Re: [Dovecot] Dovecot features
Curtis Maloney sent this message on 4/9/2008 9:37 AM: Phan Thanh Diện wrote: Hello, Thank you for your email. Unfortunately we are facing the problem I wrote about: after a user access mail box via web client (www.squirrel.org) he can not see emails any more via pop3. The reason is emails moved from 'new' to 'cur' although nothing done. Dovecot automatically moves. Dovecot moves it because it is supposed to. Messages in "new/" are messages that the client has not "Seen" yet. Once they've seen them, the Maildir specs dictate the messages be moved to cur/. Currently with courier-imap, no matter we access via web mail or imap client (such as ThunderBird or Outlook) users can retrive emails via pop3. So my question is: does courier-imap behave abnormally or my dovecot mis-configured? I couldn't say much about how courier works, having not used it. I know Timo and many others have investigated its behaviour, though. I vaguely recall some Dovecot config option about how Seen is handled... have you checked through the config file? -- Curtis Maloney [EMAIL PROTECTED] I understand that seen messages must be moved to 'cur' folder. My question is: when web mail client lists messages in front page, none of them selected yet, do they become SEEN or not? The second question: if I disable pop3 with XMail and use dovecot for pop3 service, can I see emails in 'cur' folder via pop3 connection? Thank you,
Re: [Dovecot] Dovecot features
Phan Thanh Diện wrote: Hello, Thank you for your email. Unfortunately we are facing the problem I wrote about: after a user access mail box via web client (www.squirrel.org) he can not see emails any more via pop3. The reason is emails moved from 'new' to 'cur' although nothing done. Dovecot automatically moves. Dovecot moves it because it is supposed to. Messages in "new/" are messages that the client has not "Seen" yet. Once they've seen them, the Maildir specs dictate the messages be moved to cur/. Currently with courier-imap, no matter we access via web mail or imap client (such as ThunderBird or Outlook) users can retrive emails via pop3. So my question is: does courier-imap behave abnormally or my dovecot mis-configured? I couldn't say much about how courier works, having not used it. I know Timo and many others have investigated its behaviour, though. I vaguely recall some Dovecot config option about how Seen is handled... have you checked through the config file? -- Curtis Maloney [EMAIL PROTECTED]
Re: [Dovecot] Dovecot features
Curtis Maloney sent this message on 4/9/2008 5:54 AM: Phan Thanh Diện wrote: Hi, We would like to switch from courier-imap to dovecot. I have installed dovecot on a machine running FreeBSD 6.3 and now testing it. My questions are below: 1. Can I configure dovecot to delete all files that are older, say 10 days, from defined mail boxes (for example Trash or Spam). Yes - take a look at the "expire" plugin: http://wiki.dovecot.org/Plugins 2. After I access mail box (using web mail squirrel imap) all emails moved from 'new' directory to 'cur'. Then messages are not accessible for pop3. Such behavor doesn't occur with courier-imap. Can I force dovecot to behave like courier-imap? That shouldn't be. If you're using Dovecot for both POP3 and IMAP, your mail client will be able to see all the mail no matter which protocol you access it with. However, your mail client may be ignoring mail that's been "Seen". I'm not sure why courier would behave differently with this. Have you read the migration guide? http://wiki.dovecot.org/Migration/Courier Many thanks for help. Dien Phan -- Curtis Maloney [EMAIL PROTECTED] Hello, Thank you for your email. We have been using XMail (www.xmailserver.org) for smtp and pop3, courier-imap for imap. This works for many years and we don't want to change. The only change we would like is to switch from courier-imap to dovecot. So configuration must be unchange: xmail for pop3 and smtp, dovecot for imap. Unfortunately we are facing the problem I wrote about: after a user access mail box via web client (www.squirrel.org) he can not see emails any more via pop3. The reason is emails moved from 'new' to 'cur' although nothing done. Dovecot automatically moves. Currently with courier-imap, no matter we access via web mail or imap client (such as ThunderBird or Outlook) users can retrive emails via pop3. So my question is: does courier-imap behave abnormally or my dovecot mis-configured? Dien Phan
Re: [Dovecot] Dovecot features
Phan Thanh Diện wrote: Hi, We would like to switch from courier-imap to dovecot. I have installed dovecot on a machine running FreeBSD 6.3 and now testing it. My questions are below: 1. Can I configure dovecot to delete all files that are older, say 10 days, from defined mail boxes (for example Trash or Spam). Yes - take a look at the "expire" plugin: http://wiki.dovecot.org/Plugins 2. After I access mail box (using web mail squirrel imap) all emails moved from 'new' directory to 'cur'. Then messages are not accessible for pop3. Such behavor doesn't occur with courier-imap. Can I force dovecot to behave like courier-imap? That shouldn't be. If you're using Dovecot for both POP3 and IMAP, your mail client will be able to see all the mail no matter which protocol you access it with. However, your mail client may be ignoring mail that's been "Seen". I'm not sure why courier would behave differently with this. Have you read the migration guide? http://wiki.dovecot.org/Migration/Courier Many thanks for help. Dien Phan -- Curtis Maloney [EMAIL PROTECTED]
[Dovecot] Please help: LDAP configuration _almost_ works.
Red Hat Linux release 7.2 (Enigma)
OpenLDAP 2.3.38
Dovecot 1.0.12
SHORT VERSION
- ---
Here is my dovecot-ldap.conf:
hosts = ldap.lrtz
dn = cn=varmail,ou=users,dc=lorentz,dc=com
dnpass = *
ldap_version = 3
auth_bind = yes
pass_filter = (&(objectClass=inetOrgPerson)(mail=%Lu))
base = ou=users, dc=%Dd
scope = onelevel
I have tested using the above information with ldapsearch, and it works
fine.
However, when dovecot tries to authenticate the user, the LDAP server
receives the query and responds to it (according to the LDAP log file),
but dovecot just hangs there. 180 seconds later, it drops the IMAP
client.
E.g.:
The dovecot log shows:
Apr 3 08:13:21 fourier dovecot: auth(default): new auth connection:
pid=15774
Apr 3 08:13:30 fourier dovecot: auth(default): client in:
AUTH^I1^IPLAIN^Iservice=IMAP^Isecured^Ilip=x.x.x.x^Irip=y.y.y.y^Iresp=
Apr 3 08:13:30 fourier dovecot: auth(default):
ldap([EMAIL PROTECTED],y.y.y.y): bind search: base=ou=users,
dc=lorentz,dc=com
filter=(&(objectClass=inetOrgPerson)([EMAIL PROTECTED]))
Apr 3 08:16:30 fourier dovecot: imap-login: Disconnected: Inactivity:
method=PLAIN, rip=y.y.y.y, lip=x.x.x.x, TLS
The OpenLDAP log shows that the query is received and that it
returns a match:
Apr 3 08:13:30 fourier slapd[14039]: conn=7 op=3 SRCH
base="ou=users,dc=lorentz,dc=com" scope=1 deref=0
filter="(&(objectClass=inetOrgPerson)([EMAIL PROTECTED]))"
Apr 3 08:13:30 fourier slapd[14039]: conn=7 op=3 SRCH attr=uid
Apr 3 08:13:30 fourier slapd[14039]: conn=7 op=3 SEARCH RESULT tag=101
err=0 nentries=1 text=
LONG VERSION
---
My users login using their email address as username. Each
domain has
their own LDAP subtree. Each user has an entry in the ou=users subtree
of the domain subtree, and has a mail: field (inetOrgPerson) listing
their email address/login name.
I am trying to use auth_bind: when I login with
[EMAIL PROTECTED],
dovecot should search for [EMAIL PROTECTED] in the onelevel below
ou=users,dc=lorentz,dc=com and find me as "cn=Jack
McKinney,ou=users,dc=lorentz,dc=com".
I have created an entry in LDAP (varmail) that should be able to
do
this query. Indeed, from the command line, it works:
ldapsearch -h ldap.lrtz -b 'ou=users, dc=lorentz, dc=com' -D
'cn=varmail,ou=users,dc=lorentz,dc=com' -x -W -s onelevel
'(&(objectClass=inetOrgPerson)([EMAIL PROTECTED]))'
Enter LDAP Password:
# extended LDIF
#
# LDAPv3
# base with scope oneLevel
# filter: (&(objectClass=inetOrgPerson)([EMAIL PROTECTED]))
# requesting: ALL
#
# Jack McKinney, users, lorentz.com
dn: cn=Jack McKinney,ou=users,dc=lorentz,dc=com
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
cn: Jack McKinney
givenName: Jack McKinney
sn: McKinney
mail: [EMAIL PROTECTED]
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
It appears that dovecot performs the above query successfully, but then
never uses the password and retrieved DN to attempt to bind and
authenticate the user. Instead, it just times out. (See log files above
in the SHORT VERSION).
I tried to add pass_attrs, in case there was a bug in dovecot where it
ignores the reply if there are no pass_attrs (even though none are
needed), but it still fails the same way.
Timo Sirainen suggested that I add a debug line to src/auth/db-ldap.c
ldap_input() around line 372:
msgid = ldap_msgid(res);
// added line:
i_info("LDAP: Received reply %d", msgid);
I did this. Now, when the server first starts up, this line is logged.
However, it is not logged when it queries the LDAP server as a result of
an IMAP connection needing authentication.
--
Jack McKinney
GPG 1024D/99C6A174
[EMAIL PROTECTED] YM:lfaatsnat2006 AIM:jackmclorentz
"There is no parameter that makes it impossible for you to perform still
more excellently."
-Mario Cuomo, on the lack of a clock in baseball
signature.asc
Description: This is a digitally signed message part
Re: [Dovecot] temporary disable account
Hello, seem to be problem of vpopmail. There is only solution to set sticky bit on whole domain but no for user (maybe it's possible but i don't know how). 2008/4/8, Timo Sirainen <[EMAIL PROTECTED]>: > On Tue, 2008-04-08 at 06:48 +0200, Lampa wrote: > > Hello, > > > > is there some way how to disable temporarily account or access to > > files. > > > If you just disable a user's access, you also need to kill any existing > processes the user might have. > > > > I need to backup with tar, but there is problem when tar is > > reading and some file changed (with --ignore-failed-read it continues > > but archive is not created and without --ignore-failed-read it fails). > > > Really? I'm pretty sure I've successfully created tars where files have > changed during it and without any special options. And if you're using > maildir there shouldn't be any mailbox corruption since only metadata > files change. > > You could anyway lock mailboxes one at a time. With maildir creating > dovecot-uidlist.lock file (but that also means creating the .lock safely > so that if it exists, wait until it's gone). > > -- Lampa
[Dovecot] Plugin trash does not work
Hi.
I use dovecot 1.0.13 on FreeBSD 7.0. I want my Junk mail will be deleted
if my quota is exceeded. So, I configured trash plugin (with Dovecot
wiki). In my dovecot.conf:
protocol imap {
mail_plugins = quota trash
}
plugin {
trash = /usr/local/etc/dovecot-trash.conf
}
In my /usr/local/etc/dovecot-trash.conf:
1 Junk
2 Trash
Emails in there mailboxes are never deleted.
My mailbox is like this:
.Junk dovecot-uidlist dovecot.index.log.2 tmp
.Trashdovecot.indexmaildirsize
cur dovecot.index.cache new
dovecot-keywordsdovecot.index.log subscriptions
I want my .Junk directory be emptied when quota is exceeded.
May i forgot something? Could you help me?
Thanks very much!
- Nicolas.
Re: [Dovecot] Strange dmesg messages
On Tue, 2008-04-08 at 00:16 +0300, Uldis Pakuls wrote: > Charles Marcus wrote: > > On 4/7/2008, Raphael Bittencourt S. Costa ([EMAIL PROTECTED]) > > wrote: > >> Using dnotify dovecot's performance was very bad. The system consumes > >> 90% of cpu with just a few imap process running (about 30 process). > >> The performance using --with-notify=none was the same as using inotify, > >> so it could be the solution for me. > > > > dnotify has been deprecated for a long time, and inotify has been > > recommended to be used instead for just as long... > > > You are using SLES10 - isn't ? Yes. > Have you contacted SuSE developers about > this inotify problem? Not yet. > Even if there is something wrong with dovecot it > MUST NOT cause kernel level crash, just return error to dovecot... I will try RedHat ES5. Unfornately I have to use Suse or RedHat to have a better support on problems with the storage from Hitachi.
[Dovecot] dovecot and postfix virtual mailbox domains
Hello, I'm trying to get dovecot and postfix virtual domains working on an fc6 system. My software versions are postfix 2.4.5 installed from rpm and dovecot 1.0.3 also installed from rpm. I'm only running secure protocols, pop3s at the moment, imaps later on. I've set up postfix for virtual mailbox domains as per it's howto on the subject and confirmed that email sent gets delivered to the virtual area, which in this case is /home/vmail/domain.com/username, there's a maildir under that. In this case the user is a shell user who has a login, in all other cases the users will be completely virtual, having no login account and being completely virtual. When i atempt to get mail from the server using this user, the one with the login, i am getting a can not map username coming from dovecot. Here's my config: # 1.0.3: /etc/dovecot.conf base_dir: /var/run/dovecot/ log_path: /var/log/dovecot info_log_path: /var/log/dovecot.info protocols: pop3s ssl_ca_file: /etc/dovecot/ca-cert.pem ssl_cert_file: /etc/dovecot/pop.cert ssl_key_file: /etc/dovecot/pop.key ssl_cipher_list: ALL:!LOW disable_plaintext_auth: yes login_dir: /var/run/dovecot/login login_executable: /usr/libexec/dovecot/pop3-login valid_chroot_dirs: /var/spool/vmail mail_extra_groups: mail mail_location: maildir:/home/vmail/%d/%u maildir_copy_with_hardlinks: yes mail_executable: /usr/libexec/dovecot/pop3 mail_plugin_dir: /usr/lib64/dovecot/pop3 auth default: mechanisms: plain login verbose: yes passdb: driver: passwd userdb: driver: passwd I'd appreciate any pointers. I think i am close, but am not seeing it. Thanks. Dave.
[Dovecot] Dovecot features
Hi, We would like to switch from courier-imap to dovecot. I have installed dovecot on a machine running FreeBSD 6.3 and now testing it. My questions are below: 1. Can I configure dovecot to delete all files that are older, say 10 days, from defined mail boxes (for example Trash or Spam). 2. After I access mail box (using web mail squirrel imap) all emails moved from 'new' directory to 'cur'. Then messages are not accessible for pop3. Such behavor doesn't occur with courier-imap. Can I force dovecot to behave like courier-imap? Many thanks for help. Dien Phan
Re: [Dovecot] temporary disable account
On Tue, 2008-04-08 at 06:48 +0200, Lampa wrote: > Hello, > > is there some way how to disable temporarily account or access to > files. If you just disable a user's access, you also need to kill any existing processes the user might have. > I need to backup with tar, but there is problem when tar is > reading and some file changed (with --ignore-failed-read it continues > but archive is not created and without --ignore-failed-read it fails). Really? I'm pretty sure I've successfully created tars where files have changed during it and without any special options. And if you're using maildir there shouldn't be any mailbox corruption since only metadata files change. You could anyway lock mailboxes one at a time. With maildir creating dovecot-uidlist.lock file (but that also means creating the .lock safely so that if it exists, wait until it's gone). signature.asc Description: This is a digitally signed message part
Re: [Dovecot] feature request: deny IP address via database
On Mon, 2008-04-07 at 12:20 -0400, Dave McGuire wrote:
> Hey folks. One feature I'd really like to see in dovecot is the
> ability to point it at a database (with a configurable query) and
> have it allow or deny a connection based on looking up the source IP
> address in that database.
passdb sql {
args = dovecot-sql-deny.conf
deny = yes
}
Where the dovecot-sql-deny.conf has something like:
password_query = select 1 from deny_ips where ip = '%r'
signature.asc
Description: This is a digitally signed message part
Re: [Dovecot] feature request: deny IP address via database
Written by Bill Cole on Apr 7, 2008, at 4:58 PM: Hey folks. One feature I'd really like to see in dovecot is the ability to point it at a database (with a configurable query) and have it allow or deny a connection based on looking up the source IP address in that database. ... much stuff discarded. I understand that the behaviour requested is similar to that of allow_nets (http://wiki.dovecot.org/PasswordDatabase/ExtraFields/AllowNets) but modified to explicitly deny some IPs (individually or in the range form). If so, probably some of the work should be already done. Sorry, I do not have the programming abilities enough to face this. Incidentally, I would like to notice that I opened a thread a few days ago regarding allow_nets and database (Bill's request needs to make use of an external database too) because I am not able to make allow_nets work properly when using an external DB *and IP ranges*. Maybe Bill would like to block single IPs so this bug? wold not apply to his case if an extension or adaptation of allow_nets is done. (My request, in case someone out there is curious: "Allow_nets + MySQL failing when using range notation") Regards, Javier
Re: [Dovecot] Index maintenance
Anders wrote: > I am unable to find information about what happens to the index file if I > use something like the cron script at the bottom of > http://wiki.dovecot.org/Plugins/Expire > > There must be some information in the index that is no longer needed. When > and how will Dovecot clean this up? A similar question is whether the expire plugin will help me at all, when it is only used for folders that receive new messages each day? Will the expire-tool give me the index maintenance that I am looking for? Thanks, Anders.
Re: [Dovecot] temporary disable account
Maybe the problem is not with Dovecot, but with your backup strategy? The same problem exists with files in regular homedirs. You could look into generic solutions for this problem f.i. LVM snapshots. Regards, Tom Lampa schreef: Hello, that's not good solution ;( some mailboxes have 1 - 3GB. So need another solution Or it can be feature request: disable access when user homedir is sticky ? 2008/4/8, Tolga <[EMAIL PROTECTED]>: Lampa wrote: Hello, MTA is qmail, and there is no problem with it (qmail is stopped for current user - sticky bit set). Problem is dovecot - and is not possible to stop dovecot (due to clients) Then copy mailboxes to somewhere else and make backup there. 2008/4/8, Tolga <[EMAIL PROTECTED]>: Lampa wrote: Hello, is there some way how to disable temporarily account or access to files. I need to backup with tar, but there is problem when tar is reading and some file changed (with --ignore-failed-read it continues but archive is not created and without --ignore-failed-read it fails). Some accounts are huge ;( Need something like qmail sticky bit or world writable directory - qmail is not delivering when one of above conditions hits. Stop your MTA. Thank you for helping me. -- Stay with *nix :) -- Stay with *nix :)
