From list at torpey.org Tue Jan 1 01:37:25 2013 From: list at torpey.org (Torpey List) Date: Mon, 31 Dec 2012 17:37:25 -0600 Subject: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. Message-ID: <3117C05393464F328C974EF66138E07E@Torpey11> Sendmail 8.14.4 dovecot 2.0.9 I have sendmail working and it is sending mail to /var/mail/%u. I have dovecot working in that I can move emails into IMAP folders and I can send email through IMAP. I have set up dovecot to use mdbox based on the following: mail_location = mdbox:~/mail However, I seem to be lacking a key piece of information. Sendmail is sending the mail to /var/mail/%u as a mbox (single file for all emails) format. Dovecot wants to read the mail in mdbox (Multiple messages per file, but unlike mbox multiple files per mailbox.) So the two programs are not working together. So, I cannot get dovecot to read new emails at /var/mail/%u. So I tried changing to the following: mail_location = mdbox:~/mail:INBOX=/var/mail/%u However, dovecot complains that it is NOT a directory. That is because sendmail is sending as mbox format. I have tried two lines of ?mail_location? but that did not work. example mail_location = mdbox:~/mail ----> for dovecot mail_location = mbox:INBOX=/var/mail/%u -----> for sendmail I have tried LMTP and dovecot-lda. LMTP ? I could not see any difference with this added or not. Dovecot-lda ? I have had issues getting it configured. Thanks for any help! Sendmail changes FEATURE(`local_procmail', `/usr/libexec/dovecot/dovecot-lda',`/usr/libexec/dovecot/dovecot-lda -d $u') MODIFY_MAILER_FLAGS(`LOCAL', `-f') MAILER(procmail)dnl Here is dovecot configuration [root at nala mail]# dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-279.14.1.el6.x86_64 x86_64 Scientific Linux release 6.3 (Carbon) auth_mechanisms = plain login mail_gid = mail mail_location = mdbox:~/mail mail_uid = mail mbox_write_locks = fcntl passdb { driver = pam } plugin { mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename mail_log_group_events = yes } service auth { unix_listener auth-userdb { mode = 0600 user = mail } } service lmtp { inet_listener lmtp { address = 192.168.1.185 127.0.0.1 ::1 port = 24 } user = mail } ssl_cert = References: <50E1E429.70002@pacific.net> Message-ID: Thank you very much for the article. It was quite interesting. All thirteen pages! Unless somebody else posts that they've managed to get Sendmail to work with Dovecot virtual users, then I think your suggestion to look at a different MTA might just be the best route to take. Thank you again. I do appreciate it. I hope you have a happy new year! -- All year long!! fp On Dec 31, 2012, at 12:14 PM, Ken A wrote: > Dovecot has no problem with virtual users, but Sendmail's idea of > virtual users is not quite as 'virtual'. > > One possible solution: http://www.cs.fsu.edu/~langley/USVH-tr.pdf > That was 2007.. so perhaps somebody has written this up in a more > concise way.. > > or you can wrestle with ldap. :-( > > or switch MTAs. > > Ken A. > > On 12/30/2012 9:19 PM, DormitionSkete at hotmail.com wrote: >> I'm trying to get Dovecot working with Virtual Users and Sendmail on OpenIndiana 151a7. OpenIndiana is the Open Source continuation of OpenSolaris after Oracle tried to kill it off a couple of years ago shortly after acquiring Sun Microsystems. >> >> I'm not sure if this is so much a Dovecot problem, as much of a Sendmail problem. I thought this would probably be a better list to start with, though. If not, please let me know. >> >> I initially used this Dovecot wiki page to approach this: >> Simple Virtual User Installation >> >> http://wiki2.dovecot.org/HowTo/SimpleVirtualInstall >> >> I had to make few minor changes, but I don't think anything significant to the problem I'm having. >> >> I can log into SquirrelMail with both virtual users, and with system users. >> >> I can send mail to system users from both virtual and system users. >> >> I can see the mail that I sent in the Sent Messages folder for both types of users. >> >> I just can't send mail to virtual users. When I try to, I get the following message: >> >> ERROR: >> Message not sent. Server replied: >> Requested action not taken: mailbox unavailable >> 550 5.1.1 ... User unknown >> My configuration info is as follows: >> >> systemuser at openindiana:~# /usr/local/sbin/dovecot --version >> 2.1.12 >> >> systemuser at openindiana:~# /usr/local/sbin/dovecot -n >> # 2.1.12: /usr/local/etc/dovecot/dovecot.conf >> # OS: SunOS 5.11 i86pc >> auth_verbose = yes >> base_dir = /var/run/dovecot/ >> disable_plaintext_auth = no >> first_valid_uid = 101 >> info_log_path = /var/log/dovecot-info.log >> log_path = /var/log/dovecot.log >> mail_location = mbox:/home/vmail/%u/mail:INBOX=/var/mail/%u >> passdb { >> args = /usr/local/etc/dovecot/passwd >> driver = passwd-file >> } >> pop3_uidl_format = %g >> protocols = imap pop3 >> service auth { >> unix_listener auth-userdb { >> group = vmail >> mode = 0600 >> user = vmail >> } >> } >> ssl = no >> userdb { >> args = uid=vmail gid=vmail home=/home/vmail/%u >> driver = static >> } >> protocol lda { >> postmaster_address = systemuser at localhost >> } >> >> --- >> >> My dovecot password file looks something like this, though changed for obvious security reasons: >> >> systemuser:{PLAIN} systemuserPASS >> virtualuser1:{PLAIN}virtualuser1PASS >> virtualuser2:{PLAIN}virtualuser2PASS >> >> >> --- >> >> I read on this page that I needed to put the following in my sendmail dovecot.m4 file: >> >> Dovecot LDA with Sendmail >> http://wiki2.dovecot.org/LDA/Sendmail >> >> So this is my dovecot.m4 file, which shows up in my sendmail.cf file after recompiling my sendmail.mc file. >> >> ######################*****############## >> ### DOVECOT Mailer specification ### >> ##################*****################## >> Mdovecot, P=/usr/local/libexec/dovecot/dovecot-lda, F=DFMPhnu9, >> S=EnvFromSMTP/HdrFromSMTP, R=EnvToSMTP/HdrFromSMTP, >> T=DNS/RFC822/X-Unix, >> A=/usr/local/libexec/dovecot/dovecot-lda -d $u >> >> >> --- >> >> Finally, this is my sendmail.mc file: >> >> divert(-1) >> # >> # Copyright (c) 1983 Eric P. Allman >> # Copyright (c) 1988, 1993 >> # The Regents of the University of California. All rights reserved. >> # >> # Copyright 2009 Sun Microsystems, Inc. All rights reserved. >> # Use is subject to license terms. >> # >> # This is a configuration file for SunOS 5.8 (a.k.a. Solaris 8) and later >> # subsidiary machines. It has support for local and SMTP mail. The >> # confFALLBACK_SMARTHOST macro is enabled, which means that messages will >> # be sent to that host (which is set to mailhost.$m [$m is the local domain]) >> # if MX records are unavailable. A short-cut rule is also defined, which >> # says if the recipient host is in the local domain, send to it directly >> # instead of the smart host. >> # >> # If you want to customize this further, copy it to a name appropriate >> # for your environment and do the modifications there. >> # >> >> divert(0)dnl >> VERSIONID(`sendmail.mc (Sun)') >> OSTYPE(`solaris8')dnl >> DOMAIN(`solaris-generic')dnl >> define(`confFALLBACK_SMARTHOST', `mailhost$?m.$m$.')dnl >> >> define(`PROCMAIL_MAILER_PATH',`/usr/bin/procmail')dnl >> FEATURE(local_procmail,`',`procmail -t -Y -a $h -d $u')dnl >> >> MAILER(`local')dnl >> MAILER(`smtp')dnl >> >> MAILER(`procmail')dnl >> MAILER(`dovecot')dnl >> >> >> LOCAL_NET_CONFIG >> R$* < @ $* .$m. > $* $#esmtp $@ $2.$m $: $1 < @ $2.$m. > $3 >> >> >> --- >> >> I think it is obvious that it is a problem with Sendmail not recognizing Dovecot's virtual users. But how do I fix it? >> >> If anyone could help me with this, I would *greatly* appreciate it. I've been picking away at this for about three weeks now, and I'm pretty much out of ideas of anything else to try. >> >> Cordially, >> >> Peter, hieromonk >> >> ---- >> Dormition Skete >> Monastery Website: http://www.DormitionSkete.org >> Convent Website: http://www.HolyApostlesConvent.org >> ---- >> >> >> >> >> >> >> >> >> >> >> > > -- > Ken Anderson > Pacific Internet - http://www.pacific.net > Latest Pacific.Net Status - http://twitter.com/pacnetstatus > From daniel.parthey at informatik.tu-chemnitz.de Tue Jan 1 03:08:14 2013 From: daniel.parthey at informatik.tu-chemnitz.de (Daniel Parthey) Date: Tue, 1 Jan 2013 02:08:14 +0100 Subject: [Dovecot] Vacation Notice Not Working In-Reply-To: References: <20121231045655.GA16790@daniel.localdomain> Message-ID: <20130101010814.GA10098@daniel.localdomain> Hi, Happy new year to everyone on this list :) Ch Chai wrote: > >> >> When I try to active Vacation Notice using Egroupware, I can see (xxxx.sieve) > >> >> generated in mail server. but not working. > >> > > >> > * Which sieve related lines can you see in your dovecot logfiles? > > You can find the log file locations by running: > > doveadm log find > * found this path when by run this command : doveadm log find > Debug: /var/log/dovecot-debug.log > Info: /var/log/dovecot-info.log > Warning: /var/log/dovecot.log > Error: /var/log/dovecot.log > Fatal: /var/log/dovecot.log So what can you find in /var/log/dovecot-info.log and /var/log/dovecot.log when a mail is delivered to the test account? > * When I vim /var/www/web1/user/(user name)/.dovecot.sieve ,it will point to my sieve file e.g /var/www/web1/user/web1_test/sieve/test_felamimail.sieve Seems correct. Can you see any .dovecot.sieve.log in the same directory as .dovecot.sieve, there sieve related errors would be written, if any. > * I check back [test_felamimail.sieve] this line ( vacation :days 1 :addresses ["test at acelsys.com "] text: ) there is no space after .com, I don't know why when I 1st time paste into egroupware it will add space for me. I can send/receive mail, just can't activate Vacation Notice. Whats wrong ? The vacation notice seems to be activated, but does not work. We will need some relevant logfile output and doveconf -n output as well as dovecot and pigeonhole version you are using, otherwise it will be difficult to help you. Regards Daniel -- https://plus.google.com/103021802792276734820 From ben at morrow.me.uk Tue Jan 1 04:52:11 2013 From: ben at morrow.me.uk (Ben Morrow) Date: Tue, 1 Jan 2013 02:52:11 +0000 Subject: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. In-Reply-To: <3117C05393464F328C974EF66138E07E@Torpey11> References: <3117C05393464F328C974EF66138E07E@Torpey11> Message-ID: <20130101025211.GB2428@anubis.morrow.me.uk> At 5PM -0600 on 31/12/12 you (Torpey List) wrote: > Sendmail 8.14.4 > dovecot 2.0.9 > > I have sendmail working and it is sending mail to /var/mail/%u. > I have dovecot working in that I can move emails into IMAP folders and > I can send email through IMAP. I have set up dovecot to use mdbox > based on the following: > mail_location = mdbox:~/mail > > However, I seem to be lacking a key piece of information. > Sendmail is sending the mail to /var/mail/%u as a mbox (single file > for all emails) format. > Dovecot wants to read the mail in mdbox (Multiple messages per file, > but unlike mbox multiple files per mailbox.) So the two programs are > not working together. > > So, I cannot get dovecot to read new emails at /var/mail/%u. > So I tried changing to the following: > mail_location = mdbox:~/mail:INBOX=/var/mail/%u > However, dovecot complains that it is NOT a directory. That is > because sendmail is sending as mbox format. > > I have tried two lines of ?mail_location? but that did not work. > example > mail_location = mdbox:~/mail ----> for dovecot > mail_location = mbox:INBOX=/var/mail/%u -----> for sendmail No, that doesn't work: in fact, the second line will completely override the first. If you run 'doveconf -n' or 'doveconf mail_location' you will see that the first line doesn't have any effect. If you want to keep INBOX delivery to mboxes in /var/mail, you can do this using two namespaces. One points to mdbox:~/mail, and holds the users' ordinary IMAP folders in mdbox format, and the other has INBOX=/var/mail/%u and just holds the INBOX. There is an example in http://wiki2.dovecot.org/Namespaces of doing this with Maildir and mbox; adjusting it for mdbox shouldn't be hard. You will find you need a directory for each user to hold the other folders in the INBOX namespace, since Dovecot doesn't know there won't ever be any. This directory is also used to store Dovecot's index files for that namespace, and it should *not* be the same as the mdbox directory. According to http://wiki2.dovecot.org/MailLocation/mbox , you can skip this if you use location = mbox:/var/empty:INBOX=/var/mail/%u:INDEX=MEMORY (assuming /var/empty is a readonly root-owned empty directory), but since this tells Dovecot not to store index files on disk it may make INBOX access less efficient. If you use a real directory rather than /var/empty you may want to consider enabling the acl plugin and setting up a global ACL which prevents users from creating additional folders in the INBOX namespace. It's probably also a good idea to set mail_location = mdbox:~/mail and omit the location parameter from the mdbox namespace, since IIRC otherwise commands like 'doveadm purge' won't work correctly. > I have tried LMTP and dovecot-lda. If you want to deliver mail into the mdbox INBOX, and forget about /var/mail altogether, you will need to get one of these two working since Sendmail doesn't understand mdbox. This is probably the best option in the long run, unless you have other software which relies on mail being in /var/mail. If you pick this option you need to remove all references to /var/mail from dovecot.conf; with the two lines you had above Dovecot will simply carry on delivering into /var/mail just as Sendmail had been. > LMTP ? I could not see any difference with this added or not. If you had configured Dovecot to deliver into /var/mail, that's hardly surprising. Otherwise, are you sure you were delivering mail to the LMTP server? If you were you should have seen entries in Dovecot's log file, and the delivered mail should have ended up with a Received header from the LMTP server. > Dovecot-lda ? I have had issues getting it configured. What issues? If you were trying to get the LDA to deliver to /var/mail, it's possible you were running into permissions problems. The best solution is to deliver into the mdbox instead, or just leave Sendmail to deliver to /var/mail. > Sendmail changes > FEATURE(`local_procmail', > `/usr/libexec/dovecot/dovecot-lda',`/usr/libexec/dovecot/dovecot-lda > -d $u') > MODIFY_MAILER_FLAGS(`LOCAL', `-f') > MAILER(procmail)dnl I know nothing at all about Sendmail configuration, but going by the Dovecot wiki that looks correct. Are you sure mail for the appropriate users was actually getting routed through that mailer? What did you see in the logs (you need to check both Dovecot's and Sendmail's logs, wherever they may be). Ben From me at junc.eu Tue Jan 1 06:34:00 2013 From: me at junc.eu (Benny Pedersen) Date: Tue, 01 Jan 2013 05:34:00 +0100 Subject: [Dovecot] Vacation Notice Not Working In-Reply-To: References: Message-ID: <210bb93c78f09092d6d00d17338e223e@junc.eu> Ch Chai skrev den 2012-12-31 08:11: > * found this path when by run this command : doveadm log find > Debug: /var/log/dovecot-debug.log > Info: /var/log/dovecot-info.log above 2 is a good example on how to make it logs > Warning: /var/log/dovecot.log > Error: /var/log/dovecot.log > Fatal: /var/log/dovecot.log nothing works here since there is 2 filelooks on the first one so no important error fatal is logged make them as seperate log files should resolve that Warning: /var/log/dovecot-warning.log Error: /var/log/dovecot-error.log Fatal: /var/log/dovecot-fatal.log nope ? From dormitionskete at hotmail.com Tue Jan 1 06:53:05 2013 From: dormitionskete at hotmail.com (DormitionSkete@hotmail.com) Date: Mon, 31 Dec 2012 21:53:05 -0700 Subject: [Dovecot] Dovecot Virtual Users with Sendmail In-Reply-To: <1357011245.4257.22.camel@tardis> References: <50E1E429.70002@pacific.net> <1357011245.4257.22.camel@tardis> Message-ID: Well our situation is kind of like this: We've been using UW-Imap for 12-15 years, and have loved it. It has a beauty and simplicity to it that is simply wonderful. We're located in a remote part of the Rocky Mountains, and the only internet connection we can get that's faster than a dial-up is a satellite. Lousy upload speeds. Can't host our own sites here. We've been hosting our sites on one of our parishioner's servers for years; but through the years, that's become more and more problematic, and we'd like to do more with it than we currently can. We'd like to set up our own server at our guest house in town. I wanted to use OpenIndiana (Solaris) to take advantage of some of the really amazing features it has. So, I set up UW-Imap on it. Works great. Glory be to our holy God. The problem is, after I got all that working, I went to set up the users for it, and discovered the GUI for creating the users won't allow me to add any users with usernames longer than eight characters. I'm not real dependent on GUI's, and a quick search on the net told me that I can easily add the users with the long user names from the command line. So, I asked on the UW-Imap and on the OpenIndiana list for people's experience about this. Two people said they'd been using long user names on Solaris and BSD for years without any problems, while two others recommended changing to an IMAP server that supports virtual users. One of those recommended Dovecot. So I started looking at Dovecot. I'm not real keen on Sendmail, but to make matters worse, we host our own email on our server here in the mountains. Since we can't get reverse DNS set up for our satellite connection, we have to relay our emails through our parishioner's server, which does have reverse DNS, or else most people's email servers reject them as spam. We also need to be able to send and receive emails from multiple domains. So, I have to be able to figure out how to do both parts of the relay -- our part where we tell our MTA to relay it through the other host, and what will become the server at our guest house to accept those emails and relay them on to the recipients. And the multiple domain issue. I can do all this with UW-Imap and Sendmail, because we've already done all the fighting necessary to get it to work. We've been doing it for years. It just leaves us with the question of whether it's better to go with using UW-Imap on a system that's not designed to support long user names, and possibly getting bit by that, or whether it's better to fight it out trying to learn all this other stuff with a different IMAP server and MTA? Fun! I could probably get Cyrus IMAP to work with Sendmail, because I tried it briefly years ago and already have gone through the grief of figuring that out. But I didn't particularly care for it. One of the things I like most about UW-Imap -- and Dovecot shares this -- is that it's easy to backup, restore inadvertently deleted directories, and to move emails from one server to another. From what I remember, Cyrus wasn't so friendly about that. And it was more difficult to administer than UW-Imap and Dovecot. After reading the 13-page article Ken posted this afternoon, I started looking at Postfix. My impression is, that maybe this might be a good route to try. Dovecot - PostFix - and if I'm going to go through all that, I might as well go with Sieve, instead of Procmail, like we've been using for years. I used Sieve briefly with Cyrus. I've never been thrilled with Procmail. So, with all that background, if anyone would like to share any suggestions or advice, I would certainly appreciate it. Cordially, Peter, hieromonk On Dec 31, 2012, at 8:34 PM, Noel Butler wrote: > On Mon, 2012-12-31 at 16:52 -0700, DormitionSkete at hotmail.com wrote: >> >> Thank you very much for the article. It was quite interesting. All thirteen pages! >> >> Unless somebody else posts that they've managed to get Sendmail to work with Dovecot virtual users, then I think your suggestion to look at a different MTA might just be the best route to take. >> >> Thank you again. I do appreciate it. >> >> I hope you have a happy new year! -- All year long!! >> >> fp >> >> > Hi, > Years (well decade) ago we used Sendmail, then we started having more domains, it was getting very messy, the choice was move to Cyrus or change our MTA,Cyrus was a maze of bdb hell it was very picky, so it never made it off the dev box, moved to qmail with vpopmail , but then qmail was useless as a ..... on a bull, so we used sendmail up front redirecting to qmail, in 2008 we re structured and moved to postfix and dovecot and never looked back since. > > If you don't have a central portal, there is code out there to allow you and your domain managers and their users to manage their mail, postfixadmin (I never really liked) or vmail manager GRS from grsoft, wrote by Peter Gutwein which is what I use personally. > > I was a long time fan of sendmail, but I tried to get mysql options included to make virtual users easy, but it was decided that would not happen, and as I predicted, sendmails popularity would suffer because of it, since postfix w/mysql is a breeze. > > So learn from everyone else's lessons, and give very serious consideration to changing your setup now, before you get too big an the change will become a nightmare > > From pj.netfilter at gmail.com Tue Jan 1 09:18:04 2013 From: pj.netfilter at gmail.com (Joy) Date: Tue, 1 Jan 2013 12:48:04 +0530 Subject: [Dovecot] Help with LDA Message-ID: Hi, Can anyone tell me how to specify correctly the following line:- |/var/qmail/bin/preline -f /usr/local/dovecot/libexec/dovecot/dovecot-lda -d $USER@$DOMAIN i want dovecot lda to look for mail address instead of uid which is without domain in my case. Thanks From list at torpey.org Tue Jan 1 16:44:02 2013 From: list at torpey.org (Torpey List) Date: Tue, 01 Jan 2013 08:44:02 -0600 Subject: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. In-Reply-To: <20130101025211.GB2428@anubis.morrow.me.uk> References: <3117C05393464F328C974EF66138E07E@Torpey11> <20130101025211.GB2428@anubis.morrow.me.uk> Message-ID: <1AB6E3F435994396A0F241CF81BC0D44@Torpey11> -----Original Message----- From: Ben Morrow Sent: Monday, December 31, 2012 8:52 PM To: Dovecot Mailing List Subject: Re: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. At 5PM -0600 on 31/12/12 you (Torpey List) wrote: >> Sendmail 8.14.4 >> dovecot 2.0.9 >> >> I have sendmail working and it is sending mail to /var/mail/%u. >> I have dovecot working in that I can move emails into IMAP folders and >> I can send email through IMAP. I have set up dovecot to use mdbox >> based on the following: >> mail_location = mdbox:~/mail >> >> However, I seem to be lacking a key piece of information. >> Sendmail is sending the mail to /var/mail/%u as a mbox (single file >> for all emails) format. >> Dovecot wants to read the mail in mdbox (Multiple messages per file, >> but unlike mbox multiple files per mailbox.) So the two programs are >> not working together. >> >> So, I cannot get dovecot to read new emails at /var/mail/%u. >> So I tried changing to the following: >> mail_location = mdbox:~/mail:INBOX=/var/mail/%u >> However, dovecot complains that it is NOT a directory. That is >> because sendmail is sending as mbox format. >> >> I have tried two lines of ?mail_location? but that did not work. >> example >> mail_location = mdbox:~/mail ----> for dovecot >> mail_location = mbox:INBOX=/var/mail/%u -----> for sendmail > >No, that doesn't work: in fact, the second line will completely override >the first. If you run 'doveconf -n' or 'doveconf mail_location' you will >see that the first line doesn't have any effect. > I did not expect it to work, but I was trying all that I could before posting a question. >If you want to keep INBOX delivery to mboxes in /var/mail, you can do >this using two namespaces. One points to mdbox:~/mail, and holds the >users' ordinary IMAP folders in mdbox format, and the other has >INBOX=/var/mail/%u and just holds the INBOX. There is an example in >http://wiki2.dovecot.org/Namespaces of doing this with Maildir and mbox; >adjusting it for mdbox shouldn't be hard. > >You will find you need a directory for each user to hold the other >folders in the INBOX namespace, since Dovecot doesn't know there won't >ever be any. This directory is also used to store Dovecot's index files >for that namespace, and it should *not* be the same as the mdbox >directory. According to http://wiki2.dovecot.org/MailLocation/mbox , you >can skip this if you use > > location = mbox:/var/empty:INBOX=/var/mail/%u:INDEX=MEMORY > >(assuming /var/empty is a readonly root-owned empty directory), but >since this tells Dovecot not to store index files on disk it may make >INBOX access less efficient. If you use a real directory rather than >/var/empty you may want to consider enabling the acl plugin and setting >up a global ACL which prevents users from creating additional folders in >the INBOX namespace. > >It's probably also a good idea to set mail_location = mdbox:~/mail and >omit the location parameter from the mdbox namespace, since IIRC >otherwise commands like 'doveadm purge' won't work correctly. > I am going to try an option below. >> I have tried LMTP and dovecot-lda. > >If you want to deliver mail into the mdbox INBOX, and forget about >/var/mail altogether, you will need to get one of these two working >since Sendmail doesn't understand mdbox. This is probably the best >option in the long run, unless you have other software which relies on >mail being in /var/mail. If you pick this option you need to remove all >references to /var/mail from dovecot.conf; with the two lines you had >above Dovecot will simply carry on delivering into /var/mail just as >Sendmail had been. > I would like to deliver new mail into the mdbox INBOX and forget about /var/mail but I did not see how to do this. I think that was the piece of information that I am missing. >> LMTP ? I could not see any difference with this added or not. > >If you had configured Dovecot to deliver into /var/mail, that's hardly >surprising. Otherwise, are you sure you were delivering mail to the LMTP >server? If you were you should have seen entries in Dovecot's log file, >and the delivered mail should have ended up with a Received header from >the LMTP server. > I have used egrep and there is no line that has /var/mail that is uncommented in any of the config files. Based on your comment, then no I do not believe the new mail was going through LMTP. >> Dovecot-lda ? I have had issues getting it configured. > >What issues? If you were trying to get the LDA to deliver to /var/mail, >it's possible you were running into permissions problems. The best >solution is to deliver into the mdbox instead, or just leave Sendmail to >deliver to /var/mail. > >> Sendmail changes >> FEATURE(`local_procmail', >> `/usr/libexec/dovecot/dovecot-lda',`/usr/libexec/dovecot/dovecot-lda >> -d $u') >> MODIFY_MAILER_FLAGS(`LOCAL', `-f') >> MAILER(procmail)dnl > >I know nothing at all about Sendmail configuration, but going by the >Dovecot wiki that looks correct. Are you sure mail for the appropriate >users was actually getting routed through that mailer? What did you see >in the logs (you need to check both Dovecot's and Sendmail's logs, >wherever they may be). > >Ben Thanks for the information. The email is not being delivered by LTMP because there are no logs. The most documentation that I have found is using dovecot-lda, but as you said there are permissions issues. The wiki implied that LTMP is the best solution but I am not understanding enough to get it set up. Therefore, I am attempting to stick with dovecot-lda *using sudo* from the dovecot-lda wiki page. The wiki said to put /usr/bin/sudo in front of path/dovecot-lda but did not say which one or both. I could not get it to work. The option that has gone the furthest is *Making dovecot-lda setuid-root*. However, I have errors. Here are the permissions. -rwxr-xr-x. 1 root secmail 26512 Aug 18 2011 /usr/libexec/dovecot/dovecot-lda srw-------. 1 mail root 0 Jan 1 08:39 /var/run/dovecot/auth-userdb Errors..... ==> /var/log/maillog <== Jan 1 08:24:02 nala sendmail[20154]: r01EO2qc020154: from=, size=5723, class=0, nrcpts=1, msgid=<1357050226.83142.YahooMailNeo at web120205.mail.ne1.yahoo.com>, proto=ESMTP, daemon=MTA, relay=mail.example.com [192.168.1.152] Jan 01 08:24:02 lda: Error: userdb lookup: connect(/var/run/dovecot/auth-userdb) failed: Permission denied (euid=0(root) egid=0(root) missing +r perm: /var/run/dovecot/auth-userdb, euid is dir owner) Jan 01 08:24:02 lda: Fatal: Internal error occurred. Refer to server log for more information. Jan 1 08:24:02 nala sendmail[20155]: r01EO2qc020154: to=user at example.com, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=35889, dsn=4.0.0, stat=Deferred: local mailer (/usr/libexec/dovecot/dovecot-lda) exited with EX_TEMPFAIL ==> /var/log/messages <== Jan 1 08:24:02 nala kernel: type=1400 audit(1357050242.947:42): avc: denied { dac_override } for pid=20156 comm="dovecot-lda" capability=1 scontext=unconfined_u:system_r:dovecot_deliver_t:s0 tcontext=unconfined_u:system_r:dovecot_deliver_t:s0 tclass=capability Jan 1 08:24:02 nala kernel: type=1400 audit(1357050242.947:43): avc: denied { dac_override } for pid=20156 comm="dovecot-lda" capability=1 scontext=unconfined_u:system_r:dovecot_deliver_t:s0 tcontext=unconfined_u:system_r:dovecot_deliver_t:s0 tclass=capability Jan 1 08:24:02 nala kernel: type=1400 audit(1357050242.947:44): avc: denied { dac_read_search } for pid=20156 comm="dovecot-lda" capability=2 scontext=unconfined_u:system_r:dovecot_deliver_t:s0 tcontext=unconfined_u:system_r:dovecot_deliver_t:s0 tclass=capability So, the error appears to be related to /var/run/dovecot/auth-userdb. I have made various permission and owner changes; however, restarting dovecot always returns it to the permissions above. So, even if I find a combination that works, dovecot is going to put it back. Thanks for any help, Steve From tlx at leuxner.net Tue Jan 1 17:03:35 2013 From: tlx at leuxner.net (Thomas Leuxner) Date: Tue, 1 Jan 2013 16:03:35 +0100 Subject: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. In-Reply-To: <1AB6E3F435994396A0F241CF81BC0D44@Torpey11> References: <3117C05393464F328C974EF66138E07E@Torpey11> <20130101025211.GB2428@anubis.morrow.me.uk> <1AB6E3F435994396A0F241CF81BC0D44@Torpey11> Message-ID: <35DF5C85-6B36-4662-B4FE-0DACA358166B@leuxner.net> Am 01.01.2013 um 15:44 schrieb "Torpey List" : > ==> /var/log/maillog <== > Jan 1 08:24:02 nala sendmail[20154]: r01EO2qc020154: from=, size=5723, class=0, nrcpts=1, msgid=<1357050226.83142.YahooMailNeo at web120205.mail.ne1.yahoo.com>, proto=ESMTP, daemon=MTA, relay=mail.example.com [192.168.1.152] > Jan 01 08:24:02 lda: Error: userdb lookup: connect(/var/run/dovecot/auth-userdb) failed: Permission denied (euid=0(root) egid=0(root) missing +r perm: /var/run/dovecot/auth-userdb, euid is dir owner) > Jan 01 08:24:02 lda: Fatal: Internal error occurred. Refer to server log for more information. I don't use Sendmail myself so I can't really comment on its configuration. However the issue looks like a typical mismatch of UIDs on the socket: http://wiki2.dovecot.org/LDA/Sendmail As per the link above you could try running 'chown mail' on the LDA. This will match the ID to the 'userdb' socket unix_listener (user = mail): > -rwxr-xr-x. 1 root secmail 26512 Aug 18 2011 /usr/libexec/dovecot/dovecot-lda > srw-------. 1 mail root 0 Jan 1 08:39 /var/run/dovecot/auth-userdb Good Luck Thomas -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4364 bytes Desc: not available URL: From list at torpey.org Tue Jan 1 17:50:16 2013 From: list at torpey.org (Torpey List) Date: Tue, 01 Jan 2013 09:50:16 -0600 Subject: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. In-Reply-To: <35DF5C85-6B36-4662-B4FE-0DACA358166B@leuxner.net> References: <3117C05393464F328C974EF66138E07E@Torpey11><20130101025211.GB2428@anubis.morrow.me.uk><1AB6E3F435994396A0F241CF81BC0D44@Torpey11> <35DF5C85-6B36-4662-B4FE-0DACA358166B@leuxner.net> Message-ID: <404E1A610577497F86A65AE502B986EA@Torpey11> -----Original Message----- From: Thomas Leuxner Sent: Tuesday, January 01, 2013 9:03 AM To: Dovecot Mailing List Subject: Re: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. Am 01.01.2013 um 15:44 schrieb "Torpey List" : >I don't use Sendmail myself so I can't really comment on its configuration. >However the issue looks like a typical mismatch of UIDs on the socket: > >http://wiki2.dovecot.org/LDA/Sendmail > >As per the link above you could try running 'chown mail' on the LDA. This >will match the ID to the 'userdb' socket unix_listener (user = mail): > >> -rwxr-xr-x. 1 root secmail 26512 Aug 18 2011 >> /usr/libexec/dovecot/dovecot-lda >> srw-------. 1 mail root 0 Jan 1 08:39 >> /var/run/dovecot/auth-userdb > >Good Luck >Thomas I have changed the permissions to the following: -rwxr-xr-x. 1 mail secmail 26512 Aug 18 2011 /usr/libexec/dovecot/dovecot-lda srw-rw-rw-. 1 mail secmail 0 Jan 1 09:41 /var/run/dovecot/auth-userdb Then I get this error (steve is who the email is addressed to): Jan 01 09:43:47 lda(steve): Fatal: setgid(501(steve)) failed with euid=0(root), gid=0(root), egid=0(root): Operation not permitted (This binary should probably be called with process group set to 501(steve) instead of 0(root)) Thanks, Steve From rgm at htt-consult.com Tue Jan 1 18:07:15 2013 From: rgm at htt-consult.com (Robert Moskowitz) Date: Tue, 01 Jan 2013 11:07:15 -0500 Subject: [Dovecot] dovecot and avahi Message-ID: <50E309B3.5040003@htt-consult.com> I am trying to figure out if I need avahi on my mail server. I see that POP3 and IMAP are services that Avahi can advertise/discover. Does Dovecot work with Avahi and how do you get POP3 and IMAP advertised? And perhaps more importantly, what clients look for mail services this way? I can't find any information on this in the Dovecot documentation ot googling. Perhaps my search fu is low this year. thank you From h.reindl at thelounge.net Tue Jan 1 18:13:09 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 01 Jan 2013 17:13:09 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E309B3.5040003@htt-consult.com> References: <50E309B3.5040003@htt-consult.com> Message-ID: <50E30B15.3000407@thelounge.net> Am 01.01.2013 17:07, schrieb Robert Moskowitz: > I am trying to figure out if I need avahi on my mail server. I see that POP3 and IMAP are services that Avahi can > advertise/discover. Does Dovecot work with Avahi and how do you get POP3 and IMAP advertised? > > And perhaps more importantly, what clients look for mail services this way? avahi does NOT get routed to internet since most clienst are not in the private network why would someone advertise mail-services via avahi? -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From rgm at htt-consult.com Tue Jan 1 18:23:06 2013 From: rgm at htt-consult.com (Robert Moskowitz) Date: Tue, 01 Jan 2013 11:23:06 -0500 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E30B15.3000407@thelounge.net> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> Message-ID: <50E30D6A.4050705@htt-consult.com> On 01/01/2013 11:13 AM, Reindl Harald wrote: > > Am 01.01.2013 17:07, schrieb Robert Moskowitz: >> I am trying to figure out if I need avahi on my mail server. I see that POP3 and IMAP are services that Avahi can >> advertise/discover. Does Dovecot work with Avahi and how do you get POP3 and IMAP advertised? >> >> And perhaps more importantly, what clients look for mail services this way? > avahi does NOT get routed to internet > > since most clienst are not in the private network why would > someone advertise mail-services via avahi? For clients on your local net. Why are the services POP3 and IMAP in the Avahi database? try ahavi-browse -b Say a small business is running a local mail server, perhaps using fetchmail to get their gmail accounts and such. And they have a bunch of MACs in the office. How were mail clients discovering the local mail server? Apple users like automagic stuff. Note I have NOT used, and rarely agreed to support Apple systems since the Lisa. From tom at whyscream.net Tue Jan 1 18:24:41 2013 From: tom at whyscream.net (Tom Hendrikx) Date: Tue, 01 Jan 2013 17:24:41 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E30B15.3000407@thelounge.net> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> Message-ID: <50E30DC9.5070908@whyscream.net> On 01-01-13 17:13, Reindl Harald wrote: > > > Am 01.01.2013 17:07, schrieb Robert Moskowitz: >> I am trying to figure out if I need avahi on my mail server. I see that POP3 and IMAP are services that Avahi can >> advertise/discover. Does Dovecot work with Avahi and how do you get POP3 and IMAP advertised? >> >> And perhaps more importantly, what clients look for mail services this way? > > avahi does NOT get routed to internet > > since most clienst are not in the private network why would > someone advertise mail-services via avahi? > If you want to advertise your mail config for easy setup over the internet, take a look at: http://www.automx.org/ -- Tom -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 899 bytes Desc: OpenPGP digital signature URL: From list at torpey.org Tue Jan 1 18:34:39 2013 From: list at torpey.org (Torpey List) Date: Tue, 01 Jan 2013 10:34:39 -0600 Subject: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. In-Reply-To: <404E1A610577497F86A65AE502B986EA@Torpey11> References: <3117C05393464F328C974EF66138E07E@Torpey11><20130101025211.GB2428@anubis.morrow.me.uk><1AB6E3F435994396A0F241CF81BC0D44@Torpey11><35DF5C85-6B36-4662-B4FE-0DACA358166B@leuxner.net> <404E1A610577497F86A65AE502B986EA@Torpey11> Message-ID: -----Original Message----- From: Torpey List Sent: Tuesday, January 01, 2013 9:50 AM To: Dovecot Mailing List Subject: Re: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. >-----Original Message----- >From: Thomas Leuxner >Sent: Tuesday, January 01, 2013 9:03 AM >To: Dovecot Mailing List >Subject: Re: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. > >Am 01.01.2013 um 15:44 schrieb "Torpey List" : > >>I don't use Sendmail myself so I can't really comment on its >>configuration. However the issue looks like a typical mismatch of UIDs on >>the socket: >> >>http://wiki2.dovecot.org/LDA/Sendmail >> >>As per the link above you could try running 'chown mail' on the LDA. This >>will match the ID to the 'userdb' socket unix_listener (user = mail): >> >>> -rwxr-xr-x. 1 root secmail 26512 Aug 18 2011 >>> /usr/libexec/dovecot/dovecot-lda >>> srw-------. 1 mail root 0 Jan 1 08:39 >>> /var/run/dovecot/auth-userdb >> >>Good Luck >>Thomas > >I have changed the permissions to the following: >-rwxr-xr-x. 1 mail secmail 26512 Aug 18 2011 >/usr/libexec/dovecot/dovecot-lda >srw-rw-rw-. 1 mail secmail 0 Jan 1 09:41 /var/run/dovecot/auth-userdb > >Then I get this error (steve is who the email is addressed to): > >Jan 01 09:43:47 lda(steve): Fatal: setgid(501(steve)) failed with >euid=0(root), gid=0(root), egid=0(root): Operation not permitted (This >binary should probably be called with process group set to 501(steve) >instead of 0(root)) > >Thanks, >Steve I was rereading man dovecot-lda and specifically the option "-d username". it said that it is used typically with virutal users, but not necessarily with system users. I am doing system users; therefore I removed it from the sendmail feature, but then I get the following error in maillog: Jan 1 10:28:39 nala sendmail[23041]: r01GScR4023040: smtpquit: mailer local exited with exit value 64 I googled, but did not find what value 64 meant. Anyone have a list or a clue what this error means? Thanks, Steve From ben at morrow.me.uk Tue Jan 1 18:54:11 2013 From: ben at morrow.me.uk (Ben Morrow) Date: Tue, 1 Jan 2013 16:54:11 +0000 Subject: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. In-Reply-To: <1AB6E3F435994396A0F241CF81BC0D44@Torpey11> References: <3117C05393464F328C974EF66138E07E@Torpey11> <20130101025211.GB2428@anubis.morrow.me.uk> <1AB6E3F435994396A0F241CF81BC0D44@Torpey11> Message-ID: <20130101165410.GC2428@anubis.morrow.me.uk> At 8AM -0600 on 1/01/13 you (Torpey List) wrote: > -----Original Message----- > From: Ben Morrow > Sent: Monday, December 31, 2012 8:52 PM > To: Dovecot Mailing List > Subject: Re: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. > > At 5PM -0600 on 31/12/12 you (Torpey List) wrote: > >> Sendmail 8.14.4 > >> dovecot 2.0.9 > >> > >> I have sendmail working and it is sending mail to /var/mail/%u. > >> I have dovecot working in that I can move emails into IMAP folders and > >> I can send email through IMAP. I have set up dovecot to use mdbox > >> based on the following: > >> mail_location = mdbox:~/mail > >> > >> However, I seem to be lacking a key piece of information. > > >If you want to keep INBOX delivery to mboxes in /var/mail, > > I am going to try an option below. OK. That's probably best. > >> LMTP ? I could not see any difference with this added or not. > > > >If you had configured Dovecot to deliver into /var/mail, that's hardly > >surprising. Otherwise, are you sure you were delivering mail to the LMTP > >server? If you were you should have seen entries in Dovecot's log file, > >and the delivered mail should have ended up with a Received header from > >the LMTP server. > > I have used egrep and there is no line that has /var/mail that is > uncommented in any of the config files. > > Based on your comment, then no I do not believe the new mail was going > through LMTP. OK. That sounds likely, since you haven't mentioned any LMTP-related Sendmail configuration. > >> Dovecot-lda ? I have had issues getting it configured. > > > >What issues? If you were trying to get the LDA to deliver to /var/mail, > >it's possible you were running into permissions problems. The best > >solution is to deliver into the mdbox instead, or just leave Sendmail to > >deliver to /var/mail. > > > >> Sendmail changes > >> FEATURE(`local_procmail', > >> `/usr/libexec/dovecot/dovecot-lda',`/usr/libexec/dovecot/dovecot-lda > >> -d $u') > >> MODIFY_MAILER_FLAGS(`LOCAL', `-f') > >> MAILER(procmail)dnl > > > >I know nothing at all about Sendmail configuration, but going by the > >Dovecot wiki that looks correct. Are you sure mail for the appropriate > >users was actually getting routed through that mailer? What did you see > >in the logs (you need to check both Dovecot's and Sendmail's logs, > >wherever they may be). > > The email is not being delivered by LTMP because there are no logs. > > The most documentation that I have found is using dovecot-lda, but as > you said there are permissions issues. The wiki implied that LTMP is > the best solution but I am not understanding enough to get it set up. The most important part, which I can't help you with, is finding out how to turn on Sendmail's LMTP client (assuming it has one). For that you would need to read the Sendmail documentation, or ask on a Sendmail list. > Therefore, I am attempting to stick with dovecot-lda *using sudo* from > the dovecot-lda wiki page. The wiki said to put /usr/bin/sudo in > front of path/dovecot-lda but did not say which one or both. I could > not get it to work. > > The option that has gone the furthest is *Making dovecot-lda setuid-root*. > However, I have errors. Here are the permissions. > > -rwxr-xr-x. 1 root secmail 26512 Aug 18 2011 /usr/libexec/dovecot/dovecot-lda That is not setuid root. If it were, it would be *extremely* dangerous, since you haven't removed the other-execute bit. Making programs setuid root is a very very bad idea. You should not do it unless you have absolutely no alternative. Pretty-much the same applies to using sudo to do the same thing, although that is a little safer since sudo makes an effort to clean the environment. How does Sendmail invoke the LDA? Is it already running as the right user for the delivery? Are you using system or virtual users? > ==> /var/log/maillog <== > Jan 01 08:24:02 lda: Error: userdb lookup: > connect(/var/run/dovecot/auth-userdb) failed: Permission denied > (euid=0(root) egid=0(root) missing +r perm: > /var/run/dovecot/auth-userdb, euid is dir owner) > ==> /var/log/messages <== > Jan 1 08:24:02 nala kernel: type=1400 audit(1357050242.947:42): avc: > denied { dac_override } for pid=20156 comm="dovecot-lda" > capability=1 scontext=unconfined_u:system_r:dovecot_deliver_t:s0 > tcontext=unconfined_u:system_r:dovecot_deliver_t:s0 tclass=capability OK, these two suggest to me you are using an SELinux system, and that the system is placing unexpected limitations on the abilities of root. While that's irritating, it isn't a problem since you shouldn't be running the LDA as root anyway. If you are using system users, make sure Sendmail invokes dovecot-lda as the appropriate user, and don't pass the -d option. (This assumes your Dovecot homedirs are the same as your /etc/passwd homedirs, and you aren't doing anything tricky in the userdb.) If you are using virtual users with a single uid, make Sendmail invoke dovecot-lda as that uid, pass the -d option, and make sure the auth-userdb socket is accessible to that user. If you are doing something more complicated, you will need to explain, but probably your best option is to get LMTP working. Ben From rgm at htt-consult.com Tue Jan 1 18:56:02 2013 From: rgm at htt-consult.com (Robert Moskowitz) Date: Tue, 01 Jan 2013 11:56:02 -0500 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E30DC9.5070908@whyscream.net> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> Message-ID: <50E31522.4070601@htt-consult.com> On 01/01/2013 11:24 AM, Tom Hendrikx wrote: > On 01-01-13 17:13, Reindl Harald wrote: >> >> Am 01.01.2013 17:07, schrieb Robert Moskowitz: >>> I am trying to figure out if I need avahi on my mail server. I see that POP3 and IMAP are services that Avahi can >>> advertise/discover. Does Dovecot work with Avahi and how do you get POP3 and IMAP advertised? >>> >>> And perhaps more importantly, what clients look for mail services this way? >> avahi does NOT get routed to internet >> >> since most clienst are not in the private network why would >> someone advertise mail-services via avahi? >> > If you want to advertise your mail config for easy setup over the > internet, take a look at: http://www.automx.org/ Not something I was looking for, but very interesting! Definitely worth a review. AFTER I get other things done. The number of users I have, I can support the old ways. RIght now I am just working through what each thing does and why I MIGHT need it. From ben at morrow.me.uk Tue Jan 1 18:57:23 2013 From: ben at morrow.me.uk (Ben Morrow) Date: Tue, 1 Jan 2013 16:57:23 +0000 Subject: [Dovecot] From Sendmail to Dovecot mdbox, what is missing. In-Reply-To: References: <3117C05393464F328C974EF66138E07E@Torpey11> <20130101025211.GB2428@anubis.morrow.me.uk> <1AB6E3F435994396A0F241CF81BC0D44@Torpey11> <35DF5C85-6B36-4662-B4FE-0DACA358166B@leuxner.net> <404E1A610577497F86A65AE502B986EA@Torpey11> Message-ID: <20130101165722.GD2428@anubis.morrow.me.uk> At 10AM -0600 on 1/01/13 you (Torpey List) wrote: > > I was rereading man dovecot-lda and specifically the option "-d username". > it said that it is used typically with virutal users, but not necessarily > with system users. I am doing system users; therefore I removed it from the > sendmail feature, but then I get the following error in maillog: > > Jan 1 10:28:39 nala sendmail[23041]: r01GScR4023040: smtpquit: mailer local > exited with exit value 64 > > I googled, but did not find what value 64 meant. Anyone have a list or a > clue what this error means? /usr/include/sysexits.h: #define EX_USAGE 64 /* command line usage error */ Sendmail (and therefore other mail-processing software) is one of the few traditional Unix programs to use these exit codes consistently, and expect other programs to use them. Ben From h.reindl at thelounge.net Tue Jan 1 19:00:19 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 01 Jan 2013 18:00:19 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E30D6A.4050705@htt-consult.com> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30D6A.4050705@htt-consult.com> Message-ID: <50E31623.70500@thelounge.net> Am 01.01.2013 17:23, schrieb Robert Moskowitz: > Say a small business is running a local mail server, perhaps using fetchmail to get their gmail accounts and such. > And they have a bunch of MACs in the office. How were mail clients discovering the local mail server? Apple users > like automagic stuff. who cares what the users like? in business usually the admin setup the computers even for private users: someone who is not able to enter servername, username and password should not use email at all because these are usually the same sending to their whole address book as CC -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From ben at morrow.me.uk Tue Jan 1 19:01:44 2013 From: ben at morrow.me.uk (Ben Morrow) Date: Tue, 1 Jan 2013 17:01:44 +0000 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E30DC9.5070908@whyscream.net> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> Message-ID: <20130101170144.GE2428@anubis.morrow.me.uk> At 5PM +0100 on 1/01/13 you (Tom Hendrikx) wrote: > > If you want to advertise your mail config for easy setup over the > internet, take a look at: http://www.automx.org/ I thought most gooey mail clients supported RFC 6186 nowadays? Ben From tom at whyscream.net Tue Jan 1 19:24:39 2013 From: tom at whyscream.net (Tom Hendrikx) Date: Tue, 01 Jan 2013 18:24:39 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <20130101170144.GE2428@anubis.morrow.me.uk> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> Message-ID: <50E31BD7.2090807@whyscream.net> On 01-01-13 18:01, Ben Morrow wrote: > At 5PM +0100 on 1/01/13 you (Tom Hendrikx) wrote: >> >> If you want to advertise your mail config for easy setup over the >> internet, take a look at: http://www.automx.org/ > > I thought most gooey mail clients supported RFC 6186 nowadays? > > Ben > As you can see from their docs, it supports a lot more than what you can put in SRV DNS records AFAIK. I don't use either of the solutions actively, and don't support any client setups so I don't really know what is currently available in clients, and needed or superior on server side. -- Tom From rgm at htt-consult.com Tue Jan 1 19:24:38 2013 From: rgm at htt-consult.com (Robert Moskowitz) Date: Tue, 01 Jan 2013 12:24:38 -0500 Subject: [Dovecot] dovecot and avahi In-Reply-To: <20130101170144.GE2428@anubis.morrow.me.uk> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> Message-ID: <50E31BD6.5010804@htt-consult.com> On 01/01/2013 12:01 PM, Ben Morrow wrote: > At 5PM +0100 on 1/01/13 you (Tom Hendrikx) wrote: >> If you want to advertise your mail config for easy setup over the >> internet, take a look at: http://www.automx.org/ > I thought most gooey mail clients supported RFC 6186 nowadays? Thunderbird does. Much more reasonable approach over Avahi which is only for those Apple users on the local net anyway ;) From andrzej.filip at gmail.com Tue Jan 1 19:31:39 2013 From: andrzej.filip at gmail.com (Andrzej A. Filip) Date: Tue, 01 Jan 2013 18:31:39 +0100 Subject: [Dovecot] Dovecot Virtual Users with Sendmail In-Reply-To: References: Message-ID: <50E31D7B.7060305@gmail.com> On 12/31/2012 04:19 AM, DormitionSkete at hotmail.com wrote: > [...] 1) Do you use virtual users with or without domain part? [virtual-user or virtual-user at exaple.net ] 2) How many entries do you have in paswdb/userdb files? [<100,<1000,....] 3) Is SMTP AUTH crucial for virtual users? From dormitionskete at hotmail.com Tue Jan 1 19:40:55 2013 From: dormitionskete at hotmail.com (DormitionSkete@hotmail.com) Date: Tue, 1 Jan 2013 10:40:55 -0700 Subject: [Dovecot] Dovecot Virtual Users with Sendmail In-Reply-To: <50E31D7B.7060305@gmail.com> References: <50E31D7B.7060305@gmail.com> Message-ID: On Jan 1, 2013, at 10:31 AM, Andrzej A. Filip wrote: > On 12/31/2012 04:19 AM, DormitionSkete at hotmail.com wrote: >> [...] > > 1) Do you use virtual users with or without domain part? > [virtual-user or virtual-user at exaple.net ] Without. virtual-user > 2) How many entries do you have in paswdb/userdb files? > [<100,<1000,....] <100 Around 10. > 3) Is SMTP AUTH crucial for virtual users? > No. I'd like it, but it's not crucial. We don't have it now for anyone. The only way we access our email outside the monastery is through SquirrelMail. I was hoping to add that with this server upgrade. It'd be nice to open our email access up more, but we can live without it if we have to. From h.reindl at thelounge.net Tue Jan 1 19:49:28 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 01 Jan 2013 18:49:28 +0100 Subject: [Dovecot] Dovecot Virtual Users with Sendmail In-Reply-To: References: <50E31D7B.7060305@gmail.com> Message-ID: <50E321A8.4020407@thelounge.net> Am 01.01.2013 18:40, schrieb DormitionSkete at hotmail.com: >> 3) Is SMTP AUTH crucial for virtual users? >> > > No. I'd like it, but it's not crucial. > > We don't have it now for anyone. The only way we access our email outside the monastery is through SquirrelMail. I was hoping to add that with this server upgrade. It'd be nice to open our email access up more, but we can live without it if we have to. get rid of sendmail postfix supports SASL via dovecot who in the world does a setup which allows SMTP without authentication? if some of your user accounts get hacked and used for spam you even have no chance to see in the smtp-log which user is affected -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From andrzej.filip at gmail.com Tue Jan 1 20:26:28 2013 From: andrzej.filip at gmail.com (Andrzej A. Filip) Date: Tue, 01 Jan 2013 19:26:28 +0100 Subject: [Dovecot] Dovecot Virtual Users with Sendmail In-Reply-To: References: <50E31D7B.7060305@gmail.com> Message-ID: <50E32A54.2060203@gmail.com> On 01/01/2013 06:40 PM, DormitionSkete at hotmail.com wrote: > On Jan 1, 2013, at 10:31 AM, Andrzej A. Filip wrote: > >> On 12/31/2012 04:19 AM, DormitionSkete at hotmail.com wrote: >>> [...] >> 1) Do you use virtual users with or without domain part? >> [virtual-user or virtual-user at exaple.net ] > > Without. > > virtual-user > > >> 2) How many entries do you have in paswdb/userdb files? >> [<100,<1000,....] > <100 > > Around 10. > > >> 3) Is SMTP AUTH crucial for virtual users? >> > No. I'd like it, but it's not crucial. > > We don't have it now for anyone. The only way we access our email outside the monastery is through SquirrelMail. I was hoping to add that with this server upgrade. It'd be nice to open our email access up more, but we can live without it if we have to. Based on the above replies I would suggest first modified version of the recipe below. There are many other ways but it seems to best fit your case with simple and stable changes to sendmail.mc/sendmail.cf. http://anfi.homeunix.org/sendmail/localNalias.html 1) In *.mc file add LOCAL_CONFIG # declare DOVECOT "magic word" CPDOVECOT 2) Deliver messages to *@DOVECOT using dovecot mailer [requires FEATURE(`mailertable')]. mailertable: DOVECOT dovecot:localhost 3) Do not accept messages to *@DOVECOT via SMTP [requires FEATURE(`access_db') and FEATURE(`blacklist_recipients')] access: to:DOVECOT REJECT 4) create aliases for virtualusers (one alias per one virtual user) aliases: virtualuser1: virtualuser1 at DOVECOT virtualuser2: virtualuser2 at DOVECOT Comments about "narrowing" questions: 1) case with domain part is usually more complex 2) sendmail may be configured to check recipient existence in dovecot's userdb/paswdb files but it would use method I would not recommend for bigger userdb/passwd files 3) sendmail supports cyrus-sasl, sendmail does not support dovecot-sasl From p at sys4.de Tue Jan 1 20:39:42 2013 From: p at sys4.de (Patrick Ben Koetter) Date: Tue, 1 Jan 2013 19:39:42 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E31BD7.2090807@whyscream.net> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> <50E31BD7.2090807@whyscream.net> Message-ID: <20130101183942.GA4889@sys4.de> * Tom Hendrikx : > On 01-01-13 18:01, Ben Morrow wrote: > > At 5PM +0100 on 1/01/13 you (Tom Hendrikx) wrote: > >> > >> If you want to advertise your mail config for easy setup over the > >> internet, take a look at: http://www.automx.org/ > > > > I thought most gooey mail clients supported RFC 6186 nowadays? > > > > Ben > > > > As you can see from their docs, it supports a lot more than what you can > put in SRV DNS records AFAIK. I don't use either of the solutions > actively, and don't support any client setups so I don't really know > what is currently available in clients, and needed or superior on server > side. automx combines Mozillas autoconfig service and Microsofts autodiscover service in one tool. With automx you can provision SMTP/POP/IMAP and ActiveSync account settings (but not the services themselves). Microsoft Outlook 2007+, Thunderbird 3+, Microsoft Mobiles and other mobiles known to support ActiveSync can make use of the automx webservice. Apple products do not support either MS' or MZ's provisioning services. AFAIK the only way to configure these clients is to store an XML file at a dedicated location in advance, use the Apple Configurator or go the real hard way and use Mobile Device Management (MDM) services. The aforementioned RFC 6186 has shortcommings compared to autodiscover/autoconfig-services: You can tell the service location (URI) and port, but you can't specify transport policies (plaintext, SSL, STARTTLS), authentication mechanisms etc. I would not want to use it in a business environment. p at rick -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich From rgm at htt-consult.com Tue Jan 1 21:02:43 2013 From: rgm at htt-consult.com (Robert Moskowitz) Date: Tue, 01 Jan 2013 14:02:43 -0500 Subject: [Dovecot] dovecot and avahi In-Reply-To: <20130101183942.GA4889@sys4.de> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> <50E31BD7.2090807@whyscream.net> <20130101183942.GA4889@sys4.de> Message-ID: <50E332D3.2080004@htt-consult.com> On 01/01/2013 01:39 PM, Patrick Ben Koetter wrote: > * Tom Hendrikx : >> On 01-01-13 18:01, Ben Morrow wrote: >>> At 5PM +0100 on 1/01/13 you (Tom Hendrikx) wrote: >>>> If you want to advertise your mail config for easy setup over the >>>> internet, take a look at: http://www.automx.org/ >>> I thought most gooey mail clients supported RFC 6186 nowadays? >>> >>> Ben >>> >> As you can see from their docs, it supports a lot more than what you can >> put in SRV DNS records AFAIK. I don't use either of the solutions >> actively, and don't support any client setups so I don't really know >> what is currently available in clients, and needed or superior on server >> side. > automx combines Mozillas autoconfig service and Microsofts autodiscover > service in one tool. With automx you can provision SMTP/POP/IMAP and > ActiveSync account settings (but not the services themselves). > > Microsoft Outlook 2007+, Thunderbird 3+, Microsoft Mobiles and other mobiles > known to support ActiveSync can make use of the automx webservice. > > Apple products do not support either MS' or MZ's provisioning services. AFAIK > the only way to configure these clients is to store an XML file at a dedicated > location in advance, use the Apple Configurator or go the real hard way and > use Mobile Device Management (MDM) services. > > The aforementioned RFC 6186 has shortcommings compared to > autodiscover/autoconfig-services: You can tell the service location (URI) and > port, but you can't specify transport policies (plaintext, SSL, STARTTLS), > authentication mechanisms etc. I would not want to use it in a business > environment. thank you very much for this analysis. SRV records were only intented to find the services that would then set up the policies. There is considerable pushback on using DNS for a general purpose database. I had to fight for my HIP DNS RRs for holding just Host Identities. I see that it can use SQL for some information handling. Does it work with the sql tables managed by postfixadmin? From p at sys4.de Tue Jan 1 21:08:10 2013 From: p at sys4.de (Patrick Ben Koetter) Date: Tue, 1 Jan 2013 20:08:10 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E332D3.2080004@htt-consult.com> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> <50E31BD7.2090807@whyscream.net> <20130101183942.GA4889@sys4.de> <50E332D3.2080004@htt-consult.com> Message-ID: <20130101190810.GA6617@sys4.de> * Robert Moskowitz : > > On 01/01/2013 01:39 PM, Patrick Ben Koetter wrote: > >* Tom Hendrikx : > >>On 01-01-13 18:01, Ben Morrow wrote: > >>>At 5PM +0100 on 1/01/13 you (Tom Hendrikx) wrote: > >>>>If you want to advertise your mail config for easy setup over the > >>>>internet, take a look at: http://www.automx.org/ > >>>I thought most gooey mail clients supported RFC 6186 nowadays? > >>> > >>>Ben > >>> > >>As you can see from their docs, it supports a lot more than what you can > >>put in SRV DNS records AFAIK. I don't use either of the solutions > >>actively, and don't support any client setups so I don't really know > >>what is currently available in clients, and needed or superior on server > >>side. > >automx combines Mozillas autoconfig service and Microsofts autodiscover > >service in one tool. With automx you can provision SMTP/POP/IMAP and > >ActiveSync account settings (but not the services themselves). > > > >Microsoft Outlook 2007+, Thunderbird 3+, Microsoft Mobiles and other mobiles > >known to support ActiveSync can make use of the automx webservice. > > > >Apple products do not support either MS' or MZ's provisioning services. AFAIK > >the only way to configure these clients is to store an XML file at a dedicated > >location in advance, use the Apple Configurator or go the real hard way and > >use Mobile Device Management (MDM) services. > > > >The aforementioned RFC 6186 has shortcommings compared to > >autodiscover/autoconfig-services: You can tell the service location (URI) and > >port, but you can't specify transport policies (plaintext, SSL, STARTTLS), > >authentication mechanisms etc. I would not want to use it in a business > >environment. > > thank you very much for this analysis. SRV records were only > intented to find the services that would then set up the policies. > There is considerable pushback on using DNS for a general purpose > database. I had to fight for my HIP DNS RRs for holding just Host > Identities. > > I see that it can use SQL for some information handling. Does it > work with the sql tables managed by postfixadmin? We - Christian and I - haven't tried, but I am sure it will, because you are free to define any SQL query you want in automx to get what you want from postfixadmin. You may also use Modoboa to manage the mailboxes. Antoine just ran a blog article on using automx with it: p at rick > > -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich From rs at sys4.de Tue Jan 1 22:01:15 2013 From: rs at sys4.de (Robert Schetterer) Date: Tue, 01 Jan 2013 21:01:15 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <20130101190810.GA6617@sys4.de> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> <50E31BD7.2090807@whyscream.net> <20130101183942.GA4889@sys4.de> <50E332D3.2080004@htt-consult.com> <20130101190810.GA6617@sys4.de> Message-ID: <50E3408B.20101@sys4.de> Am 01.01.2013 20:08, schrieb Patrick Ben Koetter: > * Robert Moskowitz : >> >> On 01/01/2013 01:39 PM, Patrick Ben Koetter wrote: >>> * Tom Hendrikx : >>>> On 01-01-13 18:01, Ben Morrow wrote: >>>>> At 5PM +0100 on 1/01/13 you (Tom Hendrikx) wrote: >>>>>> If you want to advertise your mail config for easy setup over the >>>>>> internet, take a look at: http://www.automx.org/ >>>>> I thought most gooey mail clients supported RFC 6186 nowadays? >>>>> >>>>> Ben >>>>> >>>> As you can see from their docs, it supports a lot more than what you can >>>> put in SRV DNS records AFAIK. I don't use either of the solutions >>>> actively, and don't support any client setups so I don't really know >>>> what is currently available in clients, and needed or superior on server >>>> side. >>> automx combines Mozillas autoconfig service and Microsofts autodiscover >>> service in one tool. With automx you can provision SMTP/POP/IMAP and >>> ActiveSync account settings (but not the services themselves). >>> >>> Microsoft Outlook 2007+, Thunderbird 3+, Microsoft Mobiles and other mobiles >>> known to support ActiveSync can make use of the automx webservice. typo not "activesync" they do autoconfig Outlook 2013 can do in deed activesync , but this is off topic here >>> >>> Apple products do not support either MS' or MZ's provisioning services. AFAIK >>> the only way to configure these clients is to store an XML file at a dedicated >>> location in advance, use the Apple Configurator or go the real hard way and >>> use Mobile Device Management (MDM) services. >>> >>> The aforementioned RFC 6186 has shortcommings compared to >>> autodiscover/autoconfig-services: You can tell the service location (URI) and >>> port, but you can't specify transport policies (plaintext, SSL, STARTTLS), >>> authentication mechanisms etc. I would not want to use it in a business >>> environment. >> >> thank you very much for this analysis. SRV records were only >> intented to find the services that would then set up the policies. >> There is considerable pushback on using DNS for a general purpose >> database. I had to fight for my HIP DNS RRs for holding just Host >> Identities. >> >> I see that it can use SQL for some information handling. Does it >> work with the sql tables managed by postfixadmin? > > We - Christian and I - haven't tried, but I am sure it will, because you are > free to define any SQL query you want in automx to get what you want from > postfixadmin. > > You may also use Modoboa to manage the mailboxes. Antoine just ran a blog > article on using automx with it: > > > p at rick > > > > >> >> > Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich From p at sys4.de Tue Jan 1 22:04:54 2013 From: p at sys4.de (Patrick Ben Koetter) Date: Tue, 1 Jan 2013 21:04:54 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E3408B.20101@sys4.de> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> <50E31BD7.2090807@whyscream.net> <20130101183942.GA4889@sys4.de> <50E332D3.2080004@htt-consult.com> <20130101190810.GA6617@sys4.de> <50E3408B.20101@sys4.de> Message-ID: <20130101200454.GB6949@sys4.de> * Robert Schetterer : > Am 01.01.2013 20:08, schrieb Patrick Ben Koetter: > > * Robert Moskowitz : > >> > >> On 01/01/2013 01:39 PM, Patrick Ben Koetter wrote: > >>> * Tom Hendrikx : > >>>> On 01-01-13 18:01, Ben Morrow wrote: > >>>>> At 5PM +0100 on 1/01/13 you (Tom Hendrikx) wrote: > >>>>>> If you want to advertise your mail config for easy setup over the > >>>>>> internet, take a look at: http://www.automx.org/ > >>>>> I thought most gooey mail clients supported RFC 6186 nowadays? > >>>>> > >>>>> Ben > >>>>> > >>>> As you can see from their docs, it supports a lot more than what you can > >>>> put in SRV DNS records AFAIK. I don't use either of the solutions > >>>> actively, and don't support any client setups so I don't really know > >>>> what is currently available in clients, and needed or superior on server > >>>> side. > >>> automx combines Mozillas autoconfig service and Microsofts autodiscover > >>> service in one tool. With automx you can provision SMTP/POP/IMAP and > >>> ActiveSync account settings (but not the services themselves). > >>> > >>> Microsoft Outlook 2007+, Thunderbird 3+, Microsoft Mobiles and other mobiles > >>> known to support ActiveSync can make use of the automx webservice. > > typo not "activesync" they do autoconfig Robert is wrong. automx can provision activesync accounts. p at rick -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich From rs at sys4.de Tue Jan 1 22:15:19 2013 From: rs at sys4.de (Robert Schetterer) Date: Tue, 01 Jan 2013 21:15:19 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <20130101200454.GB6949@sys4.de> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> <50E31BD7.2090807@whyscream.net> <20130101183942.GA4889@sys4.de> <50E332D3.2080004@htt-consult.com> <20130101190810.GA6617@sys4.de> <50E3408B.20101@sys4.de> <20130101200454.GB6949@sys4.de> Message-ID: <50E343D7.3070501@sys4.de> Am 01.01.2013 21:04, schrieb Patrick Ben Koetter: > * Robert Schetterer : >> Am 01.01.2013 20:08, schrieb Patrick Ben Koetter: >>> * Robert Moskowitz : >>>> >>>> On 01/01/2013 01:39 PM, Patrick Ben Koetter wrote: >>>>> * Tom Hendrikx : >>>>>> On 01-01-13 18:01, Ben Morrow wrote: >>>>>>> At 5PM +0100 on 1/01/13 you (Tom Hendrikx) wrote: >>>>>>>> If you want to advertise your mail config for easy setup over the >>>>>>>> internet, take a look at: http://www.automx.org/ >>>>>>> I thought most gooey mail clients supported RFC 6186 nowadays? >>>>>>> >>>>>>> Ben >>>>>>> >>>>>> As you can see from their docs, it supports a lot more than what you can >>>>>> put in SRV DNS records AFAIK. I don't use either of the solutions >>>>>> actively, and don't support any client setups so I don't really know >>>>>> what is currently available in clients, and needed or superior on server >>>>>> side. >>>>> automx combines Mozillas autoconfig service and Microsofts autodiscover >>>>> service in one tool. With automx you can provision SMTP/POP/IMAP and >>>>> ActiveSync account settings (but not the services themselves). >>>>> >>>>> Microsoft Outlook 2007+, Thunderbird 3+, Microsoft Mobiles and other mobiles >>>>> known to support ActiveSync can make use of the automx webservice. >> >> typo not "activesync" they do autoconfig > > Robert is wrong. automx can provision activesync accounts. @p for more clearness, thunderbird had never activesync, automx provides propagation for activesync clients via autodiscover method a typical active sync client is ie android mail app in exchange modus outlook has active sync included native since vers 2013, however autodiscover works since vers 2007+ thunderbirds autoconfig is different from microsoft autodiscover but automx can serve both in one tool > > p at rick > Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich From h.reindl at thelounge.net Tue Jan 1 22:25:15 2013 From: h.reindl at thelounge.net (Reindl Harald) Date: Tue, 01 Jan 2013 21:25:15 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E343D7.3070501@sys4.de> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> <50E31BD7.2090807@whyscream.net> <20130101183942.GA4889@sys4.de> <50E332D3.2080004@htt-consult.com> <20130101190810.GA6617@sys4.de> <50E3408B.20101@sys4.de> <20130101200454.GB6949@sys4.de> <50E343D7.3070501@sys4.de> Message-ID: <50E3462B.2050002@thelounge.net> Am 01.01.2013 21:15, schrieb Robert Schetterer: > outlook has active sync included native since vers 2013, however > autodiscover works since vers 2007+ > > thunderbirds autoconfig is different from microsoft autodiscover > but automx can serve both in one tool the real problem with microsofts autodiscover is that it requires https and as long WinXP is not finally dead you need for each https host a different IP which is not really a option with IPv4 blocks i had implemented autodisciver by myself there was some workaround with redirection where "autoddiscover.domain.tld" can be non https and redirct to https://autodiscover.yourcompany.tld this worked fine even with self signet certificates buzt in very recnet outlook versions you get the damned certificate warning everytime you start outlook and not only by configure the mail account really braindead compared with the mozilla way -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 261 bytes Desc: OpenPGP digital signature URL: From rs at sys4.de Tue Jan 1 22:39:01 2013 From: rs at sys4.de (Robert Schetterer) Date: Tue, 01 Jan 2013 21:39:01 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E3462B.2050002@thelounge.net> References: <50E309B3.5040003@htt-consult.com> <50E30B15.3000407@thelounge.net> <50E30DC9.5070908@whyscream.net> <20130101170144.GE2428@anubis.morrow.me.uk> <50E31BD7.2090807@whyscream.net> <20130101183942.GA4889@sys4.de> <50E332D3.2080004@htt-consult.com> <20130101190810.GA6617@sys4.de> <50E3408B.20101@sys4.de> <20130101200454.GB6949@sys4.de> <50E343D7.3070501@sys4.de> <50E3462B.2050002@thelounge.net> Message-ID: <50E34965.9020506@sys4.de> Am 01.01.2013 21:25, schrieb Reindl Harald: > > > Am 01.01.2013 21:15, schrieb Robert Schetterer: >> outlook has active sync included native since vers 2013, however >> autodiscover works since vers 2007+ >> >> thunderbirds autoconfig is different from microsoft autodiscover >> but automx can serve both in one tool > > the real problem with microsofts autodiscover is that it requires > https and as long WinXP is not finally dead you need for each https > host a different IP which is not really a option with IPv4 blocks > > i had implemented autodisciver by myself > > there was some workaround with redirection where > "autoddiscover.domain.tld" can be non https and > redirct to https://autodiscover.yourcompany.tld > > this worked fine even with self signet certificates > buzt in very recnet outlook versions you get the damned > certificate warning everytime you start outlook and not > only by configure the mail account > > really braindead compared with the mozilla way > Hi Harald ,your right, M$ method is really ..... in some points i use the dns srv way , which has problems with ssl warnings too or needs expensive crts, but however its always the same story, these companies do not try provide perfect code or methods, their goal is to make money, which is still legal Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstra?e 15, 81669 M?nchen Sitz der Gesellschaft: M?nchen, Amtsgericht M?nchen: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich From dormitionskete at hotmail.com Tue Jan 1 23:18:33 2013 From: dormitionskete at hotmail.com (DormitionSkete@hotmail.com) Date: Tue, 1 Jan 2013 14:18:33 -0700 Subject: [Dovecot] Dovecot Virtual Users with Sendmail In-Reply-To: <50E32A54.2060203@gmail.com> References: <50E31D7B.7060305@gmail.com> <50E32A54.2060203@gmail.com> Message-ID: Thank you, Andrzej, for helping us. I really appreciate it. It no longer rejects the mail that I try to send to the virtual users. It just tries to send it for eternity. SquirrelMail says, "Waiting for localhost". It does not get rejected. It does not get sent. It does not leave anything in any log that I can find. It does not even seem to time out. I think I waited at least five minutes while it tried to send a message to a virtual user @localhost. I'm not sure if I did this right. Below are my sendmail files. Of course, I rebuilt the .mc -> .cf file, and all of the .db files. --- sendmail.mc divert(-1) # # Copyright (c) 1983 Eric P. Allman # Copyright (c) 1988, 1993 # The Regents of the University of California. All rights reserved. # # Copyright 2009 Sun Microsystems, Inc. All rights reserved. # Use is subject to license terms. # # This is a configuration file for SunOS 5.8 (a.k.a. Solaris 8) and later # subsidiary machines. It has support for local and SMTP mail. The # confFALLBACK_SMARTHOST macro is enabled, which means that messages will # be sent to that host (which is set to mailhost.$m [$m is the local domain]) # if MX records are unavailable. A short-cut rule is also defined, which # says if the recipient host is in the local domain, send to it directly # instead of the smart host. # # If you want to customize this further, copy it to a name appropriate # for your environment and do the modifications there. # divert(0)dnl VERSIONID(`sendmail.mc (Sun)') OSTYPE(`solaris8')dnl DOMAIN(`solaris-generic')dnl define(`confFALLBACK_SMARTHOST', `mailhost$?m.$m$.')dnl define(`PROCMAIL_MAILER_PATH',`/usr/bin/procmail')dnl FEATURE(local_procmail,`',`procmail -t -Y -a $h -d $u')dnl FEATURE(`mailertable') FEATURE(`access_db') FEATURE(`blacklist_recipients') MAILER(`local')dnl MAILER(`smtp')dnl MAILER(`procmail')dnl MAILER(`dovecot')dnl LOCAL_CONFIG # declare DOVECOT "magic word" CPDOVECOT LOCAL_NET_CONFIG R$* < @ $* .$m. > $* $#esmtp $@ $2.$m $: $1 < @ $2.$m. > $3 --- access -- I am wondering if this is the problem? # Check the /usr/share/doc/sendmail/README.cf file for a description # of the format of this file. (search for access_db in that file) # The /usr/share/doc/sendmail/README.cf is part of the sendmail-doc # package. # to:DOVECOT REJECT # by default we allow relaying from localhost... localhost.localdomain RELAY localhost RELAY 127.0.0.1 RELAY dsicons.net RELAY dormitionskete.net RELAY holyapostlesconvent.org RELAY dormitionskete.info RELAY 174.32.127.90 RELAY 174.32.127.91 RELAY 174.32.127.92 RELAY 174.32.127.93 RELAY 174.32.127.94 RELAY --- aliases # # Copyright 2005 Sun Microsystems, Inc. All rights reserved. # Use is subject to license terms. # # CDDL HEADER START # # The contents of this file are subject to the terms of the # Common Development and Distribution License, Version 1.0 only # (the "License"). You may not use this file except in compliance # with the License. # # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE # or http://www.opensolaris.org/os/licensing. # See the License for the specific language governing permissions # and limitations under the License. # # When distributing Covered Code, include this CDDL HEADER in each # file and include the License file at usr/src/OPENSOLARIS.LICENSE. # If applicable, add the following below this CDDL HEADER, with the # fields enclosed by brackets "[]" replaced with your own identifying # information: Portions Copyright [yyyy] [name of copyright owner] # # CDDL HEADER END # # #ident "%Z%%M% %I% %E% SMI" ## # Aliases can have any mix of upper and lower case on the left-hand side, # but the right-hand side should be proper case (usually lower) # # >>>>>>>>>> The program "newaliases" must be run after # >> NOTE >> this file is updated for any changes to # >>>>>>>>>> show through to sendmail. ## # The following alias is required by the mail protocol, RFC 2821 # Set it to the address of a HUMAN who deals with this system's mail problems. postmaster: root # Alias for mailer daemon; returned messages from our MAILER-DAEMON # should be routed to our local Postmaster. MAILER-DAEMON: postmaster # General redirections for pseudo accounts. bin: root daemon: root system: root toor: root uucp: root # Well-known aliases. manager: root dumper: root operator: root # trap decode to catch security attacks decode: root # Aliases to handle mail to programs or files, eg news or vacation nobody: /dev/null # Sample aliases: # Alias for distribution list, members specified here: #staff:wnj,mosher,sam,ecc,mckusick,sklower,olson,rwh at ernie # Alias for distribution list, members specified elsewhere: #keyboards: :include:/usr/jfarrell/keyboards.list # Alias for a person, so they can receive mail by several names: #epa:eric ####################### # Local aliases below # ####################### dswebstore: dswebstore at DOVECOT hacwebstore: hacwebstore at DOVECOT --- mailertable DOVECOT dovecot:localhost --- virtualusertable -- empty. --- Did I do it right? Any ideas? On Jan 1, 2013, at 11:26 AM, Andrzej A. Filip wrote: > On 01/01/2013 06:40 PM, DormitionSkete at hotmail.com wrote: >> On Jan 1, 2013, at 10:31 AM, Andrzej A. Filip wrote: >> >>> On 12/31/2012 04:19 AM, DormitionSkete at hotmail.com wrote: >>>> [...] >>> 1) Do you use virtual users with or without domain part? >>> [virtual-user or virtual-user at exaple.net ] >> >> Without. >> >> virtual-user >> >> >>> 2) How many entries do you have in paswdb/userdb files? >>> [<100,<1000,....] >> <100 >> >> Around 10. >> >> >>> 3) Is SMTP AUTH crucial for virtual users? >>> >> No. I'd like it, but it's not crucial. >> >> We don't have it now for anyone. The only way we access our email outside the monastery is through SquirrelMail. I was hoping to add that with this server upgrade. It'd be nice to open our email access up more, but we can live without it if we have to. > Based on the above replies I would suggest first modified version of the > recipe below. There are many other ways but it seems to best fit your > case with simple and stable changes to sendmail.mc/sendmail.cf. > http://anfi.homeunix.org/sendmail/localNalias.html > > 1) In *.mc file add > LOCAL_CONFIG > # declare DOVECOT "magic word" > CPDOVECOT > > 2) Deliver messages to *@DOVECOT using dovecot mailer [requires > FEATURE(`mailertable')]. > mailertable: > DOVECOT dovecot:localhost > > 3) Do not accept messages to *@DOVECOT via SMTP [requires > FEATURE(`access_db') and FEATURE(`blacklist_recipients')] access: > to:DOVECOT REJECT > > 4) create aliases for virtualusers (one alias per one virtual user) > aliases: > virtualuser1: virtualuser1 at DOVECOT > virtualuser2: virtualuser2 at DOVECOT > > Comments about "narrowing" questions: > 1) case with domain part is usually more complex > 2) sendmail may be configured to check recipient existence in dovecot's > userdb/paswdb files but it would use method I would not recommend for > bigger userdb/passwd files > 3) sendmail supports cyrus-sasl, sendmail does not support dovecot-sasl > From andrzej.filip at gmail.com Wed Jan 2 00:34:14 2013 From: andrzej.filip at gmail.com (Andrzej A. Filip) Date: Tue, 01 Jan 2013 23:34:14 +0100 Subject: [Dovecot] Dovecot Virtual Users with Sendmail In-Reply-To: References: <50E31D7B.7060305@gmail.com> <50E32A54.2060203@gmail.com> Message-ID: <50E36466.2080307@gmail.com> On 01/01/2013 10:18 PM, DormitionSkete at hotmail.com wrote: > Thank you, Andrzej, for helping us. I really appreciate it. > > It no longer rejects the mail that I try to send to the virtual users. It just tries to send it for eternity. SquirrelMail says, "Waiting for localhost". It does not get rejected. It does not get sent. It does not leave anything in any log that I can find. It does not even seem to time out. I think I waited at least five minutes while it tried to send a message to a virtual user @localhost. > > I'm not sure if I did this right. Below are my sendmail files. Of course, I rebuilt the .mc -> .cf file, and all of the .db files. > > --- > > sendmail.mc > > divert(-1) > # > # Copyright (c) 1983 Eric P. Allman > # Copyright (c) 1988, 1993 > # The Regents of the University of California. All rights reserved. > # > # Copyright 2009 Sun Microsystems, Inc. All rights reserved. > # Use is subject to license terms. > # > # This is a configuration file for SunOS 5.8 (a.k.a. Solaris 8) and later > # subsidiary machines. It has support for local and SMTP mail. The > # confFALLBACK_SMARTHOST macro is enabled, which means that messages will > # be sent to that host (which is set to mailhost.$m [$m is the local domain]) > # if MX records are unavailable. A short-cut rule is also defined, which > # says if the recipient host is in the local domain, send to it directly > # instead of the smart host. > # > # If you want to customize this further, copy it to a name appropriate > # for your environment and do the modifications there. > # > > divert(0)dnl > VERSIONID(`sendmail.mc (Sun)') > OSTYPE(`solaris8')dnl > DOMAIN(`solaris-generic')dnl > define(`confFALLBACK_SMARTHOST', `mailhost$?m.$m$.')dnl > > define(`PROCMAIL_MAILER_PATH',`/usr/bin/procmail')dnl > FEATURE(local_procmail,`',`procmail -t -Y -a $h -d $u')dnl > > FEATURE(`mailertable') > > FEATURE(`access_db') > FEATURE(`blacklist_recipients') > > > MAILER(`local')dnl > MAILER(`smtp')dnl > > MAILER(`procmail')dnl > MAILER(`dovecot')dnl > > > LOCAL_CONFIG > # declare DOVECOT "magic word" > CPDOVECOT > > LOCAL_NET_CONFIG > R$* < @ $* .$m. > $* $#esmtp $@ $2.$m $: $1 < @ $2.$m. > $3 > > > --- > > access -- I am wondering if this is the problem? > > # Check the /usr/share/doc/sendmail/README.cf file for a description > # of the format of this file. (search for access_db in that file) > # The /usr/share/doc/sendmail/README.cf is part of the sendmail-doc > # package. > # > > to:DOVECOT REJECT > > # by default we allow relaying from localhost... > localhost.localdomain RELAY > localhost RELAY > 127.0.0.1 RELAY > dsicons.net RELAY > dormitionskete.net RELAY > holyapostlesconvent.org RELAY > dormitionskete.info RELAY > 174.32.127.90 RELAY > 174.32.127.91 RELAY > 174.32.127.92 RELAY > 174.32.127.93 RELAY > 174.32.127.94 RELAY > > > --- > > aliases > > # > # Copyright 2005 Sun Microsystems, Inc. All rights reserved. > # Use is subject to license terms. > # > # CDDL HEADER START > # > # The contents of this file are subject to the terms of the > # Common Development and Distribution License, Version 1.0 only > # (the "License"). You may not use this file except in compliance > # with the License. > # > # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE > # or http://www.opensolaris.org/os/licensing. > # See the License for the specific language governing permissions > # and limitations under the License. > # > # When distributing Covered Code, include this CDDL HEADER in each > # file and include the License file at usr/src/OPENSOLARIS.LICENSE. > # If applicable, add the following below this CDDL HEADER, with the > # fields enclosed by brackets "[]" replaced with your own identifying > # information: Portions Copyright [yyyy] [name of copyright owner] > # > # CDDL HEADER END > # > # > #ident "%Z%%M% %I% %E% SMI" > > ## > # Aliases can have any mix of upper and lower case on the left-hand side, > # but the right-hand side should be proper case (usually lower) > # > # >>>>>>>>>> The program "newaliases" must be run after > # >> NOTE >> this file is updated for any changes to > # >>>>>>>>>> show through to sendmail. > ## > > # The following alias is required by the mail protocol, RFC 2821 > # Set it to the address of a HUMAN who deals with this system's mail problems. > postmaster: root > > # Alias for mailer daemon; returned messages from our MAILER-DAEMON > # should be routed to our local Postmaster. > MAILER-DAEMON: postmaster > > # General redirections for pseudo accounts. > bin: root > daemon: root > system: root > toor: root > uucp: root > > # Well-known aliases. > manager: root > dumper: root > operator: root > > # trap decode to catch security attacks > decode: root > > # Aliases to handle mail to programs or files, eg news or vacation > nobody: /dev/null > > # Sample aliases: > > # Alias for distribution list, members specified here: > #staff:wnj,mosher,sam,ecc,mckusick,sklower,olson,rwh at ernie > > # Alias for distribution list, members specified elsewhere: > #keyboards: :include:/usr/jfarrell/keyboards.list > > # Alias for a person, so they can receive mail by several names: > #epa:eric > > ####################### > # Local aliases below # > ####################### > > dswebstore: dswebstore at DOVECOT > hacwebstore: hacwebstore at DOVECOT > > > --- > > mailertable > > DOVECOT dovecot:localhost > > --- > > virtualusertable -- empty. > > --- > > > Did I do it right? Any ideas? > As root execute test command below: sendmail -d60.5 -d27.2 -bv hacwebstore -d60.5 should trace map lookups (including mailertable) -d27.2 should trace alias expansion Most likely you should among other things fix R= and S= part of dovecot mailer to make it strip envelope recipient domain. S=EnvFromL/HdrFromL, R=EnvToL/HdrToL, [ http://wiki.dovecot.org/LDA/Sendmail ] From dormitionskete at hotmail.com Wed Jan 2 01:09:44 2013 From: dormitionskete at hotmail.com (DormitionSkete@hotmail.com) Date: Tue, 1 Jan 2013 16:09:44 -0700 Subject: [Dovecot] Dovecot Virtual Users with Sendmail In-Reply-To: <50E36466.2080307@gmail.com> References: <50E31D7B.7060305@gmail.com> <50E32A54.2060203@gmail.com> <50E36466.2080307@gmail.com> Message-ID: On Jan 1, 2013, at 3:34 PM, Andrzej A. Filip wrote: > On 01/01/2013 10:18 PM, DormitionSkete at hotmail.com wrote: >> Thank you, Andrzej, for helping us. I really appreciate it. >> >> It no longer rejects the mail that I try to send to the virtual users. It just tries to send it for eternity. SquirrelMail says, "Waiting for localhost". It does not get rejected. It does not get sent. It does not leave anything in any log that I can find. It does not even seem to time out. I think I waited at least five minutes while it tried to send a message to a virtual user @localhost. >> >> I'm not sure if I did this right. Below are my sendmail files. Of course, I rebuilt the .mc -> .cf file, and all of the .db files. >> >> --- >> >> sendmail.mc >> >> divert(-1) >> # >> # Copyright (c) 1983 Eric P. Allman >> # Copyright (c) 1988, 1993 >> # The Regents of the University of California. All rights reserved. >> # >> # Copyright 2009 Sun Microsystems, Inc. All rights reserved. >> # Use is subject to license terms. >> # >> # This is a configuration file for SunOS 5.8 (a.k.a. Solaris 8) and later >> # subsidiary machines. It has support for local and SMTP mail. The >> # confFALLBACK_SMARTHOST macro is enabled, which means that messages will >> # be sent to that host (which is set to mailhost.$m [$m is the local domain]) >> # if MX records are unavailable. A short-cut rule is also defined, which >> # says if the recipient host is in the local domain, send to it directly >> # instead of the smart host. >> # >> # If you want to customize this further, copy it to a name appropriate >> # for your environment and do the modifications there. >> # >> >> divert(0)dnl >> VERSIONID(`sendmail.mc (Sun)') >> OSTYPE(`solaris8')dnl >> DOMAIN(`solaris-generic')dnl >> define(`confFALLBACK_SMARTHOST', `mailhost$?m.$m$.')dnl >> >> define(`PROCMAIL_MAILER_PATH',`/usr/bin/procmail')dnl >> FEATURE(local_procmail,`',`procmail -t -Y -a $h -d $u')dnl >> >> FEATURE(`mailertable') >> >> FEATURE(`access_db') >> FEATURE(`blacklist_recipients') >> >> >> MAILER(`local')dnl >> MAILER(`smtp')dnl >> >> MAILER(`procmail')dnl >> MAILER(`dovecot')dnl >> >> >> LOCAL_CONFIG >> # declare DOVECOT "magic word" >> CPDOVECOT >> >> LOCAL_NET_CONFIG >> R$* < @ $* .$m. > $* $#esmtp $@ $2.$m $: $1 < @ $2.$m. > $3 >> >> >> --- >> >> access -- I am wondering if this is the problem? >> >> # Check the /usr/share/doc/sendmail/README.cf file for a description >> # of the format of this file. (search for access_db in that file) >> # The /usr/share/doc/sendmail/README.cf is part of the sendmail-doc >> # package. >> # >> >> to:DOVECOT REJECT >> >> # by default we allow relaying from localhost... >> localhost.localdomain RELAY >> localhost RELAY >> 127.0.0.1 RELAY >> dsicons.net RELAY >> dormitionskete.net RELAY >> holyapostlesconvent.org RELAY >> dormitionskete.info RELAY >> 174.32.127.90 RELAY >> 174.32.127.91 RELAY >> 174.32.127.92 RELAY >> 174.32.127.93 RELAY >> 174.32.127.94 RELAY >> >> >> --- >> >> aliases >> >> # >> # Copyright 2005 Sun Microsystems, Inc. All rights reserved. >> # Use is subject to license terms. >> # >> # CDDL HEADER START >> # >> # The contents of this file are subject to the terms of the >> # Common Development and Distribution License, Version 1.0 only >> # (the "License"). You may not use this file except in compliance >> # with the License. >> # >> # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE >> # or http://www.opensolaris.org/os/licensing. >> # See the License for the specific language governing permissions >> # and limitations under the License. >> # >> # When distributing Covered Code, include this CDDL HEADER in each >> # file and include the License file at usr/src/OPENSOLARIS.LICENSE. >> # If applicable, add the following below this CDDL HEADER, with the >> # fields enclosed by brackets "[]" replaced with your own identifying >> # information: Portions Copyright [yyyy] [name of copyright owner] >> # >> # CDDL HEADER END >> # >> # >> #ident "%Z%%M% %I% %E% SMI" >> >> ## >> # Aliases can have any mix of upper and lower case on the left-hand side, >> # but the right-hand side should be proper case (usually lower) >> # >> # >>>>>>>>>> The program "newaliases" must be run after >> # >> NOTE >> this file is updated for any changes to >> # >>>>>>>>>> show through to sendmail. >> ## >> >> # The following alias is required by the mail protocol, RFC 2821 >> # Set it to the address of a HUMAN who deals with this system's mail problems. >> postmaster: root >> >> # Alias for mailer daemon; returned messages from our MAILER-DAEMON >> # should be routed to our local Postmaster. >> MAILER-DAEMON: postmaster >> >> # General redirections for pseudo accounts. >> bin: root >> daemon: root >> system: root >> toor: root >> uucp: root >> >> # Well-known aliases. >> manager: root >> dumper: root >> operator: root >> >> # trap decode to catch security attacks >> decode: root >> >> # Aliases to handle mail to programs or files, eg news or vacation >> nobody: /dev/null >> >> # Sample aliases: >> >> # Alias for distribution list, members specified here: >> #staff:wnj,mosher,sam,ecc,mckusick,sklower,olson,rwh at ernie >> >> # Alias for distribution list, members specified elsewhere: >> #keyboards: :include:/usr/jfarrell/keyboards.list >> >> # Alias for a person, so they can receive mail by several names: >> #epa:eric >> >> ####################### >> # Local aliases below # >> ####################### >> >> dswebstore: dswebstore at DOVECOT >> hacwebstore: hacwebstore at DOVECOT >> >> >> --- >> >> mailertable >> >> DOVECOT dovecot:localhost >> >> --- >> >> virtualusertable -- empty. >> >> --- >> >> >> Did I do it right? Any ideas? >> > As root execute test command below: > sendmail -d60.5 -d27.2 -bv hacwebstore > > -d60.5 should trace map lookups (including mailertable) > -d27.2 should trace alias expansion > > Most likely you should among other things fix R= and S= part of dovecot > mailer to make it strip envelope recipient domain. > S=EnvFromL/HdrFromL, R=EnvToL/HdrToL, > [ http://wiki.dovecot.org/LDA/Sendmail ] > > I ran it without making any changes. This is the output. systemuser at openindiana:~/Downloads/Sendmail# sendmail -d60.5 -d27.2 -bv hacwebstore map_lookup(dequote, systemuser, %0=systemuser) => NOT FOUND (0) map_lookup(dequote, hacwebstore, %0=hacwebstore) => NOT FOUND (0) alias(hacwebstore) aliaswait: sleeping for 2 seconds (loopcount = 1) aliaswait: sleeping for 4 seconds (loopcount = 2) aliaswait: sleeping for 8 seconds (loopcount = 3) aliaswait: sleeping for 16 seconds (loopcount = 4) aliaswait: sleeping for 32 seconds (loopcount = 5) aliaswait: sleeping for 60 seconds (loopcount = 6) ^Csystemuser at openindiana:~/Downloads/Sendmail# --- Then I made these changes to the sendmail.cf file, and restarted sendmail. ######################*****############## ### DOVECOT Mailer specification ### ##################*****################## Mdovecot, P=/usr/local/libexec/dovecot/dovecot-lda, F=DFMPhnu9, S=EnvFromL/HdrFromL, R=EnvToL/HdrFromL, T=DNS/RFC822/X-Unix, A=/usr/local/libexec/dovecot/dovecot-lda -d $u --- This was the output with the modified sendmail.cf: systemuser at openindiana:~/Downloads/Sendmail# sendmail -d60.5 -d27.2 -bv hacwebstore map_lookup(dequote, systemuser, %0=systemuser) => NOT FOUND (0) map_lookup(dequote, hacwebstore, %0=hacwebstore) => NOT FOUND (0) alias(hacwebstore) aliaswait: sleeping for 2 seconds (loopcount = 1) aliaswait: sleeping for 4 seconds (loopcount = 2) aliaswait: sleeping for 8 seconds (loopcount = 3) ^Csystemuser at openindiana:~/Downloads/Sendmail# From starsoft at starnova.net Wed Jan 2 01:17:14 2013 From: starsoft at starnova.net (James Starowitz) Date: Tue, 1 Jan 2013 18:17:14 -0500 Subject: [Dovecot] Folder names Message-ID: Running a pretty basic setup of imap +pop3 on version 2.1.10 Users are able to create folders in imap that contain "&" the folder on the backend reflects "&-" as it should, you can list folder, but then when you relog into imap then decides it can no longer subscribe to this folder due to invalid UTF characters. Essentially allowing users to lock themselves out by using a very common character in a folder name. Might one of the imap client compatibility plugins in imapd cause this quirkiness ? Should I be coming at this from another direction? Is this a bug? From chchai at acelsys.com Wed Jan 2 04:24:20 2013 From: chchai at acelsys.com (Ch Chai) Date: Wed, 2 Jan 2013 10:24:20 +0800 Subject: [Dovecot] Vacation Notice Not Working In-Reply-To: <20130101010814.GA10098@daniel.localdomain> Message-ID: <0b855176974dc95d077086898494b3e0@192.168.168.234> ----------------original message----------------- From: "Daniel Parthey" daniel.parthey at informatik.tu-chemnitz.de To: "Ch Chai" chchai at acelsys.com CC: dovecot at dovecot.org Date: Tue, 1 Jan 2013 02:08:14 +0100 ------------------------------------------------- > Hi, > > Happy new year to everyone on this list :) > > Ch Chai wrote: >> >> >> When I try to active Vacation Notice using Egroupware, I can see >> (xxxx.sieve) >> >> >> generated in mail server. but not working. >> >> > >> >> > * Which sieve related lines can you see in your dovecot logfiles? >> > You can find the log file locations by running: >> > doveadm log find >> * found this path when by run this command : doveadm log find >> Debug: /var/log/dovecot-debug.log >> Info: /var/log/dovecot-info.log >> Warning: /var/log/dovecot.log >> Error: /var/log/dovecot.log >> Fatal: /var/log/dovecot.log > > So what can you find in /var/log/dovecot-info.log and /var/log/dovecot.log > when a mail is delivered to the test account? > >> * When I vim /var/www/web1/user/(user name)/.dovecot.sieve ,it will point >> to my sieve file e.g >> /var/www/web1/user/web1_test/sieve/test_felamimail.sieve > > Seems correct. > > Can you see any .dovecot.sieve.log in the same directory as .dovecot.sieve, > there sieve related errors would be written, if any. > >> * I check back [test_felamimail.sieve] this line ( vacation :days 1 >> :addresses ["test at acelsys.com "] text: ) there is no space after .com, I don't >> know why when I 1st time paste into egroupware it will add space for me. I can >> send/receive mail, just can't activate Vacation Notice. Whats wrong ? > > The vacation notice seems to be activated, but does not work. > We will need some relevant logfile output and doveconf -n output > as well as dovecot and pigeonhole version you are using, > otherwise it will be difficult to help you. > > Regards > Daniel > -- > https://plus.google.com/103021802792276734820 > Hi, Happy New Year :) version: both come with fedora 14 dovecot - 2.0.15 pigeonhole - 2.0.15 * I didn't see any log file or any .dovecot.sieve.log in .dovecot.sieve directory * doveconf -n output: [root at server1 dovecot]# dovecot -n # 2.0.15: /etc/dovecot/dovecot.conf # OS: Linux 2.6.35.14-106.fc14.i686 i686 Fedora release 14 (Laughlin) auth_debug = yes debug_log_path = /var/log/dovecot-debug.log disable_plaintext_auth = no info_log_path = /var/log/dovecot-info.log log_path = /var/log/dovecot.log mail_debug = yes managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date mbox_write_locks = fcntl passdb { driver = pam } plugin { plugin = autocreate managesieve sieve sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } protocols = sieve imap pop3 service managesieve-login { inet_listener sieve { address = * port = 2000 } } ssl_cert = References: <20130101010814.GA10098@daniel.localdomain> <0b855176974dc95d077086898494b3e0@192.168.168.234> Message-ID: <20130102035833.GA17286@daniel.localdomain> Ch Chai wrote: > pigeonhole - 2.0.15 There is definitely no pigeonhole version 2.0.15, see [1]. - latest pigeonhole version for Dovecot 2.0.x is 0.2.6 - latest pigeonhole version for Dovecot 2.1.x is 0.3.3 Which mechanism are you using for delivery from your MTA to Dovecot? dovecot-lda or any other mechanism? Possibly, the sieve mechanism of pigeonhole does not even get triggered, if the mail is delivered directly to the target mailbox. According to the Sieve documentation [2] you need to use Dovecot's Local Delivery Agent (LDA) [3] or the LMTP service [4] for SIEVE support to work correctly on mail delivery. Regards Daniel [1] http://pigeonhole.dovecot.org/download.html [2] http://wiki2.dovecot.org/Pigeonhole/Sieve [3] http://wiki2.dovecot.org/LDA [4] http://wiki2.dovecot.org/LMTP -- https://plus.google.com/103021802792276734820 From me at junc.eu Wed Jan 2 08:58:51 2013 From: me at junc.eu (Benny Pedersen) Date: Wed, 02 Jan 2013 07:58:51 +0100 Subject: [Dovecot] dovecot and avahi In-Reply-To: <50E309B3.5040003@htt-consult.com> References: <50E309B3.5040003@htt-consult.com> Message-ID: <89c88cb5e17575c82cb43e2b8913e3a4@junc.eu> Robert Moskowitz skrev den 2013-01-01 17:07: > I can't find any information on this in the Dovecot documentation ot > googling. Perhaps my search fu is low this year. google "avahi dns srv record" also search for zerroconf case is still what clients use it From andrzej.filip at gmail.com Wed Jan 2 13:05:42 2013 From: andrzej.filip at gmail.com (Andrzej A. Filip) Date: Wed, 02 Jan 2013 12:05:42 +0100 Subject: [Dovecot] Dovecot Virtual Users with Sendmail In-Reply-To: References: <50E31D7B.7060305@gmail.com> <50E32A54.2060203@gmail.com> <50E36466.2080307@gmail.com> Message-ID: <50E41486.6000601@gmail.com> On 01/02/2013 12:09 AM, DormitionSkete at hotmail.com wrote: > [...] > I ran it without making any changes. This is the output. > > systemuser at openindiana:~/Downloads/Sendmail# sendmail -d60.5 -d27.2 -bv hacwebstore > map_lookup(dequote, systemuser, %0=systemuser) => NOT FOUND (0) > map_lookup(dequote, hacwebstore, %0=hacwebstore) => NOT FOUND (0) > alias(hacwebstore) > aliaswait: sleeping for 2 seconds (loopcount = 1) > aliaswait: sleeping for 4 seconds (loopcount = 2) > aliaswait: sleeping for 8 seconds (loopcount = 3) > aliaswait: sleeping for 16 seconds (loopcount = 4) > aliaswait: sleeping for 32 seconds (loopcount = 5) > aliaswait: sleeping for 60 seconds (loopcount = 6) > ^Csystemuser at openindiana:~/Downloads/Sendmail# > [...] Have you executed newaliases command after modifying aliases file? The command adds special "magic" entry to the compiled version of aliases file used by sendmail. URL(s): http://etutorials.org/Server+Administration/Sendmail/Part+III+The+Configuration+File/Chapter+24.+The+O+Options+Configuration+Command/AliasWait/ From tlx at leuxner.net Wed Jan 2 13:41:11 2013 From: tlx at leuxner.net (Thomas Leuxner) Date: Wed, 2 Jan 2013 12:41:11 +0100 Subject: [Dovecot] doveadm backup issue with ACL plugin enabled Message-ID: Hi, when trying to backup mailboxes I noticed some hiccups when the ACL plugin is enabled. It works fine with ACL disabled: $ doveadm -o plugin/quota= backup -u tlx at leuxner.net mdbox:/home/backups/tlx/mdbox However, enabled (and w/ a mailbox actually using ACLs) the following error occurs: $ doveadm -o plugin/quota= backup -u tlx at leuxner.net mdbox:/home/backups/tlx/mdbox dsync(tlx at leuxner.net): Error: Couldn't update mailbox metadata: Permission denied I tried to override the ACL plugin via '-o' to no avail, but I may be using the wrong syntax there. Regards Thomas -- # 2.2.alpha1 (cd093d05037e): /etc/dovecot/dovecot.conf # OS: Linux 3.2.0-0.bpo.4-amd64 x86_64 Debian 6.0.6 auth_cache_size = 16 k auth_verbose = yes mail_location = mdbox:~/mdbox mail_plugins = acl quota stats mailbox_list_index = yes namespace { list = yes location = mdbox:/var/vmail/public prefix = Public/ separator = / subscriptions = no type = public } namespace inbox { hidden = no inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox "Sent Messages" { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = separator = / type = private } passdb { args = username_format=%u /var/vmail/auth.d/%d/passwd driver = passwd-file } plugin { acl = vfile:/var/vmail/conf.d/%d/acls:cache_secs=300 mail_log_events = expunge mailbox_delete quota = dict:user::file:%h/mdbox/dovecot-quota quota_rule = *:storage=1GB quota_rule2 = Trash:storage=+10%% sieve = ~/.dovecot.sieve sieve_dir = ~/sieve sieve_global_dir = /var/vmail/conf.d/%d/sieve stats_refresh = 30s stats_track_cmds = yes } protocols = " imap lmtp" quota_full_tempfail = yes service auth-worker { unix_listener auth-worker { user = doveauth } user = doveauth } service auth { unix_listener /var/spool/postfix/private/auth { group = postfix mode = 0660 user = postfix } user = doveauth } service imap-login { inet_listener imap { address = 1.2.3.4 port = 143 } inet_listener imaps { port = 0 } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { group = postfix mode = 0660 user = postfix } } service stats { fifo_listener stats-mail { mode = 0600 user = vmail } } ssl_ca = From howard at leadmon.net Wed Jan 2 14:19:04 2013 From: howard at leadmon.net (Howard Leadmon) Date: Wed, 2 Jan 2013 07:19:04 -0500 Subject: [Dovecot] Can't rename mailboxes, any ideas on how to fix? Message-ID: <004401cde8e3$5cecdea0$16c69be0$@leadmon.net> I am running Dovecot 2.1.12 under FreeBSD, and I use Outlook 2010 with imap to connect to my server. I know I used to be able to rename mailboxes, as I do this every year at year end, but when I went to rename some mailboxes the start of this year, blamo up popped the message "CANNOT Renaming not supported across conflicting directory permissions". Then only thing that has really been updated here, is Dovecot itself, as I know the FBSD port updates when new versions are released. Any clues on what may have caused this, or how to best correct it? --- Howard Leadmon From cr at sys4.de Wed Jan 2 16:16:45 2013 From: cr at sys4.de (=?utf-8?q?Christian_R=C3=B6=C3=9Fner?=) Date: Wed, 02 Jan 2013 15:16:45 +0100 Subject: [Dovecot] =?utf-8?q?2=2E1=2E12=3A_Panic=3A_file_solr-connection?= =?utf-8?q?=2Ec=3A_line_547_=28solr=5Fconnection=5Fpost=5Fmore=29?= In-Reply-To: <1839842.HpUryo95cv@bart> Message-ID: > solr setup: > Java: icedtea 6.1.11.5 > Solr: 3.6.2 running in tomcat 7.0.32 I am running solr on Tomcat 6. > complete dovecot log: > doveadm(my at user): Error: fts_solr: Invalid XML input at 85:198: mismatched tag (near: Apache Tomcat/7.0.32-gentoo - Error report