here is the dovecot -n dump
dovecot -n
# 2.0.19: /etc/dovecot/dovecot.conf
# OS: Linux 3.8.13-xxxx-grs-ipv6-64-vps x86_64 Ubuntu 12.04.2 LTS ext3
auth_mechanisms = plain login
mail_location = maildir:/var/mail/vhosts/%d/%n
mail_privileged_group = mail
passdb {
args = /etc/dovecot/dovecot-sql.conf.ext
driver = sql
}
protocols = imap pop3 lmtp
service auth-worker {
user = vmail
}
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0666
user = postfix
}
unix_listener auth-userdb {
mode = 0600
user = vmail
}
user = dovecot
}
service imap-login {
inet_listener imap {
port = 0
}
}
service lmtp {
unix_listener /var/spool/postfix/private/dovecot-lmtp {
group = postfix
mode = 0600
user = postfix
}
}
service pop3-login {
inet_listener pop3 {
port = 0
}
}
ssl = required
ssl_cert = </etc/ssl/certs/dovecot.pem
ssl_key = </etc/ssl/private/dovecot.pem
userdb {
args = uid=vmail gid=vmail home=/var/mail/vhosts/%d/%n
driver = static
}
root@mailer:~# telnet localhost 143
Trying 127.0.0.1...
telnet: Unable to connect to remote host: Connection refused
netstat -la -pute | grep dovecot
tcp 0 0 *:pop3s *:* LISTEN
root 12974 5098/dovecot
tcp 0 0 *:imaps *:* LISTEN
root 12989 5098/dovecot
tcp6 0 0 [::]:pop3s [::]:* LISTEN
root 12975 5098/dovecot
tcp6 0 0 [::]:imaps [::]:* LISTEN
root 12990 5098/dovecot
I dont like the "port = 0" but thats what was mentionned in the tutorial
so I changed /etc/dovecot/conf.d/10-master.conf
/
service imap-login {
inet_listener imap {
port = 143
}
...
}
service pop3-login {
inet_listener pop3 {
port = 110
}
...
}
now
netstat -la -pute | grep dovecot
tcp 0 0 *:pop3s *:* LISTEN
root 162828 8341/dovecot
tcp 0 0 *:pop3 *:* LISTEN
root 162826 8341/dovecot
tcp 0 0 *:imap2 *:* LISTEN
root 162845 8341/dovecot
tcp 0 0 *:imaps *:* LISTEN
root 162847 8341/dovecot
tcp6 0 0 [::]:pop3s [::]:* LISTEN
root 162829 8341/dovecot
tcp6 0 0 [::]:pop3 [::]:* LISTEN
root 162827 8341/dovecot
tcp6 0 0 [::]:imap2 [::]:* LISTEN
root 162846 8341/dovecot
tcp6 0 0 [::]:imaps [::]:* LISTEN
root 162848 8341/dovecot
telnet localhost 110
Trying 127.0.0.1...
Connected to localhost.localdomain.
Escape character is '^]'.
+OK Dovecot ready.
user adn...@mailer.adnane.me
+OK
pass mypasseword
+OK Logged in.
LIST
+OK 0 messages:
root@mailer:~# telnet mailer.adnane.me 143
Trying 2001:41d0:52:200::326...
Connected to mailer.adnane.me.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE
STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
1 login adn...@mailer.adnane.me mypassword
1 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT
SORT=DISPLAY THREAD=REFERENCES THREAD=REFS MULTIAPPEND UNSELECT CHILDREN
NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT
SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS] Logged in
2 logout
* BYE Logging out
2 OK Logout completed.
Connection closed by foreign host.
/
/but for thunderbird I got this in logs
Jul 22 22:32:53 mailer dovecot: pop3-login: Disconnected (tried to use
disabled plaintext auth): rip=196.217.182.199, lip=5.135.151.43
Jul 22 22:36:04 mailer dovecot: pop3(adn...@mailer.adnane.me):
Disconnected: Logged out top=0/0, retr=0/0, del=0/0, size=0
On 07/22/2013 08:36 AM, Steffen Kaiser wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Mon, 22 Jul 2013, Adnane wrote:
I think the issue is with authentication
root@mailer:~# tail -f /var/log/syslogJul
Jul 22 03:34:41 mailer dovecot:imap-login: Disconnected (no auth
attempts): rip=41.251.155.145, lip=5.135.151.43, TLS
Jul 22 03:35:02 mailer dovecot: imap-login: Disconnected (no auth
attempts): rip=41.251.155.145, lip=5.135.151.43, TLS handshaking:
Disconnected
Jul 22 03:35:02 mailer dovecot: imap-login: Disconnected (no auth
attempts): rip=41.251.155.145, lip=5.135.151.43, TLS handshaking:
Disconnected
Jul 22 03:35:03 mailer dovecot: imap-login: Disconnected (no auth
attempts): rip=41.251.155.145, lip=5.135.151.43, TLS: Disconnected
There is "no auth attempts", so you do not have an issue with
authentication.
Because of the "TLS handshaking: Disconnected" it looks like the
connection gets cut during the initial TLS handshake. To debug this,
first increare logging, then try from localhost without encryption, e.g.:
telnet localhost 143
1 login "loginname" "password"
and watch the human friendly output. Terminate the IMAP connection via
2 logout
Maybe that client does not like your SSL cert and drops the connection
thereof? Or maybe a firewall thinks it has to fiddle in, e.g. change
Thunderbird to use SSL on port 993 instead of STARTTLS on 143.
Kind regards,
- -- Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iQEVAwUBUezg/13r2wJMiz2NAQKjkQf+MSiRcG8h4C3cdH2uKQNvc4K1UkJVmPjx
tZvsBQmMQB0kY9y9GC9YiDKKCx3Cua6lxQ89Mbh4UDkjWdIV6T617QXT55HglLoY
+fS1vVAIjCQlOD42GW1W8XKrQN9mfzCDw2CvdtMX8weiXPvsMA0ZMT/m5ZCWOtzR
8eP1Jjd8APuTPQqYg13+vWBSWNOfeyeY69m3loqKAuSw4ntSRglx5qlMrK8IRSji
MHXkX2HJmbSV+iFstDRvbqVRWkJCGj6mzt+N34HU3py1H5zxiCjOSF9Q3UkU4psO
7xIGEDHbIrLpAca+6B2ZRIcfU0BgRAsvmcLLogqH40G/F7edud9YGw==
=9TD0
-----END PGP SIGNATURE-----
