:13, Timo Sirainen wrote: >>> On Tue, 2011-06-07 at 19:19 +0800, johnw wrote: >>>> Couldn't drop privileges: Process is already chrooted, can't un-chroot >>>> for this user >>>> >>>> and lmtp can not delivery mail >>> This'll fix it: http://hg.dovecot.org/dovecot-2.0/rev/ed05316ed441 >>> >>> Also remove the protocol !lmtp {} around mail_chroot. Looks like I >>> already had code that was supposed to handle it, but I had forgotten >>> about it and I had never tested it. >>> >>> >> after apply the patch with 2.0.13, and remove the protocol !lmtp {}, the >> error like this: >> >> Couldn't drop privileges: Process is already chrooted to /var/vmail, >> can't chroot to /var/vmail/ >> >> and lmtp still can not delivery mail > The trick is to make the strings equal :) mail_chroot = /var/mail > without the trailing /. > > Ok, i change mail_chroot = /var/vmail/ to mail_chroot = /var/vmail now, lmtp can delivery mail with chroot. thank you. From tss at iki.fi Tue Jun 7 17:28:14 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 07 Jun 2011 17:28:14 +0300 Subject: [Dovecot] uid=error and BUG: Unknown internal error dovecot 2.0.13 In-Reply-To: <4DEE2652.8060602@schetterer.org> References: <4DEE2652.8060602@schetterer.org> Message-ID: <1307456894.10421.748.camel@hurina> On Tue, 2011-06-07 at 15:23 +0200, Robert Schetterer wrote: > Hi Timo, > i have a few ( not really many ) > errors like this with lmtp > > Jun 7 09:41:23 mail02 dovecot: lmtp(11034, user at user.de): > DELlOoq+7U0aKwAAZA6IsQ: msgid=<4DEDD502.705020 at ameriton.com>: save > failed to INBOX: BUG: Unknown internal error Something went wrong. Really shouldn't be happening. > Jun 7 09:36:22 mail01 dovecot: lmtp(26456, user at user.de): save: > box=INBOX, uid=error, > msgid=, > size=7192 Did this also get some error before that log line? Something went wrong with finding the message's UID during saving.. > any idea ? dovecot -n output would help guessing the reason. > is it critical, possible to loose mails with this ? Shouldn't be possible to lose mails. From robert at schetterer.org Tue Jun 7 18:22:08 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 07 Jun 2011 17:22:08 +0200 Subject: [Dovecot] uid=error and BUG: Unknown internal error dovecot 2.0.13 In-Reply-To: <1307456894.10421.748.camel@hurina> References: <4DEE2652.8060602@schetterer.org> <1307456894.10421.748.camel@hurina> Message-ID: <4DEE4220.4070602@schetterer.org> Am 07.06.2011 16:28, schrieb Timo Sirainen: > On Tue, 2011-06-07 at 15:23 +0200, Robert Schetterer wrote: >> Hi Timo, >> i have a few ( not really many ) >> errors like this with lmtp >> >> Jun 7 09:41:23 mail02 dovecot: lmtp(11034, user at user.de): >> DELlOoq+7U0aKwAAZA6IsQ: msgid=<4DEDD502.705020 at ameriton.com>: save >> failed to INBOX: BUG: Unknown internal error > > Something went wrong. Really shouldn't be happening. > >> Jun 7 09:36:22 mail01 dovecot: lmtp(26456, user at user.de): save: >> box=INBOX, uid=error, >> msgid=, >> size=7192 > > Did this also get some error before that log line? Something went wrong > with finding the message's UID during saving.. havent super verbose logging enabled yet, this servers are massive in production with huge logs, lines found out by grep looking deeper by editor to the log i would say mail is stored whatever uid error was before and wasnt reported before ( with this small verbose ) > >> any idea ? > > dovecot -n output would help guessing the reason. # 2.0.13 (e76a3313a46c): /etc/dovecot/dovecot.conf # OS: Linux 2.6.35-25-generic x86_64 Ubuntu 10.04.2 LTS auth_mechanisms = plain login auth_socket_path = /var/run/dovecot/auth-userdb auth_verbose = yes auth_verbose_passwords = plain auth_worker_max_count = 300 default_client_limit = 1024 default_process_limit = 512 dict { quotadict = mysql:/etc/dovecot/dovecot-dict-quota-sql.conf.ext } disable_plaintext_auth = no first_valid_gid = 1001 first_valid_uid = 1001 hostname = host.host.de last_valid_gid = 1001 last_valid_uid = 1001 listen = * login_greeting = imap, pop ready mail_access_groups = vmail mail_fsync = always mail_gid = 1001 mail_location = maildir:~/ mail_nfs_index = yes mail_nfs_storage = yes mail_plugins = fts fts_squat mail_log autocreate notify mail_privileged_group = vmail mail_uid = 1001 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date mmap_disable = yes namespace default { hidden = no inbox = yes list = yes location = prefix = separator = / subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { autocreate = Trash autocreate2 = Junk autocreate3 = Sent autocreate4 = Drafts autocreate5 = Templates autocreate6 = Archives autosubscribe = Trash autosubscribe2 = Junk autosubscribe3 = Sent autosubscribe4 = Drafts autosubscribe5 = Templates autosubscribe6 = Archives fts = squat home = /usr/local/virtual/%d/%u mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_fields = uid box msgid size mail_log_group_events = yes quota = dict:::proxy::quotadict quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u sieve = /usr/local/virtual/%d/%u/dovecot.sieve sieve_dir = /usr/local/virtual/%d/%u/sieve } postmaster_address = hostmaster at host.host.de protocols = imap pop3 lmtp sieve sendmail_path = /usr/lib/sendmail service anvil { client_limit = 10000 } service auth-worker { user = root } service auth { client_limit = 10000 unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0666 user = postfix } unix_listener auth-userdb { group = vmail mode = 0666 user = vmail } } service dict { extra_groups = vmail unix_listener dict { group = vmail mode = 0660 } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } process_min_avail = 64 service_count = 1 } service imap-postlogin { executable = script-login /usr/local/bin/postlogin_imap.sh user = root } service imap { executable = imap imap-postlogin process_limit = 1024 vsz_limit = 256 M } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } vsz_limit = 256 M } service managesieve-login { inet_listener { address = 127.0.0.1 port = 2000 } vsz_limit = 256 M } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } service pop3-postlogin { executable = script-login /usr/local/bin/postlogin_pop3.sh user = root } service pop3 { executable = pop3 pop3-postlogin process_limit = 1024 } service quota-warning { executable = script /usr/local/bin/quota-warning.sh unix_listener quota-warning { mode = 0666 user = vmail } user = vmail } ssl_ca = >> is it critical, possible to loose mails with this ? > > Shouldn't be possible to lose mails. nobody reported it so far > > -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From aperezaranda at yaco.es Tue Jun 7 18:41:19 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Tue, 7 Jun 2011 17:41:19 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1307456501.10421.745.camel@hurina> References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: I just test it and it is running. Greats. 2011/6/7 Timo Sirainen : > On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >> Greats, I'm working on patch from this morning, but it's very hard to >> debug on settings-parser > > I don't think you should need to touch that code. It's a bit difficult > for me also to follow.. > >> How can I enable i_debug on settings-parser.c ? > > What do you mean? You could add i_debug() calls and it should work just > the same as everywhere. > > Did you try the patch in my previous mail? I think that should be > enough. You could then use: > > user_attrs = .., mailPlugins=+mail_plugins > > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From pch0317 at gmail.com Tue Jun 7 22:20:56 2011 From: pch0317 at gmail.com (pch0317) Date: Tue, 07 Jun 2011 20:20:56 +0100 Subject: [Dovecot] Problem with Outlook 2010 Message-ID: <4DEE7A18.70609@gmail.com> Hi, I use dovecot 2.0. I have problem with Outlook 2010. This application freezes for about 2 minutes when I move or delete messages. Other applications such as Outlook Express and Thunderbird work correctly. Has anyone had similar problem? Thanks From robert at schetterer.org Tue Jun 7 22:30:04 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 07 Jun 2011 21:30:04 +0200 Subject: [Dovecot] uid=error and BUG: Unknown internal error dovecot 2.0.13 In-Reply-To: <4DEE4220.4070602@schetterer.org> References: <4DEE2652.8060602@schetterer.org> <1307456894.10421.748.camel@hurina> <4DEE4220.4070602@schetterer.org> Message-ID: <4DEE7C3C.509@schetterer.org> Am 07.06.2011 17:22, schrieb Robert Schetterer: > Am 07.06.2011 16:28, schrieb Timo Sirainen: >> On Tue, 2011-06-07 at 15:23 +0200, Robert Schetterer wrote: >>> Hi Timo, >>> i have a few ( not really many ) >>> errors like this with lmtp >>> >>> Jun 7 09:41:23 mail02 dovecot: lmtp(11034, user at user.de): >>> DELlOoq+7U0aKwAAZA6IsQ: msgid=<4DEDD502.705020 at ameriton.com>: save >>> failed to INBOX: BUG: Unknown internal error >> >> Something went wrong. Really shouldn't be happening. >> >>> Jun 7 09:36:22 mail01 dovecot: lmtp(26456, user at user.de): save: >>> box=INBOX, uid=error, >>> msgid=, >>> size=7192 >> >> Did this also get some error before that log line? Something went wrong >> with finding the message's UID during saving.. > > havent super verbose logging enabled yet, this servers are massive in > production with huge logs, lines found out by grep > looking deeper by editor to the log i would say mail is stored whatever > uid error was before and wasnt reported before ( with this small verbose ) >> >>> any idea ? >> >> dovecot -n output would help guessing the reason. > > # 2.0.13 (e76a3313a46c): /etc/dovecot/dovecot.conf > # OS: Linux 2.6.35-25-generic x86_64 Ubuntu 10.04.2 LTS > auth_mechanisms = plain login > auth_socket_path = /var/run/dovecot/auth-userdb > auth_verbose = yes > auth_verbose_passwords = plain > auth_worker_max_count = 300 > default_client_limit = 1024 > default_process_limit = 512 > dict { > quotadict = mysql:/etc/dovecot/dovecot-dict-quota-sql.conf.ext > } > disable_plaintext_auth = no > first_valid_gid = 1001 > first_valid_uid = 1001 > hostname = host.host.de > last_valid_gid = 1001 > last_valid_uid = 1001 > listen = * > login_greeting = imap, pop ready > mail_access_groups = vmail > mail_fsync = always > mail_gid = 1001 > mail_location = maildir:~/ > mail_nfs_index = yes > mail_nfs_storage = yes > mail_plugins = fts fts_squat mail_log autocreate notify > mail_privileged_group = vmail > mail_uid = 1001 > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include variables body enotify > environment mailbox date > mmap_disable = yes > namespace default { > hidden = no > inbox = yes > list = yes > location = > prefix = > separator = / > subscriptions = yes > type = private > } > passdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > plugin { > autocreate = Trash > autocreate2 = Junk > autocreate3 = Sent > autocreate4 = Drafts > autocreate5 = Templates > autocreate6 = Archives > autosubscribe = Trash > autosubscribe2 = Junk > autosubscribe3 = Sent > autosubscribe4 = Drafts > autosubscribe5 = Templates > autosubscribe6 = Archives > fts = squat > home = /usr/local/virtual/%d/%u > mail_log_events = delete undelete expunge copy mailbox_delete > mailbox_rename > mail_log_fields = uid box msgid size > mail_log_group_events = yes > quota = dict:::proxy::quotadict > quota_warning = storage=95%% quota-warning 95 %u > quota_warning2 = storage=80%% quota-warning 80 %u > sieve = /usr/local/virtual/%d/%u/dovecot.sieve > sieve_dir = /usr/local/virtual/%d/%u/sieve > } > postmaster_address = hostmaster at host.host.de > protocols = imap pop3 lmtp sieve > sendmail_path = /usr/lib/sendmail > service anvil { > client_limit = 10000 > } > service auth-worker { > user = root > } > service auth { > client_limit = 10000 > unix_listener /var/spool/postfix/private/auth { > group = postfix > mode = 0666 > user = postfix > } > unix_listener auth-userdb { > group = vmail > mode = 0666 > user = vmail > } > } > service dict { > extra_groups = vmail > unix_listener dict { > group = vmail > mode = 0660 > } > } > service imap-login { > inet_listener imap { > port = 143 > } > inet_listener imaps { > port = 993 > ssl = yes > } > process_min_avail = 64 > service_count = 1 > } > service imap-postlogin { > executable = script-login /usr/local/bin/postlogin_imap.sh > user = root > } > service imap { > executable = imap imap-postlogin > process_limit = 1024 > vsz_limit = 256 M > } > service lmtp { > unix_listener /var/spool/postfix/private/dovecot-lmtp { > group = postfix > mode = 0660 > user = postfix > } > vsz_limit = 256 M > } > service managesieve-login { > inet_listener { > address = 127.0.0.1 > port = 2000 > } > vsz_limit = 256 M > } > service pop3-login { > inet_listener pop3 { > port = 110 > } > inet_listener pop3s { > port = 995 > ssl = yes > } > } > service pop3-postlogin { > executable = script-login /usr/local/bin/postlogin_pop3.sh > user = root > } > service pop3 { > executable = pop3 pop3-postlogin > process_limit = 1024 > } > service quota-warning { > executable = script /usr/local/bin/quota-warning.sh > unix_listener quota-warning { > mode = 0666 > user = vmail > } > user = vmail > } > ssl_ca = ssl_cert = ssl_key = userdb { > args = /etc/dovecot/dovecot-sql.conf.ext > driver = sql > } > verbose_proctitle = yes > protocol lda { > mail_plugins = quota sieve mail_log notify > } > protocol imap { > imap_client_workarounds = delay-newmail > imap_id_log = * > imap_id_send = * > imap_idle_notify_interval = 2 mins > imap_logout_format = bytes=%i/%o > imap_max_line_length = 128 k > mail_max_userip_connections = 100 > mail_plugins = fts fts_squat mail_log autocreate notify quota imap_quota > } > protocol lmtp { > mail_plugins = quota sieve fts fts_squat mail_log notify > } > protocol sieve { > mail_max_userip_connections = 100 > managesieve_implementation_string = Dovecot > managesieve_logout_format = bytes=%i/%o > } > protocol pop3 { > mail_max_userip_connections = 100 > mail_plugins = quota mail_log fts fts_squat notify > pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > pop3_enable_last = yes > pop3_logout_format = top=%t/%p, retr=%r/%b, del=%d/%m, size=%s > pop3_reuse_xuidl = no > pop3_uidl_format = %g > } > >> >>> is it critical, possible to loose mails with this ? >> >> Shouldn't be possible to lose mails. > > nobody reported it so far >> >> > > i have a nearly equal setup with same errors but more rare ( not so much traffic/mailboxes ) here i found with more verbose logging Jun 7 17:47:19 mail01 dovecot: lmtp(3554, user at user.de): Debug: Effective uid=1001, gid=1001, home=/usr/local/virtual/user.de/user at user.de/ Jun 7 17:47:19 mail01 dovecot: lmtp(3554, user at user.de): save: box=INBOX, uid=error, msgid=<42002737.2472109201307461419534.JavaMail.beawl at server.com>, size=11968 other ok logs look like i.e Jun 7 07:24:57 mail01 dovecot: lmtp(24871, user at user.de): Debug: Effective uid=1001, gid=1001, home=/usr/local/virtual/user.de/user at user.de/ Jun 7 07:24:57 mail01 dovecot: lmtp(24871, user at user.de): save: box=INBOX/welcome, uid=1661, msgid=<20110607052457.07E04780040 at www.server.com>, size=10059 perhaps this helps -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From robert at schetterer.org Tue Jun 7 22:35:56 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 07 Jun 2011 21:35:56 +0200 Subject: [Dovecot] Problem with Outlook 2010 In-Reply-To: <4DEE7A18.70609@gmail.com> References: <4DEE7A18.70609@gmail.com> Message-ID: <4DEE7D9C.8090405@schetterer.org> Am 07.06.2011 21:20, schrieb pch0317: > Hi, > > I use dovecot 2.0. > > I have problem with Outlook 2010. This application freezes for about 2 > minutes when I move or delete messages. > Other applications such as Outlook Express and Thunderbird work correctly. > > Has anyone had similar problem? > > > Thanks just tested with outlook 2010 3 or 4 times moving 10 small mails from one imap folder to the other and back no freeze -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From matt at inter7.com Tue Jun 7 23:22:19 2011 From: matt at inter7.com (Matt Brookings) Date: Tue, 07 Jun 2011 15:22:19 -0500 Subject: [Dovecot] Patch for vpopmail roaming users support In-Reply-To: <1307456284.10421.742.camel@hurina> References: <4DEE2B06.7000007@inter7.com> <1307454466.10421.725.camel@hurina> <4DEE2D3A.1060100@inter7.com> <1307455036.10421.730.camel@hurina> <4DEE3145.4050801@inter7.com> <1307456284.10421.742.camel@hurina> Message-ID: <4DEE887B.7000002@inter7.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/07/2011 09:18 AM, Timo Sirainen wrote: > On Tue, 2011-06-07 at 09:10 -0500, Matt Brookings wrote: >>>> Unfortunately, the 5.4 branch does not understand "::1" as the loopback, >>>> and it parses the value incorrectly, leading to an open relay situation. >>>> Not all systems allow localhost to relay via SMTP without authentication. >>> >>> Doesn't it also mean that if someone connects via a remote IPv6 address, >>> it again leads to open relay? How about the attached patch instead? >> >> Many systems will be running other qmail and vpopmail services from the >> ucspi-tcp package which may not be patched to support IPv6. As a >> result, when connecting to "::1", it will be translated to 127.0.0.1, >> and as I said before, some systems will not allow localhost to send >> without authentication. >> >> I understand it's introducing a hackish fix into your project, but I >> will submit a new patch that updates this block of code when a proper >> solution that will work across the various system configurations is >> determined. > > It still seems safer to me to ignore all IPv6 addresses rather than ::1 > specifically. And as I understand it works just as well normally with > both ways? That will be fine. As long as it doesn't pass the IPv6 strings, and the ifdef name is changed, all should work. Thanks! - -- /* Matt Brookings GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk3uiHsACgkQIwet2/rgZyw9PACcDHqW65HrFOn0ICSdOzCDoZRB 4F8AoIbftJIhfH/x8YOf4uKKtIbL3ORs =tskj -----END PGP SIGNATURE----- From ricardo at wenn.com Wed Jun 8 00:54:46 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Tue, 07 Jun 2011 22:54:46 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DDB7E0C.9090306@wenn.com> References: <4DDB7E0C.9090306@wenn.com> Message-ID: <4DEE9E26.2090707@wenn.com> anyone seen this issue, its still plaguing us and also seems to have a knock on affect as our blackberries are seeing messages late On 24/05/2011 10:44, Ricardo Branco wrote: > Dovecot 2.0.13 > Centos 5.4 x86_64 2.6.18-164.9.1.el5 (on ESXi) > OS/Logs on local storage, /home all on NFS server for datastore (NFS > Store Centos 5.5 x86_64 2.6.18-194.11.1.el5) > Thunderbird 3.1.10 on XP/W7 Desktops > > We are seeing a werid issue where there is a delay of up to a few mins > in seeing label updates on messages. > I have confirmed that Thunderbird is sending the update to the server > with WireShark, its just additional users connected to the same > mailbox do not see them. > Marking a message as Seen/Un-Seen happens faster just not labels. > If you have a label set when you mark a message as Seen/Un-Seen the > other clients then see the update straight away. > > From tss at iki.fi Wed Jun 8 02:27:39 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 8 Jun 2011 02:27:39 +0300 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEE9E26.2090707@wenn.com> References: <4DDB7E0C.9090306@wenn.com> <4DEE9E26.2090707@wenn.com> Message-ID: <84458199-4F66-45A4-AB0E-CD72A977119A@iki.fi> I answered this some hours ago. If you don't read all mails to mailing list, don't set the Reply-To: header to mailing list. On 8.6.2011, at 0.54, Ricardo Branco wrote: > anyone seen this issue, its still plaguing us and also seems to have a knock on affect as our blackberries are seeing messages late > > On 24/05/2011 10:44, Ricardo Branco wrote: >> Dovecot 2.0.13 >> Centos 5.4 x86_64 2.6.18-164.9.1.el5 (on ESXi) >> OS/Logs on local storage, /home all on NFS server for datastore (NFS Store Centos 5.5 x86_64 2.6.18-194.11.1.el5) >> Thunderbird 3.1.10 on XP/W7 Desktops >> >> We are seeing a werid issue where there is a delay of up to a few mins in seeing label updates on messages. >> I have confirmed that Thunderbird is sending the update to the server with WireShark, its just additional users connected to the same mailbox do not see them. >> Marking a message as Seen/Un-Seen happens faster just not labels. >> If you have a label set when you mark a message as Seen/Un-Seen the other clients then see the update straight away. >> >> > From martin.benkenstein at fh-zwickau.de Wed Jun 8 03:34:08 2011 From: martin.benkenstein at fh-zwickau.de (Martin Benkenstein) Date: Wed, 08 Jun 2011 02:34:08 +0200 Subject: [Dovecot] deliver doesn't find adress/inbox Message-ID: <4DEEC380.7050703@fh-zwickau.de> I'm trying to make dovecot 1.2.15, deliver, openLDAP, exim and fetchmail work together on an Debian Squeeze (virtual) maschine. The connection between dovecot and LDAP seems to be working, I can logon from Thunderbird (IMAP) and my maildir is created automatically. So far so good. But when I download the mails via fetchmail, it seems that deliver cannot find the correct mailbox for the X-Envelope-To entry in the header. fetchmail downloads all mails for the domain from one account (config below) and hands them over to exim. I configured exim addording to the wiki entry (http://wiki.dovecot.org/LDA/Exim Virtual Users / Single UID). The mail is sent back to the account which is fetched by fetchmail. There is a header entry X-Fetchmail-Warning: no recipient addresses matched declared local names. The fetchmail-log itself is worthless. What am I doing wrong? At which does the system try to look up the mailaddress and fails? Thank you in advance Martin Configuration details: # dovecot -n # 1.2.15: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-686 i686 Debian 6.0.1 ext3 log_path: /var/log/dovecot.log log_timestamp: %Y-%m-%d %H:%M:%S login_dir: /var/run/dovecot/login login_executable: /usr/lib/dovecot/imap-login mail_privileged_group: mail mail_location: maildir:/var/mail/dovecot/%n@%d/maildir/ mbox_write_locks: fcntl dotlock lda: postmaster_address: postfrau at pti857.dyndns.info hostname: pti857.dyndns.info log_path: /var/log/dovecot-deliver-errors.log info_log_path: /var/log/dovecot-deliver.log sendmail_path: /usr/sbin/sendmail auth_socket_path: /var/run/dovecot/auth-master auth default: verbose: yes passdb: driver: ldap args: /etc/dovecot/dovecot-ldap.conf userdb: driver: static args: uid=1002 gid=1002 home=/var/mail/dovecot/%n@%d/home socket: type: listen master: path: /var/run/dovecot/auth-master mode: 384 user: dovecotvmail /etc/dovecot/dovecot-ldap.conf ### hosts = localhost dn = cn=admin,dc=tuced,dc=local dnpass = toor auth_bind = yes ldap_version = 3 base = ou=users, dc=tuced, dc=local /etc/fetchmailrc #### set daemon 300 # Pool every 5 minutes set postmaster root set no bouncemail defaults: timeout 300 antispam -1 batchlimit 100 set no syslog set logfile "/var/log/fetchmail.log" poll mail.domain.de proto pop3 localdomains some.domain.org: envelope "X-Envelope-To:" timeout 30 user postman at some.domain.org password secret is * /etc/exim4/conf.d/transport/30_exim4-config_dovecot_lda ### dovecot_virtual_delivery: driver = pipe command = /usr/local/libexec/dovecot/deliver -d $local_part@$domain -f $sender_address -a $original_local_part@$original_domain message_prefix = message_suffix = delivery_date_add envelope_to_add return_path_add log_output user = dovecotvmail temp_errors = 64 : 69 : 70: 71 : 72 : 73 : 74 : 75 : 78 From r.zimmermann at siegnetz.de Wed Jun 8 11:19:32 2011 From: r.zimmermann at siegnetz.de (Ralf Zimmermann) Date: Wed, 08 Jun 2011 10:19:32 +0200 Subject: [Dovecot] Problem with Outlook 2010 In-Reply-To: <4DEE7A18.70609@gmail.com> References: <4DEE7A18.70609@gmail.com> Message-ID: <4DEF3094.4020701@siegnetz.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/07/2011 09:20 PM, pch0317 wrote: > Hi, > > I use dovecot 2.0. > > I have problem with Outlook 2010. This application freezes for about 2 > minutes when I move or delete messages. > Other applications such as Outlook Express and Thunderbird work correctly. > > Has anyone had similar problem? > > > Thanks We have no problems with Outlook 2010 and dovecot-2.0. Everything works fine. Greets Ralf -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAEBAgAGBQJN7zCTAAoJENVjhbwuX+/Hb+wIAJ8PiULXV4u/L0xByojYMKzS jEyzQh+6w6oIqf64q3wCxo8CFRhUZ+STleH5pHNVlmOdw7jU+PeuJxyVYYyZkjE6 UUpIxtlZDPMq79ODFIXRUAFyXM9gB8UWvBDhjuVDbEuEeYu8g0FfHb5qe9hM1+9D pFaBTOQyZ+bsWdkRxtZ0PoYSfAW0+u6ZBP+vqKMfmul/QPXY/ajquLFNa2it3Hov 3u6W7fj8AsjNWGG5H25Vyc0kWxrKXCN7IQV8N2Xz9sUQqI5cncs8nKbxw+RSth44 FxiVCTllBBX1cAUKVj8Aledf2/aYyPk5PuUcsZXz6QsJx2ys+iLoDrLOY+VCoqk= =No8P -----END PGP SIGNATURE----- From nebano at gmail.com Wed Jun 8 12:16:07 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 11:16:07 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space Message-ID: Hi I migrated to dovecot 2 and I started using lmtp for mail delivery. But I have found this on my logs "save failed to INBOX: Not enough disk space" . There is enougth space on disk. and I am not using quota plugin on lmtp my lmtp conf is as follow: # ## LMTP specific settings ## # Support proxying to other LMTP/SMTP servers by performing passdb lookups. #lmtp_proxy = no # When recipient address includes the detail (e.g. user+detail), try to save # the mail to the detail mailbox. See also recipient_delimiter and # lda_mailbox_autocreate settings. #lmtp_save_to_detail_mailbox = no protocol lmtp { # Space separated list of plugins to load (default is global mail_plugins). #mail_plugins = $mail_plugins mail_plugins = sieve postmaster_address = admin at domain.tld } Any idea please? Thanks From ricardo at wenn.com Wed Jun 8 12:23:04 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 10:23:04 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <1307454788.10421.728.camel@hurina> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> Message-ID: <4DEF3F78.2000509@wenn.com> Yes we have several people connecting to the same mail box on the same server (we only have one dovecot server) We have tried as you suggested and any change is reported from session to session immediately, I guess there is a problem in Thunderbird on updating these in the list. Its as if its waiting for so many FETCH commands or some sort of time limit before it updates as sometimes its slow other times its instant. Ile log a ticket with Mozilla. https://bugzilla.mozilla.org/show_bug.cgi?id=591683 Timo Sirainen wrote, On 07/06/2011 14:53: > On Tue, 2011-05-24 at 10:44 +0100, Ricardo Branco wrote: >> Dovecot 2.0.13 >> Centos 5.4 x86_64 2.6.18-164.9.1.el5 (on ESXi) >> OS/Logs on local storage, /home all on NFS server for datastore (NFS Store Centos 5.5 x86_64 2.6.18-194.11.1.el5) >> Thunderbird 3.1.10 on XP/W7 Desktops >> >> We are seeing a werid issue where there is a delay of up to a few mins in seeing label updates on messages. >> I have confirmed that Thunderbird is sending the update to the server with WireShark, its just additional users >> connected to the same mailbox do not see them. > Are the two clients connecting to the same Dovecot server? > >> Marking a message as Seen/Un-Seen happens faster just not labels. >> If you have a label set when you mark a message as Seen/Un-Seen the other clients then see the update straight away. > I don't see how that could be possible. Did you check with wireshark > when Thunderbird received the \Seen flag change or the label change? You > could try also if you can manually reproduce this with telnet: > > telnet localhost 143 > a login user pass > b select inbox > > do the same with another session then run "c idle" in first session and > in the second one run: > > c store 1 +flags $Label1 > > Did it report immediately to the first IDLEing session about the label > change? > -- Ricardo Branco Senior IT Manager 35 Tileyard Studios, Tileyard Road, London N7 9AH, England Email: ricardo at wenn.com Phone: +44 (0)20 7607 2757 Corp: http://corp.wenn.com Photo: http://photo.wenn.com Web: http://www.wenn.com -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/gif Size: 3768 bytes Desc: not available URL: From marcin at mejor.pl Wed Jun 8 12:26:54 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Wed, 08 Jun 2011 11:26:54 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: <4DEF405E.50005@mejor.pl> W dniu 08.06.2011 11:16, Osvaldo Alvarez Pozo pisze: > Hi > I migrated to dovecot 2 and I started using lmtp for mail delivery. > > > But I have found this on my logs "save failed to INBOX: Not enough disk space" . > > There is enougth space on disk. and I am not using quota plugin on lmtp Hello! And you have free inodes too and you don't have quota on filesystem? I'm asking to be sure:) Regards! From bra at fsn.hu Wed Jun 8 13:11:51 2011 From: bra at fsn.hu (Attila Nagy) Date: Wed, 08 Jun 2011 12:11:51 +0200 Subject: [Dovecot] lda_mailbox_autocreate does not work for lmtp? Message-ID: <4DEF4AE7.2010800@fsn.hu> Hi, I try to deliver into specific folders with the "plus addressing", namely: rcpt to: This works only if the folder exists. If it does not, I get the following error: rcpt to: 501 5.5.4 Unsupported options example-config/conf.d/20-lmtp.conf says: # When recipient address includes the detail (e.g. user+detail), try to save # the mail to the detail mailbox. See also recipient_delimiter and # lda_mailbox_autocreate settings. But it seems it does not work (or I am missing something). Current config (I've also tried to include autocreate plugin into lmtp, without any success) is below: # 2.0.13: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 8.2-STABLE amd64 auth_cache_negative_ttl = 0 auth_cache_size = 100 M auth_cache_ttl = 1 days disable_plaintext_auth = no info_log_path = syslog lda_mailbox_autocreate = yes lmtp_save_to_detail_mailbox = yes log_path = /var/log/dovecot-errors.log mail_fsync = never mail_gid = 999 mail_location = maildir:~/Maildir mail_plugins = " quota" mail_uid = 999 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = /usr/local/etc/dovecot/master-users driver = passwd-file master = yes pass = yes } passdb { args = /usr/local/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { autocreate = INBOX.Trash autocreate2 = INBOX.Drafts autocreate3 = INBOX.Sent autocreate4 = INBOX.Spam autosubscribe = INBOX.Trash autosubscribe2 = INBOX.Drafts autosubscribe3 = INBOX.Sent autosubscribe4 = INBOX.Spam mail_log_events = delete mailbox_delete mail_log_fields = uid box msgid size flags vsize from subject quota = maildir:User quota recipient_delimiter = + sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = pop3 imap lmtp service anvil { client_limit = 8192 } service auth { client_limit = 8192 unix_listener auth-userdb { mode = 0600 user = qmailldap } } service imap-login { client_limit = 1000 process_limit = 100 process_min_avail = 8 service_count = 0 } service imap { client_limit = 8 process_limit = 2048 process_min_avail = 16 service_count = 0 } service lmtp { inet_listener lmtp { port = 24 } user = qmailldap } service managesieve-login { inet_listener sieve { port = 4190 } } service pop3-login { client_limit = 1000 process_limit = 100 process_min_avail = 8 service_count = 0 } service pop3 { client_limit = 8 process_limit = 2048 process_min_avail = 32 service_count = 0 } ssl = no userdb { driver = prefetch } userdb { args = /usr/local/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } verbose_proctitle = yes protocol lmtp { mail_plugins = " quota autocreate mail_log notify sieve" } protocol imap { mail_max_userip_connections = 1024 mail_plugins = " quota imap_quota autocreate mail_log notify" } protocol pop3 { mail_max_userip_connections = 1024 mail_plugins = " quota autocreate" } From trever.adams at gmail.com Wed Jun 8 13:38:06 2011 From: trever.adams at gmail.com (Trever L. Adams) Date: Wed, 08 Jun 2011 04:38:06 -0600 Subject: [Dovecot] possible bug leading to lmtp crashes In-Reply-To: <1307449127.10421.700.camel@hurina> References: <4DAECAAC.3060903@gmail.com> <4DB58F67.4090600@gmail.com> <4DB6FCF7.9070905@gmail.com> <5D19A866-381B-4CA6-B8FF-0F7BCDA36799@iki.fi> <4DBC3F3F.4030605@gmail.com> <1304957973.10421.101.camel@hurina> <4DCA7C6F.40902@gmail.com> <1305116849.10421.192.camel@hurina> <4DD5191E.9040606@gmail.com> <4DEDAFC4.3080400@gmail.com> <1307449127.10421.700.camel@hurina> Message-ID: <4DEF510E.5090104@gmail.com> On 06/07/2011 06:18 AM, Timo Sirainen wrote: > On Mon, 2011-06-06 at 22:57 -0600, Trever L. Adams wrote: >> >> Ok, I think I have figured out the cause, but no the problem in the >> code. There were three machines TS, PP, ST. TS and ST had identical >> configurations with auth_username_format = %Lu. PP had it = %u. PP >> started crashing when I changed it to %Lu. > I don't see why that would matter, but I think this will help: > http://hg.dovecot.org/dovecot-2.0/rev/c0734f08b3f3 > It may be too early to be certain, but in 13 hours I haven't seen a crash on any of the three machines. This indeed may have fixed it all. How strange that various things seemed to be the cause and ... well... weren't. Thank you. I will let you know in about 2 days time if the fix was complete. Again, thank you, Trever -- "Yesterday is gone. Tomorrow is too far for me. Today is what I have, and what I fight for." -- Unknown -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From stephan at rename-it.nl Wed Jun 8 13:50:34 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 08 Jun 2011 12:50:34 +0200 Subject: [Dovecot] sieve script tracing In-Reply-To: <4DEC9223.6090807@us.edu.pl> References: <4DEA04BB.2040405@us.edu.pl> <4DEB4E5C.20407@rename-it.nl> <4DEBEB90.2080503@us.edu.pl> <4DEC0980.9070105@rename-it.nl> <4DEC9223.6090807@us.edu.pl> Message-ID: <4DEF53FA.5040505@rename-it.nl> On 6/6/2011 10:38 AM, Maciej Uhlig wrote: > W dniu 2011-06-06 00:56, Stephan Bosch pisze: >> >> If you have a sample message, you can use the sieve-test tool for >> that. You can check the individual steps the interpreter takes while >> processing the message. Refer to the man page for more info. >> > > Thanks. It could be really helpful in case of script testing. But I'm > rather interested in statistics (which rule most probably causes mail > discarding). I've made the vnd.dovecot.debug extension available for the LDA Sieve plugin. This allows logging debug messages to the user's personal logfile (typically ~/.dovecot.sieve.log). It's currently only explained in the sieve-test man page. This change will be included in the next release. Regards, Stephan. From bra at fsn.hu Wed Jun 8 14:00:58 2011 From: bra at fsn.hu (Attila Nagy) Date: Wed, 08 Jun 2011 13:00:58 +0200 Subject: [Dovecot] lda_mailbox_autocreate does not work for lmtp? In-Reply-To: <4DEF4AE7.2010800@fsn.hu> References: <4DEF4AE7.2010800@fsn.hu> Message-ID: <4DEF566A.4060206@fsn.hu> On 06/08/11 12:11, Attila Nagy wrote: [a lot of things] Oh crap, it turned out that some binary junk crept into the LMTP sequence I tried with copy-paste... From nebano at gmail.com Wed Jun 8 14:32:31 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 13:32:31 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: Hi again Sorry if I top post, but this problem is urgent as we are losing mails. We have migrate from dovecot 1.4 to dovecot 2.0.12. But from severals now we have found this on our log files. relay=smtp1.huissier-justice.fr[private/dovecot-lmtp], delay=5.4, delays=0.74/0/0.01/4.6, dsn=5.2.2, status=bounced (host mail.domain.tld[private/dovecot-lmtp] said: 552 5.2.2 Not enough disk space (in reply to end of DATA command)) We use maildir on an ocfs2 filesystem shared by 4 serveurs. The partition is not full the output of df -hi is: #df -hi Filesystem Inodes IUsed IFree IUse% Mounted on /dev/mapper/vmail 30M 21M 9.2M 70% /var/vmail We noticed this happens when messages are bigger than 5Mbytes, but are not using quota plugins on dovecot-lmtp this is a part of our dovecot configuration. service lmtp { chroot = client_limit = 0 drop_priv_before_exec = no executable = lmtp extra_groups = group = idle_kill = 0 inet_listener lmtp { address = 127.0.0.1 ::1 port = 24 ssl = no } privileged_group = process_limit = 0 process_min_avail = 0 protocol = lmtp service_count = 0 type = unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } unix_listener lmtp { group = mode = 0666 user = } user = vsz_limit = 0 } protocol lmtp { mail_plugins = sieve postmaster_address = admin at domain.tld In postfix main.cf mailbox_size_limit = 0 virtual_mailbox_limit = 51200000 Any ideas Please? Thanks 2011/6/8 Osvaldo Alvarez Pozo : > Hi > I migrated to dovecot 2 and I started using lmtp for mail delivery. > > > But I have found this on my logs "save failed to INBOX: Not enough disk space" . > > There is enougth space on disk. and I am not using quota plugin on lmtp > > my lmtp conf is as follow: > > # > ## LMTP specific settings > ## > > # Support proxying to other LMTP/SMTP servers by performing passdb lookups. > #lmtp_proxy = no > > # When recipient address includes the detail (e.g. user+detail), try to save > # the mail to the detail mailbox. See also recipient_delimiter and > # lda_mailbox_autocreate settings. > #lmtp_save_to_detail_mailbox = no > > protocol lmtp { > ?# Space separated list of plugins to load (default is global mail_plugins). > ?#mail_plugins = $mail_plugins > mail_plugins = sieve > postmaster_address = admin at domain.tld > } > > Any idea please? > > Thanks > From Ralf.Hildebrandt at charite.de Wed Jun 8 14:35:39 2011 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Wed, 8 Jun 2011 13:35:39 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: <20110608113539.GB7863@charite.de> * Osvaldo Alvarez Pozo : > #df -hi > Filesystem Inodes IUsed IFree IUse% Mounted on > > /dev/mapper/vmail > 30M 21M 9.2M 70% /var/vmail And without -i? -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From nebano at gmail.com Wed Jun 8 14:40:27 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 13:40:27 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <20110608113539.GB7863@charite.de> References: <20110608113539.GB7863@charite.de> Message-ID: Hi the output of df -h is: Filesystem Size Used Avail Use% Mounted on /dev/mapper/vmail 120G 84G 37G 70% /var/vmail Thanks for your help. 2011/6/8 Ralf Hildebrandt : > * Osvaldo Alvarez Pozo : > >> #df -hi >> Filesystem ? ? ? ? ? ?Inodes ? IUsed ? IFree IUse% Mounted on >> >> /dev/mapper/vmail >> ? ? ? ? ? ? ? ? ? ? ? ? 30M ? ? 21M ? ?9.2M ? 70% /var/vmail > > And without -i? > > -- > Ralf Hildebrandt > ?Gesch?ftsbereich IT | Abteilung Netzwerk > ?Charit? - Universit?tsmedizin Berlin > ?Campus Benjamin Franklin > ?Hindenburgdamm 30 | D-12203 Berlin > ?Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 > ?ralf.hildebrandt at charite.de | http://www.charite.de > > From tss at iki.fi Wed Jun 8 14:47:56 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 14:47:56 +0300 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: <1307533676.10421.751.camel@hurina> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: > But I have found this on my logs "save failed to INBOX: Not enough disk space" . This means that a write() (or some other syscall) returned either ENOSPC or EDQUOT error message, or that quota plugin decided user is out of quota. > There is enougth space on disk. and I am not using quota plugin on lmtp What about filesystem quota? > my lmtp conf is as follow: A full doveconf -n output would be better. From tss at iki.fi Wed Jun 8 14:49:39 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 14:49:39 +0300 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: Message-ID: <1307533779.10421.752.camel@hurina> On Wed, 2011-06-08 at 13:32 +0200, Osvaldo Alvarez Pozo wrote: > Hi again > > Sorry if I top post, but this problem is urgent as we are losing mails. > > We have migrate from dovecot 1.4 to dovecot 2.0.12. But from severals > now we have found this on our log files. > > relay=smtp1.huissier-justice.fr[private/dovecot-lmtp], delay=5.4, > delays=0.74/0/0.01/4.6, dsn=5.2.2, status=bounced (host > mail.domain.tld[private/dovecot-lmtp] said: 552 5.2.2 > Not enough disk space (in reply to end of DATA > command)) Also, this is Postfix's log message. What does Dovecot LMTP log about it? From tom at whyscream.net Wed Jun 8 15:04:36 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Wed, 08 Jun 2011 14:04:36 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <1307533676.10421.751.camel@hurina> References: <1307533676.10421.751.camel@hurina> Message-ID: <4DEF6554.5010101@whyscream.net> On 08/06/11 13:47, Timo Sirainen wrote: > On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: > >> But I have found this on my logs "save failed to INBOX: Not enough disk space" . > > This means that a write() (or some other syscall) returned either ENOSPC > or EDQUOT error message, or that quota plugin decided user is out of > quota. > >> There is enougth space on disk. and I am not using quota plugin on lmtp > > What about filesystem quota? > I remember there were similar issues in the past, due to the fact that messages larger than 128kb were temporarily stored on disk in the users homedir. Maybe this is related? >> my lmtp conf is as follow: > > A full doveconf -n output would be better. > OP has not posted complete doveconf -n output, nor a specific version (other than 'dovecot 2'). Please do so. -- Reagrds, Tom From tss at iki.fi Wed Jun 8 15:09:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 15:09:41 +0300 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <1307533676.10421.751.camel@hurina> References: <1307533676.10421.751.camel@hurina> Message-ID: <1307534981.10421.756.camel@hurina> On Wed, 2011-06-08 at 14:47 +0300, Timo Sirainen wrote: > On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: > > > But I have found this on my logs "save failed to INBOX: Not enough disk space" . > > This means that a write() (or some other syscall) returned either ENOSPC > or EDQUOT error message, or that quota plugin decided user is out of > quota. Actually quota plugin gives a different error message. The only possibility I can think of is that ocfs2 has decided to start returning "no disk space" failures when Dovecot tries to create files. Does this happen for every mail delivery? Can you manually create more files? Can you upload messages via IMAP (i.e. is it only LMTP that is the problem? From tss at iki.fi Wed Jun 8 15:11:21 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 15:11:21 +0300 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <4DEF6554.5010101@whyscream.net> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> Message-ID: <1307535081.10421.758.camel@hurina> On Wed, 2011-06-08 at 14:04 +0200, Tom Hendrikx wrote: > > This means that a write() (or some other syscall) returned either ENOSPC > > or EDQUOT error message, or that quota plugin decided user is out of > > quota. > > > >> There is enougth space on disk. and I am not using quota plugin on lmtp > > > > What about filesystem quota? > > > > I remember there were similar issues in the past, due to the fact that > messages larger than 128kb were temporarily stored on disk in the users > homedir. Maybe this is related? That would have given a temporary failure, not an "out of disk space" error. Also nowadays even that doesn't happen, the message is simply read fully into memory. Although I guess it wouldn't hurt to check if /tmp is full (mail_temp_dir defaults to /tmp again). From nebano at gmail.com Wed Jun 8 15:11:53 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 14:11:53 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <4DEF6554.5010101@whyscream.net> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> Message-ID: Hi Tom, it is dovecot 2.0.12 this is the doveconf -n output. There is not file system quota. This is the output of doveconf -n # 2.0.12: /usr/local/dovecot/etc/dovecot/dovecot.conf # OS: Linux 2.6.32-bpo.5-amd64 x86_64 Debian 5.0.5 ocfs2 auth_cache_size = 1 M auth_mechanisms = plain login base_dir = /usr/local/dovecot disable_plaintext_auth = no first_valid_uid = 5000 last_valid_uid = 5000 mail_access_groups = mail mail_gid = 8 mail_location = maildir:/var/vmail/%d/%u/Maildir mail_max_userip_connections = 100 mail_uid = 5000 maildir_very_dirty_syncs = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date mmap_disable = yes passdb { args = /usr/local/dovecot/etc/dovecot/sql.conf driver = sql } plugin { quota = maildir:User quota sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 lmtp sieve service auth { client_limit = 10500 unix_listener /var/spool/postfix/private/auth { group = mail mode = 0660 user = postfix } unix_listener auth-userdb { group = mail mode = 0660 user = postfix } } service imap-login { process_min_avail = 2 service_count = 0 vsz_limit = 128 M } service imap { process_limit = 5000 } service lmtp { inet_listener lmtp { address = 127.0.0.1 ::1 port = 24 } unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } service managesieve-login { inet_listener sieve { port = 4190 } } service pop3-login { process_min_avail = 2 service_count = 0 } service pop3 { process_limit = 5000 } userdb { driver = prefetch } userdb { args = /usr/local/dovecot/etc/dovecot/sql.conf driver = sql } protocol imap { imap_client_workarounds = delay-newmail } protocol pop3 { pop3_client_workarounds = outlook-no-nuls oe-ns-eoh pop3_uidl_format = %08Xu%08Xv } protocol lmtp { mail_plugins = sieve postmaster_address = admin at domain.tld } protocol sieve { managesieve_implementation_string = Dovecot Pigeonhole managesieve_logout_format = bytes=%i/%o managesieve_max_compile_errors = 5 managesieve_max_line_length = 65536 } Thanks 2011/6/8 Tom Hendrikx : > On 08/06/11 13:47, Timo Sirainen wrote: >> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: >> >>> But I have found this on my logs "save failed to INBOX: Not enough disk space" . >> >> This means that a write() (or some other syscall) returned either ENOSPC >> or EDQUOT error message, or that quota plugin decided user is out of >> quota. >> >>> There is enougth space on disk. and I am not using quota plugin on lmtp >> >> What about filesystem quota? >> > > I remember there were similar issues in the past, due to the fact that > messages larger than 128kb were temporarily stored on disk in the users > homedir. Maybe this is related? > >>> my lmtp conf is as follow: >> >> A full doveconf -n output would be better. >> > > OP has not posted complete doveconf -n output, nor a specific version > (other than 'dovecot 2'). Please do so. > > > -- > Reagrds, > ? ? ? ?Tom > From joh.hendriks at gmail.com Wed Jun 8 15:28:58 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Wed, 08 Jun 2011 14:28:58 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> Message-ID: <4DEF6B0A.9020305@gmail.com> Osvaldo Alvarez Pozo schreef: > Hi Tom, > > it is dovecot 2.0.12 this is the doveconf -n output. > > > There is not file system quota. > > This is the output of doveconf -n > > # 2.0.12: /usr/local/dovecot/etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-bpo.5-amd64 x86_64 Debian 5.0.5 ocfs2 > auth_cache_size = 1 M > auth_mechanisms = plain login > base_dir = /usr/local/dovecot > disable_plaintext_auth = no > first_valid_uid = 5000 > last_valid_uid = 5000 > mail_access_groups = mail > mail_gid = 8 > mail_location = maildir:/var/vmail/%d/%u/Maildir > mail_max_userip_connections = 100 > mail_uid = 5000 > maildir_very_dirty_syncs = yes > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include variables body enotify > environment mailbox date > mmap_disable = yes > passdb { > args = /usr/local/dovecot/etc/dovecot/sql.conf > driver = sql > } > plugin { > quota = maildir:User quota > sieve = ~/.dovecot.sieve > sieve_dir = ~/sieve > } > protocols = imap pop3 lmtp sieve > service auth { > client_limit = 10500 > unix_listener /var/spool/postfix/private/auth { > group = mail > mode = 0660 > user = postfix > } > unix_listener auth-userdb { > group = mail > mode = 0660 > user = postfix > } > } > service imap-login { > process_min_avail = 2 > service_count = 0 > vsz_limit = 128 M > } > service imap { > process_limit = 5000 > } > service lmtp { > inet_listener lmtp { > address = 127.0.0.1 ::1 > port = 24 > } > unix_listener /var/spool/postfix/private/dovecot-lmtp { > group = postfix > mode = 0660 > user = postfix > } > } > service managesieve-login { > inet_listener sieve { > port = 4190 > } > } > service pop3-login { > process_min_avail = 2 > service_count = 0 > } > service pop3 { > process_limit = 5000 > } > > userdb { > driver = prefetch > } > > userdb { > args = /usr/local/dovecot/etc/dovecot/sql.conf > driver = sql > } > > protocol imap { > imap_client_workarounds = delay-newmail > } > protocol pop3 { > pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > pop3_uidl_format = %08Xu%08Xv > } > > protocol lmtp { > mail_plugins = sieve > postmaster_address = admin at domain.tld > } > protocol sieve { > managesieve_implementation_string = Dovecot Pigeonhole > managesieve_logout_format = bytes=%i/%o > managesieve_max_compile_errors = 5 > managesieve_max_line_length = 65536 > } > > > Thanks > > 2011/6/8 Tom Hendrikx: >> On 08/06/11 13:47, Timo Sirainen wrote: >>> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: >>> >>>> But I have found this on my logs "save failed to INBOX: Not enough disk space" . >>> This means that a write() (or some other syscall) returned either ENOSPC >>> or EDQUOT error message, or that quota plugin decided user is out of >>> quota. >>> >>>> There is enougth space on disk. and I am not using quota plugin on lmtp >>> What about filesystem quota? >>> >> I remember there were similar issues in the past, due to the fact that >> messages larger than 128kb were temporarily stored on disk in the users >> homedir. Maybe this is related? >> >>>> my lmtp conf is as follow: >>> A full doveconf -n output would be better. >>> >> OP has not posted complete doveconf -n output, nor a specific version >> (other than 'dovecot 2'). Please do so. >> >> >> -- >> Reagrds, >> Tom >> Wild guess, What is the disk space of your /var dir or /var/spool for that matter Or df -h for all mounted filesystems. regards, Johan Hendriks From nebano at gmail.com Wed Jun 8 15:31:12 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 14:31:12 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <1307535081.10421.758.camel@hurina> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <1307535081.10421.758.camel@hurina> Message-ID: Hi according to dovecot -a: mail_temp_dir = /tmp and df -h gives /dev/sda3 942M 18M 877M 2% /tmp Thanks 2011/6/8 Timo Sirainen : > On Wed, 2011-06-08 at 14:04 +0200, Tom Hendrikx wrote: >> > This means that a write() (or some other syscall) returned either ENOSPC >> > or EDQUOT error message, or that quota plugin decided user is out of >> > quota. >> > >> >> There is enougth space on disk. and I am not using quota plugin on lmtp >> > >> > What about filesystem quota? >> > >> >> I remember there were similar issues in the past, due to the fact that >> messages larger than 128kb were temporarily stored on disk in the users >> homedir. Maybe this is related? > > That would have given a temporary failure, not an "out of disk space" > error. Also nowadays even that doesn't happen, the message is simply > read fully into memory. > > Although I guess it wouldn't hurt to check if /tmp is full > (mail_temp_dir defaults to /tmp again). > > > From nebano at gmail.com Wed Jun 8 15:35:36 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 14:35:36 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <4DEF6B0A.9020305@gmail.com> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <4DEF6B0A.9020305@gmail.com> Message-ID: Hi this is the output of df -h Filesystem Size Used Avail Use% Mounted on /dev/sda2 5.5G 1.8G 3.6G 33% / tmpfs 502M 0 502M 0% /lib/init/rw udev 10M 680K 9.4M 7% /dev tmpfs 502M 0 502M 0% /dev/shm /dev/sda1 122M 41M 76M 35% /boot /dev/sda3 942M 18M 877M 2% /tmp /dev/sda6 7.4G 812M 6.3G 12% /var/log /dev/mapper/vmail 120G 84G 37G 70% /var/vmail So /var/spool depends on "/" wich has 3.6G available. Thanks 2011/6/8 Johan Hendriks : > Osvaldo Alvarez Pozo schreef: >> >> Hi Tom, >> >> it is dovecot 2.0.12 this is the doveconf -n output. >> >> >> There is not file system quota. >> >> This is the output of doveconf -n >> >> # 2.0.12: /usr/local/dovecot/etc/dovecot/dovecot.conf >> # OS: Linux 2.6.32-bpo.5-amd64 x86_64 Debian 5.0.5 ocfs2 >> auth_cache_size = 1 M >> auth_mechanisms = plain login >> base_dir = /usr/local/dovecot >> disable_plaintext_auth = no >> first_valid_uid = 5000 >> last_valid_uid = 5000 >> mail_access_groups = mail >> mail_gid = 8 >> mail_location = maildir:/var/vmail/%d/%u/Maildir >> mail_max_userip_connections = 100 >> mail_uid = 5000 >> maildir_very_dirty_syncs = yes >> managesieve_notify_capability = mailto >> managesieve_sieve_capability = fileinto reject envelope >> encoded-character vacation subaddress comparator-i;ascii-numeric >> relational regex imap4flags copy include variables body enotify >> environment mailbox date >> mmap_disable = yes >> passdb { >> ?args = /usr/local/dovecot/etc/dovecot/sql.conf >> ?driver = sql >> } >> plugin { >> ?quota = maildir:User quota >> ?sieve = ~/.dovecot.sieve >> ?sieve_dir = ~/sieve >> } >> protocols = imap pop3 lmtp sieve >> service auth { >> ?client_limit = 10500 >> ?unix_listener /var/spool/postfix/private/auth { >> ? ?group = mail >> ? ?mode = 0660 >> ? ?user = postfix >> ?} >> ?unix_listener auth-userdb { >> ? ?group = mail >> ? ?mode = 0660 >> ? ?user = postfix >> ?} >> } >> service imap-login { >> ?process_min_avail = 2 >> ?service_count = 0 >> ?vsz_limit = 128 M >> } >> service imap { >> ?process_limit = 5000 >> } >> service lmtp { >> ?inet_listener lmtp { >> ? ?address = ?127.0.0.1 ::1 >> ? ?port = 24 >> ?} >> ?unix_listener /var/spool/postfix/private/dovecot-lmtp { >> ? ?group = postfix >> ? ?mode = 0660 >> ? ?user = postfix >> ?} >> } >> service managesieve-login { >> ?inet_listener sieve { >> ? ?port = 4190 >> ?} >> } >> service pop3-login { >> ?process_min_avail = 2 >> ?service_count = 0 >> } >> service pop3 { >> ?process_limit = 5000 >> } >> >> userdb { >> ?driver = prefetch >> } >> >> userdb { >> ?args = /usr/local/dovecot/etc/dovecot/sql.conf >> ?driver = sql >> } >> >> protocol imap { >> ?imap_client_workarounds = delay-newmail >> } >> protocol pop3 { >> ?pop3_client_workarounds = outlook-no-nuls oe-ns-eoh >> ?pop3_uidl_format = %08Xu%08Xv >> } >> >> protocol lmtp { >> ?mail_plugins = sieve >> ?postmaster_address = admin at domain.tld >> } >> protocol sieve { >> ?managesieve_implementation_string = Dovecot Pigeonhole >> ?managesieve_logout_format = bytes=%i/%o >> ?managesieve_max_compile_errors = 5 >> ?managesieve_max_line_length = 65536 >> } >> >> >> Thanks >> >> 2011/6/8 Tom Hendrikx: >>> >>> On 08/06/11 13:47, Timo Sirainen wrote: >>>> >>>> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: >>>> >>>>> But I have found this on my logs "save failed to INBOX: Not enough disk >>>>> space" . >>>> >>>> This means that a write() (or some other syscall) returned either ENOSPC >>>> or EDQUOT error message, or that quota plugin decided user is out of >>>> quota. >>>> >>>>> There is enougth space on disk. and I am not using quota plugin on lmtp >>>> >>>> What about filesystem quota? >>>> >>> I remember there were similar issues in the past, due to the fact that >>> messages larger than 128kb were temporarily stored on disk in the users >>> homedir. Maybe this is related? >>> >>>>> my lmtp conf is as follow: >>>> >>>> A full doveconf -n output would be better. >>>> >>> OP has not posted complete doveconf -n output, nor a specific version >>> (other than 'dovecot 2'). Please do so. >>> >>> >>> -- >>> Reagrds, >>> ? ? ? ?Tom >>> > Wild guess, > What is the disk space of your /var dir or /var/spool for that matter > Or df -h for all mounted filesystems. > > regards, > Johan Hendriks > > From tss at iki.fi Wed Jun 8 15:59:47 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 08 Jun 2011 15:59:47 +0300 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF3F78.2000509@wenn.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> Message-ID: <1307537987.10421.762.camel@hurina> On Wed, 2011-06-08 at 10:23 +0100, Ricardo Branco wrote: Well, this was an interesting message. multipart/alternative where first part was text and second part a GIF image. My email client decided that it preferred showing the GIF image to text (which was its right, as it was an alternative). > User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; > rv:1.9.2.17) > Gecko/20110414 Lightning/1.0b2 Thunderbird/3.1.10 I wonder if it was generated by Thunderbird or something else.. From ricardo at wenn.com Wed Jun 8 16:16:14 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 14:16:14 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <1307537987.10421.762.camel@hurina> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> Message-ID: <4DEF761E.50306@wenn.com> Seems MailScanner signatures are up the swanny again, ive had issues on replys the sig gets put in the wrong areas and it was fixed then broken then fixed, thats applied server server side on outbound emails so not related to this issue. Not everyone in our office runs the Lightning plugin, just a few, the issue happens to people who dont run it. I found the bug on the Mozilla bugtrac and updated so hopfully they will look at it but not much hope. Timo Sirainen wrote, On 08/06/2011 13:59: > On Wed, 2011-06-08 at 10:23 +0100, Ricardo Branco wrote: > > Well, this was an interesting message. multipart/alternative where first > part was text and second part a GIF image. My email client decided that > it preferred showing the GIF image to text (which was its right, as it > was an alternative). > >> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; >> rv:1.9.2.17) >> Gecko/20110414 Lightning/1.0b2 Thunderbird/3.1.10 > I wonder if it was generated by Thunderbird or something else.. > > -- Ricardo Branco Senior IT Manager 35 Tileyard Studios, Tileyard Road, London N7 9AH, England Email: ricardo at wenn.com Phone: +44 (0)20 7607 2757 Corp: http://corp.wenn.com Photo: http://photo.wenn.com Web: http://www.wenn.com -------------- next part -------------- A non-text attachment was scrubbed... Name: wenn_logo_plus_offices.gif Type: image/gif Size: 3768 bytes Desc: not available URL: From nebano at gmail.com Wed Jun 8 16:49:41 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 15:49:41 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <4DEF75AE.4050307@gmail.com> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <4DEF6B0A.9020305@gmail.com> <4DEF75AE.4050307@gmail.com> Message-ID: Hi Doing mail debug I found this dovecot: lmtp(12696, user1 at domain.tld): Error: o_stream_send_istream(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) failed: No space left on device dovecot: lmtp(12696, user1 at domain.tld): Error: o_stream_flush(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) failed: No space left on device So dovecot write in to a tmp folder inside the user Maildir before definitly copying it to new folder. But why it says thereis no space left? 2011/6/8 Johan Hendriks : > Osvaldo Alvarez Pozo schreef: >> >> Hi >> this is the output of df -h >> >> Filesystem ? ? ? ? ? ?Size ?Used Avail Use% Mounted on >> /dev/sda2 ? ? ? ? ? ? 5.5G ?1.8G ?3.6G ?33% / >> tmpfs ? ? ? ? ? ? ? ? 502M ? ? 0 ?502M ? 0% /lib/init/rw >> udev ? ? ? ? ? ? ? ? ? 10M ?680K ?9.4M ? 7% /dev >> tmpfs ? ? ? ? ? ? ? ? 502M ? ? 0 ?502M ? 0% /dev/shm >> /dev/sda1 ? ? ? ? ? ? 122M ? 41M ? 76M ?35% /boot >> /dev/sda3 ? ? ? ? ? ? 942M ? 18M ?877M ? 2% /tmp >> /dev/sda6 ? ? ? ? ? ? 7.4G ?812M ?6.3G ?12% /var/log >> /dev/mapper/vmail >> ? ? ? ? ? ? ? ? ? ? ? 120G ? 84G ? 37G ?70% /var/vmail >> >> So /var/spool depends on "/" wich has 3.6G available. >> >> Thanks >> >> >> 2011/6/8 Johan Hendriks: >>> >>> Osvaldo Alvarez Pozo schreef: >>>> >>>> Hi Tom, >>>> >>>> it is dovecot 2.0.12 this is the doveconf -n output. >>>> >>>> >>>> There is not file system quota. >>>> >>>> This is the output of doveconf -n >>>> >>>> # 2.0.12: /usr/local/dovecot/etc/dovecot/dovecot.conf >>>> # OS: Linux 2.6.32-bpo.5-amd64 x86_64 Debian 5.0.5 ocfs2 >>>> auth_cache_size = 1 M >>>> auth_mechanisms = plain login >>>> base_dir = /usr/local/dovecot >>>> disable_plaintext_auth = no >>>> first_valid_uid = 5000 >>>> last_valid_uid = 5000 >>>> mail_access_groups = mail >>>> mail_gid = 8 >>>> mail_location = maildir:/var/vmail/%d/%u/Maildir >>>> mail_max_userip_connections = 100 >>>> mail_uid = 5000 >>>> maildir_very_dirty_syncs = yes >>>> managesieve_notify_capability = mailto >>>> managesieve_sieve_capability = fileinto reject envelope >>>> encoded-character vacation subaddress comparator-i;ascii-numeric >>>> relational regex imap4flags copy include variables body enotify >>>> environment mailbox date >>>> mmap_disable = yes >>>> passdb { >>>> ?args = /usr/local/dovecot/etc/dovecot/sql.conf >>>> ?driver = sql >>>> } >>>> plugin { >>>> ?quota = maildir:User quota >>>> ?sieve = ~/.dovecot.sieve >>>> ?sieve_dir = ~/sieve >>>> } >>>> protocols = imap pop3 lmtp sieve >>>> service auth { >>>> ?client_limit = 10500 >>>> ?unix_listener /var/spool/postfix/private/auth { >>>> ? ?group = mail >>>> ? ?mode = 0660 >>>> ? ?user = postfix >>>> ?} >>>> ?unix_listener auth-userdb { >>>> ? ?group = mail >>>> ? ?mode = 0660 >>>> ? ?user = postfix >>>> ?} >>>> } >>>> service imap-login { >>>> ?process_min_avail = 2 >>>> ?service_count = 0 >>>> ?vsz_limit = 128 M >>>> } >>>> service imap { >>>> ?process_limit = 5000 >>>> } >>>> service lmtp { >>>> ?inet_listener lmtp { >>>> ? ?address = ?127.0.0.1 ::1 >>>> ? ?port = 24 >>>> ?} >>>> ?unix_listener /var/spool/postfix/private/dovecot-lmtp { >>>> ? ?group = postfix >>>> ? ?mode = 0660 >>>> ? ?user = postfix >>>> ?} >>>> } >>>> service managesieve-login { >>>> ?inet_listener sieve { >>>> ? ?port = 4190 >>>> ?} >>>> } >>>> service pop3-login { >>>> ?process_min_avail = 2 >>>> ?service_count = 0 >>>> } >>>> service pop3 { >>>> ?process_limit = 5000 >>>> } >>>> >>>> userdb { >>>> ?driver = prefetch >>>> } >>>> >>>> userdb { >>>> ?args = /usr/local/dovecot/etc/dovecot/sql.conf >>>> ?driver = sql >>>> } >>>> >>>> protocol imap { >>>> ?imap_client_workarounds = delay-newmail >>>> } >>>> protocol pop3 { >>>> ?pop3_client_workarounds = outlook-no-nuls oe-ns-eoh >>>> ?pop3_uidl_format = %08Xu%08Xv >>>> } >>>> >>>> protocol lmtp { >>>> ?mail_plugins = sieve >>>> ?postmaster_address = admin at domain.tld >>>> } >>>> protocol sieve { >>>> ?managesieve_implementation_string = Dovecot Pigeonhole >>>> ?managesieve_logout_format = bytes=%i/%o >>>> ?managesieve_max_compile_errors = 5 >>>> ?managesieve_max_line_length = 65536 >>>> } >>>> >>>> >>>> Thanks >>>> >>>> 2011/6/8 Tom Hendrikx: >>>>> >>>>> On 08/06/11 13:47, Timo Sirainen wrote: >>>>>> >>>>>> On Wed, 2011-06-08 at 11:16 +0200, Osvaldo Alvarez Pozo wrote: >>>>>> >>>>>>> But I have found this on my logs "save failed to INBOX: Not enough >>>>>>> disk >>>>>>> space" . >>>>>> >>>>>> This means that a write() (or some other syscall) returned either >>>>>> ENOSPC >>>>>> or EDQUOT error message, or that quota plugin decided user is out of >>>>>> quota. >>>>>> >>>>>>> There is enougth space on disk. and I am not using quota plugin on >>>>>>> lmtp >>>>>> >>>>>> What about filesystem quota? >>>>>> >>>>> I remember there were similar issues in the past, due to the fact that >>>>> messages larger than 128kb were temporarily stored on disk in the users >>>>> homedir. Maybe this is related? >>>>> >>>>>>> my lmtp conf is as follow: >>>>>> >>>>>> A full doveconf -n output would be better. >>>>>> >>>>> OP has not posted complete doveconf -n output, nor a specific version >>>>> (other than 'dovecot 2'). Please do so. >>>>> >>>>> >>>>> -- >>>>> Reagrds, >>>>> ? ? ? ?Tom >>>>> >>> Wild guess, >>> What is the disk space of your /var dir or /var/spool for that matter >>> Or df -h for all mounted filesystems. >>> >>> regards, >>> Johan Hendriks >>> >>> > Could it be a permission problem? > > mail_gid = 8 > On my system this is the same as mail_uid in your case 5000 > > regards, > Johan > > > From Ralf.Hildebrandt at charite.de Wed Jun 8 16:53:12 2011 From: Ralf.Hildebrandt at charite.de (Ralf Hildebrandt) Date: Wed, 8 Jun 2011 15:53:12 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <4DEF6B0A.9020305@gmail.com> <4DEF75AE.4050307@gmail.com> Message-ID: <20110608135312.GR7863@charite.de> * Osvaldo Alvarez Pozo : > Hi > > Doing mail debug I found this > > dovecot: lmtp(12696, user1 at domain.tld): Error: > o_stream_send_istream(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) > failed: No space left on device > > dovecot: lmtp(12696, user1 at domain.tld): Error: > o_stream_flush(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) > failed: No space left on device > > > So dovecot write in to a tmp folder inside the user Maildir before > definitly copying it to new folder. That's how Maildir works, yes. But writing to the tmp directory fails > But why it says thereis no space left? Maybe the OCFS is out of whack? -- Ralf Hildebrandt Gesch?ftsbereich IT | Abteilung Netzwerk Charit? - Universit?tsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebrandt at charite.de | http://www.charite.de From robert at schetterer.org Wed Jun 8 17:18:54 2011 From: robert at schetterer.org (Robert Schetterer) Date: Wed, 08 Jun 2011 16:18:54 +0200 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF761E.50306@wenn.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> Message-ID: <4DEF84CE.7070704@schetterer.org> Am 08.06.2011 15:16, schrieb Ricardo Branco: well i am only seeing your wenn_logo_plus_offices.gif in thunderbird no text at all, for your body text i had to choose header view -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From CMarcus at Media-Brokers.com Wed Jun 8 17:26:33 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 08 Jun 2011 10:26:33 -0400 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF84CE.7070704@schetterer.org> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> Message-ID: <4DEF8699.3000609@Media-Brokers.com> On 2011-06-08 10:18 AM, Robert Schetterer wrote: > Am 08.06.2011 15:16, schrieb Ricardo Branco: > > well i am only seeing your > wenn_logo_plus_offices.gif in thunderbird > no text at all, for your body text i had to choose header view I don't see any body text anywhere, headers or the body, all I see is the logo - I thought he was just messing up sending blank emails... Ricardo, something is seriously broken on your mail system. -- Best regards, Charles From robert at schetterer.org Wed Jun 8 17:31:37 2011 From: robert at schetterer.org (Robert Schetterer) Date: Wed, 08 Jun 2011 16:31:37 +0200 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF8699.3000609@Media-Brokers.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> <4DEF8699.3000609@Media-Brokers.com> Message-ID: <4DEF87C9.8040102@schetterer.org> Am 08.06.2011 16:26, schrieb Charles Marcus: > On 2011-06-08 10:18 AM, Robert Schetterer wrote: >> Am 08.06.2011 15:16, schrieb Ricardo Branco: >> >> well i am only seeing your >> wenn_logo_plus_offices.gif in thunderbird >> no text at all, for your body text i had to choose header view > > I don't see any body text anywhere, headers or the body, all I see is > the logo - I thought he was just messing up sending blank emails... > > Ricardo, something is seriously broken on your mail system. > my bet goes to mailscanner -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From ricardo at wenn.com Wed Jun 8 17:45:33 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 15:45:33 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <1307537987.10421.762.camel@hurina> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> Message-ID: <4DEF8B0D.50804@wenn.com> test Timo Sirainen wrote, On 08/06/2011 13:59: > On Wed, 2011-06-08 at 10:23 +0100, Ricardo Branco wrote: > > Well, this was an interesting message. multipart/alternative where first > part was text and second part a GIF image. My email client decided that > it preferred showing the GIF image to text (which was its right, as it > was an alternative). > >> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; >> rv:1.9.2.17) >> Gecko/20110414 Lightning/1.0b2 Thunderbird/3.1.10 > I wonder if it was generated by Thunderbird or something else.. > > -- Ricardo Branco Senior IT Manager 35 Tileyard Studios, Tileyard Road, London N7 9AH, England Email: ricardo at wenn.com Phone: +44 (0)20 7607 2757 Corp: http://corp.wenn.com Photo: http://photo.wenn.com Web: http://www.wenn.com -------------- next part -------------- A non-text attachment was scrubbed... Name: wenn_logo_plus_offices.gif Type: image/gif Size: 3768 bytes Desc: not available URL: From ricardo at wenn.com Wed Jun 8 17:49:57 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 15:49:57 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF8699.3000609@Media-Brokers.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> <4DEF8699.3000609@Media-Brokers.com> Message-ID: <4DEF8C15.2090306@wenn.com> Right ive turned off my local Thunderbird sig, hopefully this now works. I did several tests against my hotmail/gmail accounts and also other accounts in the office instead of sending to the mailing list and all were received ok, it seems to only go wrong though the maillist. Charles Marcus wrote, On 08/06/2011 15:26: > On 2011-06-08 10:18 AM, Robert Schetterer wrote: >> Am 08.06.2011 15:16, schrieb Ricardo Branco: >> >> well i am only seeing your >> wenn_logo_plus_offices.gif in thunderbird >> no text at all, for your body text i had to choose header view > I don't see any body text anywhere, headers or the body, all I see is > the logo - I thought he was just messing up sending blank emails... > > Ricardo, something is seriously broken on your mail system. > From nebano at gmail.com Wed Jun 8 17:55:36 2011 From: nebano at gmail.com (Osvaldo Alvarez Pozo) Date: Wed, 8 Jun 2011 16:55:36 +0200 Subject: [Dovecot] save failed to INBOX: Not enough disk space In-Reply-To: <20110608135312.GR7863@charite.de> References: <1307533676.10421.751.camel@hurina> <4DEF6554.5010101@whyscream.net> <4DEF6B0A.9020305@gmail.com> <4DEF75AE.4050307@gmail.com> <20110608135312.GR7863@charite.de> Message-ID: Hi all Apparently is a file system issue.I tried to copy a 10MB file and it failed. I did as follow. su vmail cp /root/huge_file /var/vmail/domain.tld/user1/Maildir/tmp and i got the same result. "No space left on device" So I have to look somewhere else!!! Thanks to you all Thanks for answering me. By 2011/6/8 Ralf Hildebrandt : > * Osvaldo Alvarez Pozo : >> Hi >> >> Doing mail debug I found this >> >> dovecot: lmtp(12696, user1 at domain.tld): Error: >> o_stream_send_istream(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) >> failed: No space left on device >> >> dovecot: lmtp(12696, user1 at domain.tld): Error: >> o_stream_flush(/var/vmail/domain.tld/user1/Maildir/tmp/1307537596.M117043P12696.smtp1) >> failed: No space left on device >> >> >> So dovecot write in to a tmp folder inside the user Maildir before >> definitly copying it to new folder. > > That's how Maildir works, yes. But writing to the tmp directory fails > >> But why it says thereis no space left? > Maybe the OCFS is out of whack? > > -- > Ralf Hildebrandt > ?Gesch?ftsbereich IT | Abteilung Netzwerk > ?Charit? - Universit?tsmedizin Berlin > ?Campus Benjamin Franklin > ?Hindenburgdamm 30 | D-12203 Berlin > ?Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 > ?ralf.hildebrandt at charite.de | http://www.charite.de > > From CMarcus at Media-Brokers.com Wed Jun 8 18:09:44 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 08 Jun 2011 11:09:44 -0400 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF8C15.2090306@wenn.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> <4DEF8699.3000609@Media-Brokers.com> <4DEF8C15.2090306@wenn.com> Message-ID: <4DEF90B8.1040809@Media-Brokers.com> Please don't top-post... On 2011-06-08 10:49 AM, Ricardo Branco wrote: > Charles Marcus wrote, On 08/06/2011 15:26: >> On 2011-06-08 10:18 AM, Robert Schetterer wrote: >>> Am 08.06.2011 15:16, schrieb Ricardo Branco: >>> >>> well i am only seeing your >>> wenn_logo_plus_offices.gif in thunderbird >>> no text at all, for your body text i had to choose header view >> I don't see any body text anywhere, headers or the body, all I see is >> the logo - I thought he was just messing up sending blank emails... >> >> Ricardo, something is seriously broken on your mail system. > Right ive turned off my local Thunderbird sig, hopefully this now > works. > > I did several tests against my hotmail/gmail accounts and also other > accounts in the office instead of sending to the mailing list and all > were received ok, it seems to only go wrong though the maillist. Well, we got the body text this time... it certainly isn't the Thunderbird sig itself, because that's what I use (for many many years now), but maybe the sig is triggering something in your mailscanner setup... -- Best regards, Charles From ricardo at wenn.com Wed Jun 8 18:29:27 2011 From: ricardo at wenn.com (Ricardo Branco) Date: Wed, 08 Jun 2011 16:29:27 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEF90B8.1040809@Media-Brokers.com> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEF761E.50306@wenn.com> <4DEF84CE.7070704@schetterer.org> <4DEF8699.3000609@Media-Brokers.com> <4DEF8C15.2090306@wenn.com> <4DEF90B8.1040809@Media-Brokers.com> Message-ID: <4DEF9557.3090602@wenn.com> Charles Marcus wrote, On 08/06/2011 16:09: > Please don't top-post... > > On 2011-06-08 10:49 AM, Ricardo Branco wrote: >> Charles Marcus wrote, On 08/06/2011 15:26: >>> On 2011-06-08 10:18 AM, Robert Schetterer wrote: >>>> Am 08.06.2011 15:16, schrieb Ricardo Branco: >>>> >>>> well i am only seeing your >>>> wenn_logo_plus_offices.gif in thunderbird >>>> no text at all, for your body text i had to choose header view >>> I don't see any body text anywhere, headers or the body, all I see is >>> the logo - I thought he was just messing up sending blank emails... >>> >>> Ricardo, something is seriously broken on your mail system. >> Right ive turned off my local Thunderbird sig, hopefully this now >> works. >> >> I did several tests against my hotmail/gmail accounts and also other >> accounts in the office instead of sending to the mailing list and all >> were received ok, it seems to only go wrong though the maillist. > Well, we got the body text this time... it certainly isn't the > Thunderbird sig itself, because that's what I use (for many many years > now), but maybe the sig is triggering something in your mailscanner setup... > The stuff thats going on in the latest TB, you never know if it could. Weird it happens to this mailinglist though and no other reports so far of people not getting emails and as said my tests seemed all ok. Anyway back to the point of the original message, I suspect TB having an issue handling IMAP Tag updates coming from the server. From aperezaranda at yaco.es Wed Jun 8 18:52:28 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Wed, 8 Jun 2011 17:52:28 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1307456501.10421.745.camel@hurina> References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: It must run on dovecot 2.0.13? We are upgrading to 2.0.13 and with this I get the follow message: Jun 8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: +mail_plugins=fts fts_solr?G 2011/6/7 Timo Sirainen : > On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >> Greats, I'm working on patch from this morning, but it's very hard to >> debug on settings-parser > > I don't think you should need to touch that code. It's a bit difficult > for me also to follow.. > >> How can I enable i_debug on settings-parser.c ? > > What do you mean? You could add i_debug() calls and it should work just > the same as everywhere. > > Did you try the patch in my previous mail? I think that should be > enough. You could then use: > > user_attrs = .., mailPlugins=+mail_plugins > > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From dovecot at list-post.mks-mail.de Wed Jun 8 19:22:52 2011 From: dovecot at list-post.mks-mail.de (=?ISO-8859-15?Q?Markus_Sch=F6nhaber?=) Date: Wed, 08 Jun 2011 18:22:52 +0200 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <1307537987.10421.762.camel@hurina> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> Message-ID: <4DEFA1DC.4020408@list-post.mks-mail.de> 08.06.2011 14:59, Timo Sirainen: > Well, this was an interesting message. multipart/alternative where first > part was text and second part a GIF image. To me, it seems the second part is not a GIF but rather a multipart/related which, in turn, contains the GIF as first (and only) part. Maybe that's what confuses some clients. > My email client decided that > it preferred showing the GIF image to text (which was its right, as it > was an alternative). My Thunderbird does so too. RoundCube, OTOH, showes the text. -- Regards mks From delphij at delphij.net Wed Jun 8 23:04:51 2011 From: delphij at delphij.net (Xin LI) Date: Wed, 08 Jun 2011 13:04:51 -0700 Subject: [Dovecot] On-delivery deduplication? Message-ID: <4DEFD5E3.2090702@delphij.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi, A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is their optional "duplicate suppression", which eliminates duplicate message at deliver time, if their envelope sender, recipient and message-id matches. For example, if one subscribes to a mailing list, and someone hit "Reply All" to reply to him, there will be two different SMTP deliveries, one from the replier's server and one from the mailing list. Is it possible to do the same on latest Dovecot? (Looking at the documentation it seems not?) Or is there some better ways to implement the same functionality? Thanks in advance! Cheers, - -- Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! Live free or die -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (FreeBSD) iQEcBAEBCAAGBQJN79XjAAoJEATO+BI/yjfBCO0IAMLNZ9Rkargb6bQqILAcbobt 2ZFb6cO8f4vJu/BPO7Dq3TZoIEmfR+/pbruwgV+FSslTL+5TjkB5Rd5Yb+HYgvZT Qdbk8Jshgq1XBj2MvbLQugHKhNcN37oDI9eGCDPttYe/C4Jb2hh1W+RtqGpfS6ud jXUTUzS4yr7HWRRYcyDMvL4HuG/VnKEuFYmX2T/mT8oHfz5FckIPM+k+0prbgMSx IGTdkKpSMnqYnyUjxQklSmMJ5iJMM7Lr6FMS2c6ORKwG8rD0w1GKrU77saHqJJLQ YJqqIwJcr5753US6Q1Rk4gK+/L4JmJ+2BUXDdNMYBIfPOFjH9nOLlE5HIfSskBg= =fo5J -----END PGP SIGNATURE----- From berni at birkenwald.de Wed Jun 8 23:07:14 2011 From: berni at birkenwald.de (Bernhard Schmidt) Date: Wed, 8 Jun 2011 20:07:14 +0000 (UTC) Subject: [Dovecot] Dovecot 2.0+LMTP: Legal MAIL FROM rejected? Message-ID: Hi, I run Dovecot 2.0.13 fed by Postfix over LMTP. Today it rejected one mail Postfix and Amavis accepted, generating a bounce. It was just a spammail, but I think the sender address is legal according to RFC5321 and should be accepted. I don't like generating bounces, email should be either rejected by postfix/pre-queue-amavis or delivered. Jun 6 12:32:47 mail postfix/qmgr[840]: 991FC240DB: from=, size=8427, nrcpt=1 (queue active) Jun 6 12:32:47 mail amavis[27046]: (27046-06) FWD via SMTP: <"admin -> ,BODY=7BIT 250 2.0.0 Ok, id=27046-06, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as 991FC240DB Jun 6 12:32:47 mail postfix/lmtp[4710]: 991FC240DB: to=, orig_to=, relay=pop3.domain.com[::1]:24, delay=0.24, delays=0.09/0.11/0.03/0.01, dsn=5.5.4, status=bounced (host pop3.domain.com[::1] said: 501 5.5.4 Invalid parameters (in reply to MAIL FROM command)) It looks like dovecot/lmtp does not accept an address with quoted localpart that contains a space mail from:<"admin admin"@kl38000.com> 501 5.5.4 Invalid parameters mail from:<"adminadmin"@kl38000.com> 250 2.1.0 OK mail from:<"admin 250 2.1.0 OK Bernhard From tss at iki.fi Wed Jun 8 23:15:16 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 8 Jun 2011 23:15:16 +0300 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFD5E3.2090702@delphij.net> References: <4DEFD5E3.2090702@delphij.net> Message-ID: <7DA27B3E-64E6-4EB4-A223-FFFD7CDB6E83@iki.fi> On 8.6.2011, at 23.04, Xin LI wrote: > A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is > their optional "duplicate suppression", which eliminates duplicate > message at deliver time, if their envelope sender, recipient and > message-id matches. For example, if one subscribes to a mailing list, > and someone hit "Reply All" to reply to him, there will be two different > SMTP deliveries, one from the replier's server and one from the mailing > list. IMHO that's a good thing. I know some people in this list think they want deduplication, but sometimes when I'm later replying to a message (I've messages over a month old I know need replying) they really would prefer for it to be shown in they inbox when I finally reply to them rather than dovecot list mailbox (which they never end up reading then). > Is it possible to do the same on latest Dovecot? (Looking at the > documentation it seems not?) Or is there some better ways to implement > the same functionality? I'm not planning on implementing anything like that. From hs at schlittermann.de Wed Jun 8 23:48:54 2011 From: hs at schlittermann.de (Heiko Schlittermann) Date: Wed, 8 Jun 2011 22:48:54 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFD5E3.2090702@delphij.net> References: <4DEFD5E3.2090702@delphij.net> Message-ID: <20110608204854.GZ681@jumper.schlittermann.de> Xin LI (Wed Jun 8 22:04:51 2011): (?) > A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is > their optional "duplicate suppression", which eliminates duplicate > message at deliver time, if their envelope sender, recipient and > message-id matches. Not sure, but I *think*, cyrus does dedup based on the message id and recipient only. > For example, if one subscribes to a mailing list, > and someone hit "Reply All" to reply to him, there will be two different > SMTP deliveries, one from the replier's server and one from the mailing > list. If your above statement about the dup detection is true, these two messages will be delivered both, since the envelope sender is likely to differ (most if not all list servers replace the envelope sender for several reasons (bounce detection, SPF passing, ?)) > Is it possible to do the same on latest Dovecot? (Looking at the > documentation it seems not?) Or is there some better ways to implement > the same functionality? And these two messages are no duplicates. They differ in the headers, probably they differ in parts of the body (signature of the list server), EVEN they carry the same message id! A duplicate is a duplicate if the message and its copies are identical. And from MPOV this is very unlikly to happen in common environments. OTOH, if you need such feature, it shouln't be too challenging to write a MDA replacement, that decides about duplicity and finally passes the remaining messages to the Dovecot MDA. -- Heiko :: dresden : linux : SCHLITTERMANN.de GPG Key 48D0359B : 3061 CFBF 2D88 F034 E8D2 7E92 EE4E AC98 48D0 359B -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From tom at whyscream.net Thu Jun 9 00:17:29 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Wed, 08 Jun 2011 23:17:29 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <20110608204854.GZ681@jumper.schlittermann.de> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> Message-ID: <4DEFE6E9.3050603@whyscream.net> On 08/06/11 22:48, Heiko Schlittermann wrote: > Xin LI (Wed Jun 8 22:04:51 2011): > (?) >> A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is >> their optional "duplicate suppression", which eliminates duplicate >> message at deliver time, if their envelope sender, recipient and >> message-id matches. > > Not sure, but I *think*, cyrus does dedup based on the message id and > recipient only. > >> For example, if one subscribes to a mailing list, >> and someone hit "Reply All" to reply to him, there will be two different >> SMTP deliveries, one from the replier's server and one from the mailing >> list. > > If your above statement about the dup detection is true, these two > messages will be delivered both, since the envelope sender is likely to > differ (most if not all list servers replace the envelope sender for > several reasons (bounce detection, SPF passing, ?)) > > >> Is it possible to do the same on latest Dovecot? (Looking at the >> documentation it seems not?) Or is there some better ways to implement >> the same functionality? > > And these two messages are no duplicates. They differ in the headers, > probably they differ in parts of the body (signature of the list > server), EVEN they carry the same message id! > > A duplicate is a duplicate if the message and its copies are identical. > And from MPOV this is very unlikly to happen in common environments. > > OTOH, if you need such feature, it shouln't be too challenging to write > a MDA replacement, that decides about duplicity and finally passes the > remaining messages to the Dovecot MDA. > This happens because the person replying uses either the reply, or the reply-to-all button in his MUA. The MUA should honour the headers of the message it replies to, and most of the time MUAs do that. People who want replies on their messages sent back only to the list, and not to a personal address, should set the reply-to header of their message to the list address: From: me at example.com To: list at example.org Reply-to: list at example.org This should always make a reply going only to list at example.org, whether the person replying uses reply, reply-all or reply-to-list. This can be done by hand, or with a mailclient plugins that does this for all messages that are recognized as mailing list messages. Unfortunately I did not find such a plugin for thunderbird yet... NB I just set the headers in this message per my example above, for you to test. If you hit any reply* button to react on to this message, a decent MUA should not include my personal address as a recipient of your message. -- Regards, Tom From hs at schlittermann.de Thu Jun 9 00:46:25 2011 From: hs at schlittermann.de (Heiko Schlittermann) Date: Wed, 8 Jun 2011 23:46:25 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFE6E9.3050603@whyscream.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> Message-ID: <20110608214625.GC681@jumper.schlittermann.de> Hello Tom, Tom Hendrikx (Wed Jun 8 23:17:29 2011): (?) > > OTOH, if you need such feature, it shouln't be too challenging to write > > a MDA replacement, that decides about duplicity and finally passes the > > remaining messages to the Dovecot MDA. > > > > This happens because the person replying uses either the reply, or the > reply-to-all button in his MUA. The MUA should honour the headers of the > message it replies to, and most of the time MUAs do that. I understand what you're explaining. But I do not understand how it is related to duplicated messages. BTW and OT: the MUA agent I'm using (mutt) knows "list reply" feature, it works independent on From/Reply-To header fields. Using just "reply" in presence of a Reply-To header field, it asks if it's my intention to send the reply to somebody else than the originator. And it knows "group reply", that's the same as "reply all" in other MUA. And finally it knows a "bounce", sometimes known as "resend" - not to be confused with forward. It just lacks a shiny *G*ui. Greetings from Dresden, -- Heiko :: dresden : linux : SCHLITTERMANN.de GPG Key 48D0359B : 3061 CFBF 2D88 F034 E8D2 7E92 EE4E AC98 48D0 359B -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: Digital signature URL: From tom at whyscream.net Thu Jun 9 00:58:29 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Wed, 08 Jun 2011 23:58:29 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <20110608214625.GC681@jumper.schlittermann.de> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> Message-ID: <4DEFF085.1060801@whyscream.net> On 08/06/11 23:46, Heiko Schlittermann wrote: > Hello Tom, > > Tom Hendrikx (Wed Jun 8 23:17:29 2011): > (?) >>> OTOH, if you need such feature, it shouln't be too challenging to write >>> a MDA replacement, that decides about duplicity and finally passes the >>> remaining messages to the Dovecot MDA. >>> >> >> This happens because the person replying uses either the reply, or the >> reply-to-all button in his MUA. The MUA should honour the headers of the >> message it replies to, and most of the time MUAs do that. > > I understand what you're explaining. But I do not understand how it is > related to duplicated messages. The point is that when you set the headers correctly on your message, a reply from someone on your message will not generate a duplicate in the first place, thereby eliminating your problem even before it exists :) -- Regards, Tom From tss at iki.fi Thu Jun 9 01:13:07 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 9 Jun 2011 01:13:07 +0300 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <20110608214625.GC681@jumper.schlittermann.de> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> Message-ID: <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> Only kind of relevant to this thread, but: I hate this whole idea of being able to tell where messages should be replied to. Basically the rule seems to be "don't give me a separate notification if the email reply was sent to me 0-2 weeks after I sent the originating message, but do send it if it was sent after that". Of course no one can know how long you actually bother to follow the mailing list, usually not even you. The only exception are people like me and [2-10] other people who really do follow it year after year. Perhaps I should remove the feature from my patched mailman, although then maybe I'd have to figure out how to implement it for myself to the clients I use.. Oh well. (And while I'm complaining .. I hate just as much the bottom posts with everything quoted than top posts. At least with top posts I see what people are saying, but with bottom posts I have to scroll pagefuls of old text to see it. Try to put something new into the first pageful of the screen..) On 9.6.2011, at 0.46, Heiko Schlittermann wrote: > Hello Tom, > > Tom Hendrikx (Wed Jun 8 23:17:29 2011): > (?) >>> OTOH, if you need such feature, it shouln't be too challenging to write >>> a MDA replacement, that decides about duplicity and finally passes the >>> remaining messages to the Dovecot MDA. >>> >> >> This happens because the person replying uses either the reply, or the >> reply-to-all button in his MUA. The MUA should honour the headers of the >> message it replies to, and most of the time MUAs do that. > > I understand what you're explaining. But I do not understand how it is > related to duplicated messages. > > BTW and OT: the MUA agent I'm using (mutt) knows "list reply" feature, it works > independent on From/Reply-To header fields. Using just "reply" in > presence of a Reply-To header field, it asks if it's my intention to > send the reply to somebody else than the originator. And it knows "group > reply", that's the same as "reply all" in other MUA. And finally it > knows a "bounce", sometimes known as "resend" - not to be confused with > forward. It just lacks a shiny *G*ui. > > Greetings from Dresden, > -- > Heiko :: dresden : linux : SCHLITTERMANN.de > GPG Key 48D0359B : 3061 CFBF 2D88 F034 E8D2 7E92 EE4E AC98 48D0 359B From philip at turmel.org Thu Jun 9 01:47:03 2011 From: philip at turmel.org (Phil Turmel) Date: Wed, 08 Jun 2011 18:47:03 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFF085.1060801@whyscream.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <4DEFF085.1060801@whyscream.net> Message-ID: <4DEFFBE7.7060104@turmel.org> On 06/08/2011 05:58 PM, Tom Hendrikx wrote: [...] > > The point is that when you set the headers correctly on your message, a > reply from someone on your message will not generate a duplicate in the > first place, thereby eliminating your problem even before it exists :) To add a data point, this message was a "reply-to-all" in Thunderbird 3.1.10. It included Tom's address, ignoring the reply-to: header. Considering Thunderbird's popularity, just using a reply-to: header won't solve the duplicate message "problem". This is especially true on open mail lists, like those at kernel.org, where "reply-to-all" is expected of participants. Phil From tom at whyscream.net Thu Jun 9 02:05:08 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Thu, 09 Jun 2011 01:05:08 +0200 Subject: [Dovecot] [OT] On-delivery deduplication? In-Reply-To: <4DEFFBE7.7060104@turmel.org> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <4DEFF085.1060801@whyscream.net> <4DEFFBE7.7060104@turmel.org> Message-ID: <4DF00024.1090506@whyscream.net> On 09/06/11 00:47, Phil Turmel wrote: > On 06/08/2011 05:58 PM, Tom Hendrikx wrote: [...] >> >> The point is that when you set the headers correctly on your >> message, a reply from someone on your message will not generate a >> duplicate in the first place, thereby eliminating your problem even >> before it exists :) > > To add a data point, this message was a "reply-to-all" in Thunderbird > 3.1.10. It included Tom's address, ignoring the reply-to: header. Actually I only set the reply-to header (by hand) on the message in which I said that I did that, and not on the second one, because I am lazy and there is no tb plugin to make my life easier. Please try again on the correct message. > > Considering Thunderbird's popularity, just using a reply-to: header > won't solve the duplicate message "problem". This is especially true > on open mail lists, like those at kernel.org, where "reply-to-all" is > expected of participants. I use Thunderbird too, and I did test what I documented. To be sure, please check the headers of both messages. I don't use this practice often (depends on the ml, and the ppl on it), but some time ago the duplicate issue irritated me enough to spend a good thought at what the real problem was. Just shared my results, especially since they are apparently non-obvious :) But maybe we're getting a bit off-topic. After all this is a list about dovecot and IMAP-related stuff. -- Regards, Tom From philip at turmel.org Thu Jun 9 02:12:40 2011 From: philip at turmel.org (Phil Turmel) Date: Wed, 08 Jun 2011 19:12:40 -0400 Subject: [Dovecot] [OT] On-delivery deduplication? In-Reply-To: <4DF00024.1090506@whyscream.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <4DEFF085.1060801@whyscream.net> <4DEFFBE7.7060104@turmel.org> <4DF00024.1090506@whyscream.net> Message-ID: <4DF001E8.5060709@turmel.org> On 06/08/2011 07:05 PM, Tom Hendrikx wrote: > On 09/06/11 00:47, Phil Turmel wrote: >> On 06/08/2011 05:58 PM, Tom Hendrikx wrote: [...] >>> >>> The point is that when you set the headers correctly on your >>> message, a reply from someone on your message will not generate a >>> duplicate in the first place, thereby eliminating your problem even >>> before it exists :) >> >> To add a data point, this message was a "reply-to-all" in Thunderbird >> 3.1.10. It included Tom's address, ignoring the reply-to: header. > > Actually I only set the reply-to header (by hand) on the message in > which I said that I did that, and not on the second one, because I am > lazy and there is no tb plugin to make my life easier. Please try again > on the correct message. I checked before I sent, and sure enough, it's there. Maybe Timo has set the list to add it. This one of yours has it, too. >> Considering Thunderbird's popularity, just using a reply-to: header >> won't solve the duplicate message "problem". This is especially true >> on open mail lists, like those at kernel.org, where "reply-to-all" is >> expected of participants. > > I use Thunderbird too, and I did test what I documented. To be sure, > please check the headers of both messages. Checked. > I don't use this practice often (depends on the ml, and the ppl on it), > but some time ago the duplicate issue irritated me enough to spend a > good thought at what the real problem was. Just shared my results, > especially since they are apparently non-obvious :) > > But maybe we're getting a bit off-topic. After all this is a list about > dovecot and IMAP-related stuff. True enough. I'll stop here. Phil From gouravjoshi at gmail.com Thu Jun 9 07:54:49 2011 From: gouravjoshi at gmail.com (=?UTF-8?B?4KSX4KWM4KSw4KS1IOCknOCli+CktuClgA==?=) Date: Thu, 9 Jun 2011 10:24:49 +0530 Subject: [Dovecot] Using Dovecot new version 2.0.13 facing issues. Message-ID: > Hi, > > I have configured POP-IMAP server with dovecot 2.0.13 with mysql support. > When I am running load test on the same I face issue on IMAP connections. I > get "dovecot: imap-login: Error: fd_send(imap, 15) failed: Interrupted > system call" followed by "dovecot: imap-login: Internal login failure" in > log files. See if these patches help: http://hg.dovecot.org/dovecot-2.0/rev/86e4023d08e4 http://hg.dovecot.org/dovecot-2.0/rev/6fdee880c5dc Hi Timo, Thanks for the response. The first patch is not getting compiled, where the other one got complied cleanly. Please help on this. Have a nice time, Gourav Joshi Have a look at www.linuxquestions.in From heramba85 at gmail.com Thu Jun 9 11:18:11 2011 From: heramba85 at gmail.com (kenja heramba) Date: Thu, 9 Jun 2011 13:48:11 +0530 Subject: [Dovecot] Regarding Digest-MD5 auth Message-ID: Hi, I am writing a Pop3Client. I use dovecot server as POP3 server in linux and hMailServer in windows. I was just testing digest-md5 auth with dovecot server. I had an observation. After server side verification, server sends a verification code to client. If this fails, how can client send the negative response or does it not exist? When I see packet capture, dovecot server sends +OK Logged in for anything client sends. I may be wrong. Please let me know your thoughts Regards, Heramba From koshikov at gmail.com Thu Jun 9 11:56:55 2011 From: koshikov at gmail.com (Nikita Koshikov) Date: Thu, 9 Jun 2011 11:56:55 +0300 Subject: [Dovecot] sqlite quota dict Message-ID: <20110609115655.1c94ff28@jimbo> Hello Timo, and list followers, Sqlite supports good feature like mysql 'ON DUPLICATE KEY UPDATE' - it calls REPLACE/INSERT OR REPLACE This clause can be added to INSERT query, like: INSERT OR REPLACE INTO table VALUES() REPLACE INTO table VALUES() // alias to previous one Also this can be done during CREATE TABLE syntax, like so: CREATE TABLE quota ( username text not null, bytes integer not null default 0, messages integer not null default 0, primary key (username) ON CONFLICT REPLACE ); So the examples will work: INSERT INTO quota (bytes,username) VALUES ('112497180','foo at spam.dom'); INSERT INTO quota (bytes,username) VALUES ('112497181','foo at spam.dom'); SELECT * FROM quota; foo at spam.dom|112497181|0 But 1 thing to note - if we updating not all fields and column has NOT NULL DEFAULT value, then DEFAULT value will alter current one: INSERT INTO quota (bytes,username) VALUES ('112497180','foo at spam.dom'); INSERT INTO quota (messages,username) VALUES ('1743','foo at spam.dom'); SELECT * FROM quota; foo at spam.dom|0|1743 This can be easily bypassed if INSERT will be: INSERT INTO quota (bytes,messages,username) VALUES ('112497180','1743','foo at spam.dom'); So if dovecot will INSERT values to sql dict in this manner, sqlite can be used for storing quota data. From lists at wildgooses.com Thu Jun 9 13:14:41 2011 From: lists at wildgooses.com (Ed W) Date: Thu, 09 Jun 2011 11:14:41 +0100 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> Message-ID: <4DF09D11.5080001@wildgooses.com> On 08/06/2011 23:13, Timo Sirainen wrote: > (And while I'm complaining .. I hate just as much the bottom posts with everything quoted than top posts. At least with top posts I see what people are saying, but with bottom posts I have to scroll pagefuls of old text to see it. Try to put something new into the first pageful of the screen..) :-) For some reason this always seems to be a massive bone of contention to a whole load of people! Largely those who prefer one way over the other don't seem to recognise that the other bunch also have a valid reason for their preference and the religious wars continue... However! I found a useful plugin for Thunderbird (which I see you don't use, but still). It's called Quote Collapse and basically it does what you might imagine, the indented bits of messages get collapsed to just their first line (for context) and you get a +/- button to expand if you need to read the rest of the context. Personally for me this makes bottom posting readable in general and top posting is fine, and my preference then becomes "interleaved" because it looks quite pretty with the collapsed quoting... Actually, email clients also get religious, but despite it's other deficiencies I find Thunderbird with the following plugins helpful: - Country Lookup - shows which country the email was sent from (great for customer support) - Display Mail User Agent - shows the mail client used (great for customer support) - Quote Collapse (as above) - Coloured Diffs - pretty printing for code diffs found in emails - Sieve - Minimal sieve rule editing Perhaps this is enough to tempt you from Mac Mail? Cheers Ed W From aperezaranda at yaco.es Thu Jun 9 15:24:50 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Thu, 9 Jun 2011 14:24:50 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: This line: value = settings_parse_get_value(set_parser, key, &type); Is returning a empty value. Maybe, set_parser has been cleared? If I try to get another keys from my config that I can watch with doveadm I get "extrange" values like this with i_debug() * mail_debug -> #001 * mail_location -> #010 * auth_realms -> #020#002 2011/6/8 Antonio Perez-Aranda : > It must run on dovecot 2.0.13? > > We are upgrading to 2.0.13 and with this I get the follow message: > > Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: > +mail_plugins=fts fts_solr?G > > > 2011/6/7 Timo Sirainen : >> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>> Greats, I'm working on patch from this morning, but it's very hard to >>> debug on settings-parser >> >> I don't think you should need to touch that code. It's a bit difficult >> for me also to follow.. >> >>> How can I enable i_debug on settings-parser.c ? >> >> What do you mean? You could add i_debug() calls and it should work just >> the same as everywhere. >> >> Did you try the patch in my previous mail? I think that should be >> enough. You could then use: >> >> user_attrs = .., mailPlugins=+mail_plugins >> >> >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From CMarcus at Media-Brokers.com Thu Jun 9 15:31:26 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 09 Jun 2011 08:31:26 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF09D11.5080001@wildgooses.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> Message-ID: <4DF0BD1E.4050700@Media-Brokers.com> On 2011-06-09 6:14 AM, Ed W wrote: > However! I found a useful plugin for Thunderbird (which I see you don't > use, but still). It's called Quote Collapse and basically it does what > you might imagine, the indented bits of messages get collapsed to just > their first line (for context) and you get a ? button to expand if you > need to read the rest of the context. Personally for me this makes > bottom posting readable in general and top posting is fine, and my > preference then becomes "interleaved" because it looks quite pretty with > the collapsed quoting... Been using it since forever, and I agree, it is quite useful, although only for plain text messages that use proper quote characters... -- Best regards, Charles From allan.cassaro at gmail.com Thu Jun 9 15:36:14 2011 From: allan.cassaro at gmail.com (Allan Cassaro) Date: Thu, 9 Jun 2011 09:36:14 -0300 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DEFD5E3.2090702@delphij.net> References: <4DEFD5E3.2090702@delphij.net> Message-ID: On Wed, Jun 8, 2011 at 5:04 PM, Xin LI wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > Hi, > > A feature of Cyrus-IMAPd I really missed after migrated to Dovecot is > their optional "duplicate suppression", which eliminates duplicate > message at deliver time, if their envelope sender, recipient and > message-id matches. For example, if one subscribes to a mailing list, > and someone hit "Reply All" to reply to him, there will be two different > SMTP deliveries, one from the replier's server and one from the mailing > list. > > Is it possible to do the same on latest Dovecot? (Looking at the > documentation it seems not?) Or is there some better ways to implement > the same functionality? > > Thanks in advance! > > Cheers, > - -- > Xin LI http://www.delphij.net/ > FreeBSD - The Power to Serve! Live free or die > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.17 (FreeBSD) > > iQEcBAEBCAAGBQJN79XjAAoJEATO+BI/yjfBCO0IAMLNZ9Rkargb6bQqILAcbobt > 2ZFb6cO8f4vJu/BPO7Dq3TZoIEmfR+/pbruwgV+FSslTL+5TjkB5Rd5Yb+HYgvZT > Qdbk8Jshgq1XBj2MvbLQugHKhNcN37oDI9eGCDPttYe/C4Jb2hh1W+RtqGpfS6ud > jXUTUzS4yr7HWRRYcyDMvL4HuG/VnKEuFYmX2T/mT8oHfz5FckIPM+k+0prbgMSx > IGTdkKpSMnqYnyUjxQklSmMJ5iJMM7Lr6FMS2c6ORKwG8rD0w1GKrU77saHqJJLQ > YJqqIwJcr5753US6Q1Rk4gK+/L4JmJ+2BUXDdNMYBIfPOFjH9nOLlE5HIfSskBg= > =fo5J > -----END PGP SIGNATURE----- > Hello Mr. Xin Li, would you try the OpenDedup File System? (http://www.opendedup.org) If your problem is (only) the message size, this will works like a charm to you. BTW, this is a great project to use with any maildir compatible server... it reduces a LOT of disk usage space... Best regards. -- Use c?pia oculta (BCC ou CCO) e apague dados pessoais no campo da mensagem ao encaminhar qualquer e-mail. http://allan.cassaro.googlepages.com From forumer at smartmobili.com Thu Jun 9 15:45:25 2011 From: forumer at smartmobili.com (Vincent Richomme) Date: Thu, 09 Jun 2011 14:45:25 +0200 Subject: [Dovecot] Webmail project : to cache or not to cache emails Message-ID: Hi, I plan to develop a new web service where one of its module is a webmail and I am thinking about some implementation details. From a interface point of view I wanted to adopt the same logic a outlook(desktop) or yahoo webmail and not split emails into pages. I mean I just want a single datatable view where user can scroll to see his old messages and data are updated only when user release the vertical scrollbar. When I look at current webmail (roundcube for instance) I can see that a cache is used to stored emails headers and I was wondering if it was really necessary ? Once a user has passed the login process I would like to retrieve only the emails that will be displayed (actually a bit more, I am thinking of 150) but I am wondering if it's a good idea to not use a cache for headers. For instance if I have thousands of users on the same machine, will it support it ? Will it be fast enough ? Of course I will try by myself the different options but would be curious to have some opinions. Thanks From dovecot.user at seibercom.net Thu Jun 9 16:04:46 2011 From: dovecot.user at seibercom.net (Jerry) Date: Thu, 9 Jun 2011 09:04:46 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF0BD1E.4050700@Media-Brokers.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <4DF0BD1E.4050700@Media-Brokers.com> Message-ID: <20110609090446.6e59fe3d@scorpio> On Thu, 09 Jun 2011 08:31:26 -0400 Charles Marcus articulated: > On 2011-06-09 6:14 AM, Ed W wrote: > > However! I found a useful plugin for Thunderbird (which I see you > > don't use, but still). It's called Quote Collapse and basically it > > does what you might imagine, the indented bits of messages get > > collapsed to just their first line (for context) and you get a ? > > button to expand if you need to read the rest of the context. > > Personally for me this makes bottom posting readable in general and > > top posting is fine, and my preference then becomes "interleaved" > > because it looks quite pretty with the collapsed quoting... > > Been using it since forever, and I agree, it is quite useful, although > only for plain text messages that use proper quote characters... Many MUAs such as "claws-mail" have that function build it. I use it extensively on some list. I still find it hard to believe that some moron will actually reply to a message with quadruple quotes or more and not have the common sense to edit them out. I basically drop anything over two levels when replying. -- Jerry ? Dovecot.user at seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __________________________________________________________________ Health nuts are going to feel stupid someday, lying in hospitals dying of nothing. Redd Foxx From giles at coochey.net Thu Jun 9 16:14:39 2011 From: giles at coochey.net (Giles Coochey) Date: Thu, 9 Jun 2011 15:14:39 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF09D11.5080001@wildgooses.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> Message-ID: <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> On Thu, June 9, 2011 12:14, Ed W wrote: > > However! I found a useful plugin for Thunderbird (which I see you don't > use, but still). It's called Quote Collapse and basically it does what > you might imagine, the indented bits of messages get collapsed to just > their first line (for context) and you get a +/- button to expand if you > need to read the rest of the context. Personally for me this makes > bottom posting readable in general and top posting is fine, and my > preference then becomes "interleaved" because it looks quite pretty with > the collapsed quoting... > I found this plugin (v0.8), but it is not compatible with Thunderbird v3.1.10 apparently. From CMarcus at Media-Brokers.com Thu Jun 9 16:17:13 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 09 Jun 2011 09:17:13 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> Message-ID: <4DF0C7D9.2010206@Media-Brokers.com> On 2011-06-09 9:14 AM, Giles Coochey wrote: > I found this plugin (v0.8), but it is not compatible with Thunderbird > v3.1.10 apparently. Just edit the rdf file and bump the version and it works fine... -- Best regards, Charles From giles at coochey.net Thu Jun 9 16:23:41 2011 From: giles at coochey.net (Giles Coochey) Date: Thu, 9 Jun 2011 15:23:41 +0200 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF0C7D9.2010206@Media-Brokers.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> <4DF0C7D9.2010206@Media-Brokers.com> Message-ID: <5c7501208f01600d697a0c721c26b9ac.squirrel@www.coochey.net> On Thu, June 9, 2011 15:17, Charles Marcus wrote: > On 2011-06-09 9:14 AM, Giles Coochey wrote: >> I found this plugin (v0.8), but it is not compatible with Thunderbird >> v3.1.10 apparently. > > Just edit the rdf file and bump the version and it works fine... > Humm, I'm not well versed on plug-ins. I have an XPI file... 7-Zip can extract it and I can see a install.rdf, but I have no idea how to re-package the edited plug-in so that thunderbird can read it again. Think I'll wait for the author to update... From CMarcus at Media-Brokers.com Thu Jun 9 16:31:39 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 09 Jun 2011 09:31:39 -0400 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <5c7501208f01600d697a0c721c26b9ac.squirrel@www.coochey.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> <4DF0C7D9.2010206@Media-Brokers.com> <5c7501208f01600d697a0c721c26b9ac.squirrel@www.coochey.net> Message-ID: <4DF0CB3B.6090009@Media-Brokers.com> On 2011-06-09 9:23 AM, Giles Coochey wrote: > On Thu, June 9, 2011 15:17, Charles Marcus wrote: >> On 2011-06-09 9:14 AM, Giles Coochey wrote: >>> I found this plugin (v0.8), but it is not compatible with Thunderbird >>> v3.1.10 apparently. >> Just edit the rdf file and bump the version and it works fine... > Humm, I'm not well versed on plug-ins. I have an XPI file... 7-Zip can > extract it and I can see a install.rdf, but I have no idea how to > re-package the edited plug-in so that thunderbird can read it again. > > Think I'll wait for the author to update... You'll be waiting forever... Just open the .xpi file, then open the install.rdf file, change the version to 3.1.*. then save it... done... now you can install it... Or better... I've attached a fixed version... -- Best regards, Charles -------------- next part -------------- A non-text attachment was scrubbed... Name: quotecollapse-0.8.xpi Type: application/x-xpinstall Size: 9724 bytes Desc: not available URL: From skolaria at yahoo.com Thu Jun 9 15:55:47 2011 From: skolaria at yahoo.com (emc) Date: Thu, 9 Jun 2011 12:55:47 +0000 (UTC) Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login Message-ID: Hi, i have a big problem with dovecot... PAM auth problem i guess, but don't know how to sort it out... Down the log and the dovecot.conf. Please soemone can tell me what's broken there? Thanks a lot ************************* HERE log ************************* Jun 9 14:49:46 vps dovecot: pop3-login: Can't connect to auth server at default: Resource temporarily unavailable Jun 9 14:49:46 vps dovecot: imap-login: Timeout waiting for handshake from auth server. my pid=14681, input bytes=0 Jun 9 14:49:46 vps dovecot: imap-login: Can't connect to auth server at default: Resource temporarily unavailable Jun 9 14:49:46 vps dovecot: imap-login: Timeout waiting for handshake from auth server. my pid=14681, input bytes=0 Jun 9 14:49:46 vps dovecot: imap-login: Timeout waiting for handshake from auth server. my pid=14682, input bytes=0 ************************* HERE my doveconf -a ************************* # 1.0.15: /etc/dovecot/dovecot.conf base_dir: /var/run/dovecot log_path: info_log_path: log_timestamp: %Y-%m-%d %H:%M:%S syslog_facility: mail protocols: imap pop3 imaps pop3s listen: ssl_listen: ssl_disable: no ssl_ca_file: ssl_cert_file: /etc/ssl/certs/dovecot.pem ssl_key_file: /etc/ssl/private/dovecot.pem ssl_key_password: ssl_parameters_regenerate: 168 ssl_cipher_list: ssl_verify_client_cert: no disable_plaintext_auth: no verbose_ssl: no shutdown_clients: yes nfs_check: yes version_ignore: no login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login login_user: dovecot login_greeting: Dovecot ready. login_log_format_elements: user=<%u> method=%m rip=%r lip=%l %c login_log_format: %$: %s login_process_per_connection: yes login_chroot: yes login_greeting_capability: no login_process_size: 64 login_processes_count: 3 login_max_processes_count: 128 login_max_connections: 256 valid_chroot_dirs: mail_chroot: max_mail_processes: 1024 verbose_proctitle: no first_valid_uid: 500 last_valid_uid: 0 first_valid_gid: 1 last_valid_gid: 0 mail_extra_groups: mail_access_groups: mail_privileged_group: man default_mail_env: mail_location: mbox:~/mail/:INBOX=/var/mail/%u mail_cache_fields: flags mail_never_cache_fields: imap.envelope mail_cache_min_mail_count: 0 mailbox_idle_check_interval: 30 mail_debug: yes mail_full_filesystem_access: no mail_max_keyword_length: 50 mail_save_crlf: no mail_read_mmaped: no mmap_disable: no mmap_no_write: no dotlock_use_excl: no fsync_disable: no lock_method: fcntl maildir_stat_dirs: no maildir_copy_with_hardlinks: no maildir_copy_preserve_filename: no mbox_read_locks: fcntl mbox_write_locks: fcntl mbox_lock_timeout: 300 mbox_dotlock_change_timeout: 120 mbox_min_index_size: 0 mbox_dirty_syncs: yes mbox_very_dirty_syncs: no mbox_lazy_writes: yes dbox_rotate_size: 2048 dbox_rotate_min_size: 16 dbox_rotate_days: 1 umask: 63 mail_drop_priv_before_exec: no mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(pop3): /usr/lib/dovecot/pop3 mail_process_size: 256 mail_plugins: mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 mail_log_prefix: %Us(%u): mail_log_max_lines_per_sec: 10 imap_max_line_length: 65536 imap_capability: imap_client_workarounds: outlook-idle pop3_no_flag_updates: no pop3_enable_last: no pop3_reuse_xuidl: no pop3_lock_session: no pop3_uidl_format(default): pop3_uidl_format(imap): pop3_uidl_format(pop3): %08Xu%08Xv pop3_client_workarounds: pop3_logout_format: top=%t/%p, retr=%r/%b, del=%d/%m, size=%s managesieve_max_line_length: 65536 managesieve_implementation_string: dovecot sieve_storage: sieve: auth default: mechanisms: plain login realms: default_realm: cache_size: 0 cache_ttl: 3600 executable: /usr/lib/dovecot/dovecot-auth user: root chroot: username_chars: abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@ username_translation: username_format: master_user_separator: anonymous_username: anonymous krb5_keytab: gssapi_hostname: verbose: no debug: yes debug_passwords: no ssl_require_client_cert: no ssl_username_from_cert: no count: 1 worker_max_count: 30 process_size: 256 passdb: driver: pam args: session=yes dovecot deny: no pass: no master: no userdb: driver: passwd args: -------------------------- From CMarcus at Media-Brokers.com Thu Jun 9 17:32:40 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 09 Jun 2011 10:32:40 -0400 Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login In-Reply-To: References: Message-ID: <4DF0D988.50702@Media-Brokers.com> On 2011-06-09 8:55 AM, emc wrote: > ************************* > HERE my doveconf -a > ************************* No - doveconf -n is what is needed, not -a... > # 1.0.15: /etc/dovecot/dovecot.conf Very old - an upgrade is in order... -- Best regards, Charles From jg at softjury.de Thu Jun 9 17:41:38 2011 From: jg at softjury.de (Jan Phillip Greimann) Date: Thu, 09 Jun 2011 16:41:38 +0200 Subject: [Dovecot] Question about Dovecot-ACLs Message-ID: <4DF0DBA2.4080307@softjury.de> Hi there, i try to create an php-script to control acl's for public folders without file-manipulation. For this i use imap_setacl() like this example: imap_setacl($mbox,"INBOX/test", "email at domain.tld", "lrwstipekxa"); The acl-file looks so: ~:> cat dovecot-acl user=email at domain.tld akxeilprwts But i have a problem with the follow function: imap_setacl($mbox,"INBOX/test", "email at domain.tld", ""); This command only delete the rights from the email, not the whole entry in my dovecot-acl file. Now my acl-file looks like this: ~:> cat dovecot-acl user=email at domain.tld Did this affect dovecot by any way? Thanks, Jan From skolaria at yahoo.com Thu Jun 9 17:42:37 2011 From: skolaria at yahoo.com (emc) Date: Thu, 9 Jun 2011 14:42:37 +0000 (UTC) Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login References: <4DF0D988.50702@Media-Brokers.com> Message-ID: Charles Marcus Media-Brokers.com> writes: > > On 2011-06-09 8:55 AM, emc wrote: > > ************************* > > HERE my doveconf -a > > ************************* > > No - doveconf -n is what is needed, not -a... > > > # 1.0.15: /etc/dovecot/dovecot.conf > > Very old - an upgrade is in order... > here the dovecot -n **************************** **************************** # 1.0.15: /etc/dovecot/dovecot.conf log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s listen: disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login mail_privileged_group: man mail_location: mbox:~/mail/:INBOX=/var/mail/%u mail_debug: yes mbox_write_locks: fcntl mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(pop3): /usr/lib/dovecot/pop3 mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 pop3_uidl_format(default): pop3_uidl_format(imap): pop3_uidl_format(pop3): %08Xu%08Xv auth default: mechanisms: plain login debug: yes passdb: driver: pam args: session=yes dovecot userdb: driver: passwd **************************** **************************** From mailinglist at darac.org.uk Thu Jun 9 18:20:45 2011 From: mailinglist at darac.org.uk (Darac Marjal) Date: Thu, 9 Jun 2011 16:20:45 +0100 Subject: [Dovecot] IMAP Label Updates not showing up across shared account In-Reply-To: <4DEFA1DC.4020408@list-post.mks-mail.de> References: <4DDB7E0C.9090306@wenn.com> <1307454788.10421.728.camel@hurina> <4DEF3F78.2000509@wenn.com> <1307537987.10421.762.camel@hurina> <4DEFA1DC.4020408@list-post.mks-mail.de> Message-ID: <20110609152045.GA1801@darac.org.uk> On Wed, Jun 08, 2011 at 06:22:52PM +0200, Markus Sch?nhaber wrote: > 08.06.2011 14:59, Timo Sirainen: > > > Well, this was an interesting message. multipart/alternative where first > > part was text and second part a GIF image. > > To me, it seems the second part is not a GIF but rather a > multipart/related which, in turn, contains the GIF as first (and only) > part. Maybe that's what confuses some clients. According to http://en.wikipedia.org/wiki/MIME#Alternative, the parts of a multipart/alternative are supposed to be ordered by increasing faithfulness. Typically, this means plain text followed by HTML or rich text. In this case, the mime structure is implying that the multipart/related bundle is a truer representation than the plain text. This also explains why mutt doesn't miss a beat with these messages. It can't display the GIF, so the next best option is the plain text :) -- Paul Saunders From aperezaranda at yaco.es Thu Jun 9 18:29:09 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Thu, 9 Jun 2011 17:29:09 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: Well, this "extrange" vaues is NULL. Maybe, the set_parser is a new environment to set settings but then ?when is make the config merge? 2011/6/9 Antonio Perez-Aranda : > This line: > > value = settings_parse_get_value(set_parser, key, &type); > > Is returning a empty value. Maybe, set_parser has been cleared? > > If I try to get another keys from my config that I can watch with > doveadm I get "extrange" values like this with i_debug() > > ?* mail_debug -> #001 > ?* mail_location -> #010 > ?* auth_realms -> #020#002 > > > 2011/6/8 Antonio Perez-Aranda : >> It must run on dovecot 2.0.13? >> >> We are upgrading to 2.0.13 and with this I get the follow message: >> >> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >> +mail_plugins=fts fts_solr?G >> >> >> 2011/6/7 Timo Sirainen : >>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>>> Greats, I'm working on patch from this morning, but it's very hard to >>>> debug on settings-parser >>> >>> I don't think you should need to touch that code. It's a bit difficult >>> for me also to follow.. >>> >>>> How can I enable i_debug on settings-parser.c ? >>> >>> What do you mean? You could add i_debug() calls and it should work just >>> the same as everywhere. >>> >>> Did you try the patch in my previous mail? I think that should be >>> enough. You could then use: >>> >>> user_attrs = .., mailPlugins=+mail_plugins >>> >>> >>> >> >> >> >> -- >> Antonio P?rez-Aranda Alcaide >> aperezaranda at yaco.es >> >> Yaco Sistemas S.L. >> http://www.yaco.es/ >> C/ Rioja 5, 41001 Sevilla >> Tel?fono +34 954 50 00 57 >> Fax ? ? ?+34 954 50 09 29 >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From aperezaranda at yaco.es Thu Jun 9 19:34:27 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Thu, 9 Jun 2011 18:34:27 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: This patch is running but it only run with mail_plugins. This is because I can't select the "mail_plugins" value from any function to get this throw the name key. Maybe this need more hard development to do this as generic "property" for any config value. 2011/6/9 Antonio Perez-Aranda : > Well, this "extrange" vaues is NULL. > > Maybe, the set_parser is a new environment to set settings but then > ?when is make the config merge? > > 2011/6/9 Antonio Perez-Aranda : >> This line: >> >> value = settings_parse_get_value(set_parser, key, &type); >> >> Is returning a empty value. Maybe, set_parser has been cleared? >> >> If I try to get another keys from my config that I can watch with >> doveadm I get "extrange" values like this with i_debug() >> >> ?* mail_debug -> #001 >> ?* mail_location -> #010 >> ?* auth_realms -> #020#002 >> >> >> 2011/6/8 Antonio Perez-Aranda : >>> It must run on dovecot 2.0.13? >>> >>> We are upgrading to 2.0.13 and with this I get the follow message: >>> >>> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >>> +mail_plugins=fts fts_solr?G >>> >>> >>> 2011/6/7 Timo Sirainen : >>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>>>> Greats, I'm working on patch from this morning, but it's very hard to >>>>> debug on settings-parser >>>> >>>> I don't think you should need to touch that code. It's a bit difficult >>>> for me also to follow.. >>>> >>>>> How can I enable i_debug on settings-parser.c ? >>>> >>>> What do you mean? You could add i_debug() calls and it should work just >>>> the same as everywhere. >>>> >>>> Did you try the patch in my previous mail? I think that should be >>>> enough. You could then use: >>>> >>>> user_attrs = .., mailPlugins=+mail_plugins >>>> >>>> >>>> >>> >>> >>> >>> -- >>> Antonio P?rez-Aranda Alcaide >>> aperezaranda at yaco.es >>> >>> Yaco Sistemas S.L. >>> http://www.yaco.es/ >>> C/ Rioja 5, 41001 Sevilla >>> Tel?fono +34 954 50 00 57 >>> Fax ? ? ?+34 954 50 09 29 >>> >> >> >> >> -- >> Antonio P?rez-Aranda Alcaide >> aperezaranda at yaco.es >> >> Yaco Sistemas S.L. >> http://www.yaco.es/ >> C/ Rioja 5, 41001 Sevilla >> Tel?fono +34 954 50 00 57 >> Fax ? ? ?+34 954 50 09 29 >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 -------------- next part -------------- A non-text attachment was scrubbed... Name: add_mail_plugins.patch Type: text/x-patch Size: 1338 bytes Desc: not available URL: From aperezaranda at yaco.es Thu Jun 9 20:16:25 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Thu, 9 Jun 2011 19:16:25 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: This patch fix a bug and remove some debug info from patch sent before. 2011/6/9 Antonio Perez-Aranda : > This patch is running but it only run with mail_plugins. > > This is because I can't select the "mail_plugins" value from any > function to get this throw the name key. > > Maybe this need more hard development to do this as generic "property" > for any config value. > > 2011/6/9 Antonio Perez-Aranda : >> Well, this "extrange" vaues is NULL. >> >> Maybe, the set_parser is a new environment to set settings but then >> ?when is make the config merge? >> >> 2011/6/9 Antonio Perez-Aranda : >>> This line: >>> >>> value = settings_parse_get_value(set_parser, key, &type); >>> >>> Is returning a empty value. Maybe, set_parser has been cleared? >>> >>> If I try to get another keys from my config that I can watch with >>> doveadm I get "extrange" values like this with i_debug() >>> >>> ?* mail_debug -> #001 >>> ?* mail_location -> #010 >>> ?* auth_realms -> #020#002 >>> >>> >>> 2011/6/8 Antonio Perez-Aranda : >>>> It must run on dovecot 2.0.13? >>>> >>>> We are upgrading to 2.0.13 and with this I get the follow message: >>>> >>>> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >>>> +mail_plugins=fts fts_solr?G >>>> >>>> >>>> 2011/6/7 Timo Sirainen : >>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>>>>> Greats, I'm working on patch from this morning, but it's very hard to >>>>>> debug on settings-parser >>>>> >>>>> I don't think you should need to touch that code. It's a bit difficult >>>>> for me also to follow.. >>>>> >>>>>> How can I enable i_debug on settings-parser.c ? >>>>> >>>>> What do you mean? You could add i_debug() calls and it should work just >>>>> the same as everywhere. >>>>> >>>>> Did you try the patch in my previous mail? I think that should be >>>>> enough. You could then use: >>>>> >>>>> user_attrs = .., mailPlugins=+mail_plugins >>>>> >>>>> >>>>> >>>> >>>> >>>> >>>> -- >>>> Antonio P?rez-Aranda Alcaide >>>> aperezaranda at yaco.es >>>> >>>> Yaco Sistemas S.L. >>>> http://www.yaco.es/ >>>> C/ Rioja 5, 41001 Sevilla >>>> Tel?fono +34 954 50 00 57 >>>> Fax ? ? ?+34 954 50 09 29 >>>> >>> >>> >>> >>> -- >>> Antonio P?rez-Aranda Alcaide >>> aperezaranda at yaco.es >>> >>> Yaco Sistemas S.L. >>> http://www.yaco.es/ >>> C/ Rioja 5, 41001 Sevilla >>> Tel?fono +34 954 50 00 57 >>> Fax ? ? ?+34 954 50 09 29 >>> >> >> >> >> -- >> Antonio P?rez-Aranda Alcaide >> aperezaranda at yaco.es >> >> Yaco Sistemas S.L. >> http://www.yaco.es/ >> C/ Rioja 5, 41001 Sevilla >> Tel?fono +34 954 50 00 57 >> Fax ? ? ?+34 954 50 09 29 >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 -------------- next part -------------- A non-text attachment was scrubbed... Name: userdb-addplugins.patch Type: text/x-patch Size: 1308 bytes Desc: not available URL: From lists at wildgooses.com Thu Jun 9 20:40:10 2011 From: lists at wildgooses.com (Ed W) Date: Thu, 09 Jun 2011 18:40:10 +0100 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> Message-ID: <4DF1057A.1050108@wildgooses.com> On 09/06/2011 14:14, Giles Coochey wrote: > On Thu, June 9, 2011 12:14, Ed W wrote: >> >> However! I found a useful plugin for Thunderbird (which I see you don't >> use, but still). It's called Quote Collapse and basically it does what >> you might imagine, the indented bits of messages get collapsed to just >> their first line (for context) and you get a +/- button to expand if you >> need to read the rest of the context. Personally for me this makes >> bottom posting readable in general and top posting is fine, and my >> preference then becomes "interleaved" because it looks quite pretty with >> the collapsed quoting... >> > I found this plugin (v0.8), but it is not compatible with Thunderbird > v3.1.10 apparently. Baffling - that's the version I appear to be using for both... Ed W From skolaria at yahoo.com Thu Jun 9 20:44:49 2011 From: skolaria at yahoo.com (emc) Date: Thu, 9 Jun 2011 17:44:49 +0000 (UTC) Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login References: <4DF0D988.50702@Media-Brokers.com> Message-ID: Thanks Charles... Someone else can help me? I cannot receive any mail with my client thunderbird. Postfix send mail ok... and the mail they are received by server (i can read it inside webmin), but even squirrelmail give me a imap login error. Im running a Debian Linux 5 Thanks for some reply and help. From mfioretti at nexaima.net Thu Jun 9 21:16:15 2011 From: mfioretti at nexaima.net (M. Fioretti) Date: Thu, 9 Jun 2011 20:16:15 +0200 Subject: [Dovecot] Error: file_dotlock_create failed: Permission denied In-Reply-To: <20110609161231.GA22911@nexaima.net> References: <37522.151.25.103.156.1306324170.squirrel@nexaima.net> <1307109066.10421.602.camel@hurina> <20110609161231.GA22911@nexaima.net> Message-ID: <20110609181614.GC26282@nexaima.net> On Fri, Jun 03, 2011 16:51:06 PM +0300, Timo Sirainen wrote: > > On Wed, 2011-05-25 at 13:49 +0200, M. Fioretti wrote: > > > /home/z/email/marco isn't owned by marco? Alternatively you have SELinux > > enabled, which is preventing this. Yes, it was indeed selinux. I realized it (with help from the fedora list) the day after posting to this one, but then I started to restore other files from the backup and forgot to confirm that this was the problem, sorry. Marco From bra at fsn.hu Thu Jun 9 21:56:16 2011 From: bra at fsn.hu (Attila Nagy) Date: Thu, 09 Jun 2011 20:56:16 +0200 Subject: [Dovecot] Converting CLIENT_MAIL_DATA_MAX_INMEMORY_SIZE to a configurable? Message-ID: <4DF11750.40006@fsn.hu> Hi, Currently Dovecot's LMTPd writes incoming emails to mail_temp_dir if it's bigger than 128k. But I would like to spare those unnecessary operations (creating a file, deleting it, writing into it, reading from it, checking whether there is free space and if not, rejecting (temporarily) the message). Memory is cheap, disk IO is not. :) And BTW, on a lot of systems, /tmp is a memory file system already, so there is absolute no need for this. I only fired two greps so far before writing this mail, in the hope that I can spare writing, testing and sending a patch, which will be either rejected, or rewritten. :) So, am I right that the following constant would be needed to be converted into a configurable setting and the task is done? static int client_input_add(struct client *client, const unsigned char *data, size_t size) { if (client->state.mail_data->used + size <= CLIENT_MAIL_DATA_MAX_INMEMORY_SIZE && client->state.mail_data_output == NULL) { buffer_append(client->state.mail_data, data, size); return 0; } else { return client_input_add_file(client, data, size); } } It could be defaulted to 128k, but the user could set it "unlimited" (0 or -1, depending on the author's mood, 0 and/or -1 being unlimited, or 0 being 0, meaning don't even store a bit -doesn't really make sense to me). LMTP is mostly protected from the outside world, so I don't see too much DoS potential here (absolutely not more than in the tmpfs case). Thanks, From wgillespie+dovecot at es2eng.com Thu Jun 9 22:01:51 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Thu, 09 Jun 2011 13:01:51 -0600 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: <4DF1057A.1050108@wildgooses.com> References: <4DEFD5E3.2090702@delphij.net> <20110608204854.GZ681@jumper.schlittermann.de> <4DEFE6E9.3050603@whyscream.net> <20110608214625.GC681@jumper.schlittermann.de> <201B9852-A321-4876-9F45-52DDFF93298C@iki.fi> <4DF09D11.5080001@wildgooses.com> <5e3acf68e68ca2e019f9b47d576de12e.squirrel@www.coochey.net> <4DF1057A.1050108@wildgooses.com> Message-ID: <4DF1189F.4010505@es2eng.com> This has been quite an informative topic, although it veered from the initial question quite early on. I know Dovecot does not do deduplication on its own, but perhaps someone can point me to a good Maildir deduplication program. In my case it has nothing to do with mailing lists. We have a shared namespace for certain groups where multiple people can put email regarding certain projects. Naturally, sometimes two people receive the same email and they will both go put their copy in the same folder. It'd be nice (not critical) if I could remove the duplicates somehow. Obviously they are not byte-for-byte duplicates because their headers are going to be /slightly/ different near the end of the Received sequence. Willie From thiagoh at digirati.com.br Thu Jun 9 23:20:34 2011 From: thiagoh at digirati.com.br (Thiago Henrique) Date: Thu, 09 Jun 2011 17:20:34 -0300 Subject: [Dovecot] Dovecot sieve redirect: failed to redirect message to user@domain.com Message-ID: <1307650834.16862.23.camel@thiagohenrique06> Hello, I'm running Dovecot 2.0.13 on my Ubuntu10.04. It's working very well but I faced a problem with Redirect and Vacation using Sieve. :-( In fact, after well configuring the system I dont't receive the redirect message, and in the log I found: ######################################################################################## Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Fatal: execv(/usr/sbin/sendmail) failed: Permission denied Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Error: Sendmail process terminated abnormally, exit status 84 Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Error: At35JIgC8U3uKQAAndgVeA: sieve: msgid=<20110609184850.0FAB8200A41C at domain.com>: failed to redirect message to (refer to server log for more information) ######################################################################################## In sieve.log I see: ######################################################################################## error: msgid=<2011060919.0200A375 at domain.com>: failed to redirect message to (refer to server log for more information). ######################################################################################## Manually sendmail command works normally. Cron sends email normally. Any idea about the reason this happen and how to solve? Thanks in advance, Thiago Henrique From trever.adams at gmail.com Fri Jun 10 00:06:12 2011 From: trever.adams at gmail.com (Trever L. Adams) Date: Thu, 09 Jun 2011 15:06:12 -0600 Subject: [Dovecot] [SOLVED] Re: possible bug leading to lmtp crashes In-Reply-To: <1307449127.10421.700.camel@hurina> References: <4DAECAAC.3060903@gmail.com> <4DB58F67.4090600@gmail.com> <4DB6FCF7.9070905@gmail.com> <5D19A866-381B-4CA6-B8FF-0F7BCDA36799@iki.fi> <4DBC3F3F.4030605@gmail.com> <1304957973.10421.101.camel@hurina> <4DCA7C6F.40902@gmail.com> <1305116849.10421.192.camel@hurina> <4DD5191E.9040606@gmail.com> <4DEDAFC4.3080400@gmail.com> <1307449127.10421.700.camel@hurina> Message-ID: <4DF135C4.80206@gmail.com> On 06/07/2011 06:18 AM, Timo Sirainen wrote: > O > I don't see why that would matter, but I think this will help: > http://hg.dovecot.org/dovecot-2.0/rev/c0734f08b3f3 Thank you, Timo. This did indeed fix the crash completely. As a side note, World IPv6 day was a success with Dovecot here under heavy usage. The ONLY problem is ok in dual stack environments and that is that LDAP wouldn't connect with IPv6. It always used IPv4. Thank you. Trever -- "A modest woman, dressed out in all her finery, is the most tremendous object in the whole creation." -- Goldsmith -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From lists at wildgooses.com Fri Jun 10 00:14:07 2011 From: lists at wildgooses.com (Ed W) Date: Thu, 09 Jun 2011 22:14:07 +0100 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: References: <4DEFD5E3.2090702@delphij.net> Message-ID: <4DF1379F.1080303@wildgooses.com> On 09/06/2011 13:36, Allan Cassaro wrote: > would you try the OpenDedup File System? (http://www.opendedup.org) > If your problem is (only) the message size, this will works like a charm to > you. > > BTW, this is a great project to use with any maildir compatible server... it > reduces a LOT of disk usage space... Just theoretically I wouldn't expect dedup to make an interesting difference, especially not a naive dedup algorithm? Would you mind sharing some statistics from your installation? Cheers Ed W From delphij at delphij.net Fri Jun 10 00:32:47 2011 From: delphij at delphij.net (Xin LI) Date: Thu, 09 Jun 2011 14:32:47 -0700 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: References: <4DEFD5E3.2090702@delphij.net> Message-ID: <4DF13BFF.5060609@delphij.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 06/09/11 05:36, Allan Cassaro wrote: [...] > would you try the OpenDedup File System? (http://www.opendedup.org) > If your problem is (only) the message size, this will works like a charm to > you. Well, for me it's not a matter of size (I use FreeBSD ZFS which can do dedup by the way), but simply same message showing up on same inbox for twice, for IMAP, this can be quite annoying. Also I don't think filesystem level dedup would work well for mail servers even using a filesystem that is capable for doing dedup (not to mention it's sometimes slow), because we store the message header together with the bodies, and they are likely to differ slightly (someone@ vs someoneelse at domainname), causing an offset in the message and thus make block-level dedup useless, so in order to efficiently use dedup (for speed and space), one have to migrate to a new storage format. I'll take a look at the code and see if I can do that myself when I have some spare time, and thanks for everyone who replied. Cheers, - -- Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! Live free or die -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (FreeBSD) iQEcBAEBCAAGBQJN8Tv/AAoJEATO+BI/yjfBz6AH/3FWAMNuqTWTvaT8lnSfDl99 7KclQamlczrKvJ3XKjfFCaAzf73PQffwfJbz/RtMfwCgKZhiZG86U5uo15qb8eKU pUxDVpukxarrb9r/13x5vxrSJz33QVebwdzvdBckZk2sbzUodW1MoMIH/66jmuDG gojKzn4gdTW1jH5OUlWN3NZSmib44xvTvSjRDX/6OV6DBvAmpHRFOm1f6iEk5BHE sPnbKEzwNoqAvDlqzPynuhOc+acTuaVL0/+dyEmVcI5neZf6eYRljgoP+NlzF4yk R9IpghAnRe5Us4ZIXvla1fT345ckAhPtvP0j5FxTjXq4IBChkV4k7PXkwlQSocE= =PyS4 -----END PGP SIGNATURE----- From delphij at delphij.net Fri Jun 10 00:32:47 2011 From: delphij at delphij.net (Xin LI) Date: Thu, 09 Jun 2011 14:32:47 -0700 Subject: [Dovecot] On-delivery deduplication? In-Reply-To: References: <4DEFD5E3.2090702@delphij.net> Message-ID: <4DF13BFF.1040308@delphij.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 06/09/11 05:36, Allan Cassaro wrote: [...] Well, for me it's not a matter of size (I use FreeBSD ZFS which can do dedup by the way), but simply same message showing up on same inbox for twice, for IMAP, this can be quite annoying. Also I don't think filesystem level dedup would work well for mail servers even using a filesystem that is capable for doing dedup (not to mention it's sometimes slow), because we store the message header together with the bodies, and they are likely to differ slightly (someone@ vs someoneelse at domainname), causing an offset in the message and thus make block-level dedup useless, so in order to efficiently use dedup (for speed and space), one have to migrate to a new storage format. I'll take a look at the code and see if I can do that myself when I have some spare time, and thanks for everyone who replied. Cheers, - -- Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! Live free or die -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (FreeBSD) iQEcBAEBCAAGBQJN8Tv/AAoJEATO+BI/yjfBz6AH/3FWAMNuqTWTvaT8lnSfDl99 7KclQamlczrKvJ3XKjfFCaAzf73PQffwfJbz/RtMfwCgKZhiZG86U5uo15qb8eKU pUxDVpukxarrb9r/13x5vxrSJz33QVebwdzvdBckZk2sbzUodW1MoMIH/66jmuDG gojKzn4gdTW1jH5OUlWN3NZSmib44xvTvSjRDX/6OV6DBvAmpHRFOm1f6iEk5BHE sPnbKEzwNoqAvDlqzPynuhOc+acTuaVL0/+dyEmVcI5neZf6eYRljgoP+NlzF4yk R9IpghAnRe5Us4ZIXvla1fT345ckAhPtvP0j5FxTjXq4IBChkV4k7PXkwlQSocE= =PyS4 -----END PGP SIGNATURE----- From asicofante at gmail.com Fri Jun 10 09:57:42 2011 From: asicofante at gmail.com (Aleve Sicofante) Date: Fri, 10 Jun 2011 08:57:42 +0200 Subject: [Dovecot] Gmail like virtual mailboxes Message-ID: I'm new to this list so let me introduce myself: I'm a computer literate user (I've done some C programming long ago and can run a Linux system and do some light admin), I've never installed a mail server before and I'm in the process of migrating my family and my small business from Gmail (Google Apps) to a virtual server mainly for privacy reasons. I'm in love with Gmail's label system and I just plain hate traditional folders. I use hierarchical labels (as if they were folders but with a message belonging to many at the same time) and that MUST be preserved in the migration. I've looked at Courier's IMAP keywords implementation and it looks good, but everyone on the internet is recommending Dovecot, so here I am. I've tried hard to find information about using unlimited hierarchical labels, virtual mailboxes or any other way of mimicing Gmail's functionality with Dovecot, but I'm lost. First of all: can it be done? If so, is there any introductory documentation? (I've only found very sparse information.) Is it available for any storage format (mbox, maildir, dbox)? Any help will be very appreciated. -- Aleve Sicofante From robert at schetterer.org Fri Jun 10 11:08:25 2011 From: robert at schetterer.org (Robert Schetterer) Date: Fri, 10 Jun 2011 10:08:25 +0200 Subject: [Dovecot] auth_cache question Message-ID: <4DF1D0F9.4040208@schetterer.org> Hi , just to make clear short question does auth_cache... help with downing sql lookups http://wiki2.dovecot.org/Authentication/Caching isnt clear to me for sql to me if yes are there real world recommanded settings lets say for a 5000 users server and where password changes should be noticed asap -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From harenberg at physik.uni-wuppertal.de Fri Jun 10 12:04:16 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Fri, 10 Jun 2011 11:04:16 +0200 Subject: [Dovecot] Sub-Subfolder from public folders Message-ID: <0374F39D-CF21-4D6C-94BD-958A820FB9B7@physik.uni-wuppertal.de> Dear all, I just moved from an old cyrus instance to a brand new dovecot installation. Everything worked pretty well so far. The only small problem I have is: we have public folders, so I defined namespace { type = public separator = . prefix = public. location = maildir:/var/mail/public:INDEX=%u/public subscriptions = no list = children } And I define ACLs for the folders inside. This works, but the some of these folders have sub-folders and these cannot be seen by (what I have tested is Apple Mail, Thunderbird, Outlook and squirrelmail). File system looks like this: mail# cd /var/mail/public/.icecube-c mail# ls -l .ice* .icecube-hard: total 232 drwxrwxrwx 2 root wheel 512 Jun 9 13:07 cur -rwxrwxrwx 1 root wheel 167 Jun 9 13:07 dovecot-keywords -rwxrwxrwx 1 root wheel 105179 Jun 9 13:07 dovecot-uidlist drwxrwxrwx 2 root wheel 123904 Jun 9 13:07 new drwxrwxrwx 2 root wheel 512 Jun 9 13:07 tmp .icecube-soft: total 2214 drwxrwxrwx 2 root wheel 512 Jun 9 13:06 cur -rwxrwxrwx 1 root wheel 167 Jun 9 13:07 dovecot-keywords -rwxrwxrwx 1 root wheel 1019250 Jun 9 13:07 dovecot-uidlist -rwxrwxrwx 1 root wheel 0 Jun 9 13:06 maildirfolder drwxrwxrwx 2 root wheel 1195008 Jun 9 13:07 new drwxrwxrwx 2 root wheel 512 Jun 9 13:07 tmp mail# ls .icecube-hard .icecube-soft cur dovecot-acl dovecot-keywords dovecot-uidlist new subscriptions tmp Maybe anybody can help with this? Full dovecot -n attached. Thanks again and best regards, Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> mail# dovecot -n # 2.0.13: /usr/pkg/etc/dovecot/dovecot.conf # OS: NetBSD 5.1 amd64 ffs auth_debug = yes auth_verbose = yes base_dir = /var/run/dovecot/ mail_debug = yes mail_gid = 6 mail_location = maildir:/var/mail/user/%u/Maildir mail_plugins = acl managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { inbox = yes location = prefix = separator = . type = private } namespace { list = children location = maildir:/var/mail/public:INDEX=%u/public prefix = public. separator = . subscriptions = no type = public } passdb { args = /usr/pkg/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { acl = vfile sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 lmtp sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-userdb { group = dovecot user = dovecot } } service managesieve-login { inet_listener sieve { port = 4190 } inet_listener sieve_deprecated { port = 2000 } } ssl_cert = Hello, is it possible to limit the number of pop3 (or imap) login attempts from one IP with dovecot to stop attackers? We recently had an attack from one IP-address lasting 50 minutes that tried 50000 pop3-logins with guessed users and passwords. I know about Fail2Ban but really would prefer an easy to configure solution inside of dovecot. Dovecot has this anvil daemon, can it be used for that purpose? We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of the configuration looking like that: service pop3-login { chroot = login client_limit = 0 drop_priv_before_exec = no executable = pop3-login extra_groups = group = idle_kill = 0 inet_listener pop3 { address = port = 110 ssl = no } inet_listener pop3s { address = port = 995 ssl = yes } privileged_group = process_limit = 0 process_min_avail = 0 protocol = pop3 service_count = 1 type = login user = $default_login_user vsz_limit = 64 M } Thanks, J?rgen -- Hochschulrechenzentrum der | Mail: Juergen.Obermann at hrz.uni-giessen.de Justus-Liebig-Universitaet | WWW: http://www.uni-giessen.de/obermann/ Heinrich-Buff-Ring 44 | Tel: 0641-99-13054 (0641-99-13001) D-35392 Giessen, Germany | Fax: 0641-99-13009 From duane at duanemail.org Fri Jun 10 12:22:35 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 10 Jun 2011 04:22:35 -0500 Subject: [Dovecot] Dovecot sieve redirect: failed to redirect message to user@domain.com In-Reply-To: <1307650834.16862.23.camel@thiagohenrique06> References: <1307650834.16862.23.camel@thiagohenrique06> Message-ID: <65032798.20110610042235@duanemail.org> Thursday, June 9, 2011, 3:20:34 PM, Thiago wrote: > Hello, > I'm running Dovecot 2.0.13 on my Ubuntu10.04. It's working very well but > I faced a problem with Redirect and Vacation using Sieve. :-( > In fact, after well configuring the system I dont't receive the redirect > message, and in the log I found: > ######################################################################################## > Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Fatal: > execv(/usr/sbin/sendmail) failed: Permission denied > Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Error: > Sendmail process terminated abnormally, exit status 84 > Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Error: > At35JIgC8U3uKQAAndgVeA: sieve: > msgid=<20110609184850.0FAB8200A41C at domain.com>: failed to redirect > message to (refer to server log for more > information) > ######################################################################################## > In sieve.log I see: > ######################################################################################## > error: msgid=<2011060919.0200A375 at domain.com>: failed to redirect > message to (refer to server log for more information). > ######################################################################################## > Manually sendmail command works normally. Cron sends email normally. > Any idea about the reason this happen and how to solve? > Thanks in advance, > Thiago Henrique Can't tell for sure why. Please post the results of the 'dovecot -n' command. Your logs appear to state there is some kind of permission issue. -- Best regards, Duane mailto:duane at duanemail.org From robert at schetterer.org Fri Jun 10 12:26:44 2011 From: robert at schetterer.org (Robert Schetterer) Date: Fri, 10 Jun 2011 11:26:44 +0200 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> Message-ID: <4DF1E354.6090806@schetterer.org> Am 10.06.2011 11:22, schrieb J?rgen Obermann: > Hello, > > is it possible to limit the number of pop3 (or imap) login attempts from > one IP with dovecot to stop attackers? We recently had an attack from > one IP-address lasting 50 minutes that tried 50000 pop3-logins with > guessed users and passwords. I know about Fail2Ban but really would > prefer an easy to configure solution inside of dovecot. Dovecot has this > anvil daemon, can it be used for that purpose? > > We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of > the configuration looking like that: > > service pop3-login { > chroot = login > client_limit = 0 > drop_priv_before_exec = no > executable = pop3-login > extra_groups = > group = > idle_kill = 0 > inet_listener pop3 { > address = > port = 110 > ssl = no > } > inet_listener pop3s { > address = > port = 995 > ssl = yes > } > privileged_group = > process_limit = 0 > process_min_avail = 0 > protocol = pop3 > service_count = 1 > type = login > user = $default_login_user > vsz_limit = 64 M > } > > Thanks, J?rgen > look http://wiki2.dovecot.org/HowTo/Fail2Ban -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From wgillespie+dovecot at es2eng.com Fri Jun 10 12:30:43 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Fri, 10 Jun 2011 03:30:43 -0600 Subject: [Dovecot] Sub-Subfolder from public folders In-Reply-To: <0374F39D-CF21-4D6C-94BD-958A820FB9B7@physik.uni-wuppertal.de> References: <0374F39D-CF21-4D6C-94BD-958A820FB9B7@physik.uni-wuppertal.de> Message-ID: <4DF1E443.9050602@es2eng.com> On 6/10/2011 3:04 AM, Torsten Harenberg wrote: > This works, but the some of these folders have sub-folders and these cannot be seen by (what I have tested is Apple Mail, Thunderbird, Outlook and squirrelmail). > > File system looks like this: > > mail# cd /var/mail/public/.icecube-c > mail# ls > .icecube-hard .icecube-soft cur dovecot-acl dovecot-keywords dovecot-uidlist new subscriptions tmp Instead of having .icecube-hard and .icecube-soft inside of .icecube-c, move them to /var/mail/public/.icecube-c.icecube-hard and /var/mail/public/.icecube-c.icecube-soft That will show them as subfolders of icecube-c From duane at duanemail.org Fri Jun 10 13:06:22 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 10 Jun 2011 05:06:22 -0500 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> Message-ID: <1818129240.20110610050622@duanemail.org> Friday, June 10, 2011, 4:22:26 AM, J?rgen wrote: > Hello, > is it possible to limit the number of pop3 (or imap) login attempts > from one IP with dovecot to stop attackers? We recently had an attack > from one IP-address lasting 50 minutes that tried 50000 pop3-logins > with guessed users and passwords. I know about Fail2Ban but really > would prefer an easy to configure solution inside of dovecot. Dovecot > has this anvil daemon, can it be used for that purpose? > We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of > the configuration looking like that: > service pop3-login { > chroot = login > client_limit = 0 > drop_priv_before_exec = no > executable = pop3-login > extra_groups = > group = > idle_kill = 0 > inet_listener pop3 { > address = > port = 110 > ssl = no > } > inet_listener pop3s { > address = > port = 995 > ssl = yes > } > privileged_group = > process_limit = 0 > process_min_avail = 0 > protocol = pop3 > service_count = 1 > type = login > user = $default_login_user > vsz_limit = 64 M > } You can thwart (to some degree) failed login attempts by increasing auth_failure_delay. I currently have the parameter set at 5 seconds. Its default is 2 seconds. I also have set auth_verbose = yes and auth_verbose_passwords = sha1 and have a cron job set up to search the logs for the day before using: bzegrep -i 'password.mismatch' /var/log/maillog.0.bz2 I get an email message showing the failed login attempts from the previous day. Someone else suggested using fail2ban which is good. I have sshguard set up myself. -- Best regards, Duane mailto:duane at duanemail.org From harenberg at physik.uni-wuppertal.de Fri Jun 10 13:50:54 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Fri, 10 Jun 2011 12:50:54 +0200 Subject: [Dovecot] Sub-Subfolder from public folders In-Reply-To: <4DF1E443.9050602@es2eng.com> References: <0374F39D-CF21-4D6C-94BD-958A820FB9B7@physik.uni-wuppertal.de> <4DF1E443.9050602@es2eng.com> Message-ID: <753C016C-5ADF-4008-B3B2-B3D62A1E7F6C@physik.uni-wuppertal.de> Thanks Willie, worked :) Great help here on the list :) Have a nice weekend, Torsten Am 10.06.2011 um 11:30 schrieb Willie Gillespie: > > Instead of having .icecube-hard and .icecube-soft inside of .icecube-c, move them to > /var/mail/public/.icecube-c.icecube-hard > and > /var/mail/public/.icecube-c.icecube-soft > > That will show them as subfolders of icecube-c -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> From CMarcus at Media-Brokers.com Fri Jun 10 14:01:22 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Fri, 10 Jun 2011 07:01:22 -0400 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <1818129240.20110610050622@duanemail.org> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1818129240.20110610050622@duanemail.org> Message-ID: <4DF1F982.3070400@Media-Brokers.com> On 2011-06-10 6:06 AM, Duane Hill wrote: > Someone else suggested using fail2ban which is good. I have sshguard > set up myself. He already said he didn't want to use Fail2ban - not sure why though, since it protects many other services at the same time, does exactly what he wants to do, and is quite easy to setup... Jurgen - I personally would suggest you reconsider using Fail2ban... It really is easy to setup, and like I said, you can protect all your other services with it too (ssh, ftp, etc)... -- Best regards, Charles From duane at duanemail.org Fri Jun 10 14:16:33 2011 From: duane at duanemail.org (Duane Hill) Date: Fri, 10 Jun 2011 06:16:33 -0500 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF1F982.3070400@Media-Brokers.com> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1818129240.20110610050622@duanemail.org> <4DF1F982.3070400@Media-Brokers.com> Message-ID: <47214288.20110610061633@duanemail.org> Friday, June 10, 2011, 6:01:22 AM, Charles wrote: > On 2011-06-10 6:06 AM, Duane Hill wrote: >> Someone else suggested using fail2ban which is good. I have sshguard >> set up myself. > He already said he didn't want to use Fail2ban - not sure why though, > since it protects many other services at the same time, does exactly > what he wants to do, and is quite easy to setup... > Jurgen - I personally would suggest you reconsider using Fail2ban... > It really is easy to setup, and like I said, you can protect all your > other services with it too (ssh, ftp, etc)... I did realize the not wanting usage of fail2ban and had suggested the increase in time for failed login attempts. We had an email account compromised within the past several weeks and the increase of the specific parameter has thwarted the failed login attempts. If I read the documentation correctly, the time is incremental (i.e. 2, 4, 8, 16, 32...). Whereby setting to 5 seconds would be 5, 10, 20, 40, 80... I did read somewhere there is a hard coded limit where the parameter would top out at. -- Best regards, Duane mailto:duane at duanemail.org From a.chapellon at horoa.net Fri Jun 10 15:06:30 2011 From: a.chapellon at horoa.net (Alexandre Chapellon) Date: Fri, 10 Jun 2011 14:06:30 +0200 Subject: [Dovecot] migration scenario Message-ID: <4DF208C6.7080500@horoa.net> Hello, I'd like to know if anybody have an experience with migrating mailboxes from mirapoint mail system to dovecot? If so how was it done and what were the difficulties? regards. From richard.gliebe at fhv.at Fri Jun 10 15:16:07 2011 From: richard.gliebe at fhv.at (Richard Gliebe) Date: Fri, 10 Jun 2011 14:16:07 +0200 Subject: [Dovecot] dovecot-managesieve Message-ID: <4DF20B07.5000209@fhv.at> Hi all, I have to implement a Out of Office Tool on our dovecot IMAP Server. Recently I updated dovecot-1.0.7-7.el5 to dovecot-1.1.20-1_98.el5 on our CentOS release 5.6 (Final) box via "yum update" # cat /etc/yum.conf .... [atrpms] name=Fedora Core $releasever - $basearch - ATrpms baseurl=http://dl.atrpms.net/el$releasever-$basearch/atrpms/stable gpgkey=http://ATrpms.net/RPM-GPG-KEY.atrpms gpgcheck=1 # .... After it, I installed dovecot-managesieve-0.11.12-0_5.1.el5 via yum install. These are my sieve settings in /etc/dovecot.conf: ....... version_ignore=yes # Log file to use for error messages, instead of sending them to syslog. # /dev/stderr can be used to log into stderr. log_path = /var/log/dovecot.log # Protocols we want to be serving: imap imaps pop3 pop3s managesieve # If you only want to use dovecot-auth, you can set this to "none". #protocols = imap imaps pop3 pop3s protocols = imaps pop3s pop3 managesieve mail_debug=yes protocol managesieve { # Specify an alternative address:port the daemon must listen on # (default: *:2000) #listen = localhost:2000 managesieve_logout_format = bytes ( in=%i : out=%o ) # Duplicated from plugin section sieve=~/.dovecot.sieve sieve_storage=~/sieve } plugin { # Settings for the Sieve plugin sieve=~/.dovecot.sieve sieve_dir=~/sieve } ...... After restarting dovecot, I'm getting the following errors in dovecot.log: dovecot: Jun 10 08:50:14 Info: dovecot v1.1.20 starting up (core dumps disabled) dovecot: Jun 10 08:50:16 Error: login: Login request missing a file descriptor dovecot: Jun 10 08:50:16 Error: Temporary failure in creating login processes, slowing down for now dovecot: Jun 10 08:50:16 Warning: managesieve-login: managesieve-login: capability string is empty. dovecot: Jun 10 08:50:16 Error: login: Login request missing a file descriptor dovecot: Jun 10 08:50:16 Warning: managesieve-login: managesieve-login: capability string is empty. dovecot: Jun 10 08:50:16 Error: login: Login request missing a file descriptor dovecot: Jun 10 08:50:16 Warning: managesieve-login: managesieve-login: capability string is empty. dovecot: Jun 10 08:50:16 Info: Created login processes successfully, unstalling dovecot: Jun 10 08:50:17 Error: login: Login request missing a file descriptor dovecot: Jun 10 08:50:17 Error: Temporary failure in creating login processes, slowing down for now Don't know, whats going on ..... next problem. I can't login with our Thunderbird Clients to our IMAP/sieve Server (Port 2000) to edit Sieve Filters. Authentication is set to: use IMAP Username and password Port 2000 ist listening: # netstat -an | grep 2000 tcp 0 0 0.0.0.0:2000 0.0.0.0:* LISTEN tcp 0 0 192.168.1.6:2000 192.168.1.8:2882 ESTABLISHED tcp 0 0 :::2000 :::* LISTEN Out of Office: I found a plugin for our thunderbird clients: http://www.trustedbird.org/tb/Out_of_Office is this the right one? many many hints are welcome ;-) Richard From alexwbaule at gmail.com Fri Jun 10 15:19:54 2011 From: alexwbaule at gmail.com (Alex Baule) Date: Fri, 10 Jun 2011 09:19:54 -0300 Subject: [Dovecot] Explain about (mail_get_first_header(mail, "From", &header) Message-ID: Hi Timo... Inside my plugin, i use the (mail_get_first_header(mail, "From", &header) function, to get the email From to put in some Blacklist. Looking in the header under this mail, we have 2 "From" fields. Using the function above, i get the Second "From", but my MTA (exim) look in to The First From, in the First Line, in that way, my blacklist don't work, because the sender to be blocked is different from the From looked by dovecot. There is a way to get the "From" from First line ? ############################## HEADER ######################################################## >From dma_3783 at envios.socomdescontos.com.br Tue Jun 07 15:43:04 2011 Return-path: Envelope-to: sugestao at brc.com.br Delivery-date: Tue, 07 Jun 2011 15:43:04 -0300 Received: from [187.61.43.119] (helo=vt-0007-119.virtualtarget.com.br) by mail.brc.com.br with esmtp (Exim 4.76) (envelope-from ) id 1QU1Ex-0006II-5o for sugestao at brc.com.br; Tue, 07 Jun 2011 15:43:01 -0300 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=k1; d=dkim.vttrack.com.br; h=From:To:Subject:MIME-Version:Content-Type:Reply-To:List-Unsubscribe:Message-ID:Date; bh=Q5G3TQPrYgogLS7aDg1DLYJpLKI=; b=XC+MHH79L6VHTI2OayuFHZGeSRAvNstNz8sHEp+xE5i71GznnYfCVsw7fuq2dIST6bTYY7tto/Rd aIZjc2YfEyqgUi0KKKesnMLSI61Ij/FlmE5ftRgIy9Ra59O9R03S62wAt6WPjkx1f4xCZ9ZAIaox GU957biBsg3B6ryU5Ks= Received: by vt-0007-119.virtualtarget.com.br id htpoj60sh70i for ; Tue, 7 Jun 2011 15:42:59 -0300 (envelope-from ) From: "CompraFacil.com.br" To: "sugestao" Subject: SUPER OFERTA: TV LCD 32? Full HD apenas 10x 129,99 reais com FRETE ZERO. Aproveite. MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b928815d46126f887c344b7d725aceb1" Reply-To: "CompraFacil.com.br" List-Unsubscribe: X-DMA: 8448122 X-UID: 8448122-74473 X-CID: 3783 X-TYP: MAIL Message-ID: <0.0.1E.8DF.1CC2542B91E3284.8E34 at vt-0007-119.virtualtarget.com.br> Date: Tue, 7 Jun 2011 15:42:59 -0300 ############################## HEADER ######################################################## From robert at schetterer.org Fri Jun 10 15:54:13 2011 From: robert at schetterer.org (Robert Schetterer) Date: Fri, 10 Jun 2011 14:54:13 +0200 Subject: [Dovecot] migration scenario In-Reply-To: <4DF208C6.7080500@horoa.net> References: <4DF208C6.7080500@horoa.net> Message-ID: <4DF213F5.5090400@schetterer.org> Am 10.06.2011 14:06, schrieb Alexandre Chapellon: > Hello, > > I'd like to know if anybody have an experience with migrating mailboxes > from mirapoint mail system to dovecot? > > If so how was it done and what were the difficulties? > > regards. if you have imap enabled on your old system youre always safe with imapsync for migrate mails to new dovecot other stuff means your clients, what namespaces delimiters etc do they use now, read the general migration faqs i .e is mirapoint more equal to cyrus or courier -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From d.iskandarov at gmail.com Fri Jun 10 17:15:08 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 10 Jun 2011 18:15:08 +0400 Subject: [Dovecot] Dovecot 1.2 + Sieve-0.1.19 not working please help Message-ID: Hello i have installed dovecot from rpm found on rpm.pbone.net 1.2.17-0_115.el5 Everuthing works as charm Postfix + Dovecot + TLS + MySQL/postfixadmin For Reference: Centos 5.6 postfix 2.3.3-2.2 dovecot 1.2.17-0_115.el5 spamassassin 3.2.5-1.el5 postfixadmin 2.3.3 amavisd-new 2.6.4-4.el5.rf Now i'm trying to install Sieve for Dovecot 1.2 to make it redirect spam in proper folders but getting next error: ./configure --with-dovecot=/usr/lib/dovecot/ #OMITED OUTPUT# dovecot-config not found from /usr/lib/dovecot, use --with-dovecot=PATH to give path to compiled Dovecot sources or to a directory with the installed dovecot-config file. configure: error: dovecot-config not found /usr/lib/dovecot/ - is dir where all plugins and other things are stored. /etc is dir where dovecot.conf is located /etc/dovecot is dir where i put dovecot sql config Please help. I have no idea how to fix this. Especially when everything seems to be working as charm. My thread on LQ.org http://www.linuxquestions.org/questions/showthread.php?p=4381803&posted=1#post4381803 dovecot -n # 1.2.17: /etc/dovecot.conf # OS: Linux 2.6.18-238.9.1.el5 i686 CentOS release 5.6 (Final) ext3 base_dir: /var/run/dovecot/ listen(default): *:143 listen(imap): *:143 listen(pop3): *:110 ssl_listen(default): *:993 ssl_listen(imap): *:993 ssl_listen(pop3): *:995 ssl_ca_file: /etc/pki/tls/cacert.pem ssl_cert_file: /etc/pki/tls/dev.cdn/cent56.dev.cdn.crt ssl_key_file: /etc/pki/tls/dev.cdn/cent56.dev.cdn.key ssl_cipher_list: ALL:!LOW:!SSLv2 login_dir: /var/run/dovecot//login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login first_valid_uid: 1001 last_valid_uid: 1001 first_valid_gid: 12 last_valid_gid: 12 mail_location: maildir:/var/vmail/%d/%u mail_debug: yes mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 imap_client_workarounds(default): outlook-idle delay-newmail imap_client_workarounds(imap): outlook-idle delay-newmail imap_client_workarounds(pop3): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh lda: postmaster_address: postmaster at dev.cdn mail_plugins: quota autocreate mail_plugin_dir: /usr/lib/dovecot/lda log_path: /var/log/dovecot/dovecot-deliver.log info_log_path: /var/log/dovecot/dovecot-deliver.log auth default: mechanisms: plain login user: nobody passdb: driver: pam passdb: driver: sql args: /etc/dovecot/sql.conf userdb: driver: passwd userdb: driver: sql args: /etc/dovecot/sql.conf userdb: driver: prefetch socket: type: listen client: path: /var/spool/postfix/private/auth mode: 432 user: postfix group: mail master: path: /var/run/dovecot/auth-master mode: 432 user: vmail group: mail From mstevens at imt-systems.com Fri Jun 10 20:52:12 2011 From: mstevens at imt-systems.com (Morten P.D. Stevens) Date: Fri, 10 Jun 2011 19:52:12 +0200 Subject: [Dovecot] segfault in dovecot 2.0.9 Message-ID: Hi folks, I noticed the following in the dovecot log files: /var/log/maillog Jun 9 00:12:34 mail dovecot: master: Error: service(imap): child 8970 killed with signal 11 (core dumps disabled) Jun 9 00:12:34 mail dovecot: imap-login: Login: user=, method=PLAIN, rip=IP, lip=IP, mpid=8987, TLS Jun 9 00:12:34 mail dovecot: master: Error: service(imap): child 8987 killed with signal 11 (core dumps disabled) /var/log/messages Jun 9 00:12:34 mail kernel: imap[8970]: segfault at 0 ip 00007fe4b2fe432d sp 00007fff29383740 error 4 in libdovecot-storage.so.0.0.0[7fe4b2fb8000+d1000] Jun 9 00:12:34 mail kernel: imap[8987]: segfault at 0 ip 00007f949de1532d sp 00007fff120721b0 error 4 in libdovecot-storage.so.0.0.0[7f949dde9000+d1000] # dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-71.29.1.el6.x86_64 OS: Scientific Linux 6.0 (Red Hat Enterprise Linux 6.0) Filesystem: ext4 I think this is a bug. Any ideas? Best regards, Morten From alietsantiesteban at gmail.com Sat Jun 11 07:24:18 2011 From: alietsantiesteban at gmail.com (Aliet Santiesteban Sifontes) Date: Sat, 11 Jun 2011 00:24:18 -0400 Subject: [Dovecot] mmap in GFS2 on rhel 6.1 Message-ID: Hello list, we continue our tests using Dovecot on a RHEL 6.1 Cluster Backend with GFS2, also we are using dovecot as a Director for user node persistence, everything was ok until we started stress testing the solution with imaptest, we had many deadlocks, cluster filesystems corruptions and hangs, specially in index filesystem, we have configured the backend as if they were on a NFS like setup but this seems not to work at least on GFS2 on rhel 6.1. We have a two node cluster sharing two GFS2 filesystem - Index GFS2 filesystem to store users indexes - Mailbox data on a GFS2 filesystem The specific configs for NFS or cluster filesystem we used: mmap_disable = yes mail_fsync = always mail_nfs_storage = yes mail_nfs_index = yes fsync_disable=no lock_method = fcntl mail location : mail_location = mdbox:/var/vmail/%d/%3n/%n/mdbox:INDEX=/var/indexes/%d/%3n/%n But this seems not to work for GFS2 even doing user node persistence, maillog is plagged of errors and GFS2 hangs on stress testing with imaptest, many corrupted index for example, transaction logs etc, at this point we have many questions, first mmap... In Redhat GFS2 docs we read: Gold rules for performance: An inode is used in a read only fashion across all nodes An inode is written or modified from a single node only. We have succesfull archived this using dovecot director Now, for mmap rh says: ... If you mmap() a file on GFS2 with a read/write mapping, but only read from it, this only counts as a read. On GFS though, it counts as a write, so GFS2 is much more scalable with mmap() I/O... But in our config we are using mmap_disable=yes, do we have to use mmap_disable=no with GFS2??? Also, how dovecot manage the cache flush on GFS2 filesystem??? Why, if we are doing user node persistence, dovecot indexes gets corrupted??? What lock method do we have to use?? How fsync should be used?? We know we have many questions, but this is really a very complex stuff and we are going to appreciate any help you can give us. Thank you all for a great work, specially Timo... best regards From stan at hardwarefreak.com Sat Jun 11 12:13:03 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Sat, 11 Jun 2011 04:13:03 -0500 Subject: [Dovecot] mmap in GFS2 on rhel 6.1 In-Reply-To: References: Message-ID: <4DF3319F.2020300@hardwarefreak.com> On 6/10/2011 11:24 PM, Aliet Santiesteban Sifontes wrote: > Hello list, we continue our tests using Dovecot on a RHEL 6.1 Cluster > Backend with GFS2, also we are using dovecot as a Director for user node > persistence, everything was ok until we started stress testing the solution > with imaptest, we had many deadlocks, cluster filesystems corruptions and > hangs, specially in index filesystem, we have configured the backend as if > they were on a NFS like setup but this seems not to work at least on GFS2 on > rhel 6.1. Actual _filesystem_ corruption is typically unrelated to user space applications. You should be looking at a lower level for the cause, i.e. kernel, device driver, hardware, etc. Please post details of your shared storage hardware environment, including HBAs, SAN array brand/type, if you're using GFS2 over DRBD, etc. > We have a two node cluster sharing two GFS2 filesystem > - Index GFS2 filesystem to store users indexes > - Mailbox data on a GFS2 filesystem Experience of many users has shown that neither popular cluster filesystems such as GFS2/OCFS, nor NFS, handle high metadata/IOPS workloads very well, especially those that make heavy use of locking. > The specific configs for NFS or cluster filesystem we used: > > mmap_disable = yes > mail_fsync = always > mail_nfs_storage = yes > mail_nfs_index = yes > fsync_disable=no > lock_method = fcntl > > mail location : > > mail_location = > mdbox:/var/vmail/%d/%3n/%n/mdbox:INDEX=/var/indexes/%d/%3n/%n For a Dovecot cluster using shared storage, you are probably better off using a mailbox format for which indexes are independent of mailbox files and are automatically [re]generated if absent. Try using mbox or maildir and store indexes on local node disk/SSD instead of on the cluster filesystem. Only store the mailboxes on the cluster filesystem. If for any reason a user login gets bumped to a node lacking the index files they're automatically rebuilt. Since dbox indexes aren't automatically generated if missing you can't do what I describe above with dbox storage. Given the limitations of cluster filesystem (and NFS) metadata IOPS and locking, you'll likely achieve best performance and stability using local disk index files and mbox format mailboxes on GFS2. Maildir format works in this setup as well, but the metadata load on the cluster filesystem is much higher, and thus peak performance will typically be lower. -- Stan From dhaval at patel.sh Sat Jun 11 19:53:14 2011 From: dhaval at patel.sh (Dhaval Patel) Date: Sat, 11 Jun 2011 12:53:14 -0400 Subject: [Dovecot] postfix dovecot spamassassin question Message-ID: I have an old server with postfix -> maildrop -> spamassassin -> courier setup. I am installing a new server and would like to use dovecot instead of courier. Currently I have postfix -> dovecot lda -> dovecot setup and emails are delivered as expected. The problem is that I do not know how to get spamassassin integrated into the mix since I am using the dovecot lda rather than maildrop. I would rather keep things as simple as possible and not use maildrop + sendmail just to use spamassasin but will if I have to. So my question to the list is, how do you recommend me doing this? Are there any documentation, howtos or tutorials which can help me configure this? Below is the output of dovecot -n Thanks, Dhaval ------------dovecot -n--------------- # 1.2.15: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-686-bigmem i686 Debian 6.0.1 xfs log_timestamp: %Y-%m-%d %H:%M:%S ssl_cert_file: /etc/ssl/certs/secure.consoe.com.pem ssl_key_file: /etc/ssl/certs/secure.consoe.com.key disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable: /usr/lib/dovecot/imap-login mail_privileged_group: mail mail_location: maildir:/home/vmail/%u mbox_write_locks: fcntl dotlock namespace: type: private separator: . prefix: INBOX. inbox: yes list: yes subscriptions: yes lda: postmaster_address: postmaster at patel.sh auth_socket_path: /var/run/dovecot/auth-master log_path: /home/vmail/dovecot-deliver.log mail_plugins: sieve global_script_path: /home/vmail/globalsieverc auth default: mechanisms: plain login passdb: driver: sql args: /etc/dovecot/dovecot-sql.conf userdb: driver: sql args: /etc/dovecot/dovecot-sql.conf socket: type: listen client: path: /var/run/dovecot/auth-client mode: 432 master: path: /var/run/dovecot/auth-master mode: 384 user: vmail group: vmail From info at simonecaruso.com Sat Jun 11 20:54:16 2011 From: info at simonecaruso.com (Simone Caruso) Date: Sat, 11 Jun 2011 19:54:16 +0200 Subject: [Dovecot] postfix dovecot spamassassin question In-Reply-To: References: Message-ID: <4DF3ABC8.30308@simonecaruso.com> On 11/06/2011 18:53, Dhaval Patel wrote: > I have an old server with postfix -> maildrop -> spamassassin -> courier setup. > I am installing a new server and would like to use dovecot instead of courier. > Currently I have postfix -> dovecot lda -> dovecot setup and emails are > delivered as expected. The problem is that I do not know how to get spamassassin > integrated into the mix since I am using the dovecot lda rather than maildrop. The simplest, and maybe fastest, is to use amavis-new as postfix contentfilter. -- Simone Caruso IT Consultant +39 349 65 90 805 p.iva: 03045250838 From km at mathcs.emory.edu Sat Jun 11 22:13:45 2011 From: km at mathcs.emory.edu (Ken Mandelberg) Date: Sat, 11 Jun 2011 15:13:45 -0400 Subject: [Dovecot] Loading Message Delays Message-ID: <4DF3BE69.6070704@mathcs.emory.edu> I sometimes see "loading message" or "opening Inbox" delays against both 1.X and 2.X Dovecot servers from thunderbird. Is there some way to pin down whats causing them? From noah-list at enabled.com Sun Jun 12 07:34:57 2011 From: noah-list at enabled.com (Noah Garrett Wallach) Date: Sat, 11 Jun 2011 21:34:57 -0700 Subject: [Dovecot] thunderbird not receiving new incoming mail: Timeout while waiting for lock for transaction log file Message-ID: <4DF441F1.9000804@enabled.com> Hi there, I am running dovecot 1.0.10 and thunderbird 3.1.10 for OSX 10.6.7 and I am finding that new imap mail is not coming into my INBOX folder on thunderbird. there is an error message "Timeout while waiting for lock for transaction log file" in the syslog here is my INBOX .imap dir ~/mail/.imap/INBOX$ ls -l total 75100K -rw------- 1 blah blah 1462024 Jun 11 20:17 dovecot.index -rw------- 1 blah blah 75153408 Jun 11 20:17 dovecot.index.cache -rw------- 1 blah blah 1464 Jun 11 20:17 dovecot.index.log -rw------- 1 blah blah 195812 Jun 11 17:23 dovecot.index.log.2 what is the best way to troubleshoot this problem? what else can I look at? Cheers, Noah From dhaval at patel.sh Sun Jun 12 08:50:43 2011 From: dhaval at patel.sh (Dhaval Patel) Date: Sun, 12 Jun 2011 01:50:43 -0400 Subject: [Dovecot] postfix dovecot spamassassin question Message-ID: So I setup amavis-new and configured postfix/spamassassin/amavis. Mail is still delivered properly but I do not see the spamassassin info in the headers of the email. I configured amavis-new and set "sa_tag_level_deflt" to -999 so that it would always show up but no luck. I updated the spamassassin config and enabled it. I also tested spamassassin manually running "spamassassin -t < someemail" and that returns the email with the X-Spam in the headers. If this is not the correct place to ask, I apologize. Please direct me where I can find the answer. Thanks, Dhaval Simone Caruso wrote: >On 11/06/2011 18:53, Dhaval Patel wrote: >> I have an old server with postfix -> maildrop -> spamassassin -> courier setup. >> I am installing a new server and would like to use dovecot instead of courier. >> Currently I have postfix -> dovecot lda -> dovecot setup and emails are >> delivered as expected. The problem is that I do not know how to get spamassassin >> integrated into the mix since I am using the dovecot lda rather than maildrop. > >The simplest, and maybe fastest, is to use amavis-new as postfix contentfilter. > > >-- >Simone Caruso >IT Consultant >+39 349 65 90 805 >p.iva: 03045250838 From stan at hardwarefreak.com Sun Jun 12 10:02:19 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Sun, 12 Jun 2011 02:02:19 -0500 Subject: [Dovecot] thunderbird not receiving new incoming mail: Timeout while waiting for lock for transaction log file In-Reply-To: <4DF441F1.9000804@enabled.com> References: <4DF441F1.9000804@enabled.com> Message-ID: <4DF4647B.4030208@hardwarefreak.com> On 6/11/2011 11:34 PM, Noah Garrett Wallach wrote: > Hi there, > > I am running dovecot 1.0.10 and thunderbird 3.1.10 for OSX 10.6.7 > and I am finding that new imap mail is not coming into my INBOX folder > on thunderbird. > > there is an error message "Timeout while waiting for lock for > transaction log file" in the syslog > > here is my INBOX .imap dir > > ~/mail/.imap/INBOX$ ls -l > total 75100K > -rw------- 1 blah blah 1462024 Jun 11 20:17 dovecot.index > -rw------- 1 blah blah 75153408 Jun 11 20:17 dovecot.index.cache > -rw------- 1 blah blah 1464 Jun 11 20:17 dovecot.index.log > -rw------- 1 blah blah 195812 Jun 11 17:23 dovecot.index.log.2 > > what is the best way to troubleshoot this problem? As always, use deductive reasoning. If it was working fine, and suddenly stopped working, something obviously changed. Find what has changed. What does your MTA tell you about these messages that are not hitting the inbox? Is your MTA still delivering mail to Dovecot? BTW, always post full error lines from your logs, not the partial junk you inserted above. We need to see the daemon and time stamp. That lock timeout could be generated by any number of deamons. For troubleshooting mail issues you'd typically look in your mail log, not in syslog. -- Stan From devurandom at gmx.net Sun Jun 12 16:55:57 2011 From: devurandom at gmx.net (Dennis Schridde) Date: Sun, 12 Jun 2011 15:55:57 +0200 Subject: [Dovecot] dovecot-metadata-8 released Message-ID: <201106121556.01830.devurandom@gmx.net> Hello everyone! I just released dovecot-metadata-8, which is an implementation of RFC 5464 (IMAP METADATA), allowing to add comments/annotations/metadata to folders of an email account. The major feature is that it works with Akonadi, or more specifically the Kolab backend thereof, while being dovecot-2.0 compatible. The module consists of 3 plugins, two IMAP frontends and one backend: * "imap-annotatemore" is a partial implementation of draft-daboo-imap- annotatemore-08 (early predecessor to RFC 5464), based on work by Bernhard Herzog (Intevation GmbH). The sole intention is to support Kolab, not to strictly implement the draft. * "imap-metadata" is a complete implementation of RFC 5464. Kolab clients do not (yet) use these commands. * "metadata" is the common backend imap-metadata and metadata were entirely written from scratch, while imap- annotatemore is an adaption of the work by Bernhard Herzog to the new backend. You can download the code via Hg [1] or as exported tarball [2] from the Hg webinterface. Please note that the README is outdated, as are some other files. The build process is pretty much straightforward, just make sure you have the dovecot headers available on your system: ./autogen.sh ./configure --with-dovecot=/path/to/dovecot make make install Next you need to adjust your dovecot config. The following works for me: == dovecot.conf == dict { metadata = file:/var/lib/dovecot/shared-metadata } == 10-mail.conf == mail_plugins = ... metadata == 20-imap.conf == protocol imap { mail_plugins = $mail_plugins ... imap_metadata imap_annotatemore } == 90-plugin.conf == plugin { metadata_dict = proxy::metadata } To allow a Kolab client to find (e.g.) the addressbook folder, issue this IMAP command after login: SETMETADATA "path/to/folder" ("/shared/vendor/kolab/folder-type" "contact") If you find any bugs (crashes, incompatibilities with RFC 5464, etc), please write me a mail. Be advised that this code is still experimental and might crash your server! @Timo: Please have a look at the src/*-ext.[ch] files, they contain extensions to the dovecot libraries and might be useful for others, too. Kind regards, Dennis Schridde [1] http://hg.dovecot.org/dovecot-metadata-plugin [2] http://hg.dovecot.org/dovecot-metadata-plugin/archive/bdf2445e101f.tar.gz -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part. URL: From patrickdk at patrickdk.com Sun Jun 12 17:24:29 2011 From: patrickdk at patrickdk.com (Patrick Domack) Date: Sun, 12 Jun 2011 10:24:29 -0400 Subject: [Dovecot] postfix dovecot spamassassin question In-Reply-To: References: Message-ID: <20110612102429.Horde.CnKNCJLnE6FN9MwdZdzhF3A@mail.patrickdk.com> amavisd-new mailling lists :) amavis only adds the spamass headers to LOCAL domains, so you need to define your domains as local. Quoting Dhaval Patel : > So I setup amavis-new and configured postfix/spamassassin/amavis. > Mail is still > delivered properly but I do not see the spamassassin info in the > headers of the > email. > > I configured amavis-new and set "sa_tag_level_deflt" to -999 so that it would > always show up but no luck. > I updated the spamassassin config and enabled it. > I also tested spamassassin manually running "spamassassin -t < someemail" and > that returns the email with the X-Spam in the headers. > > If this is not the correct place to ask, I apologize. Please direct > me where I > can find the answer. > > Thanks, > Dhaval > > > > Simone Caruso wrote: > >> On 11/06/2011 18:53, Dhaval Patel wrote: >>> I have an old server with postfix -> maildrop -> spamassassin -> courier > setup. >>> I am installing a new server and would like to use dovecot instead of > courier. >>> Currently I have postfix -> dovecot lda -> dovecot setup and emails are >>> delivered as expected. The problem is that I do not know how to get > spamassassin >>> integrated into the mix since I am using the dovecot lda rather than > maildrop. >> >> The simplest, and maybe fastest, is to use amavis-new as postfix >> contentfilter. >> >> >> -- >> Simone Caruso >> IT Consultant >> +39 349 65 90 805 >> p.iva: 03045250838 From jessedreynolds at gmail.com Sun Jun 12 17:27:46 2011 From: jessedreynolds at gmail.com (Jesse Reynolds) Date: Sun, 12 Jun 2011 23:57:46 +0930 Subject: [Dovecot] Unable to compile --with-mysql on Solaris Message-ID: Hello I'm hoping someone can give me a pointer as to how to compile Dovecot with MySQL support on Solaris. I am trying to compile dovecot 2.0.13 (also tried 2.0.9) on Solaris (OpenSolaris 2009-06, snv_111b) with the OpenSolaris provided MySQL 5.1.30 under /usr/mysql. The server is a Sun X2100 M2, which has a dual core AMD Opteron processor (amd64). Running "./configure --with-mysql" stops here: ... checking for mysql_config... mysql_config checking for mysql_init in -lmysqlclient... no configure: error: Can't build with MySQL support: libmysqlclient not found the libmysqlclient.so is to be found here: /usr/mysql/5.1/lib/mysql/ or for the amd64 version: /usr/mysql/5.1/lib/amd64/mysql/ And include is at: /usr/mysql/5.1/include/ I have tried various combinations of things in CFLAGS, CPPFLAGS and LDFLAGS, but it doesn't change the configure error above at all. Eg: export CPPFLAGS="-I/usr/mysql/5.1/include/mysql" export CFLAGS="-I/usr/mysql/5.1/include/mysql" export LDFLAGS="-R/usr/mysql/5.1/lib/amd64/mysql -L/usr/mysql/5.1/lib/amd64/mysql" ./configure --prefix=/opt/dovecot --with-ldap --with-mysql Looking at config.log this section seems relevant: configure:22993: checking for mysql_config configure:23009: found /usr/mysql/bin/mysql_config configure:23021: result: mysql_config configure:23055: checking for mysql_init in -lmysqlclient configure:23080: gcc -o conftest -std=gnu99 -I/usr/mysql/5.1/include/mysql -Wall -W -Wmissing-prototypes -Wmissin g-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -I/usr/mysql/5.1/include/mysql -R /usr/mysql/5.1/lib/amd64/mysql -L/usr/mysql/5.1/lib/amd64/mysql conftest.c -lmysqlclient -lnsl -lsocket -lrt -l sendfile -L/opt/SUNWspro/lib -lCrun -lrt -L/usr/mysql/5.1/lib/mysql -R/usr/mysql/5.1/lib/mysql -lmysqlclient -lz -lgen -lsocket -lnsl -lm -lz -lm >&5 ld: fatal: library -lCrun: not found ld: fatal: file processing errors. No output written to conftest collect2: ld returned 1 exit status configure:23080: $? = 1 configure: failed program was: | /* confdefs.h */ ...snip... configure:23089: result: no configure:23198: error: Can't build with MySQL support: libmysqlclient not found Note, I have not installed the Sun C compiler, so am compiling with gcc (/usr/bin/gcc 3.4.3). gmake is at /usr/bin/gmake and sun make is at /usr/bin/make. Perhaps I would more more luck with Sun's C compiler? Thank you Jesse -- Jesse Reynolds Carbon Planet Limited - http://www.carbonplanet.com/ Virtual Artists Pty Ltd - http://www.va.com.au/ From alietsantiesteban at gmail.com Sun Jun 12 20:27:28 2011 From: alietsantiesteban at gmail.com (Aliet Santiesteban Sifontes) Date: Sun, 12 Jun 2011 13:27:28 -0400 Subject: [Dovecot] mmap in GFS2 on rhel 6.1 In-Reply-To: <4DF3319F.2020300@hardwarefreak.com> References: <4DF3319F.2020300@hardwarefreak.com> Message-ID: https://bugzilla.redhat.com/show_bug.cgi?id=712139 Furhter investigating this bug I have tested all kinds of config with dovecot, and all of them gets gfs2 hanged, I have tested this scenario with bare metal hardware cluster, with virtualized cluster guests in vmware esxi 4.1, with a cluster test in vmware workstation and I can reproduce the problem in all the tests, even in different enviroments, we are testing if dovecot can be deployed on a Redhat Cluster of Active-Active Nodes doing user session persistence. This was my last test, I simplify the scenario with a cluster in my own laptop: 1- Used a two node rhel 6.1 cluster, virtualized in VMWare Workstation. 2- Used two shared iscsi devices from a NAS. 3- Used fence_scsi. Cluster.conf 4- Used the iscsi devices for the LVM stuff and created there the GFS2 filesystems. fstab fragment # GFS2 filesystem /dev/vg_indexes/lv_indexes /var/vmail/indexes gfs2 noatime,quota=off,errors=withdraw 0 0 /dev/vg_mailbox/lv_mailbox /var/vmail/mailbox gfs2 noatime,quota=off,errors=withdraw 0 0 5- Dovecot configured with users in ldap, in this case we tested the mbox mailbox format with fnctl and mmap_disable=yes, we have also tested all other mailboxes formats, indexes and mailboxes stored in gfs2 filesystems, here the conf: [root at node0 ~]# dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-131.2.1.el6.x86_64 x86_64 Red Hat Enterprise Linux Server release 6.1 (Santiago) gfs2 auth_default_realm = example.com auth_mechanisms = plain login auth_worker_max_count = 60 disable_plaintext_auth = no listen = * mail_fsync = always mail_gid = vmail mail_location = mbox:/var/vmail/mailbox/%d/%3n/%n:INDEX=/var/vmail/indexes/%d/%3n/%n mail_nfs_index = yes mail_nfs_storage = yes mail_uid = vmail mbox_write_locks = fcntl mmap_disable = yes passdb { args = /etc/dovecot/dovecot-ldap.conf.ext driver = ldap } ssl_cert = ] ? gfs2_lm_withdraw+0x102/0x130 [gfs2] [] ? trunc_dealloc+0xa9/0x130 [gfs2] [] ? gfs2_consist_inode_i+0x5d/0x60 [gfs2] [] ? gfs2_dinode_dealloc+0x64/0x210 [gfs2] [] ? gfs2_delete_inode+0x1ba/0x280 [gfs2] [] ? gfs2_delete_inode+0x8d/0x280 [gfs2] [] ? gfs2_delete_inode+0x0/0x280 [gfs2] [] ? generic_delete_inode+0xde/0x1d0 [] ? delete_work_func+0x0/0x80 [gfs2] [] ? generic_drop_inode+0x65/0x80 [] ? gfs2_drop_inode+0x2e/0x30 [gfs2] [] ? iput+0x62/0x70 [] ? delete_work_func+0x54/0x80 [gfs2] [] ? worker_thread+0x170/0x2a0 [] ? autoremove_wake_function+0x0/0x40 [] ? worker_thread+0x0/0x2a0 [] ? kthread+0x96/0xa0 [] ? child_rip+0xa/0x20 [] ? kthread+0x0/0xa0 [] ? child_rip+0x0/0x20 no_formal_ino = 468 no_addr = 525144 i_disksize = 65536 blocks = 0 i_goal = 525170 i_diskflags = 0x00000000 i_height = 1 i_depth = 0 i_entries = 0 i_eattr = 0 GFS2: fsid=MailCluster:indexes.0: gfs2_delete_inode: -5 I I change to differents mailbox formats, they also hangs, only that messages in the kernel are little differents as the first post. any ideas??? Best regards 2011/6/11 Stan Hoeppner > On 6/10/2011 11:24 PM, Aliet Santiesteban Sifontes wrote: > > Hello list, we continue our tests using Dovecot on a RHEL 6.1 Cluster > > Backend with GFS2, also we are using dovecot as a Director for user node > > persistence, everything was ok until we started stress testing the > solution > > with imaptest, we had many deadlocks, cluster filesystems corruptions and > > hangs, specially in index filesystem, we have configured the backend as > if > > they were on a NFS like setup but this seems not to work at least on GFS2 > on > > rhel 6.1. > > Actual _filesystem_ corruption is typically unrelated to user space > applications. You should be looking at a lower level for the cause, > i.e. kernel, device driver, hardware, etc. Please post details of your > shared storage hardware environment, including HBAs, SAN array > brand/type, if you're using GFS2 over DRBD, etc. > > > We have a two node cluster sharing two GFS2 filesystem > > - Index GFS2 filesystem to store users indexes > > - Mailbox data on a GFS2 filesystem > > Experience of many users has shown that neither popular cluster > filesystems such as GFS2/OCFS, nor NFS, handle high metadata/IOPS > workloads very well, especially those that make heavy use of locking. > > > The specific configs for NFS or cluster filesystem we used: > > > > mmap_disable = yes > > mail_fsync = always > > mail_nfs_storage = yes > > mail_nfs_index = yes > > fsync_disable=no > > lock_method = fcntl > > > > mail location : > > > > mail_location = > > mdbox:/var/vmail/%d/%3n/%n/mdbox:INDEX=/var/indexes/%d/%3n/%n > > For a Dovecot cluster using shared storage, you are probably better off > using a mailbox format for which indexes are independent of mailbox > files and are automatically [re]generated if absent. > > Try using mbox or maildir and store indexes on local node disk/SSD > instead of on the cluster filesystem. Only store the mailboxes on the > cluster filesystem. If for any reason a user login gets bumped to a > node lacking the index files they're automatically rebuilt. > > Since dbox indexes aren't automatically generated if missing you can't > do what I describe above with dbox storage. Given the limitations of > cluster filesystem (and NFS) metadata IOPS and locking, you'll likely > achieve best performance and stability using local disk index files and > mbox format mailboxes on GFS2. Maildir format works in this setup as > well, but the metadata load on the cluster filesystem is much higher, > and thus peak performance will typically be lower. > > -- > Stan > From mcguire at neurotica.com Sun Jun 12 20:36:14 2011 From: mcguire at neurotica.com (Dave McGuire) Date: Sun, 12 Jun 2011 13:36:14 -0400 Subject: [Dovecot] thunderbird not receiving new incoming mail: Timeout while waiting for lock for transaction log file In-Reply-To: <4DF441F1.9000804@enabled.com> References: <4DF441F1.9000804@enabled.com> Message-ID: <4DF4F90E.1030405@neurotica.com> On 6/12/11 12:34 AM, Noah Garrett Wallach wrote: > I am running dovecot 1.0.10 and thunderbird 3.1.10 for OSX 10.6.7 > and I am finding that new imap mail is not coming into my INBOX folder > on thunderbird. > > there is an error message "Timeout while waiting for lock for > transaction log file" in the syslog > > here is my INBOX .imap dir > > ~/mail/.imap/INBOX$ ls -l > total 75100K > -rw------- 1 blah blah 1462024 Jun 11 20:17 dovecot.index > -rw------- 1 blah blah 75153408 Jun 11 20:17 dovecot.index.cache > -rw------- 1 blah blah 1464 Jun 11 20:17 dovecot.index.log > -rw------- 1 blah blah 195812 Jun 11 17:23 dovecot.index.log.2 > > what is the best way to troubleshoot this problem? what else can I look at? Hey there Noah, long time no see! Here, if I'm not mistaken, one imap process is waiting for a lock on dovecot.index.log while another imap process already has it locked. Are your spools on an NFS-mounted filesystem? That dovecot.index.cache file is gigantic; how big is the spool itself? If it's big, and it's in mbox format, and the machine is swamped, that sync could easily take long enough to cause another imap process to time out waiting for the lock. Man, can you imagine how awesome our mail servers would've been if we had Dovecot back in the Digex days in the mid-90s? Oh, to have a time machine.. -Dave -- Dave McGuire Port Charlotte, FL From dhaval at patel.sh Mon Jun 13 05:41:01 2011 From: dhaval at patel.sh (Dhaval Patel) Date: Sun, 12 Jun 2011 22:41:01 -0400 Subject: [Dovecot] Sieve question Message-ID: <4ee5a8236bf0bba77414cbc85a278917@apps.consoe.com> I have successfully setup Postfix -> Dovecot with virtual users and spam filtering with spamassassin. Now the last remaining part is for the user defined rules. Let me describe my environment and what I am trying to achieve. I have Postfix setup to call spamc and deliver to Dovecot according to the master.cf line below. -------------------------------------------------------------- dovecot unix - n n - - pipe flags=DRhu user=vmail:vmail argv=/usr/bin/spamc -u vmail -e /usr/lib/dovecot/deliver -d ${recipient} -------------------------------------------------------------- The emails get checked by Spamassassin and are delivered to the users's mailbox (/home/vmail/username). I use an actual username (dhav) and not email address (dhaval at example.com). Things are working fine with that. >From reading http://wiki.dovecot.org/LDA/Sieve I see that Sieve can do global and user specified filtering. So I am planning to put the following rule into the global script so spammy emails go to the user's INBOX.spam folder. -------------------------------------------------------------- require "fileinto"; if header :contains "X-Spam-Flag" "YES" { fileinto "spam"; } -------------------------------------------------------------- My first question is, where is this global script? Do I configure the "sieve_global_dir = /etc/dovecot/sieve/"? What about he filename? Most users will not need any additional rules. There are some users that do and I am having a difficult time figuring out how it would be setup. My second question is the following. Is there a way in the global script to check if there is a file called /etc/dovecot/sieve/username or /home/vmail/username/personal_sieve_script and include it? I was using maildrop before this and procmail before that so I apologies for sounding stupid if this is not how Sieve scripts work. I am by no means tied the methods I describe above. If anyone knows of a better way to achieve what I am trying to do, I would appreciate if you let me know of it. Thanks, Dhaval From madduck at madduck.net Mon Jun 13 11:02:38 2011 From: madduck at madduck.net (martin f krafft) Date: Mon, 13 Jun 2011 10:02:38 +0200 Subject: [Dovecot] Timeout during APPEND Message-ID: <20110613080238.GA16867@albatross.gern.madduck.net> Dear list, I am running dovecot 1.2.15 on a Debian server. One user reports continuous problems synchronising her mailbox via IMAP (offlineimap, via SSH tunnel or SSL socket). It seems that she has a large, locally-created message, but the uplink bandwidth seems to be not enough to push it before dovecot times out the APPEND command. The error/exception happens inside offlineimap's Python imaplib2.py file: APPEND => no response after 30.0 secs I do not know the IMAP protocol all that well, but it seems to me like this is broken somewhere. Could you please help me figure out the problem? -- martin | http://madduck.net/ | http://two.sentenc.es/ "man sagt nicht 'nichts!', man sagt daf?r 'jenseits' oder 'gott'." - friedrich nietzsche spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1124 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From madduck at madduck.net Mon Jun 13 11:11:38 2011 From: madduck at madduck.net (martin f krafft) Date: Mon, 13 Jun 2011 10:11:38 +0200 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <20110613080238.GA16867@albatross.gern.madduck.net> References: <20110613080238.GA16867@albatross.gern.madduck.net> Message-ID: <20110613081138.GA24136@albatross.gern.madduck.net> also sprach martin f krafft [2011.06.13.1002 +0200]: > One user reports continuous problems synchronising her mailbox via > IMAP (offlineimap, via SSH tunnel or SSL socket). It seems that she > has a large, locally-created message, but the uplink bandwidth seems > to be not enough to push it before dovecot times out the APPEND > command. Upon further inspection, we found that the message *does* get saved remotely. Hence, this seems like an offlineimap problem, timing out because it receives no responses to APPEND (because the transfer takes so long). The transfer actually completes, but offlineimap will have given up by then already. Has anyone else seen this? Can you confirm this behaviour? What should offlineimap be doing differently? Thanks, -- martin | http://madduck.net/ | http://two.sentenc.es/ because light travels faster than sound, some people appear to be intelligent, until you hear them speak. spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1124 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From jessedreynolds at gmail.com Mon Jun 13 13:06:38 2011 From: jessedreynolds at gmail.com (Jesse Reynolds) Date: Mon, 13 Jun 2011 19:36:38 +0930 Subject: [Dovecot] Unable to compile --with-mysql on Solaris In-Reply-To: References: Message-ID: Solved! Probably fairly obvious, the clue is in the config.log here: sendfile -L/opt/SUNWspro/lib -lCrun -lrt -L/usr/mysql/5.1/lib/mysql > -R/usr/mysql/5.1/lib/mysql -lmysqlclient -lz -lgen -lsocket -lnsl -lm -lz > -lm >&5 ld: fatal: library -lCrun: not found As I understand it, the OpenSolaris distribution of MySQL 5.1.30 is compiled with the Sun C Compiler, part of Sun Studio (now known as Oracle Solaris Studio) and it in fact is requiring a library from Sun Studio in order to compile against the MySQL client library. I have now installed Oracle Solaris Studio by downloading the .tar.bz2 version of it, exploding all 1GB of it into /opt, and making the requisite symlink for SUNWspro as follows: cd /opt ln -s SolarisStudio12.2-solaris-x86-tar-ML/solstudio12.2 SUNWspro And now I can configure and build as follows: ./configure --prefix=/opt/dovecot --with-ldap --with-mysql make There is no need to specify any environment variables such as CCFLAGS or what-have-you as mysql_config is already giving the right stuff to ./configure. Ironically, this only builds when using gcc. If I specify CC=cc then I get the same error about libmysqlclient: CC=cc ./configure --prefix=/opt/dovecot --with-ldap --with-mysql ...snip... checking for mysql_init in -lmysqlclient... no configure: error: Can't build with MySQL support: libmysqlclient not found Onwards and upwards. Jesse On 12 June 2011 23:57, Jesse Reynolds wrote: > Hello > > I'm hoping someone can give me a pointer as to how to compile Dovecot with > MySQL support on Solaris. > > I am trying to compile dovecot 2.0.13 (also tried 2.0.9) on Solaris > (OpenSolaris 2009-06, snv_111b) with the OpenSolaris provided MySQL 5.1.30 > under /usr/mysql. The server is a Sun X2100 M2, which has a dual core AMD > Opteron processor (amd64). > > Running "./configure --with-mysql" stops here: > > ... > checking for mysql_config... mysql_config > checking for mysql_init in -lmysqlclient... no > configure: error: Can't build with MySQL support: libmysqlclient not found > > the libmysqlclient.so is to be found here: > > /usr/mysql/5.1/lib/mysql/ > > or for the amd64 version: > > /usr/mysql/5.1/lib/amd64/mysql/ > > And include is at: > > /usr/mysql/5.1/include/ > > I have tried various combinations of things in CFLAGS, CPPFLAGS and > LDFLAGS, but it doesn't change the configure error above at all. Eg: > > export CPPFLAGS="-I/usr/mysql/5.1/include/mysql" > export CFLAGS="-I/usr/mysql/5.1/include/mysql" > export LDFLAGS="-R/usr/mysql/5.1/lib/amd64/mysql > -L/usr/mysql/5.1/lib/amd64/mysql" > ./configure --prefix=/opt/dovecot --with-ldap --with-mysql > > Looking at config.log this section seems relevant: > > configure:22993: checking for mysql_config > configure:23009: found /usr/mysql/bin/mysql_config > configure:23021: result: mysql_config > configure:23055: checking for mysql_init in -lmysqlclient > configure:23080: gcc -o conftest -std=gnu99 -I/usr/mysql/5.1/include/mysql > -Wall -W -Wmissing-prototypes -Wmissin > g-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 > -Wbad-function-cast -I/usr/mysql/5.1/include/mysql -R > /usr/mysql/5.1/lib/amd64/mysql -L/usr/mysql/5.1/lib/amd64/mysql conftest.c > -lmysqlclient -lnsl -lsocket -lrt -l > sendfile -L/opt/SUNWspro/lib -lCrun -lrt -L/usr/mysql/5.1/lib/mysql > -R/usr/mysql/5.1/lib/mysql -lmysqlclient -lz > -lgen -lsocket -lnsl -lm -lz -lm >&5 > ld: fatal: library -lCrun: not found > ld: fatal: file processing errors. No output written to conftest > collect2: ld returned 1 exit status > configure:23080: $? = 1 > configure: failed program was: > | /* confdefs.h */ > ...snip... > configure:23089: result: no > configure:23198: error: Can't build with MySQL support: libmysqlclient not > found > > > Note, I have not installed the Sun C compiler, so am compiling with gcc > (/usr/bin/gcc 3.4.3). gmake is at /usr/bin/gmake and sun make is at > /usr/bin/make. Perhaps I would more more luck with Sun's C compiler? > > Thank you > Jesse > > > -- > > Jesse Reynolds > Carbon Planet Limited - http://www.carbonplanet.com/ > Virtual Artists Pty Ltd - http://www.va.com.au/ > -- Jesse Reynolds Carbon Planet Limited - http://www.carbonplanet.com/ Virtual Artists Pty Ltd - http://www.va.com.au/ From tss at iki.fi Mon Jun 13 15:44:51 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 15:44:51 +0300 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <20110613081138.GA24136@albatross.gern.madduck.net> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> Message-ID: <1307969091.10421.810.camel@hurina> On Mon, 2011-06-13 at 10:11 +0200, martin f krafft wrote: > also sprach martin f krafft [2011.06.13.1002 +0200]: > > One user reports continuous problems synchronising her mailbox via > > IMAP (offlineimap, via SSH tunnel or SSL socket). It seems that she > > has a large, locally-created message, but the uplink bandwidth seems > > to be not enough to push it before dovecot times out the APPEND > > command. > > Upon further inspection, we found that the message *does* get saved > remotely. Hence, this seems like an offlineimap problem, timing out > because it receives no responses to APPEND (because the transfer > takes so long). The transfer actually completes, but offlineimap > will have given up by then already. > > Has anyone else seen this? > > Can you confirm this behaviour? > > What should offlineimap be doing differently? Timing out after only 30 seconds seems a bit aggressive to me, especially if you're uploading a large message over a slow network connection. Isn't it configurable? From tss at iki.fi Mon Jun 13 15:54:58 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 15:54:58 +0300 Subject: [Dovecot] mmap in GFS2 on rhel 6.1 In-Reply-To: References: Message-ID: <1307969698.10421.815.camel@hurina> On Sat, 2011-06-11 at 00:24 -0400, Aliet Santiesteban Sifontes wrote: > Hello list, we continue our tests using Dovecot on a RHEL 6.1 Cluster > Backend with GFS2, also we are using dovecot as a Director for user node > persistence, everything was ok until we started stress testing the solution > with imaptest, we had many deadlocks, cluster filesystems corruptions and > hangs, specially in index filesystem, we have configured the backend as if > they were on a NFS like setup but this seems not to work at least on GFS2 on > rhel 6.1. Since you're using director, you shouldn't really need any special Dovecot config. > The specific configs for NFS or cluster filesystem we used: > > mmap_disable = yes > mail_fsync = always > mail_nfs_storage = yes > mail_nfs_index = yes > fsync_disable=no > lock_method = fcntl fsync_disable is a deprecated setting, which was replaced by mail_fsync. The mail_nfs_* settings will only slow things down, you should keep them as "no". > ... If you mmap() a file on GFS2 with a read/write mapping, but only read > from it, this only counts as a > read. On GFS though, it counts as a write, so GFS2 is much more scalable > with mmap() I/O... > > But in our config we are using mmap_disable=yes, do we have to use > mmap_disable=no with GFS2??? There are more potential bugs with mmap_disable=no, since it uses both read()/write() and mmap(), while with mmap_disable=yes it only uses read()/write(). > Also, how dovecot manage the cache flush on GFS2 filesystem??? There shouldn't be any need for that with directors. > Why, if we are doing user node persistence, dovecot indexes gets > corrupted??? Looks to me like GFS is still pretty buggy. One thing you could test is if running imaptest directly against one backend server for one user triggers this. If not, run simultaneously another imaptest against another user on another server. Maybe then? The point being that try to find the simplest test that can break GFS, and once you have that try to get Redhat people to fix it. From jsiegle at psu.edu Mon Jun 13 15:59:29 2011 From: jsiegle at psu.edu (Jonathan SIegle) Date: Mon, 13 Jun 2011 08:59:29 -0400 Subject: [Dovecot] [dovecot] Getting duplicates when using snarf plugin with mbox backend Message-ID: <4DF609B1.8020309@psu.edu> Running dovecot version 2.0.11. To reproduce, open two imap sessions and issue a check command from each at the same time with new mail in the queue. 0 login testuser testpw 1 select inbox -- Deliver mail -- 2 check Thanks, Jonathan -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6002 bytes Desc: S/MIME Cryptographic Signature URL: From tss at iki.fi Mon Jun 13 16:00:20 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:00:20 +0300 Subject: [Dovecot] Loading Message Delays In-Reply-To: <4DF3BE69.6070704@mathcs.emory.edu> References: <4DF3BE69.6070704@mathcs.emory.edu> Message-ID: <1307970020.10421.817.camel@hurina> On Sat, 2011-06-11 at 15:13 -0400, Ken Mandelberg wrote: > I sometimes see "loading message" or "opening Inbox" delays against both > 1.X and 2.X Dovecot servers from thunderbird. Is there some way to pin > down whats causing them? How long are the delays? There's not currently any easier way than straceing the process. Or could it be simply that the server is busy doing disk I/O? From tss at iki.fi Mon Jun 13 16:02:57 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:02:57 +0300 Subject: [Dovecot] segfault in dovecot 2.0.9 In-Reply-To: References: Message-ID: <1307970177.10421.819.camel@hurina> On Fri, 2011-06-10 at 19:52 +0200, Morten P.D. Stevens wrote: > Jun 9 00:12:34 mail dovecot: master: Error: service(imap): child 8987 > killed with signal 11 (core dumps disabled) There's really no way to know why this happens without a gdb backtrace. See http://dovecot.org/bugreport.html > # dovecot -n > # 2.0.9: /etc/dovecot/dovecot.conf It's also possible that it has already been fixed in newer versions. From tss at iki.fi Mon Jun 13 16:04:23 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:04:23 +0300 Subject: [Dovecot] Dovecot 1.2 + Sieve-0.1.19 not working please help In-Reply-To: References: Message-ID: <1307970263.10421.821.camel@hurina> On Fri, 2011-06-10 at 18:15 +0400, Denis Iskandarov wrote: > i have installed dovecot from rpm found on rpm.pbone.net .. > Now i'm trying to install Sieve for Dovecot 1.2 to make it redirect > spam in proper folders but getting next error: > > ./configure --with-dovecot=/usr/lib/dovecot/ You can't really install Dovecot from a binary and Sieve from sources, unless there is also some kind of a "dovecot-devel" binary package. Install both from binaries or both from sources. From tss at iki.fi Mon Jun 13 16:09:27 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:09:27 +0300 Subject: [Dovecot] Explain about (mail_get_first_header(mail, "From", &header) In-Reply-To: References: Message-ID: <1307970567.10421.824.camel@hurina> On Fri, 2011-06-10 at 09:19 -0300, Alex Baule wrote: > Hi Timo... > > Inside my plugin, i use the (mail_get_first_header(mail, "From", > &header) function, to get the email From to put in some Blacklist. > > Looking in the header under this mail, we have 2 "From" fields. Do you mean these? >From dma_3783 at envios.socomdescontos.com.br Tue Jun 07 15:43:04 2011 From: "CompraFacil.com.br" > Using the function above, i get the Second "From", but my MTA (exim) > look in to The First From, in the First Line, in that way, my > blacklist don't work, because the sender to be blocked is different > from > > the From looked by dovecot. > > There is a way to get the "From" from First line ? The first line isn't a From: header. It's the "envelope sender". That line typically exists only with mbox format, not with other mailbox formats.. If you deliver a mail via dovecot-lda it removes this From line if it sees it. Typically you'd get this info from Return-Path: header. From madduck at madduck.net Mon Jun 13 16:11:09 2011 From: madduck at madduck.net (martin f krafft) Date: Mon, 13 Jun 2011 15:11:09 +0200 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <1307969091.10421.810.camel@hurina> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> Message-ID: <20110613131109.GA8033@albatross.gern.madduck.net> also sprach Timo Sirainen [2011.06.13.1444 +0200]: > Timing out after only 30 seconds seems a bit aggressive to me, > especially if you're uploading a large message over a slow network > connection. Isn't it configurable? Not that I can see, but I will check out the code later too. The question is whether IMAP really limits us to using something silly as timeouts. Couldn't the server keep sending BUSY messages, or the like? How could the client distinguish between an upload progressing, and the connection having stalled. Does it look at the flow rate of data, or how does IMAP cater for this requirement? -- martin | http://madduck.net/ | http://two.sentenc.es/ an egg has the shortest sex-life of all: if gets laid once; it gets eaten once. it also has to come in a box with 11 others, and the only person who will sit on its face is its mother. spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1120 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From tss at iki.fi Mon Jun 13 16:11:50 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:11:50 +0300 Subject: [Dovecot] dovecot-managesieve In-Reply-To: <4DF20B07.5000209@fhv.at> References: <4DF20B07.5000209@fhv.at> Message-ID: <1307970710.10421.826.camel@hurina> On Fri, 2011-06-10 at 14:16 +0200, Richard Gliebe wrote: > Recently I updated dovecot-1.0.7-7.el5 to dovecot-1.1.20-1_98.el5 on our > CentOS release 5.6 (Final) box via "yum update" .. > After it, I installed dovecot-managesieve-0.11.12-0_5.1.el5 via yum install. I'm not sure about those versions, but: > dovecot: Jun 10 08:50:14 Info: dovecot v1.1.20 starting up (core dumps > disabled) > dovecot: Jun 10 08:50:16 Error: login: Login request missing a file > descriptor > dovecot: Jun 10 08:50:16 Error: Temporary failure in creating login > processes, slowing down for now Looks to me like the managesieve version isn't compatible with this Dovecot version. I guess the earlier managesieve binaries didn't give a better error message about mismatching versions. From tss at iki.fi Mon Jun 13 16:22:50 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:22:50 +0300 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> Message-ID: <1307971370.10421.833.camel@hurina> On Fri, 2011-06-10 at 11:22 +0200, J?rgen Obermann wrote: > Hello, > > is it possible to limit the number of pop3 (or imap) login attempts > from one IP with dovecot to stop attackers? We recently had an attack > from one IP-address lasting 50 minutes that tried 50000 pop3-logins > with guessed users and passwords. I know about Fail2Ban but really > would prefer an easy to configure solution inside of dovecot. Dovecot > has this anvil daemon, can it be used for that purpose? > > We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of > the configuration looking like that: With v2.0 it was already limiting. It increased each login failure delay to 15 seconds before the failure was reported. Although maybe something wasn't working correctly, because 50k hits is more than I think should have been possible. Assuming you have default_process_limit=100 (default), there should have been a maximum of 20k attempts (100 processes / 15 seconds * 60*50 seconds). Hmm. Maybe instead of simply increasing the failure delay, the IP could be disconnected immediately? From tss at iki.fi Mon Jun 13 16:24:21 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:24:21 +0300 Subject: [Dovecot] Dovecot sieve redirect: failed to redirect message to user@domain.com In-Reply-To: <1307650834.16862.23.camel@thiagohenrique06> References: <1307650834.16862.23.camel@thiagohenrique06> Message-ID: <1307971461.10421.834.camel@hurina> On Thu, 2011-06-09 at 17:20 -0300, Thiago Henrique wrote: > > Jun 9 18:49:37 box7 dovecot: lmtp(10734, user at server.com): Fatal: > execv(/usr/sbin/sendmail) failed: Permission denied SELinux maybe preventing this? An alternative would be to use the new submission_host parameter. From d.iskandarov at gmail.com Mon Jun 13 16:24:36 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 17:24:36 +0400 Subject: [Dovecot] Dovecot 1.2 + Sieve-0.1.19 not working please help In-Reply-To: <1307970263.10421.821.camel@hurina> References: <1307970263.10421.821.camel@hurina> Message-ID: > You can't really install Dovecot from a binary and Sieve from sources, > unless there is also some kind of a "dovecot-devel" binary package. > Install both from binaries or both from sources. thanks and sorry. Sorry for that i forgot to update list, coz i found solution. I removed dovecot 1.2 and installed dovecot 2 rpms provided in download section on website. In this case i have Dovecot2 installed from rpms (with devel) + sieve installed from source ) no problems everything seems to be working (dovecot service starting without errors) not yet configured my spamfilter for sieve redirect spam messages to spam folder. Thanks anyway. From tss at iki.fi Mon Jun 13 16:28:14 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:28:14 +0300 Subject: [Dovecot] Gmail like virtual mailboxes In-Reply-To: References: Message-ID: <1307971694.10421.838.camel@hurina> On Fri, 2011-06-10 at 08:57 +0200, Aleve Sicofante wrote: > I'm new to this list so let me introduce myself: I'm a computer > literate user (I've done some C programming long ago and can run a > Linux system and do some light admin), I've never installed a mail > server before and I'm in the process of migrating my family and my > small business from Gmail (Google Apps) to a virtual server mainly for > privacy reasons. I'm in love with Gmail's label system and I just > plain hate traditional folders. I use hierarchical labels (as if they > were folders but with a message belonging to many at the same time) > and that MUST be preserved in the migration. I've looked at Courier's > IMAP keywords implementation and it looks good, but everyone on the > internet is recommending Dovecot, so here I am. I've thought about making this easy some day, but it's a lot of work. > I've tried hard to find information about using unlimited hierarchical > labels, virtual mailboxes or any other way of mimicing Gmail's > functionality with Dovecot, but I'm lost. > > First of all: can it be done? Not easily. You could create one virtual Dovecot folder for each IMAP keyword, but the client side would be problematic. You'd need to have some way of setting the keywords, and just about no clients support that. I guess another way of setting keywords could be by using the regular "copy message" feature of clients, where instead of actually copying it would just set a keyword. Another problem is that keywords are a very restricted subset of ASCII. There have been talk in imap-protocol mailing list about expanding this a few weeks ago. From tss at iki.fi Mon Jun 13 16:31:49 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:31:49 +0300 Subject: [Dovecot] auth_cache question In-Reply-To: <4DF1D0F9.4040208@schetterer.org> References: <4DF1D0F9.4040208@schetterer.org> Message-ID: <1307971909.10421.840.camel@hurina> On Fri, 2011-06-10 at 10:08 +0200, Robert Schetterer wrote: > Hi , just to make clear > short question does auth_cache... help with downing sql lookups > http://wiki2.dovecot.org/Authentication/Caching Sure, that's what it was built for. > isnt clear to me for sql to me > if yes > are there real world recommanded settings > lets say for a 5000 users server and where password changes should be > noticed asap If you want to be absolutely sure that password changes are noticed immediately, disable negative caching. From tss at iki.fi Mon Jun 13 16:40:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:40:08 +0300 Subject: [Dovecot] Converting CLIENT_MAIL_DATA_MAX_INMEMORY_SIZE to a configurable? In-Reply-To: <4DF11750.40006@fsn.hu> References: <4DF11750.40006@fsn.hu> Message-ID: <1307972408.10421.847.camel@hurina> On Thu, 2011-06-09 at 20:56 +0200, Attila Nagy wrote: > Hi, > > Currently Dovecot's LMTPd writes incoming emails to mail_temp_dir if > it's bigger than 128k. But I would like to spare those unnecessary > operations (creating a file, deleting it, writing into it, reading from > it, checking whether there is free space and if not, rejecting > (temporarily) the message). Memory is cheap, disk IO is not. :) > And BTW, on a lot of systems, /tmp is a memory file system already, so > there is absolute no need for this. If there's not enough disk space, nowadays the message is read fully into memory instead of tempfailing. Also are you sure that writing to the file actually produces disk I/O? Even if /tmp isn't a memory filesystem, I think there's a good chance that the file will be gone before any disk writes have a chance to start. Can you see some measurable disk I/O change by changing this value? From tss at iki.fi Mon Jun 13 16:42:02 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:42:02 +0300 Subject: [Dovecot] dovecot auth server problem PAM handshake imap-login In-Reply-To: References: Message-ID: <1307972522.10421.848.camel@hurina> On Thu, 2011-06-09 at 12:55 +0000, emc wrote: > Jun 9 14:49:46 vps dovecot: pop3-login: Can't connect to auth server at > default: Resource temporarily unavailable dovecot-auth process is hanging for some reason. Do you have any error messages from it in the logs? From d.iskandarov at gmail.com Mon Jun 13 16:42:52 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 17:42:52 +0400 Subject: [Dovecot] SSL comunication problems with client side. Message-ID: I can get messages without SSL with no problems. but i need to setup server accept only SSL secured connections. I think my configuration is very proper, but cant find "obvious" problem. Postfix 2.3.3 + dovecot 2.0.13-1_129.el5 + PostfixAdmin 2.3.3 I made own CA. configured postfix and dovecot with same cert key ca. Same public cert i gave for client just converted it to PKCS#12. I cant undestand valid and invalid certs strings in long, they look same. You can check logs and config bellow. Also some other questions regarding SSL: 1. How to make client MUA (thunderbird) automatically retrieve certificate ? My thunderbird cant do it by itself so i'm importing mail cert by myself. 2. If i want to setup Roundcube/Squirrelmail webmail clients with TLS support (https) i have to provide them with same certificates as dovecot and postfix have. Or in this case i can use whatever certificate dedicated for with "virtualhost"? dovecot-deliver.log: Jun 13 13:26:42 imap-login: Info: Invalid certificate: unable to get certificate CRL: /C=GE/ST=Tbilisi/O=Caucasus Digital Network/OU=Mail Server/CN=mx.office.dev/emailAddress=hostmaster at office.dev Jun 13 13:26:42 imap-login: Info: Invalid certificate: unable to get certificate CRL: /C=GE/ST=Tbilisi/L=Tbilisi/O=Caucasus Digital Network/OU=Caucasus Digital Network/CN=Caucasus Digital Network/emailAddress=hostmaster at office.dev Jun 13 13:26:42 imap-login: Info: Valid certificate: /C=GE/ST=Tbilisi/L=Tbilisi/O=Caucasus Digital Network/OU=Caucasus Digital Network/CN=Caucasus Digital Network/emailAddress=hostmaster at office.dev Jun 13 13:26:42 imap-login: Info: Valid certificate: /C=GE/ST=Tbilisi/O=Caucasus Digital Network/OU=Mail Server/CN=mx.office.dev/emailAddress=hostmaster at office.dev Jun 13 13:26:42 auth: Info: PLAIN(?,192.168.0.11): Client didn't present valid SSL certificate Jun 13 13:26:42 auth: Info: LOGIN(?,192.168.0.11): Client didn't present valid SSL certificate Jun 13 13:26:42 auth: Info: PLAIN(?,192.168.0.11): Client didn't present valid SSL certificate Jun 13 13:26:42 imap-login: Info: Disconnected (client sent an invalid cert): method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, TLS maillog. Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x10, ret=1: before/accept initialization [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: before/accept initialization [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate request A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client certificate A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read certificate verify A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x20, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL alert: where=0x4004, ret=256: warning close notify [192.168.0.11] Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL alert: where=0x4008, ret=256: warning close notify [192.168.0.11] # doveconf -n # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.18-238.9.1.el5 i686 CentOS release 5.6 (Final) ext3 auth_mechanisms = plain login auth_socket_path = /var/run/dovecot/auth-userdb auth_ssl_require_client_cert = yes auth_verbose = yes base_dir = /var/run/dovecot/ debug_log_path = /var/log/dovecot-deliver.log dict { expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf.ext quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext } first_valid_gid = 12 first_valid_uid = 1001 hostname = mx.office.dev info_log_path = /var/log/dovecot-deliver.log last_valid_gid = 12 last_valid_uid = 1001 listen = * mail_debug = yes mail_gid = 12 mail_location = maildir:/home/vmail/%d/%u mail_plugins = quota mail_privileged_group = mail mail_uid = 1001 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date mbox_write_locks = fcntl passdb { args = /etc/dovecot/conf.d/sql/sql.conf driver = sql } plugin { autocreate = Trash autocreate2 = Spam autosubscribe = Trash autosubscribe2 = Spam } postmaster_address = postmaster at office.dev service auth { unix_listener /var/spool/postfix/private/auth { group = mail mode = 0660 user = postfix } unix_listener auth-userdb { group = mail mode = 0660 user = vmail } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } ssl_ca = References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> Message-ID: On Mon, 13 Jun 2011, Timo Sirainen wrote: > With v2.0 it was already limiting. It increased each login failure delay > to 15 seconds before the failure was reported. Although maybe something > wasn't working correctly, because 50k hits is more than I think should > have been possible. Assuming you have default_process_limit=100 > (default), there should have been a maximum of 20k attempts (100 > processes / 15 seconds * 60*50 seconds). I've also seen the reported type of dictionary attacks. Login failure delay doesn't really help much for those... they just open numerous new connections and only try 1 username/password on each connection. On one server, that got me loads of messages like these in my logs: Feb 13 00:40:46 poseidon kernel: TCP: drop open request from 64.73.242.138/1536 and Feb 13 00:44:07 poseidon kernel: NET: 220 messages suppressed. After being firewalled, it kept hammering on the pop3 port for 90 more seconds, after which it probably found another door to hammer. Although I wouldn't really mind if dovecot can be setup to handle this "gracefully" but I'd say this is a more generic problem that is better solved at network level than within dovecot. (So it can be used for other services as well.) -- Maarten From tss at iki.fi Mon Jun 13 16:46:29 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:46:29 +0300 Subject: [Dovecot] Question about Dovecot-ACLs In-Reply-To: <4DF0DBA2.4080307@softjury.de> References: <4DF0DBA2.4080307@softjury.de> Message-ID: <1307972789.10421.850.camel@hurina> On Thu, 2011-06-09 at 16:41 +0200, Jan Phillip Greimann wrote: > i try to create an php-script to control acl's for public folders > without file-manipulation. I don't know about PHP, but > But i have a problem with the follow function: > imap_setacl($mbox,"INBOX/test", "email at domain.tld", ""); > > This command only delete the rights from the email, not the whole entry > in my dovecot-acl file. > > Now my acl-file looks like this: > ~:> cat dovecot-acl > user=email at domain.tld > > Did this affect dovecot by any way? This is intentional. You remove user's all access that way. To delete ACLs you'd need to use DELETEACL command. Maybe there's an imap_deleteacl() function in PHP? From tss at iki.fi Mon Jun 13 16:49:18 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:49:18 +0300 Subject: [Dovecot] Webmail project : to cache or not to cache emails In-Reply-To: References: Message-ID: <1307972958.10421.852.camel@hurina> On Thu, 2011-06-09 at 14:45 +0200, Vincent Richomme wrote: > Hi, > > I plan to develop a new web service where one of its module is a > webmail and I am thinking about > some implementation details. From a interface point of view I wanted to > adopt the same logic a outlook(desktop) or yahoo webmail > and not split emails into pages. I mean I just want a single datatable > view where user can scroll to > see his old messages and data are updated only when user release the > vertical scrollbar. > When I look at current webmail (roundcube for instance) I can see that > a cache is used to stored > emails headers and I was wondering if it was really necessary ? You mean Roundcube's own local cache? > Once a user has passed the login process I would like to retrieve only > the emails that will be displayed > (actually a bit more, I am thinking of 150) but I am wondering if it's > a good idea to not use a cache for headers. > For instance if I have thousands of users on the same machine, will it > support it ? Will it be fast enough ? > Of course I will try by myself the different options but would be > curious to have some opinions. Dovecot's cache is also pretty fast. But then again it is easier to scale web servers than IMAP servers by just adding more servers. From d.iskandarov at gmail.com Mon Jun 13 16:49:45 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 17:49:45 +0400 Subject: [Dovecot] virtual users with postfix+dovecot plugin usage question Message-ID: I'm interested in if i should enable plugins only in LDA as i understood that with postfix dovecot works only like LDA. For example i wanna use autocreate plugin for imap user i have enabled in both IMAP and LDA sections. Is it right or i had to configure it only in LDA section ? Than how quota and imap_quota work in imap section ? For what is it there if lda controls user maildirs ? Dovecot 2.0.13 protocol lda { mail_plugins = quota autocreate } protocol imap { imap_client_workarounds = delay-newmail mail_plugins = quota imap_quota autocreate } protocol pop3 { mail_plugins = quota pop3_client_workarounds = outlook-no-nuls oe-ns-eoh } From tss at iki.fi Mon Jun 13 16:55:32 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:55:32 +0300 Subject: [Dovecot] sqlite quota dict In-Reply-To: <20110609115655.1c94ff28@jimbo> References: <20110609115655.1c94ff28@jimbo> Message-ID: <1307973332.10421.858.camel@hurina> On Thu, 2011-06-09 at 11:56 +0300, Nikita Koshikov wrote: > Hello Timo, and list followers, > > Sqlite supports good feature like mysql 'ON DUPLICATE KEY UPDATE' - it calls REPLACE/INSERT OR REPLACE > > This clause can be added to INSERT query, like: > INSERT OR REPLACE INTO table VALUES() > REPLACE INTO table VALUES() // alias to previous one Quota updates atomically increase or decrease quota. Dovecot doesn't know the exact quota value. The only way to do that would be to globally lock the user's all mailboxes while updating quota, which seems pretty horrible idea to me. So, Dovecot can't do something like this: > INSERT INTO quota (bytes,username) VALUES ('112497180','foo at spam.dom'); Instead it does: UPDATE quota SET bytes=bytes + 12345 WHERE username = 'foo at spam.dom'; Or it would do this, if it knew that the row always exists. But since there are no such guarantees, it's doing the INSERT .. ON DUPLICATE KEY UPDATE. > So if dovecot will INSERT values to sql dict in this manner, sqlite can be used for storing quota data. I could consider doing the UPDATE way where all users are always required to exist in the table. That'd require making this behavior optional in dict-sql backend. Probably a per-map {} block setting. Still, that's some work and a pretty low priority currently.. From tss at iki.fi Mon Jun 13 16:59:27 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 16:59:27 +0300 Subject: [Dovecot] Regarding Digest-MD5 auth In-Reply-To: References: Message-ID: <1307973567.10421.862.camel@hurina> On Thu, 2011-06-09 at 13:48 +0530, kenja heramba wrote: > Hi, > > I am writing a Pop3Client. I use dovecot server as POP3 server in linux and > hMailServer in windows. > > I was just testing digest-md5 auth with dovecot server. > > I had an observation. > > After server side verification, server sends a verification code to client. > If this fails, how can client send the negative response or does it not > exist? It doesn't exist. What could the client do anyway? Tell the server that "I see you're doing a man-in-the-middle attack, no thanks"? > When I see packet capture, dovecot server sends +OK Logged in for anything > client sends. The last thing a client sends is the verification checksum, which finishes the DIGEST-MD5 authentication. After that the login is complete. So I'm not sure what you mean by "anything client sends". If you send a wrong checksum, it should fail the authentication. From tss at iki.fi Mon Jun 13 17:01:57 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 17:01:57 +0300 Subject: [Dovecot] Using Dovecot new version 2.0.13 facing issues. In-Reply-To: References: Message-ID: <1307973717.10421.864.camel@hurina> On Thu, 2011-06-09 at 10:24 +0530, ???? ???? wrote: > See if these patches help: > > http://hg.dovecot.org/dovecot-2.0/rev/86e4023d08e4 > http://hg.dovecot.org/dovecot-2.0/rev/6fdee880c5dc > > > Hi Timo, > > Thanks for the response. > > The first patch is not getting compiled, where the other one got complied > cleanly. Please help on this. Well, instead of patching you could also get the latest nightly snapshot: http://dovecot.org/nightly/dovecot-latest.tar.gz I'll also probably make a 2.0.14 release this week. From tss at iki.fi Mon Jun 13 17:18:27 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 17:18:27 +0300 Subject: [Dovecot] Dovecot 2.0+LMTP: Legal MAIL FROM rejected? In-Reply-To: References: Message-ID: <1307974707.10421.865.camel@hurina> On Wed, 2011-06-08 at 20:07 +0000, Bernhard Schmidt wrote: > It looks like dovecot/lmtp does not accept an address with quoted > localpart that contains a space > > mail from:<"admin admin"@kl38000.com> > 501 5.5.4 Invalid parameters Fixed: http://hg.dovecot.org/dovecot-2.0/rev/09b8701362a4 From aydin.demirel at endersys.com Mon Jun 13 17:21:39 2011 From: aydin.demirel at endersys.com (=?UTF-8?B?QXlkxLFuIERlbWlyZWw=?=) Date: Mon, 13 Jun 2011 17:21:39 +0300 Subject: [Dovecot] Dovecot + qmail-ldap Message-ID: <4DF61CF3.9090402@endersys.com> Hi; I installed latest dovecot version (2.0.13) and qmail pathed with qmail-ldap on our systems. We want to use auth_dovecot binary authentication for dovecot. My dovecot config is following: auth_debug = yes auth_debug_passwords = yes auth_verbose = yes base_dir = /var/run/dovecot disable_plaintext_auth = no first_valid_gid = 100 first_valid_uid = 100 last_valid_gid = 65000 last_valid_uid = 65000 listen = * mail_debug = yes mail_location = maildir:~/Maildir mmap_disable = yes protocols = imap pop3 service auth { executable = /opt/surmail/smtp/bin/auth_dovecot ./Maildir unix_listener auth-userdb { group = qmail user = root } } service imap-login { inet_listener imap { port = 143 } } service pop3-login { inet_listener pop3 { port = 110 } } ssl = no verbose_proctitle = yes But, unfortunately I can not connect port 110 via telnet and i'm getting following error: Jun 13 17:11:43 sms dovecot: master: Error: service(auth): child 31580 returned error 111 Jun 13 17:11:43 sms dovecot: master: Error: service(auth): command startup failed, throttling What can be the problem? Regards.. -------------------------------- *Aydin Demirel Endersys Ltd. Sistem Destek Muhendisi / System Support Engineer * Phone : +90 216-4709423 Fax : +90 216-4709508 | Web : http://www.endersys.com.tr Blog : http://blog.endersys.com Twitter : http://www.twitter.com/endersys LPI : The #1 Linux Certification for IT Professionals LPI (Linux Professional Institute) Turkey http://www.lpi-turkey.com Endersys is the first Advanced Business partner of Red Hat in Turkey ! http://www.europe.redhat.com/partners/endersys/ From tss at iki.fi Mon Jun 13 17:23:24 2011 From: tss at iki.fi (Timo Sirainen) Date: Mon, 13 Jun 2011 17:23:24 +0300 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <20110613131109.GA8033@albatross.gern.madduck.net> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> <20110613131109.GA8033@albatross.gern.madduck.net> Message-ID: <1307975004.10421.868.camel@hurina> On Mon, 2011-06-13 at 15:11 +0200, martin f krafft wrote: > also sprach Timo Sirainen [2011.06.13.1444 +0200]: > > Timing out after only 30 seconds seems a bit aggressive to me, > > especially if you're uploading a large message over a slow network > > connection. Isn't it configurable? > > Not that I can see, but I will check out the code later too. > > The question is whether IMAP really limits us to using something > silly as timeouts. Couldn't the server keep sending BUSY messages, > or the like? It could, and Dovecot does that for several commands. But I'm a bit afraid of adding such code for APPEND, because it could easily break some clients. I know an old version of Evolution broke if it got any extra data during APPEND. > How could the client distinguish between an upload progressing, and > the connection having stalled. Does it look at the flow rate of > data, or how does IMAP cater for this requirement? If your router/whatever swallows the entire 10 MB at once and starts uploading it for the next 60 seconds, I guess there's nothing that a client can do. From d.iskandarov at gmail.com Mon Jun 13 17:44:06 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 18:44:06 +0400 Subject: [Dovecot] SSL comunication problems with client side. In-Reply-To: References: Message-ID: I've tried next thing: ssl = required ssl_verify_client_cert = no auth_ssl_require_client_cert = no And began getting emails. Successful logs attached. But i cant understand if data was passed with TLS. How can i enable those 2 options "ssl_verify_client_cert", "auth_ssl_require_client_cert" and get em working ? dovecot-deliver.log Jun 13 14:40:17 lda: Debug: Loading modules from directory: /usr/lib/dovecot Jun 13 14:40:17 lda: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 13 14:40:17 lda: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 13 14:40:17 lda: Debug: auth input: test at office.dev home=/home/vmail/office.dev/test/ mail=maildir:/home/vmail/office.dev/test/ uid=1001 gid=12 quota=maildir:storage=10240000 Jun 13 14:40:17 lda: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 13 14:40:17 lda: Debug: Added userdb setting: plugin/quota=maildir:storage=10240000 Jun 13 14:40:17 lda(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 13 14:40:17 lda(test at office.dev): Debug: Quota root: name=storage=10240000 backend=maildir args= Jun 13 14:40:17 lda(test at office.dev): Debug: maildir++: root=/home/vmail/office.dev/test, index=, control=, inbox=/home/vmail/office.dev/test Jun 13 14:40:17 lda(test at office.dev): Debug: Namespace : Using permissions from /home/vmail/office.dev/test: mode=0700 gid=-1 Jun 13 14:40:17 lda(test at office.dev): Debug: quota: No quota setting - plugin disabled Jun 13 14:40:17 lda(test at office.dev): Debug: none: root=, index=, control=, inbox= Jun 13 14:40:17 lda(test at office.dev): Debug: Destination address: test at office.dev (source: user at hostname) Jun 13 14:40:17 auth: Info: mysql(localhost): Connected to database postfix Jun 13 14:40:17 lda(test at office.dev): Info: msgid=<20110613104017.30B331B09AB at mx.office.dev>: saved mail to INBOX Jun 13 14:40:27 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=7927, TLS Jun 13 14:40:27 imap: Debug: Loading modules from directory: /usr/lib/dovecot Jun 13 14:40:27 imap: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 13 14:40:27 imap: Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Jun 13 14:40:27 imap: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 13 14:40:27 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 13 14:40:27 imap: Debug: Added userdb setting: plugin/quota=maildir:storage=10240000 Jun 13 14:40:27 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 13 14:40:27 imap(test at office.dev): Debug: Quota root: name=storage=10240000 backend=maildir args= Jun 13 14:40:27 imap(test at office.dev): Debug: maildir++: root=/home/vmail/office.dev/test, index=, control=, inbox=/home/vmail/office.dev/test Jun 13 14:40:27 imap(test at office.dev): Debug: Namespace : Using permissions from /home/vmail/office.dev/test: mode=0700 gid=-1 Jun 13 14:40:37 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=7929, TLS Jun 13 14:40:37 imap: Debug: Loading modules from directory: /usr/lib/dovecot Jun 13 14:40:37 imap: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 13 14:40:37 imap: Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Jun 13 14:40:37 imap: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 13 14:40:37 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 13 14:40:37 imap: Debug: Added userdb setting: plugin/quota=maildir:storage=10240000 Jun 13 14:40:37 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 13 14:40:37 imap(test at office.dev): Debug: Quota root: name=storage=10240000 backend=maildir args= Jun 13 14:40:37 imap(test at office.dev): Debug: maildir++: root=/home/vmail/office.dev/test, index=, control=, inbox=/home/vmail/office.dev/test Jun 13 14:40:37 imap(test at office.dev): Debug: Namespace : Using permissions from /home/vmail/office.dev/test: mode=0700 gid=-1 Jun 13 14:40:38 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=7931, TLS Jun 13 14:40:38 imap: Debug: Loading modules from directory: /usr/lib/dovecot Jun 13 14:40:38 imap: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 13 14:40:38 imap: Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Jun 13 14:40:38 imap: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 13 14:40:38 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 13 14:40:38 imap: Debug: Added userdb setting: plugin/quota=maildir:storage=10240000 Jun 13 14:40:38 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 13 14:40:38 imap(test at office.dev): Debug: Quota root: name=storage=10240000 backend=maildir args= Jun 13 14:40:38 imap(test at office.dev): Debug: maildir++: root=/home/vmail/office.dev/test, index=, control=, inbox=/home/vmail/office.dev/test Jun 13 14:40:38 imap(test at office.dev): Debug: Namespace : Using permissions from /home/vmail/office.dev/test: mode=0700 gid=-1 maillog Jun 13 14:40:17 cent56dev postfix/smtpd[7912]: connect from mx.office.dev[127.0.0.1] Jun 13 14:40:17 cent56dev postfix/smtpd[7912]: 30B331B09AB: client=mx.office.dev[127.0.0.1] Jun 13 14:40:17 cent56dev postfix/cleanup[7920]: 30B331B09AB: message-id=<20110613104017.30B331B09AB at mx.office.dev> Jun 13 14:40:17 cent56dev postfix/qmgr[5910]: 30B331B09AB: from=, size=461, nrcpt=1 (queue active) Jun 13 14:40:17 cent56dev postfix/smtpd[7912]: disconnect from mx.office.dev[127.0.0.1] Jun 13 14:40:17 cent56dev postfix/pipe[7921]: 30B331B09AB: to=, relay=dovecot, delay=0.27, delays=0.04/0.03/0/0.2, dsn=2.0.0, status=sent (delivered via dovecot service) Jun 13 14:40:17 cent56dev postfix/qmgr[5910]: 30B331B09AB: removed Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x10, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server done A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x20, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:27 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x10, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server done A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x20, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x10, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: before/accept initialization [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server done A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:37 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x20, ret=1: SSL negotiation finished successfully [192.168.0.11] Jun 13 14:40:38 cent56dev dovecot: imap-login: Warning: SSL: where=0x2002, ret=1: SSL negotiation finished successfully [192.168.0.11] On Mon, Jun 13, 2011 at 5:42 PM, Denis Iskandarov wrote: > I can get messages without SSL with no problems. but i need to setup > server accept only SSL secured connections. > I think my configuration is very proper, but cant find "obvious" problem. > Postfix 2.3.3 + dovecot 2.0.13-1_129.el5 + PostfixAdmin 2.3.3 > I made own CA. configured postfix and dovecot with same cert key ca. > Same public cert i gave for client just converted it to PKCS#12. > I cant undestand valid and invalid certs strings in long, they look same. > You can check logs and config bellow. > > Also some other questions regarding SSL: > 1. How to make client MUA (thunderbird) automatically retrieve > certificate ? My thunderbird cant do it by itself so i'm importing > mail cert by myself. > 2. If i want to setup Roundcube/Squirrelmail webmail clients with TLS > support (https) i have to provide them with same certificates as > dovecot and postfix have. Or in this case i can use whatever > certificate dedicated for with "virtualhost"? > > > > dovecot-deliver.log: > Jun 13 13:26:42 imap-login: Info: Invalid certificate: unable to get > certificate CRL: /C=GE/ST=Tbilisi/O=Caucasus Digital Network/OU=Mail > Server/CN=mx.office.dev/emailAddress=hostmaster at office.dev > Jun 13 13:26:42 imap-login: Info: Invalid certificate: unable to get > certificate CRL: /C=GE/ST=Tbilisi/L=Tbilisi/O=Caucasus Digital > Network/OU=Caucasus Digital Network/CN=Caucasus Digital > Network/emailAddress=hostmaster at office.dev > Jun 13 13:26:42 imap-login: Info: Valid certificate: > /C=GE/ST=Tbilisi/L=Tbilisi/O=Caucasus Digital Network/OU=Caucasus > Digital Network/CN=Caucasus Digital > Network/emailAddress=hostmaster at office.dev > Jun 13 13:26:42 imap-login: Info: Valid certificate: > /C=GE/ST=Tbilisi/O=Caucasus Digital Network/OU=Mail > Server/CN=mx.office.dev/emailAddress=hostmaster at office.dev > Jun 13 13:26:42 auth: Info: PLAIN(?,192.168.0.11): Client didn't > present valid SSL certificate > Jun 13 13:26:42 auth: Info: LOGIN(?,192.168.0.11): Client didn't > present valid SSL certificate > Jun 13 13:26:42 auth: Info: PLAIN(?,192.168.0.11): Client didn't > present valid SSL certificate > Jun 13 13:26:42 imap-login: Info: Disconnected (client sent an invalid > cert): method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, TLS > > > maillog. > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x10, ret=1: before/accept initialization [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: before/accept initialization [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read client hello A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write server hello A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write certificate A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write certificate request A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2002, ret=-1: SSLv3 read client certificate A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read client certificate A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read client key exchange A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read certificate verify A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 read finished A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write change cipher spec A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 write finished A [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2001, ret=1: SSLv3 flush data [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x20, ret=1: SSL negotiation finished successfully > [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL: > where=0x2002, ret=1: SSL negotiation finished successfully > [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL alert: > where=0x4004, ret=256: warning close notify [192.168.0.11] > Jun 13 13:26:42 cent56dev dovecot: imap-login: Warning: SSL alert: > where=0x4008, ret=256: warning close notify [192.168.0.11] > > > # doveconf -n > # 2.0.13: /etc/dovecot/dovecot.conf > # OS: Linux 2.6.18-238.9.1.el5 i686 CentOS release 5.6 (Final) ext3 > auth_mechanisms = plain login > auth_socket_path = /var/run/dovecot/auth-userdb > auth_ssl_require_client_cert = yes > auth_verbose = yes > base_dir = /var/run/dovecot/ > debug_log_path = /var/log/dovecot-deliver.log > dict { > ?expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf.ext > ?quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext > } > first_valid_gid = 12 > first_valid_uid = 1001 > hostname = mx.office.dev > info_log_path = /var/log/dovecot-deliver.log > last_valid_gid = 12 > last_valid_uid = 1001 > listen = * > mail_debug = yes > mail_gid = 12 > mail_location = maildir:/home/vmail/%d/%u > mail_plugins = quota > mail_privileged_group = mail > mail_uid = 1001 > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include variables body enotify > environment mailbox date > mbox_write_locks = fcntl > passdb { > ?args = /etc/dovecot/conf.d/sql/sql.conf > ?driver = sql > } > plugin { > ?autocreate = Trash > ?autocreate2 = Spam > ?autosubscribe = Trash > ?autosubscribe2 = Spam > } > postmaster_address = postmaster at office.dev > service auth { > ?unix_listener /var/spool/postfix/private/auth { > ? ?group = mail > ? ?mode = 0660 > ? ?user = postfix > ?} > ?unix_listener auth-userdb { > ? ?group = mail > ? ?mode = 0660 > ? ?user = vmail > ?} > } > service imap-login { > ?inet_listener imap { > ? ?port = 143 > ?} > ?inet_listener imaps { > ? ?port = 993 > ? ?ssl = yes > ?} > } > service pop3-login { > ?inet_listener pop3 { > ? ?port = 110 > ?} > ?inet_listener pop3s { > ? ?port = 995 > ? ?ssl = yes > ?} > } > ssl_ca = ssl_cert = ssl_key = ssl_verify_client_cert = yes > userdb { > ?args = /etc/dovecot/conf.d/sql/sql.conf > ?driver = sql > } > verbose_ssl = yes > protocol lda { > ?mail_plugins = quota autocreate > } > protocol imap { > ?imap_client_workarounds = delay-newmail > ?mail_plugins = quota imap_quota autocreate > } > protocol pop3 { > ?mail_plugins = quota > ?pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > } > From alexwbaule at gmail.com Mon Jun 13 17:53:25 2011 From: alexwbaule at gmail.com (Alex Baule) Date: Mon, 13 Jun 2011 11:53:25 -0300 Subject: [Dovecot] Explain about (mail_get_first_header(mail, "From", &header) In-Reply-To: <1307970567.10421.824.camel@hurina> References: <1307970567.10421.824.camel@hurina> Message-ID: my delivery is done by the exim, and i use maildir. Well, i will use the mail_get_first_header with the Return-Path. Tks. Em 13/06/2011 10:09, "Timo Sirainen" escreveu: > On Fri, 2011-06-10 at 09:19 -0300, Alex Baule wrote: >> Hi Timo... >> >> Inside my plugin, i use the (mail_get_first_header(mail, "From", >> &header) function, to get the email From to put in some Blacklist. >> >> Looking in the header under this mail, we have 2 "From" fields. > > Do you mean these? > > From dma_3783 at envios.socomdescontos.com.br Tue Jun 07 15:43:04 2011 > From: "CompraFacil.com.br" > >> Using the function above, i get the Second "From", but my MTA (exim) >> look in to The First From, in the First Line, in that way, my >> blacklist don't work, because the sender to be blocked is different >> from >> >> the From looked by dovecot. >> >> There is a way to get the "From" from First line ? > > The first line isn't a From: header. It's the "envelope sender". That > line typically exists only with mbox format, not with other mailbox > formats.. If you deliver a mail via dovecot-lda it removes this From > line if it sees it. > > Typically you'd get this info from Return-Path: header. > From slusarz at curecanti.org Mon Jun 13 19:56:34 2011 From: slusarz at curecanti.org (Michael M Slusarz) Date: Mon, 13 Jun 2011 10:56:34 -0600 Subject: [Dovecot] Webmail project : to cache or not to cache emails In-Reply-To: <1307972958.10421.852.camel@hurina> References: <1307972958.10421.852.camel@hurina> Message-ID: <20110613105634.Horde.is6efYF5lbhN9kFCnl-S7lA@bigworm.curecanti.org> Quoting Timo Sirainen : > On Thu, 2011-06-09 at 14:45 +0200, Vincent Richomme wrote: >> Hi, >> >> I plan to develop a new web service where one of its module is a >> webmail and I am thinking about >> some implementation details. From a interface point of view I wanted to >> adopt the same logic a outlook(desktop) or yahoo webmail >> and not split emails into pages. I mean I just want a single datatable >> view where user can scroll to >> see his old messages and data are updated only when user release the >> vertical scrollbar. We have implemented this in IMP. Best of luck - it is not an easy thing to implement correctly. >> When I look at current webmail (roundcube for instance) I can see that >> a cache is used to stored >> emails headers and I was wondering if it was really necessary ? > > You mean Roundcube's own local cache? For webmail, our theory is that caching is pretty much only important when viewing the mailbox list. There is an expectation from a user that when viewing a message, it may take a bit of time to grab the data and render. Caching body data and full header text for all users and all messages will instead most likely cause your cache to fill to quickly, and provides little practical benefit. So instead focus on caching for the mailbox list. We cache all envelope data, imapdate, size, and flags. We also cache *specific* headers that are unobtainable from envelope data, but are used when rendering the message list (e.g. X-Priority, List Headers). But there is no need to cache the entire header text - some of it would be duplicative (e.g. envelope headers), and a good chunk of the remaining data is worthless for most use cases (e.g. Received). Finally, we cache flags. But note: you absolutely MUST implement CONDSTORE support on your client or else mailbox caching is essentially worthless. A client that has to grab the flag data on every connection pretty much eliminates all benefits gained from caching in the first place. Most other webmail implementations claim they cache, but they have no CONDSTORE support, so their caching is either broken (flag changes from other clients don't appear) or of limited value (since an IMAP server may need to parse through the entire list of requested messages to grab this information, which may be a slow operation if using something like mboxes on the storage side). >> Once a user has passed the login process I would like to retrieve only >> the emails that will be displayed >> (actually a bit more, I am thinking of 150) but I am wondering if it's >> a good idea to not use a cache for headers. >> For instance if I have thousands of users on the same machine, will it >> support it ? Will it be fast enough ? >> Of course I will try by myself the different options but would be >> curious to have some opinions. > > Dovecot's cache is also pretty fast. But then again it is easier to > scale web servers than IMAP servers by just adding more servers. I'll admit that a webmail cache is not as important when using with a server that already supports caching natively (Dovecot, Cyrus). However, you still gain benefits because the local cache is in a format that is directly usable by the client program - in other words, you save on reparsing the IMAP data -> local data structure. But a webmail cache is a necessity when using IMAP servers that don't natively cache (e.g. Courier). michael From d.iskandarov at gmail.com Mon Jun 13 20:10:46 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Mon, 13 Jun 2011 21:10:46 +0400 Subject: [Dovecot] SSL comunication problems with client side. In-Reply-To: References: Message-ID: again me. i got idea that i need crl but i didn't understand where it should be located? (and yes i read wiki but still...) from config above u can see my certs location: ssl_ca = Using LDAP userdb/passdb. Is it possible to define a default set of ACL's at the userdb level, to provide access to shared mailboxes? How? -- Daniel From dmiller at amfes.com Mon Jun 13 23:49:21 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 13 Jun 2011 13:49:21 -0700 Subject: [Dovecot] Admin access to shared mailboxes In-Reply-To: <201105311016.04024.joseba.torre@ehu.es> References: <4DE42549.2090405@amfes.com> <201105311016.04024.joseba.torre@ehu.es> Message-ID: On 5/31/2011 1:16 AM, Joseba Torre wrote: > On Martes 31 Mayo 2011 01:16:25 Daniel Miller escribi?: >> Having enabled shared mailboxes - is there a way to provide access to >> all users' mailboxes by a given user? Instead of having to manually >> provide ACL rights to every mailbox of every user? > http://wiki2.dovecot.org/Authentication/MasterUsers Will Master users have access to shared mailboxes from their own login? Or must a separate login be created for each mailbox (which is what I'm trying to avoid)? -- Daniel From Juergen.Obermann at hrz.uni-giessen.de Tue Jun 14 00:49:57 2011 From: Juergen.Obermann at hrz.uni-giessen.de (=?utf-8?b?SsO8cmdlbg==?= Obermann) Date: Mon, 13 Jun 2011 23:49:57 +0200 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <1307971370.10421.833.camel@hurina> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> Message-ID: <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> > On Fri, 2011-06-10 at 11:22 +0200, J?rgen Obermann wrote: >> Hello, >> >> is it possible to limit the number of pop3 (or imap) login attempts >> from one IP with dovecot to stop attackers? We recently had an attack >> from one IP-address lasting 50 minutes that tried 50000 pop3-logins >> with guessed users and passwords. I know about Fail2Ban but really >> would prefer an easy to configure solution inside of dovecot. Dovecot >> has this anvil daemon, can it be used for that purpose? >> >> We use dovcot version 2.0.12 under Solaris 10, the pop3-login part of >> the configuration looking like that: > > With v2.0 it was already limiting. It increased each login failure delay > to 15 seconds before the failure was reported. Although maybe something > wasn't working correctly, because 50k hits is more than I think should > have been possible. Assuming you have default_process_limit=100 > (default), there should have been a maximum of 20k attempts (100 > processes / 15 seconds * 60*50 seconds). > > Hmm. Maybe instead of simply increasing the failure delay, the IP could > be disconnected immediately? We had set default_process_limit=2000. I think this was necessary during testing the high-security mode and I forgot to set it back to 100 again after switching back to high-perfomance mode (http://wiki2.dovecot.org/LoginProcess). But even 20k attempts in 50 minutes (or 6 per second) would habe been to much for one real person. The attack would have taken about 2 hours instead of nearly one. I admit that fail2ban can stop this attack, but we have solaris and not linux and therefore the actions fail3ban wants to start are not available. Greetings, Juergen -- Hochschulrechenzentrum der | Mail: Juergen.Obermann at hrz.uni-giessen.de Justus-Liebig-Universitaet | WWW: http://www.uni-giessen.de/obermann/ Heinrich-Buff-Ring 44 | Tel: 0641-99-13054 (0641-99-13001) D-35392 Giessen, Germany | Fax: 0641-99-13009 From tom at whyscream.net Tue Jun 14 01:12:42 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Tue, 14 Jun 2011 00:12:42 +0200 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> Message-ID: <4DF68B5A.5050609@whyscream.net> On 13/06/11 23:49, J?rgen Obermann wrote: > > I admit that fail2ban can stop this attack, but we have solaris and not > linux and therefore the actions fail3ban wants to start are not available. > If fail2ban itself can run on your box, then that's the way to go. All actions in fail2ban are simple scripts that use other tools on the OS (f.i. iptables on linux). I'm not into solaris at all, but if solaris has a scriptable firewall (I bet it does), then the fail2ban list can help you use it. -- Regards, Tom From dovecot at michaelstarks.com Tue Jun 14 03:18:33 2011 From: dovecot at michaelstarks.com (Michael Starks) Date: Mon, 13 Jun 2011 19:18:33 -0500 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> Message-ID: <4DF6A8D9.2040504@michaelstarks.com> On 06/13/2011 04:49 PM, J?rgen Obermann wrote: > I admit that fail2ban can stop this attack, but we have solaris and not > linux and therefore the actions fail3ban wants to start are not available. You may be interested in OSSEC for this. I added the Dovecot support and OSSEC supports Solaris, so I imagine this would work fine (although I don't use Solaris so I can't say for sure.) If the logs turn out to be slightly different I can update the decoder to accommodate. From madduck at madduck.net Tue Jun 14 07:56:03 2011 From: madduck at madduck.net (martin f krafft) Date: Tue, 14 Jun 2011 06:56:03 +0200 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <1307975004.10421.868.camel@hurina> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> <20110613131109.GA8033@albatross.gern.madduck.net> <1307975004.10421.868.camel@hurina> Message-ID: <20110614045603.GA23005@albatross.gern.madduck.net> also sprach Timo Sirainen [2011.06.13.1623 +0200]: > It could, and Dovecot does that for several commands. But I'm a bit > afraid of adding such code for APPEND, because it could easily break > some clients. I know an old version of Evolution broke if it got any > extra data during APPEND. Couldn't the client signal to the server that it wants/expects such data, and only then does dovecot send such pings? -- martin | http://madduck.net/ | http://two.sentenc.es/ "...the prevailing catholic odor - incense, wax, centuries of mild bleating from the lips of the flock." -- thomas pynchon, gravity's rainbow spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1124 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From stephan at rename-it.nl Tue Jun 14 09:36:35 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 14 Jun 2011 08:36:35 +0200 Subject: [Dovecot] Sieve question In-Reply-To: <4ee5a8236bf0bba77414cbc85a278917@apps.consoe.com> References: <4ee5a8236bf0bba77414cbc85a278917@apps.consoe.com> Message-ID: <4DF70173.1070408@rename-it.nl> Op 13-6-2011 4:41, Dhaval Patel schreef: > -------------------------------------------------------------- > require "fileinto"; > if header :contains "X-Spam-Flag" "YES" { > fileinto "spam"; > } > -------------------------------------------------------------- > > My first question is, where is this global script? Do I configure the > "sieve_global_dir = /etc/dovecot/sieve/"? What about he filename? http://wiki.dovecot.org/LDA/Sieve/Dovecot#Executing_Multiple_Scripts_Sequentially Use sieve_before. Script name is mainly important when a directory is specified, in which case it must end with .sieve. The directory/file can be located anywhere you like. > Most users will not need any additional rules. There are some users that do and > I am having a difficult time figuring out how it would be setup. My second > question is the following. Is there a way in the global script to check if there > is a file called /etc/dovecot/sieve/username or > /home/vmail/username/personal_sieve_script and include it? Not like that. There is an include extension, but that is not able to do optional includes (maybe it should). You can use multiscript support for this too. Make the sieve_before setting dependent on the user, make it point to two alternative directories, each containing (symlinks to) a different set of scripts. > I was using maildrop before this and procmail before that so I apologies for > sounding stupid if this is not how Sieve scripts work. > > I am by no means tied the methods I describe above. If anyone knows of a better > way to achieve what I am trying to do, I would appreciate if you let me know of > it. Regards, Stephan. From nmilas at noa.gr Tue Jun 14 10:25:36 2011 From: nmilas at noa.gr (Nikolaos Milas) Date: Tue, 14 Jun 2011 10:25:36 +0300 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF68B5A.5050609@whyscream.net> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> Message-ID: <4DF70CF0.1060106@noa.gr> On 14/6/2011 1:12 ??, Tom Hendrikx wrote: > On 13/06/11 23:49, J?rgen Obermann wrote: >> I admit that fail2ban can stop this attack, but we have solaris and not >> linux and therefore the actions fail3ban wants to start are not available. >> > If fail2ban itself can run on your box, then that's the way to go. > > I would like to add that, although fail2ban is great and we are using it for a long time, it doesn't support IPv6; now that our servers (we are using CentOS 5.6 x86_64) and networks are IPv6 enabled, this is a problem (but hopefully IPv6-based attacks should not be very common yet). We have not implemented a solution for protecting pop3/imap over IPv6 yet, but I have recently found this article: http://www.roedie.nl/tag/fail2ban/ which suggests autofwd: http://freshmeat.net/projects/autofwd which might provide a good solution. It seems versatile and supports IPv6. If anybody has done or can do an implementation on Linux (using iptables AND ip6tables) for pop3/imap, pop3s/imaps and share it, it will be most welcome and very useful. This is a Linux tool, so I can't suggest anything for Solaris or other systems. Nevertheless, finding a solution for Linux is still significant! Nick -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5632 bytes Desc: S/MIME Cryptographic Signature URL: From claudio.prono at atpss.net Tue Jun 14 11:06:53 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Tue, 14 Jun 2011 10:06:53 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve Message-ID: <4DF7169D.1080602@atpss.net> Hello all, I am testing Dovecot 2.0.13, with sieve for the vacation. I have some problems with the :regex as i can see... An example: # Sieve Filter # Generato da Ingo (http://www.horde.org/ingo/) (10/06/2011, 04:45:07) require ["vacation", "regex"]; # Vacanze if allof ( not exists ["list-help", "list-unsubscribe", "list-subscribe", "list-owner", "list-post", "list-archive", "list-id", "Mailing-List"], not header :comparator "i;ascii-casemap" :is "Precedence" ["list", "bulk", "junk"], not header :comparator "i;ascii-casemap" :matches "To" "Multiple recipients of*" ) { if header :regex "Received" "^.*(2011) (\\(.*\\) )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { if header :regex "Received" "^.*(Jun) (\\(.*\\) )?.... (\\(.*\\) )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { if header :regex "Received" "^.*(10) (\\(.*\\) )?... (\\(.*\\) )?.... (\\(.*\\) )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { vacation :days 7 :addresses "claudio at mediaservice.net" :subject "Test autoresponder" "test autoresponder 22"; } } } } If i test this script with sieve-test, the result is the following: sieve-test .dovecot.sieve new/1307715082.M173915P16839.mail2\,S\=1138\,W\=1168 sieve-test(root): Debug: Effective uid=0, gid=0, home=/root sieve-test(root): Debug: Namespace : type=private, prefix=INBOX., sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/var/mail/virtual//root sieve-test(root): Debug: maildir++: root=/var/mail/virtual//root, index=, control=, inbox=/var/mail/virtual//root sieve-test(root): Debug: none: root=, index=, control=, inbox= Performed actions: (none) Implicit keep: * store message in folder: INBOX sieve-test(root): Info: final result: success No vacation is performed..... Then, if i modify the script commenting all the regex for the date, the result is the following: sieve-test .dovecot.sieve new/1307715082.M173915P16839.mail2\,S\=1138\,W\=1168 sieve-test(root): Debug: Effective uid=0, gid=0, home=/root sieve-test(root): Debug: Namespace : type=private, prefix=INBOX., sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/var/mail/virtual//root sieve-test(root): Debug: maildir++: root=/var/mail/virtual//root, index=, control=, inbox=/var/mail/virtual//root sieve-test(root): Debug: none: root=, index=, control=, inbox= Performed actions: * send vacation message: => seconds : 604800 => subject: Test autoresponder => handle : test autoresponder 22Test autoresponder START MESSAGE test autoresponder 22 END MESSAGE Implicit keep: * store message in folder: INBOX sieve-test(root): Info: final result: success But the date is right: date Fri Jun 10 17:22:14 CEST 2011 So, what is wrong? Any help is well accepted, that script with dovecot 1.x is working correctly.... So, what is changed in dovecot 2.0 sieve? Cordially, Claudio Prono. -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From wgillespie+dovecot at es2eng.com Tue Jun 14 11:13:11 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Tue, 14 Jun 2011 02:13:11 -0600 Subject: [Dovecot] SSL comunication problems with client side. In-Reply-To: References: Message-ID: <4DF71817.2030507@es2eng.com> On 6/13/2011 8:44 AM, Denis Iskandarov wrote: > I've tried next thing: > ssl = required > ssl_verify_client_cert = no > auth_ssl_require_client_cert = no > > And began getting emails. > Successful logs attached. But i cant understand if data was passed with TLS. > How can i enable those 2 options "ssl_verify_client_cert", > "auth_ssl_require_client_cert" and get em working ? So do you want the client to authenticate with a certificate, or a username and password? If you set up SSL on the server then things will be encrypted between the client and server similar to how HTTPS works (only the server presents a certificate). ssl_verify_client_cert, and auth_ssl_require_client_cert also expects for the client to present its own certificate to the server. So there would be a certificate for the server and one for each client in that case. Willie From wgillespie+dovecot at es2eng.com Tue Jun 14 11:19:05 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Tue, 14 Jun 2011 02:19:05 -0600 Subject: [Dovecot] ACL's from userdb In-Reply-To: References: Message-ID: <4DF71979.8080006@es2eng.com> On 6/13/2011 2:47 PM, Daniel L. Miller wrote: > Using LDAP userdb/passdb. Is it possible to define a default set of > ACL's at the userdb level, to provide access to shared mailboxes? How? You could maybe use acl_groups In Dovecot LDAP config: user_attrs = some_ldap_attr=acl_groups Then give the groups the permissions you want the users to have. Willie From d.iskandarov at gmail.com Tue Jun 14 11:52:37 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Tue, 14 Jun 2011 12:52:37 +0400 Subject: [Dovecot] SSL comunication problems with client side. In-Reply-To: <4DF71817.2030507@es2eng.com> References: <4DF71817.2030507@es2eng.com> Message-ID: i want users to login with username and password, but be sure that whole traffic betwen clint/server would be encrypted. after reading mailing list and google finally just a momment ago i have fixed problem with certs and this 2 options. my problem was in crl and i didnt understood how is should follow cacert. here is mini howto for openssl usage on mail server. please include in wiki, it will help many others!!! 0. prepare environment for openssl mkdir /etc/pki/CA/newcerts mkdir /etc/pki/CA/crl cd /etc/pki/CA echo 01 > serial touch index.txt echo 01 > crlnumber ln -s /etc/pki/tls/openssl.cnf openssl.cnf Edit /etc/pki/tls/openssl.cnf change CA directory to /etc/pki/CA change nsComment to whatever you want change other settings you want (default variables for certs) 1. Make your own CA openssl req -new -x509 -extensions v3_ca -utf8 -newkey rsa:2048 -sha1 -keyout private/cakey.pem -out cacert.pem -days 3650 -config ./openssl.cnf 2. Make default CRL openssl ca -gencrl -crlexts crl_ext -md sha1 -utf8 -config ./openssl.cnf -crldays 30 -out crl/crl.pem 3. combine your root cert with default empty CRL cat cacert.pem ./crl/crl.pem > cacrl.pem 4. make request for mail server certificate mkdir mail openssl req -new -nodes -newkey rsa:2048 -sha1 -utf8 -out mail/mail.req -keyout mail/mail.key -config ./openssl.cnf 5. issue certificate openssl ca -out mail/mail.pem -md sha1 -utf8 -days 3650 -config ./openssl.cnf -infiles mail/mail.req 6. convert root certificate to DER format openssl x509 -in cacert.pem -outform DER -out company.root.cert.der 7. convert mail cert into windows readable format PKCS#12. (or convert it to same .der format to secure key file) openssl pkcs12 -export -out mail/mail.p12 -inkey mail/mail.key -in mail/mail.pem -name "MyCompany Mail Server" 8. Give company.root.cert.der and mail.p12 certs to client for integration with his application (outlook, thunderbird, etc ...) 9. Edit your Dovecot ssl configuration and tell him location of cert files. ssl_cert = wrote: > On 6/13/2011 8:44 AM, Denis Iskandarov wrote: >> >> I've tried next thing: >> ssl = required >> ssl_verify_client_cert = no >> auth_ssl_require_client_cert = no >> >> And began getting emails. >> Successful logs attached. But i cant understand if data was passed with >> TLS. >> How can i enable those 2 options "ssl_verify_client_cert", >> "auth_ssl_require_client_cert" and get em working ? > > So do you want the client to authenticate with a certificate, or a username > and password? > > If you set up SSL on the server then things will be encrypted between the > client and server similar to how HTTPS works (only the server presents a > certificate). > > ssl_verify_client_cert, and auth_ssl_require_client_cert also expects for > the client to present its own certificate to the server. ?So there would be > a certificate for the server and one for each client in that case. > > Willie > From harenberg at physik.uni-wuppertal.de Tue Jun 14 14:17:52 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Tue, 14 Jun 2011 13:17:52 +0200 Subject: [Dovecot] Per-user "Seen" flags on public folder Message-ID: <27661D40-A8C1-4661-B713-5E01327E415A@physik.uni-wuppertal.de> Dear all, sorry to bother the list again, I have a small configuration issue again with public (shared) folders. These folders should have per-user Seen flags, so I configured: namespace { type = public separator = . prefix = public. location = maildir:/var/mail/public:INDEX=%u/public subscriptions = no list = children } But this only seems to work with my account (presumably as I was the first one who touched the folder), all other users cannot change the "Seen" flags My home dir is set to /home/mail/harenber and there is a: mail# ls -l total 1162 -rwxrwxrwx 1 10001 wheel 4016 Jun 9 13:27 dovecot.index -rwxrwxrwx 1 10001 wheel 1125376 Jun 14 11:26 dovecot.index.cache -rwxrwxrwx 1 10001 wheel 2140 Jun 9 13:40 dovecot.index.log -rwxrwxrwx 1 10044 wheel 33792 Jun 9 13:28 dovecot.index.log.2 mail# pwd /home/mail/harenber/harenber/public/.fb8 (don't know why my username appears twice). which looks the same on some other account: mail# ls -l total 1380 -rw-rw-rw- 1 10002 wheel 4016 Jun 9 19:40 dovecot.index -rw-rw-rw- 1 10002 wheel 1364992 Jun 10 10:54 dovecot.index.cache -rwxrwxrwx 1 10114 wheel 16072 Jun 10 10:54 dovecot.index.log mail# pwd /home/mail/sandhoff/sandhoff/public/.fb8 The public folder looks like this: mail# pwd /var/mail/public/.fb8 mail# ls -l total 52 drwxrwxrwx 2 root wheel 512 Jun 9 13:05 cur -rwxrwxrwx 1 root wheel 54 Jun 9 13:11 dovecot-acl -rwxrwxrwx 1 root wheel 97 Jun 9 13:05 dovecot-keywords -rw-rw-rw- 1 10001 wheel 18513 Jun 9 13:27 dovecot-uidlist drwxrwxrwx 2 root wheel 23552 Jun 9 13:05 new -rwxrwxrwx 1 root wheel 0 Jun 9 13:05 subscriptions drwxrwxrwx 2 root wheel 512 Jun 9 13:05 tmp Does anybody see what I did (again) wrong? (doveconf -n at the end, as allways) Thanks Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> mail# doveconf -n # 2.0.13: /usr/pkg/etc/dovecot/dovecot.conf # OS: NetBSD 5.1 amd64 ffs auth_debug = yes auth_verbose = yes base_dir = /var/run/dovecot/ mail_debug = yes mail_gid = 6 mail_location = maildir:/var/mail/user/%u/Maildir mail_plugins = acl managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { inbox = yes location = prefix = separator = . type = private } namespace { list = children location = maildir:/var/mail/public:INDEX=%u/public prefix = public. separator = . subscriptions = no type = public } passdb { args = /usr/pkg/etc/dovecot/dovecot-ldap.conf.ext driver = ldap } plugin { acl = vfile sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = imap pop3 lmtp sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-userdb { group = dovecot user = dovecot } } service managesieve-login { inet_listener sieve { port = 4190 } inet_listener sieve_deprecated { port = 2000 } } ssl_ca = Hello everybody, I have some basic questions: 1. how can I configure the auto-empty trash plugin for all users after 3 or 4 days (This is very important, regular users do not clean their trash, or are using blackberry and do not have an option to do it or simply, do not care about it) 2. difference between version 1.2.17 and latest 2 version of Dovecot, have the version 2 an automatic option for the trash thing? 3. me as a basic skilled user, how can I made the upgrade to version 2 without major risks, I mean I do not want to leave everybody on my server without mail. I am a novice in all of this stuff, so please excuse me if I am making dumb questions. Thanks in advance for your help. Information about my installation. # 1.2.17: /etc/dovecot.conf # OS: Linux 2.6.18-164.11.1.el5 x86_64 CentOS release 5.6 (Final) protocols: imap imaps pop3 pop3s plugin: quota: maildir quota_rule: Trash:ignore Kind Regards, Jos? Antonio Su?rez Pinz?n Auge CS (+57 1) 812 7629 (+57) 300 618 0017 From tss at iki.fi Tue Jun 14 15:54:32 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 14 Jun 2011 15:54:32 +0300 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <20110614045603.GA23005@albatross.gern.madduck.net> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> <20110613131109.GA8033@albatross.gern.madduck.net> <1307975004.10421.868.camel@hurina> <20110614045603.GA23005@albatross.gern.madduck.net> Message-ID: <1308056072.10421.878.camel@hurina> On Tue, 2011-06-14 at 06:56 +0200, martin f krafft wrote: > also sprach Timo Sirainen [2011.06.13.1623 +0200]: > > It could, and Dovecot does that for several commands. But I'm a bit > > afraid of adding such code for APPEND, because it could easily break > > some clients. I know an old version of Evolution broke if it got any > > extra data during APPEND. > > Couldn't the client signal to the server that it wants/expects such > data, and only then does dovecot send such pings? Good luck getting any client to implement something like that. From madduck at madduck.net Tue Jun 14 15:59:36 2011 From: madduck at madduck.net (martin f krafft) Date: Tue, 14 Jun 2011 14:59:36 +0200 Subject: [Dovecot] Timeout during APPEND In-Reply-To: <1308056072.10421.878.camel@hurina> References: <20110613080238.GA16867@albatross.gern.madduck.net> <20110613081138.GA24136@albatross.gern.madduck.net> <1307969091.10421.810.camel@hurina> <20110613131109.GA8033@albatross.gern.madduck.net> <1307975004.10421.868.camel@hurina> <20110614045603.GA23005@albatross.gern.madduck.net> <1308056072.10421.878.camel@hurina> Message-ID: <20110614125936.GA10366@albatross.gern.madduck.net> also sprach Timo Sirainen [2011.06.14.1454 +0200]: > > Couldn't the client signal to the server that it wants/expects > > such data, and only then does dovecot send such pings? > > Good luck getting any client to implement something like that. FYI: http://bugs.debian.org/630444 -- martin | http://madduck.net/ | http://two.sentenc.es/ no cat has eight tails. a cat has one tail more than no cat. therefore, a cat has nine tails. spamtraps: madduck.bogus at madduck.net -------------- next part -------------- A non-text attachment was scrubbed... Name: digital_signature_gpg.asc Type: application/pgp-signature Size: 1124 bytes Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current) URL: From claudio.prono at atpss.net Tue Jun 14 16:37:00 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Tue, 14 Jun 2011 15:37:00 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4DF7169D.1080602@atpss.net> References: <4DF7169D.1080602@atpss.net> Message-ID: <4DF763FC.1060901@atpss.net> Il 14/06/2011 10.06, Claudio Prono ha scritto: > Hello all, > > I am testing Dovecot 2.0.13, with sieve for the vacation. > > I have some problems with the :regex as i can see... > > An example: > > # Sieve Filter > # Generato da Ingo (http://www.horde.org/ingo/) (10/06/2011, 04:45:07) > > require ["vacation", "regex"]; > > # Vacanze > if allof ( not exists ["list-help", "list-unsubscribe", > "list-subscribe", "list-owner", "list-post", "list-archive", "list-id", > "Mailing-List"], not header :comparator "i;ascii-casemap" :is > "Precedence" ["list", "bulk", "junk"], not header :comparator > "i;ascii-casemap" :matches "To" "Multiple recipients of*" ) { > if header :regex "Received" "^.*(2011) (\\(.*\\) )?..:..:.. (\\(.*\\) > )?(\\+|\\-)....( \\(.*\\))?$" { > if header :regex "Received" "^.*(Jun) (\\(.*\\) )?.... (\\(.*\\) > )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { > if header :regex "Received" "^.*(10) (\\(.*\\) )?... (\\(.*\\) )?.... > (\\(.*\\) )?..:..:.. (\\(.*\\) )?(\\+|\\-)....( \\(.*\\))?$" { > vacation :days 7 :addresses "claudio at mediaservice.net" :subject > "Test autoresponder" "test autoresponder 22"; > } > } > } > > } > > If i test this script with sieve-test, the result is the following: > > sieve-test .dovecot.sieve > new/1307715082.M173915P16839.mail2\,S\=1138\,W\=1168 > sieve-test(root): Debug: Effective uid=0, gid=0, home=/root > sieve-test(root): Debug: Namespace : type=private, prefix=INBOX., sep=, > inbox=yes, hidden=no, list=yes, subscriptions=yes > location=maildir:/var/mail/virtual//root > sieve-test(root): Debug: maildir++: root=/var/mail/virtual//root, > index=, control=, inbox=/var/mail/virtual//root > sieve-test(root): Debug: none: root=, index=, control=, inbox= > > Performed actions: > > (none) > > Implicit keep: > > * store message in folder: INBOX > > sieve-test(root): Info: final result: success > > No vacation is performed..... > > Then, if i modify the script commenting all the regex for the date, the > result is the following: > > sieve-test .dovecot.sieve > new/1307715082.M173915P16839.mail2\,S\=1138\,W\=1168 > sieve-test(root): Debug: Effective uid=0, gid=0, home=/root > sieve-test(root): Debug: Namespace : type=private, prefix=INBOX., sep=, > inbox=yes, hidden=no, list=yes, subscriptions=yes > location=maildir:/var/mail/virtual//root > sieve-test(root): Debug: maildir++: root=/var/mail/virtual//root, > index=, control=, inbox=/var/mail/virtual//root > sieve-test(root): Debug: none: root=, index=, control=, inbox= > > Performed actions: > > * send vacation message: > => seconds : 604800 > => subject: Test autoresponder > => handle : test autoresponder 22Test > autoresponder > > START MESSAGE > test autoresponder 22 > END MESSAGE > > Implicit keep: > > * store message in folder: INBOX > > sieve-test(root): Info: final result: success > > But the date is right: > > date > Fri Jun 10 17:22:14 CEST 2011 > > So, what is wrong? Any help is well accepted, that script with dovecot > 1.x is working correctly.... So, what is changed in dovecot 2.0 sieve? > > Cordially, > > Claudio Prono. > Ping, anyone for this problem? -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From asicofante at gmail.com Tue Jun 14 17:27:40 2011 From: asicofante at gmail.com (Aleve Sicofante) Date: Tue, 14 Jun 2011 16:27:40 +0200 Subject: [Dovecot] Gmail like virtual mailboxes In-Reply-To: <1307971694.10421.838.camel@hurina> References: <1307971694.10421.838.camel@hurina> Message-ID: Thank you so much for the reply Timo. 2011/6/13 Timo Sirainen : >> First of all: can it be done? > > Not easily. You could create one virtual Dovecot folder for each IMAP > keyword, How do I do that? Can you point me to some part of the wiki that explains it? > but the client side would be problematic. You'd need to have > some way of setting the keywords, and just about no clients support > that. I guess another way of setting keywords could be by using the > regular "copy message" feature of clients, where instead of actually > copying it would just set a keyword. I'm probably designing a client myself (or hiring someone to do it). I'm in the "we'll cross that bridge when we get there" phase. (I agree there are no clients handling IMAP keywords properly, but before I design and implement one, I'm researching IMAP servers that can provide the feature.) > Another problem is that keywords are a very restricted subset of ASCII. > There have been talk in imap-protocol mailing list about expanding this > a few weeks ago. > That's interesting. Can you point me to the discussion? How do you feel about the way Courier implements IMAP keywords? They seem to allow for an unlimited number of arbitrary keywords. -- Aleve Sicofante From aperezaranda at yaco.es Tue Jun 14 18:38:28 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Tue, 14 Jun 2011 17:38:28 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: Maybe this could be a "feature request" for dovecot 2.0.14 - 2.0.15 or 2.1 ? 2011/6/9 Antonio Perez-Aranda : > This patch fix a bug and remove some debug info from patch sent before. > > 2011/6/9 Antonio Perez-Aranda : >> This patch is running but it only run with mail_plugins. >> >> This is because I can't select the "mail_plugins" value from any >> function to get this throw the name key. >> >> Maybe this need more hard development to do this as generic "property" >> for any config value. >> >> 2011/6/9 Antonio Perez-Aranda : >>> Well, this "extrange" vaues is NULL. >>> >>> Maybe, the set_parser is a new environment to set settings but then >>> ?when is make the config merge? >>> >>> 2011/6/9 Antonio Perez-Aranda : >>>> This line: >>>> >>>> value = settings_parse_get_value(set_parser, key, &type); >>>> >>>> Is returning a empty value. Maybe, set_parser has been cleared? >>>> >>>> If I try to get another keys from my config that I can watch with >>>> doveadm I get "extrange" values like this with i_debug() >>>> >>>> ?* mail_debug -> #001 >>>> ?* mail_location -> #010 >>>> ?* auth_realms -> #020#002 >>>> >>>> >>>> 2011/6/8 Antonio Perez-Aranda : >>>>> It must run on dovecot 2.0.13? >>>>> >>>>> We are upgrading to 2.0.13 and with this I get the follow message: >>>>> >>>>> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >>>>> +mail_plugins=fts fts_solr?G >>>>> >>>>> >>>>> 2011/6/7 Timo Sirainen : >>>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >>>>>>> Greats, I'm working on patch from this morning, but it's very hard to >>>>>>> debug on settings-parser >>>>>> >>>>>> I don't think you should need to touch that code. It's a bit difficult >>>>>> for me also to follow.. >>>>>> >>>>>>> How can I enable i_debug on settings-parser.c ? >>>>>> >>>>>> What do you mean? You could add i_debug() calls and it should work just >>>>>> the same as everywhere. >>>>>> >>>>>> Did you try the patch in my previous mail? I think that should be >>>>>> enough. You could then use: >>>>>> >>>>>> user_attrs = .., mailPlugins=+mail_plugins >>>>>> >>>>>> >>>>>> >>>>> >>>>> >>>>> >>>>> -- >>>>> Antonio P?rez-Aranda Alcaide >>>>> aperezaranda at yaco.es >>>>> >>>>> Yaco Sistemas S.L. >>>>> http://www.yaco.es/ >>>>> C/ Rioja 5, 41001 Sevilla >>>>> Tel?fono +34 954 50 00 57 >>>>> Fax ? ? ?+34 954 50 09 29 >>>>> >>>> >>>> >>>> >>>> -- >>>> Antonio P?rez-Aranda Alcaide >>>> aperezaranda at yaco.es >>>> >>>> Yaco Sistemas S.L. >>>> http://www.yaco.es/ >>>> C/ Rioja 5, 41001 Sevilla >>>> Tel?fono +34 954 50 00 57 >>>> Fax ? ? ?+34 954 50 09 29 >>>> >>> >>> >>> >>> -- >>> Antonio P?rez-Aranda Alcaide >>> aperezaranda at yaco.es >>> >>> Yaco Sistemas S.L. >>> http://www.yaco.es/ >>> C/ Rioja 5, 41001 Sevilla >>> Tel?fono +34 954 50 00 57 >>> Fax ? ? ?+34 954 50 09 29 >>> >> >> >> >> -- >> Antonio P?rez-Aranda Alcaide >> aperezaranda at yaco.es >> >> Yaco Sistemas S.L. >> http://www.yaco.es/ >> C/ Rioja 5, 41001 Sevilla >> Tel?fono +34 954 50 00 57 >> Fax ? ? ?+34 954 50 09 29 >> > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax ? ? ?+34 954 50 09 29 > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From dmiller at amfes.com Tue Jun 14 21:10:43 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Tue, 14 Jun 2011 11:10:43 -0700 Subject: [Dovecot] ACL's from userdb In-Reply-To: <4DF71979.8080006@es2eng.com> References: <4DF6777F.9010107@amfes.com> <4DF71979.8080006@es2eng.com> Message-ID: On 6/14/2011 1:19 AM, Willie Gillespie wrote: > On 6/13/2011 2:47 PM, Daniel L. Miller wrote: >> Using LDAP userdb/passdb. Is it possible to define a default set of >> ACL's at the userdb level, to provide access to shared mailboxes? How? > > You could maybe use acl_groups > > In Dovecot LDAP config: > user_attrs = some_ldap_attr=acl_groups > > Then give the groups the permissions you want the users to have. > I read that, and the wiki section mentioned groups - I still don't grasp it 100% yet. Are "acl_groups" a list of UNIX groups? Or are they defined somewhere else within Dovecot? -- Daniel From robert at schetterer.org Tue Jun 14 22:24:13 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 14 Jun 2011 21:24:13 +0200 Subject: [Dovecot] returned error 89 Message-ID: <4DF7B55D.6010303@schetterer.org> Hi Timo, i have very rare ( ultra rare....) failures like this with latest dovecot 2 log: Error: service(pop3-postlogin): child 16691 returned error 89 (Fatal failure) imap-postlogin: Error: script-login: Fatal: Internal error occurred. Refer to server log for more information. Jun 14 18:41:16 mail02 dovecot: log: Error: service(imap-postlogin): child 31645 returned error 89 (Fatal failure) any idea? the conf i allready posted with also rare lmtp error uid=error today first an only one seen Error: read(/var/run/dovecot/dict) failed: Timeout after 30 seconds lmtp(31698, ... at ...): Error: Internal quota calculation error -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From egbert at vandenbussche.nl Tue Jun 14 22:34:52 2011 From: egbert at vandenbussche.nl (Egbert Jan van den Bussche) Date: Tue, 14 Jun 2011 21:34:52 +0200 Subject: [Dovecot] high number of processes Message-ID: <4DF7B7DC.7060608@vandenbussche.nl> Hi, Sometimes a script kiddie tries to guess passwords on our mailserver (Ubuntu 10.04.2 LTS, postfix, dovecot 1.2.9, scanners, the standard stuff). That leads to a nagios message about the high number of processes. The number goes above 500. Nagios threshold is set to 250, which is more than enough for normal operation of this server. When are these processes supposed to die again? They seem to stay at the high count quite long. Is there a way to limit the generation of extra login processes? Can I tune the login_process... params a bit? I have then all on default. dovecot - n below: root at mail-dev:/etc/dovecot# dovecot -n # 1.2.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-32-server x86_64 Ubuntu 10.04.2 LTS log_path: /var/log/dovecot/error.log info_log_path: /var/log/dovecot/info.log log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s listen: *, [::] ssl_cert_file: /disk/site/etc/ssl/hobby.nl/hobby.nl.crt ssl_key_file: /disk/site/etc/ssl/hobby.nl/hobby.nl.key ssl_cipher_list: ALL:!LOW:!SSLv2:ALL:!aNULL:!ADH:!eNULL:!EXP:RC4+RSA:+HIGH:+MEDIUM disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login first_valid_uid: 200 mail_privileged_group: vmail mail_location: maildir:~/Maildir mmap_disable: yes dotlock_use_excl: no mail_nfs_storage: yes mail_nfs_index: yes mbox_write_locks: fcntl dotlock mail_executable(default): /usr/lib/dovecot/imap-wrapper.sh mail_executable(imap): /usr/lib/dovecot/imap-wrapper.sh mail_executable(pop3): /usr/lib/dovecot/pop3-wrapper.sh mail_plugins: convert autocreate mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 imap_client_workarounds(default): outlook-idle delay-newmail imap_client_workarounds(imap): outlook-idle delay-newmail imap_client_workarounds(pop3): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh lda: postmaster_address: postmaster deliver_log_format: msgid=%m: %$ rejection_subject: Rejected: %s rejection_reason: Your message to <%t> was automatically rejected:%n%r auth_socket_path: /var/run/dovecot/auth-master auth default: mechanisms: plain login realms: kader.hcc.nl hobby.nl default_realm: kader.hcc.nl cache_size: 1024 cache_ttl: 10 passdb: driver: pam args: failure_show_msg=yes cache_key=%u dovecot passdb: driver: sql args: /etc/dovecot/dovecot-sql.conf userdb: driver: sql args: /etc/dovecot/dovecot-sql.conf socket: type: listen client: path: /var/spool/postfix/private/dovecot-auth mode: 432 user: postfix group: postfix master: path: /var/run/dovecot/auth-master mode: 384 user: vmail group: vmail plugin: convert_mail: mbox:/disk/mail/convert/%n autocreate: Trash autocreate2: Sent autocreate3: Drafts autocreate4: Spam autosubscribe: Trash autosubscribe2: Sent autosubscribe3: Drafts autosubscribe4: Spam login_process defaults: #login_user = dovecot #login_process_size = 64 #login_process_per_connection = yes #login_processes_count = 3 #login_max_processes_count = 128 #login_max_connections = 256 lsof -n output (part of long list): dovecot-a 12941 root 17u unix 0xffff88012a457300 0t0 13606994 /var/run/dovecot/login/default dovecot-a 12941 root 18u unix 0xffff8800272bd800 0t0 13565904 /var/run/dovecot/login/default dovecot-a 12941 root 19u unix 0xffff8800a68a9800 0t0 13610586 /var/run/dovecot/login/default TNX for any advise! Egbert Jan HCC!Hobbynet, NL From robert at schetterer.org Tue Jun 14 22:36:26 2011 From: robert at schetterer.org (Robert Schetterer) Date: Tue, 14 Jun 2011 21:36:26 +0200 Subject: [Dovecot] returned error 89 In-Reply-To: <4DF7B55D.6010303@schetterer.org> References: <4DF7B55D.6010303@schetterer.org> Message-ID: <4DF7B83A.6090401@schetterer.org> Am 14.06.2011 21:24, schrieb Robert Schetterer: > Hi Timo, i have very rare ( ultra rare....) > failures like this > with latest dovecot 2 > > log: Error: service(pop3-postlogin): child 16691 returned error 89 > (Fatal failure) > > imap-postlogin: Error: script-login: Fatal: Internal error occurred. > Refer to server log for more information. > Jun 14 18:41:16 mail02 dovecot: log: Error: service(imap-postlogin): > child 31645 returned error 89 (Fatal failure) > > any idea? > > the conf i allready posted > with also rare lmtp error > uid=error > > today first an only one seen > > Error: read(/var/run/dovecot/dict) failed: Timeout after 30 seconds > lmtp(31698, ... at ...): Error: Internal quota calculation error > speculation , error 89 seems only happen during a rsync full system backup job does this make sense ? perhaps i should use more excludes i.e for /var/run/dovecot/* ... -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From dmiller at amfes.com Tue Jun 14 23:18:49 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Tue, 14 Jun 2011 13:18:49 -0700 Subject: [Dovecot] ACL Groups Message-ID: From the wiki: ACL groups support works by returning a comma-separated acl_groups extra field from userdb, which contains all the groups the user belongs to. User's UNIX groups have no effect on ACLs (you can "enable" them by using a special post-login script ). I've read that over several times - I still don't understand that. Are "ACL Groups" defined and managed by Dovecot - and described somewhere else in the docs - or are they UNIX groups that previously had no affect on mail access but by being listed in the "acl_groups" field they now have relevance? -- Daniel From stephan at rename-it.nl Wed Jun 15 00:01:16 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 14 Jun 2011 23:01:16 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4DF7169D.1080602@atpss.net> References: <4DF7169D.1080602@atpss.net> Message-ID: <4DF7CC1C.60807@rename-it.nl> Op 14-6-2011 10:06, Claudio Prono schreef: > Hello all, > > I am testing Dovecot 2.0.13, with sieve for the vacation. > > I have some problems with the :regex as i can see... > > An example: I didn't know Horde Ingo produces such horribly ugly Sieve code; the header checks are unnecessary and the regexes are highly convolved and should probably be substituted with a `date' test. > No vacation is performed..... > > Then, if i modify the script commenting all the regex for the date, the > result is the following: > But the date is right: > > date > Fri Jun 10 17:22:14 CEST 2011 > > So, what is wrong? Any help is well accepted, that script with dovecot > 1.x is working correctly.... So, what is changed in dovecot 2.0 sieve? I'm currently on vacation and I can't quite get my head around these regexes. The best thing you can do now is debug it in more detail by using the sieve-test trace debugging features (using -t and -T options), as documented in the man page. This way, you can see what is matched how and which actions are performed. Then, you can narrow it down to one specific failing test. Regards, Stephan. From peter at ifm.liu.se Wed Jun 15 15:40:51 2011 From: peter at ifm.liu.se (Peter Eriksson) Date: Wed, 15 Jun 2011 14:40:51 +0200 Subject: [Dovecot] Waiting for authentication process to respond.. Message-ID: <4DF8A853.8050905@ifm.liu.se> Hmm... I'm seeing a lot of: > * OK Waiting for authentication process to respond.. > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=GSSAPI AUTH=GSS-SPNEGO] Welcome to the IFM Dovecot Mail Server. when IMAP clients connect to our server (ie that "Waiting for.." message before the login OK message). Now, most clients seems to handle this extra information message just fine, but it still is annoying me. It doesn't appear all the time, but pretty often... What can I adjust/fix in order to make it go away? System: Sun Fire X4240, 32GB RAM, 2 Quad-Core Opteron 2356 Solaris 10 Update 9 Dovecot 2.0.13 Maildir on local (ZFS) storage Normally about 200-300 unique users connected, around 400-600 mail processes. -- Peter Eriksson Phone: +46-705-18 27 86 Computer Systems Manager, IFM, Link?ping University, Sweden From linuxmail at 4lin.net Wed Jun 15 15:50:10 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Wed, 15 Jun 2011 14:50:10 +0200 Subject: [Dovecot] doveadm who: Please Headline to STDout, not to STDERR Message-ID: <1308142210.22320.222.camel@pcdenny> hi, I've created a small script to get a sum from the users and sessions (table username and table "#"), but it is annoying that the headline "username # proto (pids) (ips)" goes to STDERR, but the normal output to STDOUT. It would be nice, if both goes to the same STD :-) cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part URL: From tss at iki.fi Wed Jun 15 16:25:11 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 15 Jun 2011 16:25:11 +0300 Subject: [Dovecot] doveadm who: Please Headline to STDout, not to STDERR In-Reply-To: <1308142210.22320.222.camel@pcdenny> References: <1308142210.22320.222.camel@pcdenny> Message-ID: <91ACF5A8-BCEB-4FD0-863B-CEE4911585E1@iki.fi> On 15.6.2011, at 15.50, Denny Schierz wrote: > I've created a small script to get a sum from the users and sessions > (table username and table "#"), but it is annoying that the headline > "username # proto (pids) (ips)" goes to STDERR, but the normal output > to STDOUT. > > It would be nice, if both goes to the same STD :-) That prevents sorting the output. You can always 2>&1 From harenberg at physik.uni-wuppertal.de Wed Jun 15 16:27:48 2011 From: harenberg at physik.uni-wuppertal.de (Torsten Harenberg) Date: Wed, 15 Jun 2011 15:27:48 +0200 Subject: [Dovecot] Per-user "Seen" flags on public folder In-Reply-To: <27661D40-A8C1-4661-B713-5E01327E415A@physik.uni-wuppertal.de> References: <27661D40-A8C1-4661-B713-5E01327E415A@physik.uni-wuppertal.de> Message-ID: <5D8CC3DE-1EC2-4B72-A20A-3A15063E0972@physik.uni-wuppertal.de> Sorry for the noise.. forgot to set the correct right in the dovecot-acl file.. :( Regards, Torsten -- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> <> <> <> Dr. Torsten Harenberg harenberg at physik.uni-wuppertal.de <> <> Bergische Universitaet <> <> FB C - Physik Tel.: +49 (0)202 439-3521 <> <> Gaussstr. 20 Fax : +49 (0)202 439-2811 <> <> 42097 Wuppertal <> <> <> <><><><><><><>< Of course it runs NetBSD http://www.netbsd.org ><> From apm at one.com Wed Jun 15 16:42:29 2011 From: apm at one.com (Peter Mogensen) Date: Wed, 15 Jun 2011 15:42:29 +0200 Subject: [Dovecot] URLAUTH-patch, BSD specific? Message-ID: <4DF8B6C5.6090603@one.com> Hi, I notice that the Apple patched branch of Dovecot 2.0 with URLAUTH fails to compile on Linux. The file src/plugins/urlauth/urlauth-keys.c uses open(2) with O_EXLOCK, which to my knowledge is BSD specific. Is that a known problem? /Peter From Juergen.Obermann at hrz.uni-giessen.de Wed Jun 15 17:15:23 2011 From: Juergen.Obermann at hrz.uni-giessen.de (=?iso-8859-1?b?SvxyZ2Vu?= Obermann) Date: Wed, 15 Jun 2011 16:15:23 +0200 Subject: [Dovecot] ZFS Filesystem Quota under Solaris 10 and Sparc Message-ID: <20110615161523.12111rd8ey2mv2v4@webmail.hrz.uni-giessen.de> Hallo. Filesystem quotas used to work well under Solaris 9 and ufs filesystems on the Sparc platform even with two rules for the folders in the users home directories /home/group/user and the separate filesystem /var/mail holding the inboxes: plugin { quota = fs:Home-Verzeichnis:noenforcing quota2 = fs:INBOX:noenforcing:mount=/var/mail } Since we upgraded last year to Solaris 10 with zfs filesystems on our Sparc server still using a similar setup with separate filesystems for home directories and inboxes we have no working quota plugin anymore. Currently we use dovecot 2.0.13. Are there any plans or whishes to get the filesystem quota code working again under zfs and Solaris? Best whishes, J?rgen -- Hochschulrechenzentrum der | Mail: Juergen.Obermann at hrz.uni-giessen.de Justus-Liebig-Universitaet | WWW: http://www.uni-giessen.de/obermann/ Heinrich-Buff-Ring 44 | Tel: 0641-99-13054 (0641-99-13001) D-35392 Giessen, Germany | Fax: 0641-99-13009 From michael.abbott at apple.com Wed Jun 15 18:18:22 2011 From: michael.abbott at apple.com (Mike Abbott) Date: Wed, 15 Jun 2011 10:18:22 -0500 Subject: [Dovecot] URLAUTH-patch, BSD specific? In-Reply-To: <4DF8B6C5.6090603@one.com> References: <4DF8B6C5.6090603@one.com> Message-ID: > The file src/plugins/urlauth/urlauth-keys.c uses open(2) with O_EXLOCK, which to my knowledge is BSD specific. Thanks for catching that. I guess that code should change to open the file first and then lock it. From pch0317 at gmail.com Wed Jun 15 22:05:43 2011 From: pch0317 at gmail.com (pch0317) Date: Wed, 15 Jun 2011 20:05:43 +0100 Subject: [Dovecot] diacritic marks in password Message-ID: <4DF90287.90503@gmail.com> Hi, I have dovecot 2.0.beta6 (on RedHat 6) and my user uses thunderbird 3.1.10 (on Windows XP). I use authentication via LDAP (Windows server 2003 AD). When user use in password diacritic marks (?,?,?,?,?,?) authentication failed. What can I do? Thanks From CMarcus at Media-Brokers.com Wed Jun 15 22:11:13 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 15 Jun 2011 15:11:13 -0400 Subject: [Dovecot] diacritic marks in password In-Reply-To: <4DF90287.90503@gmail.com> References: <4DF90287.90503@gmail.com> Message-ID: <4DF903D1.6010302@Media-Brokers.com> On 2011-06-15 3:05 PM, pch0317 wrote: > > I have dovecot 2.0.beta6 > What can I do? Upgrade (2.0b6 is WAY too old to even think about trying to debug), then if you're still having problems come back again and provide your config details and maybe some logs of a failed auth attempt... -- Best regards, Charles From lists at wildgooses.com Thu Jun 16 00:34:44 2011 From: lists at wildgooses.com (Ed W) Date: Wed, 15 Jun 2011 22:34:44 +0100 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF70CF0.1060106@noa.gr> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> <4DF70CF0.1060106@noa.gr> Message-ID: <4DF92574.4090302@wildgooses.com> On 14/06/2011 08:25, Nikolaos Milas wrote: > I would like to add that, although fail2ban is great and we are using it > for a long time, it doesn't support IPv6; now that our servers (we are > using CentOS 5.6 x86_64) and networks are IPv6 enabled, this is a > problem (but hopefully IPv6-based attacks should not be very common > yet). We have not implemented a solution for protecting pop3/imap over > IPv6 yet, but I have recently found this article: > http://www.roedie.nl/tag/fail2ban/ which suggests autofwd: > http://freshmeat.net/projects/autofwd which might provide a good > solution. It seems versatile and supports IPv6. > > If anybody has done or can do an implementation on Linux (using iptables > AND ip6tables) for pop3/imap, pop3s/imaps and share it, it will be most > welcome and very useful. I don't see why fail2ban would have anything to do with ipv6 since it simply runs a script when something needs doing? Just adapt your script? Not having tried it, but possibly the regexps need tweaking also? On a related note, recent kernels (and old kernels can build a module) implement "ipset". This is a way to implement a named hash of IPs/Ports/MACs, etc. The point is to use a single iptables rule to do something with your ipset, then you have the ability to dynamically alter the ipset as you will without needing to reload iptables rules (I believe that iptables is still unable to be altered dynamically? Each time you *think* you are inserting a rule, actually you are dropping the entire ruleset, then reinserting the entire new ruleset with one extra rule. This creates a window of opportunity each time you innocently insert a new rule. Further it explains the O(n^2) speed of running "iptables -A" or similar) For these reasons ipset seems like a great addition! Ed W From peter at bellfamily.org.uk Thu Jun 16 06:50:29 2011 From: peter at bellfamily.org.uk (Peter Bell) Date: Thu, 16 Jun 2011 11:50:29 +0800 Subject: [Dovecot] Removal of mailist duplicates? Message-ID: <4DF97D85.2020207@bellfamily.org.uk> I am using mpop to fetch mail from my service provider (who use dovecot). I use dovecot to hold all my mail on a local slackware server, with sieve filters, based on 'List-Id', directing mailist postings to their own folders. I use thunderbird to read my mail on an ubuntu desktop. When I receive a reply to a posting I make to a mailist (such as this one), replies I receive are usually sent to me with cc to the list. I would expect, then, to receive the message twice - once in my personal mailbox, and once to the mailist folder. However, this doesn't happen - I only see the posting in the mailist folder. Can anyone tell me at which stage in the process the other message is being supressed? -- ------------------------------------------------------------------- Peter Bell Mob: +63 (0) 9287 340 343 Tagum City, Philippines. Tel: +63 (0) 84 400 5085 email/msn: peter at bellfamily.org.uk Tel: +44 (0) 118 331 0000 From richard.gliebe at fhv.at Thu Jun 16 08:14:56 2011 From: richard.gliebe at fhv.at (Richard Gliebe) Date: Thu, 16 Jun 2011 07:14:56 +0200 Subject: [Dovecot] dovecot-managesieve In-Reply-To: <1307970710.10421.826.camel@hurina> References: <4DF20B07.5000209@fhv.at> <1307970710.10421.826.camel@hurina> Message-ID: <4DF99150.4020406@fhv.at> On 6/13/11 3:11 PM Timo Sirainen wrote: Hi, > Looks to me like the managesieve version isn't compatible with this > Dovecot version. I guess the earlier managesieve binaries didn't give a > better error message about mismatching versions. Which managesieve version is compatible with my dovecot version and where are the Repos? At the moment these packages are installed (with "yum install") on our CentOS release 5.6 (Final) box: dovecot-1.1.20-1_98.el5 dovecot-sieve-devel-0.1.18-7.el5 dovecot-managesieve-0.11.12-0_5.1.el5 dovecot-sieve-cmu-1.1.8-11.el5 dovecot-sieve-0.1.18-7.el5 [/etc/yum.conf] # PUT YOUR REPOS HERE OR IN separate files named file.repo # in /etc/yum.repos.d # [vanderkooij] name=Vanderkooij.org baseurl=http://yum.vanderkooij.org/el5/$basearch/ enable=1 gpgkey=http://yum.vanderkooij.org/RPM-GPG-KEY-HvdK.asc gpgcheck=1 # [atrpms] name=Fedora Core $releasever - $basearch - ATrpms baseurl=http://dl.atrpms.net/el$releasever-$basearch/atrpms/stable gpgkey=http://ATrpms.net/RPM-GPG-KEY.atrpms gpgcheck=1 many thanks Richard From wgillespie+dovecot at es2eng.com Thu Jun 16 08:42:08 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Wed, 15 Jun 2011 23:42:08 -0600 Subject: [Dovecot] ACL Groups In-Reply-To: References: Message-ID: <4DF997B0.6040908@es2eng.com> On 6/14/2011 2:18 PM, Daniel L. Miller wrote: > From the wiki: > > ACL groups support works by returning a comma-separated acl_groups extra > field from userdb, > which contains all the groups the user belongs to. User's UNIX groups > have no effect on ACLs (you can "enable" them by using a special > post-login script ). > > > I've read that over several times - I still don't understand that. Are > "ACL Groups" defined and managed by Dovecot - and described somewhere > else in the docs - or are they UNIX groups that previously had no affect > on mail access but by being listed in the "acl_groups" field they now > have relevance? That is a bit confusing. What it is trying to say: For one, you have acl_groups. For two, you have UNIX groups. They are not related at all. If you want them to be related, you can use a special post-login script. From komodo at uvt.cz Thu Jun 16 12:03:32 2011 From: komodo at uvt.cz (komodo) Date: Thu, 16 Jun 2011 11:03:32 +0200 Subject: [Dovecot] Multiple values found for 'user', using value Message-ID: <201106161103.32370.komodo@uvt.cz> Hi since latest upgrade on my machine, i have lot of warnings in my log, and i found that it is due this change http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html Is there any option to disable these warnings ? Yes we have multiple UIDs so these warnings bothers me. Many thanks Regards Martin From nmilas at noa.gr Thu Jun 16 13:12:15 2011 From: nmilas at noa.gr (Nikolaos Milas) Date: Thu, 16 Jun 2011 13:12:15 +0300 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF92574.4090302@wildgooses.com> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> <4DF70CF0.1060106@noa.gr> <4DF92574.4090302@wildgooses.com> Message-ID: <4DF9D6FF.7090701@noa.gr> On 16/6/2011 12:34 ??, Ed W wrote: > I don't see why fail2ban would have anything to do with ipv6 since it > simply runs a script when something needs doing? Just adapt your script? > Not having tried it, but possibly the regexps need tweaking also? Thanks Ed. You could be right. It could work, *if* fail2ban engine does not do any particular internal processing with IP addresses in order to implement the rules logic (which I doubt; for example, when it adds iptables rules, it refers to ip address as - see below). In the official fail2ban site: http://www.fail2ban.org/wiki/index.php/Fail2ban:Community_Portal#IPv6, we don't see any solution related to IPv6. If it's feasible, I wonder why we can't find anything about that in the Internet or in fail2ban site. No one has done it yet? On the contrary, we can find ample "complaints" that fail2ban won't work with IPv6. Nowhere can we find ipv6 "filters" and "actions" for fail2ban. If someone (has time and) is sufficiently competent with iptables/ip6tables, then he could try to prepare such actions (and create filters with regex expressions to catch ipv6 events from logs too) and then give it a try. For example, one could then add in jail.conf (after creating dovecot-pop3imap-ipv6.conf and ip6tables-multiport.conf): [dovecot-pop3imap-ipv6] enabled = true filter = dovecot-pop3imap-ipv6 action = ip6tables-multiport[name=dovecot-pop3imap, port="pop3,pop3s,imap,imaps", protocol=tcp] logpath = /var/log/dovecot.log maxretry = 10 findtime = 600 bantime = 1800 My guess is that fail2ban engine must be extended to "understand" ipv6 addresses and handle ip6tables appropriately. > On a related note, recent kernels (and old kernels can build a module) > implement "ipset". This is a way to implement a named hash of > IPs/Ports/MACs, etc. The point is to use a single iptables rule to do > something with your ipset, then you have the ability to dynamically > alter the ipset as you will without needing to reload iptables rules It sounds interesting. I'll take a look on it, when I have time. Still, one would have to update fail2ban (and/or other software) to use ipset instead of standard iptables (which will take at least some effort). > (I believe that iptables is still unable to be altered dynamically? Each > time you *think* you are inserting a rule, actually you are dropping the > entire ruleset, then reinserting the entire new ruleset with one extra > rule. This creates a window of opportunity each time you innocently > insert a new rule. Further it explains the O(n^2) speed of running > "iptables -A" or similar) Actually, iptables can be altered dynamically; For example, the iptables-multiport action does: actionban = iptables -I fail2ban- 1 -s -j DROP actionunban = iptables -D fail2ban- -s -j DROP "iptables -A" runs only when fail2ban starts. Nick -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6762 bytes Desc: S/MIME Cryptographic Signature URL: From tom at whyscream.net Thu Jun 16 13:24:41 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Thu, 16 Jun 2011 12:24:41 +0200 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF9D6FF.7090701@noa.gr> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> <4DF70CF0.1060106@noa.gr> <4DF92574.4090302@wildgooses.com> <4DF9D6FF.7090701@noa.gr> Message-ID: <4DF9D9E9.5030400@whyscream.net> On 16/06/11 12:12, Nikolaos Milas wrote: > On 16/6/2011 12:34 ??, Ed W wrote: > >> I don't see why fail2ban would have anything to do with ipv6 since it >> simply runs a script when something needs doing? Just adapt your script? >> Not having tried it, but possibly the regexps need tweaking also? > > Thanks Ed. You could be right. It could work, *if* fail2ban engine does > not do any particular internal processing with IP addresses in order to > implement the rules logic (which I doubt; for example, when it adds > iptables rules, it refers to ip address as - see below). In the > official fail2ban site: > http://www.fail2ban.org/wiki/index.php/Fail2ban:Community_Portal#IPv6, > we don't see any solution related to IPv6. > > If it's feasible, I wonder why we can't find anything about that in the > Internet or in fail2ban site. No one has done it yet? On the contrary, > we can find ample "complaints" that fail2ban won't work with IPv6. There has been some discussion on the fail2ban mailing list about ipv6 support implementations lately. Please see http://sourceforge.net/mailarchive/forum.php?forum_name=fail2ban-users (thank you SF for the awesome UI). > Nowhere can we find ipv6 "filters" and "actions" for fail2ban. As long as fail2ban has no support for catching ipv6 ip addresses, there is no use for a filter that can handle these. Adaptation of the iptables actions to ip6tables would be trivial, though. > If someone (has time and) is sufficiently competent with > iptables/ip6tables, then he could try to prepare such actions (and > create filters with regex expressions to catch ipv6 events from logs > too) and then give it a try. > Again, most of the pros, cons and implementation issues came along on the mailing list. I suggest that you take your fail2ban issue there, since this is no dovecot issue :) -- Regards, Tom From lists at wildgooses.com Thu Jun 16 14:13:22 2011 From: lists at wildgooses.com (Ed W) Date: Thu, 16 Jun 2011 12:13:22 +0100 Subject: [Dovecot] limiting number of login attempts from same ip In-Reply-To: <4DF9D6FF.7090701@noa.gr> References: <20110610112226.30883ojom7znip24@webmail.hrz.uni-giessen.de> <1307971370.10421.833.camel@hurina> <20110613234957.1710176mmih3e7sw@webmail.hrz.uni-giessen.de> <4DF68B5A.5050609@whyscream.net> <4DF70CF0.1060106@noa.gr> <4DF92574.4090302@wildgooses.com> <4DF9D6FF.7090701@noa.gr> Message-ID: <4DF9E552.3050901@wildgooses.com> Hi > If it's feasible, I wonder why we can't find anything about that in the > Internet or in fail2ban site. No one has done it yet? On the contrary, > we can find ample "complaints" that fail2ban won't work with IPv6. Hmm, well on cursory inspection I agree there are some hard coded assumptions. Doesn't look dramatically difficult to fix, but not something I was planning to look at myself. See: /usr/share/fail2ban/server/filter.py for: IP_CRE = re.compile("^(?:\d{1,3}\.){3}\d{1,3}$") Also note the functions in the same file to check for duplicate IPs and similar. >> (I believe that iptables is still unable to be altered dynamically? Each >> time you *think* you are inserting a rule, actually you are dropping the >> entire ruleset, then reinserting the entire new ruleset with one extra >> rule. This creates a window of opportunity each time you innocently >> insert a new rule. Further it explains the O(n^2) speed of running >> "iptables -A" or similar) > > Actually, iptables can be altered dynamically; For example, the > iptables-multiport action does: > actionban = iptables -I fail2ban- 1 -s -j DROP > actionunban = iptables -D fail2ban- -s -j DROP > > "iptables -A" runs only when fail2ban starts. Please re-read my previous email: My understanding is that "iptables -[IA]" works internally by first downloading and then clearing the entire old kernel rule list. Then some time later it inserts a new complete rule list including the new rule. It's not clear that this swap is atomic and hence there is a small window of opportunity when you have zero firewall rules in place... If you find this scary then please do your own research and mitigate as you feel appropriate... ...So back to my suggestion of investigating using ipsets rather than changing any iptables rules... This makes rules properly dynamic and there is no reload involved Kind regards Ed W From ronleach at tesco.net Thu Jun 16 14:38:56 2011 From: ronleach at tesco.net (Ron Leach) Date: Thu, 16 Jun 2011 12:38:56 +0100 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DF97D85.2020207@bellfamily.org.uk> References: <4DF97D85.2020207@bellfamily.org.uk> Message-ID: <4DF9EB50.4050803@tesco.net> Peter Bell wrote: > > When I receive a reply to a posting I make to a mailist (such as this > one), replies I receive are usually sent to me with cc to the list. > > I would expect, then, to receive the message twice - once in my personal > mailbox, and once to the mailist folder. However, this doesn't happen - > I only see the posting in the mailist folder. > > Can anyone tell me at which stage in the process the other message is > being supressed? > I usually reply (all) to lists AND suppress the copy going to the OP. Such as in this case. I would expect you NOT to receive a personal reply. 'I' am suppressing the copy (in this case). I would not be surprised if other people do that. OT: Sometimes, people posting replies only do 'reply', not 'reply all', and so their posting never hits the list and, as a result, others who are following the thread sometimes miss postings. regards, Ron From CMarcus at Media-Brokers.com Thu Jun 16 14:38:09 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 16 Jun 2011 07:38:09 -0400 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DF9EB50.4050803@tesco.net> References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> Message-ID: <4DF9EB21.5010507@Media-Brokers.com> On 2011-06-16 7:38 AM, Ron Leach wrote: > I usually reply (all) to lists AND suppress the copy going to the OP. I used to have to do that, so I sure was glad when Thunderbird implemented the Reply-To-List function... now I just press CTRL-SHIFT-L, and if nothing happens I know the list is one of the brain dead ones that doesn't have proper list headers (like the yahoo lists), and then I fall back to the old CTRL-SHIFT-R (Reply All) and then delete the one to the OP... -- Best regards, Charles From joseba.torre at ehu.es Thu Jun 16 14:56:28 2011 From: joseba.torre at ehu.es (Joseba Torre) Date: Thu, 16 Jun 2011 13:56:28 +0200 Subject: [Dovecot] diacritic marks in password In-Reply-To: <4DF903D1.6010302@Media-Brokers.com> References: <4DF90287.90503@gmail.com> <4DF903D1.6010302@Media-Brokers.com> Message-ID: <201106161356.28091.joseba.torre@ehu.es> On Mi?rcoles 15 Junio 2011 21:11:13 Charles Marcus escribi?: > On 2011-06-15 3:05 PM, pch0317 wrote: > > I have dovecot 2.0.beta6 > > > > > What can I do? > > Upgrade (2.0b6 is WAY too old to even think about trying to debug), then > if you're still having problems come back again and provide your config > details and maybe some logs of a failed auth attempt... It's not even the current version in RH; now it's 2.0.9. -- Joseba Torre. Vicegerencia de TICs, ?rea de Explotaci?n From vegard at svanberg.no Thu Jun 16 17:08:33 2011 From: vegard at svanberg.no (Vegard Svanberg) Date: Thu, 16 Jun 2011 16:08:33 +0200 Subject: [Dovecot] Vacation -- reply to another address than envelope from Message-ID: <20110616140833.GX3399@svanberg.no> Vacation (Sieve) replies to the envelope address. However, I have a customer which receive e-mails from a service which sends e-mails on behalf of a user (submitted through a web form). So an e-mail would be like (envelope from and from-header is webformfromwhatever at foobar.com): From: webformfromwhatever at foobar.com To: mycustomer at hisdomain.com Reply-To: usersrealmailaddress at example.com I need the reply to go to the reply-to address. Can I handle this with Sieve? -- Vegard Svanberg [*Takapa at IRC (EFnet)] From peter at bellfamily.org.uk Thu Jun 16 17:40:56 2011 From: peter at bellfamily.org.uk (Peter Bell) Date: Thu, 16 Jun 2011 22:40:56 +0800 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DF9EB21.5010507@Media-Brokers.com> References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> <4DF9EB21.5010507@Media-Brokers.com> Message-ID: <4DFA15F8.1080700@bellfamily.org.uk> On Thursday, 16 June, 2011 07:38 PM, Charles Marcus wrote: > On 2011-06-16 7:38 AM, Ron Leach wrote: >> I usually reply (all) to lists AND suppress the copy going to the OP. > > I used to have to do that, so I sure was glad when Thunderbird > implemented the Reply-To-List function... now I just press CTRL-SHIFT-L, > and if nothing happens I know the list is one of the brain dead ones > that doesn't have proper list headers (like the yahoo lists), and then I > fall back to the old CTRL-SHIFT-R (Reply All) and then delete the one to > the OP... > Indeed, both respondents to my post have taken care to only reply to list, however, here is an extract from the headers of an old post: > To: Peter Bell > In-Reply-To: <4DCA7AC2.7010801 at bellfamily.org.uk> > References: <4DCA0409.4030702 at bellfamily.org.uk> > <2D2123E9-1CDC-4563-95B8-4575771DEC00 at iki.fi> > <4DCA7AC2.7010801 at bellfamily.org.uk> > Content-Type: text/plain; charset="ISO-8859-15" > Date: Wed, 11 May 2011 15:26:32 +0300 > Message-ID: <1305116792.10421.191.camel at hurina> > Mime-Version: 1.0 > X-Mailer: Evolution 2.32.2 > Content-Transfer-Encoding: 7bit > Cc: Dovecot Mailing List > Subject: Re: [Dovecot] Error messages in log > X-BeenThere: dovecot at dovecot.org > X-Mailman-Version: 2.1.14 > Precedence: list > Reply-To: Dovecot Mailing List > List-Id: Dovecot Mailing List I would have expected to see two copies of this post - preferably one in my normal inbox, the other redirected by pigeonhole, to my dovecot mailist folder. However, I could only find a single copy (in my dovecot folder) so have to believe that something, somewhere, eliminated the duplicate. My curiosity was aroused because I received a reply on another mailist, before I had configured a separate folder and sieve filter for it. In that case, the message which survived was the one sent directly to my inbox - the copy to the mailist disappeared. This makes me think the the duplicate removal must be happening somewhere in pigeonhole/dovecot/thunderbird since none of the stages before those would have any knowledge about the existence of the separate folder. However, I have have searched in the configurations, and failed to find any configuration setting which controls duplicate removal. I'm not unhappy that I only see a single copy, but I would like to know what became of the other one - I feel uneasy when things disappear without explanation! BTW, I used Thunderbird's 'reply list' button when posting this, so the only copy should be the one to the mailist. -- ------------------------------------------------------------------- Peter Bell Mob: +63 (0) 9287 340 343 Tagum City, Philippines. Tel: +63 (0) 84 400 5085 email/msn: peter at bellfamily.org.uk Tel: +44 (0) 118 331 0000 From CMarcus at Media-Brokers.com Thu Jun 16 17:49:04 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 16 Jun 2011 10:49:04 -0400 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DFA15F8.1080700@bellfamily.org.uk> References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> <4DF9EB21.5010507@Media-Brokers.com> <4DFA15F8.1080700@bellfamily.org.uk> Message-ID: <4DFA17E0.5070901@Media-Brokers.com> On 2011-06-16 10:40 AM, Peter Bell wrote: > I would have expected to see two copies of this post - preferably one in > my normal inbox, the other redirected by pigeonhole, to my dovecot > mailist folder. However, I could only find a single copy (in my dovecot > folder) so have to believe that something, somewhere, eliminated the > duplicate. To the best of my knowledge, Dovecot does NOT do message de-duplication like this - I've even seen questions about it since Cyrus apparently has this capability, and seen Timo say dovecot does not do this at this time. So, I'd be looking elsewhere... -- Best regards, Charles From montkemp at yahoo.ca Thu Jun 16 17:53:30 2011 From: montkemp at yahoo.ca (Monte Stevens) Date: Thu, 16 Jun 2011 11:53:30 -0300 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: <4DFA17E0.5070901@Media-Brokers.com> References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> <4DF9EB21.5010507@Media-Brokers.com> <4DFA15F8.1080700@bellfamily.org.uk> <4DFA17E0.5070901@Media-Brokers.com> Message-ID: On Thu, Jun 16, 2011 at 10:49:04AM -0400, Charles Marcus wrote: > On 2011-06-16 10:40 AM, Peter Bell wrote: > > I would have expected to see two copies of this post - preferably one in > > my normal inbox, the other redirected by pigeonhole, to my dovecot > > mailist folder. However, I could only find a single copy (in my dovecot > > folder) so have to believe that something, somewhere, eliminated the > > duplicate. > > To the best of my knowledge, Dovecot does NOT do message de-duplication > like this - I've even seen questions about it since Cyrus apparently has > this capability, and seen Timo say dovecot does not do this at this time. > > So, I'd be looking elsewhere... The list is run by mailman. There is a mailman setting for allowing / blocking duplicates. -- Monte From japi76 at gmail.com Thu Jun 16 18:01:15 2011 From: japi76 at gmail.com (Javier) Date: Thu, 16 Jun 2011 12:01:15 -0300 Subject: [Dovecot] problem with dovecot and sieve Message-ID: Hi We've been using dovecot with great success so far. We are trying to add sieve support for our users. We enabled managesieve and users can define rules from the webmail (roundcube) with sieverules plugin for roundcube. Everything goes ok, but here's a problem I couldn't figure yet. When I define a redirect rule, the mail is forwarded but a local copy is stored too. Weird thing is that the logs say redirecting failed but the mail gets forwarded. Let me show you some of this (personal data masked): # cat .dovecot.sieve ## Generated by Roundcube Webmail SieveRules Plugin ## # rule:[teste] if anyof (true) { redirect "xxxxx at xxxxxxxxx"; } And the log from the user's sieve log sieve: info: started log at Jun 15 18:05:49. error: msgid=: failed to redirect message to (refer to server log for more information). syslog: Jun 16 11:40:26 mailstore5 dovecot: lmtp(8458, xxxxxxx at xxxxxx.com): Error: /eMhMNoV+k0KIQAAmtbU9A: sieve: execution of script /var/maildir++/99/xxxxxx at xxxxxxxx/.dovecot.sieve failed, but implicit keep was successful (user logfile /var/maildir++/99/xxxxxx at xxxxx.com/.dovecot.sieve.log may reveal additional details) And gets redirected anyway Jun 16 11:40:26 mailstore5 postfix/smtp[13041]: CB4D1C79FE: to=, delay=0.12, delays=0.02/0/0.01/0.08, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as E24FAB0880) There's no explicit keep anywhere in the sieve rule, nor a global rule, so Im confused, the email should be forwarded only. The error message confuses me too, as it says failed but the mail gets through. dovecot -n # 2.0.9: /opt/mail/dovecot/etc/dovecot.conf # OS: Linux 2.6.36.2 x86_64 Debian 5.0.8 auth_mechanisms = plain login base_dir = /opt/mail/dovecot/var disable_plaintext_auth = no listen = * mail_location = maildir:~/Maildir mail_plugins = create_mbox quota managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include varia passdb { args = socket=/opt/mail/auth_server/var/socket timeout=10 driver = courier } plugin { quota = maildir:User quota quota_rule = Trash:ignore quota_rule2 = Spam:ignore sieve = ~/.dovecot.sieve } protocols = imap pop3 lmtp sieve service imap-login { inet_listener imap { port = 30143 ssl = no } } service lmtp { inet_listener lmtp { address = 0.0.0.0 port = 30024 } process_min_avail = 4 } service pop3-login { inet_listener pop3 { port = 30110 } } ssl = no ssl_parameters_regenerate = 0 userdb { args = socket=/opt/mail/auth_server/var/socket timeout=10 driver = courier } protocol pop3 { mail_plugins = create_mbox quota maildiraccess pop3_client_workarounds = outlook-no-nuls oe-ns-eoh pop3_reuse_xuidl = no pop3_save_uidl = no pop3_uidl_format = %f } protocol imap { mail_plugins = create_mbox quota imap_quota maildiraccess } protocol lmtp { mail_plugins = create_mbox quota sieve } protocol sieve { mail_debug = yes } Your help is appreciated. Thanks! Javier From CMarcus at Media-Brokers.com Thu Jun 16 18:21:29 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Thu, 16 Jun 2011 11:21:29 -0400 Subject: [Dovecot] Removal of mailist duplicates? In-Reply-To: References: <4DF97D85.2020207@bellfamily.org.uk> <4DF9EB50.4050803@tesco.net> <4DF9EB21.5010507@Media-Brokers.com> <4DFA15F8.1080700@bellfamily.org.uk> <4DFA17E0.5070901@Media-Brokers.com> Message-ID: <4DFA1F79.8060402@Media-Brokers.com> On 2011-06-16 10:53 AM, Monte Stevens wrote: > On Thu, Jun 16, 2011 at 10:49:04AM -0400, Charles Marcus wrote: >> To the best of my knowledge, Dovecot does NOT do message >> de-duplication like this - I've even seen questions about it since >> Cyrus apparently has this capability, and seen Timo say dovecot >> does not do this at this time. >> >> So, I'd be looking elsewhere... > The list is run by mailman. There is a mailman setting for allowing / > blocking duplicates. Yes, but that setting suppresses the LIST copy, not the INDIVIDUAL copy... Peter was missing the INDIVIDUAL copy... -- Best regards, Charles From japi76 at gmail.com Thu Jun 16 19:24:16 2011 From: japi76 at gmail.com (Javier) Date: Thu, 16 Jun 2011 13:24:16 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: Message-ID: Maybe it is useful to know, that vacation does the same thing, an error in the logs but the response arrives to the sender. Log file also show some error with waitpid() Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxx at xxxxxxx.com): Error: waitpid() failed: No child processes Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxxxx at xxxxxx.com): Error: +F/dFJQm+k0MIQAAmtbU9A: sieve: msgid=: failed to send vacation response to (refer to server log for more information) Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxxxx at xxxxxx.com): +F/dFJQm+k0MIQAAmtbU9A: sieve: msgid=: sent vacation response to Thanks Javier On Thu, Jun 16, 2011 at 12:01 PM, Javier wrote: > Hi > > We've been using dovecot with great success so far. We are trying to > add sieve support for our users. > We enabled managesieve and users can define rules from the webmail > (roundcube) with sieverules plugin for roundcube. > > Everything goes ok, but here's a problem I couldn't figure yet. > > When I define a redirect rule, the mail is forwarded but a local copy > is stored too. Weird thing is that the logs say redirecting failed but > the mail gets forwarded. Let me show you some of this (personal data > masked): > > # cat .dovecot.sieve > ## Generated by Roundcube Webmail SieveRules Plugin ## > # rule:[teste] > if anyof (true) > { > ? ? ? ?redirect "xxxxx at xxxxxxxxx"; > } > > And the log from the user's sieve log > > sieve: info: started log at Jun 15 18:05:49. > error: msgid=: > failed to redirect message to (refer to server log > for more information). > > syslog: > > Jun 16 11:40:26 mailstore5 dovecot: lmtp(8458, xxxxxxx at xxxxxx.com): > Error: /eMhMNoV+k0KIQAAmtbU9A: sieve: execution of script > /var/maildir++/99/xxxxxx at xxxxxxxx/.dovecot.sieve failed, but implicit > keep was successful (user logfile > /var/maildir++/99/xxxxxx at xxxxx.com/.dovecot.sieve.log may reveal > additional details) > > And gets redirected anyway > Jun 16 11:40:26 mailstore5 postfix/smtp[13041]: CB4D1C79FE: > to=, delay=0.12, delays=0.02/0/0.01/0.08, dsn=2.0.0, > status=sent (250 2.0.0 Ok: queued as E24FAB0880) > > There's no explicit keep anywhere in the sieve rule, nor a global > rule, so Im confused, the email should be forwarded only. ?The error > message confuses me too, as it says failed but the mail gets through. > > dovecot -n > # 2.0.9: /opt/mail/dovecot/etc/dovecot.conf > # OS: Linux 2.6.36.2 x86_64 Debian 5.0.8 > auth_mechanisms = plain login > base_dir = /opt/mail/dovecot/var > disable_plaintext_auth = no > listen = * > mail_location = maildir:~/Maildir > mail_plugins = create_mbox quota > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope > encoded-character vacation subaddress comparator-i;ascii-numeric > relational regex imap4flags copy include varia > passdb { > ?args = socket=/opt/mail/auth_server/var/socket timeout=10 > ?driver = courier > } > plugin { > ?quota = maildir:User quota > ?quota_rule = Trash:ignore > ?quota_rule2 = Spam:ignore > ?sieve = ~/.dovecot.sieve > } > protocols = imap pop3 lmtp sieve > service imap-login { > ?inet_listener imap { > ? ?port = 30143 > ? ?ssl = no > ?} > } > service lmtp { > ?inet_listener lmtp { > ? ?address = 0.0.0.0 > ? ?port = 30024 > ?} > ?process_min_avail = 4 > } > service pop3-login { > ?inet_listener pop3 { > ? ?port = 30110 > ?} > } > ssl = no > ssl_parameters_regenerate = 0 > userdb { > ?args = socket=/opt/mail/auth_server/var/socket timeout=10 > ?driver = courier > } > protocol pop3 { > ?mail_plugins = create_mbox quota maildiraccess > ?pop3_client_workarounds = outlook-no-nuls oe-ns-eoh > ?pop3_reuse_xuidl = no > ?pop3_save_uidl = no > ?pop3_uidl_format = %f > } > protocol imap { > ?mail_plugins = create_mbox quota imap_quota maildiraccess > } > protocol lmtp { > ?mail_plugins = create_mbox quota sieve > } > protocol sieve { > ?mail_debug = yes > } > > Your help is appreciated. > Thanks! > Javier > From dmiller at amfes.com Thu Jun 16 19:31:23 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Thu, 16 Jun 2011 09:31:23 -0700 Subject: [Dovecot] ACL Groups In-Reply-To: <4DF997B0.6040908@es2eng.com> References: <4DF7C229.2050100@amfes.com> <4DF997B0.6040908@es2eng.com> Message-ID: On 6/15/2011 10:42 PM, Willie Gillespie wrote: > On 6/14/2011 2:18 PM, Daniel L. Miller wrote: >> From the wiki: >> >> ACL groups support works by returning a comma-separated acl_groups extra >> field from userdb, >> which contains all the groups the user belongs to. User's UNIX groups >> have no effect on ACLs (you can "enable" them by using a special >> post-login script ). >> >> >> I've read that over several times - I still don't understand that. Are >> "ACL Groups" defined and managed by Dovecot - and described somewhere >> else in the docs - or are they UNIX groups that previously had no affect >> on mail access but by being listed in the "acl_groups" field they now >> have relevance? > > That is a bit confusing. What it is trying to say: > For one, you have acl_groups. > For two, you have UNIX groups. > They are not related at all. > If you want them to be related, you can use a special post-login script. Ok - so where are acl_groups, and their access, defined? -- Daniel From dmiller at amfes.com Thu Jun 16 19:45:21 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Thu, 16 Jun 2011 09:45:21 -0700 Subject: [Dovecot] Global ACLs Message-ID: If I have: plugin { acl = vfile:/usr/local/etc/dovecot/global-acls:cache_secs=300 } And then a file /usr/local/etc/dovecot/global-acls/.DEFAULT with owner lrwstipekxa user=dmiller lrwstipekxa Does that give me unconditional access to all mailboxes? -- Daniel From l.messner at physik.tu-berlin.de Thu Jun 16 20:29:41 2011 From: l.messner at physik.tu-berlin.de (Leon =?iso-8859-15?Q?Me=DFner?=) Date: Thu, 16 Jun 2011 19:29:41 +0200 Subject: [Dovecot] quota_rule beeing ignored and set to system soft! quota Message-ID: <20110616172941.GA25579@emmi.physik-pool.tu-berlin.de> Hi, originating from the same Problem Edgar Fu? described here [1] about "Zero-sized Maildir files and index corruption on over-quota" i setup quota = fs:user quotas with a quota_rule set to 1.5G to prevent getting those zero sized mail files. What happens now is that when the user is over system soft quota (1G) mails stop beeing delivered. Jun 16 19:05:45 mail dovecot: deliver(elont1): msgid=<20110616185545.05ab0f56 at x201t>: save failed to INBOX: Quota exceeded (mailbox for user is full) This is bad as users get notified per mail by a script about beeing over quota (this mail is now beeing deferred). If i don't set a quota_rule i still get 0byte files (quota is ignored). If i set a higher than system quota quota_rule it still uses the system soft quota. I have a seconary mailserver which already uses dovecot 2.x but i can't test the feature there as it's running inside a jail and thus has no access to quota. I would like to keep this machine on 1.2.16 for now. dovecot -n output is below. thanks, Leon [1] http://www.dovecot.org/list/dovecot/2010-October/053554.html 19:20_root at mail:/usr/local/etc# dovecot -n # 1.2.16: /usr/local/etc/dovecot.conf # OS: FreeBSD 7.3-RELEASE-p2 amd64 log_path: /var/log/dovecot.log protocols: imaps pop3s managesieve listen: mail.physik-pool.tu-berlin.de ssl_cert_file: /etc/private/mail.physik.tu-berlin.de.pem ssl_key_file: /etc/private/physik.tu-berlin.de_privatekey.pem login_dir: /var/run/dovecot/login login_executable(default): /usr/local/libexec/dovecot/imap-login login_executable(imap): /usr/local/libexec/dovecot/imap-login login_executable(pop3): /usr/local/libexec/dovecot/pop3-login login_executable(managesieve): /usr/local/libexec/dovecot/managesieve-login login_processes_count: 6 login_max_processes_count: 512 verbose_proctitle: yes first_valid_uid: 200 mail_privileged_group: mail mail_location: maildir:~/maildir mmap_disable: yes mail_nfs_storage: yes mail_nfs_index: yes mail_executable(default): /usr/local/libexec/dovecot/imap mail_executable(imap): /usr/local/libexec/dovecot/imap mail_executable(pop3): /usr/local/libexec/dovecot/pop3 mail_executable(managesieve): /usr/local/libexec/dovecot/managesieve mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugins(managesieve): mail_plugin_dir(default): /usr/local/lib/dovecot/imap mail_plugin_dir(imap): /usr/local/lib/dovecot/imap mail_plugin_dir(pop3): /usr/local/lib/dovecot/pop3 mail_plugin_dir(managesieve): /usr/local/lib/dovecot/managesieve imap_client_workarounds(default): delay-newmail netscape-eoh tb-extra-mailbox-sep imap_client_workarounds(imap): delay-newmail netscape-eoh tb-extra-mailbox-sep imap_client_workarounds(pop3): imap_client_workarounds(managesieve): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh pop3_client_workarounds(managesieve): namespace: type: private separator: / inbox: yes list: yes subscriptions: yes namespace: type: private separator: / prefix: mail/ location: mbox:~/mail list: yes subscriptions: yes lda: postmaster_address: postmaster at physik.tu-berlin.de log_path: info_log_path: mail_plugins: sieve quota quota_full_tempfail: yes sendmail_path: /usr/sbin/sendmail auth default: mechanisms: gssapi plain login krb5_keytab: /etc/mail.krb5.keytab gssapi_hostname: mail.physik-pool.tu-berlin.de worker_max_count: 120 passdb: driver: pam args: session=yes failure_show_msg=yes max_requests=100 userdb: driver: passwd args: blocking=yes plugin: sieve: ~/.dovecot.sieve sieve_dir: ~/.sieve quota_rule: *:storage=15728640 quota: fs:user From rmf at lookhere.com Fri Jun 17 06:32:27 2011 From: rmf at lookhere.com (Roger Fujii) Date: Thu, 16 Jun 2011 23:32:27 -0400 Subject: [Dovecot] ZFS Filesystem Quota under Solaris 10 and Sparc In-Reply-To: References: Message-ID: <4DFACACB.7000906@lookhere.com> *J?rgen Obermann wrote:* > Since we upgraded last year to Solaris 10 with zfs filesystems on our > Sparc server still using a similar setup with separate filesystems for > home directories and inboxes we have no working quota plugin anymore. > Currently we use dovecot 2.0.13. > > Are there any plans or whishes to get the filesystem quota code > working again under zfs and Solaris? > How are you setting up the zfs quotas? The original zfs implementation didn't have user quotas. You could only add quotas to individual file systems as a whole. They apparently added it into the source base in 2009: http://blogs.oracle.com/chrisg/entry/user_and_group_quotas_for but I'm not sure when/if it made it to production. My sol10u8 * (10/09) has it in the man page, but I know some things in the man page isn't in s10 (like sharesmb), so, as they say, ymmv. The current doc for user quotas are here: http://download.oracle.com/docs/cd/E19253-01/819-5461/gazud/index.html If you don't want to use the filesystem quotas, you have to change your rules/configuration to match what dovecot has. See doc/wiki/Quota.Configuration.txt. Hope this helps. -r From tlx at leuxner.net Fri Jun 17 11:28:48 2011 From: tlx at leuxner.net (Thomas Leuxner) Date: Fri, 17 Jun 2011 10:28:48 +0200 Subject: [Dovecot] ACL Groups In-Reply-To: References: <4DF7C229.2050100@amfes.com> <4DF997B0.6040908@es2eng.com> Message-ID: > Ok - so where are acl_groups, and their access, defined? > -- > Daniel The permissions are set in the 'dovecot-acl' files: $ cat dovecot-acl anyone lr authenticated lrws group=PublicMailboxAdmins lrwsik You assign the groups to a particular user per UserDB Extra Fields: userdb_acl_groups=PublicMailboxAdmins Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 203 bytes Desc: Signierter Teil der Nachricht URL: From marcin at mejor.pl Fri Jun 17 12:48:47 2011 From: marcin at mejor.pl (=?UTF-8?B?TWFyY2luIE1pcm9zxYJhdw==?=) Date: Fri, 17 Jun 2011 11:48:47 +0200 Subject: [Dovecot] I can't setup namespace per user (with settings keept in sql db) Message-ID: <4DFB22FF.9080608@mejor.pl> Hello! I'm trying to setup additional namespace. I'd like to have this setting per user and keep it in postgresql. Global namespace is defined in this way: namespace { inbox = yes location = prefix = separator = . } (mail_location is getting from db) I don't know how should looks like database field:( Now i have such configuration: user_query = select .... dovecot_location AS location, dovecot_namespace AS namespace FROM ... In db i have this: # select dovecot_location, dovecot_namespace from exim_users where dovecot_namespace is not null; dovecot_location | dovecot_namespace ---------------------------+------------------- location="mdbox:~/.mdbox" | prefix="testn" (1 row) but this isn't good configuration. I've got in log: debug: sql(marcin at mejor.pl,62.121.127.119): SELECT '/dane/domeny/mejor.pl/mail/marcin/' as home, dovecot_typ_skrzynki ||':'|| '/dane/domeny/mejor.pl/mail/marcin/' ||' .'|| dovecot_typ_skrzynki as mail_location, '*:bytes='||quota_mb||'M' as quota_rule , dovecot_location AS location, dovecot_namespace AS namespace FROM exim_users WHE RE login = lower('marcin') AND domena = lower('mejor.pl') Debug: master out: USER#0112138832897#011marcin at mejor.pl#011home=/dane/domeny/mejor.pl/mail/marcin/#011mail_location=maildir:/dane/domeny/mejor.pl/mail/marcin/.maildi r#011quota_rule=*:bytes=0M#011location=location="mdbox:~/.mdbox"#011namespace=prefix="testn" Login: user=, method=CRAM-MD5, rip=62.121.127.119, lip=193.238.12.139, mpid=17929, TLS Debug: Loading modules from directory: /usr/lib/dovecot Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib15_notify_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib20_fts_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib20_mail_log_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib20_zlib_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib21_fts_squat_plugin.so Debug: Module loaded: /usr/lib/dovecot/lib30_imap_zlib_plugin.so Debug: Added userdb setting: mail_location=maildir:/dane/domeny/mejor.pl/mail/marcin/.maildir Debug: Added userdb setting: plugin/quota_rule=*:bytes=0M Debug: Added userdb setting: plugin/location=location="mdbox:~/.mdbox" Debug: Added userdb setting: namespace=prefix="testn" Debug: Effective uid=8, gid=12, home=/dane/domeny/mejor.pl/mail/marcin/ Debug: Quota root: name=User quota backend=dict args=:proxy::quota Debug: Quota rule: root=User quota mailbox=* bytes=0 messages=0 Debug: dict quota: user=marcin at mejor.pl, uri=proxy::quota, noenforcing=0 Debug: Namespace : type=private, prefix=, sep=., inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/dane/domeny/mejor.pl/mail/marcin/.maildir Debug: maildir++: root=/dane/domeny/mejor.pl/mail/marcin/.maildir, index=, control=, inbox=/dane/domeny/mejor.pl/mail/marcin/.maildir Debug: Namespace : type=private, prefix=, sep=, inbox=no, hidden=no, list=yes, subscriptions=yes location=maildir:/dane/domeny/mejor.pl/mail/marcin/.maildir Debug: maildir++: root=/dane/domeny/mejor.pl/mail/marcin/.maildir, index=, control=, inbox= Error: user marcin at mejor.pl: Initialization failed: namespace configuration error: Duplicate namespace prefix: "" Error: Invalid user settings. Refer to server log for more information. I've got stuck, i don't have idea how configuration should looks:( Thanks for any help! dovceot-2.0.13 From bra at fsn.hu Fri Jun 17 18:06:12 2011 From: bra at fsn.hu (Attila Nagy) Date: Fri, 17 Jun 2011 17:06:12 +0200 Subject: [Dovecot] Converting CLIENT_MAIL_DATA_MAX_INMEMORY_SIZE to a configurable? In-Reply-To: <1307972408.10421.847.camel@hurina> References: <4DF11750.40006@fsn.hu> <1307972408.10421.847.camel@hurina> Message-ID: <4DFB6D64.8010709@fsn.hu> Hi, Sorry for the late answer... On 06/13/11 15:40, Timo Sirainen wrote: > On Thu, 2011-06-09 at 20:56 +0200, Attila Nagy wrote: >> Hi, >> >> Currently Dovecot's LMTPd writes incoming emails to mail_temp_dir if >> it's bigger than 128k. But I would like to spare those unnecessary >> operations (creating a file, deleting it, writing into it, reading from >> it, checking whether there is free space and if not, rejecting >> (temporarily) the message). Memory is cheap, disk IO is not. :) >> And BTW, on a lot of systems, /tmp is a memory file system already, so >> there is absolute no need for this. > If there's not enough disk space, nowadays the message is read fully > into memory instead of tempfailing. Well, that doesn't seem to be the case (or maybe it's caused by other stuff, like pigeonhole?). Dovecot 2.0.13, with a temp dir capable of holding <64k: Filesystem Size Used Avail Capacity Mounted on tmpfs 64k 4.0k 60k 6% /data/tmp Sending a message of 60k succeeds: smtp-source -d -f from at from -l 60000 -m 1 -s 1 -S test -t to at to -L -v dovecot:24 /var/tmp/smtp-source: name_mask: all /var/tmp/smtp-source: smtp_stream_setup: maxtime=300 enable_deadline=0 /var/tmp/smtp-source: vstream_tweak_tcp: TCP_MAXSEG 1448 /var/tmp/smtp-source: <<< 220 dovecot Dovecot LMTP ready /var/tmp/smtp-source: LHLO me /var/tmp/smtp-source: <<< 250-dovecot /var/tmp/smtp-source: <<< 250-8BITMIME /var/tmp/smtp-source: <<< 250-ENHANCEDSTATUSCODES /var/tmp/smtp-source: <<< 250 PIPELINING /var/tmp/smtp-source: MAIL FROM: /var/tmp/smtp-source: <<< 250 2.1.0 OK /var/tmp/smtp-source: RCPT TO: /var/tmp/smtp-source: <<< 250 2.1.5 OK /var/tmp/smtp-source: DATA /var/tmp/smtp-source: <<< 354 OK /var/tmp/smtp-source: . /var/tmp/smtp-source: <<< 250 2.0.0 id Saved /var/tmp/smtp-source: QUIT /var/tmp/smtp-source: <<< 221 2.0.0 Client quit While with a bigger message: smtp-source -d -f from at from -l 200000 -m 1 -s 1 -S test -t to at to -L -v dovecot:24 /var/tmp/smtp-source: name_mask: all /var/tmp/smtp-source: smtp_stream_setup: maxtime=300 enable_deadline=0 /var/tmp/smtp-source: vstream_tweak_tcp: TCP_MAXSEG 1448 /var/tmp/smtp-source: <<< 220 dovecot Dovecot LMTP ready /var/tmp/smtp-source: LHLO me /var/tmp/smtp-source: <<< 250-dovecot /var/tmp/smtp-source: <<< 250-8BITMIME /var/tmp/smtp-source: <<< 250-ENHANCEDSTATUSCODES /var/tmp/smtp-source: <<< 250 PIPELINING /var/tmp/smtp-source: MAIL FROM: /var/tmp/smtp-source: <<< 250 2.1.0 OK /var/tmp/smtp-source: RCPT TO: /var/tmp/smtp-source: <<< 250 2.1.5 OK /var/tmp/smtp-source: DATA /var/tmp/smtp-source: <<< 354 OK /var/tmp/smtp-source: . /var/tmp/smtp-source: <<< 451 4.3.0 Temporary internal failure /var/tmp/smtp-source: fatal: end of data rejected: 451 4.3.0 Temporary internal failure When I give a bigger tmp filesystem to it, it accepts the message. > Also are you sure that writing to the file actually produces disk I/O? It depends. On a tmpfs file system, it is possible, if there is not enough memory and the system must page. Pretty bad condition. Of course this is mostly the same with no temporary files (holding the emails in memory). Well, mostly, because you don't duplicate all e-mails in memory. And if emails come and go in the range of some hundred Mbps, this can count. Also, a file in tmpfs possibly requires more memory than the same message in an efficient memory structure (a c string for example, which has only a small metadata, compared to tmpfs). If the tmp directory is not a tmpfs, it depends on whether you commit the written bits (I guess you don't fsync it, why would you :) and whether the file system wants to write them. There are file systems, which can't handle blocks belonging to different files independently with fsync. So if you fsync a small file, and you have written 3 GB to the temporary dir (let's assume they are on the same FS), which you will delete in the next second and you haven't fsynced them, 3 GB plus the small file will be written (to the log). Of course you can (and will) separate the temporary file system, which alleviates this problem. But even then it will be possible that the bits will written, for example because the file system's "commit time" has come and see the above, it may write out a lot of stuff. > Even if /tmp isn't a memory filesystem, I think there's a good chance > that the file will be gone before any disk writes have a chance to > start. Can you see some measurable disk I/O change by changing this > value? I can't really measure it now, because I don't have a separate disk pool for temporary files (because nothing uses /tmp, so it would be useless, all resources are delegated to the main pool) and I use tmpfs. But even it's just a few IOPS and some wasted CPU cycles, why wouldn't I set that? :) I think it would be nice to have this as a configurable option, so there would be no need to rebuild every time. From k.shantanu2006 at gmail.com Fri Jun 17 18:29:00 2011 From: k.shantanu2006 at gmail.com (kumar shantanu) Date: Fri, 17 Jun 2011 20:59:00 +0530 Subject: [Dovecot] ACL enabled Public folder dovecot Message-ID: Hi All, I am trying to do ACL enabled Public folder on dovecot version 1.1.20, but the ACL thing is not working, the public folder is visible and accessible to everyone. My dovecot config for public folder is like ######## namespace public { separator = / prefix = Public/ location = maildir:/var/mail/public subscriptions = no } plugin { acl = vfile } ######### and I have my dovecot-acl file in /var/mail/public/.test which reads ** user=test at mydomain.com lrw ** but every user can see the public folders and subscribe to it, which I don't want :( Can someone please suggest. Thanks in Advance, Shantanu From gfinch at ldmltd.ca Fri Jun 17 18:54:16 2011 From: gfinch at ldmltd.ca (Gregory Finch) Date: Fri, 17 Jun 2011 08:54:16 -0700 Subject: [Dovecot] ACL enabled Public folder dovecot In-Reply-To: References: Message-ID: <4DFB78A8.4000809@ldmltd.ca> On 2011-06-17 8:29 AM, kumar shantanu wrote: > Hi All, > > I am trying to do ACL enabled Public folder on dovecot version 1.1.20, but > the ACL thing is not working, the public folder is visible and accessible to > everyone. > > > My dovecot config for public folder is like > > ######## > namespace public { > separator = / > prefix = Public/ > location = maildir:/var/mail/public > subscriptions = no > } > plugin { > acl = vfile > } > ######### > > and I have my dovecot-acl file in /var/mail/public/.test which reads > ** > user=test at mydomain.com lrw > ** > but every user can see the public folders and subscribe to it, which I don't > want :( > > Can someone please suggest. > > > Thanks in Advance, > Shantanu > suggestion #1: post the output of dovecot -n -Greg -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 260 bytes Desc: OpenPGP digital signature URL: From k.shantanu2006 at gmail.com Fri Jun 17 18:57:45 2011 From: k.shantanu2006 at gmail.com (kumar shantanu) Date: Fri, 17 Jun 2011 21:27:45 +0530 Subject: [Dovecot] ACL enabled Public folder dovecot In-Reply-To: <4DFB78A8.4000809@ldmltd.ca> References: <4DFB78A8.4000809@ldmltd.ca> Message-ID: Hi Gregory, this is the output from dovecot -n # 1.1.20: /etc/dovecot.conf # OS: Linux 2.6.18-194.32.1.el5 i686 CentOS release 5.5 (Final) ext3 base_dir: /var/run/dovecot/ protocols: imap imaps listen: *:143 ssl_listen: *:943 login_dir: /var/run/dovecot/login login_executable: /usr/libexec/dovecot/imap-login login_greeting: READY. login_processes_count: 2 mail_location: maildir:/mail/%d/%n/Maildir mail_debug: yes namespace: type: public separator: / prefix: Public/ location: maildir:/var/mail/public list: yes namespace: type: private separator: / location: maildir:/mail/%d/%n/Maildir inbox: yes list: yes subscriptions: yes lda: postmaster_address: postmaster at example.com auth default: verbose: yes debug: yes debug_passwords: yes passdb: driver: ldap args: /etc/dovecot-ldap.conf userdb: driver: passwd userdb: driver: ldap args: /etc/dovecot-ldap.conf plugin: acl: vfile Thanks Shantanu On Fri, Jun 17, 2011 at 9:24 PM, Gregory Finch wrote: > On 2011-06-17 8:29 AM, kumar shantanu wrote: > > Hi All, > > > > I am trying to do ACL enabled Public folder on dovecot version 1.1.20, > but > > the ACL thing is not working, the public folder is visible and accessible > to > > everyone. > > > > > > My dovecot config for public folder is like > > > > ######## > > namespace public { > > separator = / > > prefix = Public/ > > location = maildir:/var/mail/public > > subscriptions = no > > } > > plugin { > > acl = vfile > > } > > ######### > > > > and I have my dovecot-acl file in /var/mail/public/.test which reads > > ** > > user=test at mydomain.com lrw > > ** > > but every user can see the public folders and subscribe to it, which I > don't > > want :( > > > > Can someone please suggest. > > > > > > Thanks in Advance, > > Shantanu > > > suggestion #1: post the output of dovecot -n > > -Greg > > From gfinch at ldmltd.ca Fri Jun 17 19:25:39 2011 From: gfinch at ldmltd.ca (Gregory Finch) Date: Fri, 17 Jun 2011 09:25:39 -0700 Subject: [Dovecot] ACL enabled Public folder dovecot In-Reply-To: References: <4DFB78A8.4000809@ldmltd.ca> Message-ID: <4DFB8003.2050401@ldmltd.ca> As per the top of http://wiki1.dovecot.org/ACL you need to set mail_plugins in order to use acls, as acl support is via a plugin, not a core piece of dovecot. -Greg On 2011-06-17 8:57 AM, kumar shantanu wrote: > Hi Gregory, > > this is the output from dovecot -n > > # 1.1.20: /etc/dovecot.conf > # OS: Linux 2.6.18-194.32.1.el5 i686 CentOS release 5.5 (Final) ext3 > base_dir: /var/run/dovecot/ > protocols: imap imaps > listen: *:143 > ssl_listen: *:943 > login_dir: /var/run/dovecot/login > login_executable: /usr/libexec/dovecot/imap-login > login_greeting: READY. > login_processes_count: 2 > mail_location: maildir:/mail/%d/%n/Maildir > mail_debug: yes > namespace: > type: public > separator: / > prefix: Public/ > location: maildir:/var/mail/public > list: yes > namespace: > type: private > separator: / > location: maildir:/mail/%d/%n/Maildir > inbox: yes > list: yes > subscriptions: yes > lda: > postmaster_address: postmaster at example.com > auth default: > verbose: yes > debug: yes > debug_passwords: yes > passdb: > driver: ldap > args: /etc/dovecot-ldap.conf > userdb: > driver: passwd > userdb: > driver: ldap > args: /etc/dovecot-ldap.conf > plugin: > acl: vfile > > > Thanks > Shantanu > > On Fri, Jun 17, 2011 at 9:24 PM, Gregory Finch wrote: > >> On 2011-06-17 8:29 AM, kumar shantanu wrote: >>> Hi All, >>> >>> I am trying to do ACL enabled Public folder on dovecot version 1.1.20, >> but >>> the ACL thing is not working, the public folder is visible and accessible >> to >>> everyone. >>> >>> >>> My dovecot config for public folder is like >>> >>> ######## >>> namespace public { >>> separator = / >>> prefix = Public/ >>> location = maildir:/var/mail/public >>> subscriptions = no >>> } >>> plugin { >>> acl = vfile >>> } >>> ######### >>> >>> and I have my dovecot-acl file in /var/mail/public/.test which reads >>> ** >>> user=test at mydomain.com lrw >>> ** >>> but every user can see the public folders and subscribe to it, which I >> don't >>> want :( >>> >>> Can someone please suggest. >>> >>> >>> Thanks in Advance, >>> Shantanu >>> >> suggestion #1: post the output of dovecot -n >> >> -Greg >> >> -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 260 bytes Desc: OpenPGP digital signature URL: From dom at helenmarks.co.uk Fri Jun 17 19:35:54 2011 From: dom at helenmarks.co.uk (Dominic Marks) Date: Fri, 17 Jun 2011 17:35:54 +0100 Subject: [Dovecot] Maildir parent directory permissions incorrect for new mailbox Message-ID: <4DFB826A.9080903@helenmarks.co.uk> Hi, My issue is with the automatic creation of parent directories above new maildirs. It seems to be that they're being set with incorrect (or unhelpful) permissions, applying the permissions of the mailbox down the path towards the mailbox root, as opposed to taking the permissions of the mailbox root up towards the mailbox. Our mail is stored under the scheme: location = maildir:/var/dovecot/mail/%d/%n:INDEX=/var/dovecot/index/%d/%n Initially, /var/dovecot consists of acl, index and mail, all empty. The permissions on these are: >> ls -l total 6 drwxrwxr-x 2 hmgp hmgp 512 17 Jun 12:23 acl drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 index drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 mail If I perform a mail delivery to my mailbox, the mailbox parent directory is created with the following permissions: >> ls -l total 2 drwx------ 3 dm hmgp 512 17 Jun 15:56 insidetrading.co.uk Note that the user ID is my own and the mode restricts all other access. When I perform a second delivery to different mailbox under that domain, one mapped to a different UID, the delivery fails because that user cannot access the parent folder in order to create the new maildir. I've read on the Wiki that Dovecot copies permissions from the parent directory when adding new messages to a mailbox. That would suit my situation, but it doesn't happen here. Maybe there is there a reason why this is the case? I've had a look at the code and it it works in the opposite direction, starting from the full path (with its associated mode, uid & gid) and working by removing a section from the right-hand side each time. For me, at least, it would be better if it started from the bottom and worked upwards, inheriting the parent uid, gid and mode until the mailbox directory, where the existing behaviour would be retained, looking like: >> ls -dl insidetrading.co.uk/dm total 2 drwx------ 5 dm hmgp 512 17 Jun 15:56 dm I know I could hold all our mail under a single uid/gid or I could fix the mode manually, but I'd rather not do either. Am I missing some key configuration detail or should I work on a patch for this? Thanks, Dominic >> dovecot -n # 2.0.12: /usr/local/etc/dovecot/dovecot.conf # OS: FreeBSD 8.2-RELEASE amd64 auth_debug = yes listen = * mail_debug = yes mail_plugins = acl namespace { inbox = yes location = maildir:/var/dovecot/mail/%d/%n:INDEX=/var/dovecot/index/%d/%n prefix = separator = / type = private } namespace { list = children location = maildir:/var/dovecot/mail/%%d/%%n:INDEX=/var/dovecot/index/%%d/shared/%%n prefix = shared/%%n separator = / subscriptions = no type = shared } passdb { args = /usr/local/etc/dovecot/ldap.conf driver = ldap } plugin { acl = vfile acl_shared_dict = file:/var/dovecot/acl/%d/%n-shared.db } protocols = lmtp imap service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 } } service imap-login { inet_listener imap { port = 0 } inet_listener imaps { port = 993 ssl = yes } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } ssl = required ssl_ca = References: <4DFB826A.9080903@helenmarks.co.uk> Message-ID: <4DFB8BF0.2000202@gmx.de> On 17.06.2011 18:35, wrote Dominic Marks: Hi Dominic, > Initially, /var/dovecot consists of acl, index and mail, all empty. The > permissions on these are: > > >> ls -l > total 6 > drwxrwxr-x 2 hmgp hmgp 512 17 Jun 12:23 acl > drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 index > drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 mail > > If I perform a mail delivery to my mailbox, the mailbox parent directory > is created with the following permissions: > > >> ls -l > total 2 > drwx------ 3 dm hmgp 512 17 Jun 15:56 insidetrading.co.uk > Blind guess: You are delivering the mail via postfix local and not via dovecot-lda or lmtp? > Note that the user ID is my own and the mode restricts all other access. > When I perform a second delivery to different mailbox under that domain, > one mapped to a different UID, the delivery fails because that user > cannot access the parent folder in order to create the new maildir. > From bradley.giesbrecht at gmail.com Fri Jun 17 20:22:27 2011 From: bradley.giesbrecht at gmail.com (Bradley Giesbrecht) Date: Fri, 17 Jun 2011 10:22:27 -0700 Subject: [Dovecot] pop3-login Error after dovecot 1.2.11 to dovecot 2.0.13 Message-ID: <0A898111-CEB0-476A-AB68-E32E80DC2A24@gmail.com> I recently upgaded from dovecot 1.2.11 to 2.0.13. I used this command on my dovecont.conf after the upgrade and then moved the new file into place after removing some plugins. $ sudo doveconf -n -c dovecot-1.conf > dovecot-2.conf After 24+ hours with no issues I was getting pop3 login failures. ... /path/to/log/dovecot.log:master: Error: service(pop3): read(status) failed: Interrupted system call ... /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Error: master(pop3): Auth request timed out (received 0/12 bytes) /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Info: Internal login failure (pid=1796 id=1) (auth failed, 1 attempts): user=, method=APOP, rip=123.4.5.6, lip=123.7.8.9 /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Error: master(pop3): Auth request timed out (received 0/12 bytes) /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Info: Internal login failure (pid=1797 id=1) (auth failed, 1 attempts): user=, method=APOP, rip=123.4.5.6, lip=123.7.8.9 /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Error: master(pop3): Auth request timed out (received 0/12 bytes) /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Info: Internal login failure (pid=1798 id=1) (auth failed, 1 attempts): user=, method=APOP, rip=123.4.5.6, lip=123.7.8.9 /path/to/log/dovecot.log:Jun 17 05:25:47 pop3-login: Error: master(pop3): Auth request timed out (received 0/12 bytes) ... /path/to/log/dovecot.log:Jun 17 05:40:34 pop3-login: Error: net_connect_unix(pop3) failed: Operation timed out ... Bouncing dovecot has resolved the login issues for the present. Reading from the wiki I see my post-login scripts will need changing. http://wiki2.dovecot.org/Upgrading/2.0 Is there anything else obviously/dangerously wrong with the following doveconf output? I'm am still in the process of moving directives out of dovecot.conf into the new conf.d files. $ doveconf -n # 2.0.13: /path/to/etc/dovecot/dovecot.conf # OS: Darwin 9.8.0 Power Macintosh hfs auth_mechanisms = plain login cram-md5 ntlm apop default_internal_user = _dovecot default_login_user = _dovenull disable_plaintext_auth = no log_path = /path/to/log/dovecot.log mail_location = dbox:/path/to/mail/%d/%n/dbox mail_max_userip_connections = 30 managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = /path/to/etc/dovecot/dovecot_mysql.conf driver = sql } plugin { autocreate = Trash autocreate2 = Spam autosubscribe = Trash autosubscribe2 = Spam } protocols = imap pop3 service auth { unix_listener /path/to/var/spool/postfix/private/auth { group = _postfix mode = 0660 user = _postfix } unix_listener auth-master { mode = 0600 user = _vmail } unix_listener auth-userdb { group = _vmail user = _vmail } } service imap { executable = /path/to/dovecot/bin/log_imap_login.sh } service pop3 { executable = /path/to/dovecot/bin/log_pop3_login.sh } ssl_cert = References: <4DFB826A.9080903@helenmarks.co.uk> <4DFB8BF0.2000202@gmx.de> Message-ID: <4DFB9EEA.3050409@helenmarks.co.uk> On 17/06/2011 18:16, e-frog wrote: > On 17.06.2011 18:35, wrote Dominic Marks: > > Hi Dominic, > >> Initially, /var/dovecot consists of acl, index and mail, all empty. The >> permissions on these are: >> >> >> ls -l >> total 6 >> drwxrwxr-x 2 hmgp hmgp 512 17 Jun 12:23 acl >> drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 index >> drwxrwxr-x 3 hmgp hmgp 512 17 Jun 15:56 mail >> >> If I perform a mail delivery to my mailbox, the mailbox parent directory >> is created with the following permissions: >> >> >> ls -l >> total 2 >> drwx------ 3 dm hmgp 512 17 Jun 15:56 insidetrading.co.uk >> > > Blind guess: > You are delivering the mail via postfix local and not via dovecot-lda > or lmtp? > Hi e-frog, Nope. From my main.cf: virtual_transport = lmtp:unix:private/dovecot-lmtp From my maillog: Jun 17 18:37:06 comms dovecot: lmtp(75348): Connect from local Jun 17 18:37:06 comms dovecot: lmtp(75348, dm at insidetrading.co.uk): 8en+HVtz+01UJgEA+ZD7hg: msgid=<20110617183706.04E3C3B618 at mail.helenmarks.co.uk>: saved mail to INBOX Jun 17 18:37:06 comms postfix/lmtp[78285]: 04E3C3B618: to=, relay=mail.helenmarks.co.uk[private/dovecot-lmtp], delay=0.1, delays=0.05/0.04/0/0.01, dsn=2.0.0, status=sent (250 2.0.0 8en+HVtz+01UJgEA+ZD7hg Saved) Jun 17 18:37:06 comms dovecot: lmtp(75348): Disconnect from local: Client quit Jun 17 18:37:06 comms postfix/qmgr[99310]: 04E3C3B618: removed In fact, during my tests I invoked the lmtp binary under gdb so I could inspect its behaviour, but prior to that I'd been relaying through lmtp. Thanks, Dominic From dmiller at amfes.com Fri Jun 17 22:58:34 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Fri, 17 Jun 2011 12:58:34 -0700 Subject: [Dovecot] ACL Groups In-Reply-To: References: <4DF7C229.2050100@amfes.com> <4DF997B0.6040908@es2eng.com> Message-ID: On 6/17/2011 1:28 AM, Thomas Leuxner wrote: >> Ok - so where are acl_groups, and their access, defined? >> -- >> Daniel > The permissions are set in the 'dovecot-acl' files: > > $ cat dovecot-acl > anyone lr > authenticated lrws > group=PublicMailboxAdmins lrwsik > > You assign the groups to a particular user per UserDB Extra Fields: > > userdb_acl_groups=PublicMailboxAdmins > So there is no defined list of valid groups - arbitrary names are simply listed in the acl_groups parameter, and are then used in the acl files. If they're in either one of the acl_groups or acl file(s), and not in the other, there's no error - they just don't do anything. Right? -- Daniel From dmiller at amfes.com Fri Jun 17 23:01:41 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Fri, 17 Jun 2011 13:01:41 -0700 Subject: [Dovecot] Default Global ACL Message-ID: Can I use the .DEFAULT files with global acls to access all mailboxes without explicitly sharing them first? Or must a share be created for every individual mailbox before they will appear in the shared namespace? -- Daniel From pj.netfilter at gmail.com Sat Jun 18 09:09:20 2011 From: pj.netfilter at gmail.com (Joy) Date: Sat, 18 Jun 2011 11:39:20 +0530 Subject: [Dovecot] process already running Message-ID: Hi, I have running dovecot installation and i am quite happy with it but in one of my installation if system's power fail it doesn't remove master.pid which prevent system to start the service in next boot. I have to manually remove file and start the proess. We are running version 2.0.12. Thanks From robert at schetterer.org Sat Jun 18 11:00:23 2011 From: robert at schetterer.org (Robert Schetterer) Date: Sat, 18 Jun 2011 10:00:23 +0200 Subject: [Dovecot] returned error 89 / solved In-Reply-To: <4DF7B83A.6090401@schetterer.org> References: <4DF7B55D.6010303@schetterer.org> <4DF7B83A.6090401@schetterer.org> Message-ID: <4DFC5B17.2090009@schetterer.org> Am 14.06.2011 21:36, schrieb Robert Schetterer: > Am 14.06.2011 21:24, schrieb Robert Schetterer: >> Hi Timo, i have very rare ( ultra rare....) >> failures like this >> with latest dovecot 2 >> >> log: Error: service(pop3-postlogin): child 16691 returned error 89 >> (Fatal failure) >> >> imap-postlogin: Error: script-login: Fatal: Internal error occurred. >> Refer to server log for more information. >> Jun 14 18:41:16 mail02 dovecot: log: Error: service(imap-postlogin): >> child 31645 returned error 89 (Fatal failure) >> >> any idea? >> >> the conf i allready posted >> with also rare lmtp error >> uid=error >> >> today first an only one seen >> >> Error: read(/var/run/dovecot/dict) failed: Timeout after 30 seconds >> lmtp(31698, ... at ...): Error: Internal quota calculation error >> > > speculation , error 89 seems only happen > during a rsync full system backup job > does this make sense ? > perhaps i should use more excludes > i.e for /var/run/dovecot/* ... it was rsync, excluding /var/run/dovecot/* makes the failure disapear the uid=error in lmtp got more rare using auth cache what i found is, that it mostly happens on high traffic times, with mass mails ( i.e parallel mail to many subscribers of a list etc ) but i did no exact investigate about that but there maybe some relation to sql lookups during high traffic -- Best Regards MfG Robert Schetterer Germany/Munich/Bavaria From maria_arrea at gmx.com Sun Jun 19 13:59:41 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Sun, 19 Jun 2011 10:59:41 +0000 Subject: [Dovecot] Question about "Storage keeps breaking" in logs Message-ID: <20110619105942.75870@gmx.com> Hello I have found this entries in my log /var/log/maillog.13.xz:Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones//18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking /var/log/maillog.108.xz:Mar 4 01:42:09 buzon dovecot: imap(lbandera): Error: mdbox /buzones/0b/11/lbandera/mailboxes/Sent/dbox-Mails: Storage keeps breaking /var/log/maillog.3.xz:Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama): Error: mdbox /buzones/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking I have "rebuilt" those mdboxes with doveadm force-resync && doveadm quota recalc. Should I be worried? Why is this happening? Regards Maria Arrea From stephan at rename-it.nl Sun Jun 19 14:07:17 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Sun, 19 Jun 2011 13:07:17 +0200 Subject: [Dovecot] Vacation -- reply to another address than envelope from In-Reply-To: <20110616140833.GX3399@svanberg.no> References: <20110616140833.GX3399@svanberg.no> Message-ID: <4DFDD865.2020509@rename-it.nl> Op 16-6-2011 16:08, Vegard Svanberg schreef: > Vacation (Sieve) replies to the envelope address. However, I have a > customer which receive e-mails from a service which sends e-mails on > behalf of a user (submitted through a web form). > > So an e-mail would be like (envelope from and from-header is > webformfromwhatever at foobar.com): > > From: webformfromwhatever at foobar.com > To: mycustomer at hisdomain.com > Reply-To: usersrealmailaddress at example.com > > I need the reply to go to the reply-to address. > > Can I handle this with Sieve? > No. The vacation auto-responder only uses the SMTP envelope to determine the address for a response. Using the Reply-To, From or Sender headers is generally considered to be a bad idea for this purpose (http://tools.ietf.org/html/rfc3834#section-4). I don't quite see how you could fix this problem without ignoring these concerns, sorry. Regards, Stephan. From stephan at rename-it.nl Sun Jun 19 14:17:25 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Sun, 19 Jun 2011 13:17:25 +0200 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: Message-ID: <4DFDDAC5.7030507@rename-it.nl> Op 16-6-2011 18:24, Javier schreef: > Maybe it is useful to know, that vacation does the same thing, an > error in the logs but the response arrives to the sender. > > Log file also show some error with waitpid() First thing to notice is that your Dovecot is relatively old, so this problem may be fixed already. Also, recent Dovecot (v2.0) versions support sending messages directly to an SMTP (smart)host instead of using the sendmail binary. Looks like your sendmail binary terminates inappropriately (or Dovecot thinks it does). Can you successfully send mail from the command line using the sendmail tool? Regards, Stephan. From maria_arrea at gmx.com Sun Jun 19 14:22:18 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Sun, 19 Jun 2011 11:22:18 +0000 Subject: [Dovecot] Question about corrupted dbox file Message-ID: <20110619112218.75870@gmx.com> Hello We are using dovecot 2.0.13, without SIS, mdbox+zlib mailbozes. One of our users have this problem in the logs: /doveadm(amaliarubio): Error: mdbox rebuild: Failed to fix file /buzones//0b/1f/amaliarubio/storage/m.304 doveadm(amaliarubio): Error: Corrupted dbox file /buzones/0b/1f/amaliarubio/storage/m.304 (around offset=0): EOF while reading file header/ I have tried with doveadm force-resync without luck Regards Maria From me at junc.org Sun Jun 19 15:23:14 2011 From: me at junc.org (Benny Pedersen) Date: Sun, 19 Jun 2011 14:23:14 +0200 Subject: [Dovecot] Gmail like virtual mailboxes In-Reply-To: References: <1307971694.10421.838.camel@hurina> Message-ID: <8947655f6e32e12f27e9bd33595edca4@junc.org> On Tue, 14 Jun 2011 16:27:40 +0200, Aleve Sicofante wrote: > How do you feel about the way Courier implements IMAP keywords? They > seem to allow for an unlimited number of arbitrary keywords. dovecot 1.2.17 and thunderbird 3.1 windows works okay here with default keywords and custom created with thunderbird, what do i miss ? :-) roundcube plugin would be cool From joh.hendriks at gmail.com Mon Jun 20 12:10:41 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Mon, 20 Jun 2011 11:10:41 +0200 Subject: [Dovecot] Out of office reminder with sieve Message-ID: <4DFF0E91.2030804@gmail.com> I found in the wiki the out of office reminder option. But the sample is looking for a .out-of-office file. I can not find out how to create this file. I use roundcube to set the out of office with sieve. what is the best way to implement this. Second question, where are the addresses stored that have send an e-mail to the user who has out of office set? thanks regards, Johan Hendriks From stephan at rename-it.nl Mon Jun 20 12:31:21 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 20 Jun 2011 11:31:21 +0200 Subject: [Dovecot] dovecot-metadata-8 released In-Reply-To: <201106121556.01830.devurandom@gmx.net> References: <201106121556.01830.devurandom@gmx.net> Message-ID: <4DFF1369.70806@rename-it.nl> Hi Dennis, On 6/12/2011 3:55 PM, Dennis Schridde wrote: > Hello everyone! > > I just released dovecot-metadata-8, which is an implementation of RFC 5464 > (IMAP METADATA), allowing to add comments/annotations/metadata to folders of > an email account. Nice! I've browsed the source a little and I compiled it, but I haven't actually tested it yet. However, I have a few comments/requests already. > The build process is pretty much straightforward, just make sure you have the > dovecot headers available on your system: > ./autogen.sh > ./configure --with-dovecot=/path/to/dovecot > make > make install I had some compile problems. First of all, my Debian stable has automake 1.10 and thus does not support the new silent-rules feature. I'd suggest the following patch to maintain backwards compatibility for the time being: diff -r 8077ad9bce6f configure.ac --- a/configure.ac Sun Jun 12 13:54:06 2011 +0200 +++ b/configure.ac Mon Jun 20 10:36:29 2011 +0200 @@ -1,7 +1,9 @@ AC_PREREQ(2.65) AC_INIT([dovecot-metadata],[8],[devurandom at gmx.net]) -AM_INIT_AUTOMAKE([1.10 silent-rules]) +AM_INIT_AUTOMAKE([1.10]) +m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES]) + AM_MAINTAINER_MODE AC_CONFIG_MACRO_DIR([m4]) Also, I usually like to compile against an uninstalled Dovecot source tree, e.g. to perform tests without installing anything. This failed because the currently installed dovecot.m4 does not provide LIBDOVECOT_IMAP_INCLUDE. Timo, could you fix this? diff -r 327486d79620 dovecot.m4 --- a/dovecot.m4 Thu Jun 16 16:37:42 2011 +0300 +++ b/dovecot.m4 Mon Jun 20 10:33:29 2011 +0200 @@ -62,7 +62,7 @@ AX_SUBST_L([DOVECOT_CFLAGS], [DOVECOT_LIBS], [DOVECOT_SSL_LIBS], [DOVECOT_SQL_LIBS]) AX_SUBST_L([LIBDOVECOT], [LIBDOVECOT_LOGIN], [LIBDOVECOT_SQL], [LIBDOVECOT_LDA], [LIBDOVECOT_STORAGE]) AX_SUBST_L([LIBDOVECOT_DEPS], [LIBDOVECOT_LOGIN_DEPS], [LIBDOVECOT_SQL_DEPS], [LIBDOVECOT_LDA_DEPS], [LIBDOVECOT_STORAGE_DEPS]) - AX_SUBST_L([LIBDOVECOT_INCLUDE], [LIBDOVECOT_LDA_INCLUDE], [LIBDOVECOT_SERVICE_INCLUDE], [LIBDOVECOT_STORAGE_INCLUDE], [LIBDOVECOT_LOGIN_INCLUDE], [LIBDOVECOT_CONFIG_INCLUDE]) + AX_SUBST_L([LIBDOVECOT_INCLUDE], [LIBDOVECOT_LDA_INCLUDE], [LIBDOVECOT_SERVICE_INCLUDE], [LIBDOVECOT_STORAGE_INCLUDE], [LIBDOVECOT_LOGIN_INCLUDE], [LIBDOVECOT_CONFIG_INCLUDE], [LIBDOVECOT_IMAP_INCLUDE]) DC_PLUGIN_DEPS ]) The fact that this package relies on an installed dovecot.m4 also makes compiling against an uninstalled source tree a bit of a chicken-egg problem. Pigeonhole includes a version of dovecot.m4 (albeit modified) in the distribution for this purpose, but I am not sure that is the best solution. Also, since compiling against an uninstalled Dovecot currently has no real purpose for this package for now (it may have when I implement the related Sieve features as discussed below), I would not give fixing this any priority at all. > If you find any bugs (crashes, incompatibilities with RFC 5464, etc), please > write me a mail. Be advised that this code is still experimental and might > crash your server! Now that Dovecot has IMAP METADATA support, it would be nice to implement the Sieve side of the story as well. This is specified in RFC5490 (http://tools.ietf.org/html/rfc5490). These Sieve language extensions allow matching against server and mailbox annotations in Sieve scripts. To build Sieve plugins for the aforementioned features, I would need to have access to the metadata backend to read the annotation entries. For that reason, I would like to suggest that you put the metadata storage backend in a separate shared library, such that other future plugins and tools can link against it to gain access to the metadata storage. Pigeonhole does something similar already; the Sieve interpreter is installed as /usr/lib/dovecot/libdovecot-sieve.so and the LDA plugin makes use of it, as do command line tools such as sieve-test. Regards, Stephan From sunhux at gmail.com Mon Jun 20 13:32:28 2011 From: sunhux at gmail.com (sunhux G) Date: Mon, 20 Jun 2011 18:32:28 +0800 Subject: [Dovecot] Error Message-ID: I tested POP3 access from my laptop's Outlook which is on the same subnet as the dovecot/postfix server (so there's no firewall in between them & was able to get the emails in Outlook with following statuses shown when "Test Connection" is clicked: > Tasks Status > ===================== ======== > Establish network connection Completed > Find outgoing mail server (SMTP) Completed > Find incoming mail server (POP3) Completed > Log onto incoming mail server (POP3) Completed > Send test e-mail message Completed # dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf doveconf: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:24: ssl_disable has been renamed to ssl # OS: Linux 2.6.12.6-xen0 i686 Red Hat Enterprise Linux ES release 4 (Nahant Update 2) disable_plaintext_auth = no listen = * mail_location = mbox:~/mail:INBOX=/pop3/spool/mail/%u mbox_write_locks = fcntl passdb { driver = pam } protocols = pop3 imap ssl = no ssl_cert = Jun 20 15:06:36 SmtpostixSvr postfix/smtpd[24148]: disconnect from unknown[172.19.21.23] Jun 20 15:06:36 SmtpostixSvr postfix/qmgr[21020]: EA32720006C: from=, size=705, nrcpt=1 (queue active) Jun 20 15:06:36 SmtpostixSvr dovecot: auth: Error: dlopen(/usr/lib/dovecot/auth/libdriver_pgsql.so) failed: /usr/lib/dovecot/auth/libdriver_pgsql.so: undefined symbol: PQescapeStringConn Jun 20 15:06:36 SmtpostixSvr dovecot: auth: Error: dlopen(/usr/lib/dovecot/auth/libdriver_pgsql.so) failed: /usr/lib/dovecot/auth/libdriver_pgsql.so: undefined symbol: PQescapeStringConn Jun 20 15:06:36 SmtpostixSvr postfix/local[24152]: EA32720006C: to=, orig_to=, relay=local, delay=0.81, delays=0.26/0.11/0/0.43, dsn=2.0.0, status=sent (delivered to command: /usr/bin/procmail) Jun 20 15:06:36 SmtpostixSvr postfix/qmgr[21020]: EA32720006C: removed Jun 20 15:06:36 SmtpostixSvr dovecot: pop3-login: Login: user=, method=PLAIN, rip=172.19.21.23, lip=172.19.21.27, mpid=24157 Jun 20 15:06:36 SmtpostixSvr dovecot: pop3(myUnixid): Disconnected: Logged out top=0/0, retr=0/0, del=0/191, size=436234 ================================================ > " saslfinger -s " output: > # saslfinger -s > saslfinger - postfix Cyrus sasl configuration Thu Mar 17 18:10:18 SGT 2011 > version: 1.0.2 > mode: server-side SMTP AUTH > > -- basics -- > Postfix: 2.5.6 > System: Red Hat Enterprise Linux ES release 4 (Nahant Update 2) > > -- smtpd is linked to -- > ? ? ? libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x47b72000) > > -- active SMTP AUTH and TLS parameters for smtpd -- > smtpd_sasl_auth_enable = yes > smtpd_sasl_security_options = noanonymous > > > -- listing of /usr/lib/sasl -- > total 560 > -rw-r--r-- ? ?1 root root ?4634 Dec ?2 ?2004 libanonymous.a > -rwxr-xr-x ? ?1 root root ? 871 Dec ?2 ?2004 libanonymous.la > -rwxr-xr-x ? ?1 root root ?5748 Dec ?2 ?2004 libanonymous.so > -rwxr-xr-x ? ?1 root root ?5748 Dec ?2 ?2004 libanonymous.so.1 > -rwxr-xr-x ? ?1 root root ?5748 Dec ?2 ?2004 libanonymous.so.1.0.17 > -rw-r--r-- ? ?1 root root ?9758 Dec ?2 ?2004 libcrammd5.a > -rwxr-xr-x ? ?1 root root ? 857 Dec ?2 ?2004 libcrammd5.la > -rwxr-xr-x ? ?1 root root ?9884 Dec ?2 ?2004 libcrammd5.so > -rwxr-xr-x ? ?1 root root ?9884 Dec ?2 ?2004 libcrammd5.so.1 > -rwxr-xr-x ? ?1 root root ?9884 Dec ?2 ?2004 libcrammd5.so.1.0.19 > -rw-r--r-- ? ?1 root root 34264 Dec ?2 ?2004 libdigestmd5.a > -rwxr-xr-x ? ?1 root root ? 880 Dec ?2 ?2004 libdigestmd5.la > -rwxr-xr-x ? ?1 root root 30804 Dec ?2 ?2004 libdigestmd5.so > -rwxr-xr-x ? ?1 root root 30804 Dec ?2 ?2004 libdigestmd5.so.0 > -rwxr-xr-x ? ?1 root root 30804 Dec ?2 ?2004 libdigestmd5.so.0.0.20 > -rw-r--r-- ? ?1 root root 11322 Dec ?2 ?2004 libgssapiv2.a > -rwxr-xr-x ? ?1 root root ? 906 Dec ?2 ?2004 libgssapiv2.la > -rwxr-xr-x ? ?1 root root 11952 Dec ?2 ?2004 libgssapiv2.so > -rwxr-xr-x ? ?1 root root 11952 Dec ?2 ?2004 libgssapiv2.so.1 > -rwxr-xr-x ? ?1 root root 11952 Dec ?2 ?2004 libgssapiv2.so.1.0.19 > -rw-r--r-- ? ?1 root root ?6598 Dec ?2 ?2004 liblogin.a > -rwxr-xr-x ? ?1 root root ? 847 Dec ?2 ?2004 liblogin.la > -rwxr-xr-x ? ?1 root root ?7248 Dec ?2 ?2004 liblogin.so > -rwxr-xr-x ? ?1 root root ?7248 Dec ?2 ?2004 liblogin.so.0 > -rwxr-xr-x ? ?1 root root ?7248 Dec ?2 ?2004 liblogin.so.0.0.7 > -rw-r--r-- ? ?1 root root ?6150 Dec ?2 ?2004 libplain.a > -rwxr-xr-x ? ?1 root root ? 849 Dec ?2 ?2004 libplain.la > -rwxr-xr-x ? ?1 root root ?7000 Dec ?2 ?2004 libplain.so > -rwxr-xr-x ? ?1 root root ?7000 Dec ?2 ?2004 libplain.so.1 > -rwxr-xr-x ? ?1 root root ?7000 Dec ?2 ?2004 libplain.so.1.0.16 > > -- listing of /usr/lib/sasl2 -- > total 3152 > -rwxr-xr-x ? ?1 root root ? ?875 Dec ?2 ?2004 libanonymous.la > -rwxr-xr-x ? ?1 root root ?12820 Dec ?2 ?2004 libanonymous.so > -rwxr-xr-x ? ?1 root root ?12820 Dec ?2 ?2004 libanonymous.so.2 > -rwxr-xr-x ? ?1 root root ?12820 Dec ?2 ?2004 libanonymous.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?863 Dec ?2 ?2004 libcrammd5.la > -rwxr-xr-x ? ?1 root root ?15216 Dec ?2 ?2004 libcrammd5.so > -rwxr-xr-x ? ?1 root root ?15216 Dec ?2 ?2004 libcrammd5.so.2 > -rwxr-xr-x ? ?1 root root ?15216 Dec ?2 ?2004 libcrammd5.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?884 Dec ?2 ?2004 libdigestmd5.la > -rwxr-xr-x ? ?1 root root ?42964 Dec ?2 ?2004 libdigestmd5.so > -rwxr-xr-x ? ?1 root root ?42964 Dec ?2 ?2004 libdigestmd5.so.2 > -rwxr-xr-x ? ?1 root root ?42964 Dec ?2 ?2004 libdigestmd5.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?911 Dec ?2 ?2004 libgssapiv2.la > -rwxr-xr-x ? ?1 root root ?22292 Dec ?2 ?2004 libgssapiv2.so > -rwxr-xr-x ? ?1 root root ?22292 Dec ?2 ?2004 libgssapiv2.so.2 > -rwxr-xr-x ? ?1 root root ?22292 Dec ?2 ?2004 libgssapiv2.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?851 Dec ?2 ?2004 liblogin.la > -rwxr-xr-x ? ?1 root root ?13296 Dec ?2 ?2004 liblogin.so > -rwxr-xr-x ? ?1 root root ?13296 Dec ?2 ?2004 liblogin.so.2 > -rwxr-xr-x ? ?1 root root ?13296 Dec ?2 ?2004 liblogin.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?854 Dec ?2 ?2004 libntlm.la > -rwxr-xr-x ? ?1 root root ?29104 Dec ?2 ?2004 libntlm.so > -rwxr-xr-x ? ?1 root root ?29104 Dec ?2 ?2004 libntlm.so.2 > -rwxr-xr-x ? ?1 root root ?29104 Dec ?2 ?2004 libntlm.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?851 Dec ?2 ?2004 libplain.la > -rwxr-xr-x ? ?1 root root ?13360 Dec ?2 ?2004 libplain.so > -rwxr-xr-x ? ?1 root root ?13360 Dec ?2 ?2004 libplain.so.2 > -rwxr-xr-x ? ?1 root root ?13360 Dec ?2 ?2004 libplain.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?931 Dec ?2 ?2004 libsasldb.la > -rwxr-xr-x ? ?1 root root 784960 Dec ?2 ?2004 libsasldb.so > -rwxr-xr-x ? ?1 root root 784960 Dec ?2 ?2004 libsasldb.so.2 > -rwxr-xr-x ? ?1 root root 784960 Dec ?2 ?2004 libsasldb.so.2.0.19 > -rwxr-xr-x ? ?1 root root ? ?875 Dec ?2 ?2004 libsql.la > -rwxr-xr-x ? ?1 root root ?21348 Dec ?2 ?2004 libsql.so > -rwxr-xr-x ? ?1 root root ?21348 Dec ?2 ?2004 libsql.so.2 > -rwxr-xr-x ? ?1 root root ?21348 Dec ?2 ?2004 libsql.so.2.0.19 > From joh.hendriks at gmail.com Mon Jun 20 14:18:44 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Mon, 20 Jun 2011 13:18:44 +0200 Subject: [Dovecot] Error In-Reply-To: References: Message-ID: <4DFF2C94.9010703@gmail.com> sunhux G schreef: > I tested POP3 access from my laptop's Outlook which is on the same > subnet as the dovecot/postfix server (so there's no firewall in between > them& was able to get the emails in Outlook with following statuses > shown when "Test Connection" is clicked: > >> Tasks Status >> ===================== ======== >> Establish network connection Completed >> Find outgoing mail server (SMTP) Completed >> Find incoming mail server (POP3) Completed >> Log onto incoming mail server (POP3) Completed >> Send test e-mail message Completed > > # dovecot -n > # 2.0.9: /etc/dovecot/dovecot.conf > doveconf: Warning: NOTE: You can get a new clean config file with: > doveconf -n> dovecot-new.conf > doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:24: > ssl_disable has been renamed to ssl > # OS: Linux 2.6.12.6-xen0 i686 Red Hat Enterprise Linux ES release 4 > (Nahant Update 2) > disable_plaintext_auth = no > listen = * > mail_location = mbox:~/mail:INBOX=/pop3/spool/mail/%u > mbox_write_locks = fcntl > passdb { > driver = pam > } > protocols = pop3 imap > ssl = no > ssl_cert = ssl_key = userdb { > driver = passwd > } > > > However, maillog has the following errors (172.19.21.23 is my laptop). > Are they critical or what I hv to do to fix them: > > Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: warning: > smtpd_sasl_auth_enable is true, but SASL support is not compiled in > Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: connect from > unknown[172.19.21.23] > Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: EA32720006C: > client=unknown[172.19.21.23] > Jun 20 15:06:36 SmtpostixSvr postfix/cleanup[24151]: EA32720006C: > message-id=<20110620070635.EA32720006C at SmtpostixSvr.myportal.com> > Jun 20 15:06:36 SmtpostixSvr postfix/smtpd[24148]: disconnect from > unknown[172.19.21.23] > Jun 20 15:06:36 SmtpostixSvr postfix/qmgr[21020]: EA32720006C: > from=, size=705, nrcpt=1 (queue active) > Jun 20 15:06:36 SmtpostixSvr dovecot: auth: Error: > dlopen(/usr/lib/dovecot/auth/libdriver_pgsql.so) failed: > /usr/lib/dovecot/auth/libdriver_pgsql.so: undefined symbol: > PQescapeStringConn > Jun 20 15:06:36 SmtpostixSvr dovecot: auth: Error: > dlopen(/usr/lib/dovecot/auth/libdriver_pgsql.so) failed: > /usr/lib/dovecot/auth/libdriver_pgsql.so: undefined symbol: > PQescapeStringConn > Jun 20 15:06:36 SmtpostixSvr postfix/local[24152]: EA32720006C: > to=, > orig_to=, relay=local, delay=0.81, > delays=0.26/0.11/0/0.43, dsn=2.0.0, status=sent (delivered to command: > /usr/bin/procmail) > Jun 20 15:06:36 SmtpostixSvr postfix/qmgr[21020]: EA32720006C: removed > Jun 20 15:06:36 SmtpostixSvr dovecot: pop3-login: Login: > user=, method=PLAIN, rip=172.19.21.23, lip=172.19.21.27, > mpid=24157 > Jun 20 15:06:36 SmtpostixSvr dovecot: pop3(myUnixid): Disconnected: > Logged out top=0/0, retr=0/0, del=0/191, size=436234 > > ================================================ > > 1) ># 2.0.9: /etc/dovecot/dovecot.conf >doveconf: Warning: NOTE: You can get a new clean config file with: >doveconf -n> dovecot-new.conf >doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:24: >ssl_disable has been renamed to ssl ># OS: Linux 2.6.12.6-xen0 i686 Red Hat Enterprise Linux ES release 4 First it looks like you did an update from 1.x to 2.x You (need) to edit your dovecot.conf file see the message how to do this (make a backup of your old config) 2) >Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: warning: >smtpd_sasl_auth_enable is true, but SASL support is not compiled in >Jun 20 15:06:35 SmtpostixSvr postfix/smtpd[24148]: connect from >unknown[172.19.21.23] Also your postfix has sasl parts enabled, but postfix is not compiled with SASL support. 3) The dovecot logs tells you there is somthing not ok with your postgreSQL. I do not use postgreSQL, so i can not help you with this one. regards, Johan Hendriks From linuxmail at 4lin.net Mon Jun 20 16:16:53 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Mon, 20 Jun 2011 15:16:53 +0200 Subject: [Dovecot] Performance settings for 500-1000User/per day Message-ID: <1308575813.7335.26.camel@pcdenny> hi, we have 2.0.13 running and most works well, but today we had some minor problems: The IMAP login process takes sometimes to much time. Over webmail (Roundcube 0.5.0.3) login wasn't sometimes possible, the normal clients hasn't any problems, until they login. We had only ~ 20-30 active accounts, but 50-60 sessions. The most are Apple products (Ip*/Mac/. ..)because they have 4 sessions or more open. Also we had ~212 processes with: dovenull 2065 4364 0 14:50:32 ? 0:00 dovecot/imap-login vmail 2403 4364 0 14:58:31 ? 0:00 dovecot/imap So, maybe, it's a miss configuration .... Any suggestions are welcome for 500-1000User per day. Our System is a Sun Sunfire X4250 with 16GB memory on Raidz1 Most settings are defaults, so I posting only my changes: # doveadm -N # 2.0.13: /usr/local/dovecot/etc/dovecot/dovecot.conf # OS: SunOS 5.10 i86pc zfs auth_cache_negative_ttl = 1 hours auth_cache_ttl = 1 hours auth_debug = yes auth_mechanisms = plain auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@ auth_username_format = %Lu auth_verbose = yes auth_verbose_passwords = no base_dir = /var/run/dovecot debug_log_path = /var/log/dovecot-debug.log default_login_user = dovenull default_process_limit = 100 disable_plaintext_auth = no hostname = hostname.fomain.foo info_log_path = /var/log/dovecot.log lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = no lda_original_recipient_header = login_greeting = I'm alive mail_debug = yes mail_gid = vmail mail_home = /imap/spool/%d/%1n/%n mail_location = maildir:/imap/spool/%d/%1n/%n:INDEX=/imap/spool/% d/indexes/%1n/%n mail_plugin_dir = /usr/local/dovecot/dovecot2/lib/dovecot/ mail_plugins = acl quota fts fts_squat mail_privileged_group = vmail mail_temp_dir = /imap/spool/tmp mail_uid = vmail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date imapflags namespace { hidden = no inbox = yes location = prefix = separator = / subscriptions = yes type = private } namespace { inbox = no location = maildir:/imap/spool/public prefix = public/ separator = / subscriptions = no type = public } passdb { args = /usr/local/dovecot/etc/dovecot/conf.d/dovecot-ldap.conf.ext driver = ldap } passdb { args = scheme=plain-md5 username_format=% Lu /usr/local/dovecot/etc/dovecot/other-users driver = passwd-file } plugin { acl = vfile:/imap/spool/%d/acl autocreate = Sent autocreate2 = Drafts autocreate3 = Trash autocreate4 = Spam autosubscribe = Sent autosubscribe2 = Drafts autosubscribe3 = Trash autosubscribe4 = Spam fts = squat fts_squat = partial=4 full=10 quota = maildir:User quota quota_rule2 = Trash:storage=+10%% quota_rule3 = Spam:storage=+20%% quota_warning = storage=80% % /usr/local/dovecot/dovecot2/bin/quota-warning.sh 80 quota_warning2 = storage=90% % /usr/local/dovecot/dovecot2/bin/quota-warning.sh 90 quota_warning3 = storage=95% % /usr/local/dovecot/dovecot2/bin/quota-warning.sh 95 sieve = /imap/spool/%d/%1n/%n/sieve/default.sieve sieve_dir = /imap/spool/%d/%1n/%n/sieve sieve_extensions = +imapflags trash = /usr/local/dovecot/etc/dovecot/conf.d/dovecot-trash.conf } postmaster_address = postmaster at domain.foo protocols = imap pop3 lmtp sieve recipient_delimiter = + rejection_reason = Your message to <%t> was automatically rejected:%n%r rejection_subject = Rejected: %s service auth { unix_listener /var/spool/postfix/private/auth { group = postdrop mode = 0600 user = postfix } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } process_min_avail = 8 vsz_limit = 1 G } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postdrop mode = 0666 user = postfix } } service managesieve-login { inet_listener sieve { port = 4190 } inet_listener sieve_deprecated { port = 2001 } } service pop3-login { inet_listener pop3 { port = 110 } inet_listener pop3s { port = 995 ssl = yes } } ssl_cert = From lcaron at lncsa.com Mon Jun 20 16:37:01 2011 From: lcaron at lncsa.com (Laurent CARON) Date: Mon, 20 Jun 2011 15:37:01 +0200 Subject: [Dovecot] Invalid cross-device link while trying to delete folder - Dovecot 2.0.7 Message-ID: <4DFF4CFD.7060300@lncsa.com> Hi, I'm having the following setup. 2 datastores mounted as: /home/ and /data/mail2/ I have 2 namespaces: namespace archives-baie { prefix = INBOX.Extra-001. hidden = no list = yes inbox = no location = maildir:/data/mail2/%u/Maildir type = private } namespace { inbox = yes location = prefix = INBOX. type = private } When trying to trash some folder from the second namespace, I get the following error in the logs: imap(USER): Error: rename(/data/mail2/USER/Maildir/.Archives.20112, /home/USER/Maildir/.Trash.20112) failed: Invalid cross-device link In my config I have: maildir_copy_with_hardlinks = no Do you have a clue about this issue ? Thanks From jimkarlsson82 at gmail.com Mon Jun 20 19:55:34 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Mon, 20 Jun 2011 09:55:34 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31741603.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> Message-ID: <31887336.post@talk.nabble.com> Robert Schetterer wrote: > > Am 31.05.2011 11:36, schrieb Theatre: >> >> Hi! >> >> I wonder how i can get subdirectories (.INBOX/***/*** etc...) in >> dovecot... >> I just stardet a mail server and when i tried to create it from the mail >> client (MS Outlook) it says that the server wont allow it... >> >> Anyone who knows a solution? >> >> > yes post your conf > > -- > Best Regards > > MfG Robert Schetterer > > Germany/Munich/Bavaria > > I tried to post it but it wont get accepted by the mailing list... Can i email the conf to you? Best Regards -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31887336.html Sent from the Dovecot mailing list archive at Nabble.com. From CMarcus at Media-Brokers.com Mon Jun 20 20:37:48 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 20 Jun 2011 13:37:48 -0400 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31887336.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> <31887336.post@talk.nabble.com> Message-ID: <4DFF856C.8080205@Media-Brokers.com> On 2011-06-20 12:55 PM, Theatre wrote: > I tried to post it but it wont get accepted by the mailing list... Can i > email the conf to you? Just paste it into the email body -- Best regards, Charles From jimkarlsson82 at gmail.com Mon Jun 20 20:43:17 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Mon, 20 Jun 2011 10:43:17 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <4DFF856C.8080205@Media-Brokers.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> <31887336.post@talk.nabble.com> <4DFF856C.8080205@Media-Brokers.com> Message-ID: <31887717.post@talk.nabble.com> tanstaafl_bh wrote: > > On 2011-06-20 12:55 PM, Theatre wrote: >> I tried to post it but it wont get accepted by the mailing list... Can i >> email the conf to you? > > Just paste it into the email body > > -- > > Best regards, > > Charles > > I have pasted it into the messege box but it still waiting to be accepted... -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31887717.html Sent from the Dovecot mailing list archive at Nabble.com. From CMarcus at Media-Brokers.com Mon Jun 20 20:48:13 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 20 Jun 2011 13:48:13 -0400 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31887717.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> <31887336.post@talk.nabble.com> <4DFF856C.8080205@Media-Brokers.com> <31887717.post@talk.nabble.com> Message-ID: <4DFF87DD.1020905@Media-Brokers.com> On 2011-06-20 1:43 PM, Theatre wrote: > tanstaafl_bh wrote: >> >> On 2011-06-20 12:55 PM, Theatre wrote: >>> I tried to post it but it wont get accepted by the mailing list... Can i >>> email the conf to you? >> Just paste it into the email body > I have pasted it into the messege box but it still waiting to be accepted... Then don't access the list via nabble and use a real mail client. Please don't impose your limitations on the rest of us... -- Best regards, Charles From linuxmail at 4lin.net Mon Jun 20 21:37:41 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Mon, 20 Jun 2011 20:37:41 +0200 Subject: [Dovecot] Performance settings for 500-1000User/per day In-Reply-To: <4DFF6C6E.4060907@esiee.fr> References: <1308575813.7335.26.camel@pcdenny> <4DFF6C6E.4060907@esiee.fr> Message-ID: hi, Am 20.06.2011 um 17:51 schrieb Frank Bonnet: > Did you check the kernel maximum open files option ? > > I had such troubles with a too low limit I thought, it's only a Linux problem? On the other hand, if so, I would assume, that I see some log infos, but I saw nothing ... cu denny From stan at hardwarefreak.com Tue Jun 21 04:50:58 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Mon, 20 Jun 2011 20:50:58 -0500 Subject: [Dovecot] Performance settings for 500-1000User/per day In-Reply-To: <1308575813.7335.26.camel@pcdenny> References: <1308575813.7335.26.camel@pcdenny> Message-ID: <4DFFF902.5060900@hardwarefreak.com> On 6/20/2011 8:16 AM, Denny Schierz wrote: > hi, > > we have 2.0.13 running and most works well, but today we had some minor > problems: The IMAP login process takes sometimes to much time. Over > webmail (Roundcube 0.5.0.3) login wasn't sometimes possible, the normal > clients hasn't any problems, until they login. > > We had only ~ 20-30 active accounts, but 50-60 sessions. The most are > Apple products (Ip*/Mac/. ..)because they have 4 sessions or more open. > > Also we had ~212 processes with: > > dovenull 2065 4364 0 14:50:32 ? 0:00 dovecot/imap-login > vmail 2403 4364 0 14:58:31 ? 0:00 dovecot/imap > > So, maybe, it's a miss configuration .... Any suggestions are welcome > for 500-1000User per day. It is customary, and normally required, that one submit server and client log errors relevant to a problem when posting to a help list. It baffles me that some people, in 2011, fail to provide even basic log information when submitting problem reports. Without such logging it is very difficult to help you. -- Stan From me at junc.org Tue Jun 21 11:43:42 2011 From: me at junc.org (Benny Pedersen) Date: Tue, 21 Jun 2011 10:43:42 +0200 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31887336.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31741603.post@talk.nabble.com> <31887336.post@talk.nabble.com> Message-ID: <4994f5d4a6fa2706792f81adfc4cb8f1@junc.org> On Mon, 20 Jun 2011 09:55:34 -0700 (PDT), Theatre wrote: > I tried to post it but it wont get accepted by the mailing list... > Can i > email the conf to you? then you only get help from him, or he will just say pay me :-) http://pastebin.com/ From jimkarlsson82 at gmail.com Tue Jun 21 11:51:38 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Tue, 21 Jun 2011 01:51:38 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <4DE4FC02.80301@schetterer.org> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> Message-ID: <31892392.post@talk.nabble.com> Robert Schetterer wrote: > > Am 31.05.2011 11:36, schrieb Theatre: >> >> Hi! >> >> I wonder how i can get subdirectories (.INBOX/***/*** etc...) in >> dovecot... >> I just stardet a mail server and when i tried to create it from the mail >> client (MS Outlook) it says that the server wont allow it... >> >> Anyone who knows a solution? >> >> > yes post your conf > > -- > Best Regards > > MfG Robert Schetterer > > Germany/Munich/Bavaria > > Here is the conf... http://pastebin.com/7hqxCMT6 Best Regards -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31892392.html Sent from the Dovecot mailing list archive at Nabble.com. From linuxmail at 4lin.net Tue Jun 21 12:11:12 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Tue, 21 Jun 2011 11:11:12 +0200 Subject: [Dovecot] Performance settings for 500-1000User/per day In-Reply-To: <4DFFF902.5060900@hardwarefreak.com> References: <1308575813.7335.26.camel@pcdenny> <4DFFF902.5060900@hardwarefreak.com> Message-ID: <1308647472.7335.39.camel@pcdenny> hi, Am Montag, den 20.06.2011, 20:50 -0500 schrieb Stan Hoeppner: > It is customary, and normally required, that one submit server and > client log errors relevant to a problem when posting to a help list. It > baffles me that some people, in 2011, fail to provide even basic log I know, that I didn't posted any logs, because there aren't any entries with problems. I switched on every debug function, but there is absolutely no hint, why the login process sometimes hangs. If you would take a look, you would see only acl settings (looking for ACLs, or quota etc.) but no errors or something else ... Thats the reason, why I didn't posted any logs. cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part URL: From me at junc.org Tue Jun 21 12:08:33 2011 From: me at junc.org (Benny Pedersen) Date: Tue, 21 Jun 2011 11:08:33 +0200 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31892392.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> Message-ID: <1a1776776769d4ada496b427f53c6222@junc.org> On Tue, 21 Jun 2011 01:51:38 -0700 (PDT), Theatre wrote: > http://pastebin.com/7hqxCMT6 namespace is not configured if more help needed paste dovecot -n not just content in dovecot.conf From stephan at rename-it.nl Tue Jun 21 12:23:52 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Tue, 21 Jun 2011 11:23:52 +0200 Subject: [Dovecot] Out of office reminder with sieve In-Reply-To: <4DFF0E91.2030804@gmail.com> References: <4DFF0E91.2030804@gmail.com> Message-ID: <4E006328.5030907@rename-it.nl> Op 20-6-2011 11:10, Johan Hendriks schreef: > I found in the wiki the out of office reminder option. > But the sample is looking for a .out-of-office file. > I can not find out how to create this file. > I use roundcube to set the out of office with sieve. > > what is the best way to implement this. Could you point me to that wiki page? I don't quite understand what you are talking about. > Second question, where are the addresses stored that have send an > e-mail to the user who has out of office set? This is recorded in ~/.dovecot.lda-dupes Regards, Stephan. From joh.hendriks at gmail.com Tue Jun 21 12:39:30 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Tue, 21 Jun 2011 11:39:30 +0200 Subject: [Dovecot] Out of office reminder with sieve In-Reply-To: <4E006328.5030907@rename-it.nl> References: <4DFF0E91.2030804@gmail.com> <4E006328.5030907@rename-it.nl> Message-ID: <4E0066D2.4000804@gmail.com> Stephan Bosch schreef: > Op 20-6-2011 11:10, Johan Hendriks schreef: >> I found in the wiki the out of office reminder option. >> But the sample is looking for a .out-of-office file. >> I can not find out how to create this file. >> I use roundcube to set the out of office with sieve. >> >> what is the best way to implement this. > > Could you point me to that wiki page? I don't quite understand what > you are talking about. > >> Second question, where are the addresses stored that have send an >> e-mail to the user who has out of office set? > > This is recorded in ~/.dovecot.lda-dupes > > Regards, > > Stephan. Off cource Here is the part i am talking about. Alerts If you want to give the user's client some warning notification, you can do it just by writing it to stdout. But note: * Not all clients show the alerts, even though IMAP RFC requires it. * IMAP protocol requires CRLF (\r\n) line feeds. Some clients will break if you only send LF. #!/bin/sh if [ -f ~/.out-of-office ]; then printf "* OK [ALERT] You're still marked as being out of office.\r\n" fi exec "$@" it is on this page. http://wiki2.dovecot.org/PostLoginScripting Maybe i can check the ~/.dovecot.lda-dupes file instead. Is that file being deleted if the out of office is disabled, or is it cleaned only? Thanks for your time. Johan Hendriks From jimkarlsson82 at gmail.com Tue Jun 21 12:43:34 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Tue, 21 Jun 2011 02:43:34 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <1a1776776769d4ada496b427f53c6222@junc.org> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> <1a1776776769d4ada496b427f53c6222@junc.org> Message-ID: <31892708.post@talk.nabble.com> Benny Pedersen wrote: > > On Tue, 21 Jun 2011 01:51:38 -0700 (PDT), Theatre wrote: > >> http://pastebin.com/7hqxCMT6 > > namespace is not configured > > if more help needed paste dovecot -n > > not just content in dovecot.conf > > > hmm ok. My knowledge is very limited but i conf the namespace like this. namespace private { separator = / prefix = "#mbox/" location = mbox:~/mail:INBOX=/var/mail/%u inbox = yes hidden = yes } But its not working anyway, what is missing? -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31892708.html Sent from the Dovecot mailing list archive at Nabble.com. From hugo.monteiro at fct.unl.pt Tue Jun 21 14:17:48 2011 From: hugo.monteiro at fct.unl.pt (Hugo Monteiro) Date: Tue, 21 Jun 2011 12:17:48 +0100 Subject: [Dovecot] UIDL and message migration Message-ID: <4E007DDC.4020807@fct.unl.pt> Hello, I'm in the process of migrating accounts between two dovecot servers. An old server running ancient 1.0.15 and a new server running 1.2.15. Account migration is going to be gradual and so i would like to use imapsync to move messages and subscriptions from one server to the other. The only problem so far is with POP users. After doing an account migration with imapsync, and although both servers share the same pop3_uidl_format = %08Xu%08Xv, the client downloads every message that was already on the server. Any pointers would be very much appreciated. Best Regards, Hugo Monteiro. From me at junc.org Tue Jun 21 14:37:33 2011 From: me at junc.org (Benny Pedersen) Date: Tue, 21 Jun 2011 13:37:33 +0200 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31892708.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> <1a1776776769d4ada496b427f53c6222@junc.org> <31892708.post@talk.nabble.com> Message-ID: <687491ca953d6332d4315dad1a971f83@junc.org> On Tue, 21 Jun 2011 02:43:34 -0700 (PDT), Theatre wrote: > Benny Pedersen wrote: >> >> On Tue, 21 Jun 2011 01:51:38 -0700 (PDT), Theatre wrote: >> >>> http://pastebin.com/7hqxCMT6 >> >> namespace is not configured >> >> if more help needed paste dovecot -n >> >> not just content in dovecot.conf >> >> >> > > hmm ok. My knowledge is very limited but i conf the namespace like > this. > namespace private { > separator = / > prefix = "#mbox/" > location = mbox:~/mail:INBOX=/var/mail/%u > inbox = yes > hidden = yes > } > > But its not working anyway, what is missing? try add list = yes, change hidden = yes to no, add subscriptions = yes post exact error logs if that does not solve it From jimkarlsson82 at gmail.com Tue Jun 21 14:50:20 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Tue, 21 Jun 2011 04:50:20 -0700 (PDT) Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <687491ca953d6332d4315dad1a971f83@junc.org> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> <1a1776776769d4ada496b427f53c6222@junc.org> <31892708.post@talk.nabble.com> <687491ca953d6332d4315dad1a971f83@junc.org> Message-ID: <31893428.post@talk.nabble.com> Benny Pedersen wrote: > > On Tue, 21 Jun 2011 02:43:34 -0700 (PDT), Theatre wrote: >> Benny Pedersen wrote: >>> >>> On Tue, 21 Jun 2011 01:51:38 -0700 (PDT), Theatre wrote: >>> >>>> http://pastebin.com/7hqxCMT6 >>> >>> namespace is not configured >>> >>> if more help needed paste dovecot -n >>> >>> not just content in dovecot.conf >>> >>> >>> >> >> hmm ok. My knowledge is very limited but i conf the namespace like >> this. >> namespace private { >> separator = / >> prefix = "#mbox/" >> location = mbox:~/mail:INBOX=/var/mail/%u >> inbox = yes >> hidden = yes >> } >> >> But its not working anyway, what is missing? > > > try add list = yes, change hidden = yes to no, add subscriptions = yes > > post exact error logs if that does not solve it > > > > Starting Dovecot Imap: Error: Error in configuration file /etc/dovecot.conf line 233: Unknown setting: subscriptions Fatal: Invalid configuration in /etc/dovecot.conf [FAILED] -- View this message in context: http://old.nabble.com/How-to-make-SUBdirectories-in-Dovecot...-tp31739301p31893428.html Sent from the Dovecot mailing list archive at Nabble.com. From fusionstream at gmail.com Tue Jun 21 17:11:23 2011 From: fusionstream at gmail.com (fusionstream) Date: Tue, 21 Jun 2011 22:11:23 +0800 Subject: [Dovecot] Custom Trash (etc) location Message-ID: <4E00A68B.7090500@gmail.com> Hi there. I have dovecot 1.2.17 installed on me system. I'd like to create a gmail-esque imap tree where all imap folders except for the inbox are in a subdirectory(?). More importantly, I'd like the email client (specifically thunderbird) to be able to recognise the folders and thusly give it a special trash/junk/etc icon which I presume also makes trash and junk go to, well the truash and junk folders automagically. Based on searching the web, I believe that namespaces are the solution. I believed that I had set it up to be 1) Inbox 2) IMAP - Drafts - Junk - Trash - etc However, when trying to use namespaces, I get IMAP.Drafts, IMAP.Junk and all the other folders also appearing in INBOX, in addition to another top-level IMAP.*. What am I doing wrong? If I understand the solutions posted on the web correctly, solving this (resulting in only one of each type of folder) should make thunderbird automagically recognise these "special folders". This is my configuration: # 1.2.17: /etc/dovecot.conf # OS: Linux 2.6.18-238.12.1.el5 i686 CentOS release 5.6 (Final) ext3 ssl_ca_file: /etc/postfix/ssl/cacert.pem ssl_cert_file: /etc/postfix/ssl/smtpd.crt ssl_key_file: /etc/postfix/ssl/smtpd.key login_dir: /var/run/dovecot/login login_executable(default): /usr/libexec/dovecot/imap-login login_executable(imap): /usr/libexec/dovecot/imap-login login_executable(pop3): /usr/libexec/dovecot/pop3-login first_valid_uid: *[removed]* last_valid_uid: *[removed]* first_valid_gid: *[removed]* last_valid_gid: *[removed]* mail_location: maildir:/var/spool/mail/virtual/%d/%n mail_executable(default): /usr/libexec/dovecot/imap mail_executable(imap): /usr/libexec/dovecot/imap mail_executable(pop3): /usr/libexec/dovecot/pop3 mail_plugins(default): autocreate mail_plugins(imap): autocreate mail_plugins(pop3): mail_plugin_dir(default): /usr/lib/dovecot/imap mail_plugin_dir(imap): /usr/lib/dovecot/imap mail_plugin_dir(pop3): /usr/lib/dovecot/pop3 imap_client_workarounds(default): outlook-idle delay-newmail imap_client_workarounds(imap): outlook-idle delay-newmail imap_client_workarounds(pop3): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh namespace: type: private separator: . prefix: INBOX. inbox: yes list: yes subscriptions: yes namespace: type: private separator: . prefix: IMAP. list: yes subscriptions: yes lda: postmaster_address: postmaster at example.com auth default: mechanisms: plain login user: dovecot-auth passdb: driver: sql args: /etc/dovecot/mysql.conf userdb: driver: sql args: /etc/dovecot/mysql.conf socket: type: listen client: path: /var/spool/postfix/private/auth mode: 509 user: postfix group: postfix plugin: autocreate: IMAP.Trash autocreate2: IMAP.Spam autocreate3: IMAP.Sent Mail autocreate4: IMAP.Drafts autosubscribe: IMAP.Trash autosubscribe2: IMAP.Spam autosubscribe3: IMAP.Sent Mail autosubscribe4: IMAP.Drafts Any help appreciated. Cheers. From gouravjoshi at gmail.com Tue Jun 21 18:15:06 2011 From: gouravjoshi at gmail.com (=?UTF-8?B?4KSX4KWM4KSw4KS1IOCknOCli+CktuClgA==?=) Date: Tue, 21 Jun 2011 20:45:06 +0530 Subject: [Dovecot] Dovecot 1.1.20+NFS OS changed issue Message-ID: Hi, I am facing a wierd issue on dovecot while migrating OS of the server. I have CentOS 5.2 32bit OS , Dovecot 1.1.20 with NFS on the server. When I am migrating it to CenOS 5.6 32bit with same Dovecot version. I compiled the same version i.e. 1.1.20 again. Now when I check the number of connection on this new server I can see only 8-10 connections for IMAP and 8-10 for POP3, where on old server I can still see the number of connections crosses 500+. I checked system level configuration which I found identical, limits set to same as old server, still no change in number of connections. I even tried the above exercise on CentOS 5.6 64bit version. again the result is same. I have tried all the changes/configurations I could think of. Can you please help me to sort out this issue? dovecot -n output ; ============================================= # 1.1.20: /usr/local/etc/dovecot.conf # OS: Linux 2.6.28 i686 CentOS release 5.6 (Final) syslog_facility: local0 protocols: imap pop3 listen(default): *:143 listen(imap): *:143 listen(pop3): *:110 ssl_disable: yes disable_plaintext_auth: no login_dir: /usr/local/var/run/dovecot/login login_executable(default): /usr/local/libexec/dovecot/imap-login login_executable(imap): /usr/local/libexec/dovecot/imap-login login_executable(pop3): /usr/local/libexec/dovecot/pop3-login login_greeting: Welcome to MailServe Popserver. login_process_per_connection: no max_mail_processes: 800 mail_max_userip_connections(default): 150 mail_max_userip_connections(imap): 150 mail_max_userip_connections(pop3): 300 verbose_proctitle: yes first_valid_uid: 99 first_valid_gid: 99 mail_location: maildir:~/Maildir:INDEX=/indexes/%h:CONTROL=/indexes/%h mmap_disable: yes mail_nfs_storage: yes mail_nfs_index: yes mail_executable(default): /usr/local/libexec/dovecot/imap mail_executable(imap): /usr/local/libexec/dovecot/imap mail_executable(pop3): /usr/local/libexec/dovecot/pop3 mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugin_dir(default): /usr/local/lib/dovecot/imap mail_plugin_dir(imap): /usr/local/lib/dovecot/imap mail_plugin_dir(pop3): /usr/local/lib/dovecot/pop3 pop3_no_flag_updates(default): no pop3_no_flag_updates(imap): no pop3_no_flag_updates(pop3): yes pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls lda: postmaster_address: postmaster at example.com mail_plugins: cmusieve quota mail_log mail_plugin_dir: /usr/local/lib/dovecot/lda log_path: /var/log/dovecot-deliver.log auth_socket_path: /var/run/dovecot/auth-master auth default: worker_max_count: 5 passdb: driver: sql args: /usr/local/etc/dovecot-mysql.conf userdb: driver: sql args: /usr/local/etc/dovecot-mysql.conf userdb: driver: prefetch socket: type: listen client: path: /var/run/dovecot/auth-client mode: 432 user: nobody group: nobody master: path: /var/run/dovecot/auth-master mode: 384 user: nobody group: nobody ============================================= Have a nice time, Gourav Joshi Have a look at www.linuxquestions.in From yzhou at medplus.com Tue Jun 21 20:34:31 2011 From: yzhou at medplus.com (Zhou, Yan) Date: Tue, 21 Jun 2011 13:34:31 -0400 Subject: [Dovecot] DoveCot LDA/Postfix deliver by address Message-ID: Hi there, I am using DoveCot 1.0.7 and virtual users. We want to integrate with Postfix 2.3.3 to use DoveCot LDA to deliver messages to user mailbox. All users are stored in LDAP. DoveCot looks up user by LDAP access. Our user name is not necessarily part of the address. For instance, address "zhouy at xxxx" may be with user "yzhou", thus all messages to "zhouy at xxxx" should go to /home/vmail/yzhou/Maildir I do not see how LDA can support a two-step lookup: 1. Look up user from the given address, 2. Lookup user mail directory from the user in step 1. My understanding is that /etc/dove-ldap.conf is a one-step lookup, it only does user lookup (without password lookup). Any suggestions? Thanks, Yan Confidentiality Notice: The information contained in this electronic transmission is confidential and may be legally privileged. It is intended only for the addressee(s) named above. If you are not an intended recipient, be aware that any disclosure, copying, distribution or use of the information contained in this transmission is prohibited and may be unlawful. If you have received this transmission in error, please notify us by telephone (513) 229-5500 or by email (postmaster at MedPlus.com). After replying, please erase it from your computer system. From yzhou at medplus.com Tue Jun 21 20:37:55 2011 From: yzhou at medplus.com (Zhou, Yan) Date: Tue, 21 Jun 2011 13:37:55 -0400 Subject: [Dovecot] DoveCot LDA/Postfix get address rather than user from messages Message-ID: Hi there, We are using Postfix and DoveCot 1.0.7, using DoveCot LDA/Postfix to deliver messages to mailboxes via LDAP lookup. My Postfix 2.3.3 /etc/postfix/master.cf reads like this dovecot unix - n n - - pipe flags=Rhu user=hubdirect argv=/usr/libexec/dovecot/deliver -f ${sender} -d ${recipient} And my /etc/dovecot-ldap.conf reads like this: user_filter = (&(objectClass=DirectUser)(username=%n)) user_attrs = userreference=user,usermaildirectory=mail,userhomedirectory=home I find the above "%n" value in "user_filter" I am getting is always the address, not "user part in user at domain" as the documentation says. Did I miss anything? Thanks, Yan Confidentiality Notice: The information contained in this electronic transmission is confidential and may be legally privileged. It is intended only for the addressee(s) named above. If you are not an intended recipient, be aware that any disclosure, copying, distribution or use of the information contained in this transmission is prohibited and may be unlawful. If you have received this transmission in error, please notify us by telephone (513) 229-5500 or by email (postmaster at MedPlus.com). After replying, please erase it from your computer system. From CMarcus at Media-Brokers.com Tue Jun 21 20:53:31 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 21 Jun 2011 13:53:31 -0400 Subject: [Dovecot] DoveCot LDA/Postfix deliver by address In-Reply-To: References: Message-ID: <4E00DA9B.4070004@Media-Brokers.com> On 2011-06-21 1:34 PM, Zhou, Yan wrote: > I am using DoveCot 1.0.7 > Any suggestions? Upgrade first... -- Best regards, Charles From dovecot.user at seibercom.net Tue Jun 21 21:27:01 2011 From: dovecot.user at seibercom.net (Jerry) Date: Tue, 21 Jun 2011 14:27:01 -0400 Subject: [Dovecot] DoveCot LDA/Postfix deliver by address In-Reply-To: <4E00DA9B.4070004@Media-Brokers.com> References: <4E00DA9B.4070004@Media-Brokers.com> Message-ID: <20110621142701.6f4edeb6@scorpio> On Tue, 21 Jun 2011 13:53:31 -0400 Charles Marcus articulated: > On 2011-06-21 1:34 PM, Zhou, Yan wrote: > > I am using DoveCot 1.0.7 > > > > > Any suggestions? > > Upgrade first... Both Dovecot and Postfix. Postfix <=2.4 are no longer supported. -- Jerry ? Dovecot.user at seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __________________________________________________________________ From japi76 at gmail.com Tue Jun 21 22:38:32 2011 From: japi76 at gmail.com (Javier) Date: Tue, 21 Jun 2011 16:38:32 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: <4DFDDAC5.7030507@rename-it.nl> References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: Thanks for the response. I'll try updating dovecot to latest version but this will take me some time, so other options are welcome. It seems like submission_host is from v2.0.10+ and I have 2.0.9 :( Sending mail with echo "test" | sendmail xxxx at xxxx.com works fine. Thanks Javier On Sun, Jun 19, 2011 at 8:17 AM, Stephan Bosch wrote: > Op 16-6-2011 18:24, Javier schreef: >> >> Maybe it is useful to know, that vacation does the same thing, an >> error in the logs but the response arrives to the sender. >> >> Log file also show some error with waitpid() > > First thing to notice is that your Dovecot is relatively old, so this > problem may be fixed already. Also, recent Dovecot (v2.0) versions support > sending messages directly to an SMTP (smart)host instead of using the > sendmail binary. > > Looks like your sendmail binary terminates inappropriately (or Dovecot > thinks it does). Can you successfully send mail from the command line using > the sendmail tool? > > Regards, > > Stephan. > > From japi76 at gmail.com Tue Jun 21 22:52:09 2011 From: japi76 at gmail.com (Javier) Date: Tue, 21 Jun 2011 16:52:09 -0300 Subject: [Dovecot] UIDL and message migration In-Reply-To: <4E007DDC.4020807@fct.unl.pt> References: <4E007DDC.4020807@fct.unl.pt> Message-ID: Hugo, I have been there too. Check if you are changing the server address in the e-mail client. If you are doing so, most clients check uidls based on this (at least in my tests). If you keep the hostname intact and the uidls are the same, the e-mails won't be downloaded again. You can do this messing with the hosts file in the client computer. To check if the uidls are the same, just launch a telnet session in both POP servers and issue a UIDL command and compare the output. Javier On Tue, Jun 21, 2011 at 8:17 AM, Hugo Monteiro wrote: > Hello, > > I'm in the process of migrating accounts between two dovecot servers. An old > server running ancient 1.0.15 and a new server running 1.2.15. > Account migration is going to be gradual and so i would like to use imapsync > to move messages and subscriptions from one server to the other. The only > problem so far is with POP users. After doing an account migration with > imapsync, and although both servers share the same pop3_uidl_format = > %08Xu%08Xv, the client downloads every message that was already on the > server. > > Any pointers would be very much appreciated. > > Best Regards, > > Hugo Monteiro. > From tom at whyscream.net Tue Jun 21 23:56:20 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Tue, 21 Jun 2011 22:56:20 +0200 Subject: [Dovecot] DoveCot LDA/Postfix deliver by address In-Reply-To: References: Message-ID: <4E010574.1010303@whyscream.net> On 21/06/11 19:34, Zhou, Yan wrote: > Hi there, > > I am using DoveCot 1.0.7 and virtual users. We want to integrate with > Postfix 2.3.3 to use DoveCot LDA to deliver messages to user mailbox. > All users are stored in LDAP. DoveCot looks up user by LDAP access. > > Our user name is not necessarily part of the address. For instance, > address "zhouy at xxxx" may be with user "yzhou", thus all messages to > "zhouy at xxxx" should go to /home/vmail/yzhou/Maildir > > I do not see how LDA can support a two-step lookup: 1. Look up user > from the given address, 2. Lookup user mail directory from the user in > step 1. > > My understanding is that /etc/dove-ldap.conf is a one-step lookup, it > only does user lookup (without password lookup). > > Any suggestions? > Typically, you would lookup the user in postfix, so you can let postfix deliver to the user 'yzhou' in stead of the mailaddress 'zhouy at xxxx'. f.i. a postfix /etc/aliases entry: zhouy: yzhou -- Regards, Tom From hugo.monteiro at fct.unl.pt Wed Jun 22 01:51:22 2011 From: hugo.monteiro at fct.unl.pt (Hugo Monteiro) Date: Tue, 21 Jun 2011 23:51:22 +0100 Subject: [Dovecot] UIDL and message migration In-Reply-To: References: <4E007DDC.4020807@fct.unl.pt> Message-ID: <4E01206A.1050500@fct.unl.pt> On 06/21/2011 08:52 PM, Javier wrote: > Hugo, > > I have been there too. > Check if you are changing the server address in the e-mail client. If > you are doing so, most clients check uidls based on this (at least in > my tests). > > If you keep the hostname intact and the uidls are the same, the > e-mails won't be downloaded again. You can do this messing with the > hosts file in the client computer. > > To check if the uidls are the same, just launch a telnet session in > both POP servers and issue a UIDL command and compare the output. > > Javier > Hello Javier, The hostname is intact since all pop/imap are being routed through a proxy. The problem is that using imapsync, for message migration, the uilds don't stay intact. I was hoping someone would know a tool, similar to imapsync, that would provide such a functionality. Alternately i can always scp/tar the messages from one server to the other, but for migration implementation reasons i would prefer imapsync, or the like. Regards, Hugo Monteiro. -- fct.unl.pt:~# cat .signature Hugo Monteiro Email : hugo.monteiro at fct.unl.pt Telefone : +351 212948300 Ext.15307 Web : http://hmonteiro.net Divis?o de Inform?tica Faculdade de Ci?ncias e Tecnologia da Universidade Nova de Lisboa Quinta da Torre 2829-516 Caparica Portugal Telefone: +351 212948596 Fax: +351 212948548 www.fct.unl.pt apoio at fct.unl.pt fct.unl.pt:~# _ From ml at smtp.fakessh.eu Wed Jun 22 04:18:34 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Wed, 22 Jun 2011 03:18:34 +0200 Subject: [Dovecot] sieve problem email silently discard Message-ID: <201106220318.40833.ml@smtp.fakessh.eu> hello folks hello Timo hello all the guru I met a few times the problem or an email that passes through a sieve script is silently discard after delivery but never returned to the inbox all testimonials are welcome -- ?http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 ?gpg --keyserver pgp.mit.edu --recv-key 092164A7 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From fusionstream at gmail.com Wed Jun 22 03:55:58 2011 From: fusionstream at gmail.com (fusionstream) Date: Wed, 22 Jun 2011 08:55:58 +0800 Subject: [Dovecot] LIST-EXTENDED support? Message-ID: <4E013D9E.70805@gmail.com> Hi there. Can I check if LIST-EXTENDED refers to RFC 6154 (http://tools.ietf.org/html/rfc6154), rfc for special use mailboxes. I'd like to specify a designated folder as \Spam and etc. Googling "dovecot list-extended" and "dovecot special use" suggests that dovecot supports this feature (via patch logs and 1 bug report for Mozilla Thunderbird which suggests that dovecot supports this). However when trying to test this feature via thunderbird, it would seem to suggest that it is not currently possible. (Moving folders that Thunderbird has created forces thunderbird to recreate said folder in it's original location) # dovecot --version 1.2.17 Any help/pointers appreciated. Cheers. From bind at enas.net Wed Jun 22 11:02:34 2011 From: bind at enas.net (Urban Loesch) Date: Wed, 22 Jun 2011 10:02:34 +0200 Subject: [Dovecot] Panic: doveadm quota get -A Message-ID: <4E01A19A.4070808@enas.net> Hi, I'm new to the list and I'm using dovecot since 2 months. Still in progress to migrating from Stalker (Communigate Pro) to Dovecot. Today I upgraded from Dovecot 2.0.13-0~auto+27 (used form the Mirror xi.rename-it.nl - stable-auto) to 2:2.0.13-0~auto+48. List of installed packages: ii dovecot-common 2:2.0.13-0~auto+48 secure mail server that supports mbox, maildir, dbox and mdbox mailboxes ii dovecot-imapd 2:2.0.13-0~auto+48 secure IMAP server that supports mbox, maildir, dbox and mdbox mailboxes ii dovecot-lmtpd 2:2.0.13-0~auto+48 secure LMTP server for Dovecot ii dovecot-managesieved 2:2.0.13-0~auto+48 secure ManageSieve server for Dovecot ii dovecot-mysql 2:2.0.13-0~auto+48 MySQL support for Dovecot ii dovecot-pop3d 2:2.0.13-0~auto+48 secure POP3 server that supports mbox, maildir, dbox and mdbox mailboxes ii dovecot-sieve 2:2.0.13-0~auto+48 sieve filters support for Dovecot It seems all is working fine, except "doveadm quota get -A". It gives me the following error: # doveadm quota get -A doveadm: Panic: file doveadm-print-table.c: line 58 (doveadm_calc_header_length): assertion failed: ((value_count % hdr_count) == 0) doveadm: Error: Raw backtrace: /usr/lib/dovecot/libdovecot.so.0(+0x3fd0a) [0x7fb901d0fd0a] -> /usr/lib/dovecot/libdovecot.so.0(default_fatal_handler+0x32) [0x7fb901d0fdf2] -> /usr/lib/dovecot/libdovecot.so.0(i_error+0) [0x7fb901ce916f] -> doveadm() [0x416bed] -> doveadm(doveadm_print_flush+0x1f) [0x40f1cf] -> doveadm() [0x40a92d] -> doveadm(doveadm_mail_try_run+0x11c) [0x40acfc] -> doveadm(main+0x381) [0x410761] -> /lib/libc.so.6(__libc_start_main+0xfd) [0x7fb901581c4d] -> doveadm() [0x409e09] Aborted I also tried the versions 2.0.13-0~auto+45 - 47 from xi.rename-it.nl. Same thing. Have you any idea how i can fix this. Downgrade to a 2.0.13-0~auto+27 is not possible because i have to fix this error to: http://hg.dovecot.org/dovecot-2.0/rev/09b8701362a4 Many thanks and regards Urban Loesch From stephan at rename-it.nl Wed Jun 22 11:21:25 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 10:21:25 +0200 Subject: [Dovecot] sieve problem email silently discard In-Reply-To: <201106220318.40833.ml@smtp.fakessh.eu> References: <201106220318.40833.ml@smtp.fakessh.eu> Message-ID: <4E01A605.4060401@rename-it.nl> Op 22-6-2011 3:18, ml at smtp.fakessh.eu schreef: > hello folks > hello Timo > hello all the guru > > I met a few times the problem or an email that passes through a sieve script > is silently discard > after delivery but never returned to the inbox > > all testimonials are welcome We cannot say much about this problem, unless we get some more information: 1) What is your configuration? Provide the output of dovecot -n. 2) Is it reproducible somehow? - What is the Sieve script you see this behavior for? Or does it happen for all users? - Is there a specific kind of incoming message that gets discarded all the time? 3) Is there any error or other message in the logs that may explain this behavior? Regards, Stephan. From claudio.prono at atpss.net Wed Jun 22 11:24:59 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 10:24:59 +0200 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database Message-ID: <4E01A6DB.3090807@atpss.net> Hello all, I have a strange message into the logs of dovecot, il says something like: Jun 22 10:18:07 lda(claudio at domain.com): Error: User claudio at domain.com doesn't have home dir set, disabling duplicate database But the mail arrives correctly, and no problems at all. I have googled a little about, and i have found a post it says to put mail_home and not home into the plugin part of the configuration, but this is not my problem.. Here is my conf: # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.37.6-0.5-desktop x86_64 openSUSE 11.4 (x86_64) ext3 auth_mechanisms = plain login first_valid_gid = 51 first_valid_uid = 51 info_log_path = /var/log/dovecot-inf.log last_valid_gid = 51 last_valid_uid = 51 log_path = /var/log/dovecot-err.log mail_location = maildir:/var/mail/virtual/%d/%u managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { hidden = no inbox = yes list = yes location = prefix = INBOX. subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } plugin { mail_home = /var/mail/virtual/%d/%u/ quota = maildir:User quota quota_warning = storage=80%% /usr/bin/quota_warning.sh 80 quota_warning2 = storage=90%% /usr/bin/quota_warning.sh 90 quota_warning3 = storage=99%% /usr/bin/quota_warning.sh 90 sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } protocols = imap pop3 sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { mode = 0600 } unix_listener auth-userdb { group = nobody mode = 0660 user = postfix } } service imap-login { inet_listener imap { address = 127.0.0.1 port = 143 } inet_listener imaps { address = * port = 993 } } service managesieve-login { executable = /usr/lib/dovecot/managesieve-login } service managesieve { executable = /usr/lib/dovecot/managesieve } ssl_ca = hi, I want to use two backends f?r DoveCot. One generated file from the LDAP tree, and the real LDAP. The first backend is generated from a cronjob thats reads the whole ldap server and converts them into a DoveCot passwd file. I red in the Wiki, if the user password isn't correct, than DoveCot asks the second backend (LDAP). Is this correct? Because, the the user can change his password, but Cron generates only every hour the file. So the password in the passwd-file isn't correct, until Cron runs again. The second, what happens, if Dovecot reads the file and in the same moment, Cron generate the new file? Does he change to the second backend? Or do I (the user) get an error? cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part URL: From claudio.prono at atpss.net Wed Jun 22 14:36:55 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 13:36:55 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4DF7CC1C.60807@rename-it.nl> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> Message-ID: <4E01D3D7.2000208@atpss.net> Il 14/06/2011 23.01, Stephan Bosch ha scritto: > Op 14-6-2011 10:06, Claudio Prono schreef: >> Hello all, >> >> I am testing Dovecot 2.0.13, with sieve for the vacation. >> >> I have some problems with the :regex as i can see... >> >> An example: > > > I didn't know Horde Ingo produces such horribly ugly Sieve code; the > header checks are unnecessary and the regexes are highly convolved and > should probably be substituted with a `date' test. > > >> No vacation is performed..... >> >> Then, if i modify the script commenting all the regex for the date, the >> result is the following: > > >> But the date is right: >> >> date >> Fri Jun 10 17:22:14 CEST 2011 >> >> So, what is wrong? Any help is well accepted, that script with dovecot >> 1.x is working correctly.... So, what is changed in dovecot 2.0 sieve? > > I'm currently on vacation and I can't quite get my head around these > regexes. The best thing you can do now is debug it in more detail by > using the sieve-test trace debugging features (using -t and -T > options), as documented in the man page. This way, you can see what is > matched how and which actions are performed. Then, you can narrow it > down to one specific failing test. > > Regards, > > Stephan. > I have tryied with the debug level higher of sieve-test, and the result is the following: sieve-test -t - -Tlevel=matching /tmp/.dovecot.sieve 1308741872.M858197P18322.mail2\,S\=1138\,W\=1168 ## Started executing script '.dovecot' 7: exists test 7: header `list-help' is missing 7: headers are missing 7: jump if result is true 7: not jumping 7: header test 7: starting `:is' match with `i;ascii-casemap' comparator: 7: extracting `Precedence' headers from message 7: finishing match with result: not matched 7: jump if result is true 7: not jumping 7: header test 7: starting `:matches' match with `i;ascii-casemap' comparator: 7: extracting `To' headers from message 7: matching value `claudio ' 7: with key `Multiple recipients of*' => 0 7: finishing match with result: not matched 7: jump if result is true 7: not jumping 8: header test 8: starting `:regex' match with `i;ascii-casemap' comparator: 8: extracting `Received' headers from message 8: matching value `from private (charon.mediaservice.net [213.254.20.254])' 8: with regex `^.*(2011) (\(.*\) )?..:..:.. (\(.*\) )?(\+|\-)....( \(.*\))?$' [id=0] => 0 8: finishing match with result: not matched 8: jump if result is false 8: jumping to line 19 ## Finished executing script '.dovecot' Performed actions: (none) Implicit keep: * store message in folder: INBOX sieve-test(root): Info: final result: success As i can see, the regex of the year is not matching.... but why? Also, the other regex for the Month or the day, are not matching (tested commented out). Any hint? Cordially, Claudio Prono. -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From info at simonecaruso.com Wed Jun 22 15:17:43 2011 From: info at simonecaruso.com (Simone Caruso) Date: Wed, 22 Jun 2011 14:17:43 +0200 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database In-Reply-To: <4E01A6DB.3090807@atpss.net> References: <4E01A6DB.3090807@atpss.net> Message-ID: <4E01DD67.8060805@simonecaruso.com> On 22/06/2011 10:24, Claudio Prono wrote: > mail_location = maildir:/var/mail/virtual/%d/%u > mail_home = /var/mail/virtual/%d/%u/ Dovecot complains because mail_home should be -ne mail_location -- Simone Caruso IT Consultant p.iva: 03045250838 From stephan at rename-it.nl Wed Jun 22 15:29:29 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 14:29:29 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E01D3D7.2000208@atpss.net> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> Message-ID: <4E01E029.5030208@rename-it.nl> Op 22-6-2011 13:36, Claudio Prono schreef: > Il 14/06/2011 23.01, Stephan Bosch ha scritto: >> >> I'm currently on vacation and I can't quite get my head around these >> regexes. The best thing you can do now is debug it in more detail by >> using the sieve-test trace debugging features (using -t and -T >> options), as documented in the man page. This way, you can see what is >> matched how and which actions are performed. Then, you can narrow it >> down to one specific failing test. > I have tryied with the debug level higher of sieve-test, and the result > is the following: > > sieve-test -t - -Tlevel=matching /tmp/.dovecot.sieve > 1308741872.M858197P18322.mail2\,S\=1138\,W\=1168 > > 8: header test > 8: starting `:regex' match with `i;ascii-casemap' comparator: > 8: extracting `Received' headers from message > 8: matching value `from private (charon.mediaservice.net > [213.254.20.254])' > 8: with regex `^.*(2011) (\(.*\) )?..:..:.. (\(.*\) > )?(\+|\-)....( \(.*\))?$' [id=0] => 0 > 8: finishing match with result: not matched > As i can see, the regex of the year is not matching.... but why? Also, > the other regex for the Month or the day, are not matching (tested > commented out). Well, for one, in the value being matched there is no date. Could you provide an example of a failing message so we can check why the data retrieved from the Received header does not contain any date info? Regards, Stephan. From claudio.prono at atpss.net Wed Jun 22 15:48:22 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 14:48:22 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E01E029.5030208@rename-it.nl> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> <4E01E029.5030208@rename-it.nl> Message-ID: <4E01E496.7090707@atpss.net> Il 22/06/2011 14.29, Stephan Bosch ha scritto: > > Op 22-6-2011 13:36, Claudio Prono schreef: >> Il 14/06/2011 23.01, Stephan Bosch ha scritto: >>> >>> I'm currently on vacation and I can't quite get my head around these >>> regexes. The best thing you can do now is debug it in more detail by >>> using the sieve-test trace debugging features (using -t and -T >>> options), as documented in the man page. This way, you can see what is >>> matched how and which actions are performed. Then, you can narrow it >>> down to one specific failing test. >> I have tryied with the debug level higher of sieve-test, and the result >> is the following: >> >> sieve-test -t - -Tlevel=matching /tmp/.dovecot.sieve >> 1308741872.M858197P18322.mail2\,S\=1138\,W\=1168 >> > >> 8: header test >> 8: starting `:regex' match with `i;ascii-casemap' comparator: >> 8: extracting `Received' headers from message >> 8: matching value `from private (charon.mediaservice.net >> [213.254.20.254])' >> 8: with regex `^.*(2011) (\(.*\) )?..:..:.. (\(.*\) >> )?(\+|\-)....( \(.*\))?$' [id=0] => 0 >> 8: finishing match with result: not matched > > > >> As i can see, the regex of the year is not matching.... but why? Also, >> the other regex for the Month or the day, are not matching (tested >> commented out). > > Well, for one, in the value being matched there is no date. Could you > provide an example of a failing message so we can check why the data > retrieved from the Received header does not contain any date info? > Sure, here it is: Return-Path: Delivered-To: claudio at mediaservice.net Received: from private (XXX.mediaservice.net [XXX.XXX.XXX.XXX]) Message-ID: <4E01D0EF.5010300 at atpss.net> Date: Wed, 22 Jun 2011 13:24:31 +0200 From: Claudio Prono Reply-To: claudio.prono at atpss.net User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; it; rv:1.9.2.17) Gecko/20110414 Lightning/1.0b2 Thunderbird/3.1.10 MIME-Version: 1.0 To: claudio Subject: test X-Enigmail-Version: 1.1.1 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From claudio.prono at atpss.net Wed Jun 22 15:52:40 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 14:52:40 +0200 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database In-Reply-To: <4E01DD67.8060805@simonecaruso.com> References: <4E01A6DB.3090807@atpss.net> <4E01DD67.8060805@simonecaruso.com> Message-ID: <4E01E598.3020402@atpss.net> Il 22/06/2011 14.17, Simone Caruso ha scritto: > On 22/06/2011 10:24, Claudio Prono wrote: >> mail_location = maildir:/var/mail/virtual/%d/%u >> mail_home = /var/mail/virtual/%d/%u/ > Dovecot complains because mail_home should be -ne mail_location > Sorry but is not clear to me... mail_location sould be not equal to mail_location.... so i can leave empty mail_home? Or viceversa? -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From stephan at rename-it.nl Wed Jun 22 16:24:56 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 15:24:56 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E01E496.7090707@atpss.net> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> <4E01E029.5030208@rename-it.nl> <4E01E496.7090707@atpss.net> Message-ID: <4E01ED28.3010802@rename-it.nl> Op 22-6-2011 14:48, Claudio Prono schreef: > Il 22/06/2011 14.29, Stephan Bosch ha scritto: >> Op 22-6-2011 13:36, Claudio Prono schreef: >>> As i can see, the regex of the year is not matching.... but why? Also, >>> the other regex for the Month or the day, are not matching (tested >>> commented out). >> Well, for one, in the value being matched there is no date. Could you >> provide an example of a failing message so we can check why the data >> retrieved from the Received header does not contain any date info? > Sure, here it is: > > Received: from private (XXX.mediaservice.net [XXX.XXX.XXX.XXX]) This is not a valid Received header. Looks like something in your mail path eats multi-line (folded) headers. It should look like this (the stuff in parentheses is comment and thus optional): Received: from dovecot.org ([193.210.130.67]:60628) by drpepper.rename-it.nl with esmtp (Exim 4.72) (envelope-from) id 1QZMt9-00017I-4Y for stephan at rename-it.nl; Wed, 22 Jun 2011 14:50:39 +0200 You seem to have only the first line left. I wouldn't know what could cause this. Regards, Stephan From info at simonecaruso.com Wed Jun 22 16:32:11 2011 From: info at simonecaruso.com (Simone Caruso) Date: Wed, 22 Jun 2011 15:32:11 +0200 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database In-Reply-To: <4E01E598.3020402@atpss.net> References: <4E01A6DB.3090807@atpss.net> <4E01DD67.8060805@simonecaruso.com> <4E01E598.3020402@atpss.net> Message-ID: <4E01EEDB.3040709@simonecaruso.com> On 22/06/2011 14:52, Claudio Prono wrote: > > > Il 22/06/2011 14.17, Simone Caruso ha scritto: >> On 22/06/2011 10:24, Claudio Prono wrote: >>> mail_location = maildir:/var/mail/virtual/%d/%u >>> mail_home = /var/mail/virtual/%d/%u/ >> Dovecot complains because mail_home should be -ne mail_location >> > Sorry but is not clear to me... mail_location sould be not equal to > mail_location.... so i can leave empty mail_home? Or viceversa? > You have to use another dir for mail_home (not empty), different from mail_localtion. rif: http://wiki.dovecot.org/MailLocation "Homeless users" -- Simone Caruso IT Consultant p.iva: 03045250838 From ml at smtp.fakessh.eu Wed Jun 22 17:05:05 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Wed, 22 Jun 2011 16:05:05 +0200 Subject: [Dovecot] sieve problem email silently discard In-Reply-To: <4E01A605.4060401@rename-it.nl> References: <201106220318.40833.ml@smtp.fakessh.eu> <4E01A605.4060401@rename-it.nl> Message-ID: <201106221605.11760.ml@smtp.fakessh.eu> Le mercredi 22 juin 2011 10:21, Stephan Bosch a ?crit?: > Op 22-6-2011 3:18, ml at smtp.fakessh.eu schreef: > > hello folks > > hello Timo > > hello all the guru > > > > I met a few times the problem or an email that passes through a sieve > > script is silently discard > > after delivery but never returned to the inbox > > > > all testimonials are welcome > > We cannot say much about this problem, unless we get some more information: > > 1) What is your configuration? Provide the output of dovecot -n. > my dovecot -n ~]# /usr/sbin/dovecot -n # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32.2-xxxx-grs-ipv6-32 i686 CentOS release 5.6 (Final) auth_mechanisms = plain login base_dir = /var/run/dovecot/ lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes listen = [::] log_path = /var/log/maillog log_timestamp = %Y-%m-%d %H:%M:%S login_log_format_elements = user=<%u> method=%m rip=%r lip=%l %c mail_location = maildir:~/Maildir mail_max_userip_connections = 20 managesieve_notify_capability = mailto managesieve_sieve_capability = comparator-i;octet comparator-i;ascii-casemap fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date spamtest spamtestplus virustest namespace { inbox = yes location = prefix = separator = . } passdb { driver = pam } plugin { autocreate = Trash autocreate2 = Junk autocreate3 = Sent autocreate4 = Drafts autosubscribe = Trash autosubscribe2 = Junk autosubscribe3 = Sent autosubscribe4 = Drafts plugin = $mail_plugins autocreate managesieve sieve sieve = ~/.dovecot.sieve sieve_before = /var/sieve-scripts/roundcube.sieve sieve_dir = ~/sieve sieve_global_path = whatever } protocols = sieve imap pop3 service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0600 user = postfix } unix_listener auth-master { mode = 0666 } unix_listener auth-userdb { mode = 0666 } vsz_limit = 64 M } service imap-login { inet_listener imap { port = 0 } inet_listener imaps { address = * , [::] port = 993 } process_limit = 128 vsz_limit = 64 M } service imap { client_limit = 1 service_count = 0 } service managesieve-login { inet_listener managesieve-login { address = * , [::] port = 2000 } process_limit = 128 vsz_limit = 64 M } service pop3-login { inet_listener pop3 { port = 0 } inet_listener pop3s { address = * , [::] port = 995 } process_limit = 128 vsz_limit = 64 M } ssl_ca = 2) Is it reproducible somehow? > this is rare but does occur from time to time. I do not know how to reproduce > - What is the Sieve script you see this behavior for? Or does it > happen for all users? i use a simple script sieve of this style ~]$ cat .dovecot.sieve require ["fileinto", "mailbox" ,"reject", "regex", "variables","envelope", "subaddress"]; # rule:[perl] if anyof (header :contains "Return-Path" "perl.apache.org", header :contains "Return-Path" "perl",header :contains "Return-Path" "groups.yahoo.com", header :contains "Return-Path" "jaos", header :contains "Return-Path" "dkimproxy", header :contains "Return-Path" "mongueurs", header :contains "Return-Path" "pep", header :contains "Subject" "dkimproxy", header :contains "To" "perl at mongueurs.net", header :contains "To" "pep at perl.org", header :contains "To" "perlwebmail-devel at jaos.org", header :contains "Return-Path" "jlong at messiah.edu", header :contains "To" "dkimproxy-users at lists.sourceforge.net", header :contains "Cc" "dkimproxy-users at lists.sourceforge.net",header :contains "Return-Path" "templates-bounces at template-toolkit.org",header :contains "Return-Path" "pm.org") { fileinto :create "INBOX.perl"; stop; } > > - Is there a specific kind of incoming message that gets discarded > all the time? no there is no particular type of message just some messages > > 3) Is there any error or other message in the logs that may explain this > behavior? > egrep lda /var/log/maillog 2011-06-22 14:34:45lda(fakessh): Info: sieve: msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if not explicitly delivered (discard action) 2011-06-22 14:34:45lda(root): Info: sieve: msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if not explicitly delivered (discard action) > Regards, > > Stephan. thanks Stephan -- ?http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 ?gpg --keyserver pgp.mit.edu --recv-key 092164A7 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From stephan at rename-it.nl Wed Jun 22 17:41:53 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 16:41:53 +0200 Subject: [Dovecot] sieve problem email silently discard In-Reply-To: <201106221605.11760.ml@smtp.fakessh.eu> References: <201106220318.40833.ml@smtp.fakessh.eu> <4E01A605.4060401@rename-it.nl> <201106221605.11760.ml@smtp.fakessh.eu> Message-ID: <4E01FF31.4060003@rename-it.nl> Op 22-6-2011 16:05, ml at smtp.fakessh.eu schreef: > Le mercredi 22 juin 2011 10:21, Stephan Bosch a ?crit : >> Op 22-6-2011 3:18, ml at smtp.fakessh.eu schreef: >>> I met a few times the problem or an email that passes through a sieve >>> script is silently discard >> We cannot say much about this problem, unless we get some more information: >> >> 1) What is your configuration? Provide the output of dovecot -n. > my dovecot -n > plugin = $mail_plugins autocreate managesieve sieve > sieve = ~/.dovecot.sieve > sieve_before = /var/sieve-scripts/roundcube.sieve > sieve_dir = ~/sieve > sieve_global_path = whatever Ok, so you are using multiscript with sieve_before. >> 2) Is it reproducible somehow? > this is rare but does occur from time to time. I do not know how to reproduce :/ >> - What is the Sieve script you see this behavior for? Or does it >> happen for all users? > i use a simple script sieve > of this style > ~]$ cat .dovecot.sieve >> 3) Is there any error or other message in the logs that may explain this >> behavior? > egrep lda /var/log/maillog > > 2011-06-22 14:34:45lda(fakessh): Info: sieve: > msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if not > explicitly delivered (discard action) > 2011-06-22 14:34:45lda(root): Info: sieve: > msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if not > explicitly delivered (discard action) This is really strange. Even though your script does not contain a discard command, the message is discarded through an explicit discard action. I do notice that you are using the multiscript feature using sieve_before and I expect that our problem is there. Notice that the same message is discarded in an identical manner for two different users (root and fakessh). What does /var/sieve-scripts/roundcube.sieve contain? Also, it can be helpful to enable mail_debug to get more info on what scripts are being executed and which script actually triggers the discard action. Regards, Stephan. From ml at smtp.fakessh.eu Wed Jun 22 18:12:50 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Wed, 22 Jun 2011 17:12:50 +0200 Subject: [Dovecot] sieve problem email silently discard In-Reply-To: <4E01FF31.4060003@rename-it.nl> References: <201106220318.40833.ml@smtp.fakessh.eu> <201106221605.11760.ml@smtp.fakessh.eu> <4E01FF31.4060003@rename-it.nl> Message-ID: <201106221712.56577.ml@smtp.fakessh.eu> Le mercredi 22 juin 2011 16:41, Stephan Bosch a ?crit?: > Op 22-6-2011 16:05, ml at smtp.fakessh.eu schreef: > > Le mercredi 22 juin 2011 10:21, Stephan Bosch a ?crit : > >> Op 22-6-2011 3:18, ml at smtp.fakessh.eu schreef: > >>> I met a few times the problem or an email that passes through a sieve > >>> script is silently discard > >> > > > > egrep lda /var/log/maillog > > > > 2011-06-22 14:34:45lda(fakessh): Info: sieve: > > msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if > > not explicitly delivered (discard action) > > 2011-06-22 14:34:45lda(root): Info: sieve: > > msgid=<4E01E14E.4040401 at sr******.info>: marked message to be discarded if > > not explicitly delivered (discard action) > > This is really strange. Even though your script does not contain a > discard command, the message is discarded through an explicit discard > action. I do notice that you are using the multiscript feature using > sieve_before and I expect that our problem is there. Notice that the > same message is discarded in an identical manner for two different users > (root and fakessh). What does /var/sieve-scripts/roundcube.sieve contain? > /var/sieve-scripts/roundcube.sieve contains a series of commands to handle spam ~]# cat /var/sieve-scripts/roundcube.sieve require ["fileinto","regex","comparator-i;ascii-numeric","reject","relational"]; # rule:[spammanage] #if anyof (header :contains "X-Spam-Flag" "YES") #{ # fileinto "Junk"; #} if header :value "ge" :comparator "i;ascii-numeric" ["X-Spam-score"] ["500"] { discard; stop; } if header :value "ge" :comparator "i;ascii-numeric" ["X-Spam-score"] ["100"] { fileinto "Junk.spam"; stop; } if header :value "ge" :comparator "i;ascii-numeric" ["X-Spam-score"] ["10"] { fileinto "Junk"; } elsif anyof ( header :contains "Received" [ "[4.63.221.224", "[24.244.141.112", "[61.171.253.177", "[63.123.149.", "[63.209.206.", "(63.233.30.73", "[63.251.200.", "[64.41.183.","[64.49.250.", "[64.57.188.", "[64.57.221.", "[64.62.204.", "[64.70.17.", "[64.70.44.", "[64.70.53.", "[64.39.27.6", "[64.39.27.7","[64.191.25.","[64.191.36.", "[64.191.9.", "[64.125.181.", "[64.191.123.", "[64.191.23.", "[64.239.182.", "[65.211.3.", "[66.46.150.", "[66.62.162.", "[66.118.170.", "[66.129.124.", "[66.205.217.", "[66.216.111.", "[66.239.204.", "[67.86.69.", "[80.34.206.", "[80.80.98.", "[81.72.233.13", "[128.242.120.", "[157.238.18", "[168.234.195.18]", "[193.253.198.57", "[194.25.83.1", "[200.24.129.", "[200.161.203.", "[202.164.182.76]","[202.57.69.116", "[203.19.220.","[203.22.104.","[203.22.105.", "[204.188.52.", "[205.153.154.203", "[206.26.195.", "[206.154.33.","[206.169.178", "[207.142.3.", "[208.46.5.","[208.187.", "[209.164.27.","[209.236.", "[210.90.75.129]", "[211.101.138.199","[211.185.7.125]","[211.239.231.", "[212.240.95.", "[213.47.250.139", "[213.225.61.", "[216.22.79.","[216.39.115.","[216.99.240.", "[216.126.32.", "[216.187.123.","[217.36.124.53", "[218.145.25","[218.52.71.103","[218.158.136.115", "[218.160.42.74", "[218.242.112.4" , "[94.23.116.93" ] ) { fileinto "Junk"; } elsif anyof ( header :contains ["SPAM", "X-Spam-hits"] ["ADDRESSES_ON_CD","ACT_NOW","and other hits" ] ) { fileinto "Junk"; } > Also, it can be helpful to enable mail_debug to get more info on what > scripts are being executed and which script actually triggers the > discard action. > > Regards, > > Stephan. I just set up mail_debug = yes I expect the next reject in order to give you more information -- ?http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 ?gpg --keyserver pgp.mit.edu --recv-key 092164A7 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From claudio.prono at atpss.net Wed Jun 22 18:49:08 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 22 Jun 2011 17:49:08 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E01ED28.3010802@rename-it.nl> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> <4E01E029.5030208@rename-it.nl> <4E01E496.7090707@atpss.net> <4E01ED28.3010802@rename-it.nl> Message-ID: <4E020EF4.1010105@atpss.net> Il 22/06/2011 15.24, Stephan Bosch ha scritto: > Op 22-6-2011 14:48, Claudio Prono schreef: >> Il 22/06/2011 14.29, Stephan Bosch ha scritto: >>> Op 22-6-2011 13:36, Claudio Prono schreef: >>>> As i can see, the regex of the year is not matching.... but why? Also, >>>> the other regex for the Month or the day, are not matching (tested >>>> commented out). >>> Well, for one, in the value being matched there is no date. Could you >>> provide an example of a failing message so we can check why the data >>> retrieved from the Received header does not contain any date info? >> Sure, here it is: >> > >> Received: from private (XXX.mediaservice.net [XXX.XXX.XXX.XXX]) > > > This is not a valid Received header. Looks like something in your mail > path eats multi-line (folded) headers. It should look like this (the > stuff in parentheses is comment and thus optional): > > Received: from dovecot.org ([193.210.130.67]:60628) > by drpepper.rename-it.nl with esmtp (Exim 4.72) > (envelope-from) > id 1QZMt9-00017I-4Y > for stephan at rename-it.nl; Wed, 22 Jun 2011 14:50:39 +0200 > > You seem to have only the first line left. I wouldn't know what could > cause this. > Ok, is a problem of my internal mails, i have a regex matching my internal class and modifying che headers of the mail on the fly. Now i have made a test with an external mail. Here is the headers of the mail: Return-Path: Delivered-To: claudio at mediaservice.net Received: from localhost (localhost [127.0.0.1]) by mail2.mediaservice.net (Postfix) with SMTP id 59263B1827D for ; Wed, 22 Jun 2011 17:43:07 +0200 (CEST) Received: from smtp302.alice.it (smtp302.alice.it [82.57.200.118]) by mail2.mediaservice.net (Postfix) with ESMTP id 256F2B18279 for ; Wed, 22 Jun 2011 17:43:07 +0200 (CEST) Received: from feu14-alice (82.57.204.69) by smtp302.alice.it (8.5.124.08) id 4DEE2478005DA4C7 for claudio at mediaservice.net; Wed, 22 Jun 2011 17:43:06 +0200 Received: from (79.4.123.31) by alicemail.rossoalice.alice.it; Wed, 22 Jun 2011 17:43:06 +0200 Message-ID: <130b804e67b.cybercloud at alice.it> Date: Wed, 22 Jun 2011 17:43:06 +0200 (CEST) From: "cybercloud at alice.it" Reply-To: "cybercloud at alice.it" To: claudio at mediaservice.net Subject: test vacation Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_43520_25034745.1308757386914" X-Originating-IP: 79.4.123.31 X-DSPAM-Result: Whitelisted X-DSPAM-Processed: Wed Jun 22 17:43:07 2011 X-DSPAM-Confidence: 0.9901 X-DSPAM-Probability: 0.0000 X-DSPAM-Signature: 1,4e020d8b286456121419446 ------=_Part_43520_25034745.1308757386914 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Message !DSPAM:1,4e020d8b286456121419446! ------=_Part_43520_25034745.1308757386914 Content-Type: text/html;charset="UTF-8" Content-Transfer-Encoding: 7bit And there is the sieve-test: sieve-test -t - -Tlevel=matching .dovecot.sieve 1308757387.M635481P28650.mail2\,S\=1845\,W\=1893 ## Started executing script '.dovecot' 7: exists test 7: header `list-help' is missing 7: headers are missing 7: jump if result is true 7: not jumping 7: header test 7: starting `:is' match with `i;ascii-casemap' comparator: 7: extracting `Precedence' headers from message 7: finishing match with result: not matched 7: jump if result is true 7: not jumping 7: header test 7: starting `:matches' match with `i;ascii-casemap' comparator: 7: extracting `To' headers from message 7: matching value `claudio at mediaservice.net' 7: with key `Multiple recipients of*' => 0 7: finishing match with result: not matched 7: jump if result is true 7: not jumping 9: header test 9: starting `:regex' match with `i;ascii-casemap' comparator: 9: extracting `Received' headers from message 9: matching value `from localhost (localhost [127.0.0.1]) by mail2.mediaservice.net (Postfix) wi...' 9: with regex `^.*(May) (\(.*\) )?.... (\(.*\) )?..:..:.. (\(.*\) )?(\+|\-)....( \(.*\))?$' [id=0] => 0 9: matching value `from smtp302.alice.it (smtp302.alice.it [82.57.200.118]) by mail2.mediaservic...' 9: with compiled regex [id=0] => 0 9: matching value `from feu14-alice (82.57.204.69) by smtp302.alice.it (8.5.124.08) id 4D...' 9: with compiled regex [id=0] => 0 9: matching value `from (79.4.123.31) by alicemail.rossoalice.alice.it; Wed, 22 Jun 2011 17:43:...' 9: with compiled regex [id=0] => 0 9: finishing match with result: not matched 9: jump if result is false 9: jumping to line 10 ## Finished executing script '.dovecot' Performed actions: (none) Implicit keep: * store message in folder: INBOX sieve-test(root): Info: final result: success And also in this case, no vacation at all... but different output.... that can be useful? Cordially, Claudio Prono. > !DSPAM:1,4e01ed38232161453618201! > > > -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From shopik at inblock.ru Wed Jun 22 19:08:32 2011 From: shopik at inblock.ru (Nikolay Shopik) Date: Wed, 22 Jun 2011 20:08:32 +0400 Subject: [Dovecot] LIST-EXTENDED support? In-Reply-To: <4E013D9E.70805@gmail.com> References: <4E013D9E.70805@gmail.com> Message-ID: <4E021380.7050100@inblock.ru> On 22.06.2011 4:55, fusionstream wrote: > Hi there. > > Can I check if LIST-EXTENDED refers to RFC 6154 > (http://tools.ietf.org/html/rfc6154), rfc for special use mailboxes. > > I'd like to specify a designated folder as \Spam and etc. Googling > "dovecot list-extended" and "dovecot special use" suggests that dovecot > supports this feature (via patch logs and 1 bug report for Mozilla > Thunderbird which suggests that dovecot supports this). > > However when trying to test this feature via thunderbird, it would seem > to suggest that it is not currently possible. (Moving folders that > Thunderbird has created forces thunderbird to recreate said folder in > it's original location) > > # dovecot --version > 1.2.17 > > Any help/pointers appreciated. > > Cheers. > You misunderstanding RFC6154, LIST-EXTENDED is RFC5258, while RFC6154 is SPECIAL-USE extension. From giom87 at libero.it Wed Jun 22 19:18:21 2011 From: giom87 at libero.it (Giovanni Mancuso) Date: Wed, 22 Jun 2011 18:18:21 +0200 Subject: [Dovecot] Interrupted system call in imap-login Message-ID: <4E0215CD.7050203@libero.it> Hi, We have some problems with dovecot 1.2.11 that we can't resolve yet The problem is that we have in maillog: imap-login: Error: Can't connect to auth server at default: Interrupted system call The operating system is Solaris 9, and sometimes dovecot works fine. Dovecot is configured to use ldap. The dovecot -n : log_path: /var/log/maillog info_log_path: /var/log/maillog log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s listen(default): xxx.xxx.xxx.xxx:143 listen(imap): xxx.xxx.xxx.xxx:143 listen(pop3): xxx.xxx.xxx.xxx:110 ssl_listen(default): xxx.xxx.xxx.xxx:993 ssl_listen(imap): xxx.xxx.xxx.xxx:993 ssl_listen(pop3): xxx.xxx.xxx.xxx:995 ssl_cert_file: /opt/dovecot/certs/imapd.pem ssl_key_file: /opt/dovecot/certs/imapd.pem disable_plaintext_auth: no login_dir: /opt/dovecot/var/run/dovecot/login login_executable(default): /opt/dovecot/libexec/dovecot/imap-login login_executable(imap): /opt/dovecot/libexec/dovecot/imap-login login_executable(pop3): /opt/dovecot/libexec/dovecot/pop3-login max_mail_processes: 1024 first_valid_uid: 102 first_valid_gid: 101 mail_uid: 102 mail_gid: 101 mail_location: maildir:%h/Maildir mmap_disable: yes dotlock_use_excl: no mail_nfs_storage: yes mail_nfs_index: yes lock_method: dotlock mbox_write_locks: fcntl mail_drop_priv_before_exec: yes mail_executable(default): /opt/dovecot/libexec/dovecot/imap mail_executable(imap): /opt/dovecot/libexec/dovecot/imap mail_executable(pop3): /opt/dovecot/libexec/dovecot/pop3 mail_plugins(default): quota imap_quota mail_plugins(imap): quota imap_quota mail_plugins(pop3): quota mail_plugin_dir(default): /opt/dovecot/lib/dovecot/imap mail_plugin_dir(imap): /opt/dovecot/lib/dovecot/imap mail_plugin_dir(pop3): /opt/dovecot/lib/dovecot/pop3 pop3_uidl_format(default): %08Xu%08Xv pop3_uidl_format(imap): %08Xu%08Xv pop3_uidl_format(pop3): UID%u-%v namespace: type: private separator: . prefix: INBOX. inbox: yes list: yes subscriptions: yes auth default: master_user_separator: * debug: yes worker_max_count: 50 passdb: driver: passwd-file args: /opt/dovecot/etc/passwd.masterusers master: yes passdb: driver: ldap args: /opt/dovecot/etc/dovecot-ldap.conf userdb: driver: ldap args: /opt/dovecot/etc/dovecot-ldap.conf plugin: quota: maildir quota_rule2: Trash:storage=100M I try to chage nsswitch.conf, I see the ldap logs, ecc... But I don't find anything I really don't know what to do now, can you help us please? I tried to update dovecot with 1.2.17 version, but the problem is the same. Thanks From stephan at rename-it.nl Wed Jun 22 19:47:37 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Wed, 22 Jun 2011 18:47:37 +0200 Subject: [Dovecot] Dovecot 2.0.13 and sieve In-Reply-To: <4E020EF4.1010105@atpss.net> References: <4DF7169D.1080602@atpss.net> <4DF7CC1C.60807@rename-it.nl> <4E01D3D7.2000208@atpss.net> <4E01E029.5030208@rename-it.nl> <4E01E496.7090707@atpss.net> <4E01ED28.3010802@rename-it.nl> <4E020EF4.1010105@atpss.net> Message-ID: <4E021CA9.1020103@rename-it.nl> Op 22-6-2011 17:49, Claudio Prono schreef: > And also in this case, no vacation at all... but different output.... > that can be useful? Eh. I've finally spent some time to conclusively derive what this horrible regex mess is supposed to achieve. Concretely, it checks whether a specific date is mentioned in the Received headers. If not, the vacation is not performed. So, you must check the functionality with a message that has a date matching the regex. In your first e-mail this was 10 June 2011. The trace log you provided in your last e-mail uses a date some time in May (obviously you had the script re-generated by Ingo at some point). I've modified your test e-mail to have a date of 10 June 2011 and I checked it with the script example you provided: it successfully yields a vacation response. Regards, Stephan. From tss at iki.fi Wed Jun 22 20:28:12 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:28:12 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> Message-ID: <1308763692.10421.909.camel@hurina> I did some fixes to my original patch to make it actually work the way I intended: http://hg.dovecot.org/dovecot-2.0/rev/3d07ab746a67 On Tue, 2011-06-14 at 17:38 +0200, Antonio Perez-Aranda wrote: > Maybe this could be a "feature request" for dovecot 2.0.14 - 2.0.15 or 2.1 ? > > 2011/6/9 Antonio Perez-Aranda : > > This patch fix a bug and remove some debug info from patch sent before. > > > > 2011/6/9 Antonio Perez-Aranda : > >> This patch is running but it only run with mail_plugins. > >> > >> This is because I can't select the "mail_plugins" value from any > >> function to get this throw the name key. > >> > >> Maybe this need more hard development to do this as generic "property" > >> for any config value. > >> > >> 2011/6/9 Antonio Perez-Aranda : > >>> Well, this "extrange" vaues is NULL. > >>> > >>> Maybe, the set_parser is a new environment to set settings but then > >>> ?when is make the config merge? > >>> > >>> 2011/6/9 Antonio Perez-Aranda : > >>>> This line: > >>>> > >>>> value = settings_parse_get_value(set_parser, key, &type); > >>>> > >>>> Is returning a empty value. Maybe, set_parser has been cleared? > >>>> > >>>> If I try to get another keys from my config that I can watch with > >>>> doveadm I get "extrange" values like this with i_debug() > >>>> > >>>> * mail_debug -> #001 > >>>> * mail_location -> #010 > >>>> * auth_realms -> #020#002 > >>>> > >>>> > >>>> 2011/6/8 Antonio Perez-Aranda : > >>>>> It must run on dovecot 2.0.13? > >>>>> > >>>>> We are upgrading to 2.0.13 and with this I get the follow message: > >>>>> > >>>>> Jun 8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: > >>>>> +mail_plugins=fts fts_solr?G > >>>>> > >>>>> > >>>>> 2011/6/7 Timo Sirainen : > >>>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: > >>>>>>> Greats, I'm working on patch from this morning, but it's very hard to > >>>>>>> debug on settings-parser > >>>>>> > >>>>>> I don't think you should need to touch that code. It's a bit difficult > >>>>>> for me also to follow.. > >>>>>> > >>>>>>> How can I enable i_debug on settings-parser.c ? > >>>>>> > >>>>>> What do you mean? You could add i_debug() calls and it should work just > >>>>>> the same as everywhere. > >>>>>> > >>>>>> Did you try the patch in my previous mail? I think that should be > >>>>>> enough. You could then use: > >>>>>> > >>>>>> user_attrs = .., mailPlugins=+mail_plugins > >>>>>> > >>>>>> > >>>>>> > >>>>> > >>>>> > >>>>> > >>>>> -- > >>>>> Antonio P?rez-Aranda Alcaide > >>>>> aperezaranda at yaco.es > >>>>> > >>>>> Yaco Sistemas S.L. > >>>>> http://www.yaco.es/ > >>>>> C/ Rioja 5, 41001 Sevilla > >>>>> Tel?fono +34 954 50 00 57 > >>>>> Fax +34 954 50 09 29 > >>>>> > >>>> > >>>> > >>>> > >>>> -- > >>>> Antonio P?rez-Aranda Alcaide > >>>> aperezaranda at yaco.es > >>>> > >>>> Yaco Sistemas S.L. > >>>> http://www.yaco.es/ > >>>> C/ Rioja 5, 41001 Sevilla > >>>> Tel?fono +34 954 50 00 57 > >>>> Fax +34 954 50 09 29 > >>>> > >>> > >>> > >>> > >>> -- > >>> Antonio P?rez-Aranda Alcaide > >>> aperezaranda at yaco.es > >>> > >>> Yaco Sistemas S.L. > >>> http://www.yaco.es/ > >>> C/ Rioja 5, 41001 Sevilla > >>> Tel?fono +34 954 50 00 57 > >>> Fax +34 954 50 09 29 > >>> > >> > >> > >> > >> -- > >> Antonio P?rez-Aranda Alcaide > >> aperezaranda at yaco.es > >> > >> Yaco Sistemas S.L. > >> http://www.yaco.es/ > >> C/ Rioja 5, 41001 Sevilla > >> Tel?fono +34 954 50 00 57 > >> Fax +34 954 50 09 29 > >> > > > > > > > > -- > > Antonio P?rez-Aranda Alcaide > > aperezaranda at yaco.es > > > > Yaco Sistemas S.L. > > http://www.yaco.es/ > > C/ Rioja 5, 41001 Sevilla > > Tel?fono +34 954 50 00 57 > > Fax +34 954 50 09 29 > > > > > From tss at iki.fi Wed Jun 22 20:29:27 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:29:27 +0300 Subject: [Dovecot] ACL's from userdb In-Reply-To: References: <4DF6777F.9010107@amfes.com> <4DF71979.8080006@es2eng.com> Message-ID: <1308763767.10421.910.camel@hurina> On Tue, 2011-06-14 at 11:10 -0700, Daniel L. Miller wrote: > Are "acl_groups" a list of UNIX groups? Or are they defined somewhere > else within Dovecot? ACL groups are only a list of groups that are used by ACL plugin when applying the ACLs from the dovecot-acl files. There's no requirement for them to match UNIX groups. There's no need to list them anywhere. From tss at iki.fi Wed Jun 22 20:33:37 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:33:37 +0300 Subject: [Dovecot] Waiting for authentication process to respond.. In-Reply-To: <4DF8A853.8050905@ifm.liu.se> References: <4DF8A853.8050905@ifm.liu.se> Message-ID: <1308764017.10421.913.camel@hurina> On Wed, 2011-06-15 at 14:40 +0200, Peter Eriksson wrote: > Hmm... I'm seeing a lot of: > > > * OK Waiting for authentication process to respond.. > > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE > IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=GSSAPI AUTH=GSS-SPNEGO] Welcome > to the IFM Dovecot Mail Server. > > when IMAP clients connect to our server (ie that "Waiting for.." message > before the login OK message). > > Now, most clients seems to handle this extra information message just > fine, but it still is annoying me. It doesn't appear all the time, but > pretty often... > > What can I adjust/fix in order to make it go away? I'd guess it means two things: 1) Client doesn't actually care about the OK reply at all, and tries to send some command immediately after connecting. 2) You're using the "high-security mode" of login processes, which is why there is a small delay before login process gets a reply from auth. You could switch to either "high-performance mode" (http://wiki2.dovecot.org/LoginProcess) or probably just setting service imap-login { process_min_avail } to some small number also helps. From tss at iki.fi Wed Jun 22 20:35:44 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:35:44 +0300 Subject: [Dovecot] high number of processes In-Reply-To: <4DF7B7DC.7060608@vandenbussche.nl> References: <4DF7B7DC.7060608@vandenbussche.nl> Message-ID: <1308764144.10421.914.camel@hurina> On Tue, 2011-06-14 at 21:34 +0200, Egbert Jan van den Bussche wrote: > Hi, > > Sometimes a script kiddie tries to guess passwords on our mailserver > (Ubuntu 10.04.2 LTS, postfix, dovecot 1.2.9, scanners, the standard > stuff). That leads to a nagios message about the high number of > processes. The number goes above 500. What processes are they? > Nagios threshold is set to 250, > which is more than enough for normal operation of this server. When are > these processes supposed to die again? They seem to stay at the high > count quite long. > > Is there a way to limit the generation of extra login processes? Can I > tune the login_process... params a bit? I have then all on default. With defaults you shouldn't get more than 128 login processes, so I don't know why they would go to 500. http://wiki.dovecot.org/LoginProcess anyway may be helpful. From list at airstreamcomm.net Wed Jun 22 20:35:04 2011 From: list at airstreamcomm.net (list at airstreamcomm.net) Date: Wed, 22 Jun 2011 12:35:04 -0500 Subject: [Dovecot] SQL config error Message-ID: Currently using 2.0.12, configured the auth-sql.conf to look like this for password lookups (doing smtp auth with postfix, so I am not actually running pop or imap, just auth): passdb { driver = sql connect = host=server.net dbname=passwd user=sqluser password='password' default_pass_scheme = CRYPT password_query = SELECT CONCAT(username,'@domain.net') as user, pw as password FROM passwd WHERE username = '%n' # Path for SQL configuration file, see example-config/dovecot-sql.conf.ext args = /etc/dovecot/dovecot-sql.conf.ext } Starting Dovecot I am getting the following error: # 2.0.12: /etc/dovecot/dovecot.conf doveconf: Fatal: Error in configuration file /etc/dovecot/conf.d/auth-sql.conf.ext line 8: Unknown setting: connect This is my first time configuring SQL for Dovecot so I am not sure how "connect" is recognized as an unknown setting? Thanks. From tss at iki.fi Wed Jun 22 20:37:57 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:37:57 +0300 Subject: [Dovecot] Multiple values found for 'user', using value In-Reply-To: <201106161103.32370.komodo@uvt.cz> References: <201106161103.32370.komodo@uvt.cz> Message-ID: <1308764277.10421.916.camel@hurina> On Thu, 2011-06-16 at 11:03 +0200, komodo wrote: > Hi > > since latest upgrade on my machine, i have lot of warnings in my log, and i found that it is due > this change > > http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html > > Is there any option to disable these warnings ? Yes we have multiple UIDs so these warnings bothers > me. LDAP protocol doesn't give guarantees about values being returned in any specific order. Does your LDAP server? If you have multiple UIDs, do you always want the first one to be used? Why do you have multiple? From tss at iki.fi Wed Jun 22 20:39:42 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:39:42 +0300 Subject: [Dovecot] diacritic marks in password In-Reply-To: <4DF90287.90503@gmail.com> References: <4DF90287.90503@gmail.com> Message-ID: <1308764382.10421.917.camel@hurina> On Wed, 2011-06-15 at 20:05 +0100, pch0317 wrote: > Hi, > > I have dovecot 2.0.beta6 (on RedHat 6) and my user uses thunderbird > 3.1.10 (on Windows XP). > I use authentication via LDAP (Windows server 2003 AD). With auth_bind=yes? > When user use in password diacritic marks (?,?,?,?,?,?) authentication > failed. > > What can I do? Not much from Dovecot's side, I'm afraid. From tss at iki.fi Wed Jun 22 20:43:38 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:43:38 +0300 Subject: [Dovecot] Question about "Storage keeps breaking" in logs In-Reply-To: <20110619105942.75870@gmx.com> References: <20110619105942.75870@gmx.com> Message-ID: <1308764618.10421.918.camel@hurina> On Sun, 2011-06-19 at 10:59 +0000, Maria Arrea wrote: > /var/log/maillog.13.xz:Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones//18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking > /var/log/maillog.108.xz:Mar 4 01:42:09 buzon dovecot: imap(lbandera): Error: mdbox /buzones/0b/11/lbandera/mailboxes/Sent/dbox-Mails: Storage keeps breaking > /var/log/maillog.3.xz:Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama): Error: mdbox /buzones/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking > > > I have "rebuilt" those mdboxes with doveadm force-resync && doveadm quota recalc. Should I be worried? Why is this happening? Aren't there any other error/warning messages around them? From tss at iki.fi Wed Jun 22 20:49:46 2011 From: tss at iki.fi (Timo Sirainen) Date: Wed, 22 Jun 2011 20:49:46 +0300 Subject: [Dovecot] Performance settings for 500-1000User/per day In-Reply-To: <1308575813.7335.26.camel@pcdenny> References: <1308575813.7335.26.camel@pcdenny> Message-ID: <1308764986.10421.921.camel@hurina> On Mon, 2011-06-20 at 15:16 +0200, Denny Schierz wrote: > we have 2.0.13 running and most works well, but today we had some minor > problems: The IMAP login process takes sometimes to much time. Over > webmail (Roundcube 0.5.0.3) login wasn't sometimes possible, the normal > clients hasn't any problems, until they login. > > We had only ~ 20-30 active accounts, but 50-60 sessions. The most are > Apple products (Ip*/Mac/. ..)because they have 4 sessions or more open. > > Also we had ~212 processes with: > > dovenull 2065 4364 0 14:50:32 ? 0:00 dovecot/imap-login > vmail 2403 4364 0 14:58:31 ? 0:00 dovecot/imap I suppose that means you had 100 IMAP clients simultaneously connected using SSL, which used up all imap-login processes with default settings. There should have been a warning logged about it though. Switch to high performance login process mode (http://wiki2.dovecot.org/LoginProcess) or increase service imap-login { process_limit }. From cinzia.innocenzi at hp.com Wed Jun 22 13:31:37 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Wed, 22 Jun 2011 10:31:37 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> Hello, we have dovecot 2.0.13 installed in our RHEL5 servers. We use dovecot as a lmtp proxy on the front end mail relays and dovecot for back end lmtp/pop/imap. All our servers have RHEL5.6 64-bit and dovecot 2.0.13 installed, and the back end has also an ext3 mbox file-system mounted. Sometimes we have mails that get stuck on our postfix queue with the following error: Remote server not answering (timeout in DATA input) (in reply to end of DATA command) In our logs we only see the fact that the connection times out after 1 minute and gets disconnected: Jun 22 11:56:53 back-end dovecot: lmtp(3256): Connect from a.b.c.d Jun 22 11:57:53 back-end dovecot: lmtp(3256): Disconnect from a.b.c.d: Connection closed Jun 22 11:56:53 front-end dovecot: lmtp(16397): Connect from a.b.c.d Jun 22 11:57:53 front-end dovecot: lmtp(16397): Disconnect from a.b.c.d: Disconnected for inactivity We've tried to recalculate the mbox quota using "doveadm quota recalc -n ..." command and flushed our mail queue, but the mail still gets stuck on the postfix queue with the same error. It doesn't happen for every single mail, it's random. I'm attaching the output of dovecot -n for both servers. Can you please help us? Regards CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com Via Achille Campanile, 85 / Rome, Italy 00143 [cid:image001.jpg at 01CC30D7.612C3210] -------------- next part -------------- A non-text attachment was scrubbed... Name: image001.jpg Type: image/jpeg Size: 690 bytes Desc: image001.jpg URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: front-end-dovecot.conf Type: application/octet-stream Size: 1111 bytes Desc: front-end-dovecot.conf URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: back-end-dovecot.conf Type: application/octet-stream Size: 1515 bytes Desc: back-end-dovecot.conf URL: From philip at turmel.org Wed Jun 22 21:24:11 2011 From: philip at turmel.org (Phil Turmel) Date: Wed, 22 Jun 2011 14:24:11 -0400 Subject: [Dovecot] Change passwd backend over cron: what happens if changes while reading? In-Reply-To: <1308741571.7335.177.camel@pcdenny> References: <1308741571.7335.177.camel@pcdenny> Message-ID: <4E02334B.4050500@turmel.org> Hi Denny, On 06/22/2011 07:19 AM, Denny Schierz wrote: > I want to use two backends f?r DoveCot. One generated file from the LDAP > tree, and the real LDAP. > > The first backend is generated from a cronjob thats reads the whole ldap > server and converts them into a DoveCot passwd file. OK. > I red in the Wiki, if the user password isn't correct, than DoveCot asks > the second backend (LDAP). Is this correct? Because, the the user can > change his password, but Cron generates only every hour the file. So the > password in the passwd-file isn't correct, until Cron runs again. I don't know this. > The second, what happens, if Dovecot reads the file and in the same > moment, Cron generate the new file? Does he change to the second > backend? Or do I (the user) get an error? I do know this. If the cron job is writing directly to the passwd file, you will have opportunities where dovecot can see a partial file. I don't know what will happen for sure in this case, but you might trigger rare bugs. You should make your cron job write to a temporary new file, close it, then rename it to the correct name. This will atomically replace the old version with the update. If dovecot has the file open when you do this, it will carry on with the prior copy (delete will be deferred until the file is closed). Dovecot will see the changes the next time it opens the file. > > cu denny HTH, Phil From maria_arrea at gmx.com Wed Jun 22 22:32:11 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Wed, 22 Jun 2011 19:32:11 +0000 Subject: [Dovecot] Question about "Storage keeps breaking" in logs Message-ID: <20110622193211.75860@gmx.com> Here you have more detailed logs: First case: Jun 6 17:03:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/18/66/juanan/storage: rebuilding indexes Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones/18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=5960/766852 Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/P4. WebMed/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=1124/7377 Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: Recent flags state corrupted for mailbox Deleted Messages Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/Deleted Messages/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=5418/408785 Jun 6 17:09:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/us.es/18/66/juanan/storage: rebuilding indexes Jun 6 17:09:23 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 6 17:09:23 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=2134/4879108 Jun 6 17:19:33 buzon dovecot: lda(juanan): sieve: msgid=: stored mail into mailbox 'INBOX' Second case: Jun 16 11:48:24 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32282 Jun 16 11:48:24 buzon dovecot: imap(fjvalderrama at us.es): Warning: mdbox /buzones/0f/99/fjvalderrama/storage: rebuilding indexes Jun 16 11:48:29 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32510 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Error: mdbox /buzones/mydomain/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Error: mdbox /buzones/mydomain/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=132/574 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=60/406 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=98/423 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox Trash Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/Trash/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=20224/556432 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox SEV/AsigVirtual Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/SEV/AsigVirtual/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=940/62147 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/SEV/Miembros US/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=13061/37386 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox INBOX Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama at us.es): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/Drafts/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama at us.es): Disconnected: IMAP session state is inconsistent, please relogin. bytes=3238/7247 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=1451/22771 Jun 16 11:48:34 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32745 Do you need dovecot config to debug this? I can give it to you if needed. Regards Maria ----- Original Message ----- From: Timo Sirainen Sent: 06/22/11 07:43 PM To: Maria Arrea Subject: Re: [Dovecot] Question about "Storage keeps breaking" in logs On Sun, 2011-06-19 at 10:59 +0000, Maria Arrea wrote: > /var/log/maillog.13.xz:Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones//18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking > /var/log/maillog.3.xz:Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama): Error: mdbox /buzones/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking > > > I have "rebuilt" those mdboxes with doveadm force-resync && doveadm quota recalc. Should I be worried? Why is this happening? Aren't there any other error/warning messages around them? From info at simonecaruso.com Wed Jun 22 23:07:31 2011 From: info at simonecaruso.com (Simone Caruso) Date: Wed, 22 Jun 2011 22:07:31 +0200 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> Message-ID: <4E024B83.4050204@simonecaruso.com> if u already didnt, try setting 'mail_debug=yes' in config. -- Simone Caruso IT Consultant p.iva: 03045250838 From user+dovecot at localhost.localdomain.org Wed Jun 22 23:14:10 2011 From: user+dovecot at localhost.localdomain.org (Pascal Volk) Date: Wed, 22 Jun 2011 22:14:10 +0200 Subject: [Dovecot] SQL config error In-Reply-To: References: Message-ID: <4E024D12.5040309@localhost.localdomain.org> On 06/22/2011 07:35 PM list at airstreamcomm.net wrote: > Currently using 2.0.12, configured the auth-sql.conf to look like this for > password lookups (doing smtp auth with postfix, so I am not actually > running pop or imap, just auth): > > passdb { > driver = sql > connect = host=server.net dbname=passwd user=sqluser password='password' > default_pass_scheme = CRYPT > password_query = SELECT CONCAT(username,'@domain.net') as user, pw as > password FROM passwd WHERE username = '%n' > > # Path for SQL configuration file, see > example-config/dovecot-sql.conf.ext > args = /etc/dovecot/dovecot-sql.conf.ext > } > > Starting Dovecot I am getting the following error: > > # 2.0.12: /etc/dovecot/dovecot.conf > doveconf: Fatal: Error in configuration file > /etc/dovecot/conf.d/auth-sql.conf.ext line 8: Unknown setting: connect > > This is my first time configuring SQL for Dovecot so I am not sure how > "connect" is recognized as an unknown setting? It's an unknown setting in the passdb {} section. ,--[ $sysconfdir/dovecot/dovecot-sql.conf.ext ]-- | connect = ? | [default_pass_scheme = ?] | password_query = ? | user_query = ? | iterate_query = ? `-- ,--[ $sysconfdir/dovecot/conf.d/auth-sql.conf.ext ]-- | passdb { | driver = sql | args = $sysconfdir/dovecot/dovecot-sql.conf.ext ] } | userdb { | driver = sql | args = $sysconfdir/dovecot/dovecot-sql.conf.ext | } `-- Re4gards, Pascal -- The trapper recommends today: cafefeed.1117322 at localdomain.org From list at airstreamcomm.net Wed Jun 22 23:38:29 2011 From: list at airstreamcomm.net (list at airstreamcomm.net) Date: Wed, 22 Jun 2011 15:38:29 -0500 Subject: [Dovecot] SQL config error In-Reply-To: <4E024D12.5040309@localhost.localdomain.org> References: <4E024D12.5040309@localhost.localdomain.org> Message-ID: On Wed, 22 Jun 2011 22:14:10 +0200, Pascal Volk wrote: > On 06/22/2011 07:35 PM list at airstreamcomm.net wrote: >> Currently using 2.0.12, configured the auth-sql.conf to look like this >> for >> password lookups (doing smtp auth with postfix, so I am not actually >> running pop or imap, just auth): >> >> passdb { >> driver = sql >> connect = host=server.net dbname=passwd user=sqluser >> password='password' >> default_pass_scheme = CRYPT >> password_query = SELECT CONCAT(username,'@domain.net') as user, pw as >> password FROM passwd WHERE username = '%n' >> >> # Path for SQL configuration file, see >> example-config/dovecot-sql.conf.ext >> args = /etc/dovecot/dovecot-sql.conf.ext >> } >> >> Starting Dovecot I am getting the following error: >> >> # 2.0.12: /etc/dovecot/dovecot.conf >> doveconf: Fatal: Error in configuration file >> /etc/dovecot/conf.d/auth-sql.conf.ext line 8: Unknown setting: connect >> >> This is my first time configuring SQL for Dovecot so I am not sure how >> "connect" is recognized as an unknown setting? > > It's an unknown setting in the passdb {} section. > > ,--[ $sysconfdir/dovecot/dovecot-sql.conf.ext ]-- > | connect = ? > | [default_pass_scheme = ?] > | password_query = ? > | user_query = ? > | iterate_query = ? > `-- > > ,--[ $sysconfdir/dovecot/conf.d/auth-sql.conf.ext ]-- > | passdb { > | driver = sql > | args = $sysconfdir/dovecot/dovecot-sql.conf.ext > ] } > | userdb { > | driver = sql > | args = $sysconfdir/dovecot/dovecot-sql.conf.ext > | } > `-- > > > Re4gards, > Pascal Pascal, I discovered looking at the config file again that the passdb section is trying to reference the file /etc/dovecot/dovecot-sql.conf.ext for the information. I added the config options to that file, and it's working now. Thanks for the reply. Michael From wgillespie+dovecot at es2eng.com Thu Jun 23 03:21:18 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Wed, 22 Jun 2011 18:21:18 -0600 Subject: [Dovecot] Custom Trash (etc) location In-Reply-To: <4E00A68B.7090500@gmail.com> References: <4E00A68B.7090500@gmail.com> Message-ID: <4E0286FE.6070009@es2eng.com> On 06/21/2011 08:11 AM, fusionstream wrote: > Hi there. > > I have dovecot 1.2.17 installed on me system. > > I'd like to create a gmail-esque imap tree where all imap folders except > for the inbox are in a subdirectory(?). More importantly, I'd like the > email client (specifically thunderbird) to be able to recognise the > folders and thusly give it a special trash/junk/etc icon which I presume > also makes trash and junk go to, well the truash and junk folders > automagically. Based on searching the web, I believe that namespaces are > the solution. I believed that I had set it up to be > 1) Inbox > 2) IMAP > - Drafts > - Junk > - Trash > - etc > > However, when trying to use namespaces, I get IMAP.Drafts, IMAP.Junk and > all the other folders also appearing in INBOX, in addition to another > top-level IMAP.*. What am I doing wrong? If I understand the solutions > posted on the web correctly, solving this (resulting in only one of each > type of folder) should make thunderbird automagically recognise these > "special folders". Why not just have one namespace with the IMAP. prefix? "INBOX" is a special reserved mailbox that will always exist. As far as Thunderbird "recognizing" the folders and giving them the special icons -- that's nothing Dovecot has control over. Thunderbird will just look for common-named folders, such as "Trash" and figure that's the Trash spot. From wgillespie+dovecot at es2eng.com Thu Jun 23 03:25:39 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Wed, 22 Jun 2011 18:25:39 -0600 Subject: [Dovecot] How to make SUBdirectories in Dovecot... In-Reply-To: <31893428.post@talk.nabble.com> References: <31739301.post@talk.nabble.com> <4DE4FC02.80301@schetterer.org> <31892392.post@talk.nabble.com> <1a1776776769d4ada496b427f53c6222@junc.org> <31892708.post@talk.nabble.com> <687491ca953d6332d4315dad1a971f83@junc.org> <31893428.post@talk.nabble.com> Message-ID: <4E028803.9040208@es2eng.com> On 06/21/2011 05:50 AM, Theatre wrote: > Starting Dovecot Imap: Error: Error in configuration file /etc/dovecot.conf > line 233: > Unknown setting: subscriptions > Fatal: Invalid configuration in /etc/dovecot.conf > [FAILED] So what is on/around line 233 in /etc/dovecot.conf? It seems like that's where I would try to look. Also, to answer your initial question, you could probably use Maildir instead of mbox if you want a painless way to support subfolders. It's not that mbox can't do it, it's just a little more picky about it. From weirdit at gmail.com Thu Jun 23 04:39:54 2011 From: weirdit at gmail.com (Tim) Date: Thu, 23 Jun 2011 11:39:54 +1000 Subject: [Dovecot] Thunderbird or Dovecot causing duplicates Message-ID: Hey everyone, back on the list after a few years away. I have a strange issue that is just annoying. Trying to work out if it's Dovecot or Thunderbird causing the problem. Basically, I read an email (so it gets marked as read) and then very quickly I mark is as unread, (i.e. I realised I want to leave that email for later) which causes a duplicate email to be created. Generally I believe both duplicates are then marked as unread, but I've not taken too much notice of that part yet, other than the new email (the duplicate) being marked as unread. This has also happened when deleting emails from a junk folder. It seems to be events happening quickly that ether Thunderbird or Dovecot don't keep up with, so think the state of the message hasn't changed, so recreate the message maybe? I'm not really sure, so was hoping someone else had experienced the issue or could shed some light on it. Thanks Tim The logs from when I managed to recreate this manually this morning as a test. Jun 23 09:23:24 tahn dovecot: IMAP(tim): Fixed a duplicate: /home/tim/Maildir/cur/1308696708.M863172P16126.tahn,S=3761,W=3888:2,S -> 1308792204.M626641P1992.tahn Some older logs from what I believe was deleting from the junk mail. Jun 22 13:50:30 tahn dovecot: IMAP(tim): Fixed a duplicate: /home/tim/Maildir/.Junk/cur/1305489734.M227104P26221.tahn,S=73074,W=75051:2,S -> 1308721830.M966622P17272.tahn Jun 22 13:50:30 tahn dovecot: IMAP(tim): Fixed a duplicate: /home/tim/Maildir/.Junk/cur/1305417777.M51118P10799.tahn,S=4057,W=4132:2,ST -> 1308721830.M966623P17272.tahn Jun 22 13:50:30 tahn dovecot: IMAP(tim): Fixed a duplicate: /home/tim/Maildir/.Junk/cur/1305611378.M37299P20335.tahn,S=4772,W=4858:2,ST -> 1308721830.M966624P17272.tahn I'm using dovecot on Ubuntu 10.04 LTS with the dovecot-postfix package. Client is Thunderbird 3.1.10. $ apt-cache policy dovecot-imapd dovecot-imapd: Installed: 1:1.2.9-1ubuntu6.4 Candidate: 1:1.2.9-1ubuntu6.4 Version table: 1:1.2.9-1ubuntu6.5 0 900 http://ftp.iinet.net.au/linux/ubuntu/ lucid-updates/main Packages 400 http://ftp.iinet.net.au/linux/ubuntu/ lucid-proposed/main Packages *** 1:1.2.9-1ubuntu6.4 0 990 http://security.ubuntu.com/ubuntu/ lucid-security/main Packages 100 /var/lib/dpkg/status 1:1.2.9-1ubuntu6 0 500 http://ftp.iinet.net.au/linux/ubuntu/ lucid/main Packages $ apt-cache policy dovecot-postfix dovecot-postfix: Installed: 1:1.2.9-1ubuntu6.5 Candidate: 1:1.2.9-1ubuntu6.5 Version table: *** 1:1.2.9-1ubuntu6.5 0 900 http://ftp.iinet.net.au/linux/ubuntu/ lucid-updates/main Packages 400 http://ftp.iinet.net.au/linux/ubuntu/ lucid-proposed/main Packages 100 /var/lib/dpkg/status 1:1.2.9-1ubuntu6.4 0 990 http://security.ubuntu.com/ubuntu/ lucid-security/main Packages 1:1.2.9-1ubuntu6 0 500 http://ftp.iinet.net.au/linux/ubuntu/ lucid/main Packages $dovecot -n # 1.2.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-30-generic-pae i686 Ubuntu 10.04.2 LTS log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap pop3 imaps pop3s managesieve listen: *,[::] ssl_cert_file: /etc/ssl/certs/ssl-mail.pem ssl_key_file: /etc/ssl/private/ssl-mail.key ssl_cipher_list: ALL:!LOW:!SSLv2:ALL:!aNULL:!ADH:!eNULL:!EXP:RC4+RSA:+HIGH:+MEDIUM login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(pop3): /usr/lib/dovecot/pop3-login login_executable(managesieve): /usr/lib/dovecot/managesieve-login mail_privileged_group: mail mail_location: maildir:~/Maildir mbox_write_locks: fcntl dotlock mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(pop3): /usr/lib/dovecot/pop3 mail_executable(managesieve): /usr/lib/dovecot/managesieve mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3 mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve imap_client_workarounds(default): outlook-idle delay-newmail imap_client_workarounds(imap): outlook-idle delay-newmail imap_client_workarounds(pop3): imap_client_workarounds(managesieve): pop3_client_workarounds(default): pop3_client_workarounds(imap): pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh pop3_client_workarounds(managesieve): lda: postmaster_address: postmaster mail_plugins: sieve quota_full_tempfail: yes deliver_log_format: msgid=%m: %$ rejection_reason: Your message to <%t> was automatically rejected:%n%r auth default: mechanisms: plain login passdb: driver: pam passdb: driver: pam userdb: driver: passwd userdb: driver: passwd socket: type: listen client: path: /var/spool/postfix/private/dovecot-auth mode: 432 user: postfix group: postfix plugin: sieve: ~/.dovecot.sieve sieve_dir: ~/sieve -- Timothy White - Somewhere in Australia From ryan.m.dotson at gmail.com Thu Jun 23 06:03:20 2011 From: ryan.m.dotson at gmail.com (Ryan Dotson) Date: Wed, 22 Jun 2011 23:03:20 -0400 Subject: [Dovecot] %d empty string Message-ID: I am trying to upgrade from dovecot 1.x to Dovecot 2.0.13 on Fedora. My problem is the mail_location setting seems to ignore the %d variable. My my location is as follows: mail_location = maildir:/var/spool/virtual_mail/%d/%u/Maildir However, when trying to log in the maillog says it can't find /var/spool/virtual_mail//*myusername*/Maildir/cur. As you can see it just uses an empty string for the %d variable. Can anyone help? Thanks, Ryan From wgillespie+dovecot at es2eng.com Thu Jun 23 08:18:50 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Wed, 22 Jun 2011 23:18:50 -0600 Subject: [Dovecot] %d empty string In-Reply-To: References: Message-ID: <4E02CCBA.2050406@es2eng.com> On 6/22/2011 9:03 PM, Ryan Dotson wrote: > I am trying to upgrade from dovecot 1.x to Dovecot 2.0.13 on Fedora. My > problem is the mail_location setting seems to ignore the %d variable. My my > location is as follows: > > mail_location = maildir:/var/spool/virtual_mail/%d/%u/Maildir > > However, when trying to log in the maillog says it can't > find /var/spool/virtual_mail//*myusername*/Maildir/cur. As you can see it > just uses an empty string for the %d variable. Can anyone help? I assume you are trying to log in with myusername at somedomain.com? From nmilas at noa.gr Thu Jun 23 09:29:49 2011 From: nmilas at noa.gr (Nikolaos Milas) Date: Thu, 23 Jun 2011 09:29:49 +0300 Subject: [Dovecot] Error with Dovecot LDA when using recipient address misses user part Message-ID: <4E02DD5D.3030204@noa.gr> Hi, We are using Postfix 2.8.3 with Dovecot 2.0.13 on CentOS 5.6. The problem we have is that sometimes, due to mail sender's error when composing a message, the sender attempts to send an email to "@noa.gr" (without specifying the user part of the address). This results in a Postfix error due to Dovecot LDA use: Jun 22 21:05:31 vmail postfix/pipe[31862]: CC89FC4D210: to=<@noa.gr>, relay=dovecot, delay=0.41, delays=0.24/0.013/0/0.15, dsn=5.3.0, status=bounced (command line usage error. Command output: /usr/libexec/dovecot/dovecot-lda: option requires an argument -- d Usage: dovecot-lda [-c ] [-a
] [-d ] [-p ] [-f ] [-m ] [-e] [-k] ) Postfix master.cf is configured as: dovecot unix - n n - - pipe flags=DRhu user=vmail:vmail argv=/usr/libexec/dovecot/dovecot-lda -f ${sender} -d ${user} Obviously this happens because in this case there is no ${user} data. My question is: Can we somehow configure things in a way so as to avoid this error when someone sends an email with blank sender data? Can Dovecot provide some meaningful message to postfix (like "No user specified") instead of failing with a "command line usage error"? Thanks, Nick -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6762 bytes Desc: S/MIME Cryptographic Signature URL: From komodo at uvt.cz Thu Jun 23 10:24:39 2011 From: komodo at uvt.cz (komodo) Date: Thu, 23 Jun 2011 09:24:39 +0200 Subject: [Dovecot] Multiple values found for 'user', using value In-Reply-To: <1308764277.10421.916.camel@hurina> References: <201106161103.32370.komodo@uvt.cz> <1308764277.10421.916.camel@hurina> Message-ID: <201106230924.39228.komodo@uvt.cz> On Wednesday 22 June 2011 19:37:57 Timo Sirainen wrote: > On Thu, 2011-06-16 at 11:03 +0200, komodo wrote: > > Hi > > > > since latest upgrade on my machine, i have lot of warnings in my log, and > > i found that it is due this change > > > > http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html > > > > Is there any option to disable these warnings ? Yes we have multiple UIDs > > so these warnings bothers me. > > LDAP protocol doesn't give guarantees about values being returned in any > specific order. Does your LDAP server? If you have multiple UIDs, do you > always want the first one to be used? Why do you have multiple? Hi, miltiple UIDs are for historical reason, there was requirement to be able login with username and username at domain, so there is UID username and username at domain. Martin From karlis.repsons at gmail.com Thu Jun 23 11:23:58 2011 From: karlis.repsons at gmail.com (=?UTF-8?Q?K=C4=81rlis_Repsons?=) Date: Thu, 23 Jun 2011 08:23:58 +0000 Subject: [Dovecot] dovecot security with IPv6 Message-ID: Hi Timo, hi all others! In fact, I've only read one person claiming that IPv6 support opens up "too many backdoors" [1], but anyway, as I intend to run just particular services, please give me your opinion if it's insecure to have a dovecot server, which is accessed through a public IPv6 address... (or note just shortly what else could give a firm ground to such claims...) [1] http://forums.gentoo.org/viewtopic-t-882557.html From tlx at leuxner.net Thu Jun 23 11:50:33 2011 From: tlx at leuxner.net (Thomas Leuxner) Date: Thu, 23 Jun 2011 10:50:33 +0200 Subject: [Dovecot] Error with Dovecot LDA when using recipient address misses user part In-Reply-To: <4E02DD5D.3030204@noa.gr> References: <4E02DD5D.3030204@noa.gr> Message-ID: <7416B2D9-9173-4A7D-87A3-C833DC4562FD@leuxner.net> > Hi, > > We are using Postfix 2.8.3 with Dovecot 2.0.13 on CentOS 5.6. > > The problem we have is that sometimes, due to mail sender's error when composing a message, the sender attempts to send an email to "@noa.gr" (without specifying the user part of the address). This results in a Postfix error due to Dovecot LDA use: IMHO you should look into fixing this on the Postfix side. You should definitely not allow incomplete addresses to hit Dovecot. Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 203 bytes Desc: Signierter Teil der Nachricht URL: From cinzia.innocenzi at hp.com Thu Jun 23 12:06:03 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Thu, 23 Jun 2011 09:06:03 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <4E024B83.4050204@simonecaruso.com> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <4E024B83.4050204@simonecaruso.com> Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44DAA3146@GVW1102EXC.americas.hpqcorp.net> I'll give it a try as soon as I get another mail stuck in the queue. Unfortunately it doesn't happen too often. Thank you. I'll keep you updated. Regards CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Simone Caruso [mailto:info at simonecaruso.com] Sent: mercoled? 22 giugno 2011 22.08 To: Innocenzi, Cinzia Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP if u already didnt, try setting 'mail_debug=yes' in config. -- Simone Caruso IT Consultant p.iva: 03045250838 From a.othman at cairosource.com Thu Jun 23 11:47:33 2011 From: a.othman at cairosource.com (Amira Othman) Date: Thu, 23 Jun 2011 11:47:33 +0300 Subject: [Dovecot] pop3 configuration Message-ID: <000001cc3182$32de9820$989bc860$@othman@cairosource.com> Hi I am using Dovecot version 1.0.7 with postfix-2.3.3-2.3. on CentOS5.6 and it's my first time to setup mail server .Everything is working fine sending and receiving but when connecting through any mail client I only can send mails but the received mails I can't read them although they are already received on the server and there is no problems in mail log file .Any one can help me?? Amira Othman Server Administrator www.cairosource.com 6 EL Nil EL Abyad, Mohandiseen Cairo, Egypt Direct: +2 02 3303 7175 Mobile: +2 012 220 4165 The information transmitted is intended solely for the individual or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of or taking action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this email in error please contact the sender and delete the material from any computer. -------------- next part -------------- A non-text attachment was scrubbed... Name: image001.jpg Type: image/jpeg Size: 2131 bytes Desc: not available URL: From fusionstream at gmail.com Thu Jun 23 12:55:51 2011 From: fusionstream at gmail.com (Fusionstream) Date: Thu, 23 Jun 2011 17:55:51 +0800 Subject: [Dovecot] Custom Trash (etc) location In-Reply-To: <4E0286FE.6070009@es2eng.com> References: <4E00A68B.7090500@gmail.com> <4E0286FE.6070009@es2eng.com> Message-ID: Thanks for your reply. Because I'd like to have all imap folders in an obvious folder so as not to confuse a user who switches over from pop, or is familiar with gmail's imap layout in thunderbird which has a local copy of trash, sent and draft. INBOX will remain because as you rightly pointed out, that is standard. I've reverted back to just letting autocreate create the folders with no namespace defined but I'm sure there is a proper way of setting up namespaces. -- Sent from my Android phone with K-9 Mail. Please excuse my brevity. Willie Gillespie wrote: On 06/21/2011 08:11 AM, fusionstream wrote: > Hi there. > > I have dovecot 1.2.17 installed on me system. > > I'd like to create a gmail-esque imap tree where all imap folders except > for the inbox are in a subdirectory(?). More importantly, I'd like the > email client (specifically thunderbird) to be able to recognise the > folders and thusly give it a special trash/junk/etc icon which I presume > also makes trash and junk go to, well the truash and junk folders > automagically. Based on searching the web, I believe that namespaces are > the solution. I believed that I had set it up to be > 1) Inbox > 2) IMAP > - Drafts > - Junk > - Trash > - etc > > However, when trying to use namespaces, I get IMAP.Drafts, IMAP.Junk and > all the other folders also appearing in INBOX, in addition to another > top-level IMAP.*. What am I doing wrong? If I understand the solutions > posted on the web correctly, solving this (resulting in only one of each > type of folder) should make thunderbird automagically recognise these > "special folders". Why not just have one namespace with the IMAP. prefix? "INBOX" is a special reserved mailbox that will always exist. As far as Thunderbird "recognizing" the folders and giving them the special icons -- that's nothing Dovecot has control over. Thunderbird will just look for common-named folders, such as "Trash" and figure that's the Trash spot. From k.shantanu2006 at gmail.com Thu Jun 23 14:32:15 2011 From: k.shantanu2006 at gmail.com (kumar shantanu) Date: Thu, 23 Jun 2011 17:02:15 +0530 Subject: [Dovecot] Public Folder ACL Problem Message-ID: Hi All, I am trying to achieve ACL set in Public folders, I have public namespace in dovecot.conf like this namespace public { separator = / prefix = Public/ location = maildir:/var/mail/public/ subscriptions = no } and now under public folder I have two subfolders .test and .test1 . I have created dovecote-acl under .test so that it can be seen and subscribe. but I can't see those subfolders in public folder. Logs says Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: initializing backend with data: vfile Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: acl username = shantanu at techblue.co.in Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: owner = 0 Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: file /var/mail/public/.test1/dovecot-acl not found Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: reading file /var/mail/public/.test/dovecot-acl My dovecot-acl file reads "user=shantanu at techblue.co.in lr" It looks I have some problem with my dovecot-acl file, Can anybody please suggest. Thanks in Advance Shantanu From maria_arrea at gmx.com Thu Jun 23 14:59:30 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Thu, 23 Jun 2011 11:59:30 +0000 Subject: [Dovecot] Question about corrupted mdbox file Message-ID: <20110623115930.75850@gmx.com> Hello. We are using mdbox 2.013 + zlib, without SIS. When I try doveadm force-resync on a user's mailbox I get the following: doveadm(jmraya): Error: Corrupted dbox file /buzones/mydomain/0b/59/jmraya/storage/m.27 (around offset=22805024): Unexpected EOF while reading metadata header doveadm(jmraya): Warning: dbox: Copy of the broken file saved to /buzones/mydomain/0b/59/jmraya/storage/m.27.broken Any advice about this? Regards Maria From list at airstreamcomm.net Thu Jun 23 16:37:50 2011 From: list at airstreamcomm.net (list at airstreamcomm.net) Date: Thu, 23 Jun 2011 08:37:50 -0500 Subject: [Dovecot] Mysql access denied Message-ID: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> Currently using dovecot 2.0.12 and mysql server 4.0.20 (I know, it's really old) and having issues getting Dovecot to authenticate to the mysql server. We have confirmed that the credentials are correct and the host machine can access the database, however we are getting the following error: Jun 23 08:12:50 hostname dovecot: auth: Error: mysql(databaseserver.com): Connect failed to database (database): Access denied for user: 'sqladmin at ip.of.host.machine' (Using password: YES) - waiting for 1 seconds before retry We are assuming this has something to do with the password hashing algorithm in older versions of mysql, but we are hoping to confirm this theory and find a solution. Thanks. From duane at duanemail.org Thu Jun 23 17:03:34 2011 From: duane at duanemail.org (Duane Hill) Date: Thu, 23 Jun 2011 09:03:34 -0500 Subject: [Dovecot] Mysql access denied In-Reply-To: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> References: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> Message-ID: <159189942.20110623090334@duanemail.org> Thursday, June 23, 2011, 8:37:50 AM, you wrote: > Currently using dovecot 2.0.12 and mysql server 4.0.20 (I know, it's > really old) and having issues getting Dovecot to authenticate to the mysql > server. We have confirmed that the credentials are correct and the host > machine can access the database, however we are getting the following > error: > Jun 23 08:12:50 hostname dovecot: auth: Error: mysql(databaseserver.com): > Connect failed to database (database): Access denied for user: > 'sqladmin at ip.of.host.machine' (Using password: YES) - waiting for 1 seconds > before retry > We are assuming this has something to do with the password hashing > algorithm in older versions of mysql, but we are hoping to confirm this > theory and find a solution. You need to make sure there is a mysql account named 'sqladmin'@'ip.of.host.machine' that has access to whatever database/table it needs. -- Best regards, Duane mailto:duane at duanemail.org From list at airstreamcomm.net Thu Jun 23 17:11:04 2011 From: list at airstreamcomm.net (list at airstreamcomm.net) Date: Thu, 23 Jun 2011 09:11:04 -0500 Subject: [Dovecot] Mysql access denied In-Reply-To: <4E03444A.5020403@gmail.com> References: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> <4E03444A.5020403@gmail.com> Message-ID: On Thu, 23 Jun 2011 15:48:58 +0200, Johan Hendriks wrote: > Op 23-6-2011 15:37, list at airstreamcomm.net [1] schreef: > Currently using dovecot 2.0.12 and mysql server 4.0.20 (I know, it's > really old) and having issues getting Dovecot to authenticate to the > mysql > server. We have confirmed that the credentials are correct and the host > machine can access the database, however we are getting the following > error: > > Jun 23 08:12:50 hostname dovecot: auth: Error: mysql(databaseserver.com): > Connect failed to database (database): Access denied for user: > 'sqladmin at ip.of.host.machine [2]' (Using password: YES) - waiting for 1 > seconds > before retry > > We are assuming this has something to do with the password hashing > algorithm in older versions of mysql, but we are hoping to confirm this > theory and find a solution. > > Thanks. > > This has as far as i can see nothing to do with hashes. > It is the mysql database that disallows the user sqladmin access to the > database. > Make sure the user sqladmin has the proper rights to access the > database, from the ipadres. > > Gr > Johan Hendriks > > > > Links: > ------ > [1] mailto:list at airstreamcomm.net > [2] mailto:sqladmin at ip.of.host.machine When talking about hashes I was referring to this wiki article: http://wiki1.dovecot.org/MysqlProblems. As I stated in my email we have confirmed that the host can access the database just fine, and the credentials are correct in the config for Dovecot. Thanks. From me at deltaindigo.ro Thu Jun 23 17:31:41 2011 From: me at deltaindigo.ro (alex) Date: Thu, 23 Jun 2011 17:31:41 +0300 Subject: [Dovecot] interpreting imaptest results Message-ID: <4E034E4D.9060200@deltaindigo.ro> Hi I'am doing some tests with nginx proxy -> dovecot using imaptest: imaptest user=user host=host pass=pass msgs=50 clients=100 Logi List Stat Sele Fetc Fet2 Stor Dele Expu Appe Logo 100% 50% 50% 100% 100% 100% 50% 100% 100% 100% 100% 30% 5% 41 19 10 36 24 39 9 13 11 8 12 100/100 10 12 11 17 24 31 3 24 38 46 94 100/100 24 13 13 24 26 33 10 22 25 25 52 100/100 27 13 12 25 23 26 9 19 23 24 48 100/100 25 14 13 27 27 40 7 19 27 28 56 100/100 36 12 16 33 28 39 7 23 20 24 44 99/100 17 12 8 19 18 27 5 18 27 28 60 99/100 27 12 11 25 22 27 6 18 22 25 50 100/100 24 13 12 27 25 34 1 21 24 28 52 100/100 26 5 11 25 20 30 10 14 18 20 42 100/100 from what I have seen the results look pretty low , but what I can't really find is the meaning of numbers under each imap command. Can anyone explain what this numbers represent. Thank you Alex From tom at whyscream.net Thu Jun 23 17:55:54 2011 From: tom at whyscream.net (Tom Hendrikx) Date: Thu, 23 Jun 2011 16:55:54 +0200 Subject: [Dovecot] Mysql access denied In-Reply-To: References: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> <4E03444A.5020403@gmail.com> Message-ID: <4E0353FA.9060600@whyscream.net> On 23/06/11 16:11, list at airstreamcomm.net wrote: >> >> We are assuming this has something to do with the password hashing >> algorithm in older versions of mysql, but we are hoping to confirm this >> theory and find a solution. > > When talking about hashes I was referring to this wiki article: > http://wiki1.dovecot.org/MysqlProblems. As I stated in my email we have > confirmed that the host can access the database just fine, and the > credentials are correct in the config for Dovecot. > On the wiki page are 2 possible workarounds listed, did you try any of them? -- Regards, Tom From joh.hendriks at gmail.com Thu Jun 23 20:39:31 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Thu, 23 Jun 2011 19:39:31 +0200 Subject: [Dovecot] Mysql access denied In-Reply-To: References: <1843fce33a018ed6cd0a432647ae543d@mail.airstreamcomm.net> <4E03444A.5020403@gmail.com> Message-ID: <4E037A53.7070503@gmail.com> list at airstreamcomm.net schreef: > On Thu, 23 Jun 2011 15:48:58 +0200, Johan Hendriks > wrote: >> Op 23-6-2011 15:37, list at airstreamcomm.net [1] schreef: >> Currently using dovecot 2.0.12 and mysql server 4.0.20 (I know, it's >> really old) and having issues getting Dovecot to authenticate to the >> mysql >> server. We have confirmed that the credentials are correct and the host >> machine can access the database, however we are getting the following >> error: >> >> Jun 23 08:12:50 hostname dovecot: auth: Error: > mysql(databaseserver.com): >> Connect failed to database (database): Access denied for user: >> 'sqladmin at ip.of.host.machine [2]' (Using password: YES) - waiting for 1 >> seconds >> before retry >> >> We are assuming this has something to do with the password hashing >> algorithm in older versions of mysql, but we are hoping to confirm this >> theory and find a solution. >> >> Thanks. >> >> This has as far as i can see nothing to do with hashes. >> It is the mysql database that disallows the user sqladmin access to the >> database. >> Make sure the user sqladmin has the proper rights to access the >> database, from the ipadres. >> >> Gr >> Johan Hendriks >> >> >> >> Links: >> ------ >> [1] mailto:list at airstreamcomm.net >> [2] mailto:sqladmin at ip.of.host.machine > When talking about hashes I was referring to this wiki article: > http://wiki1.dovecot.org/MysqlProblems. As I stated in my email we have > confirmed that the host can access the database just fine, and the > credentials are correct in the config for Dovecot. > > Thanks. Well the wiki page you refering to is indeed describing problems with sha hashes. But the last line on this page tells you that it is fixed after 1.0rc9 And you mentioned using 2.0.12 So this is not the issue. Sometimes you need to use the FQDN in the GRANT command within mysql also. regards, Johan Hendriks Double L automatisering From wgillespie+dovecot at es2eng.com Thu Jun 23 20:46:52 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Thu, 23 Jun 2011 11:46:52 -0600 Subject: [Dovecot] dovecot security with IPv6 In-Reply-To: References: Message-ID: <4E037C0C.60607@es2eng.com> On 06/23/2011 02:23 AM, K?rlis Repsons wrote: > Hi Timo, hi all others! > > In fact, I've only read one person claiming that IPv6 support opens up > "too many backdoors" [1], but anyway, as I intend to run just > particular services, please give me your opinion if it's insecure to > have a dovecot server, which is accessed through a public IPv6 > address... > (or note just shortly what else could give a firm ground to such claims...) > > [1] http://forums.gentoo.org/viewtopic-t-882557.html I can't think of any backdoors introduced in IPv6. The trouble I foresee with IPv6 and email won't concern Dovecot, but some spam filtering. Since the IPv6 address space is large, people can't expect to be successful by blocking spammers IP addresses one-by-one. Instead they will end up blocking entire subnets if that's a route they choose to go. I know that Dovecot slows down/delays login attempts with multiple authentication failures. I guess the question to ask is whether this is source IP-based, or user name-based, or both. Anyone know the answer to this? If it's source IP-based, then if I was an attacker with an IPv6 subnet assigned to me, I would just come at it with a different IP address each time to avoid the slowdown. In short, that's the only real potential issue I could see. Willie From wgillespie+dovecot at es2eng.com Thu Jun 23 20:56:42 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Thu, 23 Jun 2011 11:56:42 -0600 Subject: [Dovecot] Public Folder ACL Problem In-Reply-To: References: Message-ID: <4E037E5A.1020303@es2eng.com> On 06/23/2011 05:32 AM, kumar shantanu wrote: > and now under public folder I have two subfolders .test and .test1 . I have > created dovecote-acl under .test so that it can be seen and subscribe. > but I can't see those subfolders in public folder. Logs says > > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: > initializing backend with data: vfile > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: acl > username = shantanu at techblue.co.in > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: owner = > 0 > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: > file /var/mail/public/.test1/dovecot-acl not found > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: > reading file /var/mail/public/.test/dovecot-acl > > My dovecot-acl file reads "user=shantanu at techblue.co.in lr" Looks like the dovecot-acl file is missing in /var/mail/public/.test1/ and is only in /var/mail/public/.test/ Do they show up when you list all folders? From nmilas at noa.gr Thu Jun 23 21:48:54 2011 From: nmilas at noa.gr (Nikolaos Milas) Date: Thu, 23 Jun 2011 21:48:54 +0300 Subject: [Dovecot] Error with Dovecot LDA when using recipient address misses user part In-Reply-To: <7416B2D9-9173-4A7D-87A3-C833DC4562FD@leuxner.net> References: <4E02DD5D.3030204@noa.gr> <7416B2D9-9173-4A7D-87A3-C833DC4562FD@leuxner.net> Message-ID: <4E038A96.7020204@noa.gr> On 23/6/2011 11:50 ??, Thomas Leuxner wrote: > IMHO you should look into fixing this on the Postfix side. You should > definitely not allow incomplete addresses to hit Dovecot. OK, thanks, you are right. I have already had some hints from the Postfix list! Nick -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 6762 bytes Desc: S/MIME Cryptographic Signature URL: From hugo.monteiro at fct.unl.pt Fri Jun 24 00:35:28 2011 From: hugo.monteiro at fct.unl.pt (Hugo Monteiro) Date: Thu, 23 Jun 2011 22:35:28 +0100 Subject: [Dovecot] diacritic marks in password In-Reply-To: <1308764382.10421.917.camel@hurina> References: <4DF90287.90503@gmail.com> <1308764382.10421.917.camel@hurina> Message-ID: <4E03B1A0.8010903@fct.unl.pt> On 06/22/2011 06:39 PM, Timo Sirainen wrote: > On Wed, 2011-06-15 at 20:05 +0100, pch0317 wrote: >> Hi, >> >> I have dovecot 2.0.beta6 (on RedHat 6) and my user uses thunderbird >> 3.1.10 (on Windows XP). >> I use authentication via LDAP (Windows server 2003 AD). > With auth_bind=yes? > >> When user use in password diacritic marks (?,?,?,?,?,?) authentication >> failed. >> >> What can I do? > Not much from Dovecot's side, I'm afraid. > > > Hello, I've stumbled across such a limitation myself, but i was using OpenLDAP as ldap backend. I could even bind as the user, with ldapsearch, on the command line. Password data is stored in ldap as a base64 encoded utf-8 string. The problem is that there is a long lasting bug in thunderbird that makes TB _always_ use iso-8859-1 to enconde passwords, making them different from what the ldap backend is expecting. There was once someone that even provided the mozilla team with a patch, but sadly they went on without applying it. Time went by and now, even wanting to do the patching, the code changed so much that there would have to be done a major code rewrite of the patch. You can find out about all this in this bug report thread. https://bugzilla.mozilla.org/show_bug.cgi?id=312593 In our case, we solved the problem by not allowing users to use diacritics in passwords. R's, Hugo Monteiro. -- fct.unl.pt:~# cat .signature Hugo Monteiro Email : hugo.monteiro at fct.unl.pt Telefone : +351 212948300 Ext.15307 Web : http://hmonteiro.net Divis?o de Inform?tica Faculdade de Ci?ncias e Tecnologia da Universidade Nova de Lisboa Quinta da Torre 2829-516 Caparica Portugal Telefone: +351 212948596 Fax: +351 212948548 www.fct.unl.pt apoio at fct.unl.pt fct.unl.pt:~# _ From noel.butler at ausics.net Fri Jun 24 05:19:47 2011 From: noel.butler at ausics.net (Noel Butler) Date: Fri, 24 Jun 2011 12:19:47 +1000 Subject: [Dovecot] dovecot security with IPv6 In-Reply-To: References: Message-ID: <1308881987.6151.9.camel@tardis> That clown is a tad over paranoid... The only real issue with devices using ipv6 is that most people become relaxed with security, preferring with ipv4 to do it all on the NAT box, with ipv6 there is no NAT, so if you have 5 machines, you need to configure full security on all. If you're an ISP/OSP/ESP, then you should already have appropriate security via your router and server, just remember though, if using linux you need to use ip6tables -as well as- iptables in your firewall rules script. There is absolutely NO security risk in exposing any server port to the net, be it dovecot, apache, or bind ... or, whatever. On Thu, 2011-06-23 at 08:23 +0000, K?rlis Repsons wrote: > Hi Timo, hi all others! > > In fact, I've only read one person claiming that IPv6 support opens up > "too many backdoors" [1], but anyway, as I intend to run just > particular services, please give me your opinion if it's insecure to > have a dovecot server, which is accessed through a public IPv6 > address... > (or note just shortly what else could give a firm ground to such claims...) > > [1] http://forums.gentoo.org/viewtopic-t-882557.html -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From k.shantanu2006 at gmail.com Fri Jun 24 10:14:08 2011 From: k.shantanu2006 at gmail.com (kumar shantanu) Date: Fri, 24 Jun 2011 12:44:08 +0530 Subject: [Dovecot] Public Folder ACL Problem In-Reply-To: <4E037E5A.1020303@es2eng.com> References: <4E037E5A.1020303@es2eng.com> Message-ID: Hi Willie, Thanks for your help, yes there is not dovecot-acl in .test1 but there is one in .test but I can't see either folder . Suggestion welcome. Shantanu On Thu, Jun 23, 2011 at 11:26 PM, Willie Gillespie < wgillespie+dovecot at es2eng.com> wrote: > On 06/23/2011 05:32 AM, kumar shantanu wrote: > >> and now under public folder I have two subfolders .test and .test1 . I >> have >> created dovecote-acl under .test so that it can be seen and subscribe. >> but I can't see those subfolders in public folder. Logs says >> >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: >> initializing backend with data: vfile >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: acl >> username = shantanu at techblue.co.in >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl: owner >> = >> 0 >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: >> file /var/mail/public/.test1/**dovecot-acl not found >> Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in): acl vfile: >> reading file /var/mail/public/.test/**dovecot-acl >> >> My dovecot-acl file reads "user=shantanu at techblue.co.in lr" >> > > Looks like the dovecot-acl file is missing in /var/mail/public/.test1/ and > is only in /var/mail/public/.test/ > > Do they show up when you list all folders? > From d.iskandarov at gmail.com Fri Jun 24 12:35:13 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 13:35:13 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration Message-ID: Hello So what i have: centos 5.6 postfix 2.3.3 dovecot 2.0.13 postfixadmin 2.3.3 roundcube 0.5.3 All general things are working right now i can send receive email with ssl connections etc... Now i'm trying to configure additional options like quota and some other plugins like sieve, trash, expire and deleted-to-trash. Configuration of quota is on first place. I have read wiki regarding quota config , dict config but can't make things running. Hope there are normal sample configs you can share with me. I'm total noob in sql, so it's very difficult for me to arrange stuff in a way i need. My configs: dict { quota = mysql:/etc/dovecot/conf.d/sql/dovecot-dict-sql.conf # expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf } dovecot-dict-sql.conf sample i took from postfixadmin docs provided with package, also changed table to quota2 as suggested for dovecot 2: driver = mysql connect = host=localhost dbname=postfix user=postfix password=postfixadmin default_pass_scheme = MD5-CRYPT table = quota2 select_field = current where_field = path username_field = username my sql.conf i took it from tutorial on your wiki : LDA postfix postfixadmin: driver = mysql connect = host=localhost dbname=postfix user=postfix password=postfixadmin user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE username = '%u' AND active = '1' #user_query = SELECT maildir, 1001 AS uid, 1001 AS gid, CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') as quota FROM mailbox WHERE username = '%u' AND active='1' password_query = SELECT username as user, password, concat('/home/vmail/', maildir) as userdb_home, concat('maildir:/home/vmail/', maildir) as userdb_mail, 1001 as userdb_uid, 12 as userdb_gid FROM mailbox WHERE username = '%u' AND active = '1' The second user_query string i took from postfixadmin docs. But i dont know how to aply it. If it is better to use with mysql/postfixadmin and after this all i dont how to configure quota.conf (90-quota.conf): plugin { #quota = dirsize:User quota #quota = maildir:User quota #quota = dict:User quota::proxy::quota #quota = fs:User quota } # Multiple quota roots are also possible, for example this gives each user # their own 100MB quota and one shared 1GB quota within the domain: plugin { #quota = dict:user::proxy::quota #quota2 = dict:domain:%d:proxy::quota_domain #quota_rule = *:storage=102400 #quota2_rule = *:storage=1048576 } Please help me with configuration. I really stuck with this thing. And yes i've tried to find solutions on mailing list, but no luck. I want per domain/user quota in mysql. Also space usage to be shown in roundcube. Hope to get proper help ... And sorry... Thanks in advance. From stsiol at yahoo.co.uk Fri Jun 24 13:43:35 2011 From: stsiol at yahoo.co.uk (Spyros Tsiolis) Date: Fri, 24 Jun 2011 11:43:35 +0100 (BST) Subject: [Dovecot] Mysql access denied In-Reply-To: Message-ID: <1308912215.62459.YahooMailClassic@web27203.mail.ukl.yahoo.com> --- On Thu, 23/6/11, list at airstreamcomm.net wrote: > From: list at airstreamcomm.net > Subject: Re: [Dovecot] Mysql access denied > To: "Dovecot Mailing List" > Date: Thursday, 23 June, 2011, 17:11 > On Thu, 23 Jun 2011 15:48:58 +0200, > Johan Hendriks > > wrote: > > Op 23-6-2011 15:37, list at airstreamcomm.net > [1] schreef:? > > Currently using dovecot 2.0.12 and mysql server 4.0.20 > (I know, it's > > really old) and having issues getting Dovecot to > authenticate to the > > mysql > > server. We have confirmed that the credentials are > correct and the host > > machine can access the database, however we are > getting the following > > error: > > > > Jun 23 08:12:50 hostname dovecot: auth: Error: > mysql(databaseserver.com): > > Connect failed to database (database): Access denied > for user: > > 'sqladmin at ip.of.host.machine > [2]' (Using password: YES) - waiting for 1 > > seconds > > before retry > > > > We are assuming this has something to do with the > password hashing > > algorithm in older versions of mysql, but we are > hoping to confirm this > > theory and find a solution. > > > > Thanks. > > > >???This has as far as i can see nothing > to do with hashes. > >? It is the mysql database that disallows the user > sqladmin access to the > > database. > >? Make sure the user sqladmin has the proper > rights to access the > > database, from the ipadres. > > > >? Gr > >? Johan Hendriks > > > >? ? > > > > Links: > > ------ > > [1] mailto:list at airstreamcomm.net > > [2] mailto:sqladmin at ip.of.host.machine > > When talking about hashes I was referring to this wiki > article: > http://wiki1.dovecot.org/MysqlProblems.? As I > stated in my email we have > confirmed that the host can access the database just fine, > and the > credentials are correct in the config for Dovecot. > > Thanks. Hi , Just my 2c. 1. I noticed even in newer versions (in my case built from sources), if the admin enters special symbols on the passwords like !@#$%, MySQL accepts them but the user will never authenticate afterwards. So I keep passwords simple with latin and numbers only. 2. Also, make sure you have grasped well the "grant" syntax : example : [root at localhost ~]# mysql ?uroot ?p mysql> use datebase_schema; mysql> grant all on database_schema.* -> to user at localhost; Try the same for ip addresses. HTH, s. ---- "I merely function as a channel that filters music through the chaos of noise" - Vangelis From joh.hendriks at gmail.com Fri Jun 24 13:50:01 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Fri, 24 Jun 2011 12:50:01 +0200 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: References: Message-ID: <4E046BD9.5090902@gmail.com> Denis Iskandarov schreef: > Hello > So what i have: > centos 5.6 > postfix 2.3.3 > dovecot 2.0.13 > postfixadmin 2.3.3 > roundcube 0.5.3 > > All general things are working right now i can send receive email with > ssl connections etc... > Now i'm trying to configure additional options like quota and some > other plugins like sieve, trash, expire and deleted-to-trash. > Configuration of quota is on first place. I have read wiki regarding > quota config , dict config but can't make things running. > Hope there are normal sample configs you can share with me. > I'm total noob in sql, so it's very difficult for me to arrange stuff > in a way i need. > > My configs: > > dict { > quota = mysql:/etc/dovecot/conf.d/sql/dovecot-dict-sql.conf > # expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf > } > > dovecot-dict-sql.conf sample i took from postfixadmin docs provided > with package, also changed table to quota2 as suggested for dovecot 2: > driver = mysql > connect = host=localhost dbname=postfix user=postfix password=postfixadmin > default_pass_scheme = MD5-CRYPT > table = quota2 > select_field = current > where_field = path > username_field = username > > my sql.conf i took it from tutorial on your wiki : LDA postfix postfixadmin: > > driver = mysql > > connect = host=localhost dbname=postfix user=postfix password=postfixadmin > > user_query = SELECT concat('/home/vmail/', maildir) as home, > concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS > gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE > username = '%u' AND active = '1' > #user_query = SELECT maildir, 1001 AS uid, 1001 AS gid, > CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') as quota > FROM mailbox WHERE username = '%u' AND active='1' > > password_query = SELECT username as user, password, > concat('/home/vmail/', maildir) as userdb_home, > concat('maildir:/home/vmail/', maildir) as userdb_mail, 1001 as > userdb_uid, 12 as userdb_gid FROM mailbox WHERE username = '%u' AND > active = '1' > > The second user_query string i took from postfixadmin docs. But i dont > know how to aply it. If it is better to use with mysql/postfixadmin > > and after this all i dont how to configure quota.conf (90-quota.conf): > > plugin { > #quota = dirsize:User quota > #quota = maildir:User quota > #quota = dict:User quota::proxy::quota > #quota = fs:User quota > } > > # Multiple quota roots are also possible, for example this gives each user > # their own 100MB quota and one shared 1GB quota within the domain: > plugin { > #quota = dict:user::proxy::quota > #quota2 = dict:domain:%d:proxy::quota_domain > #quota_rule = *:storage=102400 > #quota2_rule = *:storage=1048576 > } > > Please help me with configuration. I really stuck with this thing. And > yes i've tried to find solutions on mailing list, but no luck. > I want per domain/user quota in mysql. Also space usage to be shown in > roundcube. > Hope to get proper help ... > And sorry... > Thanks in advance. Maybe stupid, but are these plugin examples really from your dovecot.conf file ? If so remove the # before the quota lines! this is my part from dovecot.conf (only relavant quota parts.) quotadict = mysql:/usr/local/etc/dovecot/dovecot-dict-quota.conf plugin { # Quota config quota = dict:User quota::noenforcing:proxy::quotadict quota_rule = *:storage=1G quota_rule2 = Trash:storage=+100M quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=90%% quota-warning 90 %u quota_warning3 = storage=80%% quota-warning 80 %u #OTHER Plugins .... .... } service quota-warning { executable = script /usr/local/bin/quota-warning.sh user = vmail unix_listener quota-warning { user = vmail } } protocol imap { imap_client_workarounds = delay-newmail tb-extra-mailbox-sep imap_idle_notify_interval = 120 s imap_logout_format = bytes=%i/%o imap_max_line_length = 65536 mail_plugins = quota imap_quota autocreate acl imap_acl mail_log notify fts fts_squat } protocol lmtp { auth_socket_path = /var/run/dovecot/auth-master mail_plugins = sieve quota acl mail_log notify postmaster_address = postmaster at yourdomain.com sendmail_path = /usr/local/sbin/sendmail } Above protocol lmtp could be protocol lda in your case This is my dovecot-dict-quota.conf file # Dovecot 2.0.x connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix password=mypostfixpasswd map { pattern = priv/quota/storage table = quota2 username_field = username value_field = bytes } map { pattern = priv/quota/messages table = quota2 username_field = username value_field = messages } This is my /usr/local/bin/quota-warning.sh file #!/usr/local/bin/bash PERCENT=$1 USER=$2 cat << EOF | /usr/local/libexec/dovecot/deliver -d $USER -o "plugin/quota=maildir:User quota:noenforcing" From: support at yourdomain.com Subject: quota warning Uw mailbox is momenteel voor $PERCENT% gevult. Verwijder oude mail, of vraag een verruiming van uw quota aan. Your mailbox is now $PERCENT% full. Please remove some old mail, or ask for a larger quota. Skrzynka pocztowa jest w tym momencie w $PERCENT% zapelniona. Usun stare wiadomosci,albo przenies w inny folder. EOF Hope this helps. Regards, Johan Hendriks Double L Automatisering From d.iskandarov at gmail.com Fri Jun 24 14:14:50 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 15:14:50 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: <4E046BD9.5090902@gmail.com> References: <4E046BD9.5090902@gmail.com> Message-ID: Thanks for your samples, they would help me so much! My config is commented because i didn't know how to properly configure it, didn't understand theory to start doing things on practice. can you show me your dovecot-mysql.conf as well ? it should be final peace of puzzle for me. i'm interested in this two almost different user_query lines: user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE username = '%u' AND active = '1' user_query = SELECT maildir, 1001 AS uid, 1001 AS gid, CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') as quota FROM mailbox WHERE username = '%u' AND active='1' first one provided from dovecot wiki and second one from postfixadmin docs regarding dovecot configuration. may i use user_query like this? : user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') AS quota FROM mailbox WHERE username = '%u' AND active = '1' seems like this line doing some nice customization showing quota in kilobytes and not in bytes. or if someone could explain what does this string means. also what does this line means ?: concat('maildir:/home/vmail/', maildir) as mail string about home i understood dovecot reads users home dir from this line. And i dont understand if why should i indicate in 10-mail.conf next string: mail_location = maildir:/home/vmail/%d/%u If it is overided by user_query from mysql? Also what is meaning of quota(2) table. does dovecot reading configuration from there or just stores usage information ? Also what does this string mean?: pattern = priv/quota/messages what privileges those who reads the, or where are they indicated ? Thanks in advance. Denis. > Maybe stupid, but are these ?plugin examples really from your dovecot.conf > file ? > If so remove the # before the quota lines! > > this is my part from dovecot.conf (only relavant quota parts.) > > ?quotadict = mysql:/usr/local/etc/dovecot/dovecot-dict-quota.conf > > plugin { > # Quota config > ?quota = dict:User quota::noenforcing:proxy::quotadict > ?quota_rule = *:storage=1G > ?quota_rule2 = Trash:storage=+100M > ?quota_warning = storage=95%% quota-warning 95 %u > ?quota_warning2 = storage=90%% quota-warning 90 %u > ?quota_warning3 = storage=80%% quota-warning 80 %u > ?#OTHER Plugins > .... > .... > } > > service quota-warning { > ?executable = script /usr/local/bin/quota-warning.sh > ?user = vmail > ?unix_listener quota-warning { > ?user = vmail > ?} > } > > protocol imap { > ?imap_client_workarounds = delay-newmail tb-extra-mailbox-sep > ?imap_idle_notify_interval = 120 s > ?imap_logout_format = bytes=%i/%o > ?imap_max_line_length = 65536 > ?mail_plugins = quota imap_quota autocreate acl imap_acl mail_log notify fts > fts_squat > } > > protocol lmtp { > ?auth_socket_path = /var/run/dovecot/auth-master > ?mail_plugins = sieve quota acl mail_log notify > ?postmaster_address = postmaster at yourdomain.com > ?sendmail_path = /usr/local/sbin/sendmail > } > > Above protocol lmtp could be protocol lda in your case > > This is my dovecot-dict-quota.conf ?file > > # Dovecot 2.0.x > connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix > password=mypostfixpasswd > map { > ?pattern = priv/quota/storage > ?table = quota2 > ?username_field = username > ?value_field = bytes > } > map { > ?pattern = priv/quota/messages > ?table = quota2 > ?username_field = username > ?value_field = messages > } > > This is my /usr/local/bin/quota-warning.sh file > > #!/usr/local/bin/bash > PERCENT=$1 > USER=$2 > cat << EOF | /usr/local/libexec/dovecot/deliver -d $USER -o > "plugin/quota=maildir:User quota:noenforcing" > From: support at yourdomain.com > Subject: quota warning > > Uw mailbox is momenteel voor $PERCENT% gevult. > Verwijder oude mail, of vraag een verruiming van uw quota aan. > > Your mailbox is now $PERCENT% full. > Please remove some old mail, or ask for a larger quota. > > Skrzynka pocztowa jest w tym momencie w $PERCENT% zapelniona. > Usun stare wiadomosci,albo przenies w inny folder. > > EOF > > Hope this helps. > > Regards, > Johan Hendriks > Double L Automatisering From d.iskandarov at gmail.com Fri Jun 24 14:52:52 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 15:52:52 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: References: Message-ID: After doing some configrations i got errors with quota and my setup is brocken now: dict: dict { quotadict = mysql:/etc/dovecot/conf.d/sql/dovecot-dict-sql.conf # expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf } dovecot-dict-sql.conf: connect = host=localhost dbname=postfix user=postfix password=postfixadmin map { pattern = priv/quota/storage table = quota2 username_field = username value_field = bytes } map { pattern = priv/quota/messages table = quota2 username_field = username value_field = messages } quota plugin config: plugin { quota = dict:User quota::proxy::quotadict quota_rule = *:storage=1G quota_rule2 = Trash:storage=+100M } user_query field: user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, concat('dict:storage=',floor(quota/1000),' proxy::quotadict') AS quota FROM mailbox WHERE username = '%u' AND active = '1' Errors log: dovecot.log: Jun 24 11:41:24 imap: Debug: Loading modules from directory: /usr/lib/dovecot Jun 24 11:41:24 imap: Debug: Module loaded: /usr/lib/dovecot/lib10_quota_plugin.so Jun 24 11:41:24 imap: Debug: Module loaded: /usr/lib/dovecot/lib11_imap_quota_plugin.so Jun 24 11:41:24 imap: Debug: Module loaded: /usr/lib/dovecot/lib20_autocreate_plugin.so Jun 24 11:41:24 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 24 11:41:24 imap: Debug: Added userdb setting: plugin/quota=dict:storage=10240 proxy::quotadict Jun 24 11:41:24 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 24 11:41:24 imap(test at office.dev): Debug: Quota root: name=storage=10240 proxy backend=dict args=:quotadict Jun 24 11:41:24 imap(test at office.dev): Debug: Quota rule: root=storage=10240 proxy mailbox=* bytes=1073741824 messages=0 Jun 24 11:41:24 imap(test at office.dev): Debug: Quota rule: root=storage=10240 proxy mailbox=Trash bytes=+104857600 messages=0 Jun 24 11:41:24 imap(test at office.dev): Debug: dict quota: user=test at office.dev, uri=quotadict, noenforcing=0 Jun 24 11:41:24 imap(test at office.dev): Error: Dictionary URI is missing ':': quotadict Jun 24 11:41:24 imap(test at office.dev): Error: user test at office.dev: Initialization failed: Failed to initialize quota: Quota root storage=10240 proxy: init() failed Jun 24 11:41:24 imap(test at office.dev): Error: Invalid user settings. Refer to server log for more information. Jun 24 11:41:24 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=4611, TLS Jun 24 11:41:24 imap-login: Warning: SSL alert: where=0x4008, ret=256: warning close notify [192.168.0.11] # doveadm quota recalc doveadm(root): Error: chdir(/root/) failed: Permission denied (euid=1001(vmail) egid=12(mail) missing +x perm: /root, euid is not dir owner) doveadm(root): Error: chdir(/root) failed: Permission denied doveadm(root): Error: net_connect_unix(/var/run/dovecot//dict) failed: Permission denied (euid=1001(vmail) egid=12(mail) missing +r perm: /var/run/dovecot//dict, euid is not dir owner) why this command working in my home /root dir ? i have done next thing after: service dict { unix_listener dict { mode = 0660 user = vmail group = mail } } now i'm getting only next: ~]# doveadm quota recalc doveadm(root): Error: chdir(/root/) failed: Permission denied (euid=1001(vmail) egid=12(mail) missing +x perm: /root, euid is not dir owner) doveadm(root): Error: chdir(/root) failed: Permission denied Whats wrong. Please help. From joh.hendriks at gmail.com Fri Jun 24 15:19:24 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Fri, 24 Jun 2011 14:19:24 +0200 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: References: <4E046BD9.5090902@gmail.com> Message-ID: <4E0480CC.7060103@gmail.com> Denis Iskandarov schreef: > Thanks for your samples, they would help me so much! > My config is commented because i didn't know how to properly configure > it, didn't understand theory to start doing things on practice. > can you show me your dovecot-mysql.conf as well ? it should be final > peace of puzzle for me. > i'm interested in this two almost different user_query lines: > > user_query = SELECT concat('/home/vmail/', maildir) as home, > concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS > gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE > username = '%u' AND active = '1' > > user_query = SELECT maildir, 1001 AS uid, 1001 AS gid, > CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') as quota > FROM mailbox WHERE username = '%u' AND active='1' > > first one provided from dovecot wiki and second one from postfixadmin > docs regarding dovecot configuration. > may i use user_query like this? : > > user_query = SELECT concat('/home/vmail/', maildir) as home, > concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS > gid, CONCAT('dict:storage=',floor(quota/1000),' proxy::quota') AS > quota FROM mailbox WHERE > username = '%u' AND active = '1' > > seems like this line doing some nice customization showing quota in > kilobytes and not in bytes. or if someone could explain what does this > string means. > also what does this line means ?: > concat('maildir:/home/vmail/', maildir) as mail > string about home i understood dovecot reads users home dir from this line. > And i dont understand if why should i indicate in 10-mail.conf next string: > mail_location = maildir:/home/vmail/%d/%u > If it is overided by user_query from mysql? > > Also what is meaning of quota(2) table. does dovecot reading > configuration from there or just stores usage information ? > Also what does this string mean?: pattern = priv/quota/messages > what privileges those who reads the, or where are they indicated ? > > Thanks in advance. > Denis. > >> Maybe stupid, but are these plugin examples really from your dovecot.conf >> file ? >> If so remove the # before the quota lines! >> >> this is my part from dovecot.conf (only relavant quota parts.) >> >> quotadict = mysql:/usr/local/etc/dovecot/dovecot-dict-quota.conf >> >> plugin { >> # Quota config >> quota = dict:User quota::noenforcing:proxy::quotadict >> quota_rule = *:storage=1G >> quota_rule2 = Trash:storage=+100M >> quota_warning = storage=95%% quota-warning 95 %u >> quota_warning2 = storage=90%% quota-warning 90 %u >> quota_warning3 = storage=80%% quota-warning 80 %u >> #OTHER Plugins >> .... >> .... >> } >> >> service quota-warning { >> executable = script /usr/local/bin/quota-warning.sh >> user = vmail >> unix_listener quota-warning { >> user = vmail >> } >> } >> >> protocol imap { >> imap_client_workarounds = delay-newmail tb-extra-mailbox-sep >> imap_idle_notify_interval = 120 s >> imap_logout_format = bytes=%i/%o >> imap_max_line_length = 65536 >> mail_plugins = quota imap_quota autocreate acl imap_acl mail_log notify fts >> fts_squat >> } >> >> protocol lmtp { >> auth_socket_path = /var/run/dovecot/auth-master >> mail_plugins = sieve quota acl mail_log notify >> postmaster_address = postmaster at yourdomain.com >> sendmail_path = /usr/local/sbin/sendmail >> } >> >> Above protocol lmtp could be protocol lda in your case >> >> This is my dovecot-dict-quota.conf file >> >> # Dovecot 2.0.x >> connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix >> password=mypostfixpasswd >> map { >> pattern = priv/quota/storage >> table = quota2 >> username_field = username >> value_field = bytes >> } >> map { >> pattern = priv/quota/messages >> table = quota2 >> username_field = username >> value_field = messages >> } >> >> This is my /usr/local/bin/quota-warning.sh file >> >> #!/usr/local/bin/bash >> PERCENT=$1 >> USER=$2 >> cat<< EOF | /usr/local/libexec/dovecot/deliver -d $USER -o >> "plugin/quota=maildir:User quota:noenforcing" >> From: support at yourdomain.com >> Subject: quota warning >> >> Uw mailbox is momenteel voor $PERCENT% gevult. >> Verwijder oude mail, of vraag een verruiming van uw quota aan. >> >> Your mailbox is now $PERCENT% full. >> Please remove some old mail, or ask for a larger quota. >> >> Skrzynka pocztowa jest w tym momencie w $PERCENT% zapelniona. >> Usun stare wiadomosci,albo przenies w inny folder. >> >> EOF >> >> Hope this helps. >> >> Regards, >> Johan Hendriks >> Double L Automatisering Here it is. # Database driver: mysql, pgsql driver = mysql # Currently supported schemes include PLAIN, PLAIN-MD5, DIGEST-MD5, and CRYPT. default_pass_scheme = CRYPT # Database options connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix password=mypostfixpassword password_query = select password \ from mailbox where username = '%u' \ and active = '1' user_query = select maildir, \ concat('*:messages=50000:bytes=', quota) as quota_rule \ from mailbox where username = '%u' and active = '1' Gr Johan From namasenda at gmail.com Fri Jun 24 16:11:17 2011 From: namasenda at gmail.com (Edmonds Namasenda) Date: Fri, 24 Jun 2011 16:11:17 +0300 Subject: [Dovecot] Dovecot Basic Set-Up Message-ID: Hello there. Please help me here with a basic configuration file for dovecot as well as the preferred or latest production environment engine. The set-up will be with openSuSe 11.4, Postfix, Dovecot & SquirelMail. Authentication files will be /etc/shadow and /etc/passwd -- Thank you and kind regards, *I.P.N Edmonds* From d.iskandarov at gmail.com Fri Jun 24 16:19:53 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 17:19:53 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: <4E0480CC.7060103@gmail.com> References: <4E046BD9.5090902@gmail.com> <4E0480CC.7060103@gmail.com> Message-ID: Hm, it looks very straighforward and not so flexible. i want get this string get working. some missconfiguration of arguments and syntax. i dont wanna mannually insert amount of message or bytes, if it's possible i would like everything to be read from database quota.conf Hope developers would see this thread and help also i understood aalmost all strings in query concat('/home/vmail/', maildir) as home - virtual users home directory concat('maildir:/home/vmail/', maildir) as mail - virtualusers maildirectory floor(quota/1000) - seems to be minimal quota for user. users quota devided by 1000 so for now i've tried to do next query string changed quota to quota_rule user_query = SELECT concat('/home/vmail/', maildir) as home, concat('maildir:/home/vmail/', maildir) as mail, 1001 AS uid, 12 AS gid, concat('dict:storage=',floor(quota/1000),' proxy::quotadict') AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1' plugin { quota = dict:User quota::proxy::quotadict quota_rule = *:storage=1G quota_rule2 = Trash:storage=+100M } dict { quotadict = mysql:/etc/dovecot/conf.d/sql/dovecot-dict-sql.conf # expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf } and now error Jun 24 13:19:59 imap: Debug: Added userdb setting: mail=maildir:/home/vmail/office.dev/test/ Jun 24 13:19:59 imap: Debug: Added userdb setting: plugin/quota_rule=dict:storage=10240 proxy::quotadict Jun 24 13:19:59 imap(test at office.dev): Debug: Effective uid=1001, gid=12, home=/home/vmail/office.dev/test/ Jun 24 13:19:59 imap(test at office.dev): Debug: Quota root: name=User quota backend=dict args=:proxy::quotadict Jun 24 13:19:59 imap(test at office.dev): Warning: quota root User quota rule dict:storage=10240 proxy::quotadict: obsolete configuration for rule 'storage=10240 proxy' should be changed to 'storage=+10240 proxy' Jun 24 13:19:59 imap(test at office.dev): Debug: Quota rule: root=User quota mailbox=dict bytes=+10240 messages=0 Jun 24 13:19:59 imap(test at office.dev): Error: user test at office.dev: Initialization failed: Failed to initialize quota: Invalid quota root quota: Invalid rule dict:storage=10240 proxy::quotadict: Invalid rule limit value: storage=10240 proxy Jun 24 13:19:59 imap(test at office.dev): Error: Invalid user settings. Refer to server log for more information. Jun 24 13:19:59 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.0.11, lip=192.168.0.31, mpid=5742, TLS Jun 24 13:19:59 imap-login: Warning: SSL alert: where=0x4008, ret=256: warning close notify [192.168.0.11] > > Here it is. > > # Database driver: mysql, pgsql > driver = mysql > > # Currently supported schemes include PLAIN, PLAIN-MD5, DIGEST-MD5, and > CRYPT. > default_pass_scheme = CRYPT > > # Database options > connect = host=192.xxx.xxx.xxx dbname=postfix user=postfix > password=mypostfixpassword > > password_query = select password \ > ?from mailbox where username = '%u' \ > ?and active = '1' > > user_query = select maildir, \ > ?concat('*:messages=50000:bytes=', quota) as quota_rule \ > ?from mailbox where username = '%u' and active = '1' > > > Gr > Johan > From stephan at rename-it.nl Fri Jun 24 17:06:38 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Fri, 24 Jun 2011 16:06:38 +0200 Subject: [Dovecot] Out of office reminder with sieve In-Reply-To: <4E0066D2.4000804@gmail.com> References: <4DFF0E91.2030804@gmail.com> <4E006328.5030907@rename-it.nl> <4E0066D2.4000804@gmail.com> Message-ID: <4E0499EE.5040104@rename-it.nl> Op 21-6-2011 11:39, Johan Hendriks schreef: > Stephan Bosch schreef: >> Op 20-6-2011 11:10, Johan Hendriks schreef: >>> I found in the wiki the out of office reminder option. >>> But the sample is looking for a .out-of-office file. >>> I can not find out how to create this file. >>> I use roundcube to set the out of office with sieve. >>> >>> what is the best way to implement this. >> >> Could you point me to that wiki page? I don't quite understand what >> you are talking about. > Here is the part i am talking about. > http://wiki2.dovecot.org/PostLoginScripting Oh, so you want to remind people that their out-of-office responder is still active? That is going to be difficult, because it is hard to tell from the Sieve script alone whether vacation responses are being sent, without actually executing it. > Maybe i can check the ~/.dovecot.lda-dupes file instead. > Is that file being deleted if the out of office is disabled, or is it > cleaned only? No, it is not deleted. The lda-dupes file is used to track other things as well, such as earlier redirects (to prevent mail loops). In the case of vacation, this file merely tracks which senders have got a response at what time in order to prevent responding within the defined :days period. It says nothing about whether a vacation rule is active. I think it is a better solution to use the Sieve date extension to let the out-of-office responder disable itself once the user is deemed to be back to work. I believe Roundcube already supports this functionality. This means that the vacation rule does not need to be disabled explicitly, but stops automatically when the server date goes beyond a user-defined deadline. If there is any particular reason why you would need to have explicit reminders, one solution would be to let Roundcube 'touch' the ~/.out-of-office file once an out-of-office responder is activated. But that is a hack at best. Regards, Stephan. From japi76 at gmail.com Fri Jun 24 17:33:26 2011 From: japi76 at gmail.com (Javier) Date: Fri, 24 Jun 2011 11:33:26 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: No other hint? Only option is to upgrade to latest? Thanks Javier On Tue, Jun 21, 2011 at 4:38 PM, Javier wrote: > Thanks for the response. > I'll try updating dovecot to latest version but this will take me some > time, so other options are welcome. > It seems like submission_host is from v2.0.10+ and I have 2.0.9 :( > > Sending mail with > > echo "test" | sendmail xxxx at xxxx.com > > works fine. > Thanks > Javier > > On Sun, Jun 19, 2011 at 8:17 AM, Stephan Bosch wrote: >> Op 16-6-2011 18:24, Javier schreef: >>> >>> Maybe it is useful to know, that vacation does the same thing, an >>> error in the logs but the response arrives to the sender. >>> >>> Log file also show some error with waitpid() >> >> First thing to notice is that your Dovecot is relatively old, so this >> problem may be fixed already. Also, recent Dovecot (v2.0) versions support >> sending messages directly to an SMTP (smart)host instead of using the >> sendmail binary. >> >> Looks like your sendmail binary terminates inappropriately (or Dovecot >> thinks it does). Can you successfully send mail from the command line using >> the sendmail tool? >> >> Regards, >> >> Stephan. >> >> > From tss at iki.fi Fri Jun 24 18:23:47 2011 From: tss at iki.fi (Timo Sirainen) Date: Fri, 24 Jun 2011 18:23:47 +0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: Message-ID: On 16.6.2011, at 19.24, Javier wrote: > Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxx at xxxxxxx.com): > Error: waitpid() failed: No child processes This is the main problem. It just shouldn't be happening. You could try stracing an lmtp process while it sends a mail, and see if there are two waitpid() calls or of the first one is giving this error. If there is only this one waitpid() call this would seem like a kernel problem. (Easy way to strace: 1) connect to lmtp socket & quit, 2) strace -p , 3) send a mail) From linuxmail at 4lin.net Fri Jun 24 18:43:27 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Fri, 24 Jun 2011 17:43:27 +0200 Subject: [Dovecot] Dovecot Basic Set-Up In-Reply-To: References: Message-ID: hi, Am 24.06.2011 um 15:11 schrieb Edmonds Namasenda: > The set-up will be with openSuSe 11.4, Postfix, Dovecot & SquirelMail. > Authentication files will be /etc/shadow and /etc/passwd please take a look at the DoveCot Wiki and Google. Everything you need is there. cu denny From e-frog at gmx.de Fri Jun 24 19:03:02 2011 From: e-frog at gmx.de (e-frog) Date: Fri, 24 Jun 2011 18:03:02 +0200 Subject: [Dovecot] Panic: file mail-index-view.c: line 149 Message-ID: <4E04B536.5020509@gmx.de> Hello Timo, Today I've moved one message from INBOX to a virtual folder which made imap processes crash as soon as INBOX was selected. Jun 24 17:24:50 server dovecot: imap(user at example.com): Panic: file mail-index-view.c: line 149 (view_lookup_full): assertion failed: (seq > 0 && seq <= mail_index_view_get_messages_count(view)) Removing mail_log plugin made it working again. Even after re-enabling mail_log plugin there are no crashes anymore. The full backtrace and doveconf -n output are attached. Thanks for your help! -e-frog -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: doveconf-n.txt URL: -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: bt.txt URL: From satish_lx at hotmail.com Fri Jun 24 19:04:40 2011 From: satish_lx at hotmail.com (satish patel) Date: Fri, 24 Jun 2011 16:04:40 +0000 Subject: [Dovecot] IDLE disconnected Message-ID: Hi all, We have just migrate UW-Imap to Dovecot and started getting following errors in logs. Any idea ? Dovecot version is 2.0.9 Jun 24 11:21:04 imap6 dovecot: imap(users1): Disconnected: Disconnected in IDLE bytes=444/1900 Jun 24 11:21:04 imap6 dovecot: imap(users20): Disconnected: Disconnected in IDLE bytes=126/890 Jun 24 11:21:04 imap6 dovecot: imap(users7): Disconnected: Disconnected in IDLE bytes=364/47709 Jun 24 11:21:04 imap6 dovecot: imap(users29): Disconnected: Disconnected in IDLE bytes=1639/234649 Jun 24 11:21:05 imap6 dovecot: imap(users2): Disconnected: Disconnected in IDLE bytes=2731/22038 -S From wgillespie+dovecot at es2eng.com Fri Jun 24 19:52:08 2011 From: wgillespie+dovecot at es2eng.com (Willie Gillespie) Date: Fri, 24 Jun 2011 10:52:08 -0600 Subject: [Dovecot] Public Folder ACL Problem In-Reply-To: References: <4E037E5A.1020303@es2eng.com> Message-ID: <4E04C0B8.1050107@es2eng.com> Just to start drilling down, what mail client are you using to test with? Is there a dovecot-acl-list file in /var/mail/public? Try deleting/renaming that. I think Dovecot will try to recreate it. On 6/24/2011 1:14 AM, kumar shantanu wrote: > Hi Willie, > > Thanks for your help, yes there is not dovecot-acl in .test1 but there > is one in .test > but I can't see either folder . > > Suggestion welcome. > > > Shantanu > > On Thu, Jun 23, 2011 at 11:26 PM, Willie Gillespie > > > wrote: > > On 06/23/2011 05:32 AM, kumar shantanu wrote: > > and now under public folder I have two subfolders .test and > .test1 . I have > created dovecote-acl under .test so that it can be seen and > subscribe. > but I can't see those subfolders in public folder. Logs says > > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl: > initializing backend with data: vfile > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl: acl > username = shantanu at techblue.co.in > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl: owner = > 0 > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl vfile: > file /var/mail/public/.test1/__dovecot-acl not found > Jun 23 17:50:54 node01 dovecot: IMAP(shantanu at techblue.co.in > ): acl vfile: > reading file /var/mail/public/.test/__dovecot-acl > > My dovecot-acl file reads "user=shantanu at techblue.co.in > lr" > > > Looks like the dovecot-acl file is missing in > /var/mail/public/.test1/ and is only in /var/mail/public/.test/ > > Do they show up when you list all folders? > > > > > From d.iskandarov at gmail.com Fri Jun 24 21:01:13 2011 From: d.iskandarov at gmail.com (Denis Iskandarov) Date: Fri, 24 Jun 2011 22:01:13 +0400 Subject: [Dovecot] Please help with Quota dict mysql configuration In-Reply-To: References: <4E046BD9.5090902@gmail.com> <4E0480CC.7060103@gmail.com> Message-ID: Finally i've figured out this thing. Thanks for your assistance. Suddenly i've found your old post regarding same problem: http://www.mail-archive.com/dovecot at dovecot.org/msg16388.html +searching user_query in dovecot wiki found same description there http://wiki2.dovecot.org/Quota/Configuration?highlight=%28user_query%29 i dont know why i have seen this before. i can say one more thing. in quota.conf next string has no sense coz it's overided by sql query and quota is set by postfix admin. i had other headache for an hour while figured this out. no sense quota_rule = *:storage=1G:messages=10000 (maybe for system users and/or users which are not binded to sql) what ever other quota_rule numbers for global settings but not quota_rule. so thanks again moving to next problems with other plugins like expire...there is no expire table in sql )))) From imap at tnde.org Sat Jun 25 10:58:55 2011 From: imap at tnde.org (imap at tnde.org) Date: Sat, 25 Jun 2011 03:58:55 -0400 Subject: [Dovecot] permissions for dbox attachment directory Message-ID: I am running dovecot 2.0.13 on CentOS5, set up with only local system users, and single instance store set up in a single directory. e.g. mail_attachment_dir = /var/mail/attachments I get errors when importing mail to IMAP because the attachment directories are owned by the respective mail account user(s) and so cannot be accessed or written to by other users. Are there some user id setting I need to change, or do I have to run dovecot with virtual users under a single system account? Thanks! From joh.hendriks at gmail.com Sat Jun 25 12:01:14 2011 From: joh.hendriks at gmail.com (Johan Hendriks) Date: Sat, 25 Jun 2011 11:01:14 +0200 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: References: Message-ID: <4E05A3DA.3010300@gmail.com> imap at tnde.org schreef: > I am running dovecot 2.0.13 on CentOS5, set up with only local system > users, and single instance store set up in a single directory. > > e.g. > mail_attachment_dir = /var/mail/attachments > > > I get errors when importing mail to IMAP because the attachment > directories are owned by the respective mail account user(s) and so cannot > be accessed or written to by other users. > > Are there some user id setting I need to change, or do I have to run > dovecot with virtual users under a single system account? > > Thanks! > Please post the exact error message, and the output of dovecot -n This way it is much easier for people to help you, and it takes less guessing what is going on. Gr Johan Hendriks Double L Automatisering From jimkarlsson82 at gmail.com Sat Jun 25 15:16:20 2011 From: jimkarlsson82 at gmail.com (Theatre) Date: Sat, 25 Jun 2011 05:16:20 -0700 (PDT) Subject: [Dovecot] Dovecot 2.0.13, Authentication failed... Message-ID: <31925861.post@talk.nabble.com> Hi! I just updated Dovecot 1.0.x to 2.0.13... and when i now trying to login it says: 1 NO [AUTHENTICATIONFAILED] Authentication failed. I havent change anything in any conf file, all conf files are untouched. doveconf -n : # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.18-238.12.1.el5.centos.plus x86_64 CentOS release 5.6 (Final) listen = * mbox_write_locks = fcntl passdb { driver = pam } ssl_cert = References: <31925861.post@talk.nabble.com> Message-ID: <4E05D61E.5050803@Media-Brokers.com> On 6/25/2011 8:16 AM, Theatre wrote: > I just updated Dovecot 1.0.x to 2.0.13... > I havent change anything in any conf file, all conf files are untouched. Maybe thats your problem... did you even bother to read the UPDATE docs?? -- Best regards, Charles From imap at tnde.org Sun Jun 26 22:56:41 2011 From: imap at tnde.org (imap at tnde.org) Date: Sun, 26 Jun 2011 15:56:41 -0400 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: <4E05A3DA.3010300@gmail.com> References: <4E05A3DA.3010300@gmail.com> Message-ID: <0e02254fb96546b495afe922d3c84f5f.squirrel@emailmg.dot5hosting.com> > Please post the exact error message, and the output of dovecot -n > > This way it is much easier for people to help you, and it takes less > guessing what is going on. Sorry, here's the full details. Maillog says Jun 25 19:10:55 test1 dovecot: imap(tu2): Error: stat(/var/mail/attachments/04/f6/.temp.test1.vmlan.local.1522.2cde9668dcad3fd5) failed: Permission denied Jun 25 19:10:55 test1 dovecot: imap(tu2): Error: safe_mkstemp(/var/mail/attachments/04/f6/.temp.test1.vmlan.local.1522.) failed: Permission denied This is when attempting to export the same mail to two accounts. As the first user "tu1" get to own the attachment dirs, the second user "tu2" is denied permission. Eg: drwx------ 3 tu1 tu1 4096 Jun 25 19:10 f6 # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.18-238.9.1.el5 x86_64 CentOS release 5.6 (Final) auth_debug = yes auth_debug_passwords = yes auth_verbose = yes disable_plaintext_auth = no mail_attachment_dir = /var/mail/attachments mail_attachment_min_size = 1 k mail_location = sdbox:~/dbox mbox_write_locks = fcntl passdb { driver = pam } ssl_cert = I cutover to a new server which uses Postfix & Dovecot to handle emails as opposed to Postfix & Courier in the old server. Below is the contents of my global sieve script and dovecot config info. The dovecot-deliver.log does show that the email is being delivered to INBOX.spam but it ends up in the INBOX instead. If I put the exact same rule in the user script, the emails are delivered into the INBOX.spam folder. Currently as a work around, I created user rules for all users and add this. For most users, it is the only rule. So my question is, why does it not work with the global script? Any help would be appreciated. Thanks, Dhaval ------------ contents of globalsieverc ------------- require ["fileinto"]; # Move spam to spam folder if header :contains "X-Spam-Flag" ["YES"] { fileinto "INBOX.spam"; stop; } ---------------------------------------------------- ------------ dovecot -n output --------------------- # 1.2.15: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-686-bigmem i686 Debian 6.0.1 xfs log_timestamp: %Y-%m-%d %H:%M:%S ssl_cert_file: /etc/ssl/certs/secure.consoe.com.pem ssl_key_file: /etc/ssl/certs/secure.consoe.com.key disable_plaintext_auth: no verbose_ssl: yes login_dir: /var/run/dovecot/login login_executable: /usr/lib/dovecot/imap-login mail_privileged_group: mail mail_location: maildir:/home/vmail/%u mbox_write_locks: fcntl dotlock namespace: type: private separator: . prefix: INBOX. inbox: yes list: yes subscriptions: yes lda: postmaster_address: postmaster at patel.sh auth_socket_path: /var/run/dovecot/auth-master log_path: /home/vmail/dovecot-deliver.log mail_plugins: sieve global_script_path: /home/vmail/globalsieverc auth default: mechanisms: plain login passdb: driver: sql args: /etc/dovecot/dovecot-sql.conf userdb: driver: sql args: /etc/dovecot/dovecot-sql.conf socket: type: listen client: path: /var/run/dovecot/auth-client mode: 432 master: path: /var/run/dovecot/auth-master mode: 384 user: vmail group: vmail plugin: sieve: /home/vmail/sieve/%n.sieve sieve_global_path: /home/vmail/globalsieverc -------------------------------------------------------- From tlx at leuxner.net Mon Jun 27 00:06:30 2011 From: tlx at leuxner.net (Thomas Leuxner) Date: Sun, 26 Jun 2011 23:06:30 +0200 Subject: [Dovecot] dovecot global sieve script problem In-Reply-To: <51b6cf13bfbbb030e93e57dc6d4c378c@secure.consoe.com> References: <51b6cf13bfbbb030e93e57dc6d4c378c@secure.consoe.com> Message-ID: > So my question is, why does it not work with the global script? Any help would > be appreciated. > Please note the caveats listed here: http://wiki.dovecot.org/LDA/Sieve/Dovecot [?] sieve_global_path A path to a global sieve script file, which gets executed ONLY if user's private Sieve script doesn't exist, e.g. /var/lib/dovecot/default.sieve. Be sure to pre-compile this script manually using the sievec command line tool, as explained below. Did you manually compile the global script? Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 203 bytes Desc: Signierter Teil der Nachricht URL: From stephan at rename-it.nl Mon Jun 27 00:59:16 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Sun, 26 Jun 2011 23:59:16 +0200 Subject: [Dovecot] dovecot global sieve script problem In-Reply-To: References: <51b6cf13bfbbb030e93e57dc6d4c378c@secure.consoe.com> Message-ID: <4E07ABB4.4030302@rename-it.nl> On 6/26/2011 11:06 PM, Thomas Leuxner wrote: >> So my question is, why does it not work with the global script? Any help would >> be appreciated. > Please note the caveats listed here: http://wiki.dovecot.org/LDA/Sieve/Dovecot > > [?] > sieve_global_path > A path to a global sieve script file, which gets executed ONLY if user's private Sieve script doesn't exist, e.g. /var/lib/dovecot/default.sieve. Be sure to pre-compile this script manually using the sievec command line tool, as explained below. > > Did you manually compile the global script? Actually, for the kind of behavior that you described you need to use the multiscript feature: http://wiki.dovecot.org/LDA/Sieve/Dovecot#Executing_Multiple_Scripts_Sequentially So, if you use sieve_before instead, it should work as required. Regards, Stephan. From jtam.home at gmail.com Mon Jun 27 02:43:30 2011 From: jtam.home at gmail.com (Joseph Tam) Date: Sun, 26 Jun 2011 16:43:30 -0700 (PDT) Subject: [Dovecot] Default sendmail_path value Message-ID: It appears the documentation of this parameter is inconsistent with the documentation: > grep -nF /sendmail `gfind src -type f` src/lib-lda/lda-settings.c:41: .sendmail_path = "/usr/sbin/sendmail", src/config/all-settings.c:732: .sendmail_path = "/usr/sbin/sendmail", (and doc/example-config/conf.d/15-lda.conf is also consistent with this) but the documentations states http://wiki2.dovecot.org/LDA sendmail_path is used to send mails. Note that the default is /usr/lib/sendmail, which doesn't necessarily work the same as /usr/sbin/sendmail. I don't know which ought to be changed though. Joseph Tam From sarguru at deeproot.co.in Mon Jun 27 10:34:14 2011 From: sarguru at deeproot.co.in (sarguru) Date: Mon, 27 Jun 2011 13:04:14 +0530 Subject: [Dovecot] Help regarding getting password policy response Message-ID: <4E083276.5050307@deeproot.co.in> Hello, I have enabled ldap password policy in my open ldap server and it locks out the account after several unsuccessful bind attempts. I am able to get the password policy response which says "Account locked" by specifying '-e ppolicy' option in my ldapsearch command. I am looking for a way to get similar response when I use dovecot so that I can specify my clients that their account is locked. I understand the security risks involved but mine is low security and high usability requirement. Please share the solution with me. -- Thanks, Sarguru From f.bonnet at esiee.fr Mon Jun 27 10:50:51 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Mon, 27 Jun 2011 09:50:51 +0200 Subject: [Dovecot] Denying user won't work as expected Message-ID: <4E08365B.7060909@esiee.fr> Hello I tried to use the "deny user" feature but it does not work as expected ... ( dovecot 2.0.12 ) we use LDAP as authentication source I modified the 10-auth.conf file as the following # !include auth-deny.conf.ext #!include auth-master.conf.ext #!include auth-system.conf.ext #!include auth-sql.conf.ext !include auth-ldap.conf.ext #!include auth-passwdfile.conf.ext #!include auth-checkpassword.conf.ext #!include auth-vpopmail.conf.ext #!include auth-static.conf.ext I modified the auth-deny.conf.ext file as the following passdb { driver = ldap deny = yes # File contains a list of usernames, one per line args = /usr/local/etc/dovecot/deny-users } I have tested writting one user (me) in the /usr/local/etc/dovecot/deny-users and the result is the login is denied for ALL users ... If I do not uncomment the !include auth-deny.conf.ext line in 10-auth.conf file everything works well I really need this feature Thanks for any help From tkrah at fachschaft.imn.htwk-leipzig.de Mon Jun 27 11:10:06 2011 From: tkrah at fachschaft.imn.htwk-leipzig.de (Torsten Krah) Date: Mon, 27 Jun 2011 10:10:06 +0200 Subject: [Dovecot] IDLE disconnected In-Reply-To: References: Message-ID: <1309162206.6824.0.camel@sf050.friends> Am Freitag, den 24.06.2011, 16:04 +0000 schrieb satish patel: > Jun 24 11:21:04 imap6 dovecot: imap(users1): Disconnected: > Disconnected in IDLE bytes=444/1900 > Jun 24 11:21:04 imap6 dovecot: imap(users20): Disconnected: > Disconnected in IDLE bytes=126/890 > Jun 24 11:21:04 imap6 dovecot: imap(users7): Disconnected: > Disconnected in IDLE bytes=364/47709 > Jun 24 11:21:04 imap6 dovecot: imap(users29): Disconnected: > Disconnected in IDLE bytes=1639/234649 > Jun 24 11:21:05 imap6 dovecot: imap(users2): Disconnected: > Disconnected in IDLE bytes=2731/22038 Afaik those ones are not errors - only some hints about clients disconnected while in IDLE mode. Someone may correct me if i am wrong about this. Torsten -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5253 bytes Desc: not available URL: From cinzia.innocenzi at hp.com Mon Jun 27 12:23:51 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Mon, 27 Jun 2011 09:23:51 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <4E024B83.4050204@simonecaruso.com> Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44E26F922@GVW1102EXC.americas.hpqcorp.net> Hello Simone, I've been trying for the past days to replicate the problem... Since we're on a production environment, I can't put dovecot in debug mode and leave it in debug for an entire day, so I've been checking the queue every half an hour and as soon as a mail got stuck, I'd change mail_debug to yes and reload dovecot's config. Well, everytime I've done this, the mail got delivered except once. Just one time. On the back end I got this log: Jun 23 12:17:00 dovecot: lmtp(10680): Connect from a.b.c.d Jun 23 12:17:00 dovecot: lmtp(10680): Debug: auth input: user at domain.it quota_rule=*:backend=104857600S home=/mnt/mbox1/mailusers/user at domain.it/ Jun 23 12:17:00 dovecot: lmtp(10680): Debug: Added userdb setting: plugin/quota_rule=*:backend=104857600S Jun 23 12:18:00 dovecot: lmtp(10680): Disconnect from a.b.c.d: Connection closed I compared the log of the stuck mail with a mail that gets delivered, and I noticed that there are a few more lines of debug... in fact, after the "Debug: Added userdb setting" I see: Debug: Effective uid Debug: Quota root Debug: Quota rule Debug: maildir++ saved mail to INBOX Connection closed I hope this info can help. Regards CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Innocenzi, Cinzia Sent: gioved? 23 giugno 2011 11.06 To: 'Simone Caruso' Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta Subject: RE: [Dovecot] Dovecot 2.0.13 problem with LMTP I'll give it a try as soon as I get another mail stuck in the queue. Unfortunately it doesn't happen too often. Thank you. I'll keep you updated. Regards CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Simone Caruso [mailto:info at simonecaruso.com] Sent: mercoled? 22 giugno 2011 22.08 To: Innocenzi, Cinzia Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP if u already didnt, try setting 'mail_debug=yes' in config. -- Simone Caruso IT Consultant p.iva: 03045250838 From info at simonecaruso.com Mon Jun 27 14:02:53 2011 From: info at simonecaruso.com (Simone Caruso) Date: Mon, 27 Jun 2011 13:02:53 +0200 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <0255596D4DD80F4F80FBA92242C83A65B44E26F922@GVW1102EXC.americas.hpqcorp.net> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <4E024B83.4050204@simonecaruso.com> <0255596D4DD80F4F80FBA92242C83A65B44E26F922@GVW1102EXC.americas.hpqcorp.net> Message-ID: <4E08635D.7080905@simonecaruso.com> On 27/06/2011 11:23, Innocenzi, Cinzia wrote: > Hello Simone, > Jun 22 11:57:53 front-end dovecot: lmtp(16397): Disconnect from a.b.c.d: > Disconnected for inactivity Logs don't say anything useful to me... :/ Maybe a firewall problem between fe and be !? There is no other logs in syslog that can be related to dovecot? file descriptors limit exceeded? -- Simone Caruso IT Consultant +39 349 65 90 805 p.iva: 03045250838 From xchris89x at googlemail.com Mon Jun 27 14:24:39 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Mon, 27 Jun 2011 13:24:39 +0200 Subject: [Dovecot] hide sieve folder from imap clients Message-ID: Hello, What is the best way to hide sieve folders from IMAP clients? old config mail_home = /var/vmail/%d/%n plugin { sieve_dir = /var/vmail/%d/%n/.sieve/ sieve = /var/vmail/%d/%n/.dovecot.sieve } new config (hide sieve folder) mail_home = /var/vmail/%d/%n maildir_stat_dirs = yes plugin { sieve_dir = /var/vmail/%d/%n/sieve/ sieve = /var/vmail/%d/%n/.dovecot.sieve } Is there a better way without maildir_stat_dirs = yes ? -- Christopher From me at junc.org Mon Jun 27 14:40:53 2011 From: me at junc.org (Benny Pedersen) Date: Mon, 27 Jun 2011 13:40:53 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: Message-ID: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: > mail_home = /var/vmail/%d/%n mail_home = /var/vmail/%d/%n/.maildir > sieve_dir = /var/vmail/%d/%n/sieve/ sieve_dir = /var/vmail/%d/%n/.sieve From me at junc.org Mon Jun 27 14:49:55 2011 From: me at junc.org (Benny Pedersen) Date: Mon, 27 Jun 2011 13:49:55 +0200 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: <5cc316612701d0ea20de1889b1e8998c@junc.org> On Tue, 21 Jun 2011 16:38:32 -0300, Javier wrote: > Sending mail with > > echo "test" | sendmail xxxx at xxxx.com gives invalid mailheaders, and sieve fails # cat testmail From: "testmail" To: "abuse" Subject: testmail testmail # fire it to seive sendmail -f testmail abuse References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: On Fri, 24 Jun 2011 11:33:26 -0300, Javier wrote: > No other hint? > Only option is to upgrade to latest? or backport the needed things from later sources, its GPL v2 remember ? :) From xchris89x at googlemail.com Mon Jun 27 15:04:23 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Mon, 27 Jun 2011 14:04:23 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> Message-ID: 2011/6/27 Benny Pedersen : > On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: > >> mail_home = /var/vmail/%d/%n > > mail_home = /var/vmail/%d/%n/.maildir > >> sieve_dir = /var/vmail/%d/%n/sieve/ > > sieve_dir = /var/vmail/%d/%n/.sieve > Can you explain that? -- Christopher From berni at birkenwald.de Mon Jun 27 15:11:07 2011 From: berni at birkenwald.de (Bernhard Schmidt) Date: Mon, 27 Jun 2011 12:11:07 +0000 (UTC) Subject: [Dovecot] LDAP timeout Message-ID: Hi, we recently hit an issue where one (of the three configured) LDAP servers dropped an index on an attribute due to a misconfiguration, which caused all/most queries for passdb to take a very long time (several 10s of seconds). The other servers would have been fine, but it seems like Dovecot does either not set a timelimit on the query or uses a very high one. I could not find any place to control that either. Is there any knob to tune the LDAP timeout? Bernhard From stephan at rename-it.nl Mon Jun 27 15:13:07 2011 From: stephan at rename-it.nl (Stephan Bosch) Date: Mon, 27 Jun 2011 14:13:07 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> Message-ID: <4E0873D3.4060005@rename-it.nl> Op 27-6-2011 14:04, Christopher Stolzenberg schreef: > 2011/6/27 Benny Pedersen: >> On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: >>> mail_home = /var/vmail/%d/%n >> mail_home = /var/vmail/%d/%n/.maildir >>> sieve_dir = /var/vmail/%d/%n/sieve/ >> sieve_dir = /var/vmail/%d/%n/.sieve > Can you explain that? > Basically, the solution is not to put your sieve storage (sieve_dir=) or active sieve script (sieve=) inside your mail directory. The above fixes this by giving the mail its own sub-directory (the '.' prefix is not necessary). Regards, Stephan. From CMarcus at Media-Brokers.com Mon Jun 27 15:15:10 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Mon, 27 Jun 2011 08:15:10 -0400 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> Message-ID: <4E08744E.6040503@Media-Brokers.com> On 2011-06-27 8:04 AM, Christopher Stolzenberg wrote: > 2011/6/27 Benny Pedersen : >> On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: >> >>> mail_home = /var/vmail/%d/%n >> >> mail_home = /var/vmail/%d/%n/.maildir >> >>> sieve_dir = /var/vmail/%d/%n/sieve/ >> >> sieve_dir = /var/vmail/%d/%n/.sieve > Can you explain that? What's to explain? This separates the two directories so you won't see your sieve edirectories in your imap clients (exactly what you were asking for). -- Best regards, Charles From xchris89x at googlemail.com Mon Jun 27 15:30:28 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Mon, 27 Jun 2011 14:30:28 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: <4E0873D3.4060005@rename-it.nl> References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> <4E0873D3.4060005@rename-it.nl> Message-ID: 2011/6/27 Stephan Bosch : > Op 27-6-2011 14:04, Christopher Stolzenberg schreef: >> >> 2011/6/27 Benny Pedersen: >>> >>> On Mon, 27 Jun 2011 13:24:39 +0200, Christopher Stolzenberg wrote: >>>> >>>> mail_home = /var/vmail/%d/%n >>> >>> mail_home = /var/vmail/%d/%n/.maildir >>>> >>>> sieve_dir = /var/vmail/%d/%n/sieve/ >>> >>> sieve_dir = /var/vmail/%d/%n/.sieve >> >> Can you explain that? >> > > Basically, the solution is not to put your sieve storage (sieve_dir=) or > active sieve script (sieve=) inside your mail directory. The above fixes > this by giving the mail its own sub-directory (the '.' prefix is not > necessary). > > Regards, > > Stephan. > And what happens with existing imap accounts? Migration necessary? Will I lose much performance by maildir_stat_dirs = yes on an ext4 filesystem with my current workaround? -- Christopher From cinzia.innocenzi at hp.com Mon Jun 27 15:36:44 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Mon, 27 Jun 2011 12:36:44 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <4E08635D.7080905@simonecaruso.com> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <4E024B83.4050204@simonecaruso.com> <0255596D4DD80F4F80FBA92242C83A65B44E26F922@GVW1102EXC.americas.hpqcorp.net> <4E08635D.7080905@simonecaruso.com> Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44E26FA9B@GVW1102EXC.americas.hpqcorp.net> Hi Simone, no, I don't think the problem is related to a firewall or to some limit exceeded because mails get stuck while others are being delivered at the same time. The only log I have is dovecot's log file. There's nothing on messages log file. I checked all open fd's of all dovecot processes. Each process has max 50 open fd's. We've got a soft/hard limit of 1024 fd's. Is there anything else I can check? Is there any other dovecot parameter that I can enable so that I can send you a more detailed debug output? CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Simone Caruso [mailto:info at simonecaruso.com] Sent: luned? 27 giugno 2011 13.03 To: dovecot at dovecot.org Cc: Innocenzi, Cinzia; Del Coiro, Maria Giacinta Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP On 27/06/2011 11:23, Innocenzi, Cinzia wrote: > Hello Simone, > Jun 22 11:57:53 front-end dovecot: lmtp(16397): Disconnect from a.b.c.d: > Disconnected for inactivity Logs don't say anything useful to me... :/ Maybe a firewall problem between fe and be !? There is no other logs in syslog that can be related to dovecot? file descriptors limit exceeded? -- Simone Caruso IT Consultant +39 349 65 90 805 p.iva: 03045250838 From apm at one.com Mon Jun 27 15:55:59 2011 From: apm at one.com (Peter Mogensen) Date: Mon, 27 Jun 2011 14:55:59 +0200 Subject: [Dovecot] LMTP returncode 450? Message-ID: <4E087DDF.2020703@one.com> Hi, How do I get the LMTP-server to know which mailbox's are locally hosted and return SMTP code 450 if delivery is attempted to a non local user? I can see that a lookup in the userdb is done, but now matter what I return (1/111) from my checkpassword script I just get: 451 4.3.0 Internal error occurred. Refer to server log for more information. /Peter From jim.hague at acm.org Mon Jun 27 16:40:42 2011 From: jim.hague at acm.org (Jim Hague) Date: Mon, 27 Jun 2011 14:40:42 +0100 Subject: [Dovecot] ACLs: Group ACL adds empty ACL for user of same name, why? Message-ID: <201106271440.42658.jim.hague@acm.org> I'm playing around with ACLs, Groups and SOGo on Debian Stable, Dovecot 1.2.15. If I set an ACL for a group 'developers': 6 setacl "INBOX.Trash" "$developers" "lrsw" 6 OK Setacl complete. The dovecot-acl file for INBOX.Trash then contains a group setting for the group, and a user setting for a user of the same name, giving it no permissions. group=developers lrws user=developers and a subsequent GETACL reports the user: 5 getacl "INBOX.Trash" * ACL "INBOX.Trash" "$developers" lrws "developers" "" "jim" lrwstipekxacd 5 OK Getacl completed. Currently SOGo does not deal well with the unexpected non-existant user. So I'm curious - why's it there? -- Jim Hague - jim.hague at acm.org Never trust a computer you can't lift. From vertigo69 at mail.ru Mon Jun 27 17:14:29 2011 From: vertigo69 at mail.ru (=?utf-8?Q?=D0=92=D0=B0=D1=81=D0=B8=D0=BB=D0=B8=D0=B9_=D0=AF=D0=BA=D0=BE=D0=B2=D0=BB=D0=B5=D0=B2?=) Date: Mon, 27 Jun 2011 18:14:29 +0400 Subject: [Dovecot] Sendmail + dovecot-lda + LDAP Message-ID: Hi, I experince some problems with setting up Sendmail with the LDAP database for virtual mail accounts. Why i'm not writing to the LDAP mailing list? I believe, that the reason of my problem is in configuring dovecot-deliver. What i have: ?- FreeBSD ?- sendmail (Version 8.14.4 with LDAP support installed from ports)? ?- Dovecot LDA + dovecot (as pop3/imap) ?- Cyrus Sasl (authdaemon for authentification) 1. Following http://wiki.dovecot.org/LDA/Sendmail i've set up deliver as LDA. Everything worked fine. 2. Following http://wiki.dovecot.org/HowTo/DovecotOpenLdap i've set up Dovecot to work with tha ldap. Now i can authorize through the client or web interface and get to my maildir.? 3. Now, i want my sendmail to accept mail for the account in LDAP database. sendmail.mc: ++++++++++++++++++++++ FEATURE(`local_procmail', `/usr/local/libexec/dovecot/deliver',`/usr/local/libexec/dovecot/deliver -d $u') MODIFY_MAILER_FLAGS(`LOCAL', `-f') ...................................... define(`confLDAP_DEFAULT_SPEC', `-h "localhost" -b "dc=mydomain,dc=ru" -d "cn=dovecot,ou=accounts,dc=mydomain,dc=ru" -MLDAP_AUTH_SIMPLE -P /etc/mail/ldap_pass')dnl LDAPROUTE_DOMAIN(`mydomain.ru')dnl FEATURE(`ldap_routing', `null -T', `ldap -1 -T -v mail -k (&(objectclass=posixaccount)(mail=%0))', `passthru')dnl ...................................... MAILER(procmail) ++++++++++++++++++++++ After re-making the sendmail: ++++++++++++++++++++++ [root at test2 /etc/mail]# sendmail -bv -d60.1 test_user at mydomain.ru map_lookup(dequote, test) => NOT FOUND (0) map_lookup(host, mydomain.ru) => mydomain.ru. (0) map_lookup(dequote, test_user) => NOT FOUND (0) map_lookup(ldapmra, test_user at mydomain.ru) => test_user at mydomain.ru (0) map_lookup(ldapmh, test_user at mydomain.ru) => NOT FOUND (68) map_lookup(host, mydomain.ru) => mydomain.ru. (0) map_lookup(dequote, test_user) => NOT FOUND (0) map_lookup(virtuser, test_user at mydomain.ru) => NOT FOUND (0) map_lookup(virtuser, @mydomain.ru) => NOT FOUND (0) test_user at mydomain.ru... User unknown ++++++++++++++++++++++ It's the problem of the local delivery, i believe. Why? Because after sendmail getting an email it passes it to the LDA, which must check the LDAP (not the passwd!) database for the user, to which this email is send to. Are there some possibilities to solve this problem? I appreciate any help.? From japi76 at gmail.com Mon Jun 27 17:16:21 2011 From: japi76 at gmail.com (Javier) Date: Mon, 27 Jun 2011 11:16:21 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: <4DFDDAC5.7030507@rename-it.nl> Message-ID: Upgrade is an option, just want to know how many I have. But, as being a medium sized mail system, I have to take little steps. Thanks Javier On Mon, Jun 27, 2011 at 8:52 AM, Benny Pedersen wrote: > On Fri, 24 Jun 2011 11:33:26 -0300, Javier wrote: >> >> No other hint? >> Only option is to upgrade to latest? > > or backport the needed things from later sources, its GPL v2 remember ? :) > > From aperezaranda at yaco.es Mon Jun 27 17:25:39 2011 From: aperezaranda at yaco.es (Antonio Perez-Aranda) Date: Mon, 27 Jun 2011 16:25:39 +0200 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: <1308763692.10421.909.camel@hurina> References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> <1308763692.10421.909.camel@hurina> Message-ID: How it works? +key=value or key+=value 2011/6/22 Timo Sirainen : > I did some fixes to my original patch to make it actually work the way I > intended: http://hg.dovecot.org/dovecot-2.0/rev/3d07ab746a67 > > On Tue, 2011-06-14 at 17:38 +0200, Antonio Perez-Aranda wrote: >> Maybe this could be a "feature request" for dovecot 2.0.14 - 2.0.15 or 2.1 ? >> >> 2011/6/9 Antonio Perez-Aranda : >> > This patch fix a bug and remove some debug info from patch sent before. >> > >> > 2011/6/9 Antonio Perez-Aranda : >> >> This patch is running but it only run with mail_plugins. >> >> >> >> This is because I can't select the "mail_plugins" value from any >> >> function to get this throw the name key. >> >> >> >> Maybe this need more hard development to do this as generic "property" >> >> for any config value. >> >> >> >> 2011/6/9 Antonio Perez-Aranda : >> >>> Well, this "extrange" vaues is NULL. >> >>> >> >>> Maybe, the set_parser is a new environment to set settings but then >> >>> ?when is make the config merge? >> >>> >> >>> 2011/6/9 Antonio Perez-Aranda : >> >>>> This line: >> >>>> >> >>>> value = settings_parse_get_value(set_parser, key, &type); >> >>>> >> >>>> Is returning a empty value. Maybe, set_parser has been cleared? >> >>>> >> >>>> If I try to get another keys from my config that I can watch with >> >>>> doveadm I get "extrange" values like this with i_debug() >> >>>> >> >>>> ?* mail_debug -> #001 >> >>>> ?* mail_location -> #010 >> >>>> ?* auth_realms -> #020#002 >> >>>> >> >>>> >> >>>> 2011/6/8 Antonio Perez-Aranda : >> >>>>> It must run on dovecot 2.0.13? >> >>>>> >> >>>>> We are upgrading to 2.0.13 and with this I get the follow message: >> >>>>> >> >>>>> Jun ?8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: >> >>>>> +mail_plugins=fts fts_solr?G >> >>>>> >> >>>>> >> >>>>> 2011/6/7 Timo Sirainen : >> >>>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: >> >>>>>>> Greats, I'm working on patch from this morning, but it's very hard to >> >>>>>>> debug on settings-parser >> >>>>>> >> >>>>>> I don't think you should need to touch that code. It's a bit difficult >> >>>>>> for me also to follow.. >> >>>>>> >> >>>>>>> How can I enable i_debug on settings-parser.c ? >> >>>>>> >> >>>>>> What do you mean? You could add i_debug() calls and it should work just >> >>>>>> the same as everywhere. >> >>>>>> >> >>>>>> Did you try the patch in my previous mail? I think that should be >> >>>>>> enough. You could then use: >> >>>>>> >> >>>>>> user_attrs = .., mailPlugins=+mail_plugins >> >>>>>> >> >>>>>> >> >>>>>> >> >>>>> >> >>>>> >> >>>>> >> >>>>> -- >> >>>>> Antonio P?rez-Aranda Alcaide >> >>>>> aperezaranda at yaco.es >> >>>>> >> >>>>> Yaco Sistemas S.L. >> >>>>> http://www.yaco.es/ >> >>>>> C/ Rioja 5, 41001 Sevilla >> >>>>> Tel?fono +34 954 50 00 57 >> >>>>> Fax ? ? ?+34 954 50 09 29 >> >>>>> >> >>>> >> >>>> >> >>>> >> >>>> -- >> >>>> Antonio P?rez-Aranda Alcaide >> >>>> aperezaranda at yaco.es >> >>>> >> >>>> Yaco Sistemas S.L. >> >>>> http://www.yaco.es/ >> >>>> C/ Rioja 5, 41001 Sevilla >> >>>> Tel?fono +34 954 50 00 57 >> >>>> Fax ? ? ?+34 954 50 09 29 >> >>>> >> >>> >> >>> >> >>> >> >>> -- >> >>> Antonio P?rez-Aranda Alcaide >> >>> aperezaranda at yaco.es >> >>> >> >>> Yaco Sistemas S.L. >> >>> http://www.yaco.es/ >> >>> C/ Rioja 5, 41001 Sevilla >> >>> Tel?fono +34 954 50 00 57 >> >>> Fax ? ? ?+34 954 50 09 29 >> >>> >> >> >> >> >> >> >> >> -- >> >> Antonio P?rez-Aranda Alcaide >> >> aperezaranda at yaco.es >> >> >> >> Yaco Sistemas S.L. >> >> http://www.yaco.es/ >> >> C/ Rioja 5, 41001 Sevilla >> >> Tel?fono +34 954 50 00 57 >> >> Fax ? ? ?+34 954 50 09 29 >> >> >> > >> > >> > >> > -- >> > Antonio P?rez-Aranda Alcaide >> > aperezaranda at yaco.es >> > >> > Yaco Sistemas S.L. >> > http://www.yaco.es/ >> > C/ Rioja 5, 41001 Sevilla >> > Tel?fono +34 954 50 00 57 >> > Fax ? ? ?+34 954 50 09 29 >> > >> >> >> > > > -- Antonio P?rez-Aranda Alcaide aperezaranda at yaco.es Yaco Sistemas S.L. http://www.yaco.es/ C/ Rioja 5, 41001 Sevilla Tel?fono +34 954 50 00 57 Fax ? ? ?+34 954 50 09 29 From maria_arrea at gmx.com Mon Jun 27 17:54:51 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Mon, 27 Jun 2011 14:54:51 +0000 Subject: [Dovecot] Question about corrupted mdbox file Message-ID: <20110627145452.75880@gmx.com> Any idea about this problem? Regards Maria ----- Original Message ----- From: Maria Arrea Sent: 06/23/11 01:59 PM To: Dovecot Mailing List Subject: [Dovecot] Question about corrupted mdbox file Hello. We are using mdbox 2.013 + zlib, without SIS. When I try doveadm force-resync on a user's mailbox I get the following: doveadm(jmraya): Error: Corrupted dbox file /buzones/mydomain/0b/59/jmraya/storage/m.27 (around offset=22805024): Unexpected EOF while reading metadata header doveadm(jmraya): Warning: dbox: Copy of the broken file saved to /buzones/mydomain/0b/59/jmraya/storage/m.27.broken Any advice about this? Regards Maria From maria_arrea at gmx.com Mon Jun 27 17:55:52 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Mon, 27 Jun 2011 14:55:52 +0000 Subject: [Dovecot] Question about "Storage keeps breaking" in logs Message-ID: <20110627145553.75890@gmx.com> Any hint about this problem? I have been google for a while without luck :( Regards Maria ----- Original Message ----- From: Maria Arrea Sent: 06/22/11 09:32 PM To: Timo Sirainen Subject: Re: [Dovecot] Question about "Storage keeps breaking" in logs Here you have more detailed logs: First case: Jun 6 17:03:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/18/66/juanan/storage: rebuilding indexes Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones/18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=5960/766852 Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/P4. WebMed/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=1124/7377 Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: Recent flags state corrupted for mailbox Deleted Messages Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/Deleted Messages/dovecot.index reset, view is now inconsistent Jun 6 17:03:27 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=5418/408785 Jun 6 17:09:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/us.es/18/66/juanan/storage: rebuilding indexes Jun 6 17:09:23 buzon dovecot: imap(juanan): Error: /indices_dovecot/indices/18/66/juanan/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 6 17:09:23 buzon dovecot: imap(juanan): Disconnected: IMAP session state is inconsistent, please relogin. bytes=2134/4879108 Jun 6 17:19:33 buzon dovecot: lda(juanan): sieve: msgid=: stored mail into mailbox 'INBOX' Second case: Jun 16 11:48:24 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32282 Jun 16 11:48:24 buzon dovecot: imap(fjvalderrama at us.es): Warning: mdbox /buzones/0f/99/fjvalderrama/storage: rebuilding indexes Jun 16 11:48:29 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32510 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Error: mdbox /buzones/mydomain/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Error: mdbox /buzones/mydomain/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=132/574 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=60/406 Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama at mydomain): Connection closed bytes=98/423 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox Trash Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/Trash/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=20224/556432 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox SEV/AsigVirtual Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/SEV/AsigVirtual/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=940/62147 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/SEV/Miembros US/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=13061/37386 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: Recent flags state corrupted for mailbox INBOX Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama at us.es): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/Drafts/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama at us.es): Disconnected: IMAP session state is inconsistent, please relogin. bytes=3238/7247 Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Error: /indices_dovecot/indices/0f/99/fjvalderrama/mailboxes/INBOX/dovecot.index reset, view is now inconsistent Jun 16 11:48:30 buzon dovecot: imap(fjvalderrama): Disconnected: IMAP session state is inconsistent, please relogin. bytes=1451/22771 Jun 16 11:48:34 buzon dovecot: imap-login: Login: user=, method=PLAIN, rip=192.168.1.150, lip=192.168.4.80, mpid=32745 Do you need dovecot config to debug this? I can give it to you if needed. Regards Maria ----- Original Message ----- From: Timo Sirainen Sent: 06/22/11 07:43 PM To: Maria Arrea Subject: Re: [Dovecot] Question about "Storage keeps breaking" in logs On Sun, 2011-06-19 at 10:59 +0000, Maria Arrea wrote: > /var/log/maillog.13.xz:Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones//18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking > /var/log/maillog.3.xz:Jun 16 11:48:29 buzon dovecot: imap(fjvalderrama): Error: mdbox /buzones/0f/99/fjvalderrama/mailboxes/Asignaturas 08-09/Calculo/dbox-Mails: Storage keeps breaking > > > I have "rebuilt" those mdboxes with doveadm force-resync && doveadm quota recalc. Should I be worried? Why is this happening? Aren't there any other error/warning messages around them? From sm at resistor.net Mon Jun 27 17:30:29 2011 From: sm at resistor.net (SM) Date: Mon, 27 Jun 2011 07:30:29 -0700 Subject: [Dovecot] dovecot security with IPv6 In-Reply-To: References: Message-ID: <6.2.5.6.2.20110627072454.037594f8@resistor.net> At 01:23 23-06-2011, K?rlis Repsons wrote: >particular services, please give me your opinion if it's insecure to >have a dovecot server, which is accessed through a public IPv6 >address... If you do not consider it as secure to run a Dovecot server on a public IPv4 address, the same applies for IPv6. Regards, -sm From me at junc.org Mon Jun 27 18:47:01 2011 From: me at junc.org (Benny Pedersen) Date: Mon, 27 Jun 2011 17:47:01 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> Message-ID: <48bd04856685c208ba2f2ac344b9135b@junc.org> On Mon, 27 Jun 2011 14:04:23 +0200, Christopher Stolzenberg wrote: > Can you explain that? yes, but is it needed ? with this setup seive scripts are not in maildir or visa versa :) From me at junc.org Mon Jun 27 18:56:47 2011 From: me at junc.org (Benny Pedersen) Date: Mon, 27 Jun 2011 17:56:47 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: <11c2bcdbb7757b7a22ce8620bf229b18@junc.org> <4E0873D3.4060005@rename-it.nl> Message-ID: <3620214201cd59fdd0633d35c0368641@junc.org> On Mon, 27 Jun 2011 14:30:28 +0200, Christopher Stolzenberg wrote: > And what happens with existing imap accounts? nothing > Migration necessary? yes, stop dovecot, and do the dirs renaming so all mailbox'es is in .maildir pr mailbox when done start dovecot, or use imapsync before change dovecot.conf (rename folders before change dovecot, this saves time if you have more then one mailbox to migrade) google imapsync to find it dont know if dovecot can do this with out external tools > Will I lose much performance by maildir_stat_dirs = yes on an ext4 > filesystem with my current workaround? is performance a workaround ? and i dont know since i dont use it From tlx at leuxner.net Mon Jun 27 20:56:19 2011 From: tlx at leuxner.net (Thomas Leuxner) Date: Mon, 27 Jun 2011 19:56:19 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: References: Message-ID: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> > new config (hide sieve folder) > > mail_home = /var/vmail/%d/%n > maildir_stat_dirs = yes > > plugin { > sieve_dir = /var/vmail/%d/%n/sieve/ > sieve = /var/vmail/%d/%n/.dovecot.sieve > } All the examples look a bit overcomplicated. Why not go with the "defaults"? mail_location = maildir:~/maildir sieve = ~/.dovecot.sieve However this relies on home dirs being returned from the user lookups which has not been revealed in the OP's partial config post. Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 203 bytes Desc: Signierter Teil der Nachricht URL: From dmiller at amfes.com Mon Jun 27 21:40:29 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 11:40:29 -0700 Subject: [Dovecot] Virtual Servers Message-ID: Maybe a little off-topic - but I hope not too much. Looking for some insight on setting up Dovecot under a virtual server. In particular, I use VirtualBox - and at the moment, Ubuntu Linux. Initial questions on configuration: Caching. It seems to me - and I'm probably wrong - that running a Linux in a VM on a Linux host, there would be a duplication of caching. That is, the host server has a file cache - and the VM, which is otherwise a standard Linux installation, is also going to try to cache its files. This strikes me as a duplication of effort and waste of RAM. Is this something I should devote any time to thinking about and trying to minimize? If so, how? Mail storage. My current mail store is a RAID-10, using the mdbox format. I wish to continue storing the mail on "raw" disks - not place the mail inside a virtual disk. Accordingly, the VM needs to reach the mail outside the VM environment - which according to conventional wisdom means NFS. My initial testing shows NFS results in a dramatically reduced performance for Dovecot. Given that this NFS access is going to be exclusively for Dovecot, and I'm only running a single server, are there any NFS or Dovecot tweaks I should implement? Is there an alternative connectivity for the VirtualBox environment I should explore? -- Daniel From philip at turmel.org Mon Jun 27 22:48:17 2011 From: philip at turmel.org (Phil Turmel) Date: Mon, 27 Jun 2011 15:48:17 -0400 Subject: [Dovecot] Virtual Servers In-Reply-To: References: Message-ID: <4E08DE81.9020705@turmel.org> Hi Daniel, On 06/27/2011 02:40 PM, Daniel L. Miller wrote: > Maybe a little off-topic - but I hope not too much. > > Looking for some insight on setting up Dovecot under a virtual server. In particular, I use VirtualBox - and at the moment, Ubuntu Linux. > > Initial questions on configuration: > > Caching. It seems to me - and I'm probably wrong - that running a Linux in a VM on a Linux host, there would be a duplication of caching. That is, the host server has a file cache - and the VM, which is otherwise a standard Linux installation, is also going to try to cache its files. This strikes me as a duplication of effort and waste of RAM. Is this something I should devote any time to thinking about and trying to minimize? If so, how? In the storage configuration of your VM, where you select the type of interface to emulate, there's a checkbox for using the Host's I/O cache. > Mail storage. My current mail store is a RAID-10, using the mdbox format. I wish to continue storing the mail on "raw" disks - not place the mail inside a virtual disk. Accordingly, the VM needs to reach the mail outside the VM environment - which according to conventional wisdom means NFS. My initial testing shows NFS results in a dramatically reduced performance for Dovecot. Given that this NFS access is going to be exclusively for Dovecot, and I'm only running a single server, are there any NFS or Dovecot tweaks I should implement? Is there an alternative connectivity for the VirtualBox environment I should explore? If you can set aside entire block devices for use in the VM, you can create a vmdk that performs a 1:1 mapping from the virtualized disk to the given block device. The block device will be partitionable inside the VM, even if it is a partition itself. If you need to, you can access those partitions from the host with the "partx" or "kpartx" utilities (with the VM shut down, of course). The command you want is "VBoxManage internalcommands createrawvmdk" On the other hand, if the host and the guest need simultaneous access, you will need some form of network filesystem. HTH, Phil From lists at wildgooses.com Mon Jun 27 23:03:13 2011 From: lists at wildgooses.com (Ed W) Date: Mon, 27 Jun 2011 21:03:13 +0100 Subject: [Dovecot] Virtual Servers In-Reply-To: References: Message-ID: <4E08E201.6020909@wildgooses.com> On 27/06/2011 19:40, Daniel L. Miller wrote: > Maybe a little off-topic - but I hope not too much. > > Looking for some insight on setting up Dovecot under a virtual server. > In particular, I use VirtualBox - and at the moment, Ubuntu Linux. Although not an option you are currently using, I'm a huge fan of linux-vservers for linux on linux virtualisation. It doesn't offer "full" virtualisation, but it's very secure and extremely lightweight. If you also hardlink all the common files then you will even reduce your RSS sizes across virtual machines due to the kernel using shared static segments Completely useless response to your question, but just a quick thumbs up on a completely different way to slice your onion... Good luck Ed W From xchris89x at googlemail.com Mon Jun 27 23:33:44 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Mon, 27 Jun 2011 22:33:44 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> References: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> Message-ID: 2011/6/27 Thomas Leuxner : >> new config (hide sieve folder) >> >> mail_home = /var/vmail/%d/%n >> maildir_stat_dirs = yes >> >> plugin { >> sieve_dir = /var/vmail/%d/%n/sieve/ >> sieve = /var/vmail/%d/%n/.dovecot.sieve >> } > > All the examples look a bit overcomplicated. Why not go with the "defaults"? I'll try it. > ?mail_location = maildir:~/maildir > ?sieve = ~/.dovecot.sieve Have you any idea how i specify it best? mail_location and mail_home. > > However this relies on home dirs being returned from the user lookups which has not been revealed in the OP's partial config post. With MySQL. user_query = SELECT concat('/var/vmail/', maildir) as home, concat('maildir:/var/vmail/', maildir) as mail, 6000 AS uid, 6000 AS gid, concat('maildir:storage=', quota) AS quota FROM mailbox WHERE username = '%u' AND active = '1' -- Christopher From info at simonecaruso.com Mon Jun 27 23:34:20 2011 From: info at simonecaruso.com (Simone Caruso) Date: Mon, 27 Jun 2011 22:34:20 +0200 Subject: [Dovecot] Per IP ssl certificates Message-ID: <4E08E94C.9080605@simonecaruso.com> I have to manage 2 different domains, with 1 ssl certificate each, but I don't know how to configure them. I tried this example: "Different certificates per IP and protocol" http://wiki2.dovecot.org/SSL/DovecotConfiguration but I got this error: doveconf: Fatal: Error in configuration file /etc/dovecot/dovecot.conf: ssl enabled, but ssl_cert not set I dont find any documentation about the 'local' keyword too. Any idea or tip? Thanks -- Simone Caruso IT Consultant p.iva: 03045250838 From dovecot-20061108 at billmail.scconsult.com Tue Jun 28 00:34:57 2011 From: dovecot-20061108 at billmail.scconsult.com (Bill Cole) Date: Mon, 27 Jun 2011 17:34:57 -0400 Subject: [Dovecot] Per IP ssl certificates In-Reply-To: <4E08E94C.9080605@simonecaruso.com> References: <4E08E94C.9080605@simonecaruso.com> Message-ID: <4E08F781.6030900@billmail.scconsult.com> Simone Caruso wrote, On 6/27/11 4:34 PM: > I have to manage 2 different domains, with 1 ssl certificate each, but I don't > know how to configure them. > > I tried this example: > "Different certificates per IP and protocol" > http://wiki2.dovecot.org/SSL/DovecotConfiguration > > but I got this error: > doveconf: Fatal: Error in configuration file /etc/dovecot/dovecot.conf: ssl > enabled, but ssl_cert not set > > I dont find any documentation about the 'local' keyword too. > > Any idea or tip? Do you expect other people to be psychic? I know what your problem is: your configuration is incorrect. Because you haven't shown *ANYTHING* specific about your actual configuration, there is an infinite number of ways that your configuration might be incorrect. My completely wild guess is that you did not read http://wiki2.dovecot.org/SSL/DovecotConfiguration very carefully. It specifically warns that the error message you cite will result from not setting a default cert for the server. From patrickdk at patrickdk.com Tue Jun 28 00:51:54 2011 From: patrickdk at patrickdk.com (Patrick Domack) Date: Mon, 27 Jun 2011 17:51:54 -0400 Subject: [Dovecot] Virtual Servers In-Reply-To: References: Message-ID: <20110627175154.Horde.bhfkS5LnE6FOCPt6XH1BGvA@mail.patrickdk.com> I wouldn't worry about *duplicate cache* as far as disk goes at all. This duplicate cache is only going to benifit your vm, if the host machine has enough left over ram. If the host machine doesn't have enough ram, there won't be any cache to worry about. I think this also only applies when using a file based drive, where if you use a raw partition it doesn't get cached, cause the vfs is bypassed. Quoting "Daniel L. Miller" : > Maybe a little off-topic - but I hope not too much. > > Looking for some insight on setting up Dovecot under a virtual > server. In particular, I use VirtualBox - and at the moment, Ubuntu > Linux. > > Initial questions on configuration: > > Caching. It seems to me - and I'm probably wrong - that running a > Linux in a VM on a Linux host, there would be a duplication of > caching. That is, the host server has a file cache - and the VM, > which is otherwise a standard Linux installation, is also going to > try to cache its files. This strikes me as a duplication of effort > and waste of RAM. Is this something I should devote any time to > thinking about and trying to minimize? If so, how? > > Mail storage. My current mail store is a RAID-10, using the mdbox > format. I wish to continue storing the mail on "raw" disks - not > place the mail inside a virtual disk. Accordingly, the VM needs to > reach the mail outside the VM environment - which according to > conventional wisdom means NFS. My initial testing shows NFS results > in a dramatically reduced performance for Dovecot. Given that this > NFS access is going to be exclusively for Dovecot, and I'm only > running a single server, are there any NFS or Dovecot tweaks I > should implement? Is there an alternative connectivity for the > VirtualBox environment I should explore? > > -- > Daniel From dmiller at amfes.com Tue Jun 28 01:17:43 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 15:17:43 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <20110627175154.Horde.bhfkS5LnE6FOCPt6XH1BGvA@mail.patrickdk.com> References: <4E08CE9D.7010307@amfes.com> <20110627175154.Horde.bhfkS5LnE6FOCPt6XH1BGvA@mail.patrickdk.com> Message-ID: On 6/27/2011 2:51 PM, Patrick Domack wrote: > I wouldn't worry about *duplicate cache* as far as disk goes at all. > > This duplicate cache is only going to benifit your vm, if the host > machine has enough left over ram. If the host machine doesn't have > enough ram, there won't be any cache to worry about. I think this also > only applies when using a file based drive, where if you use a raw > partition it doesn't get cached, cause the vfs is bypassed. My primary "concern" was the VM cache. My thought was since the host was caching, there was no need for the VM to try to allocate precious VM memory for cache purposes. The goal "obviously?" being to allocate as much RAM as necessary for efficient Dovecot functioning in the VM and avoid any swap-to-disk issues. -- Daniel From tss at iki.fi Tue Jun 28 02:33:38 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:33:38 +0300 Subject: [Dovecot] Question about "Storage keeps breaking" in logs In-Reply-To: <20110622193211.75860@gmx.com> References: <20110622193211.75860@gmx.com> Message-ID: <1309217618.10421.944.camel@hurina> On Wed, 2011-06-22 at 19:32 +0000, Maria Arrea wrote: > Jun 6 17:03:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/18/66/juanan/storage: rebuilding indexes Problem 1: It doesn't log the reason for this rebuild. I can find only one place in code why that could happen, fixed: http://hg.dovecot.org/dovecot-2.0/rev/028b953e7040 > Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones/18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking Problem 2: It apparently can't fix that error. But in my tests it gets fixed fine.. > Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: Recent flags state corrupted for mailbox Deleted Messages Probably related to the index rebuild. So this is a local disk with ext4 filesystem, nothing special? It shouldn't be breaking.. How often do these happen? Can you reproduce these by running imaptest against a test account? http://imapwiki.org/ImapTest From tss at iki.fi Tue Jun 28 02:42:02 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:42:02 +0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: Message-ID: <1309218122.10421.947.camel@hurina> On Fri, 2011-06-24 at 18:23 +0300, Timo Sirainen wrote: > On 16.6.2011, at 19.24, Javier wrote: > > > Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxx at xxxxxxx.com): > > Error: waitpid() failed: No child processes > > This is the main problem. It just shouldn't be happening. You could try stracing an lmtp process while it sends a mail, and see if there are two waitpid() calls or of the first one is giving this error. If there is only this one waitpid() call this would seem like a kernel problem. I think this fixes the bug: http://hg.dovecot.org/dovecot-2.0/rev/748b0fd169d1 Of course, since you can't upgrade that's not very helpful.. You could try to figure out why your sendmail binary is forking and not make it do that.. From tss at iki.fi Tue Jun 28 02:43:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:43:33 +0300 Subject: [Dovecot] Per IP ssl certificates In-Reply-To: <4E08E94C.9080605@simonecaruso.com> References: <4E08E94C.9080605@simonecaruso.com> Message-ID: <1309218213.10421.948.camel@hurina> On Mon, 2011-06-27 at 22:34 +0200, Simone Caruso wrote: > doveconf: Fatal: Error in configuration file /etc/dovecot/dovecot.conf: ssl > enabled, but ssl_cert not set You need one global "default" ssl_cert. Don't put everything inside local {}. From tss at iki.fi Tue Jun 28 02:50:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:50:08 +0300 Subject: [Dovecot] =?iso-8859-1?q?Extra_plugins_v=EDa_extrafield_in_ldap?= In-Reply-To: References: <1307101841.10421.545.camel@hurina> <1307454313.10421.724.camel@hurina> <1307456501.10421.745.camel@hurina> <1308763692.10421.909.camel@hurina> Message-ID: <1309218608.10421.950.camel@hurina> It's +key=value. And in some situations where you'd have userdb_key=value you'd now have userdb_+key=value, which is kind of ugly and actually makes me think key+=value could be better.. :) Yeah, changed now: http://hg.dovecot.org/dovecot-2.0/rev/4285147ed694 On Mon, 2011-06-27 at 16:25 +0200, Antonio Perez-Aranda wrote: > How it works? +key=value or key+=value > > 2011/6/22 Timo Sirainen : > > I did some fixes to my original patch to make it actually work the way I > > intended: http://hg.dovecot.org/dovecot-2.0/rev/3d07ab746a67 > > > > On Tue, 2011-06-14 at 17:38 +0200, Antonio Perez-Aranda wrote: > >> Maybe this could be a "feature request" for dovecot 2.0.14 - 2.0.15 or 2.1 ? > >> > >> 2011/6/9 Antonio Perez-Aranda : > >> > This patch fix a bug and remove some debug info from patch sent before. > >> > > >> > 2011/6/9 Antonio Perez-Aranda : > >> >> This patch is running but it only run with mail_plugins. > >> >> > >> >> This is because I can't select the "mail_plugins" value from any > >> >> function to get this throw the name key. > >> >> > >> >> Maybe this need more hard development to do this as generic "property" > >> >> for any config value. > >> >> > >> >> 2011/6/9 Antonio Perez-Aranda : > >> >>> Well, this "extrange" vaues is NULL. > >> >>> > >> >>> Maybe, the set_parser is a new environment to set settings but then > >> >>> ?when is make the config merge? > >> >>> > >> >>> 2011/6/9 Antonio Perez-Aranda : > >> >>>> This line: > >> >>>> > >> >>>> value = settings_parse_get_value(set_parser, key, &type); > >> >>>> > >> >>>> Is returning a empty value. Maybe, set_parser has been cleared? > >> >>>> > >> >>>> If I try to get another keys from my config that I can watch with > >> >>>> doveadm I get "extrange" values like this with i_debug() > >> >>>> > >> >>>> * mail_debug -> #001 > >> >>>> * mail_location -> #010 > >> >>>> * auth_realms -> #020#002 > >> >>>> > >> >>>> > >> >>>> 2011/6/8 Antonio Perez-Aranda : > >> >>>>> It must run on dovecot 2.0.13? > >> >>>>> > >> >>>>> We are upgrading to 2.0.13 and with this I get the follow message: > >> >>>>> > >> >>>>> Jun 8 16:15:03 kvm3 dovecot: imap: Debug: Unknown userdb setting: > >> >>>>> +mail_plugins=fts fts_solr?G > >> >>>>> > >> >>>>> > >> >>>>> 2011/6/7 Timo Sirainen : > >> >>>>>> On Tue, 2011-06-07 at 16:16 +0200, Antonio Perez-Aranda wrote: > >> >>>>>>> Greats, I'm working on patch from this morning, but it's very hard to > >> >>>>>>> debug on settings-parser > >> >>>>>> > >> >>>>>> I don't think you should need to touch that code. It's a bit difficult > >> >>>>>> for me also to follow.. > >> >>>>>> > >> >>>>>>> How can I enable i_debug on settings-parser.c ? > >> >>>>>> > >> >>>>>> What do you mean? You could add i_debug() calls and it should work just > >> >>>>>> the same as everywhere. > >> >>>>>> > >> >>>>>> Did you try the patch in my previous mail? I think that should be > >> >>>>>> enough. You could then use: > >> >>>>>> > >> >>>>>> user_attrs = .., mailPlugins=+mail_plugins > >> >>>>>> > >> >>>>>> > >> >>>>>> > >> >>>>> > >> >>>>> > >> >>>>> > >> >>>>> -- > >> >>>>> Antonio P?rez-Aranda Alcaide > >> >>>>> aperezaranda at yaco.es > >> >>>>> > >> >>>>> Yaco Sistemas S.L. > >> >>>>> http://www.yaco.es/ > >> >>>>> C/ Rioja 5, 41001 Sevilla > >> >>>>> Tel?fono +34 954 50 00 57 > >> >>>>> Fax +34 954 50 09 29 > >> >>>>> > >> >>>> > >> >>>> > >> >>>> > >> >>>> -- > >> >>>> Antonio P?rez-Aranda Alcaide > >> >>>> aperezaranda at yaco.es > >> >>>> > >> >>>> Yaco Sistemas S.L. > >> >>>> http://www.yaco.es/ > >> >>>> C/ Rioja 5, 41001 Sevilla > >> >>>> Tel?fono +34 954 50 00 57 > >> >>>> Fax +34 954 50 09 29 > >> >>>> > >> >>> > >> >>> > >> >>> > >> >>> -- > >> >>> Antonio P?rez-Aranda Alcaide > >> >>> aperezaranda at yaco.es > >> >>> > >> >>> Yaco Sistemas S.L. > >> >>> http://www.yaco.es/ > >> >>> C/ Rioja 5, 41001 Sevilla > >> >>> Tel?fono +34 954 50 00 57 > >> >>> Fax +34 954 50 09 29 > >> >>> > >> >> > >> >> > >> >> > >> >> -- > >> >> Antonio P?rez-Aranda Alcaide > >> >> aperezaranda at yaco.es > >> >> > >> >> Yaco Sistemas S.L. > >> >> http://www.yaco.es/ > >> >> C/ Rioja 5, 41001 Sevilla > >> >> Tel?fono +34 954 50 00 57 > >> >> Fax +34 954 50 09 29 > >> >> > >> > > >> > > >> > > >> > -- > >> > Antonio P?rez-Aranda Alcaide > >> > aperezaranda at yaco.es > >> > > >> > Yaco Sistemas S.L. > >> > http://www.yaco.es/ > >> > C/ Rioja 5, 41001 Sevilla > >> > Tel?fono +34 954 50 00 57 > >> > Fax +34 954 50 09 29 > >> > > >> > >> > >> > > > > > > > > > > -- > Antonio P?rez-Aranda Alcaide > aperezaranda at yaco.es > > Yaco Sistemas S.L. > http://www.yaco.es/ > C/ Rioja 5, 41001 Sevilla > Tel?fono +34 954 50 00 57 > Fax +34 954 50 09 29 > From tss at iki.fi Tue Jun 28 02:55:02 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:55:02 +0300 Subject: [Dovecot] ACLs: Group ACL adds empty ACL for user of same name, why? In-Reply-To: <201106271440.42658.jim.hague@acm.org> References: <201106271440.42658.jim.hague@acm.org> Message-ID: <1309218902.10421.952.camel@hurina> On Mon, 2011-06-27 at 14:40 +0100, Jim Hague wrote: > I'm playing around with ACLs, Groups and SOGo on Debian Stable, Dovecot > 1.2.15. > > If I set an ACL for a group 'developers': > > 6 setacl "INBOX.Trash" "$developers" "lrsw" > 6 OK Setacl complete. > > The dovecot-acl file for INBOX.Trash then contains a group setting for the > group, and a user setting for a user of the same name, giving it no > permissions. > > group=developers lrws > user=developers Looks like a bug. I see it's fixed in v2.0 already. You can't get it fixed to Debian stable .deb anyway, so I don't think there's much point in trying to backport the fix. From tss at iki.fi Tue Jun 28 02:58:23 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 02:58:23 +0300 Subject: [Dovecot] LMTP returncode 450? In-Reply-To: <4E087DDF.2020703@one.com> References: <4E087DDF.2020703@one.com> Message-ID: <1309219103.10421.955.camel@hurina> On Mon, 2011-06-27 at 14:55 +0200, Peter Mogensen wrote: > How do I get the LMTP-server to know which mailbox's are locally hosted > and return SMTP code 450 if delivery is attempted to a non local user? You can't, at least that way. Why are you trying to deliver mails to a non-local mailbox? You could anyway use Dovecot as LMTP proxy to the remote LMTP server and it would deliver the mail there without an error. > I can see that a lookup in the userdb is done, but now matter what I > return (1/111) from my checkpassword script I just get: Set lmtp_proxy=yes and have passdb lookup return proxy=y and host=1.2.3.4. From tss at iki.fi Tue Jun 28 03:03:59 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:03:59 +0300 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> Message-ID: <1309219439.10421.959.camel@hurina> On Wed, 2011-06-22 at 10:31 +0000, Innocenzi, Cinzia wrote: > Hello, > > we have dovecot 2.0.13 installed in our RHEL5 servers. We use dovecot > as a lmtp proxy on the front end mail relays and dovecot for back end > lmtp/pop/imap. All our servers have RHEL5.6 64-bit and dovecot 2.0.13 > installed, and the back end has also an ext3 mbox file-system mounted. > > Sometimes we have mails that get stuck on our postfix queue with the > following error: Remote server not answering (timeout in DATA input) > (in reply to end of DATA command) .. > It doesn't happen for every single mail, it's random. My guess is there's a bug somewhere in the LMTP proxy code. It's a bit annoyingly complex code.. Do you see this happening when proxying only a single mail (one RCPT TO per DATA, not multiple)? And I would guess that when attempting to deliver the same mail again it works fine (at least in a few tries)? From tss at iki.fi Tue Jun 28 03:10:00 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:10:00 +0300 Subject: [Dovecot] LDAP timeout In-Reply-To: References: Message-ID: <1309219800.10421.964.camel@hurina> On Mon, 2011-06-27 at 12:11 +0000, Bernhard Schmidt wrote: > Hi, > > we recently hit an issue where one (of the three configured) LDAP > servers dropped an index on an attribute due to a misconfiguration, > which caused all/most queries for passdb to take a very long time > (several 10s of seconds). > > The other servers would have been fine, but it seems like Dovecot does > either not set a timelimit on the query or uses a very high one. I could > not find any place to control that either. > > Is there any knob to tune the LDAP timeout? Fallbacking to another LDAP server is done by OpenLDAP internally. So what would be needed is either a) OpenLDAP to itself figure out that queries are running too slowly and see if another server is faster, or b) Dovecot figure that out itself and force OpenLDAP to switch to another server. I don't know if either of them is possible with OpenLDAP API as it is. I doubt it. Oh, also possibility c) Have Dovecot manage all the different LDAP server connections instead of OpenLDAP. Probably what I will have to do eventually anyway. That would allow also load balancing by actually using multiple connections, similar to how SQL code does it now. But yeah, that does remind me that I probably should change the SQL load balancing code to look at the query times. From tss at iki.fi Tue Jun 28 03:11:37 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:11:37 +0300 Subject: [Dovecot] Denying user won't work as expected In-Reply-To: <4E08365B.7060909@esiee.fr> References: <4E08365B.7060909@esiee.fr> Message-ID: <1309219897.10421.966.camel@hurina> On Mon, 2011-06-27 at 09:50 +0200, Frank Bonnet wrote: > passdb { > driver = ldap > deny = yes > > # File contains a list of usernames, one per line > args = /usr/local/etc/dovecot/deny-users > } > > I have tested writting one user (me) in the > /usr/local/etc/dovecot/deny-users You have driver=ldap there, which means that LDAP tries to read the deny-users file as its configuration file. > and the result is the login is denied for ALL users ... I'm surprised that it even starts up.. If replacing driver=ldap with driver=passwd-file doesn't help, show your actual dovecot -n output. From tss at iki.fi Tue Jun 28 03:15:32 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:15:32 +0300 Subject: [Dovecot] Help regarding getting password policy response In-Reply-To: <4E083276.5050307@deeproot.co.in> References: <4E083276.5050307@deeproot.co.in> Message-ID: <1309220132.10421.968.camel@hurina> On Mon, 2011-06-27 at 13:04 +0530, sarguru wrote: > Hello, > I have enabled ldap password policy in my open ldap server and it locks > out the account after several unsuccessful bind attempts. I am able to > get the password policy response which says "Account locked" by > specifying '-e ppolicy' option in my ldapsearch command. > > I am looking for a way to get similar response when I use dovecot so > that I can specify my clients that their account is locked. I understand > the security risks involved but mine is low security and high usability > requirement. Maybe pam_ldap can report it as "password expired"? Dovecot forwards that info if PAM reports it. Other than that, you'd need to modify Dovecot's LDAP code. From tss at iki.fi Tue Jun 28 03:19:57 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:19:57 +0300 Subject: [Dovecot] Default sendmail_path value In-Reply-To: References: Message-ID: <1309220397.10421.970.camel@hurina> On Sun, 2011-06-26 at 16:43 -0700, Joseph Tam wrote: > It appears the documentation of this parameter is inconsistent with the > documentation: > > > grep -nF /sendmail `gfind src -type f` > src/lib-lda/lda-settings.c:41: .sendmail_path = "/usr/sbin/sendmail", > src/config/all-settings.c:732: .sendmail_path = "/usr/sbin/sendmail", > > (and doc/example-config/conf.d/15-lda.conf is also consistent with > this) This should be correct. > but the documentations states > > http://wiki2.dovecot.org/LDA > > sendmail_path is used to send mails. Note that the default is > /usr/lib/sendmail, which doesn't necessarily work the same as > /usr/sbin/sendmail. > > I don't know which ought to be changed though. It used to be /usr/lib/sendmail, but some people complained that it's obsolete now and /usr/sbin/sendmail should be used, so I changed it in v2.0. I changed the wiki2 now. From tss at iki.fi Tue Jun 28 03:28:15 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:28:15 +0300 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: References: Message-ID: <1309220895.10421.974.camel@hurina> On Sat, 2011-06-25 at 03:58 -0400, imap at tnde.org wrote: > I am running dovecot 2.0.13 on CentOS5, set up with only local system > users, and single instance store set up in a single directory. > > e.g. > mail_attachment_dir = /var/mail/attachments Currently you can't. I was a bit lazy in implementing this code not to preserve permissions. The idea would be anyway that you could make /var/mail/attachments 02770 and e.g. group=mail. Then set mail_access_groups=mail to Dovecot. Now the code should have created new directories under that with the same permissions and the files as 0660, but looks like it doesn't. The code is in src/lib-fs/fs-posix.c if you want to fix it yourself. You could as a workaround simply change all 0600 -> 0660 and 0700 -> 0770 and I guess it would work. From tss at iki.fi Tue Jun 28 03:38:18 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:38:18 +0300 Subject: [Dovecot] Multiple values found for 'user', using value In-Reply-To: <201106230924.39228.komodo@uvt.cz> References: <201106161103.32370.komodo@uvt.cz> <1308764277.10421.916.camel@hurina> <201106230924.39228.komodo@uvt.cz> Message-ID: <1309221498.10421.977.camel@hurina> On Thu, 2011-06-23 at 09:24 +0200, komodo wrote: > > > http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html > > > > > > Is there any option to disable these warnings ? Yes we have multiple UIDs > > > so these warnings bothers me. > > > > LDAP protocol doesn't give guarantees about values being returned in any > > specific order. Does your LDAP server? If you have multiple UIDs, do you > > always want the first one to be used? Why do you have multiple? > > Hi, miltiple UIDs are for historical reason, there was requirement to be able login with username > and username at domain, so there is UID username and username at domain. Does the first "username" UID match a username in /etc/passwd (or NIS/whatever)? This kind of sounds like a misconfiguration. You probably shouldn't be returning the "uid" field at all to Dovecot. From tss at iki.fi Tue Jun 28 03:39:54 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:39:54 +0300 Subject: [Dovecot] Multiple values found for 'user', using value In-Reply-To: <1309221498.10421.977.camel@hurina> References: <201106161103.32370.komodo@uvt.cz> <1308764277.10421.916.camel@hurina> <201106230924.39228.komodo@uvt.cz> <1309221498.10421.977.camel@hurina> Message-ID: <1309221594.10421.979.camel@hurina> On Tue, 2011-06-28 at 03:38 +0300, Timo Sirainen wrote: > On Thu, 2011-06-23 at 09:24 +0200, komodo wrote: > > > > http://www.dovecot.org/list/dovecot-cvs/2011-February/018588.html > > > > > > > > Is there any option to disable these warnings ? Yes we have multiple UIDs > > > > so these warnings bothers me. > > > > > > LDAP protocol doesn't give guarantees about values being returned in any > > > specific order. Does your LDAP server? If you have multiple UIDs, do you > > > always want the first one to be used? Why do you have multiple? > > > > Hi, miltiple UIDs are for historical reason, there was requirement to be able login with username > > and username at domain, so there is UID username and username at domain. > > Does the first "username" UID match a username in /etc/passwd (or > NIS/whatever)? This kind of sounds like a misconfiguration. You probably > shouldn't be returning the "uid" field at all to Dovecot. Oops, I read the subject only after sending. Yeah, I guess that's intentional then. Still, an alternative might be not to return the uid=user field? Unless there's some kind of a username translation. From tss at iki.fi Tue Jun 28 03:41:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:41:08 +0300 Subject: [Dovecot] %d empty string In-Reply-To: References: Message-ID: <1309221668.10421.980.camel@hurina> On Wed, 2011-06-22 at 23:03 -0400, Ryan Dotson wrote: > I am trying to upgrade from dovecot 1.x to Dovecot 2.0.13 on Fedora. My > problem is the mail_location setting seems to ignore the %d variable. My my > location is as follows: > > mail_location = maildir:/var/spool/virtual_mail/%d/%u/Maildir > > However, when trying to log in the maillog says it can't > find /var/spool/virtual_mail//*myusername*/Maildir/cur. As you can see it > just uses an empty string for the %d variable. Can anyone help? http://wiki2.dovecot.org/DomainLost From tss at iki.fi Tue Jun 28 03:43:08 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:43:08 +0300 Subject: [Dovecot] Thunderbird or Dovecot causing duplicates In-Reply-To: References: Message-ID: <1309221788.10421.981.camel@hurina> On Thu, 2011-06-23 at 11:39 +1000, Tim wrote: > Basically, I read an email (so it gets marked as read) and then very > quickly I mark is as unread, (i.e. I realised I want to leave that > email for later) which causes a duplicate email to be created. .. > Jun 23 09:23:24 tahn dovecot: IMAP(tim): Fixed a duplicate: > /home/tim/Maildir/cur/1308696708.M863172P16126.tahn,S=3761,W=3888:2,S > -> 1308792204.M626641P1992.tahn Yeah, Dovecot creates a duplicate. Are you using some weird filesystem that doesn't support atomic renames? From tss at iki.fi Tue Jun 28 03:48:43 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:48:43 +0300 Subject: [Dovecot] User doesn't have home dir set, disabling duplicate database In-Reply-To: <4E01A6DB.3090807@atpss.net> References: <4E01A6DB.3090807@atpss.net> Message-ID: <1309222123.10421.983.camel@hurina> On Wed, 2011-06-22 at 10:24 +0200, Claudio Prono wrote: > Jun 22 10:18:07 lda(claudio at domain.com): Error: User claudio at domain.com > doesn't have home dir set, disabling duplicate database > > But the mail arrives correctly, and no problems at all. > > I have googled a little about, and i have found a post it says to put > mail_home and not home into the plugin part of the configuration, but > this is not my problem.. The old kludge was to use plugin { home }. The newer better way is to set mail_home setting (outside plugin {}). Home doesn't have to be different from mail dir, although it would be better. http://wiki2.dovecot.org/VirtualUsers/Home From japi76 at gmail.com Tue Jun 28 03:51:52 2011 From: japi76 at gmail.com (Javier) Date: Mon, 27 Jun 2011 21:51:52 -0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: <1309218122.10421.947.camel@hurina> References: <1309218122.10421.947.camel@hurina> Message-ID: I'll be planning on upgrade soon then, if that cures the problem (ie: i will use submission_host instead of sendmail binary) Another (maybe) unrelated question. It is possible to add extra parameters so the connection made to submission_host uses user's credentials ? (for authenticated smtp) Or I'm asking something ridiculous? Thanks Timo, Thanks list. Javier On Mon, Jun 27, 2011 at 8:42 PM, Timo Sirainen wrote: > On Fri, 2011-06-24 at 18:23 +0300, Timo Sirainen wrote: >> On 16.6.2011, at 19.24, Javier wrote: >> >> > Jun 16 13:18:27 mailstore5 dovecot: lmtp(8460, xxxx at xxxxxxx.com): >> > Error: waitpid() failed: No child processes >> >> This is the main problem. It just shouldn't be happening. You could try stracing an lmtp process while it sends a mail, and see if there are two waitpid() calls or of the first one is giving this error. If there is only this one waitpid() call this would seem like a kernel problem. > > I think this fixes the bug: > http://hg.dovecot.org/dovecot-2.0/rev/748b0fd169d1 > > Of course, since you can't upgrade that's not very helpful.. You could > try to figure out why your sendmail binary is forking and not make it do > that.. > > > From tss at iki.fi Tue Jun 28 03:59:47 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 03:59:47 +0300 Subject: [Dovecot] Panic: doveadm quota get -A In-Reply-To: <4E01A19A.4070808@enas.net> References: <4E01A19A.4070808@enas.net> Message-ID: <1309222787.10421.984.camel@hurina> On Wed, 2011-06-22 at 10:02 +0200, Urban Loesch wrote: > # doveadm quota get -A > doveadm: Panic: file doveadm-print-table.c: line 58 (doveadm_calc_header_length): assertion failed: ((value_count % hdr_count) == 0) Fixed: http://hg.dovecot.org/dovecot-2.0/rev/02d97fb66047 From tss at iki.fi Tue Jun 28 04:00:33 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:00:33 +0300 Subject: [Dovecot] problem with dovecot and sieve In-Reply-To: References: <1309218122.10421.947.camel@hurina> Message-ID: <1309222833.10421.985.camel@hurina> On Mon, 2011-06-27 at 21:51 -0300, Javier wrote: > I'll be planning on upgrade soon then, if that cures the problem (ie: > i will use submission_host instead of sendmail binary) > > Another (maybe) unrelated question. > It is possible to add extra parameters so the connection made to > submission_host uses user's credentials ? (for authenticated smtp) > Or I'm asking something ridiculous? No possibility to do SMTP AUTH. Way too much trouble, at least for now. From tss at iki.fi Tue Jun 28 04:01:41 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:01:41 +0300 Subject: [Dovecot] UIDL and message migration In-Reply-To: <4E007DDC.4020807@fct.unl.pt> References: <4E007DDC.4020807@fct.unl.pt> Message-ID: <1309222901.10421.986.camel@hurina> On Tue, 2011-06-21 at 12:17 +0100, Hugo Monteiro wrote: > Hello, > > I'm in the process of migrating accounts between two dovecot servers. An > old server running ancient 1.0.15 and a new server running 1.2.15. > Account migration is going to be gradual and so i would like to use > imapsync to move messages and subscriptions from one server to the > other. The only problem so far is with POP users. After doing an account > migration with imapsync, and although both servers share the same > pop3_uidl_format = %08Xu%08Xv, the client downloads every message that > was already on the server. %u means IMAP UID. imapsync can't preserve those. Use either rsync on the filesystem directly or v2.0's dsync. From tss at iki.fi Tue Jun 28 04:03:56 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:03:56 +0300 Subject: [Dovecot] Invalid cross-device link while trying to delete folder - Dovecot 2.0.7 In-Reply-To: <4DFF4CFD.7060300@lncsa.com> References: <4DFF4CFD.7060300@lncsa.com> Message-ID: <1309223036.10421.988.camel@hurina> On Mon, 2011-06-20 at 15:37 +0200, Laurent CARON wrote: > When trying to trash some folder from the second namespace, I get the > following error in the logs: > > > imap(USER): Error: rename(/data/mail2/USER/Maildir/.Archives.20112, > /home/USER/Maildir/.Trash.20112) failed: Invalid cross-device link It's Thunderbird that's trying to rename the mailbox to under Trash instead of actually deleting it. And since Dovecot's only choice to actually handle that would be to copy all the mails between the storages, it instead simply fails. From noel.butler at ausics.net Tue Jun 28 04:06:07 2011 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 28 Jun 2011 11:06:07 +1000 Subject: [Dovecot] Virtual Servers In-Reply-To: References: Message-ID: <1309223167.9751.34.camel@tardis> On Mon, 2011-06-27 at 11:40 -0700, Daniel L. Miller wrote: > Maybe a little off-topic - but I hope not too much. > > Looking for some insight on setting up Dovecot under a virtual server. > In particular, I use VirtualBox - and at the moment, Ubuntu Linux. > I hope this is a lightly used server and does not do any real level of mail traffic else you'll soon regret running in any VM :) > format. I wish to continue storing the mail on "raw" disks - not place > the mail inside a virtual disk. Accordingly, the VM needs to reach the At least you have very good sense not to do that > > means NFS. My initial testing shows NFS results in a dramatically > reduced performance for Dovecot. Given that this NFS access is going to Hrmmm, something amiss somewhere then, I'd put it down to the VM, many people on this list use NFS and have no problems. > there any NFS or Dovecot tweaks I should implement? Is there an Though you have not mentioned what version you run, on 1.2.x using: mmap_disable = yes mail_nfs_storage = yes mail_nfs_index = yes ... is a must... Also, what else runs on your server, how many VM's and what types? The only VM I use, is personal and not work related, and then its only for my personal domain secondary MX and secondary geo located (in the U.S) DNS, it's a Xen box, but it does little work since my primaries always respond, I set it up to NFS access my mail here once playing around (seeing how much a difference being 10K Km's away makes), and the only latency I got in accessing mail, was normal and as to be expected with a 160ms each way trip, to be honest, it was faster to pop my mail that way, than using my mobile directly to my main server given mobile carriers always over subscribe. Cheers -------------- next part -------------- A non-text attachment was scrubbed... Name: face-smile.png Type: image/png Size: 873 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From tss at iki.fi Tue Jun 28 04:07:16 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:07:16 +0300 Subject: [Dovecot] Maildir parent directory permissions incorrect for new mailbox In-Reply-To: <4DFB826A.9080903@helenmarks.co.uk> References: <4DFB826A.9080903@helenmarks.co.uk> Message-ID: <1309223236.10421.989.camel@hurina> On Fri, 2011-06-17 at 17:35 +0100, Dominic Marks wrote: > My issue is with the automatic creation of parent directories above new > maildirs. It seems to be that they're being set with incorrect (or > unhelpful) permissions, applying the permissions of the mailbox down the > path towards the mailbox root, as opposed to taking the permissions of > the mailbox root up towards the mailbox. > > Our mail is stored under the scheme: > > location = maildir:/var/dovecot/mail/%d/%n:INDEX=/var/dovecot/index/%d/%n See if chmod g+s /var/dovecot/mail solves your troubles. The same for index dir. From tss at iki.fi Tue Jun 28 04:17:17 2011 From: tss at iki.fi (Timo Sirainen) Date: Tue, 28 Jun 2011 04:17:17 +0300 Subject: [Dovecot] Maildir parent directory permissions incorrect for new mailbox In-Reply-To: <1309223236.10421.989.camel@hurina> References: <4DFB826A.9080903@helenmarks.co.uk> <1309223236.10421.989.camel@hurina> Message-ID: <1309223837.10421.991.camel@hurina> On Tue, 2011-06-28 at 04:07 +0300, Timo Sirainen wrote: > On Fri, 2011-06-17 at 17:35 +0100, Dominic Marks wrote: > > > My issue is with the automatic creation of parent directories above new > > maildirs. It seems to be that they're being set with incorrect (or > > unhelpful) permissions, applying the permissions of the mailbox down the > > path towards the mailbox root, as opposed to taking the permissions of > > the mailbox root up towards the mailbox. > > > > Our mail is stored under the scheme: > > > > location = maildir:/var/dovecot/mail/%d/%n:INDEX=/var/dovecot/index/%d/%n > > See if chmod g+s /var/dovecot/mail solves your troubles. The same for > index dir. I added explanation to http://wiki2.dovecot.org/SharedMailboxes/Permissions#Permissions_to_new_user_directories From jonnyt at abpni.co.uk Tue Jun 28 04:21:00 2011 From: jonnyt at abpni.co.uk (Jonathan Tripathy) Date: Tue, 28 Jun 2011 02:21:00 +0100 Subject: [Dovecot] Virtual Servers In-Reply-To: <1309223167.9751.34.camel@tardis> References: <1309223167.9751.34.camel@tardis> Message-ID: <4E092C7C.4090507@abpni.co.uk> > > I hope this is a lightly used server and does not do any real level of > mail traffic else you'll soon regret running in any VM :) > > Don't mean to start a flame war, but your statement above is just simply inaccurate. The main difference between a virtual server and a physical server is that resources are contended with other VMs in the virtual server suitation. So for example, if Dovecot required a lot of resources, and there were another 1000 idle VMs on the same physical box as the Dovecot VM, Dovecot would run fine. What is true for any service (not just Dovecot) is that you need to get the balance right depending on your server resources requirements and sharing the physical resources with other VMs in such a way that you don't starve some critical services. So please stop with the FUD about virtualisation :) BTW, I'm assuming a proper virtualisation solution such as Xen Paravirtualisation. From jtam.home at gmail.com Tue Jun 28 04:21:26 2011 From: jtam.home at gmail.com (Joseph Tam) Date: Mon, 27 Jun 2011 18:21:26 -0700 (PDT) Subject: [Dovecot] Default sendmail_path value In-Reply-To: References: Message-ID: Timo Sirainen wrote: > On Sun, 2011-06-26 at 16:43 -0700, Joseph Tam wrote: >> ... >> but the documentations states >> >> http://wiki2.dovecot.org/LDA >> >> sendmail_path is used to send mails. Note that the default is >> /usr/lib/sendmail, which doesn't necessarily work the same as >> /usr/sbin/sendmail. > > It used to be /usr/lib/sendmail, but some people complained that it's > obsolete now and /usr/sbin/sendmail should be used, so I changed it in > v2.0. > > I changed the wiki2 now. Thanks. Solaris still uses /usr/lib/sendmail which is a pain since /usr/lib is rarely in shell search paths. Nothing a few symlinks can't fix. Joseph Tam From noel.butler at ausics.net Tue Jun 28 04:35:31 2011 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 28 Jun 2011 11:35:31 +1000 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E092C7C.4090507@abpni.co.uk> References: <1309223167.9751.34.camel@tardis> <4E092C7C.4090507@abpni.co.uk> Message-ID: <1309224931.9751.56.camel@tardis> On Tue, 2011-06-28 at 02:21 +0100, Jonathan Tripathy wrote: > > > > I hope this is a lightly used server and does not do any real level of > > mail traffic else you'll soon regret running in any VM :) > > > > > Don't mean to start a flame war, but your statement above is just simply > inaccurate. The main difference between a virtual server and a physical I can show different :) but I wont be baited on this list, so stand by for a private mail in about 15 minutes -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From jonnyt at abpni.co.uk Tue Jun 28 04:54:37 2011 From: jonnyt at abpni.co.uk (Jonathan Tripathy) Date: Tue, 28 Jun 2011 02:54:37 +0100 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E092C7C.4090507@abpni.co.uk> References: <1309223167.9751.34.camel@tardis> <4E092C7C.4090507@abpni.co.uk> Message-ID: <4E09345D.1060906@abpni.co.uk> On 28/06/2011 02:21, Jonathan Tripathy wrote: > >> >> I hope this is a lightly used server and does not do any real level of >> mail traffic else you'll soon regret running in any VM :) >> >> > Don't mean to start a flame war, but your statement above is just > simply inaccurate. The main difference between a virtual server and a > physical server is that resources are contended with other VMs in the > virtual server suitation. So for example, if Dovecot required a lot of > resources, and there were another 1000 idle VMs on the same physical > box as the Dovecot VM, Dovecot would run fine. What is true for any > service (not just Dovecot) is that you need to get the balance right > depending on your server resources requirements and sharing the > physical resources with other VMs in such a way that you don't starve > some critical services. > > So please stop with the FUD about virtualisation :) > > BTW, I'm assuming a proper virtualisation solution such as Xen > Paravirtualisation. I should also mention that I'm refering to VMs using direct block storage such as LVM, not VMs running off image files. Running anything off an image file is indeed going to slow your system down compared to a physical server. A single VM system using file based storage is not going to beat a physical server. A single VM system running on direct block storage is going to be equal to a physical server in most respects. I'm not even sure if VMWare support that to be honest, but Xen sure does. :) IMO anyway.. Noel: I tried to reply to your email off list, but it bounced :( From dmiller at amfes.com Tue Jun 28 07:32:09 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 21:32:09 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <1309223167.9751.34.camel@tardis> References: <4E08CE9D.7010307@amfes.com> <1309223167.9751.34.camel@tardis> Message-ID: On 6/27/2011 6:06 PM, Noel Butler wrote: > I hope this is a lightly used server and does not do any real level of > mail traffic else you'll soon regret running in any VM :) Just all the mailing lists I subscribe to :) >> >> means NFS. My initial testing shows NFS results in a dramatically >> reduced performance for Dovecot. Given that this NFS access is going to > > Hrmmm, something amiss somewhere then, I'd put it down to the VM, many > people on this list use NFS > and have no problems. > Well - the wiki tells me, "Both the mmap_disable and indexing to NFS will result in a notable performance hit." > Though you have not mentioned what version you run, on 1.2.x using: > > mmap_disable = yes > mail_nfs_storage = yes > mail_nfs_index = yes Why do people insist on specifics :) ? At the moment, 2.0.13. Something still a bit unclear - cue Timo interjection here. The parameters listed for nfs installations (mmap_disable, doctlock_use_excl, mail_nfs_storage, mail_nfs_index) - are they necessary for data integrity, and/or do they compensate for NFS latency and improve performance? My confusion stems from the unusual? condition where the mail store is NFS based - but is otherwise dedicated to the single Dovecot instance, so simultaneous writes & locking *shouldn't* be a concern. Particularly as I'm using mdbox, local index storage seems inappropriate (as I don't want any critical data stored within a virtual image). -- Daniel From dmiller at amfes.com Tue Jun 28 07:35:42 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 21:35:42 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E08DE81.9020705@turmel.org> References: <4E08CE9D.7010307@amfes.com> <4E08DE81.9020705@turmel.org> Message-ID: On 6/27/2011 12:48 PM, Phil Turmel wrote: > In the storage configuration of your VM, where you select the type of interface to emulate, there's a checkbox for using the Host's I/O cache. > Does VirtualBox uses that to "trick" the guest kernel into not consuming memory for caching? > > If you can set aside entire block devices for use in the VM, you can create a vmdk that performs a 1:1 mapping from the virtualized disk to the given block device. The block device will be partitionable inside the VM, even if it is a partition itself. If you need to, you can access those partitions from the host with the "partx" or "kpartx" utilities (with the VM shut down, of course). > > The command you want is "VBoxManage internalcommands createrawvmdk" I've done raw access before - but in this case I'm using a single XFS partition on a RAID10 that has multiple directories for various data needs - one of which is the mail store. -- Daniel From dmiller at amfes.com Tue Jun 28 07:38:57 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 21:38:57 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E08E201.6020909@wildgooses.com> References: <4E08CE9D.7010307@amfes.com> <4E08E201.6020909@wildgooses.com> Message-ID: On 6/27/2011 1:03 PM, Ed W wrote: > On 27/06/2011 19:40, Daniel L. Miller wrote: >> Maybe a little off-topic - but I hope not too much. >> >> Looking for some insight on setting up Dovecot under a virtual server. >> In particular, I use VirtualBox - and at the moment, Ubuntu Linux. > Although not an option you are currently using, I'm a huge fan of > linux-vservers for linux on linux virtualisation. It doesn't offer > "full" virtualisation, but it's very secure and extremely lightweight. > If you also hardlink all the common files then you will even reduce your > RSS sizes across virtual machines due to the kernel using shared static > segments > > Completely useless response to your question, but just a quick thumbs up > on a completely different way to slice your onion... I'm going to need to research this and experiment a bit... -- Daniel From dmiller at amfes.com Tue Jun 28 07:42:06 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Mon, 27 Jun 2011 21:42:06 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E092C7C.4090507@abpni.co.uk> References: <4E08CE9D.7010307@amfes.com> <1309223167.9751.34.camel@tardis> <4E092C7C.4090507@abpni.co.uk> Message-ID: On 6/27/2011 6:21 PM, Jonathan Tripathy wrote: > > BTW, I'm assuming a proper virtualisation solution such as Xen > Paravirtualisation. "Proper"? You don't consider VirtualBox as such? In this instance, I'm using VirtualBox to run a few Windows guests - so Xen isn't an option for me. And as far as I know, QEMU/KVM cannot run concurrently with VirtualBox. I have tried getting Windows to run under QEMU-KVM - for me at least, it was a miserable time compared with VirtualBox. -- Daniel From noel.butler at ausics.net Tue Jun 28 07:47:41 2011 From: noel.butler at ausics.net (Noel Butler) Date: Tue, 28 Jun 2011 14:47:41 +1000 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E09345D.1060906@abpni.co.uk> References: <1309223167.9751.34.camel@tardis> <4E092C7C.4090507@abpni.co.uk> <4E09345D.1060906@abpni.co.uk> Message-ID: <1309236461.5663.10.camel@tardis> On Tue, 2011-06-28 at 02:54 +0100, Jonathan Tripathy wrote: > > I should also mention that I'm refering to VMs using direct block > storage such as LVM, not VMs running off image files. Running anything > off an image file is indeed going to slow your system down compared to a > physical server. > > A single VM system using file based storage is not going to beat a > physical server. A single VM system running on direct block storage is > going to be equal to a physical server in most respects. I'm not even > sure if VMWare support that to be honest, but Xen sure does. :) > Not sure how they setup the one I was telling you about, that guys off with the flu, but I'll email him > IMO anyway.. > > Noel: I tried to reply to your email off list, but it bounced :( Looks like milter caught you on generic DNS Cheers -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From bind at enas.net Tue Jun 28 09:33:48 2011 From: bind at enas.net (Urban Loesch) Date: Tue, 28 Jun 2011 08:33:48 +0200 Subject: [Dovecot] Panic: doveadm quota get -A In-Reply-To: <1309222787.10421.984.camel@hurina> References: <4E01A19A.4070808@enas.net> <1309222787.10421.984.camel@hurina> Message-ID: <4E0975CC.8080008@enas.net> Many thanks, works. Regards Urban Timo Sirainen wrote: > On Wed, 2011-06-22 at 10:02 +0200, Urban Loesch wrote: > >> # doveadm quota get -A >> doveadm: Panic: file doveadm-print-table.c: line 58 (doveadm_calc_header_length): assertion failed: ((value_count % hdr_count) == 0) > > Fixed: http://hg.dovecot.org/dovecot-2.0/rev/02d97fb66047 > > > From mnavaki at gmail.com Tue Jun 28 10:33:09 2011 From: mnavaki at gmail.com (Meisam Navaki) Date: Tue, 28 Jun 2011 12:03:09 +0430 Subject: [Dovecot] Hi Message-ID: Hi all, I'm reading dovecot source codes(2.0.13),and I need to know how dovecot communicate with sasl? I traced the source code from cmd_login function,and found out something about sasl_callback. but i never found where this function called and also I couldn't understand how sasl inform the dovecot from authentication result. I'll be thankful if someone could help me out. From mnavaki at gmail.com Tue Jun 28 10:37:17 2011 From: mnavaki at gmail.com (Meisam Navaki) Date: Tue, 28 Jun 2011 12:07:17 +0430 Subject: [Dovecot] Dovecot communication with sasl in dovecot source code Message-ID: Hi all, I'm reading dovecot source codes(2.0.13),and I need to know how dovecot communicate with sasl? I traced the source code from cmd_login function,and found out something about sasl_callback. but i never found where this function called and also I couldn't understand how sasl inform the dovecot from authentication result. I'll be thankful if someone could help me out. From apm at one.com Tue Jun 28 11:23:30 2011 From: apm at one.com (Peter Mogensen) Date: Tue, 28 Jun 2011 10:23:30 +0200 Subject: [Dovecot] LMTP returncode 450? In-Reply-To: <1309219103.10421.955.camel@hurina> References: <4E087DDF.2020703@one.com> <1309219103.10421.955.camel@hurina> Message-ID: <4E098F82.4020208@one.com> On 2011-06-28 01:58, Timo Sirainen wrote: > On Mon, 2011-06-27 at 14:55 +0200, Peter Mogensen wrote: > >> How do I get the LMTP-server to know which mailbox's are locally hosted >> and return SMTP code 450 if delivery is attempted to a non local user? > > You can't, at least that way. Why are you trying to deliver mails to a > non-local mailbox? You could anyway use Dovecot as LMTP proxy to the > remote LMTP server and it would deliver the mail there without an error. I was wondering if I could skip running a Postfix or other MTA along with dovecot and just let mail be delivered directly to the final host by LMTP. It's no problem to have Postfix do a virtual_mailbox_domains lookup before handing it to local LMTP, but it would be simpler with only Dovecot. >> I can see that a lookup in the userdb is done, but now matter what I >> return (1/111) from my checkpassword script I just get: > > Set lmtp_proxy=yes and have passdb lookup return proxy=y and > host=1.2.3.4. But how does the LMTP proxy deal with temporary errors? It has no queue like the SMTP-server ? /Peter From cinzia.innocenzi at hp.com Tue Jun 28 11:38:13 2011 From: cinzia.innocenzi at hp.com (Innocenzi, Cinzia) Date: Tue, 28 Jun 2011 08:38:13 +0000 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <1309219439.10421.959.camel@hurina> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <1309219439.10421.959.camel@hurina> Message-ID: <0255596D4DD80F4F80FBA92242C83A65B44E26FD4A@GVW1102EXC.americas.hpqcorp.net> Hello Timo, so far I've seen this happening when proxying a mail for one recipient; I've never seen this happening for multiple recipients. The other thing I've noticed is that if I reload dovecot, the mail usually gets delivered. Once, it remained stuck in the queue, but after a few hours, when I checked postfix's queue again, it got delivered. Let me know if you need further information. Regards, CINZIA INNOCENZI Technical Consulting HP Enterprise Services Telephone +39 06.6542.5758 Email cinzia.innocenzi at hp.com ?? Via Achille Campanile, 85 / Rome, Italy? 00143 -----Original Message----- From: Timo Sirainen [mailto:tss at iki.fi] Sent: marted? 28 giugno 2011 2.04 To: Innocenzi, Cinzia Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP On Wed, 2011-06-22 at 10:31 +0000, Innocenzi, Cinzia wrote: > Hello, > > we have dovecot 2.0.13 installed in our RHEL5 servers. We use dovecot > as a lmtp proxy on the front end mail relays and dovecot for back end > lmtp/pop/imap. All our servers have RHEL5.6 64-bit and dovecot 2.0.13 > installed, and the back end has also an ext3 mbox file-system mounted. > > Sometimes we have mails that get stuck on our postfix queue with the > following error: Remote server not answering (timeout in DATA input) > (in reply to end of DATA command) .. > It doesn't happen for every single mail, it's random. My guess is there's a bug somewhere in the LMTP proxy code. It's a bit annoyingly complex code.. Do you see this happening when proxying only a single mail (one RCPT TO per DATA, not multiple)? And I would guess that when attempting to deliver the same mail again it works fine (at least in a few tries)? From f.bonnet at esiee.fr Tue Jun 28 11:49:39 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Tue, 28 Jun 2011 10:49:39 +0200 Subject: [Dovecot] Denying user won't work as expected In-Reply-To: <1309219897.10421.966.camel@hurina> References: <4E08365B.7060909@esiee.fr> <1309219897.10421.966.camel@hurina> Message-ID: <4E0995A3.5050500@esiee.fr> On 06/28/2011 02:11 AM, Timo Sirainen wrote: > On Mon, 2011-06-27 at 09:50 +0200, Frank Bonnet wrote: > >> passdb { >> driver = ldap >> deny = yes >> >> # File contains a list of usernames, one per line >> args = /usr/local/etc/dovecot/deny-users >> } >> >> I have tested writting one user (me) in the >> /usr/local/etc/dovecot/deny-users > You have driver=ldap there, which means that LDAP tries to read the > deny-users file as its configuration file. > >> and the result is the login is denied for ALL users ... > I'm surprised that it even starts up.. > > If replacing driver=ldap with driver=passwd-file doesn't help, show your > actual dovecot -n output. > > If I do that the denying does not work , I'we written my login in /usr/local/etc/dovecot/deny-users and I am still able to log in ( after restarting dovecot of course ) see attached the dovecot -n output Thanks -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: dvct.txt URL: From jim.hague at acm.org Tue Jun 28 12:11:18 2011 From: jim.hague at acm.org (Jim Hague) Date: Tue, 28 Jun 2011 10:11:18 +0100 Subject: [Dovecot] ACLs: Group ACL adds empty ACL for user of same name, why? In-Reply-To: <1309218902.10421.952.camel@hurina> References: <201106271440.42658.jim.hague@acm.org> <1309218902.10421.952.camel@hurina> Message-ID: <201106281011.19003.jim.hague@acm.org> On Tuesday 28 Jun 2011 00:55:02 Timo Sirainen wrote: > On Mon, 2011-06-27 at 14:40 +0100, Jim Hague wrote: > > If I set an ACL for a group 'developers' [...] > > The dovecot-acl file for INBOX.Trash then contains a group setting for > > the group, and a user setting for a user of the same name, giving it no > > permissions. > > Looks like a bug. I see it's fixed in v2.0 already. You can't get it > fixed to Debian stable .deb anyway, so I don't think there's much point > in trying to backport the fix. Thanks very much. I was worried that there was something subtle I'd missed; I was hoping it would turn out to be a Plain Old Bug. You're right about Squeeze. I'll start looking at 2.0 and backports. -- Jim Hague - jim.hague at acm.org Never trust a computer you can't lift. From bill+dovecot at blunn.org Tue Jun 28 13:54:45 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Tue, 28 Jun 2011 11:54:45 +0100 Subject: [Dovecot] Problem accessing Dovecot mailing lists via IMAP Message-ID: <4E09B2F5.800@blunn.org> I recently tried to look at the Dovecot mailing lists through an already-configured IMAP profile, which had worked fine in the past. But it failed saying that the authentication method was not supported. http://www.dovecot.org/mailinglists.html says: "You can get access to the IMAP archives by using *dovecot.org* as the hostname, *anonymous* as the username and an empty password. It's also possible to use ANONYMOUS authentication mechanism if your client supports it (few do)." I noticed that my e-mail client was configured to use the server "imap.dovecot.org", so I changed it to "dovecot.org". But it still complains that the authentication method is not supported. I am using Thunderbird 3.1 over Windows 7 64-bit. Thunderbird was configured for "Password, Transmitted insecurely" (and this option was not working). I have tried the other authentication options available in Thunderbird. "Encrypted password": Does not work; same problem "Kerberos / GSSAPI": Does not work; same problem "NTLM": Does not work; same problem Any ideas? Bill From maria_arrea at gmx.com Tue Jun 28 14:01:09 2011 From: maria_arrea at gmx.com (Maria Arrea) Date: Tue, 28 Jun 2011 11:01:09 +0000 Subject: [Dovecot] Question about "Storage keeps breaking" in logs Message-ID: <20110628110109.75860@gmx.com> This dovecot box (RHEL 5.6 x64, dovecot 2.0.13, ext4) is a VM over vmware vsphere. The remote SAN disks are presented via iSCSI to the ESX hosts, and the ESX host show them as "local storage" /dev/sdX We have several VM sharing that datastore, no I/O contention detected. I will try with imaptest but this a production enviroment, I will take a couple of weeks to get a "mainteneance window" for this. Any other idea about this? Maybe this problem is load-related? Regards Maria ----- Original Message ----- From: Timo Sirainen Sent: 06/28/11 01:33 AM To: Maria Arrea Subject: Re: [Dovecot] Question about "Storage keeps breaking" in logs On Wed, 2011-06-22 at 19:32 +0000, Maria Arrea wrote: > Jun 6 17:03:23 buzon dovecot: imap(juanan): Warning: mdbox /buzones/18/66/juanan/storage: rebuilding indexes Problem 1: It doesn't log the reason for this rebuild. I can find only one place in code why that could happen, fixed: http://hg.dovecot.org/dovecot-2.0/rev/028b953e7040 > Jun 6 17:03:26 buzon dovecot: imap(juanan): Error: mdbox /buzones/18/66/juanan/mailboxes/P7.Bielorrusia/cd-eslpod-enviado/dbox-Mails: Storage keeps breaking Problem 2: It apparently can't fix that error. But in my tests it gets fixed fine.. > Jun 6 17:03:27 buzon dovecot: imap(juanan): Error: Recent flags state corrupted for mailbox Deleted Messages Probably related to the index rebuild. So this is a local disk with ext4 filesystem, nothing special? It shouldn't be breaking.. How often do these happen? Can you reproduce these by running imaptest against a test account? http://imapwiki.org/ImapTest From xchris89x at googlemail.com Tue Jun 28 14:06:28 2011 From: xchris89x at googlemail.com (Christopher Stolzenberg) Date: Tue, 28 Jun 2011 13:06:28 +0200 Subject: [Dovecot] hide sieve folder from imap clients In-Reply-To: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> References: <3EDB1237-300B-4C7F-A2AA-67989179A1C5@leuxner.net> Message-ID: 2011/6/27 Thomas Leuxner : >> new config (hide sieve folder) >> >> mail_home = /var/vmail/%d/%n >> maildir_stat_dirs = yes >> >> plugin { >> sieve_dir = /var/vmail/%d/%n/sieve/ >> sieve = /var/vmail/%d/%n/.dovecot.sieve >> } > > All the examples look a bit overcomplicated. Why not go with the "defaults"? > > ?mail_location = maildir:~/maildir > ?sieve = ~/.dovecot.sieve > > However this relies on home dirs being returned from the user lookups which has not been revealed in the OP's partial config post. Okay, here is my new config: mail_home = /var/vmail/%d/%n/ mail_location = maildir:/var/vmail/%d/%n/maildir plugin { sieve_dir = /var/vmail/%d/%n/.sieve sieve = /var/vmail/%d/%n/.dovecot.sieve } How should I configure mysql? user_query = SELECT CONCAT('maildir:/var/vmail/',maildir) AS mail, 6000 AS uid, 6000 AS gid FROM mailbox WHERE username = '%u' AND active = '1' or user_query = SELECT maildir, 6000 AS uid, 6000 AS gid FROM mailbox WHERE username = '%u' AND active = '1' mysql query return: maildir: domain.com/user/ Thank you for your help. -- Christopher From CMarcus at Media-Brokers.com Tue Jun 28 14:14:48 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 28 Jun 2011 07:14:48 -0400 Subject: [Dovecot] Virtual Servers In-Reply-To: <1309223167.9751.34.camel@tardis> References: <1309223167.9751.34.camel@tardis> Message-ID: <4E09B7A8.6040509@Media-Brokers.com> On 2011-06-27 9:06 PM, Noel Butler wrote: > On 2011-06-27 9:21 PM, Jonathan Tripathy wrote: >> I hope this is a lightly used server and does not do any real level >> of mail traffic else you'll soon regret running in any VM :) > Don't mean to start a flame war, but your statement above is just > simply inaccurate. Please don't feed the troll... > Noel: I tried to reply to your email off list, but it bounced :( That's what you get for replying to trolls... Noel uses brain-dead anti-spam measures. I plonked him long ago... -- Best regards, Charles From vertigo69 at mail.ru Tue Jun 28 14:20:41 2011 From: vertigo69 at mail.ru (=?utf-8?Q?=D0=92=D0=B0=D1=81=D0=B8=D0=BB=D0=B8=D0=B9_=D0=AF=D0=BA=D0=BE=D0=B2=D0=BB=D0=B5=D0=B2?=) Date: Tue, 28 Jun 2011 15:20:41 +0400 Subject: [Dovecot] Sendmail + dovecot-lda + LDAP Message-ID: Hi, I experince some problems with setting up Sendmail with the LDAP database for virtual mail accounts. Why i'm not writing to the LDAP mailing list? I believe, that the reason of my problem is in configuring dovecot-deliver. What i have: ?- FreeBSD 8.2-RELEASE? ?- sendmail (Version 8.14.4 with LDAP support installed from ports)? ?- Dovecot LDA + dovecot (as pop3/imap) - 1.2.16? ?- Cyrus Sasl (authdaemon for authentification) 1. Following http://wiki.dovecot.org/LDA/Sendmail i've set up deliver as LDA. Everything worked fine. 2. Following http://wiki.dovecot.org/HowTo/DovecotOpenLdap i've set up Dovecot to work with tha ldap. Now i can authorize through the client or web interface and get to my maildir.? 3. Now, i want my sendmail to accept mail for the account in LDAP database. sendmail.mc: ++++++++++++++++++++++ FEATURE(`local_procmail', `/usr/local/libexec/dovecot/deliver',`/usr/local/libexec/dovecot/deliver -d $u') MODIFY_MAILER_FLAGS(`LOCAL', `-f') ...................................... define(`confLDAP_DEFAULT_SPEC', `-h "localhost" -b "dc=mydomain,dc=ru" -d "cn=dovecot,ou=accounts,dc=mydomain,dc=ru" -MLDAP_AUTH_SIMPLE -P /etc/mail/ldap_pass')dnl LDAPROUTE_DOMAIN(`mydomain.ru')dnl FEATURE(`ldap_routing', `null -T', `ldap -1 -T -v mail -k (&(objectclass=posixaccount)(mail=%0))', `passthru')dnl ...................................... MAILER(procmail) ++++++++++++++++++++++ After re-making the sendmail: ++++++++++++++++++++++ [root at test2 /etc/mail]# sendmail -bv -d60.1 test_user at mydomain.ru map_lookup(dequote, test) => NOT FOUND (0) map_lookup(host, mydomain.ru) => mydomain.ru. (0) map_lookup(dequote, test_user) => NOT FOUND (0) map_lookup(ldapmra, test_user at mydomain.ru) => test_user at mydomain.ru (0) map_lookup(ldapmh, test_user at mydomain.ru) => NOT FOUND (68) map_lookup(host, mydomain.ru) => mydomain.ru. (0) map_lookup(dequote, test_user) => NOT FOUND (0) map_lookup(virtuser, test_user at mydomain.ru) => NOT FOUND (0) map_lookup(virtuser, @mydomain.ru) => NOT FOUND (0) test_user at mydomain.ru... User unknown ++++++++++++++++++++++ It's the problem of the local delivery, i believe. Why? Because after sendmail getting an email it passes it to the LDA, which must check the LDAP (not the passwd!) database for the user, to which this email is send to. Are there some possibilities to solve this problem? I appreciate any help.?.. ----------------------- Best regards, Vasily Yakovlev ---------------------------------------------------------------------- From imap at tnde.org Tue Jun 28 17:08:36 2011 From: imap at tnde.org (imap at tnde.org) Date: Tue, 28 Jun 2011 10:08:36 -0400 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: <1309220895.10421.974.camel@hurina> References: <1309220895.10421.974.camel@hurina> Message-ID: <67df3a6b5053ce9d8993c7ec56b7a7f2.squirrel@emailmg.dot5hosting.com> > On Sat, 2011-06-25 at 03:58 -0400, imap at tnde.org wrote: >> I am running dovecot 2.0.13 on CentOS5, set up with only local system >> users, and single instance store set up in a single directory. >> >> e.g. >> mail_attachment_dir = /var/mail/attachments > > Currently you can't. I was a bit lazy in implementing this code not to > preserve permissions. The idea would be anyway that you could > make /var/mail/attachments 02770 and e.g. group=mail. Then set > mail_access_groups=mail to Dovecot. Now the code should have created new > directories under that with the same permissions and the files as 0660, > but looks like it doesn't. The code is in src/lib-fs/fs-posix.c if you > want to fix it yourself. You could as a workaround simply change all > 0600 -> 0660 and 0700 -> 0770 and I guess it would work. > Ok, if I understand you correctly, I would need to chmod to 660/770, but it would only work on existing folders, and every new item will be created as 600/700? I guess the best way is setting up virtual users, presumably these work under a single system account? (for the time being this is running on a test server, using the simplest setup with system users) Thanks for your help! From davide.vaghetti at ing.unipi.it Tue Jun 28 19:13:20 2011 From: davide.vaghetti at ing.unipi.it (Davide Vaghetti) Date: Tue, 28 Jun 2011 18:13:20 +0200 Subject: [Dovecot] what to expect from changing index location Message-ID: <4E09FDA0.9070104@ing.unipi.it> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello everybody, I have one thousand virtual users with mdbox mailbox format and 10 GByte quota. I have noticed some performance problem related to I/O (the mailbox disk is a 6TB raid1+0 on ISCSI), so I want to put the index files on a different disk. My actual mail_location is: mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox and I want to switch to mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ But I cannot figure out a pair of things: - - do the switch trigger the rebuilding of the index files? - - can I get rid of all the old index files? - - how much the index files (no fts squat) can grow? thanks in advance bye davide - -- Dott. Davide Vaghetti Centro Servizi Informatici Facolta' di Ingegneria Universita' di Pisa PGP: http://keys.keysigning.org:11371/pks/lookup?op=get&search=0x7A1B3BA18C4E0A4D -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk4J/Z4ACgkQehs7oYxOCk3QagCfd+yVvR2Ps6hbjZOCumn2Wx2W 6cgAnjOvQDfe1O9jDOAbp4k0deEmytd3 =ZJFQ -----END PGP SIGNATURE----- From giom87 at libero.it Tue Jun 28 20:19:07 2011 From: giom87 at libero.it (Giovanni Mancuso) Date: Tue, 28 Jun 2011 19:19:07 +0200 Subject: [Dovecot] mirate to dovecot 2.0.13 Message-ID: <4E0A0D0B.5050306@libero.it> Hi, I have in my system dovecot 1.2.11 and i want migrate to dovecot 2.0.13. I have 2 Frontend that proxy all request to Backend and i want migrate first FE and after the BE. Can i install dovecot 2.0.13 in FE that proxy all request to BE with dovecot 1.2.11? Thanks From CMarcus at Media-Brokers.com Tue Jun 28 20:29:38 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Tue, 28 Jun 2011 13:29:38 -0400 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E09FDA0.9070104@ing.unipi.it> References: <4E09FDA0.9070104@ing.unipi.it> Message-ID: <4E0A0F82.3090909@Media-Brokers.com> On 2011-06-28 12:13 PM, Davide Vaghetti wrote: > mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox > > and I want to switch to > > mail_location = > mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ > > But I cannot figure out a pair of things: > > - - do the switch trigger the rebuilding of the index files? > > - - can I get rid of all the old index files? I'm by no means an expert, but with that many users I think if you did this in one shot (all indexes being rebuilt simultaneously as users logged in) your system would slow to a crawl... I would first rsync the existing indexes over live, then stop dovecot, do another quick rsync of the indexes, then make the change and restart dovecot... That will minimize the impact (rebuilding of indexes)... -- Best regards, Charles From urushkin at telros.ru Tue Jun 28 20:38:24 2011 From: urushkin at telros.ru (Sergey Urushkin) Date: Tue, 28 Jun 2011 21:38:24 +0400 Subject: [Dovecot] Exim and Dovecot2 SASL: 435 Unable to authenticate at present Message-ID: <710846ece1b8d37b0be95dd0e1d67b07@telros.ru> Hi. I had working Exim 4.71 and Dovecot 1.2.9 SASL configuration on Ubuntu Lucid, but needed some features from dovecot2, so I installed 2.0.13 from https://launchpad.net/~carsten-uppenbrink-net/+archive/dovecot2 . Now I get Subj error while trying to authenticate via dovecot auth-client socket. However IMAP auth works fine with 2.0.13 and smtp auth worked fine until upgrade, so I think there is something wrong with dovecot2. Dovecot logs stay empty even with auth_debug*, just one string "auth: Debug: Loading modules from bla...". But here is another information that may help. And if it's needed I can build dovecot myself to ensure that ppa-build isn't guilty. Or debug some another way. Thanks. dovecot -n: # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-31-server x86_64 Ubuntu 10.04.2 LTS auth_debug = yes auth_debug_passwords = yes auth_mechanisms = plain login apop auth_verbose = yes disable_plaintext_auth = no first_valid_gid = 8 first_valid_uid = 8 hostname = mail.domain.lan last_valid_gid = 8 last_valid_uid = 8 lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes listen = * mail_gid = mail mail_location = maildir:~/ mail_plugins = " quota trash" mail_privileged_group = mail mail_uid = mail managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date passdb { args = scheme=CRAM-MD5 username_format=%n /etc/dovecot/passwd.d/%d.passwd driver = passwd-file } plugin { autocreate = Trash autocreate2 = Junk autocreate3 = Drafts autocreate4 = Templates autocreate5 = Sent autosubscribe = Trash autosubscribe2 = Junk autosubscribe3 = Drafts autosubscribe4 = Templates autosubscribe5 = Sent quota = maildir:user quota quota_rule = *:storage=200M sieve = ~/dovecot.sieve sieve_dir = ~/sieve trash = /etc/dovecot/dovecot-trash.conf.ext } postmaster_address = postmaster at domain.lan protocols = " imap sieve pop3 sieve" service auth { unix_listener auth-client { mode = 0600 user = Debian-exim } unix_listener auth-userdb { mode = 0600 user = mail } } service managesieve-login { inet_listener sieve_deprecated { port = 2000 } } ssl_cert = EHLO mail.domain.lan <~ 250-mail.domain.lan Hello mail.domain.lan [127.0.0.1] <~ 250-SIZE 26214400 <~ 250-PIPELINING <~ 250-AUTH PLAIN LOGIN <~ 250 HELP ~> AUTH LOGIN <~* 435 Unable to authenticate at present ~> AUTH PLAIN AHRlc3RAZG9tYWluLmxhbgAxMTExMTE= <~* 435 Unable to authenticate at present *** No authentication type succeeded ~> QUIT <~ 221 mail.domain.lan closing connection === Connection closed with remote host. ##################### exim -d+auth output: Exim version 4.71 uid=0 gid=0 pid=29270 D=fbb95cfd Berkeley DB: Berkeley DB 4.8.24: (August 14, 2009) Support for: crypteq iconv() IPv6 PAM Perl Expand_dlfunc GnuTLS move_frozen_messages Content_Scanning DKIM Old_Demime Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd pgsql sqlite Authenticators: cram_md5 cyrus_sasl dovecot plaintext spa Routers: accept dnslookup ipliteral iplookup manualroute queryprogram redirect Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp Fixed never_users: 0 Size of off_t: 8 GnuTLS compile-time version: 2.8.5 GnuTLS runtime version: 2.8.5 changed uid/gid: forcing real = effective uid=0 gid=0 pid=29270 auxiliary group list: seeking password data for user "root": cache not available getpwnam() succeeded uid=0 gid=0 configuration file is /etc/exim4/exim4.conf log selectors = 0000cefe 00233821 cwd=/ 4 args: /usr/sbin/exim4 -bd -q30m -d+auth trusted user admin user seeking password data for user "Debian-exim": cache not available getpwnam() succeeded uid=103 gid=105 seeking password data for user "Debian-exim": using cached result getpwnam() succeeded uid=103 gid=105 seeking password data for user "mail": cache not available getpwnam() succeeded uid=8 gid=8 originator: uid=0 gid=0 login=root name=root 29270 LOG: MAIN 29270 IPv6 socket creation failed: Address family not supported by protocol 29270 LOG: MAIN 29270 Failed to create IPv6 socket for wildcard listening (Address family not supported by protocol): will use IPv4 29270 listening on all interfaces (IPv4) port 25 29270 LOG: MAIN 29270 IPv6 socket creation failed: Address family not supported by protocol 29270 LOG: MAIN 29270 Failed to create IPv6 socket for wildcard listening (Address family not supported by protocol): will use IPv4 29270 listening on all interfaces (IPv4) port 465 29270 pid written to /var/run/exim4/exim.pid 29270 changed uid/gid: running as a daemon 29270 uid=103 gid=105 pid=29270 29270 auxiliary group list: 105 999 29270 LOG: MAIN 29270 exim 4.71 daemon started: pid=29270, -q30m, listening for SMTP on port 25 (IPv4) and for SMTPS on port 465 (IPv4) 29270 set_process_info: 29270 daemon: -q30m, listening for SMTP on port 25 (IPv4) and for SMTPS on port 465 (IPv4) 29270 daemon running with uid=103 gid=105 euid=103 egid=105 29270 SIGALRM received 29270 1 queue-runner process running 29270 Listening... 29271 Starting queue-runner: pid 29271 29271 exec /usr/sbin/exim4 -q 29270 child 29271 ended: status=0x0 29270 0 queue-runner processes now running 29270 Listening... 29270 Connection request from 127.0.0.1 port 58341 29270 search_tidyup called 29270 1 SMTP accept process running 29270 Listening... 29279 sender_fullhost = [127.0.0.1] 29279 sender_rcvhost = [127.0.0.1] 29279 Process 29279 is handling incoming connection from [127.0.0.1] 29279 host in host_lookup? no (option unset) 29279 set_process_info: 29279 handling incoming connection from [127.0.0.1] I=[127.0.0.1]:465 29279 initializing GnuTLS as a server 29279 read D-H parameters from file 29279 initialized D-H parameters 29279 certificate file = /etc/ssl/certs/dovecot.pem 29279 key file = /etc/ssl/private/dovecot.pem 29279 initialized certificate stuff 29279 host in tls_verify_hosts? no (option unset) 29279 host in tls_try_verify_hosts? no (option unset) 29279 initialized GnuTLS session 29279 gnutls_handshake was successful 29279 cipher: TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32 29279 host in host_reject_connection? no (option unset) 29279 duplicate IP address 127.0.0.1 (MX=-1) removed 29279 gethostbyname2 looked up these IP addresses: 29279 name=localhost address=::1 29279 name=localhost address=127.0.0.1 29279 host in sender_unqualified_hosts? yes (matched "localhost") 29279 duplicate IP address 127.0.0.1 (MX=-1) removed 29279 gethostbyname2 looked up these IP addresses: 29279 name=localhost address=::1 29279 name=localhost address=127.0.0.1 29279 host in recipient_unqualified_hosts? yes (matched "localhost") 29279 host in helo_verify_hosts? no (option unset) 29279 host in helo_try_verify_hosts? no (option unset) 29279 host in helo_accept_junk_hosts? no (option unset) 29279 SMTP>> 220 mail.domain.lan, ESMTP ready 29279 tls_do_write(7f10202175a0, 31) 29279 gnutls_record_send(SSL, 7f10202175a0, 31) 29279 outbytes=31 29279 Process 29279 is ready for new message 29279 smtp_setup_msg entered 29279 Calling gnutls_record_recv(7f102023f0c0, 7f1020241e40, 4096) 29279 SMTP<< EHLO mail.domain.lan 29279 mail.domain.lan in helo_lookup_domains? no (end of list) 29279 sender_fullhost = (mail.domain.lan) [127.0.0.1] 29279 sender_rcvhost = [127.0.0.1] (helo=mail.domain.lan) 29279 set_process_info: 29279 handling TLS incoming connection from (mail.domain.lan) [127.0.0.1] I=[127.0.0.1]:465 29279 host in pipelining_advertise_hosts? yes (matched "*") 29279 host in auth_advertise_hosts? yes (matched "*") 29279 tls_do_write(7f10202229c8, 119) 29279 gnutls_record_send(SSL, 7f10202229c8, 119) 29279 outbytes=119 29279 SMTP>> 250-mail.domain.lan Hello mail.domain.lan [127.0.0.1] 29279 250-SIZE 26214400 29279 250-PIPELINING 29279 250-AUTH PLAIN LOGIN 29279 250 HELP 29279 Calling gnutls_record_recv(7f102023f0c0, 7f1020241e40, 4096) 29279 SMTP<< AUTH LOGIN 29279 dovecot authentication 29279 received: VERSION 1 1 29279 received: MECH PLAIN plaintext 29279 received: MECH LOGIN plaintext 29279 received: MECH APOP private dictionary active 29279 received: SPID 29280 29279 received: CUID 1 29279 received: COOKIE cf735efce15b21bbb10568c4a762017c 29279 SMTP>> 435 Unable to authenticate at present 29279 tls_do_write(7f10202175a0, 39) 29279 gnutls_record_send(SSL, 7f10202175a0, 39) 29279 outbytes=39 29279 LOG: MAIN REJECT 29279 auth_login authenticator failed for (mail.domain.lan) [127.0.0.1] I=[127.0.0.1]:465: 435 Unable to authenticate at present: authentication socket protocol error 29279 Calling gnutls_record_recv(7f102023f0c0, 7f1020241e40, 4096) 29279 SMTP<< AUTH PLAIN AHRlc3RAZG9tYWluLmxhbgAxMTExMTE= 29279 host in smtp_accept_max_nonmail_hosts? yes (matched "*") 29279 dovecot authentication 29279 received: VERSION 1 1 29279 received: MECH PLAIN plaintext 29279 received: MECH LOGIN plaintext 29279 received: MECH APOP private dictionary active 29279 received: SPID 29280 29279 received: CUID 2 29279 received: COOKIE 06f8b3d9441b40b4069f53cdd0d128a4 29279 SMTP>> 435 Unable to authenticate at present 29279 tls_do_write(7f10202175a0, 39) 29279 gnutls_record_send(SSL, 7f10202175a0, 39) 29279 outbytes=39 29279 LOG: MAIN REJECT 29279 auth_plain authenticator failed for (mail.domain.lan) [127.0.0.1] I=[127.0.0.1]:465: 435 Unable to authenticate at present: authentication socket protocol error 29279 Calling gnutls_record_recv(7f102023f0c0, 7f1020241e40, 4096) 29279 SMTP<< QUIT 29279 SMTP>> 221 mail.domain.lan closing connection 29279 tls_do_write(7f10202175a0, 37) 29279 gnutls_record_send(SSL, 7f10202175a0, 37) 29279 outbytes=37 29279 tls_close(): shutting down TLS 29279 LOG: smtp_connection MAIN 29279 SMTP connection from (mail.domain.lan) [127.0.0.1] I=[127.0.0.1]:465 closed by QUIT 29279 search_tidyup called 29270 child 29279 ended: status=0x0 29270 0 SMTP accept processes now running 29270 Listening... -- Best regards, Sergey Urushkin From noel.butler at ausics.net Wed Jun 29 01:06:39 2011 From: noel.butler at ausics.net (Noel Butler) Date: Wed, 29 Jun 2011 08:06:39 +1000 Subject: [Dovecot] Virtual Servers In-Reply-To: <4E09B7A8.6040509@Media-Brokers.com> References: <1309223167.9751.34.camel@tardis> <4E09B7A8.6040509@Media-Brokers.com> Message-ID: <1309298799.5899.5.camel@tardis> I think we all know who the troll is here On Tue, 2011-06-28 at 07:14 -0400, Charles Marcus wrote: > On 2011-06-27 9:06 PM, Noel Butler wrote: > > On 2011-06-27 9:21 PM, Jonathan Tripathy wrote: > >> I hope this is a lightly used server and does not do any real level > >> of mail traffic else you'll soon regret running in any VM :) > > > Don't mean to start a flame war, but your statement above is just > > simply inaccurate. > > Please don't feed the troll... > > > Noel: I tried to reply to your email off list, but it bounced :( > > That's what you get for replying to trolls... Noel uses brain-dead > anti-spam measures. I plonked him long ago... > From lundman at lundman.net Wed Jun 29 08:18:52 2011 From: lundman at lundman.net (Jorgen Lundman) Date: Wed, 29 Jun 2011 14:18:52 +0900 Subject: [Dovecot] Dovecot 1.2.16 -> Dovecot 2.0.13 Performance? Message-ID: <4E0AB5BC.3060704@lundman.net> Hello list, Currently running dovecot-1.2.16 as pop, imap, and deliver (with sieve). All on Solaris 10u9, on NFSv4 backends. All is working great. But occasionally, the system gets rather loaded, not entirely sure what part yet, but as part of researching that; If we were to start the upgrade path to dovecot 2.0.13, are there any known areas of performance increase which should encourage us to do this? Since we have a stable system, there is hesitation in changing any part of it :) Each NFS server hosts about 92,381 mailboxes, LDAP as authentication and ZFS user quotas. What sort of numbers do others manage generally? Cheers, Lund -- Jorgen Lundman | Unix Administrator | +81 (0)3 -5456-2687 ext 1017 (work) Shibuya-ku, Tokyo | +81 (0)90-5578-8500 (cell) Japan | +81 (0)3 -3375-1767 (home) From mnavaki at gmail.com Wed Jun 29 09:49:51 2011 From: mnavaki at gmail.com (Meisam Navaki) Date: Wed, 29 Jun 2011 11:19:51 +0430 Subject: [Dovecot] Installing Dovecot v2.0.3 from binary files problem Message-ID: Hi, I've installed dovecot v2.0.13 from binary files.dovecote starts ok,but I get some errors in /var/run/mail.log : dovecot: anvil: Fatal: Error reading configuration: read(/var/run/dovecot/config) failed: EOF dovecot: master: Error: service(anvil): command startup failed, throttling dovecot: master: Error: service(config): child 8606 killed with signal 11 (core dumps disabled) dovecot: master: Error: service(config): command startup failed, throttling dovecot: ssl-params: Fatal: Error reading configuration: read(/var/run/dovecot/config) failed: Connection reset by peer And I've just used example configure files of dovecot. Regards, Meisam Navaki. System Programmer, Bayan Co. From berni at birkenwald.de Wed Jun 29 11:38:55 2011 From: berni at birkenwald.de (Bernhard Schmidt) Date: Wed, 29 Jun 2011 10:38:55 +0200 Subject: [Dovecot] LDAP timeout In-Reply-To: <1309219800.10421.964.camel@hurina> References: <1309219800.10421.964.camel@hurina> Message-ID: <4E0AE49F.7080007@birkenwald.de> Hi, > Fallbacking to another LDAP server is done by OpenLDAP internally. So > what would be needed is either a) OpenLDAP to itself figure out that > queries are running too slowly and see if another server is faster, or > b) Dovecot figure that out itself and force OpenLDAP to switch to > another server. > > I don't know if either of them is possible with OpenLDAP API as it is. I > doubt it. You can set a timelimit for a search, but I'm not exactly sure what happens when you specified multiple servers. Maybe the query gets restarted on the next server, maybe it fails. Still doing that (with logging) would be better than hanging there for several minutes. If it completely aborts the query, a workaround would be to use more than one ldap passdb with one server each, no? Bernhard From linuxmail at 4lin.net Wed Jun 29 15:14:07 2011 From: linuxmail at 4lin.net (Denny Schierz) Date: Wed, 29 Jun 2011 14:14:07 +0200 Subject: [Dovecot] ldapsearch dump for passwd file: base64 encoded passwords Message-ID: <1309349647.28227.62.camel@pcdenny> hi, is there a way, to let Dovecot2 uses the base64 encoded passwords from a ldapsearch output, without decode them first? cu denny -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: This is a digitally signed message part URL: From shazia at ut.ee Wed Jun 29 15:19:58 2011 From: shazia at ut.ee (Shazia Javed) Date: Wed, 29 Jun 2011 15:19:58 +0300 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot Message-ID: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> ------------------------ Dovecot Version: ------------------------ 2.0.13 ------------------------ Output of "dovecot -n": ------------------------ # 2.0.13: /usr/local/etc/dovecot/dovecot.conf # OS: Linux 2.6.35-28-generic x86_64 Ubuntu 10.10 ext4 mail_location = maildir:/home/%u/Maildir passdb { args = %s driver = pam } protocols = imap pop3 ssl = no userdb { driver = passwd } protocol imap { imap_client_workarounds = tb-extra-mailbox-sep } protocol pop3 { pop3_uidl_format = %08Xu%08Xv } --------------------------- Objective: --------------------------- We need to download emails from remote server using Dovecot and thunderbird. Our objective is to store emails in maildir or mbox format, and process them as part of our research project. --------------------------- Problem: --------------------------- Dovecot works for localhost, but not for remote servers. How do I know? Because thunderbird downloads emails in its default location (specified in settings) and not in maildir or mbox folders. If I send mail to @ using mail command, dovecot works and thunderbird shows the email stored in maildir folder. But for email from @yahoo.com goes to thunderbird's default folder and are browsed from there. --------------------------- Relevant Technical Details: --------------------------- ps auxw|grep "dovecot\|imap\|pop3" root 1033 0.0 0.0 52796 1916 ? Ss 12:45 0:00 /usr/sbin/dovecot -F -c /etc/dovecot/dovecot.conf root 1173 0.0 0.0 75096 3284 ? S 12:45 0:00 dovecot-auth root 1214 0.0 0.0 75188 3424 ? S 12:45 0:00 dovecot-auth -w dovecot 8356 0.0 0.0 50528 2692 ? S 13:30 0:00 pop3-login dovecot 8357 0.0 0.0 50528 2692 ? S 13:30 0:00 pop3-login dovecot 8358 0.0 0.0 50528 2688 ? S 13:30 0:00 pop3-login dovecot 8359 0.0 0.0 50528 2688 ? S 13:30 0:00 pop3-login dovecot 8360 0.0 0.0 50528 2688 ? S 13:30 0:00 pop3-login dovecot 8364 0.0 0.0 50540 2688 ? S 13:30 0:00 imap-login dovecot 8375 0.0 0.0 50540 2692 ? S 13:30 0:00 imap-login dovecot 8378 0.0 0.0 50540 2684 ? S 13:30 0:00 imap-login shaz 9048 0.0 0.0 8956 864 pts/0 S+ 15:06 0:00 grep --color=auto dovecot\|imap\|pop3 sudo netstat -lnptu [sudo] password for shaz: Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 1033/dovecot tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 1033/dovecot tcp 0 0 0.0.0.0:64277 0.0.0.0:* LISTEN 2068/skype tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 1295/cupsd tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 1389/master tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 1033/dovecot tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN 1033/dovecot tcp6 0 0 ::1:631 :::* LISTEN 1295/cupsd udp 0 0 127.0.0.1:45902 0.0.0.0:* 2068/skype udp 0 0 0.0.0.0:33754 0.0.0.0:* 1065/avahi-daemon: udp 0 0 0.0.0.0:5353 0.0.0.0:* 1065/avahi-daemon: udp 0 0 0.0.0.0:68 0.0.0.0:* 2132/dhclient udp 0 0 0.0.0.0:64277 0.0.0.0:* 2068/skype udp6 0 0 :::5353 :::* 1065/avahi-daemon: udp6 0 0 :::50994 :::* 1065/avahi-daemon: sudo lsof -i | grep LISTEN dovecot 1033 root 6u IPv4 7578 0t0 TCP *:imap2 (LISTEN) dovecot 1033 root 7u IPv4 7579 0t0 TCP *:imaps (LISTEN) dovecot 1033 root 9u IPv4 7580 0t0 TCP *:pop3 (LISTEN) dovecot 1033 root 10u IPv4 7581 0t0 TCP *:pop3s (LISTEN) cupsd 1295 root 5u IPv6 7932 0t0 TCP Casper:ipp (LISTEN) cupsd 1295 root 6u IPv4 7933 0t0 TCP localhost.localdomain:ipp (LISTEN) master 1389 root 12u IPv4 9284 0t0 TCP *:smtp (LISTEN) skype 2068 shaz 67u IPv4 18344 0t0 TCP *:64277 (LISTEN) pop3-logi 8356 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8356 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) pop3-logi 8357 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8357 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) pop3-logi 8358 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8358 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) pop3-logi 8359 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8359 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) pop3-logi 8360 dovecot 4u IPv4 7580 0t0 TCP *:pop3 (LISTEN) pop3-logi 8360 dovecot 5u IPv4 7581 0t0 TCP *:pop3s (LISTEN) imap-logi 8364 dovecot 4u IPv4 7578 0t0 TCP *:imap2 (LISTEN) imap-logi 8364 dovecot 5u IPv4 7579 0t0 TCP *:imaps (LISTEN) imap-logi 8375 dovecot 4u IPv4 7578 0t0 TCP *:imap2 (LISTEN) imap-logi 8375 dovecot 5u IPv4 7579 0t0 TCP *:imaps (LISTEN) imap-logi 8378 dovecot 4u IPv4 7578 0t0 TCP *:imap2 (LISTEN) imap-logi 8378 dovecot 5u IPv4 7579 0t0 TCP *:imaps (LISTEN) telnet 127.0.0.1 110 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. +OK Dovecot ready. telnet 127.0.0.1 143 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE STARTTLS AUTH=PLAIN] Dovecot ready. 1 logout * BYE Logging out 1 OK Logout completed. Connection closed by foreign host. telnet mail.ut.ee 110 Trying 193.40.5.156... Connected to mailhost.ut.ee. Escape character is '^]'. +OK POP3 ready quit +OK Connection closed by foreign host. telnet mail.ut.ee 143 Trying 193.40.5.156... Connected to mailhost.ut.ee. Escape character is '^]'. * OK IMAP4 ready 1 logout * BYE 1 OK completed Connection closed by foreign host. ----------------- Commentary: ----------------- As is obvious from the commands and output listed above that dovecot is running, listening on 110 and 143 - but only for localhost. When I try to telnet mail.ut.ee 110/143 I get to see IMAP4/POP3 ready rather than Dovecot ready. ----------------- Queries ----------------- Shouldn't I get "Dovecot ready" message for remote servers as well? It is an MRA and we shouldn't be required to install it on remote servers, right? What should I do to make dovecot work for remote servers? From tkrah at fachschaft.imn.htwk-leipzig.de Wed Jun 29 16:14:58 2011 From: tkrah at fachschaft.imn.htwk-leipzig.de (Torsten Krah) Date: Wed, 29 Jun 2011 15:14:58 +0200 Subject: [Dovecot] Problem accessing Dovecot mailing lists via IMAP In-Reply-To: <4E09B2F5.800@blunn.org> References: <4E09B2F5.800@blunn.org> Message-ID: <1309353298.29710.2.camel@sf050.friends> Am Dienstag, den 28.06.2011, 11:54 +0100 schrieb William Blunn: > > Any ideas? I guess its not working at the moment. CAPABILITY says LOGINDISABLED and AUTH=ANONYMOUS. If the client does not support this auth method, authentication is denied because login is disabled and starttls or ssl to get AUTH PLAIN or AUTH LOGIN is not enabled. Guess configuration does not match the documentation. At least it does not work for me too because my client does not support AUTH ANONYMOUS. Torsten -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5253 bytes Desc: not available URL: From kerem.erciyes at gmail.com Wed Jun 29 16:59:26 2011 From: kerem.erciyes at gmail.com (Kerem Erciyes) Date: Wed, 29 Jun 2011 16:59:26 +0300 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot In-Reply-To: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> References: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> Message-ID: Hi, What makes you think that e-mail retrieval from remote servers should be over Dovecot? Is 193.40.5.156 running Dovecot that it should say "Dovecot ready." ? I think what you need fetchmail or getmail. Dovecot is a MTA, not a MRA. Best, Kerem On Wed, Jun 29, 2011 at 3:19 PM, Shazia Javed wrote: > ------------------------ > Dovecot Version: > ------------------------ > 2.0.13 > > ------------------------ > Output of "dovecot -n": > ------------------------ > # 2.0.13: /usr/local/etc/dovecot/dovecot.conf > # OS: Linux 2.6.35-28-generic x86_64 Ubuntu 10.10 ext4 > mail_location = maildir:/home/%u/Maildir > passdb { > ?args = %s > ?driver = pam > } > protocols = imap pop3 > ssl = no > userdb { > ?driver = passwd > } > protocol imap { > ?imap_client_workarounds = tb-extra-mailbox-sep > } > protocol pop3 { > ?pop3_uidl_format = %08Xu%08Xv > } > > --------------------------- > Objective: > --------------------------- > We need to download emails from remote server using Dovecot and > thunderbird. Our objective is to store emails in maildir or mbox format, > and process them as part of our research project. > > --------------------------- > Problem: > --------------------------- > Dovecot works for localhost, but not for remote servers. How do I know? > Because thunderbird downloads emails in its default location (specified in > settings) and not in maildir or mbox folders. If I send mail to > @ using mail command, dovecot works and thunderbird > shows the email stored in maildir folder. But for email from > @yahoo.com goes to thunderbird's default folder and are browsed from > there. > > > --------------------------- > Relevant Technical Details: > --------------------------- > > ps auxw|grep "dovecot\|imap\|pop3" > > root ? ? ?1033 ?0.0 ?0.0 ?52796 ?1916 ? ? ? ? ?Ss ? 12:45 ? 0:00 > /usr/sbin/dovecot -F -c /etc/dovecot/dovecot.conf > root ? ? ?1173 ?0.0 ?0.0 ?75096 ?3284 ? ? ? ? ?S ? ?12:45 ? 0:00 dovecot-auth > root ? ? ?1214 ?0.0 ?0.0 ?75188 ?3424 ? ? ? ? ?S ? ?12:45 ? 0:00 > dovecot-auth -w > dovecot ? 8356 ?0.0 ?0.0 ?50528 ?2692 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8357 ?0.0 ?0.0 ?50528 ?2692 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8358 ?0.0 ?0.0 ?50528 ?2688 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8359 ?0.0 ?0.0 ?50528 ?2688 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8360 ?0.0 ?0.0 ?50528 ?2688 ? ? ? ? ?S ? ?13:30 ? 0:00 pop3-login > dovecot ? 8364 ?0.0 ?0.0 ?50540 ?2688 ? ? ? ? ?S ? ?13:30 ? 0:00 imap-login > dovecot ? 8375 ?0.0 ?0.0 ?50540 ?2692 ? ? ? ? ?S ? ?13:30 ? 0:00 imap-login > dovecot ? 8378 ?0.0 ?0.0 ?50540 ?2684 ? ? ? ? ?S ? ?13:30 ? 0:00 imap-login > shaz ? ? ?9048 ?0.0 ?0.0 ? 8956 ? 864 pts/0 ? ?S+ ? 15:06 ? 0:00 grep > --color=auto dovecot\|imap\|pop3 > > > > sudo netstat -lnptu > > [sudo] password for shaz: > Active Internet connections (only servers) > Proto Recv-Q Send-Q Local Address ? ? ? ? ? Foreign Address ? ? ? ? State > ? ? PID/Program name > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:110 ? ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1033/dovecot > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:143 ? ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1033/dovecot > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:64277 ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 2068/skype > tcp ? ? ? ?0 ? ? ?0 127.0.0.1:631 ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1295/cupsd > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:25 ? ? ? ? ? ? ?0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1389/master > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:993 ? ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1033/dovecot > tcp ? ? ? ?0 ? ? ?0 0.0.0.0:995 ? ? ? ? ? ? 0.0.0.0:* ? ? ? ? ? ? ? LISTEN > ? ? 1033/dovecot > tcp6 ? ? ? 0 ? ? ?0 ::1:631 ? ? ? ? ? ? ? ? :::* ? ? ? ? ? ? ? ? ? ?LISTEN > ? ? 1295/cupsd > udp ? ? ? ?0 ? ? ?0 127.0.0.1:45902 ? ? ? ? 0.0.0.0:* > ? ? 2068/skype > udp ? ? ? ?0 ? ? ?0 0.0.0.0:33754 ? ? ? ? ? 0.0.0.0:* > ? ? 1065/avahi-daemon: > udp ? ? ? ?0 ? ? ?0 0.0.0.0:5353 ? ? ? ? ? ?0.0.0.0:* > ? ? 1065/avahi-daemon: > udp ? ? ? ?0 ? ? ?0 0.0.0.0:68 ? ? ? ? ? ? ?0.0.0.0:* > ? ? 2132/dhclient > udp ? ? ? ?0 ? ? ?0 0.0.0.0:64277 ? ? ? ? ? 0.0.0.0:* > ? ? 2068/skype > udp6 ? ? ? 0 ? ? ?0 :::5353 ? ? ? ? ? ? ? ? :::* > ? ? 1065/avahi-daemon: > udp6 ? ? ? 0 ? ? ?0 :::50994 ? ? ? ? ? ? ? ?:::* > ? ? 1065/avahi-daemon: > > > > sudo lsof -i | grep LISTEN > > dovecot ? 1033 ? ?root ? ?6u ?IPv4 ? 7578 ? ? ?0t0 ?TCP *:imap2 (LISTEN) > dovecot ? 1033 ? ?root ? ?7u ?IPv4 ? 7579 ? ? ?0t0 ?TCP *:imaps (LISTEN) > dovecot ? 1033 ? ?root ? ?9u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > dovecot ? 1033 ? ?root ? 10u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > cupsd ? ? 1295 ? ?root ? ?5u ?IPv6 ? 7932 ? ? ?0t0 ?TCP Casper:ipp (LISTEN) > cupsd ? ? 1295 ? ?root ? ?6u ?IPv4 ? 7933 ? ? ?0t0 ?TCP > localhost.localdomain:ipp (LISTEN) > master ? ?1389 ? ?root ? 12u ?IPv4 ? 9284 ? ? ?0t0 ?TCP *:smtp (LISTEN) > skype ? ? 2068 ? ?shaz ? 67u ?IPv4 ?18344 ? ? ?0t0 ?TCP *:64277 (LISTEN) > pop3-logi 8356 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8356 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > pop3-logi 8357 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8357 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > pop3-logi 8358 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8358 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > pop3-logi 8359 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8359 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > pop3-logi 8360 dovecot ? ?4u ?IPv4 ? 7580 ? ? ?0t0 ?TCP *:pop3 (LISTEN) > pop3-logi 8360 dovecot ? ?5u ?IPv4 ? 7581 ? ? ?0t0 ?TCP *:pop3s (LISTEN) > imap-logi 8364 dovecot ? ?4u ?IPv4 ? 7578 ? ? ?0t0 ?TCP *:imap2 (LISTEN) > imap-logi 8364 dovecot ? ?5u ?IPv4 ? 7579 ? ? ?0t0 ?TCP *:imaps (LISTEN) > imap-logi 8375 dovecot ? ?4u ?IPv4 ? 7578 ? ? ?0t0 ?TCP *:imap2 (LISTEN) > imap-logi 8375 dovecot ? ?5u ?IPv4 ? 7579 ? ? ?0t0 ?TCP *:imaps (LISTEN) > imap-logi 8378 dovecot ? ?4u ?IPv4 ? 7578 ? ? ?0t0 ?TCP *:imap2 (LISTEN) > imap-logi 8378 dovecot ? ?5u ?IPv4 ? 7579 ? ? ?0t0 ?TCP *:imaps (LISTEN) > > > > telnet 127.0.0.1 110 > > Trying 127.0.0.1... > Connected to 127.0.0.1. > Escape character is '^]'. > +OK Dovecot ready. > > > > telnet 127.0.0.1 143 > > Trying 127.0.0.1... > Connected to 127.0.0.1. > Escape character is '^]'. > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE > STARTTLS AUTH=PLAIN] Dovecot ready. > 1 logout > * BYE Logging out > 1 OK Logout completed. > Connection closed by foreign host. > > > > telnet mail.ut.ee 110 > > Trying 193.40.5.156... > Connected to mailhost.ut.ee. > Escape character is '^]'. > +OK POP3 ready > quit > +OK > Connection closed by foreign host. > > > > telnet mail.ut.ee 143 > > Trying 193.40.5.156... > Connected to mailhost.ut.ee. > Escape character is '^]'. > * OK IMAP4 ready > 1 logout > * BYE > 1 OK completed > Connection closed by foreign host. > > > ----------------- > Commentary: > ----------------- > > As is obvious from the commands and output listed above that dovecot is > running, listening on 110 and 143 - but only for localhost. When I try to > telnet mail.ut.ee 110/143 I get to see IMAP4/POP3 ready rather than > Dovecot ready. > > > > ----------------- > Queries > ----------------- > Shouldn't I get "Dovecot ready" message for remote servers as well? It is > an MRA and we shouldn't be required to install it on remote servers, > right? What should I do to make dovecot work for remote servers? > > > > > -- Kerem Erciyes - Sistem Danismani http://keremerciyes.com From stan at hardwarefreak.com Wed Jun 29 17:32:25 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Wed, 29 Jun 2011 09:32:25 -0500 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot In-Reply-To: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> References: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> Message-ID: <4E0B3779.9060104@hardwarefreak.com> On 6/29/2011 7:19 AM, Shazia Javed wrote: > As is obvious from the commands and output listed above that dovecot is > running, listening on 110 and 143 - but only for localhost. When I try to > telnet mail.ut.ee 110/143 I get to see IMAP4/POP3 ready rather than > Dovecot ready. It seems obvious that mail.ut.ee/193.40.5.156 do not address the Dovecot host in question, but another host. Otherwise you would see "Dovecot ready" across the board. Please show: ~$ ifconfig|grep inet -- Stan From davide.vaghetti at ing.unipi.it Wed Jun 29 18:54:40 2011 From: davide.vaghetti at ing.unipi.it (Davide Vaghetti) Date: Wed, 29 Jun 2011 17:54:40 +0200 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0A0F82.3090909@Media-Brokers.com> References: <4E09FDA0.9070104@ing.unipi.it> <4E0A0F82.3090909@Media-Brokers.com> Message-ID: <4E0B4AC0.8020007@ing.unipi.it> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/28/2011 07:29 PM, Charles Marcus wrote: > On 2011-06-28 12:13 PM, Davide Vaghetti wrote: >> mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox >> >> and I want to switch to >> >> mail_location = >> mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ >> >> But I cannot figure out a pair of things: >> >> - - do the switch trigger the rebuilding of the index files? >> >> - - can I get rid of all the old index files? > > I'm by no means an expert, but with that many users I think if you > did this in one shot (all indexes being rebuilt simultaneously as > users logged in) your system would slow to a crawl... > > I would first rsync the existing indexes over live, then stop > dovecot, do another quick rsync of the indexes, then make the change > and restart dovecot... > > That will minimize the impact (rebuilding of indexes)... > Good hint! Thank you. What about the index grow factor? Do some of you folks have any idea about that (no ftp squat)? bye davide - -- Dott. Davide Vaghetti Centro Servizi Informatici Facolta' di Ingegneria Universita' di Pisa PGP: http://keys.keysigning.org:11371/pks/lookup?op=get&search=0x7A1B3BA18C4E0A4D -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk4LSr0ACgkQehs7oYxOCk2iBwCfbcygrvBaO4JJFAtgTb9fXwZg FPMAoI/yZFborIJH+U3gTx28In602H7k =pHbw -----END PGP SIGNATURE----- From claudio.prono at atpss.net Wed Jun 29 19:02:44 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Wed, 29 Jun 2011 18:02:44 +0200 Subject: [Dovecot] Dovecot 2.0, mysql and quota Message-ID: <4E0B4CA4.5050201@atpss.net> Hello all, I have some troubles to make the quota_check working with dovecot 2.0. My config is the following: postfix, dovecot as lda, mysql as virtual mailuser backend, and postfixadmin for the mailuser administration. Previously i have a working setup with dovecot 1.x, now with the 2.0 something is wrong about the quota, but i don't know what... Here is my config: # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.37.6-0.5-desktop x86_64 openSUSE 11.4 (x86_64) ext3 auth_mechanisms = plain login first_valid_gid = 51 first_valid_uid = 51 info_log_path = /var/log/dovecot-inf.log last_valid_gid = 51 last_valid_uid = 51 log_path = /var/log/dovecot-err.log mail_home = /var/mail/virtual/%d/%u/ mail_location = maildir:/var/mail/virtual/%d/%u managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { hidden = no inbox = yes list = yes location = prefix = INBOX. subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } plugin { quota = maildir:User quota quota_warning = storage=80%% /usr/bin/quota_warning.sh 80 quota_warning2 = storage=90%% /usr/bin/quota_warning.sh 90 quota_warning3 = storage=99%% /usr/bin/quota_warning.sh 90 sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } protocols = imap pop3 sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { mode = 0600 } unix_listener auth-userdb { group = nobody mode = 0660 user = postfix } } service imap-login { inet_listener imap { address = 127.0.0.1 port = 143 } } service managesieve-login { executable = /usr/lib/dovecot/managesieve-login } service managesieve { executable = /usr/lib/dovecot/managesieve } service quota-warning { executable = script /usr/bin/quota_warning.sh user = postfix } ssl = no userdb { driver = passwd } userdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } protocol imap { imap_client_workarounds = mail_plugins = quota imap_quota } protocol sieve { managesieve_max_line_length = 65536 plugin { sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } } protocol pop3 { mail_plugins = quota pop3_uidl_format = UID%u-%v } protocol lda { auth_socket_path = /var/run/dovecot/auth-master log_path = /var/log/dovecot-lda.log mail_debug = yes mail_plugins = quota sieve postmaster_address = postmaster at mediaservice.net } My user query for mysql is the following: user_query = SELECT maildir, 51 AS uid, 51 AS gid, CONCAT('*:bytes=', mailbox.quota ) AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1' I have made some test, with a test mailbox, with the quota setted to 1 Mb, in fact the maildirsize file contains: 1024000S When i write a mail, something strange is happening: with the debug mail of dovecot active i see this: Jun 29 17:42:19 lda: Debug: Loading modules from directory: /usr/lib64/dovecot/modules Jun 29 17:42:19 lda: Debug: Module loaded: /usr/lib64/dovecot/modules/lib10_quota_plugin.so Jun 29 17:42:19 lda: Debug: Module loaded: /usr/lib64/dovecot/modules/lib90_sieve_plugin.so Jun 29 17:42:19 auth: Info: mysql(127.0.0.1): Connected to database postfix Jun 29 17:42:19 lda: Debug: auth input: testquota at mediaservice.pri maildir=mediaservice.pri/testquota/ uid=51 gid=51 quota_rule=*:bytes=1024000 Jun 29 17:42:19 lda: Debug: Added userdb setting: plugin/maildir=mediaservice.pri/testquota/ Jun 29 17:42:19 lda: Debug: Added userdb setting: plugin/quota_rule=*:bytes=1024000 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Effective uid=51, gid=51, home=/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri/ Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota root: name=User quota backend=maildir args= Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota rule: root=User quota mailbox=* bytes=1024000 messages=0 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=819200 (80%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 80 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=921600 (90%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 90 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=1013760 (99%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 90 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Namespace : type=private, prefix=INBOX., sep=, inbox=yes, hidden=no, list=yes, subscriptions=yes location=maildir:/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: maildir++: root=/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri, index=, control=, inbox=/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota root: name=User quota backend=maildir args= Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=0 (80%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 80 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=0 (90%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 90 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: bytes=0 (99%) messages=0 reverse=no command=/usr/bin/quota_warning.sh 90 Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: none: root=, index=, control=, inbox= Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Destination address: testquota at mediaservice.pri (source: user at hostname) Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: sieve: user's script path /var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri/.dovecot.sieve doesn't exist (using global script path in stead) Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: sieve: user has no valid personal script Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: sieve: no scripts to execute: reverting to default delivery. Jun 29 17:42:19 lda(testquota at mediaservice.pri): Info: msgid=<4E0B47DA.9030607 at atpss.net>: saved mail to INBOX First question: why i see two times the quota warning check? Anyway, if the 80% or 90% of the quota is fullfilled, no warning pops out.... I have also checked the query it does to mysql, is the following SELECT maildir, 51 AS uid, 51 AS gid, CONCAT('*:bytes=', mailbox.quota ) AS quota_rule FROM mailbox WHERE username = 'testquota at mediaservice.pri' AND active = '1' And the result, is the following: +-----------------------------+-----+-----+-----------------+ | maildir | uid | gid | quota_rule | +-----------------------------+-----+-----+-----------------+ | mediaservice.pri/testquota/ | 51 | 51 | *:bytes=1024000 | +-----------------------------+-----+-----+-----------------+ Seems right to me...but it is not working.... why? Ah, this is the content of the quota_warning.sh: #!/bin/sh PERCENT=$1 USER=$2 cat << EOF | /usr/local/libexec/dovecot/dovecot-lda -d $USER -o "plugin/quota=maildir:User quota:noenforcing" From: postmaster at mediaservice.pri Subject: quota warning Your mailbox is now $PERCENT% full. EOF Any hint about what is not working? Thanks, Claudio Prono. -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From bill+dovecot at blunn.org Wed Jun 29 19:22:45 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Wed, 29 Jun 2011 17:22:45 +0100 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot In-Reply-To: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> References: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> Message-ID: <4E0B5155.9060901@blunn.org> On 29/06/2011 13:19, Shazia Javed wrote: > --------------------------- > Objective: > --------------------------- > We need to download emails from remote server using Dovecot and thunderbird. Dovecot doesn't download e-mail from other servers. > Our objective is to store emails in maildir or mbox format, and process them as part of our research project. > > --------------------------- > Problem: > --------------------------- > Dovecot works for localhost, but not for remote servers. How do I know? > Because thunderbird downloads emails in its default location (specified in > settings) and not in maildir or mbox folders. If I send mail to > @ using mail command, dovecot works and thunderbird > shows the email stored in maildir folder. But for email from > @yahoo.com goes to thunderbird's default folder and are browsed from > there. It looks like you want to get e-mail from someone else's mail server and store it in maildir or mbox format on your server. You could do this by pulling the mail from someone else's mailserver using Thunderbird, then using Thunderbird to move it across to an account configured to access your server by IMAP. Alternatively you could do it by retrieving the mail using "fetchmail" on your server and have it delivered to an address on your server. This would have the benefit of being more reliable and more scriptable. > ----------------- > Commentary: > ----------------- > > As is obvious from the commands and output listed above that dovecot is > running, listening on 110 and 143 - but only for localhost. When I try to > telnet mail.ut.ee 110/143 I get to see IMAP4/POP3 ready rather than > Dovecot ready. That is the expected behaviour. You installed Dovecot on your server, ergo it is only on your server. Installing Dovecot on your server doesn't magically install and configure it on other people's servers. > ----------------- > Queries > ----------------- > Shouldn't I get "Dovecot ready" message for remote servers as well? No; you only installed it on your server. > It is an MRA and we shouldn't be required to install it on remote servers, right? If, by "MRA", you mean "Mail Retrieval Agent", then no, Dovecot is not an MRA. > What should I do to make dovecot work for remote servers? Dovecot, in and of itself, won't "work for remote servers". You may be able to do what I think you want to do by pulling the mail from the remote server on to your server. You may want to look into "fetchmail". Bill From bill+dovecot at blunn.org Wed Jun 29 19:36:46 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Wed, 29 Jun 2011 17:36:46 +0100 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E09FDA0.9070104@ing.unipi.it> References: <4E09FDA0.9070104@ing.unipi.it> Message-ID: <4E0B549E.40201@blunn.org> On 28/06/2011 17:13, Davide Vaghetti wrote: > I have one thousand virtual users with mdbox mailbox format and 10 GByte quota. I have noticed some performance problem related to I/O (the mailbox disk is a 6TB raid1+0 on ISCSI), so I want to put the index files on a different disk. My actual mail_location is: > > mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox > > and I want to switch to > > mail_location = > mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ > > But I cannot figure out a pair of things: > > - - do the switch trigger the rebuilding of the index files? !!!!! DANGER, DANGER !!!!!! Index files cannot be re-generated under mdbox Go away and read http://wiki2.dovecot.org/MailboxFormat/dbox "... with dbox the Index files actually contain significant data which is held nowhere else. Index files for both *single-dbox* and *multi-dbox* contain message flags and keywords. For *multi-dbox*, the index file also contains the map_uids which link (via the "map index") to the actual message data. This data cannot be automatically recreated, so it is important that Index files are treated with the same care as message data files." If you don't already know this, then you probably shouldn't even be using mdbox. > - - can I get rid of all the old index files? NO! > - - how much the index files (no fts squat) can grow? First solve your understanding problem with mdbox, then worry about details such as this. Bill From bill+dovecot at blunn.org Wed Jun 29 20:00:08 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Wed, 29 Jun 2011 18:00:08 +0100 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0B549E.40201@blunn.org> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> Message-ID: <4E0B5A18.9040500@blunn.org> In fact, under sdbox and mdbox, calling these files "index files" is misleading because it implies that they can be re-created, leading to situations like this. Such situations could result in catastrophic data loss. Whilst we could say it is "user error", users could argue that it is "common knowledge" that files referred to as "index files" can be re-created from the "data files". In reality, these so-called "index files" are actually database files containing critical data. They happen to use the same format as Dovecot uses for index files in connection with mbox and maildir, but they contain data which is held nowhere else and cannot be recreated. Perhaps the per-mailbox index files for sdbox and mdbox should be re-named to "message metadata databases", and the "map index" should be renamed to "message store database". Specifically we should avoid the word "index". By including the word "database", we make it clearer that these files contain data. Timo, what do you reckon? Regards, Bill On 29/06/2011 17:36, William Blunn wrote: > On 28/06/2011 17:13, Davide Vaghetti wrote: >> I have one thousand virtual users with mdbox mailbox format and 10 >> GByte quota. I have noticed some performance problem related to I/O >> (the mailbox disk is a 6TB raid1+0 on ISCSI), so I want to put the >> index files on a different disk. My actual mail_location is: >> >> mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox >> >> and I want to switch to >> >> mail_location = >> mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ >> >> But I cannot figure out a pair of things: >> >> - - do the switch trigger the rebuilding of the index files? > > !!!!! DANGER, DANGER !!!!!! > > Index files cannot be re-generated under mdbox > > Go away and read http://wiki2.dovecot.org/MailboxFormat/dbox > > "... with dbox the Index files actually contain significant data which > is held nowhere else. Index files for both *single-dbox* and > *multi-dbox* contain message flags and keywords. For *multi-dbox*, the > index file also contains the map_uids which link (via the "map index") > to the actual message data. This data cannot be automatically > recreated, so it is important that Index files are treated with the > same care as message data files." > > If you don't already know this, then you probably shouldn't even be > using mdbox. > >> - - can I get rid of all the old index files? > > NO! > >> - - how much the index files (no fts squat) can grow? > > First solve your understanding problem with mdbox, then worry about > details such as this. > > Bill > > From bill+dovecot at blunn.org Wed Jun 29 20:09:48 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Wed, 29 Jun 2011 18:09:48 +0100 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0B5A18.9040500@blunn.org> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> <4E0B5A18.9040500@blunn.org> Message-ID: <4E0B5C5C.7000503@blunn.org> On 29/06/2011 18:00, William Blunn wrote: > Perhaps the per-mailbox index files for sdbox and mdbox should be > re-named to "message metadata databases", and the "map index" should > be renamed to "message store database". Also it might be an idea to change the filenames of the files to avoid the word "index". Perhaps use something like "ddb" instead (means "Dovecot database"). So, ${location}/mailboxes/INBOX/dbox-Mails/dovecot.index ${location}/mailboxes/INBOX/dbox-Mails/dovecot.index.cache ${location}/mailboxes/INBOX/dbox-Mails/dovecot.index.log ${location}/storage/dovecot.map.index becomes ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb.cache ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb.log ${location}/storage/dovecot.map.ddb To allow for migration of existing installations, it might be an idea to make Dovecot look for both "ddb" and "index" when opening, but use "ddb" when creating new files. Regards, Bill From dmiller at amfes.com Wed Jun 29 21:06:26 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Wed, 29 Jun 2011 11:06:26 -0700 Subject: [Dovecot] Virtual Servers In-Reply-To: <1309298799.5899.5.camel@tardis> References: <4E08CE9D.7010307@amfes.com> <1309223167.9751.34.camel@tardis> <4E09B7A8.6040509@Media-Brokers.com> <1309298799.5899.5.camel@tardis> Message-ID: > I think we all know who the troll is here > Yup. Me! ** .:\:/:. .:\:\:/:/:. :.:\:\:/:/:.: :=.' - - '.=: '=(\ 9 9 /)=' ( (_) ) /`-vvv-'\ / \ / /|,,,,,|\ \ /_// /^\ \\_\ WW( ( ) )WW __\,,\ /,,/__ (______Y______)** -- Daniel From dmiller at amfes.com Wed Jun 29 21:10:36 2011 From: dmiller at amfes.com (Daniel L. Miller) Date: Wed, 29 Jun 2011 11:10:36 -0700 Subject: [Dovecot] NFS mail storage Message-ID: The parameters listed for nfs installations (mmap_disable, doctlock_use_excl, mail_nfs_storage, mail_nfs_index) - are they necessary for data integrity, and/or do they compensate for NFS latency and improve performance? My understanding is the indexes are a critical part of a dbox storage, but on the other hand having local indexes is a major performance consideration. Is maildir a "better" choice under NFS than dbox? -- Daniel From ml at smtp.fakessh.eu Thu Jun 30 00:01:21 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Wed, 29 Jun 2011 23:01:21 +0200 Subject: [Dovecot] lda root vs lda postfix Message-ID: <201106292301.28098.ml@smtp.fakessh.eu> hello folks hello Timo I am facing a new problem I'm using dovecot LDA to deliver the emails now root of the system emails are delivered in the box to the letter of the postfix directory /vap/spool/postfix I do not know what to do to redirect mail from root to root -- ?http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 ?gpg --keyserver pgp.mit.edu --recv-key 092164A7 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From mslehto at iki.fi Thu Jun 30 00:31:27 2011 From: mslehto at iki.fi (Mikko Lehto) Date: Thu, 30 Jun 2011 00:31:27 +0300 Subject: [Dovecot] Rawlogging uid Message-ID: <20110629213127.GB9913@kapsi.fi> Hi, this is my first post to the list after years of passive following every now and then. Dovecot: 2.0.13 (3d07ab746a67) prebuilt binaries from xi.rename-it.nl OS: i686 Debian 6.0 squeeze/sid I am about to run a setup where users are virtual and their mail is owned by vmail user. I bumped into minor client issue and needed to enable rawlogging according to http://wiki2.dovecot.org/Debugging/Rawlog This is what was printed to log at first try: Jun 29 21:46:25 (null)Fatal: This process must not be run as root I changed service postlogin to contain "user = vmail" and above error disapperead. I also tried "user = dovecot" which seem to work as well. Is vmail or dovecot user more appropriate for raw logging? >From wiki I got the impression that user must be same as the effective UID of logged in user, which in my setup is vmail(121). Also, maybe the (null)Fatal -message could be improved(?). # dovecot -n # 2.0.13 (3d07ab746a67): /etc/dovecot/dovecot.conf # OS: Linux 2.6.26-1-686 i686 Debian squeeze/sid ext3 auth_debug = yes auth_verbose = yes debug_log_path = /var/log/dovecot/debug.log first_valid_gid = 123 first_valid_uid = 121 info_log_path = /var/log/dovecot/info.log last_valid_gid = 123 last_valid_uid = 121 lda_mailbox_autocreate = yes lda_mailbox_autosubscribe = yes lmtp_save_to_detail_mailbox = yes log_path = /var/log/dovecot/dovecot.log mail_debug = yes mail_location = maildir:/home/vmail/%n/Maildir managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { inbox = yes location = prefix = separator = / type = private } passdb { driver = pam } plugin { sieve = /home/vmail/%n/dovecot.sieve sieve_dir = /home/vmail/%n/sieve sieve_extensions = +enotify +subaddress +vacation } protocols = " imap lmtp sieve" rejection_reason = Your message to <%t> was rejected: %r rejection_subject = Mail delivery failed: returning message to sender service auth { unix_listener auth-userdb { group = vmail mode = 0660 } } service imap { executable = imap postlogin } service postlogin { executable = script-login rawlog user = vmail } ssl_cert = References: Message-ID: Shazia Javed writes: > Trying 127.0.0.1... > Connected to 127.0.0.1. > Escape character is '^]'. > * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE > STARTTLS AUTH=PLAIN] Dovecot ready. > ... > > telnet mail.ut.ee 143 > > Trying 193.40.5.156... > Connected to mailhost.ut.ee. > Escape character is '^]'. > * OK IMAP4 ready That is weird. Maybe you got NAT forwarding going on where a firewall or other network appliance (like a load balancer) is translating ip1/143 -> ip2/143? Or you're not on the host you think you're on. You can check the dovecot logs to verify that in fact your client is connecting. Joseph Tam From CMarcus at Media-Brokers.com Thu Jun 30 02:23:45 2011 From: CMarcus at Media-Brokers.com (Charles Marcus) Date: Wed, 29 Jun 2011 19:23:45 -0400 Subject: [Dovecot] lda root vs lda postfix In-Reply-To: <201106292301.28098.ml@smtp.fakessh.eu> References: <201106292301.28098.ml@smtp.fakessh.eu> Message-ID: <4E0BB401.9030601@Media-Brokers.com> On 6/29/2011 5:01 PM, ml at smtp.fakessh.eu wrote: > hello folks > hello Timo > > > I am facing a new problem > I'm using dovecot LDA to deliver the emails > now root of the system emails are delivered in the box to the letter of the > postfix > directory /vap/spool/postfix > > I do not know what to do to redirect mail from root to root root should never receive mails directly and should always be aliased to some other address. -- Best regards, Charles From stan at hardwarefreak.com Thu Jun 30 02:40:01 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Wed, 29 Jun 2011 18:40:01 -0500 Subject: [Dovecot] NFS mail storage In-Reply-To: References: Message-ID: <4E0BB7D1.7070100@hardwarefreak.com> On 6/29/2011 1:10 PM, Daniel L. Miller wrote: > The parameters listed for nfs installations (mmap_disable, > doctlock_use_excl, mail_nfs_storage, mail_nfs_index) - are they > necessary for data integrity, and/or do they compensate for NFS latency > and improve performance? > > My understanding is the indexes are a critical part of a dbox storage, > but on the other hand having local indexes is a major performance > consideration. Is maildir a "better" choice under NFS than dbox? Depends a lot on the latency and IOPS performance of the NFS server, the aggregate concurrent IMAP IO load, and also the inbound new mail delivery rate from the upstream MTA. With either mbox or maildir you can put the indexes on fast local disk, SLC SSD being great for this, keeping a lot of random IO off the NFS server. This isn't possible with dbox storage since, as you noted, the index data is integral to the mail files. Corrupted mbox/maildir indexes are easy to fix, simply delete them and they're auto re-created. Since maildir is IOPS heavy and NFS/GFS/OCFS don't seem to like high IOPS workloads that make heavy use of locking, mbox becomes very attractive due to it's very low IOPS demands. If you can live with the folder tree limitations of mbox, along with a higher probably of mailbox file corruption, mbox is likely the best format for NFS/GFS/OCFS. Again, this all depends on the performance of the NFS server. If you have a properly configured NetApp filer you can probably do anything you want without limitation. If your NFS server is a home grown Linux or *BSD box that suffers high latency and/or low IOPS throughput, you're probably a good candidate for mbox and local index files. Test such a configuration with both mbox and maildir using local indexes on fast loca disk or SSD. If you don't run out of IOPS with maildir it's probably preferable to mbox. -- Stan From noel.butler at ausics.net Thu Jun 30 05:03:32 2011 From: noel.butler at ausics.net (Noel Butler) Date: Thu, 30 Jun 2011 12:03:32 +1000 Subject: [Dovecot] NFS mail storage In-Reply-To: <4E0BB7D1.7070100@hardwarefreak.com> References: <4E0BB7D1.7070100@hardwarefreak.com> Message-ID: <1309399412.8978.2.camel@tardis> On Wed, 2011-06-29 at 18:40 -0500, Stan Hoeppner wrote: > Since maildir is IOPS heavy and NFS/GFS/OCFS don't seem to like high > IOPS workloads that make heavy use of locking, mbox becomes very > attractive due to it's very low IOPS demands. If you can live with the > folder tree limitations of mbox, along with a higher probably of mailbox > file corruption, mbox is likely the best format for NFS/GFS/OCFS. > I don't believe I just read that. Timo I will bite my tongue, look at that the sky today is purple -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 490 bytes Desc: This is a digitally signed message part URL: From tom at elysium.ltd.uk Wed Jun 29 13:45:42 2011 From: tom at elysium.ltd.uk (Tom Clark) Date: Wed, 29 Jun 2011 11:45:42 +0100 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot Message-ID: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> Hi, I'm hoping you'll be able to help. I'm working on a project to migrate our users from a courier-imap (4.3.0) based mail server to a dovecot (2.0.8) mail server. I have got all the users migrated and working. However, I can't see how to migrate the shared folders from courier-imap. I have tried to find extra information all the migration information seems to centre around a user mailbox rather than shared mailboxes. Is it simply a case of setting up the shared folders on dovecot, then copying the messages in, finally running the dovecot migration script across them? Any advice would be greatly appreciated. Thanks, Tom From tss at iki.fi Thu Jun 30 07:09:15 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:09:15 +0300 Subject: [Dovecot] NFS mail storage In-Reply-To: References: Message-ID: <1309406955.10421.998.camel@hurina> On Wed, 2011-06-29 at 11:10 -0700, Daniel L. Miller wrote: > The parameters listed for nfs installations (mmap_disable, > doctlock_use_excl, mail_nfs_storage, mail_nfs_index) - are they > necessary for data integrity, and/or do they compensate for NFS latency > and improve performance? > > My understanding is the indexes are a critical part of a dbox storage, > but on the other hand having local indexes is a major performance > consideration. Is maildir a "better" choice under NFS than dbox? If you have only a single Dovecot server, you don't really need to worry about anything. If you have more, use Dovecot director (with LMTP) and again you don't have to worry about anything. Any other configuration will have random errors regardless of what settings you use. From tss at iki.fi Thu Jun 30 07:12:10 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:12:10 +0300 Subject: [Dovecot] NFS mail storage In-Reply-To: <4E0BB7D1.7070100@hardwarefreak.com> References: <4E0BB7D1.7070100@hardwarefreak.com> Message-ID: <1309407130.10421.1001.camel@hurina> On Wed, 2011-06-29 at 18:40 -0500, Stan Hoeppner wrote: > Since maildir is IOPS heavy and NFS/GFS/OCFS don't seem to like high > IOPS workloads that make heavy use of locking, mbox becomes very > attractive due to it's very low IOPS demands. If you can live with the > folder tree limitations of mbox, along with a higher probably of mailbox > file corruption, mbox is likely the best format for NFS/GFS/OCFS. You shouldn't equate NFS with GFS/OCFS. They have very little in common. The above is more or less true for GFS/OCFS, but definitely not NFS. From tss at iki.fi Thu Jun 30 07:30:10 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:30:10 +0300 Subject: [Dovecot] Rawlogging uid In-Reply-To: <20110629213127.GB9913@kapsi.fi> References: <20110629213127.GB9913@kapsi.fi> Message-ID: <1309408210.10421.1003.camel@hurina> On Thu, 2011-06-30 at 00:31 +0300, Mikko Lehto wrote: > I am about to run a setup where users are virtual and their mail is owned by > vmail user. I bumped into minor client issue and needed to enable rawlogging > according to http://wiki2.dovecot.org/Debugging/Rawlog > > This is what was printed to log at first try: > Jun 29 21:46:25 (null)Fatal: This process must not be run as root > > I changed service postlogin to contain "user = vmail" and above > error disapperead. I also tried "user = dovecot" which seem to work > as well. > > Is vmail or dovecot user more appropriate for raw logging? rawlog looks for ~/dovecot.rawlog/ directory and tries to write there. It doesn't really matter what the user is as long as it can write there. I find it a bit weird if "dovecot" user managed to write there.. You could also have given -d parameter to script-login and it would have figured out the user automatically. > Also, maybe the (null)Fatal -message could be improved(?). Yes, fixed: http://hg.dovecot.org/dovecot-2.0/rev/ed0688858e59 From tss at iki.fi Thu Jun 30 07:35:00 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:35:00 +0300 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0B5C5C.7000503@blunn.org> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> <4E0B5A18.9040500@blunn.org> <4E0B5C5C.7000503@blunn.org> Message-ID: <1309408500.10421.1006.camel@hurina> On Wed, 2011-06-29 at 18:09 +0100, William Blunn wrote: > On 29/06/2011 18:00, William Blunn wrote: > > Perhaps the per-mailbox index files for sdbox and mdbox should be > > re-named to "message metadata databases", and the "map index" should > > be renamed to "message store database". > > Also it might be an idea to change the filenames of the files to avoid > the word "index". > > Perhaps use something like "ddb" instead (means "Dovecot database"). Or simply "db" :) > ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb > ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb.cache > ${location}/mailboxes/INBOX/dbox-Mails/dovecot.ddb.log > ${location}/storage/dovecot.map.ddb Yes, this would be nice, but.. > To allow for migration of existing installations, it might be an idea to > make Dovecot look for both "ddb" and "index" when opening, but use "ddb" > when creating new files. This makes it annoying. It wastes disk I/O.. BTW. Cyrus also has "cyrus.index" file, which is the only storage for message flags. So Dovecot isn't alone with this. From tss at iki.fi Thu Jun 30 07:49:07 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:49:07 +0300 Subject: [Dovecot] Problem accessing Dovecot mailing lists via IMAP In-Reply-To: <4E09B2F5.800@blunn.org> References: <4E09B2F5.800@blunn.org> Message-ID: <1309409347.10421.1007.camel@hurina> On Tue, 2011-06-28 at 11:54 +0100, William Blunn wrote: > I recently tried to look at the Dovecot mailing lists through an > already-configured IMAP profile, which had worked fine in the past. Yeah, it was broken in two ways. Should be working in a few minutes, hopefully :) From tss at iki.fi Thu Jun 30 07:49:46 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:49:46 +0300 Subject: [Dovecot] ldapsearch dump for passwd file: base64 encoded passwords In-Reply-To: <1309349647.28227.62.camel@pcdenny> References: <1309349647.28227.62.camel@pcdenny> Message-ID: <1309409386.10421.1008.camel@hurina> On Wed, 2011-06-29 at 14:14 +0200, Denny Schierz wrote: > is there a way, to let Dovecot2 uses the base64 encoded passwords from a > ldapsearch output, without decode them first? Plaintext passwords? Add "{plain.base64}" prefix to them. From tss at iki.fi Thu Jun 30 07:56:13 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 07:56:13 +0300 Subject: [Dovecot] Dovecot 2.0, mysql and quota In-Reply-To: <4E0B4CA4.5050201@atpss.net> References: <4E0B4CA4.5050201@atpss.net> Message-ID: <1309409773.10421.1010.camel@hurina> On Wed, 2011-06-29 at 18:02 +0200, Claudio Prono wrote: > home=/var/mail/virtual/mediaservice.pri/testquota at mediaservice.pri/ > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota root: > name=User quota backend=maildir args= > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota rule: > root=User quota mailbox=* bytes=1024000 messages=0 > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: > bytes=819200 (80%) messages=0 reverse=no > command=/usr/bin/quota_warning.sh 80 > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: > bytes=921600 (90%) messages=0 reverse=no > command=/usr/bin/quota_warning.sh 90 > Jun 29 17:42:19 lda(testquota at mediaservice.pri): Debug: Quota warning: > bytes=1013760 (99%) messages=0 reverse=no > command=/usr/bin/quota_warning.sh 90 Looks ok. > First question: why i see two times the quota warning check? The second one is for an "internal storage". You can ignore it. > Anyway, if the 80% or 90% of the quota is fullfilled, no warning pops > out.... Are you sure you tested it correctly? It is executed only when a mail is delivered across the 79% -> 80% quota boundary. I don't see any error in your config. From tss at iki.fi Thu Jun 30 08:08:17 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:08:17 +0300 Subject: [Dovecot] Installing Dovecot v2.0.3 from binary files problem In-Reply-To: References: Message-ID: <1309410497.10421.1012.camel@hurina> On Wed, 2011-06-29 at 11:19 +0430, Meisam Navaki wrote: > dovecot: master: Error: service(config): child 8606 killed with signal 11 > (core dumps disabled) config process crashes for some reason. Can you get a gdb backtrace? You should be able to do it simply by: ulimit -c unlimited dovecot gdb /usr/local/libexec/dovecot/config /var/run/dovecot/core (or wherever your config binary is) If the config binary is stripped, this isn't very useful. Then you'd have to build it yourself. From tss at iki.fi Thu Jun 30 08:11:48 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:11:48 +0300 Subject: [Dovecot] Exim and Dovecot2 SASL: 435 Unable to authenticate at present In-Reply-To: <710846ece1b8d37b0be95dd0e1d67b07@telros.ru> References: <710846ece1b8d37b0be95dd0e1d67b07@telros.ru> Message-ID: <1309410708.10421.1013.camel@hurina> On Tue, 2011-06-28 at 21:38 +0400, Sergey Urushkin wrote: > > 29279 received: COOKIE cf735efce15b21bbb10568c4a762017c > 29279 SMTP>> 435 Unable to authenticate at present I guess Exim gets confused by the COOKIE that is sent to it. It should just ignore it, but it fails. Since this COOKIE is important for Dovecot itself, this can only be fixed on Exim side. From tss at iki.fi Thu Jun 30 08:12:26 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:12:26 +0300 Subject: [Dovecot] mirate to dovecot 2.0.13 In-Reply-To: <4E0A0D0B.5050306@libero.it> References: <4E0A0D0B.5050306@libero.it> Message-ID: <1309410746.10421.1014.camel@hurina> On Tue, 2011-06-28 at 19:19 +0200, Giovanni Mancuso wrote: > Hi, > > I have in my system dovecot 1.2.11 and i want migrate to dovecot 2.0.13. > I have 2 Frontend that proxy all request to Backend and i want migrate > first FE and after the BE. > > Can i install dovecot 2.0.13 in FE that proxy all request to BE with > dovecot 1.2.11? Yes. From tss at iki.fi Thu Jun 30 08:13:16 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:13:16 +0300 Subject: [Dovecot] permissions for dbox attachment directory In-Reply-To: <67df3a6b5053ce9d8993c7ec56b7a7f2.squirrel@emailmg.dot5hosting.com> References: <1309220895.10421.974.camel@hurina> <67df3a6b5053ce9d8993c7ec56b7a7f2.squirrel@emailmg.dot5hosting.com> Message-ID: <1309410796.10421.1015.camel@hurina> On Tue, 2011-06-28 at 10:08 -0400, imap at tnde.org wrote: > > On Sat, 2011-06-25 at 03:58 -0400, imap at tnde.org wrote: > >> I am running dovecot 2.0.13 on CentOS5, set up with only local system > >> users, and single instance store set up in a single directory. > >> > >> e.g. > >> mail_attachment_dir = /var/mail/attachments > > > > Currently you can't. I was a bit lazy in implementing this code not to > > preserve permissions. The idea would be anyway that you could > > make /var/mail/attachments 02770 and e.g. group=mail. Then set > > mail_access_groups=mail to Dovecot. Now the code should have created new > > directories under that with the same permissions and the files as 0660, > > but looks like it doesn't. The code is in src/lib-fs/fs-posix.c if you > > want to fix it yourself. You could as a workaround simply change all > > 0600 -> 0660 and 0700 -> 0770 and I guess it would work. > > > Ok, if I understand you correctly, I would need to chmod to 660/770, but > it would only work on existing folders, and every new item will be created > as 600/700? Yes, that's why I suggested modifying the source code so new items would be created with correct mode too. > I guess the best way is setting up virtual users, presumably these work > under a single system account? (for the time being this is running on a > test server, using the simplest setup with system users) Yeah, that's the easiest solution. From tss at iki.fi Thu Jun 30 08:15:26 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:15:26 +0300 Subject: [Dovecot] Question about "Storage keeps breaking" in logs In-Reply-To: <20110628110109.75860@gmx.com> References: <20110628110109.75860@gmx.com> Message-ID: <1309410926.10421.1017.camel@hurina> On Tue, 2011-06-28 at 11:01 +0000, Maria Arrea wrote: > Any other idea about this? Maybe this problem is load-related? All I can really say is that: This just shouldn't be happening, ever. If there's a way to reproduce it I would be interested in knowing how. I know there are other mdbox users who haven't had any corruption trouble for a long time.. From tss at iki.fi Thu Jun 30 08:17:04 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:17:04 +0300 Subject: [Dovecot] Denying user won't work as expected In-Reply-To: <4E0995A3.5050500@esiee.fr> References: <4E08365B.7060909@esiee.fr> <1309219897.10421.966.camel@hurina> <4E0995A3.5050500@esiee.fr> Message-ID: <1309411024.10421.1018.camel@hurina> On Tue, 2011-06-28 at 10:49 +0200, Frank Bonnet wrote: > If I do that the denying does not work , I'we written my login in > > /usr/local/etc/dovecot/deny-users and I am still able to log in ( after restarting dovecot of course ) > see attached the dovecot -n output There is no deny passdb in your dovecot -n output. From ml at smtp.fakessh.eu Thu Jun 30 08:34:39 2011 From: ml at smtp.fakessh.eu (ml at smtp.fakessh.eu) Date: Thu, 30 Jun 2011 07:34:39 +0200 Subject: [Dovecot] lda root vs lda postfix In-Reply-To: <4E0BB401.9030601@Media-Brokers.com> References: <201106292301.28098.ml@smtp.fakessh.eu> <4E0BB401.9030601@Media-Brokers.com> Message-ID: On Wed, 29 Jun 2011 19:23:45 -0400, Charles Marcus wrote: > On 6/29/2011 5:01 PM, ml at smtp.fakessh.eu wrote: >> hello folks >> hello Timo >> >> >> I am facing a new problem >> I'm using dovecot LDA to deliver the emails >> now root of the system emails are delivered in the box to the letter >> of the >> postfix >> directory /vap/spool/postfix >> >> I do not know what to do to redirect mail from root to root > > root should never receive mails directly and should always be aliased > to > some other address. I solved my problem with a new entry in the file virtual of postfix it 's right -- http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 gpg --keyserver pgp.mit.edu --recv-key 092164A7 From tss at iki.fi Thu Jun 30 08:36:09 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:36:09 +0300 Subject: [Dovecot] Dovecot 2.0.13 problem with LMTP In-Reply-To: <0255596D4DD80F4F80FBA92242C83A65B44E26FD4A@GVW1102EXC.americas.hpqcorp.net> References: <0255596D4DD80F4F80FBA92242C83A65B44DAA2E0C@GVW1102EXC.americas.hpqcorp.net> <1309219439.10421.959.camel@hurina> <0255596D4DD80F4F80FBA92242C83A65B44E26FD4A@GVW1102EXC.americas.hpqcorp.net> Message-ID: <1309412169.10421.1020.camel@hurina> Try to apply these patches to both proxy and backend and see what it logs then? http://hg.dovecot.org/dovecot-2.0/raw-rev/1b1fc681a277 http://hg.dovecot.org/dovecot-2.0/raw-rev/36e7ded2ef0b http://hg.dovecot.org/dovecot-2.0/raw-rev/537d4b6d9a7a On Tue, 2011-06-28 at 08:38 +0000, Innocenzi, Cinzia wrote: > Hello Timo, > > so far I've seen this happening when proxying a mail for one recipient; I've never seen this happening for multiple recipients. > > The other thing I've noticed is that if I reload dovecot, the mail usually gets delivered. Once, it remained stuck in the queue, but after a few hours, when I checked postfix's queue again, it got delivered. > > Let me know if you need further information. > > Regards, > > CINZIA INNOCENZI > Technical Consulting > HP Enterprise Services > Telephone +39 06.6542.5758 > Email cinzia.innocenzi at hp.com > Via Achille Campanile, 85 / Rome, Italy 00143 > > > > -----Original Message----- > From: Timo Sirainen [mailto:tss at iki.fi] > Sent: marted? 28 giugno 2011 2.04 > To: Innocenzi, Cinzia > Cc: dovecot at dovecot.org; Del Coiro, Maria Giacinta > Subject: Re: [Dovecot] Dovecot 2.0.13 problem with LMTP > > On Wed, 2011-06-22 at 10:31 +0000, Innocenzi, Cinzia wrote: > > Hello, > > > > we have dovecot 2.0.13 installed in our RHEL5 servers. We use dovecot > > as a lmtp proxy on the front end mail relays and dovecot for back end > > lmtp/pop/imap. All our servers have RHEL5.6 64-bit and dovecot 2.0.13 > > installed, and the back end has also an ext3 mbox file-system mounted. > > > > Sometimes we have mails that get stuck on our postfix queue with the > > following error: Remote server not answering (timeout in DATA input) > > (in reply to end of DATA command) > .. > > It doesn't happen for every single mail, it's random. > > My guess is there's a bug somewhere in the LMTP proxy code. It's a bit > annoyingly complex code.. Do you see this happening when proxying only a > single mail (one RCPT TO per DATA, not multiple)? > > And I would guess that when attempting to deliver the same mail again it > works fine (at least in a few tries)? > > From tss at iki.fi Thu Jun 30 08:37:02 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:37:02 +0300 Subject: [Dovecot] LMTP returncode 450? In-Reply-To: <4E098F82.4020208@one.com> References: <4E087DDF.2020703@one.com> <1309219103.10421.955.camel@hurina> <4E098F82.4020208@one.com> Message-ID: <1309412222.10421.1021.camel@hurina> On Tue, 2011-06-28 at 10:23 +0200, Peter Mogensen wrote: > >> I can see that a lookup in the userdb is done, but now matter what I > >> return (1/111) from my checkpassword script I just get: > > > > Set lmtp_proxy=yes and have passdb lookup return proxy=y and > > host=1.2.3.4. > > But how does the LMTP proxy deal with temporary errors? It has no queue > like the SMTP-server ? The temporary error is proxied all the way back to the sending SMTP server, which puts it back to its queue. From tss at iki.fi Thu Jun 30 08:38:49 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:38:49 +0300 Subject: [Dovecot] Dovecot communication with sasl in dovecot source code In-Reply-To: References: Message-ID: <1309412329.10421.1023.camel@hurina> On Tue, 2011-06-28 at 12:07 +0430, Meisam Navaki wrote: > Hi all, > I'm reading dovecot source codes(2.0.13),and I need to know how dovecot > communicate with sasl? For what purpose? Dovecot's login process communicates with auth process via http://wiki2.dovecot.org/Design/AuthProtocol > I traced the source code from cmd_login function,and found out something > about sasl_callback. > but i never found where this function called and also I couldn't understand > how sasl inform the dovecot from authentication result. > I'll be thankful if someone could help me out. The code is a bit tricky jumping all around.. I can help more if you tell me what it is that you actually want to do. From tss at iki.fi Thu Jun 30 08:41:12 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 08:41:12 +0300 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot In-Reply-To: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> References: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> Message-ID: <1309412472.10421.1025.camel@hurina> On Wed, 2011-06-29 at 11:45 +0100, Tom Clark wrote: > Hi, > > I'm hoping you'll be able to help. I'm working on a project to migrate our > users from a courier-imap (4.3.0) based mail server to a dovecot (2.0.8) > mail server. > > I have got all the users migrated and working. However, I can't see how to > migrate the shared folders from courier-imap. I have tried to find extra > information all the migration information seems to centre around a user > mailbox rather than shared mailboxes. > > Is it simply a case of setting up the shared folders on dovecot, then > copying the messages in, finally running the dovecot migration script across > them? Did you want per-user flags with shared folders? IIRC Courier used some weird symlink directory for that, which won't work with Dovecot. http://wiki2.dovecot.org/SharedMailboxes lists all the ways you can currently do shared folders with Dovecot. From davide.vaghetti at ing.unipi.it Thu Jun 30 10:10:01 2011 From: davide.vaghetti at ing.unipi.it (Davide Vaghetti) Date: Thu, 30 Jun 2011 09:10:01 +0200 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <4E0B549E.40201@blunn.org> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> Message-ID: <4E0C2149.9040801@ing.unipi.it> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 06/29/2011 06:36 PM, William Blunn wrote: > On 28/06/2011 17:13, Davide Vaghetti wrote: >> I have one thousand virtual users with mdbox mailbox format and 10 >> GByte quota. I have noticed some performance problem related to >> I/O (the mailbox disk is a 6TB raid1+0 on ISCSI), so I want to put >> the index files on a different disk. My actual mail_location is: >> >> mail_location = mdbox:/var/vmail/%-1.1u/%u/mdbox >> >> and I want to switch to >> >> mail_location = >> mdbox:/var/vmail/%-1.1u/%u/mdbox:INDEX=/var/indexes/%-1.1u/%u/ >> >> But I cannot figure out a pair of things: >> >> - - do the switch trigger the rebuilding of the index files? > > !!!!! DANGER, DANGER !!!!!! > > Index files cannot be re-generated under mdbox > > Go away and read http://wiki2.dovecot.org/MailboxFormat/dbox > > "... with dbox the Index files actually contain significant data > which is held nowhere else. Index files for both *single-dbox* and > *multi-dbox* contain message flags and keywords. For *multi-dbox*, > the index file also contains the map_uids which link (via the "map > index") to the actual message data. This data cannot be automatically > recreated, so it is important that Index files are treated with the > same care as message data files." > > If you don't already know this, then you probably shouldn't even be > using mdbox. > >> - - can I get rid of all the old index files? > > NO! > >> - - how much the index files (no fts squat) can grow? > > First solve your understanding problem with mdbox, then worry about > details such as this. > Bill, thanks for all the __important__ info. You almost saved my ass ;-) (BTW, that is why I was asking) I'll check again the documentation to better understand index in the mdbox context. Nontheless, I still have to care about the index files grow factor, so if you, or anyone else, can point me to the right documentation, or have a rule of thumbs to know it, please share it. Regards davide - -- Dott. Davide Vaghetti Centro Servizi Informatici Facolta' di Ingegneria Universita' di Pisa PGP: http://keys.keysigning.org:11371/pks/lookup?op=get&search=0x7A1B3BA18C4E0A4D -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk4MIUYACgkQehs7oYxOCk1pHwCfeomYITfTiyAhMC2oQhM3cFhW Vh8AoPBSRflEWP4sFTpD1vgZKya+0KtV =e7rX -----END PGP SIGNATURE----- From tom at elysium.ltd.uk Thu Jun 30 11:07:00 2011 From: tom at elysium.ltd.uk (Tom Clark) Date: Thu, 30 Jun 2011 09:07:00 +0100 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot In-Reply-To: <1309412472.10421.1025.camel@hurina> References: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> <1309412472.10421.1025.camel@hurina> Message-ID: <000901cc36fc$b0ad07d0$12071770$@ltd.uk> Hi Timo, I think I confused everyone by referring to them as shared folders (I was using the Courier phrasing). I'm setting up Public Folders and then limiting access using ACLs. I can get that far as to creating them, I'm just wondering if there was a specific way to migrate from Courier's "public" folders to Dovecot's public folder system, or is it just a case of dropping the mail in? Am I right in thinking Dovecot doesn't have the "cur" and "new" folders on Public folders? If so, we used qmail-deliver (with the -c flag) to deliver our mail into the public folders, how should I go about delivering the mail into those folders? Thanks, Tom -----Original Message----- From: Timo Sirainen [mailto:tss at iki.fi] Sent: 30 June 2011 6:41 AM To: Tom Clark Cc: dovecot at dovecot.org Subject: Re: [Dovecot] Migrating shared folders from courier-imap to dovecot On Wed, 2011-06-29 at 11:45 +0100, Tom Clark wrote: > Hi, > > I'm hoping you'll be able to help. I'm working on a project to migrate our > users from a courier-imap (4.3.0) based mail server to a dovecot (2.0.8) > mail server. > > I have got all the users migrated and working. However, I can't see how to > migrate the shared folders from courier-imap. I have tried to find extra > information all the migration information seems to centre around a user > mailbox rather than shared mailboxes. > > Is it simply a case of setting up the shared folders on dovecot, then > copying the messages in, finally running the dovecot migration script across > them? Did you want per-user flags with shared folders? IIRC Courier used some weird symlink directory for that, which won't work with Dovecot. http://wiki2.dovecot.org/SharedMailboxes lists all the ways you can currently do shared folders with Dovecot. From tss at iki.fi Thu Jun 30 11:08:37 2011 From: tss at iki.fi (Timo Sirainen) Date: Thu, 30 Jun 2011 11:08:37 +0300 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot In-Reply-To: <000901cc36fc$b0ad07d0$12071770$@ltd.uk> References: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> <1309412472.10421.1025.camel@hurina> <000901cc36fc$b0ad07d0$12071770$@ltd.uk> Message-ID: <60C85D10-FDE6-4867-8513-10FDED0DAFDC@iki.fi> On 30.6.2011, at 11.07, Tom Clark wrote: > I think I confused everyone by referring to them as shared folders (I was > using the Courier phrasing). > > I'm setting up Public Folders and then limiting access using ACLs. I can get > that far as to creating them, I'm just wondering if there was a specific way > to migrate from Courier's "public" folders to Dovecot's public folder > system, or is it just a case of dropping the mail in? They're regular maildirs, just use the migration script to them normally. > Am I right in thinking Dovecot doesn't have the "cur" and "new" folders on > Public folders? No. They're normal maildirs with cur/ and new/ directories. From tom at elysium.ltd.uk Thu Jun 30 11:16:52 2011 From: tom at elysium.ltd.uk (Tom Clark) Date: Thu, 30 Jun 2011 09:16:52 +0100 Subject: [Dovecot] Migrating shared folders from courier-imap to dovecot In-Reply-To: <60C85D10-FDE6-4867-8513-10FDED0DAFDC@iki.fi> References: <1efa01cc3649$b1984280$14c8c780$@ltd.uk> <1309412472.10421.1025.camel@hurina> <000901cc36fc$b0ad07d0$12071770$@ltd.uk> <60C85D10-FDE6-4867-8513-10FDED0DAFDC@iki.fi> Message-ID: <003401cc36fe$113faac0$33bf0040$@ltd.uk> Ok great. Thanks for your help Timo. Tom -----Original Message----- From: Timo Sirainen [mailto:tss at iki.fi] Sent: 30 June 2011 9:09 AM To: Tom Clark Cc: dovecot at dovecot.org Subject: Re: [Dovecot] Migrating shared folders from courier-imap to dovecot On 30.6.2011, at 11.07, Tom Clark wrote: > I think I confused everyone by referring to them as shared folders (I was > using the Courier phrasing). > > I'm setting up Public Folders and then limiting access using ACLs. I can get > that far as to creating them, I'm just wondering if there was a specific way > to migrate from Courier's "public" folders to Dovecot's public folder > system, or is it just a case of dropping the mail in? They're regular maildirs, just use the migration script to them normally. > Am I right in thinking Dovecot doesn't have the "cur" and "new" folders on > Public folders? No. They're normal maildirs with cur/ and new/ directories. From claudio.prono at atpss.net Thu Jun 30 11:51:35 2011 From: claudio.prono at atpss.net (Claudio Prono) Date: Thu, 30 Jun 2011 10:51:35 +0200 Subject: [Dovecot] Dovecot 2.0, mysql and quota In-Reply-To: <1309409773.10421.1010.camel@hurina> References: <4E0B4CA4.5050201@atpss.net> <1309409773.10421.1010.camel@hurina> Message-ID: <4E0C3917.5010702@atpss.net> Il 30/06/2011 6.56, Timo Sirainen ha scritto: > On Wed, 2011-06-29 at 18:02 +0200, Claudio Prono wrote: > Are you sure you tested it correctly? It is executed only when a mail is > delivered across the 79% -> 80% quota boundary. > > I don't see any error in your config. > Ok, fixing some things, the script is going to be executed: Jun 30 10:44:07 lda(testquota at mediaservice.pri): Debug: quota: Executing warning: quota-warning 80 testquota at mediaservice.pri But, i have an error anyway. After is executed, i found an error on dovecot-err.log: Jun 30 10:44:07 quota-warning: Error: /usr/bin/quota_warning.sh: line 4: /usr/lib/dovecot/dovecot-lda: Permission denied Jun 30 10:44:07 quota-warning: Error: cat: write error: Broken pipe Jun 30 10:44:07 master: Error: service(quota-warning): child 5627 returned error 126 That are the permissions of /usr/lib/dovecot-lda: -rwsr-s--- 1 root nobody 23560 May 25 13:13 /usr/lib/dovecot/dovecot-lda I report another time my dovecot -n, because i have made some changes.. dovecot -n # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.37.6-0.5-desktop x86_64 openSUSE 11.4 (x86_64) ext3 auth_mechanisms = plain login first_valid_gid = 51 first_valid_uid = 51 info_log_path = /var/log/dovecot-inf.log last_valid_gid = 51 last_valid_uid = 51 log_path = /var/log/dovecot-err.log mail_home = /var/mail/virtual/%d/%u/ mail_location = maildir:/var/mail/virtual/%d/%u managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date namespace { hidden = no inbox = yes list = yes location = prefix = INBOX. subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } plugin { quota = maildir:User quota quota_warning = storage=95%% quota-warning 95 %u quota_warning2 = storage=80%% quota-warning 80 %u quota_warning3 = storage=70%% quota-warning 99 %u sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } protocols = imap pop3 sieve service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } unix_listener auth-master { mode = 0600 } unix_listener auth-userdb { group = nobody mode = 0660 user = postfix } } service imap-login { inet_listener imap { address = 127.0.0.1 port = 143 } } service managesieve-login { executable = /usr/lib/dovecot/managesieve-login } service managesieve { executable = /usr/lib/dovecot/managesieve } service quota-warning { executable = script /usr/bin/quota_warning.sh unix_listener quota-warning { group = postfix mode = 0660 user = postfix } user = postfix } ssl = no userdb { driver = passwd } userdb { args = /etc/dovecot/dovecot-mysql.conf driver = sql } protocol imap { imap_client_workarounds = mail_plugins = quota imap_quota } protocol sieve { managesieve_max_line_length = 65536 plugin { sieve = /var/mail/virtual/%d/%u/.dovecot.sieve sieve_storage = /var/mail/virtual/%d/%u/sieve } } protocol pop3 { mail_plugins = quota pop3_uidl_format = UID%u-%v } protocol lda { auth_socket_path = /var/run/dovecot/auth-master log_path = /var/log/dovecot-lda.log mail_debug = yes mail_plugins = quota sieve postmaster_address = postmaster at mediaservice.net } Where is the problem? Cordially, Claudio Prono -- -------------------------------------------------------------------------------- Claudio Prono OPST System Developer Gsm: +39-349-54.33.258 @PSS Srl Tel: +39-011-32.72.100 Via San Bernardino, 17 Fax: +39-011-32.46.497 10141 Torino - ITALY http://atpss.net/disclaimer -------------------------------------------------------------------------------- PGP Key - http://keys.atpss.net/c_prono.asc From uklaus at hgb-leipzig.de Thu Jun 30 13:53:51 2011 From: uklaus at hgb-leipzig.de (Uwe Klaus) Date: Thu, 30 Jun 2011 12:53:51 +0200 (CEST) Subject: [Dovecot] Mbox corruption - Inbox beginning with 'FFrom' Message-ID: I have two accounts where the inboxes sometimes get corrupted. In that case they begin with "FFrom". I saw similar reports in July/August last year. So I applied the patch http://dovecot.org/pipermail/dovecot/attachments/20100720/e87b32ae/attachment-0001.bin Yesterday a mbox corruption happened again. Here are the log lines. Jun 29 18:08:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:08:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/76, size=32800751 Jun 29 18:09:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:09:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/76, size=32800751 Jun 29 18:09:48 mail dovecot: deliver(xxxxxx): sieve: msgid=: stored mail into mailbox 'INBOX' Jun 29 18:09:48 mail sm-mta[27493]: p5TFl24L014636: to=xxxxxx, delay=00:22:46, xdelay=00:00:00, mailer=local, pri=17899944, dsn=2.0.0, stat=Sent Jun 29 18:10:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:10:13 mail dovecot: POP3(xxxxxx): mbox got corrupted, state=1 Jun 29 18:10:13 mail dovecot: POP3(xxxxxx): mbox got corrupted, state=2 Jun 29 18:10:13 mail dovecot: POP3(xxxxxx): mbox got corrupted, state=4 Jun 29 18:10:13 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=1/2066, del=6/77, size=32802800 Jun 29 18:11:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:11:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/71, size=32777356 Jun 29 18:12:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:12:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/71, size=32777356 Jun 29 18:19:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:19:12 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=0/0, del=0/71, size=32777356 Jun 29 18:19:56 mail dovecot: deliver(xxxxxx): mbox got corrupted, state=0 Jun 29 18:19:56 mail dovecot: deliver(xxxxxx): sieve: msgid=<20110629175547.33981yt5jzia7f9f at mail.hgb-leipzig.de>: failed to store into mailbox 'INBOX': Mailbox isn't a valid mbox file Jun 29 18:19:56 mail dovecot: deliver(xxxxxx): sieve: script /home/xxxxxx/.dovecot.sieve failed with unsuccessful implicit keep Jun 29 18:19:57 mail sm-mta[12213]: p5TFvI0W029582: to=xxxxxx, delay=00:22:39, xdelay=00:00:01, mailer=local, pri=17900128, dsn=2.0.0, stat=Sent Jun 29 18:20:12 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=92.229.xxx.xxx, lip=194.94.211.50, TLS Jun 29 18:20:12 mail dovecot: POP3(xxxxxx): mbox got corrupted, state=0 Jun 29 18:20:12 mail dovecot: POP3(xxxxxx): Couldn't init INBOX: Mailbox isn't a valid mbox file Jun 29 18:20:12 mail dovecot: POP3(xxxxxx): Mailbox init failed top=0/0, retr=0/0, del=0/0, size=0 After removing the first "F": Jun 29 19:06:11 mail dovecot: pop3-login: Login: user=, method=PLAIN, rip=77.5.xxx.xxx, lip=194.94.211.50, TLS Jun 29 19:06:13 mail dovecot: POP3(xxxxxx): Disconnected: Logged out top=0/0, retr=2/4502, del=0/73, size=32781824 # dovecot --version 1.2.17 # dovecot -n # 1.2.17: /usr/pkg/etc/dovecot.conf Warning: fd limit 128 is lower than what Dovecot can use under full load (more than 768). Either grow the limit or change login_max_processes_count and max_mail_processes settings # OS: NetBSD 5.1_STABLE amd64 protocols: imap imaps pop3 pop3s ssl_key_file: /etc/openssl/certs/dovecot.pem disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/pkg/libexec/dovecot/imap-login login_executable(imap): /usr/pkg/libexec/dovecot/imap-login login_executable(pop3): /usr/pkg/libexec/dovecot/pop3-login first_valid_uid: 400 last_valid_uid: 10000 mail_location: mbox:~/mail:INBOX=/var/mail/%u:INDEX=/var/indexes/%u mail_executable(default): /usr/pkg/libexec/dovecot/imap mail_executable(imap): /usr/pkg/libexec/dovecot/imap mail_executable(pop3): /usr/pkg/libexec/dovecot/pop3 mail_plugin_dir(default): /usr/pkg/lib/dovecot/imap mail_plugin_dir(imap): /usr/pkg/lib/dovecot/imap mail_plugin_dir(pop3): /usr/pkg/lib/dovecot/pop3 pop3_uidl_format(default): %08Xu%08Xv pop3_uidl_format(imap): %08Xu%08Xv pop3_uidl_format(pop3): %08Xv%08Xu lda: postmaster_address: postmaster at hgb-leipzig.de mail_plugins: sieve auth default: username_format: %Lu verbose: yes passdb: driver: passwd userdb: driver: passwd plugin: sieve: ~/.dovecot.sieve sieve_global_path: /var/lib/dovecot/sieve/default.sieve sieve_dir: ~/sieve sieve_global_dir: /var/lib/dovecot/sieve/global/ Regards, Uwe From bill+dovecot at blunn.org Thu Jun 30 14:00:09 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 12:00:09 +0100 Subject: [Dovecot] what to expect from changing index location In-Reply-To: <1309408500.10421.1006.camel@hurina> References: <4E09FDA0.9070104@ing.unipi.it> <4E0B549E.40201@blunn.org> <4E0B5A18.9040500@blunn.org> <4E0B5C5C.7000503@blunn.org> <1309408500.10421.1006.camel@hurina> Message-ID: <4E0C5739.2010503@blunn.org> I concede that this is most likely a WIBNI (Wouldn't It Be Nice If...) and most likely will end up on the list of WIBNIs, never to be implemented. But I would like to take the brainstorm forward another step, just to see. On 30/06/2011 05:35, Timo Sirainen wrote: >> To allow for migration of existing installations, it might be an idea to >> make Dovecot look for both "ddb" and "index" when opening, but use >> "ddb" when creating new files. > > This makes it annoying. It wastes disk I/O.. OK fair enough. (Though not actually *disk* I/O /per se/. It is not like we would create any further sync-to-disk requirement (i.e. requiring to wait for another revolution), but rather that it would require more system calls.) Presumably it's important that it works correctly for existing users with minimal risk of problems if people take the path of least resistance (and people don't read the release notes). I imagine many people will not be bothered about some extra failed "open" calls. But we should still have a way to tune for optimal I/O usage so that systems which are "up against it" for performance can be tuned. OK, how about this: A configuration directive like this: filename_word_ddb = ddb index This specifies a list of words which will be tried in the place where we mean to say "ddb" in a filename. If the directive is not present, then the default value would be as per the example above. This should allow existing installations to work correctly using old configuration files. If a new file needs to be created, then it will use the first entry in the list. So new installs will use "ddb" for all such files, and will be optimal where the file exists already, but mildly sub-optimal where the file doesn't exist (because Dovecot would have to try opening each possible variation before being able to know that the file was not openable). In order to tune for I/O, the administrator can reconfigure the list to be just "ddb". Old installs will have existing files with "index" with new files being created with "ddb". This will work correctly, but with some degree of sub-optimality. In order to tune for I/O, the administrator would need to: 1. Configure filename_word_ddb to "ddb index ddb" (to mitigate the race condition where a file is renamed after "ddb" is tried but before "index" is tried) 2. Re-name existing files (from "...index..." to "...ddb...") 3. Check that no files with old names exist 4. Change the list to "ddb" This means that things should work correctly by default, and only get messed-up when people actively go and try to optimise things without paying attention to what they're doing. > BTW. Cyrus also has "cyrus.index" file, which is the only storage for > message flags. So Dovecot isn't alone with this. Though two is still a small sample compared to the weight of existing terminology usage. Besides, Cyrus is somewhat "in-bred", and we would expect it to be quirky :-) Bill From bill+dovecot at blunn.org Thu Jun 30 14:26:37 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 12:26:37 +0100 Subject: [Dovecot] Problem accessing Dovecot mailing lists via IMAP In-Reply-To: <1309409347.10421.1007.camel@hurina> References: <4E09B2F5.800@blunn.org> <1309409347.10421.1007.camel@hurina> Message-ID: <4E0C5D6D.7070008@blunn.org> On 30/06/2011 05:49, Timo Sirainen wrote: > On Tue, 2011-06-28 at 11:54 +0100, William Blunn wrote: >> I recently tried to look at the Dovecot mailing lists through an already-configured IMAP profile, which had worked fine in the past. > Yeah, it was broken in two ways. Should be working in a few minutes, hopefully :) Marvellous, thank-you. I couldn't get the old profile to work. I raised a new profile, but couldn't get it to work using an empty password. I tried using a password of "anonymous", and Thunderbird is now "Downloading message header 24888 of 59255" Thanks again. Regards, Bill From udo.lembke at albertbauer.com Thu Jun 30 13:01:52 2011 From: udo.lembke at albertbauer.com (Udo Lembke) Date: Thu, 30 Jun 2011 12:01:52 +0200 Subject: [Dovecot] Problems with acl and shared namespace Message-ID: <4E0C4990.3070602@albertbauer.com> Hi, i'm a dovecot-newbie and also new at this mailinglist. I'm try to configure an mailserver with dovecot2, postfix and postfixadmin. At this time i struggle with acl and shared namespace. My goal is, that every user get an archive-area on an separate storage without quota (quota isn't running yet). With: namespace { type = private separator = / prefix = "archiv/%u/" location = maildir:/var/data/archiv/%d/%n:INDEX=/var/data/indexes/archiv/%u:LAYOUT=fs inbox = no subscriptions = yes list = yes } I see the folder, but i can't subscribe them (with thunderbird, or roundcube). With roundcube i can add a new folder below - so i use the trick autocreate5 = archiv/%u/archiv autosubscribe5 = archiv/%u/archiv This is as workaround ok - or is this a "must be"?. But the user should also be able to share parts of the archiv-mailbox with other users (partly on different domains). If i change the type of namespace to shared, i can't access the archiv-folder. The logfile shows problems with the acl (but also with private namespace): Jun 30 11:15:11 imap(test at example.com): Debug: Namespace : type=shared, prefix=archiv/test at example.com/, sep=/, inbox=no, hidden=no, list=yes, subscriptions=yes location=maildir:/var/data/archiv/example.com/test:INDEX=/var/data/indexes/archiv/test at example.com:LAYOUT=fs Jun 30 11:15:11 imap(test at example.com): Debug: fs: root=/var/data/archiv/example.com/test, index=/var/data/indexes/archiv/test at example.com, control=, inbox= Jun 30 11:15:11 imap(test at example.com): Debug: acl: initializing backend with data: vfile Jun 30 11:15:11 imap(test at example.com): Debug: acl: acl username = test at example.com Jun 30 11:15:11 imap(test at example.com): Debug: acl: owner = 0 Jun 30 11:15:11 imap(test at example.com): Debug: acl vfile: Global ACL directory: (none) Jun 30 11:15:11 imap(test at example.com): Debug: Namespace : Using permissions from /var/data/mail/example.com/test: mode=0700 gid=-1 Jun 30 11:15:11 imap(test at example.com): Debug: acl vfile: file /var/data/archiv/example.com/test/dovecot-acl not found Jun 30 11:15:11 imap(test at example.com): Debug: autocreate: Failed to create mailbox archiv: Permission denied Jun 30 11:15:11 imap(test at example.com): Debug: Namespace archiv/test at example.com/: Using permissions from /var/data/archiv/example.com/test: mode=0700 gid=-1 Jun 30 11:15:11 imap(test at example.com): Debug: acl vfile: file /var/data/mail/example.com/test/dovecot-acl not found I'm wondering about "...dovecot-acl not found" because dovecot create an file "dovecot-acl-list" : # ls -l /var/data/archiv/example.com/test/ drwx------ 5 dovecot dovecot 4096 30. Jun 10:30 archiv -rw------- 1 dovecot dovecot 0 30. Jun 10:30 dovecot-acl-list Must the acl first initialized? My first try fails also: doveadm acl set -u test at example.com archiv/test at example.com/archiv test at example.com lrw doveadm(test at example.com): Fatal: Invalid ID: test at example.com Not clear for me, what kind of id doveadm needs... I use 2.0.13 for testing. I put my config at the end of the mail. I'm happy if someone can hit me in the right direction, where i make the mistake. Best regards Udo # 2.0.13: /etc/dovecot/dovecot.conf # OS: Linux 2.6.39-2.slh.1-aptosid-amd64 x86_64 Debian wheezy/sid auth_debug = yes auth_socket_path = /var/run/dovecot/auth-userdb auth_verbose = yes auth_verbose_passwords = plain first_valid_gid = 119 first_valid_uid = 110 info_log_path = /var/log/dovecot.log last_valid_uid = 119 lda_mailbox_autocreate = yes mail_debug = yes mail_gid = 119 mail_plugins = acl autocreate quota mail_uid = 110 mbox_very_dirty_syncs = yes namespace { inbox = yes list = yes location = maildir:/var/data/mail/%d/%n:INDEX=/var/data/indexes/mail/%u:LAYOUT=fs prefix = separator = / subscriptions = yes type = private } namespace { inbox = no list = yes location = maildir:/var/data/archiv/%d/%n:INDEX=/var/data/indexes/archiv/%u:LAYOUT=fs prefix = archiv/%u/ separator = / subscriptions = yes type = private } passdb { args = /etc/dovecot/dovecot-sql.conf.ext driver = sql } plugin { acl = vfile acl_shared_dict = file:/var/data/dovecot/shared-mailboxes autocreate = Trash autocreate2 = Spam autocreate3 = Drafts autocreate4 = Sent autocreate5 = archiv/%u/archiv autosubscribe = Trash autosubscribe2 = Spam autosubscribe3 = Drafts autosubscribe4 = Sent autosubscribe5 = archiv/%u/archiv quota = dict:User quota::proxy::quota quota_rule2 = Trash:storage=+55M sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = " imap lmtp pop3" service auth { unix_listener /var/spool/postfix/private/auth { group = postdrop mode = 0660 user = postfix } unix_listener auth-userdb { group = dovecot mode = 0660 user = dovecot } } service dict { unix_listener dict { group = dovecot mode = 0660 user = dovecot } } service imap-login { inet_listener imap { port = 143 } inet_listener imaps { port = 993 ssl = yes } } ssl_cert = Hello everybody, We are updating our old dovecot 1.1 servers to 2.0. We have a farm os servers, with users in nfs filesystems and indexes in local fs. Mail is stored in maildir format. We don't warrant that a user is always directed to the same server, although our load balancer sends all request from one IP to the same server (during a session time with a inactivity timeout). This is the second scenario described at http://wiki2.dovecot.org/NFS. We are now trying to migrate to the third scenario and using mdbox. As an intermediate step, we have configured this second scenario, but with indexes in NFS filesystems. The configuration is: * mmap_disable = yes * dotlock_use_excl = no * mail_nfs_storage = yes * mail_nfs_index = yes * lock_method = fcntl (we have also tried with dotlock) This configuration works without any problems with few users, but with high load, we have a lot of lock timeouts error like: Jun 29 10:24:04 myotis34 dovecot: imap(mpm): Error: Timeout (180s) while waiting for lock for transaction log file /home/pas/01/014601/maildir_indexes/.INBOX/dovecot.index.log These errors cause a corrupted index and we have to manually delete the user's index so he could read his mail again. So we are planning to configure the third scenario. In this configuration, we don't have any problem during our tests if we use maildir format. But if we use mdbox one, we have problems when we have to change the final server for the server (We allways send the user to the same final server, but sometimes, if the server is down, for example, this is not possible). The tests we have done (with POP) are: * I connect to "my" server. There's no problem. I have my mail. I delete a mail. * I connect then to a server that have no index for me. The only problem is that the previously deleted mail appears again. * I connect then to a server with an outdated index: this is the problem. I have only the messages in that outdated index. The mail received since then has disappeared (although I could receive new mail). How could I solve this problem? Is this really a problem? Should I use a shared storage for indexes? What is the best configuration for a high availability service? -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci?n _o) y las Comunicaciones Aplicadas (ATICA) / \\ http://www.um.es/atica _(___V Tfo: 868887590 Fax: 868888337 From stan at hardwarefreak.com Thu Jun 30 15:36:24 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Thu, 30 Jun 2011 07:36:24 -0500 Subject: [Dovecot] NFS mail storage In-Reply-To: <1309407130.10421.1001.camel@hurina> References: <4E0BB7D1.7070100@hardwarefreak.com> <1309407130.10421.1001.camel@hurina> Message-ID: <4E0C6DC8.7080300@hardwarefreak.com> On 6/29/2011 11:12 PM, Timo Sirainen wrote: > On Wed, 2011-06-29 at 18:40 -0500, Stan Hoeppner wrote: > >> Since maildir is IOPS heavy and NFS/GFS/OCFS don't seem to like high >> IOPS workloads that make heavy use of locking, mbox becomes very >> attractive due to it's very low IOPS demands. If you can live with the >> folder tree limitations of mbox, along with a higher probably of mailbox >> file corruption, mbox is likely the best format for NFS/GFS/OCFS. > > You shouldn't equate NFS with GFS/OCFS. They have very little in common. > The above is more or less true for GFS/OCFS, but definitely not NFS. I was under the impression that some NFS server implementations don't have stellar maildir performance with Dovecot clusters due to the NFS caching problem, and locking, which is why I made the distinction between something like a NetApp and a DIY NFS server. Is this not true? Or is this NFS version dependent? Or is my recollection simply faulty? -- Stan From bill+dovecot at blunn.org Thu Jun 30 16:36:21 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 14:36:21 +0100 Subject: [Dovecot] [Urgent] Email Retrieval from remote servers doesn't use Dovecot In-Reply-To: <722016c5563247c99bac1e3956fe6206.squirrel@mailhost.ut.ee> References: <2b4a4e59c63f100cf75222f28be0ee6c.squirrel@mailhost.ut.ee> <4E0B5155.9060901@blunn.org> <722016c5563247c99bac1e3956fe6206.squirrel@mailhost.ut.ee> Message-ID: <4E0C7BD5.5030609@blunn.org> On 30/06/2011 14:08, Shazia Javed wrote: > Thank you for the reply. Now I have relatively better understanding of Dovecot and email service components (MUA, MTA, MRA, etc). However, I am still struggling with the relevant conceptual understanding, and need your help: > > I have installed 'getmail' as I read that it offers ease-of-use and is relatively more secure. So far I have managed to download emails from Inbox and Sent folder. All the downloaded emails go to single folder 'new' from 'Maildir' directory. Please tell me if there is a way (configuration) to download emails in respective folders. "getmail" appears to support delivery to an arbitrary Maildir folder. See "getmail" documentation. You might want to read up about Maildir to see how it works. In particular you need to know that mail is delivered to a directory "new" (the delivery process involves the directory "tmp", but the message isn't considered delivered until it reaches the directory "new"), but gets moved to a folder "cur" when the Maildir is looked at. So mail could be in either directory "new" or "cur". (The design of Maildir attempts to address various problems, and only partially succeeds, and in other cases makes things worse than they would have been otherwise. But despite its flaws, it still has some strengths, such as reliability, (relative) simplicity, wide support, and the ease by which a message store can be queried/interrogated.) > Also, is there any need for Dovecot now? As I see it, I have managed to download emails from remote servers in maildir format using getmail. How and why would Dovecot fit in? Will Dovecot (via deliver and sieve) assist in segregated email storage (i.e. INBOX in 'new', DRAFTS in '.draft/new' etc). It might be handy to have Dovecot installed as it would mean you could "see into" the mail folders using an IMAP client such as Thunderbird. This will probably make it easier to get a handle on which messages are in which folders than trying to look in the Maildir directories directly. IMAP has a special folder called "INBOX" which appears as the Inbox in most IMAP clients. Under Maildir, in the default location, INBOX can be found at ~/Maildir/{new,cur,tmp} Other folders are mapped into directories, for example the mail folder "Sent" will appear at ~/Maildir/.Sent/{new,cur,tmp} Nested mail folders are flattened into a single directory level in the filesystem, with the folder levels separated by dots, so the mail folder "Projects/PJ1" will appear at ~/Maildir/.Projects.PJ1/{new,cur,tmp} (The above is the default way for Maildir to work. However, Dovecot can be configured to map IMAP folders into Maildir directories in other ways.) Bill From bill at blunn.org Thu Jun 30 16:53:11 2011 From: bill at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 14:53:11 +0100 Subject: [Dovecot] dovecot, mdbox and indexes In-Reply-To: <4E0C6BF4.4050203@um.es> References: <4E0C6BF4.4050203@um.es> Message-ID: <4E0C7FC7.8030205@blunn.org> On 30/06/2011 13:28, Angel L. Mateo wrote: > We are now trying to migrate to the third scenario and using mdbox. > > These errors cause a corrupted index and we have to manually > delete the user's index so he could read his mail again. > > * I connect then to a server that have no index for me. The only > problem is that the previously deleted mail appears again. > * I connect then to a server with an outdated index: this is the > problem. I have only the messages in that outdated index. The mail > received since then has disappeared (although I could receive new mail). > > How could I solve this problem? Is this really a problem? Should I > use a shared storage for indexes? What is the best configuration for a > high availability service? > !!!!! DANGER, DANGER !!!!!! Under mdbox, the so-called "indexes" are not indexes in the traditional (database) sense of the word (a file maintained alongside the main data file which is used to speed up access to the main file, and can be regenerated at will), but rather are (binary) database files which contain crucial metadata which is not held anywhere else. These filed cannot be regenerated at will. For example: The so-called "map index" (message store database) contains a (flat) list of all messages in a (user's) mailstore together with their reference counts, which storage file they're stored in. The "folder index" (folder message metadata database) in each folder directory contains a list of the message numbers which are "in" that folder. Those message numbers identify a particular message in the message store database, which identify a particular m.* storage file, and where within that file the message is. Lose these files, and you destroy the information about: * which message is supposed to be in which folder, * which messages are supposed to be deleted and which aren't, and * all message keywords. Under mdbox, losing these files buggerises the mailstore. You may wish to read http://wiki2.dovecot.org/MailboxFormat/dbox "... with dbox the Index files actually contain significant data which is held nowhere else. Index files for both *single-dbox* and *multi-dbox* contain message flags and keywords. For *multi-dbox*, the index file also contains the map_uids which link (via the "map index") to the actual message data. This data cannot be automatically recreated, so it is important that Index files are treated with the same care as message data files." Regards, Bill From bill+dovecot at blunn.org Thu Jun 30 17:03:49 2011 From: bill+dovecot at blunn.org (William Blunn) Date: Thu, 30 Jun 2011 15:03:49 +0100 Subject: [Dovecot] NFS mail storage In-Reply-To: <4E0BB7D1.7070100@hardwarefreak.com> References: <4E0BB7D1.7070100@hardwarefreak.com> Message-ID: <4E0C8245.2020002@blunn.org> On 30/06/2011 00:40, Stan Hoeppner wrote: > If you can live with the folder tree limitations of mbox Did you mean with or without considering http://wiki2.dovecot.org/MboxChildFolders ? Bill From amateo at um.es Thu Jun 30 17:49:45 2011 From: amateo at um.es (Angel L. Mateo) Date: Thu, 30 Jun 2011 16:49:45 +0200 Subject: [Dovecot] dovecot, mdbox and indexes In-Reply-To: <4E0C7FC7.8030205@blunn.org> References: <4E0C6BF4.4050203@um.es> <4E0C7FC7.8030205@blunn.org> Message-ID: <4E0C8D09.6090005@um.es> El 30/06/11 15:53, William Blunn escribi?: > On 30/06/2011 13:28, Angel L. Mateo wrote: >> We are now trying to migrate to the third scenario and using mdbox. >> >> These errors cause a corrupted index and we have to manually delete >> the user's index so he could read his mail again. >> >> * I connect then to a server that have no index for me. The only >> problem is that the previously deleted mail appears again. >> * I connect then to a server with an outdated index: this is the >> problem. I have only the messages in that outdated index. The mail >> received since then has disappeared (although I could receive new mail). >> >> How could I solve this problem? Is this really a problem? Should I use >> a shared storage for indexes? What is the best configuration for a >> high availability service? >> > > !!!!! DANGER, DANGER !!!!!! > > Under mdbox, the so-called "indexes" are not indexes in the traditional > (database) sense of the word (a file maintained alongside the main data > file which is used to speed up access to the main file, and can be > regenerated at will), but rather are (binary) database files which > contain crucial metadata which is not held anywhere else. > > These filed cannot be regenerated at will. > > For example: > > The so-called "map index" (message store database) contains a (flat) > list of all messages in a (user's) mailstore together with their > reference counts, which storage file they're stored in. > > The "folder index" (folder message metadata database) in each folder > directory contains a list of the message numbers which are "in" that > folder. Those message numbers identify a particular message in the > message store database, which identify a particular m.* storage file, > and where within that file the message is. > > Lose these files, and you destroy the information about: > * which message is supposed to be in which folder, > * which messages are supposed to be deleted and which aren't, and > * all message keywords. > > Under mdbox, losing these files buggerises the mailstore. > > You may wish to read http://wiki2.dovecot.org/MailboxFormat/dbox > > "... with dbox the Index files actually contain significant data which > is held nowhere else. Index files for both *single-dbox* and > *multi-dbox* contain message flags and keywords. For *multi-dbox*, the > index file also contains the map_uids which link (via the "map index") > to the actual message data. This data cannot be automatically recreated, > so it is important that Index files are treated with the same care as > message data files." > I know this. That was my question. So, what is the best configuration for a high availabilty environment. An active/passive cluster? From f.bonnet at esiee.fr Thu Jun 30 18:03:52 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Thu, 30 Jun 2011 17:03:52 +0200 Subject: [Dovecot] share an IMAP folder ? Message-ID: <4E0C9058.3000900@esiee.fr> Hello Is it possible to share an Imap folder for a user with another one ? user a > imap-folder1 ^ user b >------| Could user a share his folder "imap-folder1" with user b in readonly mode ? I use "real" users ( not virtuals ) Thanks a lot. From f.bonnet at esiee.fr Thu Jun 30 18:11:56 2011 From: f.bonnet at esiee.fr (Frank Bonnet) Date: Thu, 30 Jun 2011 17:11:56 +0200 Subject: [Dovecot] Fwd: share an IMAP folder ? Message-ID: <4E0C923C.7060909@esiee.fr> Aoops I forgot to write I use MBOX format but thinking to convert to the right format to be able to use shared mailboxes. ( any advices about this convertion welcome ! ) -------- Original Message -------- Subject: [Dovecot] share an IMAP folder ? Date: Thu, 30 Jun 2011 17:03:52 +0200 From: Frank Bonnet To: dovecot at dovecot.org Hello Is it possible to share an Imap folder for a user with another one ? user a> imap-folder1 ^ user b>------| Could user a share his folder "imap-folder1" with user b in readonly mode ? I use "real" users ( not virtuals ) Thanks a lot. From stan at hardwarefreak.com Thu Jun 30 19:39:17 2011 From: stan at hardwarefreak.com (Stan Hoeppner) Date: Thu, 30 Jun 2011 11:39:17 -0500 Subject: [Dovecot] NFS mail storage In-Reply-To: <4E0C8245.2020002@blunn.org> References: <4E0BB7D1.7070100@hardwarefreak.com> <4E0C8245.2020002@blunn.org> Message-ID: <4E0CA6B5.2010908@hardwarefreak.com> On 6/30/2011 9:03 AM, William Blunn wrote: > On 30/06/2011 00:40, Stan Hoeppner wrote: >> If you can live with the folder tree limitations of mbox > > Did you mean with or without considering > http://wiki2.dovecot.org/MboxChildFolders ? I was referring the to the classic mbox limitation of not being able to store both email and sub folders within a given folder. If the example in wiki2 can be successfully implemented without running into any other potential problems (i.e. backup or other software that only works with the standard mbox directory layout), then the only downside to mbox would be the occasional file corruption, as demonstrated in another very recent thread. -- Stan