[no subject]

[Stephen Blackwell]

I want to disable the time penalty for dovecot imap authentication. When
receiving a valid user-password combo the server responds in .04 seconds.
When I send in an invalid comination it will either respond in 1.544 or
2.044 seconds += .002

I am using dovecot to test a program that sends a login request to a server
and processes the response. I want to be able to send a series of valid and
invalid login attempts.

The issue is that with the 2 seconds delay for a bad login attempt, the
tests are too slow to run in production

I can see that the delay is defined in auth-penalty.h Is there a way, in
the config file, to set AUTH_PENALTY_INIT_SECS = 0, or any other way to
remove the time delay for an invalid login.

I am running dovecot version 2.2.33.2
I am running without root permissions
I do not want to make changes outside of the dovecot config file, password
file, or run folder.

-- 
Stephen

[no subject]

[??????]

hello     I have some error by LMTP:
Mar 09 13:26:42 imap-hibernate(q...@a.com)<90154>

[no subject]

[Guillaume via dovecot]

--- Begin Message ---
OK I find out how to extract core dump (sorry), hope this will help you.

gdb /usr/lib/dovecot/auth /var/core/core.28304
GNU gdb (Debian 7.12-6) 7.12.0.20161007-git
Copyright (C) 2016 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later 
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
.
Find the GDB manual and other documentation resources online at:
.
For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from /usr/lib/dovecot/auth...Reading symbols from 
/usr/lib/debug/.build-id/ba/4974feed8c926e0d6e8d26659c583048a500f4.debug...done.
done.
[New LWP 28304]
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
Core was generated by `dovecot/auth -w'.
Program terminated with signal SIGABRT, Aborted.
#0  __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
51  ../sysdeps/unix/sysv/linux/raise.c: Aucun fichier ou dossier de ce type.
(gdb) bt full
#0  __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
set = {__val = {0, 2319406792476865588, 3472328228581767026, 
3472310704041635888, 3966017812923691066, 7148958857402934374, 
7089904100555370544, 3472328519666906169, 3472310978869031456, 
3467824696600506928, 3979267959132535352, 
2314885638479426609, 2314885530818453536, 2314885530818453536, 
3907004821653777455, 8461816663211521631}}
pid = 
tid = 
#1  0x7fdb930a642a in __GI_abort () at abort.c:89
save_stage = 2
act = {__sigaction_handler = {sa_handler = 0x7220303030373836, 
sa_sigaction = 0x7220303030373836}, sa_mask = {__val = {3472328295963438381, 
4192904167887482928, 2314885531086893104, 2314885530818453536, 
2314885530818453536, 8528445641706184736, 
  7378645557150114166, 3472336027269751652, 3774971303630941488, 
8223625903104145462, 3472328295963457581, 4192904167887482928, 
2314885531086893104, 2314885530818453536, 2314885530818453536, 
140727898588176}}, sa_flags = 89, 
  sa_restorer = 0x7ffdc467c410}
sigs = {__val = {32, 0 }}
#2  0x7fdb930e2c00 in __libc_message (do_abort=do_abort@entry=2, 
fmt=fmt@entry=0x7fdb931d7d98 "*** Error in `%s': %s: 0x%s ***\n") at 
../sysdeps/posix/libc_fatal.c:175
ap = {{gp_offset = 40, fp_offset = 0, overflow_arg_area = 
0x7ffdc467c420, reg_save_area = 0x7ffdc467c3b0}}
fd = 2
on_2 = 
list = 
nlist = 
cp = 
written = 
#3  0x7fdb930e8fc6 in malloc_printerr (action=3, str=0x7fdb931d7ef0 "double 
free or corruption (fasttop)", ptr=, ar_ptr=) at 
malloc.c:5049
buf = "562c3664bf70"
cp = 
ar_ptr = 
ptr = 
str = 0x7fdb931d7ef0 "double free or corruption (fasttop)"
action = 3
#4  0x7fdb930e980e in _int_free (av=0x7fdb9340bb00 , 
p=0x562c3664bf60, have_lock=0) at malloc.c:3905
size = 
fb = 
nextchunk = 
nextsize = 
nextinuse = 
prevsize = 
bck = 
fwd = 
errstr = 
locked = 
__func__ = "_int_free"
#5  0x7fdb923e978f in mysql_close (mysql=0x562c3662f9b0) at 
./libmariadb/libmariadb/mariadb_lib.c:1939
No locals.
#6  0x562c3457868c in driver_sqlpool_disconnect (_db=0x562c3662ea80) at 
driver-sqlpool.c:590
conn__foreach_end = 0x562c3662f160
db = 0x562c3662ea80
conn = 0x562c3662f150
#7  0x562c3456e0b5 in db_sql_unref (_conn=0x562c36624ff0) at db-sql.c:128
conn = 0x562c3662e6b8
#8  0x562c345669d9 in userdb_deinit (userdb=0x562c36624fc8) at userdb.c:191
idx = 0
__func__ = "userdb_deinit"
#9  0x562c3454ac89 in auth_deinit (auth=0x562c36624d28) at auth.c:335
passdb = 
userdb = 0x562c36624ee8
#10 auths_deinit () at auth.c:433
auth__foreach_end = 0x562c3662e628
auth = 0x562c3662e620
#11 0x562c34549800 in main_deinit () at main.c:271
l = 
#12 main (argc=, argv=) at main.c:398
c = 

gdb /usr/lib/dovecot/auth /var/core/core.28358
GNU gdb (Debian 7.12-6) 7.12.0.20161007-git
Copyright (C) 2016 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later 
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:

[no subject]

[Guillaume via dovecot]

--- Begin Message ---
Hi !

First of all thanks for all your doing :)

I also have this kind of segfault since the update :

Dec  2 21:12:11 xxx dovecot: auth-worker: Error: *** Error in 
`dovecot/auth': double free or corruption (fasttop): 0x55573bb99f70 ***
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: === Backtrace: 
=
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
/lib/x86_64-linux-gnu/libc.so.6(+0x70bfb)[0x7f961ab00bfb]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
/lib/x86_64-linux-gnu/libc.so.6(+0x76fc6)[0x7f961ab06fc6]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
/lib/x86_64-linux-gnu/libc.so.6(+0x7780e)[0x7f961ab0780e]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
/usr/lib/x86_64-linux-gnu/libmariadbclient.so.18(mysql_close+0x12f)[0x7f9619e0778f]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
dovecot/auth(+0x3f68c)[0x55573b84a68c]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
dovecot/auth(db_sql_unref+0x15)[0x55573b8400b5]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
dovecot/auth(userdb_deinit+0x99)[0x55573b8389d9]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
dovecot/auth(auths_deinit+0x79)[0x55573b81cc89]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
dovecot/auth(main+0x3d0)[0x55573b81b800]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
/lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xf1)[0x7f961aab02e1]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 
dovecot/auth(_start+0x2a)[0x55573b81ba0a]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: === Memory map: 

Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 55573b80b000-55573b865000 
r-xp  08:02 42337430   /usr/lib/dovecot/auth
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 55573ba64000-55573ba67000 
r--p 00059000 08:02 42337430   /usr/lib/dovecot/auth
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 55573ba67000-55573ba69000 
rw-p 0005c000 08:02 42337430   /usr/lib/dovecot/auth
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 55573bb64000-55573bbaf000 
rw-p  00:00 0  [heap]
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f961400-7f9614021000 
rw-p  00:00 0
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f9614021000-7f961800 
---p  00:00 0
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f9618d98000-7f9618dae000 
r-xp  08:02 39714820   
/lib/x86_64-linux-gnu/libgcc_s.so.1
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f9618dae000-7f9618fad000 
---p 00016000 08:02 39714820   
/lib/x86_64-linux-gnu/libgcc_s.so.1
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f9618fad000-7f9618fae000 
r--p 00015000 08:02 39714820   
/lib/x86_64-linux-gnu/libgcc_s.so.1
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f9618fae000-7f9618faf000 
rw-p 00016000 08:02 39714820   
/lib/x86_64-linux-gnu/libgcc_s.so.1
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f9618faf000-7f9618fb9000 
r-xp  08:02 39714834   
/lib/x86_64-linux-gnu/libnss_files-2.24.so
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f9618fb9000-7f96191b9000 
---p a000 08:02 39714834   
/lib/x86_64-linux-gnu/libnss_files-2.24.so
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f96191b9000-7f96191ba000 
r--p a000 08:02 39714834   
/lib/x86_64-linux-gnu/libnss_files-2.24.so
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f96191ba000-7f96191bb000 
rw-p b000 08:02 39714834   
/lib/x86_64-linux-gnu/libnss_files-2.24.so
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f96191bb000-7f96191c1000 
rw-p  00:00 0
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f96191c1000-7f961942b000 
r-xp  08:02 41813615   
/usr/lib/x86_64-linux-gnu/libcrypto.so.1.1
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f961942b000-7f961962b000 
---p 0026a000 08:02 41813615   
/usr/lib/x86_64-linux-gnu/libcrypto.so.1.1
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f961962b000-7f9619649000 
r--p 0026a000 08:02 41813615   
/usr/lib/x86_64-linux-gnu/libcrypto.so.1.1
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f9619649000-7f9619657000 
rw-p 00288000 08:02 41813615   
/usr/lib/x86_64-linux-gnu/libcrypto.so.1.1
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f9619657000-7f961965a000 
rw-p  00:00 0
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f961965a000-7f96196bd000 
r-xp  08:02 41814649   
/usr/lib/x86_64-linux-gnu/libssl.so.1.1
Dec  2 21:12:11 xxx dovecot: auth-worker: Error: 7f96196bd000-7f96198bc000 
---p 00063000 08:02 41814649   
/usr/lib/x86_64-linux-gnu/libssl.so.1.1
Dec  2 21:12:11 xxx d

[no subject]

[Pavel Stratil via dovecot]

--- Begin Message ---

Hi everyone,

after switching to ubuntu (from debian) and running a newer dovecot 
--version 2.2.33.2 (d6601f4ec) i encountered a problem with configuring 
sieve. The mailserver has virtual maila accounts stored in /decrypted/%d/%n


Prior, i used

plugin {
  sieve = ~/.dovecot.sieve
  sieve_dir = ~/sieve
  sieve_before = /etc/dovecot/sieve/before.d
}

after the upgrade, I moved the sieve_before location on disk and changed 
this to


plugin {
  sieve = file:~/sieve;active=~/.dovecot.sieve
  sieve_before = /var/lib/dovecot/sieve/before.d
}

only to see that sieve didnt forward e-mails anymore. Looking at the 
logs below, i suspect, that I didnt understood the meaning of sieve = 
file:~/sieve;active=~/.dovecot.sieve correctly:



Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
Module loaded: /usr/lib/dovecot/modules/lib90_sieve_plugin.so
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
sieve: Pigeonhole version 0.4.21 (92477967) initializing
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
sieve: include: sieve_global is not set; it is currently not possible to 
include `:global' scripts.
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: file storage: Using active Sieve script 
path: /decrypted/industra.space/events/.dovecot.sieve
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: file storage: Using script storage path: 
/decrypted/industra.space/events/sieve
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: file storage: Relative path to sieve 
storage in active link: sieve/
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: file storage: Using Sieve script path: 
/decrypted/industra.space/events/.dovecot.sieve
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: file storage: Storage path 
`/decrypted/industra.space/events/.dovecot.sieve' not found
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: User has no active script in storage 
`/decrypted/industra.space/events/sieve'
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: User has no personal script
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: file storage: Using script storage path: 
/var/lib/dovecot/sieve/before.d
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: file script: Opened script `move-spam' 
from `/var/lib/dovecot/sieve/before.d/move-spam.sieve'
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: Executed before user's personal Sieve 
script(1): /var/lib/dovecot/sieve/before.d/move-spam.sieve
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: Opening script 1 of 1 from 
`/var/lib/dovecot/sieve/before.d/move-spam.sieve'
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: Loading script 
/var/lib/dovecot/sieve/before.d/move-spam.sieve
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: Script binary 
/var/lib/dovecot/sieve/before.d/move-spam.svbin successfully loaded
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: binary save: not saving binary 
/var/lib/dovecot/sieve/before.d/move-spam.svbin, because it is already 
stored
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): Debug: 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: Executing script from 
`/var/lib/dovecot/sieve/before.d/move-spam.svbin'
Dec  2 16:01:57 vao01 dovecot: lmtp(events@industra.space): 
gPtsCPUBBFwMFQAA9mr2oQ: sieve: 
msgid=: stored mail into 
mailbox 'INBOX'


After changing this to

sieve = file:/decrypted/%d/%n/sieve;active=/decrypted/%d/%n/.dovecot.sieve

I got working sieve rules that forward mails correctly again, but at the 
same time I loose the ability to let users edit their sieve scripts via 
the roundcube managesieve plugin (roundcube reported an unknown error), 
but dovecot complained that the active file wasnt a symlink. I tried 
several combinations of configuring this, but I seem to miss some 
important point. Would you kindly help me get this right? Configs are 
attached.


Thanks in advance, Pavel


root@vao01:/var/www/roundcube/plugins/managesieve# cat config.inc.php 
http://php.net/manual/en/context.ssl.php
// The example below enables server certificate validation
//$config['managesieve_conn_options'] = array(
//  'ssl' => array(
// 'verify_peer'  => true,
// 'verify_depth' => 3,
// 'cafile'   => '/etc/openssl/certs/ca.crt',
//   ),
// );
$config['managesieve_conn_options'] = null;

//

[no subject]

[Joan Moreau via dovecot]

--- Begin Message ---
Hi 

How to solve this ? 

So many similar segfaults 

Thank you 


On 2018-11-30 06:11, Joan Moreau wrote:

ANother (very very long) example : 


# gdb /usr/libexec/dovecot/indexer-worker 
core.indexer-worker.0.3a33f56105e043de802a7dfcee265a07.21017.154353342400
GNU gdb (GDB) 8.2
Copyright (C) 2018 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later 
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Type "show copying" and "show warranty" for details.
This GDB was configured as "x86_64-pc-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
.
Find the GDB manual and other documentation resources online at:
. 


For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from /usr/libexec/dovecot/indexer-worker...done.
[New LWP 21017]
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/usr/lib/libthread_db.so.1".
Core was generated by `dovecot/indexer-worker'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0 0x7f768b62b13e in file_lock_do (fd=18, path=0x564540376790 "/data/mail/grosjo.net/admin/mailboxes/QoS/dbox-Mails/dovecot.index.search", lock_type=0, 
lock_method=FILE_LOCK_METHOD_FCNTL, timeout_secs=60, error_r=0x7fff045010b0) at file-lock.c:173

173 {
(gdb) bt full
#0 0x7f768b62b13e in file_lock_do (fd=18, path=0x564540376790 "/data/mail/grosjo.net/admin/mailboxes/QoS/dbox-Mails/dovecot.index.search", lock_type=0, 
lock_method=FILE_LOCK_METHOD_FCNTL, timeout_secs=60, error_r=0x7fff045010b0) at file-lock.c:173

lock_type_str = 
started = 
ret = 
__func__ = "file_lock_do"
#1 0x7f768b62b5b6 in file_wait_lock_error (fd=18, path=0x564540376790 "/data/mail/grosjo.net/admin/mailboxes/QoS/dbox-Mails/dovecot.index.search", lock_type=0, 
lock_method=FILE_LOCK_METHOD_FCNTL, timeout_secs=, lock_r=0x7fff04501118, error_r=0x7fff045010b0) at file-lock.c:318

lock = 
ret = 
#2 0x7f768b62b660 in file_wait_lock (fd=, path=, lock_type=lock_type@entry=0, lock_method=, timeout_secs=timeout_secs@entry=60, 
lock_r=lock_r@entry=0x7fff04501118) at file-lock.c:303

error = 0x564540376490 ""
ret = 
#3 0x7f768a976c87 in squat_trie_lock (trie=0x564540376490, lock_type=0, 
file_lock_r=0x7fff04501118, dotlock_r=0x7fff04501120) at squat-trie.c:294
ret = 
dotlock_r = 0x7fff04501120
file_lock_r = 0x7fff04501118
trie = 0x564540376490
ret = 
__func__ = "squat_trie_lock"
lock_type = 0
ret = 
__func__ = "squat_trie_lock"
#4 0x7f768a978627 in squat_trie_map (trie=0x564540376490, building=) at squat-trie.c:1487
file_lock = 0x0
dotlock = 0x0
changed = 
ret = 
#5 0x7f768a97b19d in squat_uidlist_map_header (uidlist=0x5645403767f0) at 
squat-uidlist.c:378
No locals.
#6 squat_uidlist_map (uidlist=0x5645403767f0) at squat-uidlist.c:477
mmap_hdr = 
ret = 
#7 0x7f768a97b432 in squat_uidlist_open (uidlist=0x5645403767f0) at 
squat-uidlist.c:546
No locals.
#8 0x7f768a97b5aa in squat_uidlist_refresh (uidlist=) at 
squat-uidlist.c:569
No locals.
#9 0x7f768a9787c2 in squat_trie_map (trie=0x564540376490, building=) at squat-trie.c:1526
file_lock = 0x56454210c850
dotlock = 0x0
changed = 
ret = 
#10 0x7f768a97b19d in squat_uidlist_map_header (uidlist=0x5645403767f0) at 
squat-uidlist.c:378
No locals.
#11 squat_uidlist_map (uidlist=0x5645403767f0) at squat-uidlist.c:477
mmap_hdr = 
ret = 
#12 0x7f768a97b432 in squat_uidlist_open (uidlist=0x5645403767f0) at 
squat-uidlist.c:546
No locals.
#13 0x7f768a97b5aa in squat_uidlist_refresh (uidlist=) at 
squat-uidlist.c:569
No locals.
#14 0x7f768a9787c2 in squat_trie_map (trie=0x564540376490, building=) at squat-trie.c:1526
file_lock = 0x56454210c7b0
dotlock = 0x0
changed = 
ret = 
#15 0x7f768a97b19d in squat_uidlist_map_header (uidlist=0x5645403767f0) at 
squat-uidlist.c:378
No locals.
#16 squat_uidlist_map (uidlist=0x5645403767f0) at squat-uidlist.c:477
mmap_hdr = 
ret = 
#17 0x7f768a97b432 in squat_uidlist_open (uidlist=0x5645403767f0) at 
squat-uidlist.c:546
No locals.
#18 0x7f768a97b5aa in squat_uidlist_refresh (uidlist=) at 
squat-uidlist.c:569
No locals.
#19 0x7f768a9787c2 in squat_trie_map (trie=0x564540376490, building=) at squat-trie.c:1526
file_lock = 0x56454210c710
dotlock = 0x0
changed = 
ret = 
#20 0x7f768a97b19d in squat_uidlist_map_header (uidlist=0x5645403767f0) at 
squat-uidlist.c:378
No locals.
#21 squat_uidlist_map (uidlist=0x5645403767f0) at squat-uidlist.c:477
mmap_hdr = 
ret = 
#22 0x7f768a97b432 in squat_uidlist_open (uidlist=0x5645403767f0) at 
squat-uidlist.c:546
No locals.
#23 0x7f768a97b5aa in squat_uidlist_refresh (uidlist=) at 
squat-uidlist.c:569
No locals.
#24 0x7f768a9787c2 in squat_trie_map (trie=0x564540376490, building=)

[no subject]

[Root Kev]

Dovecot Version: 2.3.2.1

Hello Mailing List,

We are having a random issue in a couple of our production servers, where
one of the child processes randomly dies with an out of memory error (see
below):

Nov 26 11:58:17 config: Fatal: pool_system_malloc(8192): Out of memory
Nov 26 11:58:17 pop3-login: Fatal: Error reading configuration:
read(/var/run/dovecot/config) failed: EOF
Nov 26 11:58:17 config: Fatal: master: service(config): child 29696
returned error 83 (Out of memory (service config { vsz_limit=2048 MB }, you
may need to increase it) - set CORE_OUTOFMEM=1 environment to get core dump)

We only use dovecot for internal application POP3 mail access from a
mailbox, and there is under 10 connecting applications.  Have have
gradually increased the vsz_limit from the default of 256mb up to 2GB now.
Is there anything else that should/could be changed instead of continuing
to through memory at it?



# dovecot -n
# 2.3.2.1 (0719df592): /etc/dovecot/dovecot.conf
# OS: Linux 3.10.0-862.11.6.el7.x86_64 x86_64 CentOS Linux release 7.5.1804
(Core)
# Hostname: 
doveconf: Warning: please set ssl_dh= /etc/dovecot/dh.pem
auth_cache_size = 10 M
auth_verbose = yes
base_dir = /var/run/dovecot/
default_vsz_limit = 2 G
instance_name = EMX Pop Mailstore
listen = 
log_path = /var/log/dovecot-echo.log
login_greeting = Pop3 MailServer Ready.
login_trusted_networks = 
mail_location = maildir:~/Maildir
namespace inbox {
  inbox = yes
  location =
  mailbox Drafts {
special_use = \Drafts
  }
  mailbox Junk {
special_use = \Junk
  }
  mailbox Sent {
special_use = \Sent
  }
  mailbox "Sent Messages" {
special_use = \Sent
  }
  mailbox Trash {
special_use = \Trash
  }
  prefix =
}
passdb {
  args = cache_key=%u
  driver = pam
}
protocols = pop3
ssl_cert = 

[no subject]

[Jarrad]

Unsubscribe

[no subject]

[Aki Tuomi]

---Aki TuomiDovecot oy

[no subject]

[Rebel Mee]

0b4a77c09cb4c18c49177e4ad76e0b62e3ec5ae0

[no subject]

[Rebel Mee]

[no subject]

[Rahul Singh Badyal]

I have Centos 7 mail server installed with dovecot and postfix with
MariaDB. I am trying to add a virtual All Mails folder for every user so
that they can have all mails such as inbox, sent in a single folder,
something like gmail. Please help me for this.


*Regards,*

*Rahul*

[no subject]

[Hendrik Velloen]

Hi

I am new to the mailing List, and was hoping to get some assistance
migrating from an Old Cucipop + Sendmail server (running on a old Redhat v
7) to a new Dovecot setup.
My new installation is Dovecot + Postfix. All is setup and working, however
I want to trasnsfer the contents of the mailboxes from my old server to
this new Dovecot setup.

Please let me know what information will be required to transfer the
mailboxes - I have tried a number of things, but with no luck.

I think the correct method is the one below, but I am getting UIDL errors
and AUTH errors and not sure if this is the right approach   PLEASE HELP

dsync -u  mirror
mbox:~/mail:INBOX=

~#  dsync -u hendr...@tcmvpn.co.za mirror
mbox:~/mail:INBOX=/var/mail/User_mbox/hendrikv

dsync(hendr...@tcmvpn.co.za): Error: pop3c(196.26.136.162): AUTH PLAIN
failed: -ERR Invalid command, try one of: USER name, PASS string, APOP name
digest, QUIT
dsync(hendr...@tcmvpn.co.za): Error: pop3c: Disconnected from remote server
dsync(hendr...@tcmvpn.co.za): Error: pop3_migration: Couldn't sync mailbox
POP3-MIGRATION-NS/INBOX: Internal error occurred. Refer to server log for
more information. [2016-04-04 08:27:01]
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=ddbe5c71e58919cfe2a40905bced091d (UID=3054)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=64087a4c7bf960114cf17ba044047900 (UID=374)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=fd28baf9e91aedaf06c6e979ca76e96f (UID=2982)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=607087e611559d2df02c0684de87e10d (UID=991)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=c6a9aebd1f535f0cd82ed612a42bae77 (UID=1541)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=4c56ffcfb600c8b216b2f1603383dc13 (UID=1007)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=96ce5556fab323206f51deb03625be8a (UID=2357)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=cda74cb161321b7c99973cc65e80a591 (UID=1401)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=b735acf7ef69b39be157a97223878cdc (UID=642)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=6d9baedf21198be32152461f96737a1a (UID=481)
dsync(hendr...@tcmvpn.co.za): Error: Mailbox INBOX: Remote didn't send mail
GUID=19f36b934b74ce11f1eda95e32a0b112 (UID=1998)
dsync(hendr...@tcmvpn.co.za): Error: Exporting mailbox INBOX failed: Can't
lookup pop3-uidl for UID=1: POP3 UIDLs couldn't be synce






-- 
Kind Regards
Hendrik

[no subject]

[Kevin Laurie]

[Dovecot] (no subject)

[Axel Reinhold]

Subject: dovecot-2.2.11 crash on quit

after update to dovecot-2.2.11 pop3 crashes at QUIT after successful deliver:

[axel@bongo axel]$ gdb opt/dovecot-2.2.11-1/sbin/dovecot core.13590

warning: core file may not match specified executable file.
Core was generated by `dovecot/pop3 p3postlogin'.
Program terminated with signal 11, Segmentation fault.
#0  0x0804e601 in main ()
(gdb) bt
#0  0x0804e601 in main ()
#1  0xbfec7ff0 in ?? ()
#2  0x0804e7dc in main ()
#3  0x08050038 in service_anvil_global_deinit ()
#4  0x0804da9d in get_gid ()
#5  0x0804dc6c in main ()
#6  0xb7e2de37 in ?? ()
#7  0xb7e2f477 in ?? ()
#8  0xb7e2df24 in ?? ()
#9  0xb7dc2fbd in ?? ()
#10 0x0804bf13 in __register_frame_info_bases ()
#11 0xb7c55ebc in ?? ()
(gdb) q

last part of conversation:

pop* [20053] 140212130153 debug8: SMTP< 250 2.1.5 axel... Recipient ok
pop* [20053] 140212130153 debug8: SMTP> DATA
pop* [20053] 140212130153 debug8: SMTP< 354 Enter mail, end with "." on a line 
by itself
pop* [20053] 140212130153 debug8: SMTP> .
pop* [20053] 140212130153 debug8: SMTP< 250 2.0.0 s1CC1rGZ020100 Message 
accepted for delivery
pop* [20053] 140212130153 debug8: SMTP> QUIT
pop* [20053] 140212130153 debug8: SMTP< 221 2.0.0 bongo.freakout.de closing 
connection
pop* [20053] 140212130153 debug6: SMTP  sent to axel Id:2.0.0 s1CC1rGZ020100
pop* [20053] 140212130153 debug8: POP3> DELE 8
pop* [20053] 140212130153 debug8: POP3< +OK Marked to be deleted.
pop* [20053] 140212130153 debug6: POP3  delete 8
pop* [20053] 140212130153 debug8: POP3> QUIT
pop* [20053] 140212130153 debug8: POP3<  #CRASH
pop* [20053] 140212130153 error : POP3  no quit
pop* [20053] 140212130153 debug5: POP3  logout

Regards
Axel

Re: [Dovecot] (no subject)

[Timo Sirainen]

On 22.11.2013, at 8.17, Axel Reinhold  wrote:

> Subject: dovecot-2.2.8 does no more quit correctly
> 
> after update to dovecot-2.2.8 monit is no more validating pop3 server
> due to dovecot mo more logging out correctly "+OK Logging out" is missing

Oh, I guess that explains also why it was happening with LMTP. 
http://hg.dovecot.org/dovecot-2.2/rev/e3a87c25e0b2 fixes.

[Dovecot] (no subject)

[Gab IIpop]

>From the documentation, virtual users seem like a good idea if you plan on
having a lot of users. Although I'm wondering about the following:

What other benefits/consequences are there to using virtual over system
users and vice versa?

Will virtual users have the same protection as system users (system users
would use linux permissions, which is pretty secure)?

How easy will it be to switch from using system users to virtual users or
vice versa?

Re: [Dovecot] (no subject)

[Dotan Cohen]

On Sun, Jul 7, 2013 at 4:10 PM, Axel Luttgens  wrote:
> Hello Dotan,
>
> Note that md5sum calculates a hash similar to the one used by dovecot's 
> MD5-PLAIN scheme:
>
> $ doveadm pw -s PLAIN-MD5 -p 12345
> {PLAIN-MD5}827ccb0eea8a706c4c34a16891f84e7b
>
>
>> Shouldn't that password match the md5sum check?
>
> As a result: no... ;-)
>

I see! I've tried a few formats to verify the MD5 hash, but none
produced the expected results. In any case, I've gotten that part of
Dovecot working now that I've discovered that most of the information
online is for Dovecot 1. However the Dovecot 2 wiki is terrific and it
pulled me through.

>> [...]
>> $ telnet mail.someDomain.com 143
>> Trying x.x.x.x...
>> Connected to mail.someDomain.com.
>> Escape character is '^]'.
>> * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE
>> IDLE AUTH=PLAIN] Dovecot ready.
>> a login user 12345
>> [...]
>
> I doubt this is a valid attempt:
>
> - unless I'm wrong, the command should be authenticate (not login)

No, it does seem that 'login' is the right command. I've got it working now.

> - the server doesn't seem to be configured for making use of digest-md5
>
> You may find an example of such an authentication near the end of 
> http://tools.ietf.org/html/rfc2831.
> You might also have a look at 
> http://wiki2.dovecot.org/Authentication/Mechanisms/DigestMD5.
>

Thank you, that was indeed part of the issue!

--
Dotan Cohen

http://gibberish.co.il
http://what-is-what.com

Re: [Dovecot] (no subject)

[Axel Luttgens]

Le 7 juil. 2013 à 11:47, Dotan Cohen a écrit :

> [...]
> $ /usr/bin/doveadm pw -u u...@somedomain.com -s DIGEST-MD5
> Enter new password: # Here I have typed "12345"
> Retype new password: # Here I have typed "12345"
> {DIGEST-MD5}f4e442b0dec5009eaa8b9b4104923edc
> $ printf "12345" | md5sum
> 827ccb0eea8a706c4c34a16891f84e7b  -
> $

Hello Dotan,

Note that md5sum calculates a hash similar to the one used by dovecot's 
MD5-PLAIN scheme:

$ doveadm pw -s PLAIN-MD5 -p 12345
{PLAIN-MD5}827ccb0eea8a706c4c34a16891f84e7b


> Shouldn't that password match the md5sum check?

As a result: no... ;-)

> [...]
> $ telnet mail.someDomain.com 143
> Trying x.x.x.x...
> Connected to mail.someDomain.com.
> Escape character is '^]'.
> * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE
> IDLE AUTH=PLAIN] Dovecot ready.
> a login user 12345
> [...]

I doubt this is a valid attempt:

- unless I'm wrong, the command should be authenticate (not login)
- the server doesn't seem to be configured for making use of digest-md5

You may find an example of such an authentication near the end of 
http://tools.ietf.org/html/rfc2831.
You might also have a look at 
http://wiki2.dovecot.org/Authentication/Mechanisms/DigestMD5.

HTH,
Axel

[Dovecot] (no subject)

[Dotan Cohen]

On an Ubuntu Server 12.04 system with Dovecot 2.0.19 I am having some
trouble with the Dovecot passwords. I am finding this in the logs when
I unsuccessfully try to log in:

Jul 07 08:13:25 auth-worker: Debug:
pam(u...@somedomain.com,212.
179.241.14): lookup service=dovecot
Jul 07 08:13:25 auth-worker: Debug:
pam(u...@somedomain.com,212.179.241.14): #1/1 style=1 msg=Password:
Jul 07 08:13:27 auth-worker: Info:
pam(u...@somedomain.com,212.179.241.14): pam_authenticate() failed:
Authentication failure (password mismatch?) (given password: 12345)
Jul 07 08:13:29 auth: Debug: client out: FAIL   2   user=u...@somedomain.com
Jul 07 08:13:29 pop3-login: Info: Disconnected (auth failed, 2
attempts): user=, method=PLAIN,
rip=212.179.241.14, lip=10.138.11.251

This is not the real password, but an example to show that I think
that there is an issue:
$ /usr/bin/doveadm pw -u u...@somedomain.com -s DIGEST-MD5
Enter new password: # Here I have typed "12345"
Retype new password: # Here I have typed "12345"
{DIGEST-MD5}f4e442b0dec5009eaa8b9b4104923edc
$ printf "12345" | md5sum
827ccb0eea8a706c4c34a16891f84e7b  -
$

Shouldn't that password match the md5sum check? Also, might I have the
file formats wrong?
$ cat passwd
u...@somedomain.com::5000:5000::/var/mail/vhosts/someDomain.com/user
$ cat shadow
u...@somedomain.com:{DIGEST-MD5}f4e442b0dec5009eaa8b9b4104923edc
$

Note that testing in Telnet fails the password as well, both when
specifying the user without a domain and with a domain:

$ telnet mail.someDomain.com 143
Trying x.x.x.x...
Connected to mail.someDomain.com.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE
IDLE AUTH=PLAIN] Dovecot ready.
a login user 12345
a NO [AUTHENTICATIONFAILED] Authentication failed.
e logout
* BYE Logging out
e OK Logout completed.
Connection closed by foreign host.
$ telnet mail.someDomain.com 143
Trying x.x.x.x...
Connected to mail.someDomain.com.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE
IDLE AUTH=PLAIN] Dovecot ready.
a login u...@somedomain.com 12345
a NO [AUTHENTICATIONFAILED] Authentication failed.
* BAD Error in IMAP command received by server.
e logout
* BYE Logging out
e OK Logout completed.
Connection closed by foreign host.

Thanks!

--
Dotan Cohen

http://gibberish.co.il
http://what-is-what.com

[Dovecot] (no subject)

[Anes Mukhametov]

Hello!

I've tried to use extprograms pipe feature but stuck with "Broken pipe"
errors in mail log:

May 17 15:18:57 backend1 dovecot: lmtp(20338, u...@domain.tld): Debug:
3VMVFWFKllFyTwAArRg8UA: sieve: action pipe: running program: learn
May 17 15:18:57 backend1 dovecot: script: Error: write(response) failed:
Broken pipe
May 17 15:18:57 backend1 dovecot: lmtp(20338, u...@domain.tld):
3VMVFWFKllFyTwAArRg8UA: sieve: execution of script
/data/mail/storage/domain/u...@domain.tld/.dovecot.sieve;name=main script
failed, but implicit keep was successful (user logfile
/data/mail/storage/domain/bu...@domain.tld/.dovecot.sieve.log should reveal
additional details)

/data/mail/storage/domain/bu...@domain.tld/.dovecot.sieve.log:
error: msgid=: pipe action:
failed to pipe message to program `learn': refer to server log for more
information. [2013-05-17 15:18:57] ham u...@domain.tld 50796.


Sieve script contents:
require ["fileinto","copy","mailbox","vnd.dovecot.pipe"];

if anyof (header :is "Subject" "ham")
{
pipe :try "learn" ["ham"];
fileinto "INBOX/ham";
stop;
}

Sieve plugin config uncommented conents:
sieve_plugins = sieve_extprograms
*sieve_pipe_socket_dir = sieve-pipe*

  # Define the executed script as parameter to the sieve service
  executable = script /etc/dovecot/scripts/spam.sh

  # Use some unprivileged user for executing the program
  user = nobody

  # The unix socket located in the sieve_pipe_socket_dir (as defined in the
  # plugin {} section above)
  unix_listener sieve-pipe/learn {
# LDA/LMTP must have access
 user = nobody
 mode = 0777
  }
}


spam.sh is message processing script which interacts with spamassassin.
I've tested pipe with spam.sh that redirects stdin to /dev/null and returns
0 but errors were logged anyway.
Note that spam.sh runs, getting the message from sieve and processing it to
spamassassin without a problem, but "broken pipe" is being logged.

[Dovecot] (no subject)

[Walter Steiner]

I've run into a problem with `doveadm backup` (2.2 rc2 and 20130226)
I did not notice in 2.1.15

doveadm backup [-Dv] -R -u cyrte...@iai.uni-bonn.de -m INBOX imapc:
=> crashes (signal 6 with acl plugin configured, sig 11 without acl)

If this is considered a bug (not just because of the crash but in the
meaning of "my configuration should work") it would be great if it could
be fixed.;-)  If I can provide more detail (log, gdb bt full and doveconf -n
follow the next paragraph) or test something I would be happy to to so.

As I'm planning dsync replication of the two backends I thought it would
be better to start things with the upcoming new dovecot 2.2 (dsync protocol)
instead of 2.1.15. (?!)

--- first some information about what I'm trying to do ---
  We want to replace our single cyrus 2.4 server with two backend servers
  (separate storage and all user mailboxes etc. each)
  Even if cyrus-to-cyrus should be much easier _and_ time is slipping away
  I want to take this one opportunity to switch to dovecot if possible.
 - Thank you very much for your great work on dovecot and all the efforts! -

  We want the IMAP clients to continue using their folders/messages etc
  so I want to reproduce the "cyrus structure" we are using for the last
  14 years: - own user folders: INBOX and INBOX.subfolder ...
- (if possible: other user folders: user.otheruser...)
- converting as much as possible of existing data

  To get the folders/messages into the new dovecot server(s) I'm
  thinking about some repeated "doveadm mirror / backup -R ... imapc:"
  runs while the cyrus server is still in use.
  The first sync run will take several days but a few more and the time
  will be short enough to do the complete switch-over w/o surprises.
  
  Insertion: I played with 2.1.15 and namespaces but maybe I did not
understand this well enough:
doveadm backup -R -u userx [w or w/o -m INBOX and/or -n INBOX] imapc:
=> if cyrus userx has permissions on other users mailboxes
these folders are also copied.  ... copied _into_ the INBOX
of (dovecot) userx.
I too got the known problems with INBOX.INBOX. paths.
I changed dsync-brain.c sources to skip "^user." folders
and to cut the additional "INBOX."
 => seems okay... messages (only the expected) got transferred!
---

To see if things still work as with 2.1.15 (no dsync source modification!)
I did (as before with 2.1.15):

  doveadm backup [-Dv] -R -u cyrte...@iai.uni-bonn.de -m INBOX imapc:

=> but it crashes (signal 6)

doveadm(cyrte...@iai.uni-bonn.de): Debug: auth input: cyrte...@iai.uni-bonn.de 
master_user=cyrte...@iai.uni-bonn.de quota_rule=*:storage=512M uid=13004 
gid=13004 home=/m/d/user/iai.uni-bonn.de/cyrtest1
doveadm(cyrte...@iai.uni-bonn.de): Debug: Added userdb setting: 
plugin/master_user=cyrte...@iai.uni-bonn.de
doveadm(cyrte...@iai.uni-bonn.de): Debug: Added userdb setting: 
plugin/quota_rule=*:storage=512M
doveadm(cyrte...@iai.uni-bonn.de): Debug: Effective uid=13004, gid=13004, 
home=/m/d/user/iai.uni-bonn.de/cyrtest1
doveadm(cyrte...@iai.uni-bonn.de): Debug: Namespace : type=private, prefix=, 
sep=., inbox=yes, hidden=no, list=yes, subscriptions=yes 
location=sdbox:/m/d/imap/mbox/iai.uni-bonn.de/cyrtest1:INDEX=/m/d/imap/meta/iai.uni-bonn.de/cyrtest1:MAILBOXDIR=mailboxes/
doveadm(cyrte...@iai.uni-bonn.de): Debug: fs: 
root=/m/d/imap/mbox/iai.uni-bonn.de/cyrtest1, 
index=/m/d/imap/meta/iai.uni-bonn.de/cyrtest1, indexpvt=, control=, inbox=, alt=
doveadm(cyrte...@iai.uni-bonn.de): Debug: acl: initializing backend with data: 
vfile:/m/d/etc/acl:cache_secs=300
doveadm(cyrte...@iai.uni-bonn.de): Debug: acl: acl username = 
cyrte...@iai.uni-bonn.de
doveadm(cyrte...@iai.uni-bonn.de): Debug: acl: owner = 1
doveadm(cyrte...@iai.uni-bonn.de): Debug: acl vfile: Global ACL directory: 
/m/d/etc/acl
doveadm(cyrte...@iai.uni-bonn.de): Debug: acl vfile: reading file 
/m/d/etc/acl//.DEFAULT
doveadm(cyrte...@iai.uni-bonn.de): Debug: acl vfile: file 
/m/d/imap/mbox/iai.uni-bonn.de/cyrtest1/mailboxes/dovecot-acl not found
doveadm(cyrte...@iai.uni-bonn.de): Debug: Namespace : Using permissions from 
/m/d/imap/mbox/iai.uni-bonn.de/cyrtest1: mode=0700 gid=default
doveadm(cyrte...@iai.uni-bonn.de): Debug: acl vfile: file /m/d/etc/acl/INBOX 
not found
doveadm(cyrte...@iai.uni-bonn.de): Debug: acl vfile: file 
/m/d/imap/mbox/iai.uni-bonn.de/cyrtest1/mailboxes/INBOX/dbox-Mails/dovecot-acl 
not found
dsync(cyrte...@iai.uni-bonn.de): Debug: Effective uid=13004, gid=13004, 
home=/m/d/user/iai.uni-bonn.de/cyrtest1
dsync(cyrte...@iai.uni-bonn.de): Debug: Namespace : type=private, prefix=, 
sep=., inbox=yes, hidden=no, list=yes, subscriptions=yes location=imapc:
dsync(cyrte...@iai.uni-bonn.de): Debug: imapc: root=, index=, indexpvt=, 
control=, inbox=, alt=
dsync(cyrte...@iai.uni-bonn.de): Debug: imapc(mailbox.iai.uni-bonn.de:993): 
Looking up IP address
dsync(cyrte...@iai.uni-bonn.d

[Dovecot] (no subject)

[b m]

Hi. I'm using dovecot 2.0.18 and I'm trying to authenticate through a CAS 
server (until now authentication was through MS Active Directory). I could not 
find anywhere some examples, so here is what i have done so far.
-install phpcas and pam_cas
-edit /etc/pam.d/dovecot
  auth    sufficient  /lib/security/pam_cas.so 
-simap://webmail.mydomain.com -f /etc/pam_cas.conf
-edit /etc.pam_cas.conf
  host mycas.mydomain.com 
  port 443 
  uriValidate /cas/proxyValidate 
  ssl on 
  proxy ??? 
  trusted_ca /etc/cert/certificate.pem 
  debug on

- and finally dovecot.conf which I'm sure is complety wrong
  userdb {
              args = /etc/dovecot/dovecot-ldap.conf
              driver = ldap
  }
 passdb {
 driver = pam
             args = cache_key=%u dovecot
 }

What I get in log is 


Oct 15 15:39:58 auth-worker: Debug: Loading modules from directory: 
/usr/lib64/dovecot/auth
Oct 15 15:39:58 auth-worker: Debug: Module loaded: 
/usr/lib64/dovecot/auth/libauthdb_ldap.so
Oct 15 15:39:58 auth-worker: Debug: Module loaded: 
/usr/lib64/dovecot/auth/libdriver_mysql.so
Oct 15 15:39:58 auth-worker: Debug: Module loaded: 
/usr/lib64/dovecot/auth/libdriver_pgsql.so
Oct 15 15:39:58 auth-worker: Debug: Module loaded: 
/usr/lib64/dovecot/auth/libdriver_sqlite.so
Oct 15 15:39:58 auth-worker: Debug: Module loaded: 
/usr/lib64/dovecot/auth/libmech_gssapi.so
Oct 15 15:39:58 auth-worker: Debug: pam(user,127.0.0.1): lookup service=dovecot
Oct 15 15:39:58 auth-worker: Debug: pam(user,127.0.0.1): #1/1 style=1 
msg=Password: 
Oct 15 15:39:58 auth-worker: Info: pam(user,127.0.0.1): pam_authenticate() 
failed: Permission denied
Oct 15 15:40:00 auth: Debug: client out: FAIL    1    user=user
Oct 15 15:40:00 imap-login: Info: Aborted login (auth failed, 1 attempts): 
user=, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured
Oct 15 15:40:00 auth: Debug: auth client connected (pid=9019)

Any ideas? Thanks.

Re: [Dovecot] (no subject)

[Giles Coochey]

On 29/05/2012 14:59, Phil Petree wrote:

Hey All,

I'm developing a site on a VPS that comes stock with dovecot 1.2.17 and I'm
trying to setup some functionality that is very specific to our business
model.

My question is this:  How do I create (programatically) aliases for a
forwarder?

I have an address, em...@domain.com that gets sent to a php script and I
want users to be able to send to that script via any number of different
names (could ultimately be 1000's).

I'm thinking that I append/delete from the etc/aliases file and then run
#newaliases

So that em...@domain.com will answer on du...@domain.com or
dot...@domain.com, once the email comes in, I can check the header, get who
it was really sent to, do all my checks, perform the necessary action blah
blah blah... and be able to do it all on one piece of code (my fantasy LOL).

Am I on the right track here or is this simply not going to work?



Seems fairly straight forward, not sure how this applies to dovecot though.
Have you tried asking this question on sendmail / postfix lists?
They're the ones who interact with the aliases file.

--
Regards,

Giles Coochey, CCNA, CCNAS
NetSecSpec Ltd
+44 (0) 7983 877438
http://www.coochey.net
http://www.netsecspec.co.uk
gi...@coochey.net




smime.p7s
Description: S/MIME Cryptographic Signature

[Dovecot] (no subject)

[Phil Petree]

Hey All,

I'm developing a site on a VPS that comes stock with dovecot 1.2.17 and I'm
trying to setup some functionality that is very specific to our business
model.

My question is this:  How do I create (programatically) aliases for a
forwarder?

I have an address, em...@domain.com that gets sent to a php script and I
want users to be able to send to that script via any number of different
names (could ultimately be 1000's).

I'm thinking that I append/delete from the etc/aliases file and then run
#newaliases

So that em...@domain.com will answer on du...@domain.com or
dot...@domain.com, once the email comes in, I can check the header, get who
it was really sent to, do all my checks, perform the necessary action blah
blah blah... and be able to do it all on one piece of code (my fantasy LOL).

Am I on the right track here or is this simply not going to work?

Thanks,

Pete

Re: [Dovecot] Need help with details for new Dovecot plugin - was: Re: (no subject)

[Charles Marcus]

On 2012-01-12 6:17 PM, Timo Sirainen  wrote:

On 11.1.2012, at 20.53, Geoffrey Broadwell wrote:

So now the hard part is writing the piece that I can't just crib from
elsewhere -- making sure that I hook every place in Dovecot that the
user's voicemail folder can be changed in a way that would change it
between having one or more unread messages, and not having any unread
messages at all (or vice-versa, of course).  At the same time, I want to
minimize the performance impact to Dovecot (and the load on the UDP
server) by only hooking the places I need to, filtering out as many
false positives as I can without introducing massive complexity, and
only pinging the UDP server when it's most likely to notice a change in
the state of that user's voicemail server.



I think notify plugin would help you do this the easiest way. See
mail_log plugin for an example of how to use it.


Oops, should have read all messages before replying (I usually skip 
messages with (no subject), but I try to read everything on some lists 
(dovecot is one of them)...


Timo - searching on 'inotify' or 'notify' on both wiki1 and wiki2 has 
'no results'... maybe the search indexes need to be updated? Or, is it 
just that there really is no documentation of inotify on either of the 
wikis?


--

Best regards,

Charles

Re: [Dovecot] (no subject)

[Timo Sirainen]

On 11.1.2012, at 20.53, Geoffrey Broadwell wrote:

> So now the hard part is writing the piece that I can't just crib from
> elsewhere -- making sure that I hook every place in Dovecot that the
> user's voicemail folder can be changed in a way that would change it
> between having one or more unread messages, and not having any unread
> messages at all (or vice-versa, of course).  At the same time, I want to
> minimize the performance impact to Dovecot (and the load on the UDP
> server) by only hooking the places I need to, filtering out as many
> false positives as I can without introducing massive complexity, and
> only pinging the UDP server when it's most likely to notice a change in
> the state of that user's voicemail server.

I think notify plugin would help you do this the easiest way. See mail_log 
plugin for an example of how to use it.

[Dovecot] (no subject)

[Geoffrey Broadwell]

I'm working on a Dovecot plugin, but I'm pretty new to Dovecot, so
there's a LOT to learn about the code base and it's pretty slow going.
I've got a few things coded so far, but I want to make sure I'm headed
down the right path and get some advice before I go too much further.

A couple years ago, I wrote some code for our Courier implementation
that sent a magic UDP packet to a small server each time a user modified
their voicemail IMAP folder.  That UDP server would then connect back to
Courier via IMAP again and check whether the folder had any unread
messages left in it.  Finally, it would contact our phone switches to
modify the state of the message waiting indicator (MWI) on that user's
phone line appropriately.

Fast forward to now, and we want to migrate wholesale to Dovecot 2.x.
The servers are all in place, they've been well tested and burned in
(with Dovecot 2.0.15 I believe), and the final migration is pretty much
waiting on a port to Dovecot of the MWI update functionality.

The good news is that I originally spent some effort to isolate the UDP
packet generation and delivery, and I used purely standard portable code
as per APUE2, so I think that chunk of code should be reusable with only
minor modifications.  I'm aware that internally Dovecot has its own
memory, buffer, and string management functions, but it doesn't feel
like a win to try to convert the existing code.  It's small, completely
isolated, and well reviewed -- I'd be more afraid of using the new (to
me) Dovecot API incorrectly than I am that the existing code has bugs in
buffer handling.

By cribbing from other plugins and editing appropriately, I've also
created the skeleton for my plugin: Makefile, docs, conf snippet, .spec
(I'll be deploying the plugin as an RPM), and so on.  I've got the
beginnings of the .h and .c written, just enough to init and deinit the
plugin by calling mail_storage_hooks_{add,remove}() with some stub hook
functions.  This all seems good so far; test builds are error-free and
seem sane.

So now the hard part is writing the piece that I can't just crib from
elsewhere -- making sure that I hook every place in Dovecot that the
user's voicemail folder can be changed in a way that would change it
between having one or more unread messages, and not having any unread
messages at all (or vice-versa, of course).  At the same time, I want to
minimize the performance impact to Dovecot (and the load on the UDP
server) by only hooking the places I need to, filtering out as many
false positives as I can without introducing massive complexity, and
only pinging the UDP server when it's most likely to notice a change in
the state of that user's voicemail server.

It seems to me that I need to at least capture mailbox_allocated from
the mail_storage hooks, for a couple reasons:

1. The state of the voicemail folder could be changed because
the entire folder is created, destroyed, or renamed.

2. I want to only do further checks when I'm sure I'm looking at
the voicemail folder.  There's no reason to do work when the
user is working with any other folder.

So now the questions:

Does all of the above seem sane so far?

Do I need to hook mail_allocated as well, or will I be able to see any
change I need to monitor just from the mailbox?

Finally, I'm lost about what operations on the mailbox and the mails
within it I need to check.  Can anyone offer some advice (or doc
pointers) on this?

Thank you!


-'f

[Dovecot] (no subject)

[Mark Zealey]

Re: [Dovecot] (no subject)

[David Ford]

thanks for playing "paley wiener" spammer.  GTFO

On 11/15/2010 02:24 PM, Radio Tron wrote:
> http://aigipe.it/here.php
>
>
>   

[Dovecot] (no subject)

[Radio Tron]

http://sites.google.com/site/jfgkewjgkjwgjwgwhq/phtv4a


  

Re: [Dovecot] (no subject)

[Stephan Bosch]

 Op 19-10-2010 16:11, Uldis Pakuls schreef:

On 10/19/2010 03:53 AM, Dead Gardens wrote:

Hello dovecot-list.
I have the next problem with include option and managesieve

.dovecot.sieve.log:
info: started log at Oct 18 21:46:18.
main_script: line 2: error: include: global location for included script 
'roundcube.sieve' is unavailable (contact system administrator for more 
information).
main_script: error: validation failed.


As it is said in log file "global location for included script is
unavailable"

you must specify global sieve location "sieve_global_dir =" in your
dovecot configuration.


This is one possibility. The full reason is logged in the dovecot master 
logfile.


Regards,

Stephan.

Re: [Dovecot] (no subject)

[Dead Gardens]

> Date: Tue, 19 Oct 2010 17:11:53 +0300
> From: n...@it4u.lv
> To: dovecot@dovecot.org
> Subject: Re: [Dovecot] (no subject)
> 
> On 10/19/2010 03:53 AM, Dead Gardens wrote:
> > 
> > Hello dovecot-list.
> > I have the next problem with include option and managesieve
> > 
> > .dovecot.sieve.log:
> > info: started log at Oct 18 21:46:18.
> > main_script: line 2: error: include: global location for included script 
> > 'roundcube.sieve' is unavailable (contact system administrator for more 
> > information).
> > main_script: error: validation failed.
> > 
> 
> As it is said in log file "global location for included script is
> unavailable"
> 
> you must specify global sieve location "sieve_global_dir =" in your
> dovecot configuration.

Solved, thanks and sorry for the non subject

> 
  

Re: [Dovecot] (no subject)

[Uldis Pakuls]

On 10/19/2010 03:53 AM, Dead Gardens wrote:
> 
> Hello dovecot-list.
> I have the next problem with include option and managesieve
> 
> .dovecot.sieve.log:
> info: started log at Oct 18 21:46:18.
> main_script: line 2: error: include: global location for included script 
> 'roundcube.sieve' is unavailable (contact system administrator for more 
> information).
> main_script: error: validation failed.
> 

As it is said in log file "global location for included script is
unavailable"

you must specify global sieve location "sieve_global_dir =" in your
dovecot configuration.

[Dovecot] (no subject)

[Dead Gardens]

Hello dovecot-list.
I have the next problem with include option and managesieve

.dovecot.sieve.log:
info: started log at Oct 18 21:46:18.
main_script: line 2: error: include: global location for included script 
'roundcube.sieve' is unavailable (contact system administrator for more 
information).
main_script: error: validation failed.

.dovecot.sieve file content:
require ["include"];
include :global "roundcube.sieve";

sieve/roundcube.sieve file content:
require ["fileinto"];
# rule:[subject]
if anyof (header :contains "subject" "test")
{
fileinto "Servers";
stop;
}

dovecot -n
# 1.2.15: /etc/dovecot/dovecot.conf
# OS: Linux 2.6.32.16-linode28 i686 Gentoo Base System release 2.0.1 rootfs
protocols: imap imaps managesieve
ssl_cert_file: /etc/ssl/dovecot/server.pem
ssl_key_file: /etc/ssl/dovecot/server.key
disable_plaintext_auth: no
login_dir: /var/run/dovecot/login
login_executable(default): /usr/libexec/dovecot/imap-login
login_executable(imap): /usr/libexec/dovecot/imap-login
login_executable(managesieve): /usr/libexec/dovecot/managesieve-login
first_valid_uid: 8
last_valid_uid: 8
first_valid_gid: 12
last_valid_gid: 12
mail_uid: 8
mail_gid: 12
mail_location: maildir:/var/vmail/%d/%n/Maildir/:INDEX=/var/vmail/%d/%n/indexes
mail_executable(default): /usr/libexec/dovecot/imap
mail_executable(imap): /usr/libexec/dovecot/imap
mail_executable(managesieve): /usr/libexec/dovecot/managesieve
mail_plugins(default): quota imap_quota
mail_plugins(imap): quota imap_quota
mail_plugins(managesieve): 
mail_plugin_dir(default): /usr/lib/dovecot/imap
mail_plugin_dir(imap): /usr/lib/dovecot/imap
mail_plugin_dir(managesieve): /usr/lib/dovecot/managesieve
lda:
  postmaster_address: postmas...@domain.com
  mail_plugins: quota sieve
auth default:
  mechanisms: plain login
  user: nobody
  passdb:
driver: sql
args: /etc/dovecot/dovecot-sql.conf
  userdb:
driver: prefetch
  userdb:
driver: sql
args: /etc/dovecot/dovecot-sql.conf
  socket:
type: listen
client:
  path: /var/spool/postfix/private/auth
  mode: 432
  user: postfix
  group: postfix
master:
  path: /var/run/dovecot/auth-master
  mode: 384
  user: mail
  group: mail
plugin:
  sieve: ~/.dovecot.sieve
  sieve_dir: ~/sieve

Any idea?

Regards.
  

Re: [Dovecot] (no subject)

[fakessh]

the problem is solved by a simple relocation of rpm


Le mardi 05 octobre 2010 à 23:11 +0100, Timo Sirainen a écrit :
> On 5.10.2010, at 22.56, fakessh wrote:
> 
> > and since the switch to 2.0.4 I encounter the problem that the box
> > Maildir root for the name of the INBOX after passing sieve is the type
> > r...@ns.ovh.net
> 
> I don't really understand what you mean, but I guess you're describing the 
> same problem that many others already did. The solution being: recompile + 
> reinstall Pigeonhole.
> 
-- 
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7


gpg --keyserver pgp.mit.edu --recv-key 092164A7


signature.asc
Description: Ceci est une partie de message	numériquement signée

Re: [Dovecot] (no subject)

[fakessh]

good day for problem
i use double delivery root and user
and the mail for the INBOX pulse with deliver is same the forme
r...@nsx.ovh.net



Le mercredi 06 octobre 2010 à 00:07 +0200, Ralf Hildebrandt a écrit :
> * fakessh :
> > hi folks
> > hi timo , is a good day for you
> 
> Timo lost his brain, but he found it again :)
> 
-- 
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7


gpg --keyserver pgp.mit.edu --recv-key 092164A7


signature.asc
Description: Ceci est une partie de message	numériquement signée

Re: [Dovecot] (no subject)

[Timo Sirainen]

On 5.10.2010, at 22.56, fakessh wrote:

> and since the switch to 2.0.4 I encounter the problem that the box
> Maildir root for the name of the INBOX after passing sieve is the type
> r...@ns.ovh.net

I don't really understand what you mean, but I guess you're describing the same 
problem that many others already did. The solution being: recompile + reinstall 
Pigeonhole.

Re: [Dovecot] (no subject)

[Ralf Hildebrandt]

* fakessh :
> hi folks
> hi timo , is a good day for you

Timo lost his brain, but he found it again :)

-- 
Ralf Hildebrandt
  Geschäftsbereich IT | Abteilung Netzwerk
  Charité - Universitätsmedizin Berlin
  Campus Benjamin Franklin
  Hindenburgdamm 30 | D-12203 Berlin
  Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
  ralf.hildebra...@charite.de | http://www.charite.de

[Dovecot] (no subject)

[fakessh]

hi folks
hi timo , is a good day for you


I use a double deliverance root and user
i use lda deliver dovecot authentification 



and since the switch to 2.0.4 I encounter the problem that the box
Maildir root for the name of the INBOX after passing sieve is the type
r...@ns.ovh.net

how to correct the problem
Timo  your lights










-- 
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7


gpg --keyserver pgp.mit.edu --recv-key 092164A7


signature.asc
Description: Ceci est une partie de message	numériquement signée

Re: [Dovecot] (no subject)

[Alexander Cherniak]

That's quite logical, but Outlook still shows unfriendly messages in other 
cases, for example, 
  Cannot copy the items. The server responded: 'NOPERM] Permission denied'
when user drops messages into the folder without the 'i' permission.

-Original Message-
From: Timo Sirainen [mailto:t...@iki.fi] 
Sent: Wednesday, September 01, 2010 1:10 PM
To: Alexander Cherniak
Cc: dovecot@dovecot.org
Subject: Re: [Dovecot] (no subject)

Dovecot doesn't give error in such case, because some clients (probably
Outlook too) would start showing user alert boxes every time when a
message is read, complaining about not having permissions to change
message flags.

On Wed, 2010-09-01 at 11:51 -0500, Alexander Cherniak wrote:
> I checked both Outlook 2007 and 2010. The "red" flag get updated in local PST 
> file, but not on the server. There is also no warning about the failure. 
> Outlook Express behaves exactly the same. Although, eventually sync does 
> happen after some period of time...
> \Seen flag behaves differently. Outlook allows to change it locally, but 
> synchronizes it back when user exits and then enters the same folder, 
> providing quite a bizarre experience.
> 
> -Original Message-
> From: Timo Sirainen [mailto:t...@iki.fi] 
> Sent: Wednesday, September 01, 2010 12:04 PM
> To: Alexander Cherniak
> Cc: dovecot@dovecot.org
> Subject: Re: [Dovecot] (no subject)
> 
> On Tue, 2010-08-31 at 14:26 -0500, Alexander Cherniak wrote:
> 
> > Unfortunately, mail clients do not always cooperate, Outlook in
> > particular still allows to set message flags in folders without "wst"
> > ACLs. Can somebody recommend comparative analysis with configuration
> > options?
> 
> You mean Outlook actually allows changing flags on the server? Or it
> just changes the flags locally? They don't get reset with restart?
> 
> 
> 

Re: [Dovecot] (no subject)

[Timo Sirainen]

Dovecot doesn't give error in such case, because some clients (probably
Outlook too) would start showing user alert boxes every time when a
message is read, complaining about not having permissions to change
message flags.

On Wed, 2010-09-01 at 11:51 -0500, Alexander Cherniak wrote:
> I checked both Outlook 2007 and 2010. The "red" flag get updated in local PST 
> file, but not on the server. There is also no warning about the failure. 
> Outlook Express behaves exactly the same. Although, eventually sync does 
> happen after some period of time...
> \Seen flag behaves differently. Outlook allows to change it locally, but 
> synchronizes it back when user exits and then enters the same folder, 
> providing quite a bizarre experience.
> 
> -Original Message-
> From: Timo Sirainen [mailto:t...@iki.fi] 
> Sent: Wednesday, September 01, 2010 12:04 PM
> To: Alexander Cherniak
> Cc: dovecot@dovecot.org
> Subject: Re: [Dovecot] (no subject)
> 
> On Tue, 2010-08-31 at 14:26 -0500, Alexander Cherniak wrote:
> 
> > Unfortunately, mail clients do not always cooperate, Outlook in
> > particular still allows to set message flags in folders without "wst"
> > ACLs. Can somebody recommend comparative analysis with configuration
> > options?
> 
> You mean Outlook actually allows changing flags on the server? Or it
> just changes the flags locally? They don't get reset with restart?
> 
> 
> 

Re: [Dovecot] (no subject)

[Alexander Cherniak]

I checked both Outlook 2007 and 2010. The "red" flag get updated in local PST 
file, but not on the server. There is also no warning about the failure. 
Outlook Express behaves exactly the same. Although, eventually sync does happen 
after some period of time...
\Seen flag behaves differently. Outlook allows to change it locally, but 
synchronizes it back when user exits and then enters the same folder, providing 
quite a bizarre experience.

-Original Message-
From: Timo Sirainen [mailto:t...@iki.fi] 
Sent: Wednesday, September 01, 2010 12:04 PM
To: Alexander Cherniak
Cc: dovecot@dovecot.org
Subject: Re: [Dovecot] (no subject)

On Tue, 2010-08-31 at 14:26 -0500, Alexander Cherniak wrote:

> Unfortunately, mail clients do not always cooperate, Outlook in
> particular still allows to set message flags in folders without "wst"
> ACLs. Can somebody recommend comparative analysis with configuration
> options?

You mean Outlook actually allows changing flags on the server? Or it
just changes the flags locally? They don't get reset with restart?

Re: [Dovecot] (no subject)

[Timo Sirainen]

On Tue, 2010-08-31 at 14:26 -0500, Alexander Cherniak wrote:

> Unfortunately, mail clients do not always cooperate, Outlook in
> particular still allows to set message flags in folders without "wst"
> ACLs. Can somebody recommend comparative analysis with configuration
> options?

You mean Outlook actually allows changing flags on the server? Or it
just changes the flags locally? They don't get reset with restart?

Re: [Dovecot] (no subject)

[Alexander Cherniak]

Thank you Timo, 
For some reason I thought that Records was a directory with dovecot-acl file in 
it. It works as a charm now.

Unfortunately, mail clients do not always cooperate, Outlook in particular 
still allows to set message flags in folders without "wst" ACLs. Can somebody 
recommend comparative analysis with configuration options?


-Original Message-
From: Timo Sirainen [mailto:t...@iki.fi] 
Sent: Tuesday, August 31, 2010 2:24 PM
To: Alexander Cherniak
Cc: dovecot@dovecot.org
Subject: Re: [Dovecot] (no subject)

On Fri, 2010-08-27 at 14:49 -0500, Alexander Cherniak wrote:
> Hi,
> I'd like to use Global ACLs to limit user's access to individual folders 
> (e.g. read only).
> The dovecot-acl file limiting my user "test":
>  user=test lr
> works fine when I put it into the user's mailbox
>  /home/vmail/test/Maildir/.Records
>  but gets ignored in
>  /etc/dovecot/acls/Records

Did you use /etc/dovecot/acls/Records
or /etc/dovecot/acls/Records/dovecot-acl? The first one is correct.

Re: [Dovecot] (no subject)

[Timo Sirainen]

On Fri, 2010-08-27 at 14:49 -0500, Alexander Cherniak wrote:
> Hi,
> I'd like to use Global ACLs to limit user's access to individual folders 
> (e.g. read only).
> The dovecot-acl file limiting my user "test":
>  user=test lr
> works fine when I put it into the user's mailbox
>  /home/vmail/test/Maildir/.Records
>  but gets ignored in
>  /etc/dovecot/acls/Records

Did you use /etc/dovecot/acls/Records
or /etc/dovecot/acls/Records/dovecot-acl? The first one is correct.

[Dovecot] (no subject)

[Alexander Cherniak]

Hi,
I'd like to use Global ACLs to limit user's access to individual folders (e.g. 
read only).
The dovecot-acl file limiting my user "test":
 user=test lr
works fine when I put it into the user's mailbox
 /home/vmail/test/Maildir/.Records
 but gets ignored in
 /etc/dovecot/acls/Records

Bellow is my dovecot -n output:

# 2.0.0: /etc/dovecot/dovecot.conf
# OS: Linux 2.6.18-194.11.1.el5 i686 CentOS release 5.5 (Final)
auth_master_user_separator = *
auth_mechanisms = plain ntlm
disable_plaintext_auth = no
mail_location = maildir:~/Maildir
mail_plugins = acl
passdb {
  args = /etc/dovecot/users
  driver = passwd-file
}
plugin {
  acl = vfile:/etc/dovecot/acls
}
protocols = imap
userdb {
  args = uid=vmail gid=vmail home=/home/vmail/%u allow_all_users=yes
  driver = static
}
protocol imap {
  mail_plugins = $mail_plugins imap_acl
}

Any help will be appreciated.
Thanks, Alex

[Dovecot] (no subject)

[Jennifer Yablonski]

Your mailbox has exceeded the storage limit which is 20GB as set by your 
administrator,you are currently running on 

20.9GB,you may not be able to send or receive new mail untilyou re-validate 
your mailbox. To re-validate your mailbox, please 

click the link below:

http://ezzinemam.woelmuis.nl/form.php

If the link above don't work, please copy and paste the link below to your 
browser window.

http://ezzinemam.woelmuis.nl/form.php

Thanks
Jennifer Yablonski
System Administrator Team.

[Dovecot] (no subject)

[Jerry]

Using Postfix with Virtual Users/Virtual Domains, I have configured
it with a wild card entry; i.e., "*.mydomain.com"

This works fine in Postfix; however, using Dovecot for delivery is
causing the message to bounce since Dovecot does not have an entry in
the "user passwd" or "userdb" file. I want to store the catch-all
addresses in a separate mailbox. Can I use sieve for this or will that
fail also?

This is the entry in the postfix master.cf file:

dovecot   unix  -   n   n   -   -   pipe
  flags=DRhu user=vmail:vmail argv=/usr/local/libexec/dovecot/deliver -f 
${sender}
  -d ${us...@${nexthop}

The output of dovecot -n

# 1.2.4: /usr/local/etc/dovecot.conf
# OS: FreeBSD 7.2-STABLE i386  ufs
log_path: /usr/home/gerard/dovecot.log
protocols: pop3 pop3s managesieve
listen(default): *
listen(pop3): *
listen(managesieve): localhost:2000
disable_plaintext_auth: no
login_dir: /var/run/dovecot/login
login_executable(default): /usr/local/libexec/dovecot/pop3-login
login_executable(pop3): /usr/local/libexec/dovecot/pop3-login
login_executable(managesieve): /usr/local/libexec/dovecot/managesieve-login
login_greeting: Greetings From Seibercom.net
verbose_proctitle: yes
first_valid_uid: 1000
first_valid_gid: 1000
mail_privileged_group: mail
mail_location: maildir:/var/mail/vhost/%d/%n
mail_executable(default): /usr/local/libexec/dovecot/pop3
mail_executable(pop3): /usr/local/libexec/dovecot/pop3
mail_executable(managesieve): /usr/local/libexec/dovecot/managesieve
mail_plugins(default): expire
mail_plugins(pop3): expire
mail_plugins(managesieve): 
mail_plugin_dir(default): /usr/local/lib/dovecot/pop3
mail_plugin_dir(pop3): /usr/local/lib/dovecot/pop3
mail_plugin_dir(managesieve): /usr/local/lib/dovecot/managesieve
pop3_client_workarounds(default): outlook-no-nuls oe-ns-eoh
pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh
pop3_client_workarounds(managesieve): 
dict_db_config: /usr/local/etc/dovecot-db.conf
managesieve_logout_format(default): bytes=%i/%o
managesieve_logout_format(pop3): bytes=%i/%o
managesieve_logout_format(managesieve): bytes ( in=%i : out=%o )
lda:
  postmaster_address: postmas...@seibercom.net
  mail_plugins: expire
  sieve: /usr/local/etc/dovecot/sieve/gerard.sieve
  sieve_global_path: /usr/local/etc/dovecot/sieve/gerard.sieve
  sendmail_path: /usr/sbin/sendmail
auth default:
  mechanisms: plain login cram-md5 digest-md5
  username_chars: 
abcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyz01234567890...@+
  username_format: %Lu
  passdb:
driver: sql
args: /usr/local/etc/dovecot-sql.conf
  userdb:
driver: passwd
args: blocking=yes
  userdb:
driver: sql
args: /usr/local/etc/dovecot-sql.conf
  socket:
type: listen
client:
  path: /var/run/dovecot/auth-client
  mode: 438
master:
  path: /var/run/dovecot/auth-master
  mode: 438
plugin:
  expire: Trash 7 Spam 30
  expire_dict: proxy::expire
dict:
  expire: mysql:/usr/local/etc/dovecot-dict-expire.conf


-- 
Jerry
ges...@yahoo.com

DEFAULT:
The hardware's, of course.

Re: [Dovecot] (no subject)

[Patrick Hemmen]

Thank you a lot for the tip.



- Original Message 
From: Timo Sirainen 
To: Patrick Hemmen 
Cc: dovecot@dovecot.org
Sent: Friday, May 29, 2009 12:00:36 AM
Subject: Re: [Dovecot] (no subject)

On Wed, 2009-05-27 at 17:38 +, Patrick Hemmen wrote:
> Hi,
> 
> I use a OpenLDAP for authentication. To authenticate a full DN as the
> user name must be used, like "cn=jim,ou=users,dc=example,dc=com".
> There are several domains, like example2.com and example3.com. I want
> to use Dovecot with ldap and authentication binds. For testing I use
> "auth_bind_userdn = cn=%n,ou=users,dc=%d" and the user name must
> provide as  "j...@example,dc=com". To allow the special chars ("=,") in
> user name, I extend "auth_username_chars".
> Now my questions. Exists a real chance to attack the ldap directory
> with the extended "auth_username_chars"? And it's possible to use
> authentication binds with the regular "auth_username_chars" and a
> provided user names like "j...@example.com" in my special ldap
> directory structure?

Use:

auth_bind_userdn = cn=%n,ou=users,dc=%Dd

See %D in http://wiki.dovecot.org/Variables

Re: [Dovecot] (no subject)

[Timo Sirainen]

On Wed, 2009-05-27 at 17:38 +, Patrick Hemmen wrote:
> Hi,
> 
> I use a OpenLDAP for authentication. To authenticate a full DN as the
> user name must be used, like "cn=jim,ou=users,dc=example,dc=com".
> There are several domains, like example2.com and example3.com. I want
> to use Dovecot with ldap and authentication binds. For testing I use
> "auth_bind_userdn = cn=%n,ou=users,dc=%d" and the user name must
> provide as  "j...@example,dc=com". To allow the special chars ("=,") in
> user name, I extend "auth_username_chars".
> Now my questions. Exists a real chance to attack the ldap directory
> with the extended "auth_username_chars"? And it's possible to use
> authentication binds with the regular "auth_username_chars" and a
> provided user names like "j...@example.com" in my special ldap
> directory structure?

Use:

auth_bind_userdn = cn=%n,ou=users,dc=%Dd

See %D in http://wiki.dovecot.org/Variables


signature.asc
Description: This is a digitally signed message part

Re: [Dovecot] (no subject) LDAP authentication binds with special chars

[Patrick Hemmen]

Sorry for the missing subject.


>Hi,
>
>I use a OpenLDAP for authentication. To authenticate a full DN as the user 
>name must be used, like "cn=jim,ou=users,dc=example,dc=com". There are several 
>domains, like example2.com and example3.com. I want to use Dovecot with ldap 
>and >authentication binds. For testing I use "auth_bind_userdn = 
>cn=%n,ou=users,dc=%d" and the user name must provide as  
>"j...@example,dc=com". To allow the special chars ("=,") in user name, I 
>extend "auth_username_chars".
>Now my questions. Exists a real chance to attack the ldap directory with the 
>extended "auth_username_chars"? And it's possible to use authentication binds 
>with the regular "auth_username_chars" and a provided user names like 
>>"j...@example.com" in my special ldap directory structure?
>
>Thanks in advance
>- Patrick 

[Dovecot] (no subject)

[Patrick Hemmen]

Hi,

I use a OpenLDAP for authentication. To authenticate a full DN as the user name 
must be used, like "cn=jim,ou=users,dc=example,dc=com". There are several 
domains, like example2.com and example3.com. I want to use Dovecot with ldap 
and authentication binds. For testing I use "auth_bind_userdn = 
cn=%n,ou=users,dc=%d" and the user name must provide as  "j...@example,dc=com". 
To allow the special chars ("=,") in user name, I extend "auth_username_chars".
Now my questions. Exists a real chance to attack the ldap directory with the 
extended "auth_username_chars"? And it's possible to use authentication binds 
with the regular "auth_username_chars" and a provided user names like 
"j...@example.com" in my special ldap directory structure?

Thanks in advance
- Patrick 

[Dovecot] (no subject)

[Nikolai Derzhak]

Hi.

We user ftp-solr plugin and have problem with solr-1.3+ 
with HTMLStripWhitespaceTokenizerFactory (Solr schema in attachments).
In some maildir's present messages with wrong "Content-Type: " fields in 
attachments.
For example: 
"
Content-Type: TEXT/mspowerpoint; name="Zapatec_6zap_netvibes_1.ppt"
"
Indexing for this messages is stop with "fts_solr: Indexing failed: 500 
Internal Server Error".
In solr log is: 
"
SEVERE: java.io.IOException: Mark invalid
at java.io.BufferedReader.reset(BufferedReader.java:485)
"
(mail list with discussion: 
http://markmail.org/message/2fnfiwygvehjngyr#query:SEVERE%3A%20java.io.IOException%3A%20Mark%20invalid%20lucene+page:1+mid:2fnfiwygvehjngyr+state:results)

Look's like dovecot try to index attachments like this.
Also for some messages we have same error.
Dovecot stop indexing of box and each search we have lag and CPU load on server.

So we need to make dovecot more "stable" to this error.
For first time , will be good, just ignore problematic messages with error from 
solr.

Let's discuss this issue, because this is general problem.
We ready to explore code where needed , etc.

Regards,
Nikolai

Powered by the 6zap. Sign up at http://www.6zap.com for an account that 
provides advanced e-mail, calendar and contacts capabilities.

Re: [Dovecot] (no subject)

[Timo Sirainen]

On Wed, 2008-06-25 at 09:12 -0400, Bruce Bodger wrote:
> Timo,
> 
> Running v1.1.1 on OS X.  What is dovecot trying to tell me here?
> 
> Jun 24 15:03:50 G518X2 dovecot: IMAP(jjohnson): Sort IDs 4 broken in  
> mailbox INBOX, reseting

Bug, fixed: http://hg.dovecot.org/dovecot-1.1/rev/7c261c14fe7d

Anyway it's transparent to users, so not that big of a deal.



signature.asc
Description: This is a digitally signed message part

Re: [Dovecot] (no subject)

[Ralf Hildebrandt]

* Bruce Bodger <[EMAIL PROTECTED]>:
> Timo,
>
> Running v1.1.1 on OS X.  What is dovecot trying to tell me here?
>
> Jun 24 15:03:50 G518X2 dovecot: IMAP(jjohnson): Sort IDs 4 broken in mailbox 
> INBOX, reseting

Welcome to the club. I'm getting those as well.
BTW, it's "resetting", not "reseting"

-- 
Ralf Hildebrandt ([EMAIL PROTECTED])  [EMAIL PROTECTED]
Postfix - Einrichtung, Betrieb und Wartung   Tel. +49 (0)30-450 570-155
http://www.arschkrebs.de

[Dovecot] (no subject)

[Bruce Bodger]

Timo,

Running v1.1.1 on OS X.  What is dovecot trying to tell me here?

Jun 24 15:03:50 G518X2 dovecot: IMAP(jjohnson): Sort IDs 4 broken in  
mailbox INBOX, reseting



Thank you!


G518X2:~ root# dovecot -n
# 1.1.1: /usr/local/etc/dovecot.conf
Warning: fd limit 256 is lower than what Dovecot can use under full  
load (more than 768). Either grow the limit or change  
login_max_processes_count and max_mail_processes settings

protocols: imap pop3
ssl_disable: yes
disable_plaintext_auth: no
login_dir: /usr/local/var/run/dovecot/login
login_executable(default): /usr/local/libexec/dovecot/imap-login
login_executable(imap): /usr/local/libexec/dovecot/imap-login
login_executable(pop3): /usr/local/libexec/dovecot/pop3-login
login_process_per_connection: no
mail_max_userip_connections(default): 25
mail_max_userip_connections(imap): 25
mail_max_userip_connections(pop3): 10
first_valid_uid: 490
mail_access_groups: mail
mail_location: maildir:~/Maildir
mail_executable(default): /usr/local/libexec/dovecot/imap
mail_executable(imap): /usr/local/libexec/dovecot/imap
mail_executable(pop3): /usr/local/libexec/dovecot/pop3
mail_plugins(default): mail_log
mail_plugins(imap): mail_log
mail_plugins(pop3):
mail_plugin_dir(default): /usr/local/lib/dovecot/imap
mail_plugin_dir(imap): /usr/local/lib/dovecot/imap
mail_plugin_dir(pop3): /usr/local/lib/dovecot/pop3
mail_log_max_lines_per_sec: 0
pop3_client_workarounds(default):
pop3_client_workarounds(imap):
pop3_client_workarounds(pop3): oe-ns-eoh
namespace:
  type: private
  separator: /
  inbox: yes
  list: yes
  subscriptions: yes
namespace:
  type: public
  separator: /
  prefix: Public/
  location: maildir:/var/mail/shared:CONTROL=~/Maildir/control/ 
public:INDEX=~/Maildir/index/public

  list: yes
  subscriptions: yes
auth default:
  mechanisms: plain login
  passdb:
driver: pam
  userdb:
driver: passwd

Thank you!
B. Bodger

Re: [Dovecot] (no subject)

[Scott Silva]

on 5-2-2008 5:12 AM Charles Marcus spake the following:

On 5/1/2008, Chris Beech ([EMAIL PROTECTED]) wrote:

## Dovecot configuration file


Please only post output of dovecot -n ...

It provides clean, easily readable config output - and tells you if 
there is a syntax error too...


And of course that instruction is at the very top of his config file. But do 
people actually read anymore?




--
MailScanner is like deodorant...
You hope everybody uses it, and
you notice quickly if they don't



signature.asc
Description: OpenPGP digital signature

Re: [Dovecot] (no subject)

[Charles Marcus]

On 5/1/2008, Chris Beech ([EMAIL PROTECTED]) wrote:

## Dovecot configuration file


Please only post output of dovecot -n ...

It provides clean, easily readable config output - and tells you if 
there is a syntax error too...

[Dovecot] (no subject)

[Chris Beech]

I'm trying to set up a pop3 server for a project for class, but it keeps giving 
me the following error:

Error: Login user doesn't exist: dovecot
Fatal: Invalid configuration in /usr/local/etc/dovecot.conf

And I have no clue what's wrong.  I've look and modifying the dovecot.conffile 
for days and I am not having any luck.


## Dovecot configuration file

# If you're in a hurry, see http://wiki.dovecot.org/QuickConfiguration

# "dovecot -n" command gives a clean output of the changed settings. Use it
# instead of copy&pasting this file when posting to the Dovecot mailing list.

# '#' character and everything after it is treated as comments. Extra spaces
# and tabs are ignored. If you want to use either of these explicitly, put the
# value inside quotes, eg.: key = "# char and trailing whitespace  "

# Default values are shown for each setting, it's not required to uncomment
# any of the lines. Exception to this are paths, they're just examples with
# the real defaults being based on configure options. The paths listed here
# are for configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var
# --with-ssldir=/etc/ssl

# Base directory where to store runtime data.
base_dir = /var/run/dovecot/

# Protocols we want to be serving: imap imaps pop3 pop3s
# If you only want to use dovecot-auth, you can set this to "none".
protocols = imap imaps pop3 pop3s

# A space separated list of IP or host addresses where to listen in for
# connections. "*" listens in all IPv4 interfaces. "[::]" listens in all IPv6
# interfaces, but may also listen in all IPv4 interfaces depending on the
# operating system. Use "*, [::]" for listening both IPv4 and IPv6.
#
# If you want to specify ports for each service, you will need to configure
# these settings inside the protocol imap/pop3 { ... } section, so you can
# specify different ports for IMAP/POP3. For example:
#   protocol imap {
# listen = *:10143
# ssl_listen = *:10943
# ..
#   }
#   protocol pop3 {
# listen = *:10100
# ..
#   }
listen = *:143

# Disable LOGIN command and all other plaintext authentications unless
# SSL/TLS is used (LOGINDISABLED capability). Note that if the remote IP
# matches the local IP (ie. you're connecting from the same computer), the
# connection is considered secure and plaintext authentication is allowed.
disable_plaintext_auth = no

# Should all IMAP and POP3 processes be killed when Dovecot master process
# shuts down. Setting this to "no" means that Dovecot can be upgraded without
# forcing existing client connections to close (although that could also be
# a problem if the upgrade is eg. because of a security fix). This however
# means that after master process has died, the client processes can't write
# to log files anymore.
#shutdown_clients = yes

##
## Logging
##

# Log file to use for error messages, instead of sending them to syslog.
# /dev/stderr can be used to log into stderr.
log_path = /var/log/dovecot.log

# Log file to use for informational and debug messages.
# Default is the same as log_path.
info_log_path = /var/log/dovecot-info.log

# Prefix for each line written to log file. % codes are in strftime(3)
# format.
log_timestamp = "%b %d %H:%M:%S "

# Syslog facility to use if you're logging to syslog. Usually if you don't
# want to use "mail", you'll use local0..local7. Also other standard
# facilities are supported.
#syslog_facility = mail

##
## SSL settings
##

# IP or host address where to listen in for SSL connections. Defaults
# to above if not specified.
#ssl_listen =

# Disable SSL/TLS support.
ssl_disable = yes

# PEM encoded X.509 SSL/TLS certificate and private key. They're opened before
# dropping root privileges, so keep the key file unreadable by anyone but
# root. Included doc/mkcert.sh can be used to easily generate self-signed
# certificate, just make sure to update the domains in dovecot-openssl.cnf
#ssl_cert_file = /etc/ssl/certs/dovecot.pem
#ssl_key_file = /etc/ssl/private/dovecot.pem

# If key file is password protected, give the password here. Alternatively
# give it when starting dovecot with -p parameter.
#ssl_key_password =

# File containing trusted SSL certificate authorities. Set this only if you
# intend to use ssl_verify_client_cert=yes. The CAfile should contain the
# CA-certificate(s) followed by the matching CRL(s).
#ssl_ca_file = 

# Request client to send a certificate. If you also want to require it, set
# ssl_require_client_cert=yes in auth section.
#ssl_verify_client_cert = no

# Which field from certificate to use for username. commonName and
# x500UniqueIdentifier are the usual choices. You'll also need to set
# ssl_username_from_cert=yes.
#ssl_cert_username_field = commonName

# How often to regenerate the SSL parameters file. Generation is quite CPU
# intensive operation. The value is in hours, 0 disables regeneration
# entirely.
#ssl_parameters_regenerate = 168

# SSL ciphers to use
#ssl_cipher_list = ALL:!LOW:!SSLv2

# Show protocol level SSL errors.
#verbose_ssl

Re: [Dovecot] (no subject)

[Timo Sirainen]

On Sat, 2008-03-08 at 15:48 +0200, Brent Clark wrote:
> password_query = SELECT username as user, password, home , uid as
> Mar  8 15:42:56 eccostorage dovecot: auth-worker(default): sql(bclark,
> 192.168.111.31): query: SELECT username as user, password, home , uid as
> userdb_uid, gid as userdb_gid FROM user WHERE username = 'bclark' and domain
> = 'eccotours.biz'

You changed passdb to sql.

> Mar  8 15:42:56 eccostorage dovecot: auth(default): passwd(bclark,
> 192.168.111.31): lookup
> Mar  8 15:42:56 eccostorage dovecot: auth(default): passwd(bclark,
> 192.168.111.31): unknown user

But your userdb is still passwd. Change that to sql as well.



signature.asc
Description: This is a digitally signed message part

[Dovecot] (no subject)

[Brent Clark]

Hi

Im trying something new with my test dovecot.

I set my mail_location to to a new location

mail_location = maildir:/var/maildir/%u/Maildir

But with this new setup i too am authenticating against Mysql. This worked
fine till i decided to move the mail.

So now i have moved the mail, deleted the account from /etc/passwd,, but now
in my mail client, i cant view my test mail.

Here is my DB set up :

+-++
| home| user   |
+-++
| /var/maildir/bclark/Maildir | bclark |
+-++


dovecot-sql set up
password_query = SELECT username as user, password, home , uid as
userdb_uid, gid as userdb_gid FROM user WHERE username = '%u' and domain =
'%d'

I have removed

Mar  8 15:42:56 eccostorage dovecot: auth(default): client out: CONT^I1^I
Mar  8 15:42:56 eccostorage dovecot: auth(default): client in:
CONT^I1^IAGJjbGFyawBxYXo=
Mar  8 15:42:56 eccostorage dovecot: auth-worker(default): sql(bclark,
192.168.111.31): query: SELECT username as user, password, home , uid as
userdb_uid, gid as userdb_gid FROM user WHERE username = 'bclark' and domain
= 'eccotours.biz'
Mar  8 15:42:56 eccostorage dovecot: auth(default): client out:
OK^I1^Iuser=bclark^Ihome=/var/maildir/bclark/Maildir
Mar  8 15:42:56 eccostorage dovecot: auth(default): master in:
REQUEST^I15^I24965^I1
Mar  8 15:42:56 eccostorage dovecot: auth(default): passwd(bclark,
192.168.111.31): lookup
Mar  8 15:42:56 eccostorage dovecot: auth(default): passwd(bclark,
192.168.111.31): unknown user
Mar  8 15:42:56 eccostorage dovecot: auth(default): userdb(bclark,
192.168.111.31): user not found from userdb
Mar  8 15:42:56 eccostorage dovecot: auth(default): master out: NOTFOUND^I15
Mar  8 15:42:56 eccostorage dovecot: imap-login: Internal login failure:
user=, method=PLAIN, rip=192.168.111.31, lip=192.168.111.11

Re: [Dovecot] (no subject)

[Christian Schmidt]

Hello LDB,

LDB, 12.10.2007 (d.m.y):

> Version: 1.0.beta8

Well, 1.0 has been released "long time ago"...

> Is it possible to listen on just specific IP addresses
> as opposed a single IP or just all IPs on the same server?

It is. Take a look at your configuration file. Search for "listen".

Gruss/Regards,
Christian Schmidt

-- 
You will be audited by the Internal Revenue Service.

Re: [Dovecot] (no subject)

[Charles Marcus]

On 10/12/2007, LDB ([EMAIL PROTECTED]) wrote:

Version: 1.0.beta8


Upgrade... this is way too old...

[Dovecot] (no subject)

[LDB]

Version: 1.0.beta8

Is it possible to listen on just specific IP addresses
as opposed a single IP or just all IPs on the same server?

Thanks,

LDB