Re: [Dovecot] Can't get authentication for masterusers on Mac OS X Server 10.6.8
Hi I'm esperiencing the same issue during the import from OSX Server to Zimbra. Did you succeded in your migration? can you share some suggestion about that? Thanks in advance for your help. -- Best regards, Giuseppe Chiesa
replication with plugin won´t work
Hi all,
i try to setup a master-master replication with dovecot / dsync. I´m
using virtual-users.
When I call
doveadm sync -A remote:vmail@server2
new mails are copied to the second server, but new messages from server
2 not on Server 1. To fix this i run
doveadm sync -A remote:vmail@server
on the 2nd server
But I want that it works with dovecot / dsync (see my config at the end
- identical on bot servers, only mail_replica is different).
I added some services regarding http://wiki2.dovecot.org/Replication
If i send a local mail on one server it will not be replicated to the
other server until i run doveadm sync.
Maybe i just missed some steps in my setup?
doveadm user '*' displays the right users on both servers.
=== docecot.conf ===
# 2.2.13 (7b25994a8cb7): /etc/dovecot/dovecot.conf
# OS: Linux 2.6.32-042stab076.8 x86_64 Debian 7.5
auth_mechanisms = plain login ntlm
disable_plaintext_auth = no
dsync_remote_cmd = ssh -p 4711 -l%{login} %{host} doveadm dsync -u%u
listen = *,[::]
log_timestamp = %Y-%m-%d %H:%M:%S
mail_debug = yes
mail_plugins = notify replication
mail_privileged_group = vmail
passdb {
args = /etc/dovecot/dovecot-sql.conf
driver = sql
}
plugin {
mail_replica = remote:vmail@server2
quota = dict:user::file:/var/vmail/%d/%n/.quotausage
replication_full_sync_interval = 1 hours
sieve = /var/vmail/%d/%n/.sieve
}
protocols = imap pop3
service aggregator {
fifo_listener replication-notify-fifo {
mode = 0666
user = vmail
}
unix_listener replication-notify {
mode = 0666
user = vmail
}
}
service auth {
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0660
user = postfix
}
unix_listener auth-userdb {
group = vmail
mode = 0600
user = vmail
}
user = root
}
service config {
unix_listener config {
user = vmail
}
}
service doveadm {
user = vmail
}
service imap-login {
client_limit = 1000
process_limit = 500
}
service replicator {
process_min_avail = 1
}
ssl_cert = /etc/postfix/smtpd.cert
ssl_key = /etc/postfix/smtpd.key
userdb {
args = /etc/dovecot/dovecot-sql.conf
driver = sql
}
protocol imap {
mail_plugins = quota imap_quota
}
protocol pop3 {
mail_plugins = quota
pop3_uidl_format = %08Xu%08Xv
}
protocol lda {
mail_plugins = sieve quota
}
=== docecot.conf ===
regards
Florian
Re: Parse dovecot 2.2 logs with logstash
On 10 Jun 2014, at 20:31, Bruno Galindro da Costa bruno.galin...@gmail.com
wrote:
Guys,
I need to parse my dovecot log files with logstash grok patterns. Is
there any document specifying the patterns used by dovecot to write it's
logs?
I need to find all the log possibilities that could be writed to log
files by dovecot. So, if a document like that exists or if anyone could
answer my question, I'll could make the parser with less difficult.
kv filter in logstash is very useful with dovecot, below is short snippet that
will extract key=value pairs specified in “include_keys” from log line.
Additionally you might want to set mail_log_prefix to be something like
“service=%s, user=%s, ” to make it easier to parse.
filter {
if [syslog_program] == dovecot {
kv {
source = syslog_message
trim = ,
include_keys = [ box, from, in, lip, method, mpid,
msgid, out, rip, session, size, user ]
}
}
}
Re: Subject tag [Dovecot] is gone
Am 11.06.2014 07:28, schrieb Nick Edwards: Nothing. Reindel has always been an abusive troll if somebody wants to feel absued he will find always a reason - calling software stripping headers out of mails is not a good one to feel so so shut up until you can't distinguish between firt name and last name, write the last name even wrong and especially in case i abused nobody On 6/11/14, Koenraad Lelong dove...@ace-electronics.be wrote: op 10-06-14 17:12, Reindl Harald schreef: than you have crap software somewhere on your side What did I do to get such reply ? signature.asc Description: OpenPGP digital signature
Re: Subject tag [Dovecot] is gone
In this list we have Timo and many other people very skilled in dovecot and mail related stuff. I read the considerations and I suppose they are right, but ... Also there are people like me that are lower profile sysadmins. Filtering mail isn't a problem, but, in my opinion, having the tag [Dovecot] in the subject is the better solution for visual filtering. I receive 2-300 mail / day in the inbox. Often I don't read a dovecot or postfix thread if the subject doesn't interest me, but sometime the tag [Dovecot], increase the appeal of others keyword ... Pheraps, mail filtered in folders are rarely read in real time. Usually I look at it in my spare time (very reduced), or when I search for a specific argoment. A couple of friends agree with me, so I am not the only ... ;-) This is only our opinion as low profile sysadmin, Anyway, thanks to Timo and others for the great product and the support. Regards, Paolo
Re: Subject tag [Dovecot] is gone
On 2014-06-10 17:23, Koenraad Lelong wrote: op 10-06-14 17:12, Reindl Harald schreef: than you have crap software somewhere on your side What did I do to get such reply ? Don't bother paying too much attention, Harald has been quite the primadonna ever since I joined this list. Pretty sure he's one of those fellows who are doing the 'grumpy curmudgeon' on the Internet but then turn out to be rather quiet/shy guys in real life. ;-) - Frerich
Re: ot: accepting self certs into win pc?
Hi Frank, list, On 6/10/2014 3:10, Frank Leonhardt wrote: I get endless grief over this, but if you think Microsoft is bad, try Apple. I wrote some notes on it once: http://blog.frankleonhardt.com/2012/certificate-errors-on-internet-explorer-9-and-how-to-stop-them/ I didn't mention it in the post, but IIRC this did work for making some versions Outlook (and other Microsoft Mail things) happy at the same time. But do the above steps work for folks here..? I've tried them (IE 11, win7, outlook 2013) but outlook keeps asking about (self signed) imaps certificates. Is it just me who cannot import self-signed certificates into microsoft products anymore? MJ
Re: ot: accepting self certs into win pc?
Apologies. I noticed only now that the certificate was issued for the real servername, and I'm using a dns alias to connect. Sorry. On 6/11/2014 10:56, mourik jan heupink - merit wrote: Hi Frank, list, On 6/10/2014 3:10, Frank Leonhardt wrote: I get endless grief over this, but if you think Microsoft is bad, try Apple. I wrote some notes on it once: http://blog.frankleonhardt.com/2012/certificate-errors-on-internet-explorer-9-and-how-to-stop-them/ I didn't mention it in the post, but IIRC this did work for making some versions Outlook (and other Microsoft Mail things) happy at the same time. But do the above steps work for folks here..? I've tried them (IE 11, win7, outlook 2013) but outlook keeps asking about (self signed) imaps certificates. Is it just me who cannot import self-signed certificates into microsoft products anymore? MJ
Re: ot: accepting self certs into win pc?
Am 11.06.2014 10:56, schrieb mourik jan heupink - merit: On 6/10/2014 3:10, Frank Leonhardt wrote: I get endless grief over this, but if you think Microsoft is bad, try Apple. I wrote some notes on it once: http://blog.frankleonhardt.com/2012/certificate-errors-on-internet-explorer-9-and-how-to-stop-them/ I didn't mention it in the post, but IIRC this did work for making some versions Outlook (and other Microsoft Mail things) happy at the same time. But do the above steps work for folks here..? I've tried them (IE 11, win7, outlook 2013) but outlook keeps asking about (self signed) imaps certificates. Is it just me who cannot import self-signed certificates into microsoft products anymore? seriously you need to setup a webserver using the same certificate and point MSIE to that server, you can import then the certificate and Outlook is using the same trust-store signature.asc Description: OpenPGP digital signature
Re: ot: accepting self certs into win pc?
On 11/06/2014 10:00, mourik jan heupink - merit wrote: Apologies. I noticed only now that the certificate was issued for the real servername, and I'm using a dns alias to connect. Sorry. On 6/11/2014 10:56, mourik jan heupink - merit wrote: Hi Frank, list, On 6/10/2014 3:10, Frank Leonhardt wrote: I get endless grief over this, but if you think Microsoft is bad, try Apple. I wrote some notes on it once: http://blog.frankleonhardt.com/2012/certificate-errors-on-internet-explorer-9-and-how-to-stop-them/ I didn't mention it in the post, but IIRC this did work for making some versions Outlook (and other Microsoft Mail things) happy at the same time. But do the above steps work for folks here..? I've tried them (IE 11, win7, outlook 2013) but outlook keeps asking about (self signed) imaps certificates. Is it just me who cannot import self-signed certificates into microsoft products anymore? MJ There is an option to fiddle (mentioned in the blog) to tell SOME MS software to ignore name mismatches. Make a wish and try it :-)
Re: ot: accepting self certs into win pc?
On 11/06/2014 09:56, mourik jan heupink - merit wrote: Hi Frank, list, On 6/10/2014 3:10, Frank Leonhardt wrote: I get endless grief over this, but if you think Microsoft is bad, try Apple. I wrote some notes on it once: http://blog.frankleonhardt.com/2012/certificate-errors-on-internet-explorer-9-and-how-to-stop-them/ I didn't mention it in the post, but IIRC this did work for making some versions Outlook (and other Microsoft Mail things) happy at the same time. But do the above steps work for folks here..? I've tried them (IE 11, win7, outlook 2013) but outlook keeps asking about (self signed) imaps certificates. Is it just me who cannot import self-signed certificates into microsoft products anymore? MJ I did say it was a PITA and I did say it was using IE9! It's only a place to start. Another method that *has* worked is to download the certificate as a file ending in .cer. Open in and it'll give you the option to install it. As the blog says, I always install certificates in the place where they can be used for absolutely everything! You can convert a .pem to .cer, which is actually PKCS#12/PFX, using something like: openssl pkcs12 -inkey my_key.pem -in my_cert.cert -export -out my_pfx.cer I'm not guaranteeing this, and I could even be talking complete rubbish. I know enough about this stuff to know that I don't understand it fully, but I do know what's worked by pure dumb luck in the past! Regards, Frank.
Re: Subject tag [Dovecot] is gone
On 6/11/2014 1:51 AM, Frerich Raabe wrote: On 2014-06-10 17:23, Koenraad Lelong wrote: op 10-06-14 17:12, Reindl Harald schreef: than you have crap software somewhere on your side What did I do to get such reply ? Don't bother paying too much attention, Harald has been quite the primadonna ever since I joined this list. Pretty sure he's one of those fellows who are doing the 'grumpy curmudgeon' on the Internet but then turn out to be rather quiet/shy guys in real life. ;-) If he bothers you, a suggestion to make your life simpler. Set up a filter to simply delete any messages from him before they get to your inbox. Notice that most regulars, myself included, never reply to him. That is because we do not even see his messages except in someone else's reply to him. It really improves the quality, value and enjoyment of the list. Life is too short to put up with someone who is abrasive, obnoxious and rarely contributes anything helpful. Dem
Re: Subject tag [Dovecot] is gone
Am 11.06.2014 11:15, schrieb Professa Dementia: On 6/11/2014 1:51 AM, Frerich Raabe wrote: On 2014-06-10 17:23, Koenraad Lelong wrote: op 10-06-14 17:12, Reindl Harald schreef: than you have crap software somewhere on your side What did I do to get such reply ? Don't bother paying too much attention, Harald has been quite the primadonna ever since I joined this list. Pretty sure he's one of those fellows who are doing the 'grumpy curmudgeon' on the Internet but then turn out to be rather quiet/shy guys in real life. ;-) If he bothers you, a suggestion to make your life simpler. Set up a filter to simply delete any messages from him before they get to your inbox. Notice that most regulars, myself included, never reply to him. That is because we do not even see his messages except in someone else's reply to him. and that is why people like you should simply *shut up* instead react on a *one line quote* stripped all helpful informations including the complete context so you see *one line* of a long reply because you filter out anything else: so *shut up at all* signature.asc Description: OpenPGP digital signature
Re: Subject tag [Dovecot] is gone
op 10-06-14 17:37, Koenraad Lelong schreef: I looked at some messages on the server. Not trace of those List-lines. I think I will get in touch with Watchguard to see if they remove those lines. I subscribed to dovecot with a home-account. There I do have those RFC2919 lines. I also just whitelisted the dovecot-list on my Watchguard. I'll see if that changes anything. But I also filed a bug-report with Watchguard concerning this. You would think such a company should know better. Koenraad.
Re: ot: accepting self certs into win pc?
Hi Frank, list, There is an option to fiddle (mentioned in the blog) to tell SOME MS software to ignore name mismatches. Make a wish and try it :-) True, but: Unfortunately it’s either on or off; you can’t set it to ignore a mis-match for particular names only. Because of the risk that someone might be impersonating your bank, you’d probably be best to leave this one checked and put up with the red warnings. So I think I'll just regenerate my certificate to match the hostname alias we use, instead of the actual hostname. Anyway: your blog is appreciated, thank you! :-)
Re: Subject tag [Dovecot] is gone
Am 11.06.2014 11:30, schrieb Koenraad Lelong: op 10-06-14 17:37, Koenraad Lelong schreef: I looked at some messages on the server. Not trace of those List-lines. I think I will get in touch with Watchguard to see if they remove those lines. I subscribed to dovecot with a home-account. There I do have those RFC2919 lines. I also just whitelisted the dovecot-list on my Watchguard. I'll see if that changes anything. But I also filed a bug-report with Watchguard concerning this. You would think such a company should know better. not uncommon, i saw anti-virus software mangle http traffic by spit random bytes before the http headers leading to ask the browser where to save the php-file Cisco routers by default mangle DNS traffic, break zone transfers or even put befor all CNAME blocks a $TTL 0 line never appeared on the master until you disable DNS ALG for UDP and TCP the bigger the company the more breakage and that is why i said you have crap on your side what for whatever reason you took as a personal attack leaded to lure all the trolls out of their holes and react to a out-of-context quote signature.asc Description: OpenPGP digital signature
Re: Subject tag [Dovecot] is gone
On Wed Jun 11 12:03:24 2014, Reindl Harald wrote: Cisco routers by default mangle DNS traffic, break zone transfers or even put befor all CNAME blocks a $TTL 0 line never appeared on the master until you disable DNS ALG for UDP and TCP I believe that Cisco equipment will do such things, but I doubt it's the routers. Unless you plug a firewall card in. the bigger the company the more breakage A bit back on-topic here: My impression is that Outlook 2013 will move mails from one (Dovecot) folder to the other by downloading the mail, messing up the headers and uploading again. This will break the antispam plugin, of course. Can anyone confirm? Yours Jost Krieger -- | jost.krieger+...@ruhr-uni-bochum.de Please help stamp out spam! | | Postmaster, JAPH, resident answer machineat RUB Comp. Center | | Sincere words are not sweet, sweet words are not sincere.| | Lao Tse, Tao Te King 81 |
Re: Subject tag [Dovecot] is gone
Am 11.06.2014 12:21, schrieb Jost Krieger: On Wed Jun 11 12:03:24 2014, Reindl Harald wrote: Cisco routers by default mangle DNS traffic, break zone transfers or even put befor all CNAME blocks a $TTL 0 line never appeared on the master until you disable DNS ALG for UDP and TCP I believe that Cisco equipment will do such things, but I doubt it's the routers. Unless you plug a firewall card in off-topic but as response i thought they know better any bigger Cisco router i saw the last 8 years and even some smaller ones without rack-mount did this as default if NAT is enabled until you force the two commands below the reason likely is that if you have a public DNS server you are asking from the LAN responding with a public address the Cisco translates the repsonse to the NAT-mapping instead just allow the public IP from the LAN, but that's no valid reason to mangle outgoing DNS traffic additionally that may become funny if in the future DNSSEC is used no ip nat service alg udp dns no ip nat service alg tcp dns ___ the UDP ALG leads to silently supress answers of PTR's with public IP's to the WAN, larger UDP responses (EDNS) times out as well as zone-transfers the TCP ALG leads to a AFXR zone transfer looks like below while the master has only one TTL line with 86400 on top of the zone file, in that case only CNAMES are mangelded and after type the commands above all is fine rhsoft.net. 86400 IN A 91.118.73.4 **.rhsoft.net. 0 IN CNAME **.rhsoft.net. **.rhsoft.net. 0 IN CNAME **.rhsoft.net. testserver.rhsoft.net. 86400 IN A 84.113.92.77 **.rhsoft.net. 0 IN CNAME **.rhsoft.net. signature.asc Description: OpenPGP digital signature
RE: Subject tag [Dovecot] is gone
Guys, I think you were a bit harsh on Reindl. It is my opinion that he is a productive member of this list and his views are valuable. He just uses a bit stronger language. Something that I do sometimes. I don't think he wanted to be rude with someone. Just my opinion, s. Date: Wed, 11 Jun 2014 12:03:24 +0200 From: h.rei...@thelounge.net To: dovecot@dovecot.org Subject: Re: Subject tag [Dovecot] is gone Am 11.06.2014 11:30, schrieb Koenraad Lelong: op 10-06-14 17:37, Koenraad Lelong schreef: I looked at some messages on the server. Not trace of those List-lines. I think I will get in touch with Watchguard to see if they remove those lines. I subscribed to dovecot with a home-account. There I do have those RFC2919 lines. I also just whitelisted the dovecot-list on my Watchguard. I'll see if that changes anything. But I also filed a bug-report with Watchguard concerning this. You would think such a company should know better. not uncommon, i saw anti-virus software mangle http traffic by spit random bytes before the http headers leading to ask the browser where to save the php-file Cisco routers by default mangle DNS traffic, break zone transfers or even put befor all CNAME blocks a $TTL 0 line never appeared on the master until you disable DNS ALG for UDP and TCP the bigger the company the more breakage and that is why i said you have crap on your side what for whatever reason you took as a personal attack leaded to lure all the trolls out of their holes and react to a out-of-context quote
Change index location problem
Hi All, I was unable to change location of Dovecot indexes. Currently they are under /var/vmail/%d/%u, but I want to change them to /media/ephemeral0/%u I've changed conf line in /etc/dovecot/dovecot.conf: mail_location = maildir:/var/vmail/%d/%u:INDEX=/media/ephemeral0/%u and setup permissions of /media/ephemeral0 to dovecot:dovecot, tried also vmail:mail (which is default user for e-mails) and also tried with 777 on all dirs, but Dovecot is keeping creating indexes on the old location. I tried moving them from old to new location, but Dovecot recreates them on the old location. Details: # dovecot --version 2.0.9 # doveconf -a | grep location mail_location = maildir:/var/vmail/%d/%u:INDEX=/media/ephemeral0/%u Has anyone experienced something similar, any solution for this? Thanks in advance! -- View this message in context: http://dovecot.2317879.n4.nabble.com/Change-index-location-problem-tp48468.html Sent from the Dovecot mailing list archive at Nabble.com.
Re: Change index location problem
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, 11 Jun 2014, igord wrote: mail_location = maildir:/var/vmail/%d/%u:INDEX=/media/ephemeral0/%u and setup permissions of /media/ephemeral0 to dovecot:dovecot, tried also vmail:mail (which is default user for e-mails) and also tried with 777 on all dirs, but Dovecot is keeping creating indexes on the old location. I tried moving them from old to new location, but Dovecot recreates them on the old location. + Did you've restarted Dovecot after changing the conf file? + What's in the logs? Maybe you need to enable mail_debug. + What's the permission of /media? - -- Steffen Kaiser -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBU5hK33z1H7kL/d9rAQLM0ggAhADvHkovUm1NjGxxG6EKrxz3irwHQFw+ ZQJ8XK16i7IiUwYxMOfNwb+b++VpPgwdZCREVskQs3fJemqW7WbpY9KAHmQt4eQr fVQSQVg2M3BhFVkmaVp6sUqUmrGrGIfkLyVR2ciFdFlCqxJIbahH7bM0WlNafY/S y/U/Rfha8brUN/JSwHaYUv4lbxyf1Mxgee/Yx4ANpv7+g5yt5Yk3C3gO8nn9XNhF ae3ozsJ4BJTlk+Tb7u8LpTL78VCbVpEShrQXaQ7Ww0gULWlVer1yq5l7RbjqA3my jcTmVFP4Q/JY7d9IWW9JlntN7+ONfeU7Nd1GpKhTPsDBksyTuMVLdQ== =P1Zq -END PGP SIGNATURE-
Re: Subject tag [Dovecot] is gone
On Wednesday 11 June 2014 05:20:47 Reindl Harald did opine And Gene did reply: Am 11.06.2014 11:15, schrieb Professa Dementia: On 6/11/2014 1:51 AM, Frerich Raabe wrote: On 2014-06-10 17:23, Koenraad Lelong wrote: op 10-06-14 17:12, Reindl Harald schreef: than you have crap software somewhere on your side What did I do to get such reply ? Don't bother paying too much attention, Harald has been quite the primadonna ever since I joined this list. Pretty sure he's one of those fellows who are doing the 'grumpy curmudgeon' on the Internet but then turn out to be rather quiet/shy guys in real life. ;-) If he bothers you, a suggestion to make your life simpler. Set up a filter to simply delete any messages from him before they get to your inbox. Notice that most regulars, myself included, never reply to him. That is because we do not even see his messages except in someone else's reply to him. and that is why people like you should simply *shut up* instead react on a *one line quote* stripped all helpful informations including the complete context so you see *one line* of a long reply because you filter out anything else: so *shut up at all* If this is the best you can do in terms of a helpful reply, I'll never see your msgs again. PLONK Cheers, Gene Heskett -- There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) Genes Web page http://geneslinuxbox.net:6309/gene US V Castleman, SCOTUS, Mar 2014 is grounds for Impeaching SCOTUS
Re: Subject tag [Dovecot] is gone
On Tue Jun 10 12:31:47 2014, Professa Dementia wrote: On 6/9/2014 7:26 PM, Timo Sirainen wrote: I am not proposing a new standard, simply pointing out that breaking an established protocol (by removing the [Dovecot] subject identifier) because of a flawed anti-spam system is not in people's best interest. Can a spammer spoof messages from the list? Sure. Has it happened? Not that I am aware of. Is it a problem? Not so far. So why, then, make people go through all this trouble of setting up new filters and rules, mail routing, software upgrades, etc, just to appease a standard that is clearly broken? It's not DMARC that is broken, it is its application by AOL and Yahoo. (And it's not a standard yet, AFAIK.) It notes that the part p=reject should not be used in an environment where *people* send mail. DMARC works fine for paypal, amazon, etc.. As Yahoo and AOL have wilfully ignored this, my consequence is to ban addresses from domains that have p=reject from posting to our mailing lists. Yours Jost Krieger -- | jost.krieger+...@ruhr-uni-bochum.de Please help stamp out spam! | | Postmaster, JAPH, resident answer machineat RUB Comp. Center | | Sincere words are not sweet, sweet words are not sincere.| | Lao Tse, Tao Te King 81 |
ACL configuration migration from Dovecot 2.1.17 to 2.2.13
Hello, I'm preparing migration to the latest Dovecot version 2.2.13 from the previous stable branch 2.1.17 which is deployed on my servers. With version 2.1.17 I use global acl dir to prevent all mail users to delete their INBOX.Junk Mail folder, which is part from our spam protection system. My current config is: cat /etc/dovecot/acls/INBOX.Junk\ Mail owner lrwstiae With version 2.2.13, the global acl dir support is disabled (with the above config, the imap server shows no folders at all) so I must use global acl file. The problem is that the INBOX.Junk Mail folder contains space character and I tried to escape it with ,'',/ and enclose the whole name with '' without success. If I change the acl config to INBOX.Mail it works OK. The syntax of my global acl file is: cat /etc/dovecot/acls INBOX.Junk Mail owner lrwstiae The error is: Error: Global ACL file /etc/dovecot/acls line 1: Unknown ID 'Mail' Please advise Iavor Stoev Project Manager // Head of System Network Administration Department
Re: Change index location problem
Did you've restarted Dovecot after changing the conf file? Yes, few times. What's in the logs? Maybe you need to enable mail_debug. I've enabled now mail_debug, and looks like Dovecot doesn't see new index location: Jun 11 12:36:16 dovecot: imap(e-mail@domain): Debug: maildir++: root=/var/vmail/domain/user, index=, control=, inbox=/var/vmail/domain/user # dovecot -n | grep location mail_location = maildir:/var/vmail/%d/%u:INDEX=/media/ephemeral0/%u What's the permission of /media? Currently it's 777 and vmail:mail, which is a user for storing e-mails, but I tried with dovecot:dovecot which Dovecot daemon is running. # ls -la / drwxrwxrwx 3 vmail mail 4096 Apr 8 21:29 media # ls -la /media drwxrwsrwx 2 vmail mail 4096 Jun 11 11:41 ephemeral0 -- View this message in context: http://dovecot.2317879.n4.nabble.com/Change-index-location-problem-tp48468p48473.html Sent from the Dovecot mailing list archive at Nabble.com.
Re: Change index location problem
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, 11 Jun 2014, igord wrote: Did you've restarted Dovecot after changing the conf file? Yes, few times. What's in the logs? Maybe you need to enable mail_debug. I've enabled now mail_debug, and looks like Dovecot doesn't see new index location: Jun 11 12:36:16 dovecot: imap(e-mail@domain): Debug: maildir++: root=/var/vmail/domain/user, index=, control=, inbox=/var/vmail/domain/user is this the only log line? Some lines from UserDB? # dovecot -n | grep location mail_location = maildir:/var/vmail/%d/%u:INDEX=/media/ephemeral0/%u Did does not mean, that Dovecot is using this setting, though. Please post full doveconf -n output. - -- Steffen Kaiser -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBU5hZpXz1H7kL/d9rAQLcfgf+Pye7OnPfFg1yObiyNibAjoRmUqp3d3/V /6104Ah9jEr3AUng+/FwLa9665BxbLdxOfFCNsV9TQNv8uPOTHbUxOLA7rO+HAMf z4O+j0tP+MScDJh4JWmMRc5qPInqrNzlMMSRZDgtH9jRLxbq/eKs29W4Oqv/kdGd qytEWua8yfI9C2CRLhutK+44OhqfMroetJRjktT/ZakggDzqmy/JqLyFrU41Pp65 uBEzsg6+ZQr4euDlrhBK8tiBYVxmgA4fL7WIY4Gbcbrh2qwMbbg9/66r8sm4TZ9Y Pv3i4Dy0M0F+hyYhpa2uwnILWubzAf6fUXWyOlul2dWVoeJb9Il49w== =4Ddx -END PGP SIGNATURE-
Re: Change index location problem
You are right, I forgot to mention part which is actually crucial here -
users (and their settings) are
being queried by userdb settings (from mysql), which will override default
dovecot.conf settings
(as described here http://wiki2.dovecot.org/UserDatabase ):
...
userdb {
args = /etc/dovecot/sql.conf
driver = sql
}
...
And in /etc/dovecot/sql.conf I have:
user_query = SELECT concat('/var/vmail/', maildir) as home,
concat('maildir:/var/vmail/', maildir) as mail, 101 AS uid, 12 AS gid,
concat('maildir:storage=', quota) AS quota FROM mailbox WHERE username =
'%u' AND active = '1'
So I modified it to:
user_query = SELECT concat('/var/vmail/', maildir) as home,
concat('maildir:/var/vmail/', maildir, ':INDEX=/media/ephemeral0/%u') as
mail, 101 AS uid, 12 AS gid, concat('maildir:storage=', quota) AS quota FROM
mailbox WHERE username = '%u' AND active = '1'
.. and now it started creating indexes in /media/ephemeral0/%u !
Thank you for assistance
--
View this message in context:
http://dovecot.2317879.n4.nabble.com/Change-index-location-problem-tp48468p48475.html
Sent from the Dovecot mailing list archive at Nabble.com.
Safe to downgrade 2.2 to 2.1?
Hi, is it safe to downgrade Dovecot 2.2 to 2.1 (in my case 2.2.13 to 2.1.17 with mdbox format) or will there be troubles with index files and backup/restore is recommended? Unfortunately with 2.2+ it is not to be possible to use acl + lazy_expunge together anymore, so downgrading is the only option for me... @Timo, please fix acl + lazy_expunge in 2.2 if you find some time. Florian -- Florian Tischler System Administrator *Johann Radon Institute for Computational and Applied Mathematics (RICAM) http://www.ricam.oeaw.ac.at/
Maildir index
Hi all! I store my maildir mailboxes in a ocfs2 volume. By default, my indexes are stored with the inbox. If I change now to a local disk, could I have trouble? That's my production server. Thanks!
Converting mailboxes from one Maildir format to another
I am currently running dovecot 2.0.9 on a CentOS 6 server with the following layout for mailboxes: mail_location = maildir:~/Maildir I would like to change the layout to this format to match the output of other software packages such as offlineimap, mbsync, etc: mail_location = maildir:~/Maildir:LAYOUT=fs:INBOX=~/Maildir/INBOX Is there a way to convert the mailbox layout for all mail accounts currently on the server? I was looking at dsync, but there aren't any Maildir -- Maildir examples. I was also looking at potentially writing a script to manually rename directories/move files around to match the new format, but wasn't sure whether that would mess with UIDs or other dovecot internals. pat patrick...@gmail.com
